|
| 1 | +## Privacy Policy of Comicslate |
| 2 | + |
| 3 | +*Last Updated: November 2, 2019* |
| 4 | + |
| 5 | +*This Application collects some Personal Data from its Users.* |
| 6 | + |
| 7 | +### Owner and Data Controller |
| 8 | + |
| 9 | +``` |
| 10 | +Katarina Sheremet |
| 11 | +Albisstrasse 8 |
| 12 | +8134 Adliswil |
| 13 | +Switzerland |
| 14 | +``` |
| 15 | + |
| 16 | +Owner contact email: [katarina@sheremet.ch](mailto:katarina@sheremet.ch). |
| 17 | + |
| 18 | +### Types of Data collected |
| 19 | + |
| 20 | +Among the types of Personal Data that this Application collects, by itself or |
| 21 | +through third parties, there are: Cookies; Usage Data; first name; last name; |
| 22 | +email address; profile picture. |
| 23 | + |
| 24 | +Complete details on each type of Personal Data collected are provided in the |
| 25 | +dedicated sections of this privacy policy or by specific explanation texts |
| 26 | +displayed prior to the Data collection. Personal Data may be freely provided |
| 27 | +by the User, or, in case of Usage Data, collected automatically when using this |
| 28 | +Application. |
| 29 | + |
| 30 | +Unless specified otherwise, all Data requested by this Application is mandatory |
| 31 | +and failure to provide this Data may make it impossible for this Application to |
| 32 | +provide its services. In cases where this Application specifically states that |
| 33 | +some Data is not mandatory, Users are free not to communicate this Data without |
| 34 | +consequences to the availability or the functioning of the Service. Users who |
| 35 | +are uncertain about which Personal Data is mandatory are welcome to contact the |
| 36 | +Owner. |
| 37 | + |
| 38 | +Any use of Cookies – or of other tracking tools – by this Application or by the |
| 39 | +owners of third-party services used by this Application serves the purpose of |
| 40 | +providing the Service required by the User, in addition to any other purposes |
| 41 | +described in the present document and in the Cookie Policy, if available. |
| 42 | + |
| 43 | +Users are responsible for any third-party Personal Data obtained, published or |
| 44 | +shared through this Application and confirm that they have the third party's |
| 45 | +consent to provide the Data to the Owner. |
| 46 | + |
| 47 | +### Mode and place of processing the Data |
| 48 | + |
| 49 | +#### Methods of processing |
| 50 | + |
| 51 | +The Owner takes appropriate security measures to prevent unauthorized access, |
| 52 | +disclosure, modification, or unauthorized destruction of the Data. |
| 53 | + |
| 54 | +The Data processing is carried out using computers and/or IT enabled tools, |
| 55 | +following organizational procedures and modes strictly related to the purposes |
| 56 | +indicated. In addition to the Owner, in some cases, the Data may be accessible |
| 57 | +to certain types of persons in charge, involved with the operation of this |
| 58 | +Application (administration, sales, marketing, legal, system administration) or |
| 59 | +external parties (such as third-party technical service providers, mail |
| 60 | +carriers, hosting providers, IT companies, communications agencies) appointed, |
| 61 | +if necessary, as Data Processors by the Owner. The updated list of these |
| 62 | +parties may be requested from the Owner at any time. |
| 63 | + |
| 64 | +#### Legal basis of processing |
| 65 | + |
| 66 | +The Owner may process Personal Data relating to Users if one of the following |
| 67 | +applies: |
| 68 | + |
| 69 | +* Users have given their consent for one or more specific purposes. Note: Under |
| 70 | + some legislations the Owner may be allowed to process Personal Data until the |
| 71 | + User objects to such processing (“opt-out”), without having to rely on |
| 72 | + consent or any other of the following legal bases. This, however, does not |
| 73 | + apply, whenever the processing of Personal Data is subject to European data |
| 74 | + protection law; |
| 75 | +* provision of Data is necessary for the performance of an agreement with the |
| 76 | + User and/or for any pre-contractual obligations thereof; |
| 77 | +* processing is necessary for compliance with a legal obligation to which the |
| 78 | + Owner is subject; |
| 79 | +* processing is related to a task that is carried out in the public interest or |
