Privacy Policy of aqua cloud GmbH regarding the use of usecapture.io

With the service usecapture.io, aqua Cloud GmbH (“we”, “us”) offers a browser-based software solution (“Platform”) for the customer (“you”, “User”) to create screen-recorded videos and screenshots with technical details to perform testing and improve bug reporting. With the built-in annotation tools, customers can capture screenshots or videos, add shapes and tags and include a descriptive title. Capture creates a detailed bug report with information on history of actions, environment, cookies, and network transfers that can be downloaded or stored in the customer’s account on usecapture.io

Regarding the different functions of usecapture.io, a distinction must be drawn as follows:

(a) To the extent Users use usecapture.io (as a software tool) for the recording and storing their captures, they act for their own purposes and are thus the controller of personal data processed through usecapture.io. With regard to such data processing, we make reference to the privacy policy of the respective User.

(b) To the extent Users use usecapture.io to get access to shared records from another user’s account, the functions of usecapture.io are made available to them on behalf of the respective User.

(c) Furthermore, aqua Cloud GmbH processes data through usecapture.io for its own purposes, e.g. for services provided by aqua cloud GmbH directly to you, as a usecapture.io user. Therefore, to such extent, we are the controller of your personal data.

This privacy policy relates to the processing activities, which we carry out as a controller of your personal data as described in the preceding para. (c).

1. Name and contact Details of the Controller

With this privacy policy, we, aqua cloud GmbH, Scheidtweilerstr. 4, 50933 Cologne, Germany, would like to provide you with the information on how we process your personal data when you use the Platform as required pursuant to Art. 13, 14 GDPR.

You can also reach us at privacy@usecapture.io.

2. What information we collect about you

Personal data is any information about you or any other identified or identifiable natural person that you share with us or that is collected by us in other ways, including:

Registration Data: When you register with usecapture.io, you need to create a user account. As part of your registration, you must enter your name, contact details (e.g. address, telephone number, e-mail address), and set a personal password. We collect payment and billing information when you register for paid features of usecapture.io. In particular, we might require you to provide payment information, such as payment card details, which we collect via secure payment processing services.

Content Data: When you use usecapture.io, we collect and store content that you provide us with in the course you interaction with the Platform. This content includes any information you post, send, receive and/or share using the Platform’s features. In particular, we collect and store personal data on the content of a message you send to other Users using the Platform’s commenting feature, feedback you provide to us, files and links you upload.

Usage Data: We further automatically collect and store data on specifics of your usage of the Platform. This includes the projects you create or work on, features of usecapture.io you use, links you click on, the type, size and filenames of attachments you upload to usecapture.io. We also collect information about the teams and Users you collaborate with and the way you collaborate with them.

Server Log Data: We collect and temporarily store further data about your usage of the Platform as log files on our servers. This includes date and time of each visit, pages accessed and files requested, type and version of the web browser you are using, type and operating system of the device you are using, and your IP address.

3. Purposes of the processing, legal bases and storage period

We process the Registration Data in order to set up and manage your user account. Via your account, you can access (by means of your e-mail address and your freely chosen password) your personal settings and are able to view projects you have set up as a User or projects you are currently participating as they are shared with you. We process your login data to authenticate you when you log in and to respond to requests to reset your password. We further process your Registration Data to enforce the terms of use of usecapture.io and all rights and obligations associated therewith and to contact you in order to send you technical or legal notices, updates, security messages or other messages regarding the management of the user account.

The legal basis for the processing of your Registration Data is Art. 6 para. 1 lit. b) GDPR (performance of the contract with you on the basis of the Terms of Use of usecapture.io). If you do not provide us with the Registration Data, we will not be able to conclude this contract with you and cannot provide access to usecapture.io.

The pertaining personal data will be deleted if you deactivate your account or if you do not use your account for a period of twelve (12) months and do not react to a request to confirm the validity of your account.

We process your Content Data in order to provide you with all features the Platform has to offer. For example, we can only facilitate collaboration with regard to a project if we process the content you upload to the Platform to store it, process it and make it available to other Users that you want the content to be shared with. Furthermore, data will be processed for the reporting functions offered by the Platform and in order to enable you to use the messaging function on usecapture.io, we collect and store the content of the message you would like to send. We can only reply to your feedback if we process its content.

The legal basis for such processing of your Content Data is Art. 6 para. 1 lit. b) GDPR (performance of the contract with you on the basis of the Terms of Use of usecapture.io).

We process Content Data and Usage Data for research and development, in particular in order to correct defects, improve our services and develop new value-added-services.

We will pseudonomize such data and process it on an aggregate level in order to gain general insights on our Platform. The legal basis for the processing of the User Data is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest is based on our mission to offer a state-of-the-art online project platform and to help you to successfully collaborate for effective project implementation.

The pertaining personal data will remain stored until a deletion is requested.

