videos

Videos

products

Product Feature Sheets

white papers

White Papers

use cases

Use Cases

case studies

Case Studies

What's New Latest Release - W6.95

Privacy Policy

DeliverySlip Privacy Shield Policy


Privacy Statement

Last update on: July, 2018


Your privacy is important to us. This privacy statement explains what personal data we collect from you and how we use it. We encourage you to read the summaries below.

DeliverySlip Inc. (“DeliverySlip”) has adopted this Privacy Shield Privacy Policy (“Policy”) in conjunction with the EU-US and Swiss-US Privacy Shield Frameworks to establish and maintain an adequate level of Personal Data privacy protection. This Policy applies to the processing of Personal Data that DeliverySlip obtains from all users including those located in the European Union and Switzerland.

DeliverySlip complies with the EU-US Privacy Shield Framework and the Swiss-US Privacy Shield Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries and Switzerland transferred to the United States pursuant to Privacy Shield. DeliverySlip has certified that it adheres to the Privacy Shield Principles with respect to such data. If there is any conflict between the policies in this privacy policy and data subject rights under the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification page, please visit https://www.privacyshield.gov/

The Federal Trade Commission (FTC) has jurisdiction over DeliverySlip’s compliance with the Privacy Shield.

All DeliverySlip employees who handle Personal Data from Europe and Switzerland are required to comply with the Principles stated in this Policy.

The product-specific details sections provide additional information relevant to DeliverySlip products. This statement applies to the DeliverySlip products listed below, as well as other DeliverySlip products that display this statement. References to DeliverySlip products in this statement include DeliverySlip services, websites, apps and software.

Scope

This Policy applies to the processing of Individual Customer Personal Data that DeliverySlip receives in the United States concerning Individual Customers who reside in the European Union and Switzerland. DeliverySlip provides products and services to businesses and consumers.

This Policy does not cover data from which individual persons cannot be identified or situations in which pseudonyms are used. (The use of pseudonyms involves the replacement of names or other identifiers with substitutes so that identification of individual persons is not possible.)

Responsibilities and Management

DeliverySlip has designated a Privacy Officer to oversee its information security program, including its compliance with the EU and Swiss Privacy Shield program. The Privacy Officer will review and approve any material changes to this program as necessary. Any questions, concerns, or comments regarding this Policy also may be directed to privacyofficer@deliveryslip.com.

DeliverySlip will maintain, monitor, test, and upgrade information security policies, practices, and systems to assist in protecting the Personal Data that it collects. DeliverySlip personnel will receive training, as applicable, to effectively implement this Policy. Please refer to Security of Personal Data for a discussion of the steps that DeliverySlip has undertaken to protect Personal Data.

Renewal / Verification

DeliverySlip will renew its EU-US Privacy Shield and Swiss-US Privacy Shield certifications annually, unless it subsequently determines that it no longer needs such certification or if it employs a different adequacy mechanism.

Prior to the re-certification, DeliverySlip will conduct an in-house verification to ensure that its attestations and assertions about its treatment of Individual Customer Personal Data are accurate and that the company has appropriately implemented these practices. Specifically, as part of the verification process, DeliverySlip will undertake the following:

  1. Review this Privacy Shield policy and its publicly posted website privacy policy to ensure that these policies accurately describe the practices regarding the collection of Individual Customer Personal Data
  2. Ensure that the publicly posted privacy policy informs Individual Customers of DeliverySlip’s participation in the EU-US Privacy Shield and Swiss-US Privacy Shield programs and where to obtain a copy of additional information (e.g., a copy of this Policy)
  3. Ensure that this Policy continues to comply with the Privacy Shield principles
  4. Confirm that Individual Customers are made aware of the process for addressing complaints and any independent dispute resolution process (DeliverySlip may do so through its publicly posted website, Individual Customer contract, or both)
  5. Review its processes and procedures for training Employees about DeliverySlip’s participation in the Privacy Shield programs and the appropriate handling of Individual’s Personal Data

DeliverySlip will prepare an internal verification statement on an annual basis.

Collection and Use of Personal Data

DeliverySlip provides the ability for its Customers to send secure messages with attachments and e-signature requests to users both internal and external to the Customer organization (“Participants”). To operate effectively and provide DeliverySlip customers with the best experience with our products, DeliverySlip collects Personal Data from individual Participants.