| 80 | + in the exercise of official authority vested in the Owner; |
| 81 | +* processing is necessary for the purposes of the legitimate interests pursued |
| 82 | + by the Owner or by a third party. |
| 83 | + |
| 84 | +In any case, the Owner will gladly help to clarify the specific legal basis |
| 85 | +that applies to the processing, and in particular whether the provision of |
| 86 | +Personal Data is a statutory or contractual requirement, or a requirement |
| 87 | +necessary to enter into a contract. |
| 88 | + |
| 89 | +#### Place |
| 90 | + |
| 91 | +The Data is processed at the Owner's operating offices and in any other places |
| 92 | +where the parties involved in the processing are located. |
| 93 | + |
| 94 | +Depending on the User's location, data transfers may involve transferring the |
| 95 | +User's Data to a country other than their own. To find out more about the place |
| 96 | +of processing of such transferred Data, Users can check the section containing |
| 97 | +details about the processing of Personal Data. |
| 98 | + |
| 99 | +Users are also entitled to learn about the legal basis of Data transfers to a |
| 100 | +country outside the European Union or to any international organization |
| 101 | +governed by public international law or set up by two or more countries, such |
| 102 | +as the UN, and about the security measures taken by the Owner to safeguard |
| 103 | +their Data. |
| 104 | + |
| 105 | +If any such transfer takes place, Users can find out more by checking the |
| 106 | +relevant sections of this document or inquire with the Owner using the |
| 107 | +information provided in the contact section. |
| 108 | + |
| 109 | +#### Retention time |
| 110 | + |
| 111 | +Personal Data shall be processed and stored for as long as required by the |
| 112 | +purpose they have been collected for. |
| 113 | + |
| 114 | +Therefore: |
| 115 | + |
| 116 | +* Personal Data collected for purposes related to the performance of a contract |
| 117 | + between the Owner and the User shall be retained until such contract has been |
| 118 | + fully performed. |
| 119 | +* Personal Data collected for the purposes of the Owner’s legitimate interests |
| 120 | + shall be retained as long as needed to fulfill such purposes. Users may find |
| 121 | + specific information regarding the legitimate interests pursued by the Owner |
| 122 | + within the relevant sections of this document or by contacting the Owner. |
| 123 | + |
| 124 | +The Owner may be allowed to retain Personal Data for a longer period whenever |
| 125 | +the User has given consent to such processing, as long as such consent is not |
| 126 | +withdrawn. Furthermore, the Owner may be obliged to retain Personal Data for a |
| 127 | +longer period whenever required to do so for the performance of a legal |
| 128 | +obligation or upon order of an authority. |
| 129 | + |
| 130 | +Once the retention period expires, Personal Data shall be deleted. Therefore, |
| 131 | +the right to access, the right to erasure, the right to rectification and the |
| 132 | +right to data portability cannot be enforced after expiration of the retention |
| 133 | +period. |
| 134 | + |
| 135 | +### The purposes of processing |
| 136 | + |
| 137 | +The Data concerning the User is collected to allow the Owner to provide its |
| 138 | +Services, as well as for the following purposes: Analytics, Managing contacts |
| 139 | +and sending messages and Infrastructure monitoring. |
| 140 | + |
| 141 | +Users can find further detailed information about such purposes of processing |
| 142 | +and about the specific Personal Data used for each purpose in the respective |
| 143 | +sections of this document. |
| 144 | + |
| 145 | +### Detailed information on the processing of Personal Data |
| 146 | + |
| 147 | +Personal Data is collected for the following purposes and using the following |
| 148 | +services: |
| 149 | + |
| 150 | +#### Analytics |
| 151 | + |
| 152 | +The services contained in this section enable the Owner to monitor and analyze |
| 153 | +web traffic and can be used to keep track of User behavior. |
| 154 | + |
| 155 | +**Google Analytics for Firebase (Google LLC)** |
| 156 | + |
| 157 | +Google Analytics for Firebase or Firebase Analytics is an analytics service |
| 158 | +provided by Google LLC. |
| 159 | + |