The processing of Server Log Data is technically necessary for the provision of the platform (particularly for error analyses and the prevention of abusive or fraudulent behaviour) and to ensure system security.

The legal basis for the processing is Art. 6 para. 1 lit. f) GDPR. Our legitimate interest follows from the purposes of the processing listed above.

The pertaining personal data will remain stored for 30 days.

We obtain tracking analyses regarding your use of usecapture.io from:

– Google Analytics
– Amplitude
– Google Tag Manager
– Facebook
– HotJar
– Smartlook
– Zoho CRM
– Zoho SalesIQ
– Zoho Campaigns

The legal basis for such processing activities is your consent, Art. 6 para. 1 lit. a) GDPR. Please note that you are entitled to withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

The pertaining personal data will remain stored until 90 days.

Through usecapture.io you may subscribe to our direct marketing offers, in particular the usecapture.io newsletter, which is free of charge. In such case, we will process the personal data you provide us with and your Usage Data for direct marketing purposes. In such case, usecapture.io will contact you by email or push notification with personalized information regarding the project and other services. In this context, usecapture.io will also process data on your use of direct marketing information (e.g. click behaviour).

The legal basis for such processing activities is your consent, which you have provided us with upon subscribing, Art. 6 para. 1 lit. a) GDPR and our legitimate interests in marketing our and our customer’s products (Art. 6 para. 1 lit. f) GDPR, where applicable. Please note that you are entitled to withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

This data will be deleted by usecapture.io following your objection, respectively withdrawal of any consents given, or otherwise upon the end of your use at the latest, respectively it will only be stored in aggregated, anonymised form. To the extent necessary, usecapture.io will store the fact that you have objected in order to prevent you being contacted further.

4. Recipients

Amplitude Inc. (Amplitude Privacy Statements & GDPR Compliance)

We use Amplitude to track user actions on Login/Sign up pages and inside Platform to analyse the users’ interaction with the app, which helps us to improve overall user experience with usecapture.io.

The Amplitude platform does not require personally identifiable information or personal data to perform product analytics. Amplitude is ISO27001 certified. (Amplitude ISO 27001 Certification). Amplitude is an ISO 27001 certified organization and has elected to adopt the ISO 27001 standard as the baseline for security governance and our Information Security Management System (ISMS). Complying with ISO 27001 provides all of our customers with the assurance that we manage information security according to a “gold standard”.

Amplitude is SOC 2 Type 2 certified. (Amplitude Certifications)

Amplitude undergoes an annual SOC2 (Service Organization Control 2) Type 2 review by a qualified auditor, covering all the trust principles (Security, Confidentiality, and Availability) that apply to our operations. This ensures that our practices across all aspects of the business maintain security and confidentiality of customer data. All of our audit reports are made available to all of our customers under NDA.

Google Ireland Limited (Google Privacy Policy, Google Data Safety)

We use Google Analytics in conjunction with Google Tag Manager, and SmartLook provided by Google.

Necessary cookies for these analytics are only used if you consent to them on usecapture.io

Google Analytics which is a web analytics service. It tracks and reports website traffic such as session duration, pages per session, bounce rate etc. of individuals using the site, along with the information on the source of the traffic. It is integrated with Google Ads with which users can create and review online campaigns by tracking landing page quality and conversions (goals). Goals might include sales, lead generation, viewing a specific page, or downloading a particular file.

Google Analytics is implemented with Google Analytics Tracking Code, which is a snippet of JavaScript code that the website owner adds to every page of the website. The tracking code runs in the client browser when the client browses the page (if JavaScript is enabled in the browser) and collects visitor data and sends it to a Google data collection server as part of a request for a web beacon. The tracking code loads a larger JavaScript file from the Google web server and then sets variables with the user’s account number. The larger file (currently known as ga.js) was typically 40 kB as of May 2018. The file does not usually have to be loaded, however, due to browser caching. Assuming caching is enabled in the browser, it downloads ga.js only once at the start of the visit. Furthermore, as all websites that implement Google Analytics with the ga.js code use the same master file from Google, a browser that has previously visited any other website running Google Analytics will already have the file cached on their machine.

In addition to transmitting information to a Google server, the tracking code sets a first party cookie (If cookies are enabled in the browser) on each visitor’s computer. This cookie stores anonymous information called the ClientId. Google Analytics can be blocked by browsers, browser extensions, firewalls and other means.

Smartlook is a cloud- and mobile-based quantitative analytics solution that helps businesses of all sizes with user behavior and insights. Smartlook answers the ‘what’ and ‘why’ behind every user action. Primary features of the software include visitor recordings, event tracking, funnels and heatmaps. Smartlook provides the option of replaying video sessions to identify customers, see Javascript errors and share recordings within the team. It also features a visitor journey module, which helps users with app integration and recordings segmentation with right filters. Automated event tracking enables businesses to know how visitors perform certain tasks, and conversion funnels provide reports on leads.