Personal Data We Collect

The data we collect depends on the products and features a DeliverySlip Participant uses, and can include the following:

Name and contact data. We may collect first and last name, email address, postal address, phone number, and other similar contact data.

Credentials. We collect passwords, password hints, and similar security information used for authentication and account access.
Demographic data. We collect data about a Participant such as preferred language.
Device and Usage data. We collect data about a Participant’s device and how a Participant and their device interacts with DeliverySlip and our products. For example, we collect:

  • Product use data. We collect data about the features used, the items purchased, and the web pages visited.
  • Device, connectivity and configuration data. We collect data about a Participant’s device and the network used to connect to our products. It includes data about the operating systems and other software installed on your device, including product keys. It also includes IP address, device identifiers (such as the IMEI number for phones), regional and language settings.
  • Error reports and performance data. We collect data about the performance of the products and any problems experienced with them. This data helps us to diagnose problems in the products, and to improve our products and provide solutions. Depending on the product and settings, error reports can include data such as the type or severity of the problem, details of the software or hardware related to an error, contents of files being used when an error occurred, and data about other software on the device.
  • Support Data. When engaging DeliverySlip for support, we collect data about the Participant and the hardware, software, and other details related to the support incident. Such data may include contact or authentication data, the content of communications with DeliverySlip support, data about the condition of the machine and the application when the fault occurred and during diagnostics, and system and registry data about software installations and hardware configurations.

Contacts and relationships. We collect data about a Participant’s contacts and relationships if the DeliverySlip product to manage contacts, or to communicate or interact with other people or organizations.
Content. We collect content of files and communications when necessary to provide the Participant with the products used. For example, if when receiving a messaging using the DeliverySlip service, we need to collect the content of that message to deliver it to an inbox, display it to the Participant, enable ability to reply to it, and store it for until Participant chooses to delete it. Examples of this data include: the content of documents, photos, music, or videos uploaded to a DeliverySlip service, as well as the content of communications sent or received using DeliverySlip products, including the:

  • subject line and body of a message,
  • message attachments and files for e-signature
  • body of message, attachments and e-signature documents are encrypted when at rest

ALL content, when transported between DeliverySlip products, is done using HTTPS (TLS 1.1 or higher).
We also collect the content of messages sent to us, such as feedback, product reviews, or questions and information provided for customer support. When a Participant contacts us, such as for customer support, phone conversations or chat sessions with our representatives may be monitored and recorded.
Product-specific sections below describe data collection practices applicable to use of those products.
DeliverySlip does not disclose personal information to third parties for purposes that are materially different than what it was originally collected for. Should this change in the future, we will provide individuals with the option to opt-out.

Reasons We Share Personal Data

We may share personal data among DeliverySlip-controlled affiliates and subsidiaries. We also may share personal data with vendors or agents working on our behalf for the purposes described in this statement. For example, companies we’ve hired to provide customer service support or assist in protecting and securing our systems and services may need access to personal data to provide those functions. In such cases, these companies must abide by our data privacy and security requirements and are not allowed to use personal data they receive from us for any other purpose. We may also disclose personal data as part of a corporate transaction such as a merger or sale of assets.
Finally, we will access, transfer, disclose, and preserve personal data, including Participant content when we have a good faith belief that doing so is necessary to:

  1. comply with applicable law or respond to valid legal process, including from law enforcement or other government agencies;
  2. protect our customers, for example to prevent spam or attempts to defraud users of our products, or to help prevent the loss of life or serious injury of anyone;
  3. operate and maintain the security of our products, including to prevent or stop an attack on our computer systems or networks; or
  4. protect the rights or property of DeliverySlip, including enforcing the terms governing the use of the services – however, if we receive information indicating that someone is using our services to traffic in stolen intellectual or physical property of DeliverySlip, we will not inspect a customer’s private content ourselves, but we may refer the matter to law enforcement.

Disclosures / Onward Transfers of Personal Data

Except as otherwise provided herein, DeliverySlip discloses Personal Data only to Third Parties who reasonably need to know such data only for the scope of the initial transaction and not for other purposes. Such recipients must agree to abide by confidentiality obligations.
DeliverySlip may provide Personal Data to Third Parties that act as agents, consultants, and contractors to perform tasks on behalf of and under our instructions. For example, DeliverySlip may store such Personal Data in the facilities operated by Third Parties. Such Third Parties must agree to use such Personal Data only for the purposes for which they have been engaged by DeliverySlip and they must either:

  • comply with the Privacy Shield principles or another mechanism permitted by the applicable EU & Swiss data protection law(s) for transfers and processing of Personal Data;
  • or agree to provide adequate protections for the Personal Data that are no less protective than those set out in this Policy;

DeliverySlip also may disclose Personal Data for other purposes or to other Third Parties when a Data Subject has consented to or requested such disclosure. Please be aware that DeliverySlip may be required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements. DeliverySlip is liable for appropriate onward transfers of personal data to third parties.

