We realize that you care how your information is processed and shared. We also believe it is important to you to know how we treat that information, and we appreciate your trust in us to do that carefully and sensibly.
GetResponse undertakes to process your personal information in accordance with all applicable privacy and data protection laws, regulations, frameworks and requirements (collectively, “Applicable Privacy Laws”). To the extent your Contacts are located outside of the United States, these may include (without limitation) provisions of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“General Data Protection Regulation”, “GDPR”), and Applicable Privacy Laws of the United States or other countries. For purposes of General Data Protection Regulation and similar EU member state frameworks, GetResponse is the “data controller” with respect to Customer personal data, and the “data processor” with respect to personal data of Contacts.
For purposes of each agreement between you and GetResponse, personal data and information include data that identify you as a specific individual: i.e. your name, email address, phone number, geographical address, and/or company name and company address. This information is used to complete the Account application process, process Customer information requests, verify the validity of such requests, and/or process payments solely for the Service that you have ordered.
GetResponse only collects personal data and information that you choose to provide voluntarily in connection with your subscribing to or otherwise using the Service. GetResponse will advise you regarding which information is required, and which information is not required.
When you visit the Website or use the Service, we receive and may collect two types of information: (1) Website Use Information (defined below) and cookies, and (2) personal information you knowingly choose to disclose, which is collected on an individual basis.
If you click on a link on the Website, it may redirect you to a third-party website, causing you to leave our Website. We are not responsible for the privacy practices of third-party sites, and we encourage you to read their privacy statements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
SPECIAL NOTE ABOUT CHILDREN
Websites and Service are not intended for children, especially children under age of 13. Children may use the Website only with the direct supervision of their parent or other legal guardian. GetResponse does not knowingly collect information about, or target children under age of 13 to use the Website.
Customer Data Processing
GetResponse collects personal information from Users who visit the Website or subscribe to the Service. When a Customer subscribes to our Service, we require: (i) username, (ii) password, (iii) email address, (iv) first and last name, (v) zip code, (vi) country, (vii) billing information such as billing address and credit card number, and (ix) tax id number. We may also ask Customers to provide additional personal information, such as (i) company name, (ii) title, (iii) education institution and (iv) other company details, and (v) personal details that the Customer may opt out of by not entering data when asked. We use the Customers' registration information for authentication purposes and provide access to the Service. We also use the email addresses provided to us in the subscription process to communicate with our Customers. From time to time, GetResponse may contact you via email to notify you of changes to its Service, scheduled maintenance, information about GetResponse and promotional material from GetResponse. The Customer is obliged to update the data provided in the subscription form as soon as any change in that data occurs. We will retain and use your information for as long as needed to provide you the Service, comply with our legal obligations, resolve disputes, and enforce our agreements. Provision of personal data in connection with your use of the Service is voluntary. Note, however, that the refusal to provide certain data may make it impossible for you to use all or part of the features of the Service.
Because our servers and operations are in the United States, the personal information and data that you provide to us (regarding you, your Contacts or otherwise) may be transferred to, collected, stored, or processed in the United States. We may also transfer that information or data to companies controlled by or under common Control with GetResponse, contractors or others, in the United States or elsewhere. In each case, we will do so only to the extent necessary to provide you the Service, comply with our legal obligations, resolve disputes, and enforce our agreements.
You expressly agree to indemnify, defend and hold harmless GetResponse from any and all losses, damages or liabilities, including but not limited to attorneys’ fees and related costs, that we incur as a result of or in connection with any breach of your commitments, obligations or representations hereunder.
Personal Data of Contacts
GetResponse recognizes the importance of respecting the privacy of Contacts who decide to entrust their information to our Customers, and we strive to safeguard the security of the information we receive about Contacts. GetResponse will never use that information to send any information other than as expressly provided by you, nor will we share it with or sell it to anyone else for such use.
Personal Data of EEA Contacts
Processing of personal data of Contacts located in the EEA may be outsourced by the Customer to GetResponse only where the Customer is the data controller (within the meaning of Article 4 item 7 of the GDPR) or where Customer processes personal data of Contacts on the basis of Article 28 of the GDPR.
GetResponse may process personal data of Contacts on instructions from the Customer within its capacity of data processor within the meaning of Article 4 item 8 of the GDPR. Processing of personal data of Contacts may be outsourced only to the extent necessary to ensure proper provision of the Service, and GetResponse will only delegate its responsibilities for processing personal data to entities from countries or sectors that ensure an adequate level of personal data protection.
Erasure of Processed Data
If you are our Customer, we store your Personal Data for the time during which you have an Account with our Service. When you deactivate your Account, we’ll store your Data for 60 days for the sole purpose of enabling you to reactivate the Account. During that time, we’ll only store your data without any other processing activities subject to our other obligations or rights arising from applicable laws or public authority orders. After that time, we’ll delete your Personal Data from the main database, without the possibility to recover it. In the next 120 days, your Personal Data will be subject to encryption and stored in backup copies only. The said 120-day period is required to delete the Personal Data completely due to the specifics of the backup copy operations.
We’ll store the Personal Data of our newsletter subscribers or persons who have agreed to receive marketing content from us until they resign.
After expiration of the periods described above, your Data will be erased, excluding the following data:
- email address,
- Service usage history,
- and information about expressed consents.
