We collect the following categories of information:
When you sign up to become a user of the Service, you will be required to provide us with personal information about yourself, which may include your name, e-mail address and phone number (collectively, “Contact Information”). We do not collect any Contact Information from you when you use the Service or the Website unless you provide us with the Contact Information voluntarily. The Contact Information is used to provide the requested Service, and occasionally to contact users of our Service to notify them of our current and future products and features.
Address Book Information
When you access and use the Service, you will be asked to grant us the right to collect the data stored in the address book on the Device from which you are accessing and using the Service (the “Address Book Data”). If you consent, we will store the Address Book Data in hashed/anonymized form (i.e., in a manner in which we cannot read the data) and will use it only to provide you the Service.
When you use the Service to send and/or receive encrypted Messages, we may temporarily process and store your Message (in encrypted form), log and contact data, and other related information (collectively, the “Message Information”) in order to provide the Service to you. We do not read your encrypted Messages, and we delete your Messages as soon as they have been successfully read or, in the case of an unread message, after several days have elapsed.
If users wish to purchase a Subscription for any premium features we may offer from time to time, they will be required to provide certain information in addition to the information noted above. Such information may include a debit card number, credit card number, expiration date, bank account information, billing address, activation codes, and similar information. Such information is collectively called the “Billing Information.” Billing Information will be collected and processed by a third-party payment vendor acting as our agent (See, Onward Transfers to Third Parties). We do not directly obtain or process any Billing Information.
Like most organizations, we rely on automatic data collection technology (such as Google Analytics and Facebook Analytics) when you visit our Website or use our Service. These technologies may collect information on our behalf such as your IP address, Internet service provider, browser type, operating system and language, referring and exit pages and URLs, date and time, amount of time spent on particular pages, what sections of the Website you visit, number of links you click while on the Website, search terms, and other data. They may also collect information about your Device, including universally unique ID (“UUID”), MAC address, operating system and version (e.g., iOS, Android or Windows), carrier and country location, hardware and processor information (storage, chip speed, camera resolution, NFC enabled, and network type (WiFi, 2G, 3G, 4G). This information is collected automatically and anonymized. The third parties we currently work with are those listed below. These third parties may change from time to time, but in each case we will provide you with the links to view these organizations’ privacy policies and find out more about what data they hold about you, what they do with it, and how to opt-out from certain data collection. Please be advised that if you opt out of any service, you may not be able to use the full functionality of the Website, the App and Service.
In an ongoing effort to better understand our users and the Website, the App, and the Service, we might analyze your information in aggregate form to operate, maintain, manage, and improve the Website, the App and the Service. This aggregate information does not identify you personally. We may share this aggregate data with our affiliates, agents, and business partners. We may also disclose aggregated user statistics in order to describe our products and the Website to current and prospective business partners and to other third parties for other lawful purposes.
We do not currently transfer your personal information to a third party controller. In the future, we will not transfer your personal information to a third party controller without first providing you with information regarding the identity of such controller or the nature of such controller’s business, and obtaining your opt-in consent. If/when applicable, you will be able to grant such consent by contacting us at firstname.lastname@example.org.
We do not currently collect sensitive personal information from you. If we start collecting your sensitive personal information in the future, we will not disclose your sensitive personal information to any third party without first obtaining your opt-in consent. If/when applicable, you will be able to grant such consent by contacting us at email@example.com.
In each instance, please allow us a reasonable time to process your response.
We may be required to disclose personal information in response to lawful requests by public authorities, including for the purpose of meeting national security or law enforcement requirements. We may also disclose personal information to other third parties when compelled to do so by government authorities or required by law or regulation including, but not limited to, in response to court orders and subpoenas.
You may unsubscribe from marketing and non-transactional communications by clicking on the “unsubscribe” link located on the bottom of any Confide marketing email. We will use commercially reasonable efforts to process such requests in a timely manner. Users cannot opt out of receiving transactional e-mails related to their account.
We take commercially reasonable steps to protect the personal information from loss, misuse, and unauthorized access, disclosure, alteration, or destruction, taking into account the risks involved in processing and the nature of such data, and comply with applicable laws and regulations. Please understand, however, that no security system is impenetrable. We cannot guarantee the security of our databases, nor can we guarantee that the information you supply will not be intercepted while being transmitted to and from us over the Internet. In particular, e-mail sent to or from the Website and/or the App may not be secure, and you should therefore take special care in deciding what information you send to us via e-mail.
Our servers are located in the US. If you are located outside of the US, please be aware that any information provided to us, including personal information, will be transferred from your country of origin to the US. Except in the case of data transfers under the EU-US Privacy Shield and the U.S.-Swiss Safe Harbor Framework, your decision to provide such data to us, or allow us to collect such data through our Website, the App or the Service, constitutes your consent to this data transfer.
Confide is subject to the investigatory and enforcement powers of the Federal Trade Commission.
Confide has further committed to refer unresolved privacy complaints under the US-Swiss Safe Harbor to an independent dispute resolution mechanism operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/us/safe-harbor-complaints for more information and to file a complaint.
Pursuant to Section 1798.83 of the California Civil Code, residents of California have the right to obtain certain information about the types of personal information that companies with whom they have an established business relationship (and that are not otherwise exempt) have shared with third parties for direct marketing purposes during the preceding calendar year, including the names and addresses of those third parties, and examples of the types of services or products marketed by those third parties. If you wish to submit a request pursuant to Section 1798.83, please contact Confide via email at firstname.lastname@example.org. In addition, Confide does not monitor, recognize, or honor any opt-out or do not track mechanisms, including general web browser “Do Not Track” settings and/or signals.