Access/Choice

Pursuant to the Privacy Shield Frameworks, EU and Swiss individuals have the right to obtain our confirmation of whether we maintain personal information relating to you in the United States. Upon request, we will provide you with access to the personal information that we hold about you. You may also may correct, amend, or delete the personal information we hold about you. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data transferred to the United States under Privacy Shield, should direct their query to privacyofficer@deliveryslip.com. If requested to remove data, we will respond within a reasonable timeframe.
We will provide an individual opt-out or opt-in choice before we share your data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. To request to limit the use and disclosure of your personal information, please submit a written request to privacyofficer@deliveryslip.com.

Cookies & Similar Technologies

DeliverySlip uses cookies (small text files placed on your device) and similar technologies to provide our websites and online services and to help collect data. The text in a cookie often consists of a string of numbers and letters that uniquely identifies your computer, but it can contain other information as well.

Our Use of Cookies and Similar Technologies

DeliverySlip uses cookies and similar technologies for several purposes, depending on the product, including:

  • Storing your Preferences and Settings. Settings that enable our products to operate correctly or that maintain your preferences over time may be stored on your device.
  • Sign-in and Authentication. When you sign into a service using your DeliverySlip credentials, we store a unique ID number, and the time you signed in, in an encrypted cookie on your device. This cookie allows you to move from page to page within the site without having to sign in again on each page.
  • Analytics. To provide our products, we use cookies and other identifiers to gather usage and performance data. For example, we use cookies to count the number of unique visitors to a web page or service and to develop other statistics about the operations of our products.

Security of Personal Data

DeliverySlip is committed to protecting the security of your personal data. We use a variety of security technologies and procedures to help protect your personal data from unauthorized access, use or disclosure. For example, we store the personal data you provide on computer systems that have limited access and are in controlled facilities. When we transmit any data (such as messages, attachments, etc.) over the Internet, we protect it using HTTPS encryption.

Where We Store and Process Personal Data

Personal data collected by DeliverySlip may be stored and processed in your region, in the United States or in any other country where DeliverySlip or its affiliates, subsidiaries or service providers maintain facilities. DeliverySlip maintains its services in the United States, Canada, and United Kingdom. Typically, the primary storage location is in the customer’s region or in the United States, often with a backup to a data center in another region. The storage location(s) are chosen to operate efficiently, to improve performance, and to create redundancies to protect the data in the event of an outage or other problem. We take steps to ensure that the data we collect under this privacy statement is processed per the provisions of this statement and the requirements of applicable law wherever the data is located.

Our Retention of Personal Data

DeliverySlip retains personal data for as long as necessary to provide the products and fulfill the transactions you have requested, or for other essential purposes such as complying with our legal obligations, resolving disputes, and enforcing our agreements. Because these needs can vary for different data types in the context of different products, actual retention periods can vary significantly. The criteria used to determine the retention periods include:

  • How long is the personal data needed to provide the products and operate our business? This includes such things as maintaining and improving the performance of those products, keeping our systems secure, and maintaining appropriate business and financial records. This is the general rule that establishes the baseline for most data retention periods.
  • Do customers provide, create, or maintain the data with the expectation we will retain it until they affirmatively remove it? Examples include a document you store in in your inbox. In such cases, we maintain the data until you actively delete it or until retention policy settings are fulfilled.
  • Has the Customer provided consent for a longer retention period? If so, we will retain data in accordance with that consent.
  • Is DeliverySlip subject to a legal, contractual, or similar obligation to retain the data? Examples can include mandatory data retention laws in the applicable jurisdiction, government orders to preserve data relevant to an investigation, or data that must be retained for the purposes of litigation.

