If you have questions about this or any Táve policy, please contact us at any time.
Táve participates in and has self-certified compliance with the Swiss-U.S. and EU-U.S. Privacy Shield Frameworks. Táve is committed to subjecting all personal data received from European Union (EU) member countries, in reliance on the Privacy Shield Frameworks, to the Framework’s applicable Principles. To learn more about the Privacy Shield Frameworks, visit the U.S. Department of Commerce’s Privacy Shield website. If there is any conflict between the Privacy Shield principles and this Policy, the principles will govern.
With respect to personal data received or transferred pursuant to the Privacy Shield Frameworks, Táve is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission.
Pursuant to Article 27 of Europe’s General Data Protection Regulation (GDPR), Táve has appointed European Data Protection Office (EDPO) as its GDPR representative in the EU. You can contact EDPO regarding matters pertaining to the GDPR by sending an email to email@example.com, using EDPO’s online request form, or writing to EDPO at Avenue Huart Hamoir 71, 1030 Brussels, Belgium.
If you are a California resident, you may have the following rights:
We do not sell your personal information.
In order to protect your personal information from unauthorized access or deletion, we may require you to verify your login credentials before you can submit a rights request. If you do not have an account with us, or if we suspect that your account has been compromised, we may ask you to provide additional personal information for verification. If we are subsequently unable to confirm your identity, we may refuse your rights request.
In addition, there may be information we will not return in response to your request, such as information that could affect the privacy of others or violate legal requirements. Likewise, there may be reasons why we cannot comply with your deletion request, such as our need to keep your personal information to comply with a legal obligation.
You may use an authorized agent to submit a rights request. If you do so, the agent must present signed written authorization to act on your behalf, and you may also be required to independently verify your identity or your legal authority or ownership of the personal information with us.
In addition, California Civil Code Section 1798.83 (the “Shine the Light Law”) permits users of our Services that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes.
To exercise any of the rights described in this section, please contact us at any time at firstname.lastname@example.org.
Táve is responsible for the processing and handling of personal data it receives under the Privacy Shield Framework, including the onward transfer liability provisions. Táve requires all sub-processors that receive personal information to comply with the Privacy Shield Principles and to execute a data processing agreement (DPA) compliant with the GDPR with Táve prior to acting as a sub-processor.
Táve currently uses the following sub-processors with personal data:
Táve uses the online services of an additional outside company to retrieve the weather (or climate trends) at a certain location at a given time, but we anonymize the coordinates to a 1.1km grid inside the EEA as to not provide personal information to the subcontractor:
In addition, you or your clients may submit personal information to payment gateways while using the Service. The personal information is sent directly from the visitor’s browser to the payment gateway, bypassing the Service. Táve uses tokens, similar to cookies, that are not personally identifiable to subsequently access and use the payment information provided to the payment gateway. It is dependent on you to select a GDPR-compliant payment gateway and to enter into any necessary sub-processor agreements directly with them prior to inviting your clients to pay using a third party payment gateway.
Táve has committed to refer unresolved privacy complaints under the Privacy Shield to an independent dispute resolution mechanism, established by JAMS and conducted in English. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed by Táve, please contact them for more information and to file a complaint:
In addition, if Táve does not resolve the complaint, you can submit the matter to arbitration to a single arbitrator of the Privacy Shield Panel. The remedies from this arbitration are limited to individual-specific, non-monetary equitable relief (such as access, correction, deletion, or return of the individual’s data in question) necessary to remedy the violation of the Principles only with respect to the individual.
In order to provide our full range of services, we may collect the following types of information:
When you sign up for a particular service that requires registration, we ask you to provide personal information. If we use this information in a manner different than the purpose for which it was collected, then we will ask for your consent prior to such use.
If we propose to use personal information for any purposes other than those described in this Policy, we will offer you an effective way to opt out of the use of personal information for those other purposes. We will not collect or use sensitive information for purposes other than those described in this Policy, unless we have obtained your prior consent.
You can decline to submit personal information to any of our services, in which case Táve may not be able to provide those services to you.
Táve only shares personal information with other companies or individuals outside of Táve in the following limited circumstances:
We may share with third parties certain pieces of aggregated, non-personal information, such as how many users clicked on a particular link or use certain features. Such information does not identify you individually.
We take appropriate security measures to protect against unauthorized access to or unauthorized alteration, disclosure or destruction of data. These include internal reviews of our data collection, storage and processing practices and security measures, as well as physical security measures to guard against unauthorized access to systems where we store personal data.
We restrict access to personal information to Táve employees, contractors and agents who need to know that information in order to operate, develop or improve our services. These individuals are bound by confidentiality obligations and may be subject to discipline, including termination and criminal prosecution, if they fail to meet these obligations.
Táve processes personal information only for the purposes for which it was collected and in accordance with this Policy. We review our data collection, storage and processing practices to ensure that we only collect, store and process the personal information needed to provide or improve our services. We take reasonable steps to ensure that the personal information we process is accurate, complete, and current, but we depend on our users to update or correct their personal information whenever necessary.
When you use the Service, we make good faith efforts to provide you with access to your personal information and either to correct this data if it is inaccurate or to delete such data at your request if it is not otherwise required to be retained by law or for legitimate business purposes. We ask individual users to identify themselves and the information requested to be accessed, corrected or removed before processing such requests, and we may decline to process requests that are unreasonably repetitive or systematic, require disproportionate technical effort, jeopardize the privacy of others, or would be extremely impractical (for instance, requests concerning information residing on backup storage media), or for which access is not otherwise required. In any case where we provide information access and correction, we perform this service free of charge, except if doing so would require a disproportionate effort.
Táve may delete the data of a customer who’s account is closed in accordance with the Terms of Service. Once the account has been deleted, some or all of it may reside for a period of time in backups, logs, server environments, correspondence or other locations.
Táve regularly reviews its compliance with this Policy. Please feel free to direct any questions or concerns regarding this Policy or Táve’s treatment of personal information by contacting us through this web site. When we receive formal written complaints at this address, it is Táve’s policy to contact the complaining user regarding his or her concerns. We will cooperate with the appropriate regulatory authorities, including local data protection authorities, to resolve any complaints regarding the transfer of personal data that cannot be resolved between Táve and an individual.
If you have questions about this or any Táve policy, please contact us at any time.