HotJar (HotJar Privacy Statement)

We use Hotjar to track users’ interaction with the website on the different devices. Grounding on the collected information we can spot the bugs, pain points, performance issues and identify what draws their attention, where the engagement with the app is smooth and where the biggest drop rate is. By analyzing the gathered data, we can improve the overall user experience with the website.

The data is required for the improvement and analysis of our website. By anonymizing the data, this statistical collection is only used to improve our services. You can find more information in Hotjar’s privacy policy at https://www.hotjar.com/legal/policies/privacy.

Meta Platforms Ireland Limited (Privacy Policy)

We use Facebook Ads conversion tracking in conjunction with Facebook pixel.
Facebook Ads conversion tracking (Facebook pixel) is an analytics service provided by Meta Platforms Ireland Limited that connects data from the Meta advertising network with actions performed on this Website. The Facebook pixel tracks conversions that can be attributed to ads on Facebook, Instagram and Audience Network.

ZOHO Corporation B.V (Privacy Policy)

We use ZohoCRM in conjunction with Zoho SalesIQ and Zoho Campaign.

We use ZohoCRM as our customer relationship management platform. This service allows us to manage and track our interactions with customers and potential customers, including sales leads and customer support inquiries. By using ZohoCRM, we are able to improve our customer service and better understand the needs and preferences of our customers.

We use Zoho SalesIQ to provide live chat support on our website. This service allows us to engage with visitors to our site in real time, answer their questions, and provide assistance with any issues they may be experiencing. By using Zoho SalesIQ, we are able to provide a better customer experience and increase customer satisfaction.

We use Zoho Campaigns as our email marketing platform. This service allows us to create and send marketing emails to our subscribers, track the success of our campaigns, and manage our subscriber lists. By using Zoho Campaigns, we are able to communicate with our subscribers in a more effective and targeted way, and improve the effectiveness of our marketing efforts.

5. Links to websites/platforms of third parties

The Platform may contain links to other websites and services of third parties, e.g. to social media channels such as Facebook, Linkedin, Twitter or youtube. These third parties are exclusively responsible for the data processing on their websites/platforms. We refer to the privacy policies of the respective third party.

6. No Automated Decision Making

We do not include any feature with automated decision-making in the sense of Art. 22 GDPR.

7. Security

We take technical and organisational security measures to protect your personal data managed by usecapture.io against accidental or deliberate manipulation, loss, destruction or access by unauthorised persons. Our data processing and our security measures are improved on a constant basis according to the technical developments.

During the transfer of your personal data to usecapture.io it is encrypted with Secure Socket Layer (SSL). Personal data that is exchanged between you and usecapture.io or other participating enterprises is fundamentally transmitted via encrypted connections which meet the latest technical standards.

Our employees and our retained service providers are naturally obliged to maintain confidentiality.

8. Your rights to information, correction, blocking or deletion

Every natural person whose personal data is processed by us has, in principle (i.e. depending on the respective requirements), the following rights:

(a) Should you have questions regarding our processing of your personal data, we would be pleased to provide you at any time and at no charge with information on the data stored about you (Art. 15 GDPR).

(b) You have a right to the correction of incorrect data as well as completion of incomplete data (Art. 16 GDPR).

(c) You have a right to the blocking/limitation of the processing or to deletion of personal data concerning you which is no longer required or stored on grounds of legal obligations (Art. 17, 18 GDPR).

(d) You have a right to the transfer of the data in a structured, standard and machine-readable format, insofar as you have provided usecapture.io with the data on grounds of a consent or contract between usecapture.io and you (Art. 20 GDPR).

(e) You have the right to object at any time to the processing of your data for marketing purposes (cf. Section 3.8 above; Art. 21 para. 2 and 3 GDPR).

(f) You have the right to object to the processing of your personal data to the extent this is based on Art. 6 para. 1 lit. f) GDPR (legitimate interest), in which case we are only entitled to continue if we are able demonstrate compelling reasons in favor of such processing (Art. 21 para. 1 GDPR).

(g) Insofar as you have consented to a data processing, you can withdraw such consent at any time with effect for the future, i.e. the legality of the data processing remains unaffected until the date of the revocation. After a revocation of consent, you may no longer be able to use our services.

Please address your concerns in writing or by e-mail to the contact details mentioned in sections 1 and 10 of this privacy policy. Please note that we have to verify your identity to ensure that your personal data is not disclosed to unauthorised persons.

Furthermore, you are entitled to file a complaint with the competent data protection authority.

Data protection officer

You can contact our data protection officer at:

heyData GmbH
Martin Bastius
Schützenstraße 5
10117 Berlin
datenschutz@heydata.eu
https://www.heydata.eu
+49 (0) 89 41325320

Amendments

From time to time, this privacy policy may need an update. We therefore reserve the right to amend it at any time. When you revisit usecapture.io, you should therefore regularly check the privacy policy for updates.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.