Changes to This Privacy Statement

We will update this privacy statement when necessary to reflect customer feedback and changes in our products. When we post changes to this statement, we will revise the “last updated” date at the top of the statement. If there are material changes to the statement or in how DeliverySlip will use your personal data, we will notify you either by prominently posting a notice of such changes before they take effect or by directly sending you a notification. We encourage you to periodically review this privacy statement to learn how DeliverySlip is protecting your information.

How to Contact Us

If you have any concerns, technical or support questions, please submit an email to DeliverySlip Support.

 

Enforcement and Dispute Resolution

In compliance with the Privacy Shield Principles, DeliverySlip commits to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to Privacy Shield. European Union and Swiss individuals with Privacy Shield inquiries or complaints should first contact DeliverySlip at:  DeliverySlip Support

Complaints can also be submitted to:

DeliverySlip, Inc.
c/o Privacy Officer
915 Broadway St. #109
Vancouver, WA 98660
Phone:  877-404-9964 x7001
Email: privacyofficer@deliveryslip.com

DeliverySlip has further committed to refer unresolved privacy complaints under the Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers for more information and to file a complaint. This service is provided free of charge to you.

If your Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms.  See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction

Other Important Privacy Information

Below you will find additional privacy information you may find important.

GDPR Privacy Rights

DeliverySlip adheres to applicable data protection laws in the European Economic Area, which if applicable includes the following rights:

  • If the processing of personal data is based on your consent, you have a right to withdraw consent at any time for future processing by asking DeliverySlip to disable your account.
  • You have a right to request from us, a “data controller” as defined in the law, access to and rectification of your personal data;
  • You have a right to object to the processing of your personal data; and
  • You have a right to lodge a complaint with a data protection authority.
  • You may also have the right to make a GDPR complaint to the relevant Supervisory Authority. A list of Supervisory Authorities is available here:  http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm.  If you need further assistance regarding your rights, please contact us using the contact information provided below and we will consider your request in accordance with applicable law. In some cases, our ability to uphold these rights for you may depend upon our obligations to process personal information for security, safety, fraud prevention reasons, compliance with regulatory or legal requirements, or because processing is necessary to deliver the services you have requested. Where this is the case, we will inform you of specific details in response to your request.

As applicable under French law, you can also send specific instructions to us regarding the use of your personal data after your death.

When we process personal data about you, we do so with your consent and/or as necessary to provide the products you use, operate our business, meet our contractual and legal obligations, protect the security of our systems and our customers, or fulfill other legitimate interests of DeliverySlip as described in the “How We Use Personal Data” and “Reasons We Share Personal Data” sections above. When we transfer personal data from the European Economic Area, we do so based on a variety of legal mechanisms, as described in “Where We Store and Process Personal Data” below.

Product-specific details

Client Applications

DeliverySlip Client Applications are a collection of applications used to send, receive, review and manage messages and content in the DeliverySlip ecosystem. These applications include:

  • DeliverySlip Web Application,
  • DeliverySlip App for Android,
  • DeliverySlip App for iOS,
  • DeliverySlip Add-In for Office 365,
  • DeliverySlip Extension for Chrome,
  • DeliverySlip Outlook Add-In,
  • DeliverySlip Application for Mac,
  • DeliverySlip App for Windows 10,
  • DeliverySlip App for G Suite,
  • among others.

The DeliverySlip Client Applications will use personal information in the form of user credentials, message content and attachments to fulfill expected behavior. Additionally, the Client Application will submit user information to the DeliverySlip service that reflects interaction with messages, attachments and e-signatures and other such auditable items.

Accessing Content from Third Party Providers

To enhance user experience, some DeliverySlip Client Applications provide integration capabilities with Google G Suite™ and Microsoft Office 365™.

  • Email: Access to read, send, and delete the user’s email. This way, we can integrate a user’s traditional emails and secure messages into a single list for a seamless email management experience.
  • Calendar: Read-Only access to a user’s Calendar data and integrate it with their secure calendar. This allows them to manage all their calendar information from one unified platform.
  • Files: Access to and ability to download files in a user’s storage such as Google Drive or Microsoft OneDrive
  • Contacts: Read-Only access to a user’s contact list and integrate that list with their secure contact list. That way, users have access to all their contacts, regardless of platform, in a unified list.
  • User Information: Access to based user information is needed for display of logged-in user’s email address
  • Labels/Folders: Access to a system email label or folder system with DeliverySlip’s secure asset label system. The result is a unified system for label and folder management that will not interfere with the user’s existing email label structure.

How would you like to hear from us?