| 160 | +**In order to understand Google's use of Data**, consult [Google's partner |
| 161 | +policy](https://www.google.com/policies/privacy/partners/). |
| 162 | + |
| 163 | +Firebase Analytics may share Data with other tools provided by Firebase, such |
| 164 | +as Crash Reporting, Remote Config or Notifications. The User may check this |
| 165 | +privacy policy to find a detailed explanation about the other tools used by the |
| 166 | +Owner. This Application uses identifiers for mobile devices and technologies |
| 167 | +similar to cookies to run the Firebase Analytics service. Users may opt-out of |
| 168 | +certain Firebase features through applicable device settings, such as the |
| 169 | +device advertising settings for mobile phones or by following the instructions |
| 170 | +in other Firebase related sections of this privacy policy, if available. |
| 171 | + |
| 172 | +Personal Data collected: Cookies; Usage Data. |
| 173 | + |
| 174 | +Place of processing: United States – [Privacy |
| 175 | +Policy](https://policies.google.com/privacy). Privacy Shield participant. |
| 176 | + |
| 177 | +#### Managing contacts and sending messages |
| 178 | + |
| 179 | +This type of service makes it possible to manage a database of email contacts, |
| 180 | +phone contacts or any other contact information to communicate with the User. |
| 181 | + |
| 182 | +These services may also collect data concerning the date and time when the |
| 183 | +message was viewed by the User, as well as when the User interacted with it, |
| 184 | +such as by clicking on links included in the message. |
| 185 | + |
| 186 | +**Firebase Cloud Messaging (Google LLC)** |
| 187 | + |
| 188 | +Firebase Cloud Messaging is a message sending service provided by Google LLC. |
| 189 | +Firebase Cloud Messaging allows the Owner to send messages and notifications to |
| 190 | +Users across platforms such as Android, iOS, and the web. Messages can be sent |
| 191 | +to single devices, groups of devices, or specific topics or User segments. |
| 192 | + |
| 193 | +Personal Data collected: various types of Data as specified in the privacy |
| 194 | +policy of the service. |
| 195 | + |
| 196 | +Place of processing: United States – [Privacy |
| 197 | +Policy](https://policies.google.com/privacy). Privacy Shield participant. |
| 198 | + |
| 199 | +#### Infrastructure monitoring |
| 200 | + |
| 201 | +This type of service allows this Application to monitor the use and behavior of |
| 202 | +its components so its performance, operation, maintenance and troubleshooting |
| 203 | +can be improved. |
| 204 | + |
| 205 | +Which Personal Data are processed depends on the characteristics and mode of |
| 206 | +implementation of these services, whose function is to filter the activities of |
| 207 | +this Application. |
| 208 | + |
| 209 | +**Firebase Crashlytics (Google LLC)** |
| 210 | + |
| 211 | +Firebase Crashlytics is a monitoring service provided by Google LLC. |
| 212 | + |
| 213 | +Personal Data collected: various types of Data as specified in the privacy |
| 214 | +policy of the service. |
| 215 | + |
| 216 | +Place of processing: United States – [Privacy |
| 217 | +Policy](https://policies.google.com/privacy). Privacy Shield participant. |
| 218 | + |
| 219 | +### The rights of Users |
| 220 | + |
| 221 | +Users may exercise certain rights regarding their Data processed by the Owner. |
| 222 | + |
| 223 | +In particular, Users have the right to do the following: |
| 224 | + |
| 225 | +* **Withdraw their consent at any time**. Users have the right to withdraw |
| 226 | + consent where they have previously given their consent to the processing of |
| 227 | + their Personal Data. |
| 228 | +* **Object to processing of their Data**. Users have the right to object to the |
| 229 | + processing of their Data if the processing is carried out on a legal basis |
| 230 | + other than consent. Further details are provided in the dedicated section |
| 231 | + below. |
| 232 | +* **Access their Data**. Users have the right to learn if Data is being |
| 233 | + processed by the Owner, obtain disclosure regarding certain aspects of the |
| 234 | + processing and obtain a copy of the Data undergoing processing. |
| 235 | +* **Verify and seek rectification**. Users have the right to verify the |
| 236 | + accuracy of their Data and ask for it to be updated or corrected. |
| 237 | +* **Restrict the processing of their Data**. Users have the right, under |
| 238 | + certain circumstances, to restrict the processing of their Data. In this |
| 239 | + case, the Owner will not process their Data for any purpose other than |
| 240 | + storing it. |
| 241 | +* **Have their Personal Data deleted or otherwise removed**. Users have the |
| 242 | + right, under certain circumstances, to obtain the erasure of their Data from |
| 243 | + the Owner. |
| 244 | +* **Receive their Data and have it transferred to another controller**. Users |
| 245 | + have the right to receive their Data in a structured, commonly used and |
| 246 | + machine readable format and, if technically feasible, to have it transmitted |
| 247 | + to another controller without any hindrance. This provision is applicable |
| 248 | + provided that the Data is processed by automated means and that the |
| 249 | + processing is based on the User's consent, on a contract which the User is |
| 250 | + part of or on pre-contractual obligations thereof. |
| 251 | +* **Lodge a complaint**. Users have the right to bring a claim before their |
| 252 | + competent data protection authority. |
| 253 | + |
| 254 | +#### Details about the right to object to processing |
| 255 | + |
| 256 | +Where Personal Data is processed for a public interest, in the exercise of an |
| 257 | +official authority vested in the Owner or for the purposes of the legitimate |
| 258 | +interests pursued by the Owner, Users may object to such processing by |
| 259 | +providing a ground related to their particular situation to justify the |
| 260 | +objection. |
| 261 | + |
| 262 | +Users must know that, however, should their Personal Data be processed for |
| 263 | +direct marketing purposes, they can object to that processing at any time |
| 264 | +without providing any justification. To learn, whether the Owner is processing |
| 265 | +Personal Data for direct marketing purposes, Users may refer to the relevant |
| 266 | +sections of this document. |
| 267 | + |
| 268 | +#### How to exercise these rights |
| 269 | + |
| 270 | +Any requests to exercise User rights can be directed to the Owner through the |
| 271 | +contact details provided in this document. These requests can be exercised free |
| 272 | +of charge and will be addressed by the Owner as early as possible and always |
| 273 | +within one month. |
| 274 | + |
| 275 | +### Additional information about Data collection and processing |
| 276 | + |
| 277 | +#### Legal action |
| 278 | + |
| 279 | +The User's Personal Data may be used for legal purposes by the Owner in Court |
| 280 | +or in the stages leading to possible legal action arising from improper use of |
| 281 | +this Application or the related Services. |
| 282 | + |
| 283 | +The User declares to be aware that the Owner may be required to reveal personal |
| 284 | +data upon request of public authorities. |
| 285 | + |
| 286 | +#### Additional information about User's Personal Data |
| 287 | + |
| 288 | +In addition to the information contained in this privacy policy, this |
| 289 | +Application may provide the User with additional and contextual information |
| 290 | +concerning particular Services or the collection and processing of Personal |
| 291 | +Data upon request. |
| 292 | + |
| 293 | +#### System logs and maintenance |
| 294 | + |
| 295 | +For operation and maintenance purposes, this Application and any third-party |
| 296 | +services may collect files that record interaction with this Application |
| 297 | +(System logs) use other Personal Data (such as the IP Address) for this |
| 298 | +purpose. |
| 299 | + |
| 300 | +#### Information not contained in this policy |
| 301 | + |
| 302 | +More details concerning the collection or processing of Personal Data may be |
| 303 | +requested from the Owner at any time. Please see the contact information at the |
| 304 | +beginning of this document. |
| 305 | + |
| 306 | +#### How “Do Not Track” requests are handled |
| 307 | + |
| 308 | +This Application does not support “Do Not Track” requests. |
| 309 | + |
| 310 | +To determine whether any of the third-party services it uses honor the “Do Not |
| 311 | +Track” requests, please read their privacy policies. |
| 312 | + |
| 313 | +#### Changes to this privacy policy |
| 314 | + |
| 315 | +The Owner reserves the right to make changes to this privacy policy at any time |
| 316 | +by giving notice to its Users on this page and possibly within this Application |
| 317 | +and/or - as far as technically and legally feasible - sending a notice to Users |
| 318 | +via any contact information available to the Owner. It is strongly recommended |
| 319 | +to check this page often, referring to the date of the last modification listed |
| 320 | +at the bottom. |
| 321 | + |
| 322 | +Should the changes affect processing activities performed on the basis of the |
| 323 | +User’s consent, the Owner shall collect new consent from the User, where |
| 324 | +required. |
| 325 | + |
| 326 | +### Definitions and legal references |
| 327 | + |
| 328 | +#### Personal Data (or Data) |
| 329 | + |
| 330 | +Any information that directly, indirectly, or in connection with other |
| 331 | +information — including a personal identification number — allows for the |
| 332 | +identification or identifiability of a natural person. |
| 333 | + |
| 334 | +#### Usage Data |
| 335 | + |
| 336 | +Information collected automatically through this Application (or third-party |
| 337 | +services employed in this Application), which can include: the IP addresses or |
| 338 | +domain names of the computers utilized by the Users who use this Application, |
| 339 | +the URI addresses (Uniform Resource Identifier), the time of the request, the |
| 340 | +method utilized to submit the request to the server, the size of the file |
| 341 | +received in response, the numerical code indicating the status of the server's |
| 342 | +answer (successful outcome, error, etc.), the country of origin, the features |
| 343 | +of the browser and the operating system utilized by the User, the various time |
| 344 | +details per visit (e.g., the time spent on each page within the Application) |
| 345 | +and the details about the path followed within the Application with special |
| 346 | +reference to the sequence of pages visited, and other parameters about the |
| 347 | +device operating system and/or the User's IT environment. |
| 348 | + |
| 349 | +#### User |
| 350 | + |
| 351 | +The individual using this Application who, unless otherwise specified, |
| 352 | +coincides with the Data Subject. |
| 353 | + |
| 354 | +#### Data Subject |
| 355 | + |
| 356 | +The natural person to whom the Personal Data refers. |
| 357 | + |
| 358 | +#### Data Processor (or Data Supervisor) |
| 359 | + |
| 360 | +The natural or legal person, public authority, agency or other body which |
| 361 | +processes Personal Data on behalf of the Controller, as described in this |
| 362 | +privacy policy. |
| 363 | + |
| 364 | +#### Data Controller (or Owner) |
| 365 | + |
| 366 | +The natural or legal person, public authority, agency or other body which, |
| 367 | +alone or jointly with others, determines the purposes and means of the |
| 368 | +processing of Personal Data, including the security measures concerning the |
| 369 | +operation and use of this Application. The Data Controller, unless otherwise |
| 370 | +specified, is the Owner of this Application. |
| 371 | + |
| 372 | +#### This Application |
| 373 | + |
| 374 | +The means by which the Personal Data of the User is collected and processed. |
| 375 | + |
| 376 | +#### Service |
| 377 | + |
| 378 | +The service provided by this Application as described in the relative terms (if |
| 379 | +available) and on this site/application. |
| 380 | + |
| 381 | +#### European Union (or EU) |
| 382 | + |
| 383 | +Unless otherwise specified, all references made within this document to the |
| 384 | +European Union include all current member states to the European Union and the |
| 385 | +European Economic Area. |
| 386 | + |
| 387 | +#### Cookies |
| 388 | + |
| 389 | +Small sets of data stored in the User's device. |
| 390 | + |
| 391 | +#### Legal information |
| 392 | + |
| 393 | +This privacy statement has been prepared based on provisions of multiple |
| 394 | +legislations, including Art. 13/14 of Regulation (EU) 2016/679 (General Data |
| 395 | +Protection Regulation). |
| 396 | + |
| 397 | +This privacy policy relates solely to this Application, if not stated otherwise |
| 398 | +within this document. |
0 commit comments