We’ll store this data only for as long as we need to handle complaints and manage claims related to the use of the Service, and for as long as is required by tax and accounting regulations.
Sharing Information Regarding the Customers and Contacts
We reserve the right to disclose such personal information as required by law and when we believe that disclosure is necessary to protect our rights and/or comply with a judicial proceeding, Court order, or legal process served on GetResponse.
In certain situations, GetResponse may be required to disclose personal data in response to valid subpoenas or lawful requests by public authorities, including to meet national security or law enforcement requirements. For information regarding our Subpoena Policy, please click here.
We use third parties as necessary to provide the Service, such as a credit card processing company to bill the Customer for goods and services. When you sign up for the Service we will share your information with third parties as necessary to provide the Service.
These third parties are prohibited from using your personal information for promotional purposes.
If GetResponse is involved in a merger, acquisition, or sale of all or a portion of its assets, that include your personal information, you will be notified via email and/or a prominent notice on the Website of any change in ownership or use of your personal information, as well as any choices you may have regarding your personal information.
Customer’s Account information, username, password and profile are password-protected so that Customers have secure access to enter and edit personal data. It is the Customers’ responsibility to protect the security of their passwords. Access to the Service is protected by a unique username and password that is known to the Customer only. GetResponse has designed internal security processes that encrypt the Customer's password to protect it from being divulged or accessed by anyone other than the Customer. Neither GetResponse employees nor any of its contractors is permitted to obtain or access your password. Neither GetResponse employees nor any of its contractors will ask you for your password via mail, email, telephone or in any other unsolicited manner.
Website Use Information
Our servers automatically collect Website Use Information, each time you visit the Website.
“Website Use Information” means and includes information ascertained or ascertainable by GetResponse regarding your usage of the Website, including (but not limited to) accessing domain names, operating systems in use (e.g. Macintosh, Windows), browsers (e.g. Mozilla Firefox, Internet Explorer) and version, the website which referred you to us, and other similar information. This information may be aggregated to measure the number of visits, average time spent on the Website, pages viewed, time and date of visits, and other similar information. We may use and disclose Website Use Information, for example, to measure the use of the Website, improve the content, explain the utility of the Website and services we provide, and to extend their functionality.
As is true of most Websites, we gather certain information automatically and store it in log files. This information includes browser type, referring/exit pages, operating system, date/time stamp, and clickstream data.
We use this information, in a form that does not identify individual Users, to analyse trends, to administer the Website, to track Users’ movements around the Website and to gather demographic information about our User base as a whole. We do not link this automatically-collected data to personal information.
Similar to other commercial websites, the technology called "cookies" may be used to provide you with tailored information. A cookie is a small piece of data that a website can send to your browser, which may then be stored on your hard drive, so we can recognize you when you return. You may be able to set your browser to notify you when you receive a cookie. Our cookies collect general information that enhances our ability to serve you and measure the utility of the Website. We do not link the information we store in cookies to any personal information you submit while on the Website.
Information we collect may be used to enhance your use of the Website, and to provide you with the Service, arrange the Website in the most customer friendly way, communicate special offers and featured items, and/or respond to your questions and suggestions.
We partner with a third party to either display advertising on our Website or to manage our advertising on other sites. Our third-party partners may use technologies such as cookies to gather information about your activities on this Website and other sites in order to provide you advertising based upon your browsing activities and interests. If you do not want information about your activities on the Website to be used to serve you interest-based ads on the Website, you may opt-out by clicking here. Please note this does not opt you out of being served ads. You will continue to receive generic ads.
When you accept to receive information about our services, promotions, newsletters, press releases, and/or new offers, we use your email address and any other information you give us to provide you with the information or other services, until you ask us to stop (using the 'unsubscribe' instructions provided with each email communication).
When you request information or other services from us, we use your email address and any other information you give us to provide you with the information or other services that you requested, until you ask us to stop (using the 'unsubscribe' instructions provided with each email, and/or on the site where you signed up, and/or as we otherwise provide), or until the information or service is no longer available.
We believe that keeping personal information secure is one of our most significant responsibilities.
We restrict access to personal information about you to those employees and others who need to know that information to assist us in our business, or to provide products or services to you. We safeguard personal information, according to established security standards and procedures, by maintaining physical, electronic, and procedural safeguards for such personal data.
When we request Customers to enter sensitive information, such as credit card number, it is encrypted and protected using SSL technology and processed through a reputable payment processor. While on the secure page, such as our order form, the lock icon at the bottom of web browsers, e.g. Mozilla Firefox or Microsoft Internet Explorer, becomes locked, as opposed to unlocked or open, when you are just 'surfing' to indicate that the information being entered during that session is encrypted.
All of our Customers' information, not just the sensitive information mentioned above, is restricted in our offices. Only employees who need the information to perform a specific job (e.g. our billing clerk or a Customer service representative) are personally granted access to sensitive information.
GetResponse stores its servers in a highly secure server environment, with surveillance and support to prevent unauthorized access and data security.
We cannot guarantee the security of your data while it is being transmitted over the Internet and through servers that are out of our control. We strive to protect your personal information but GetResponse cannot ensure or warrant the security of any information you transmit to the Website or Services. Any data transmissions you make over the Internet are done so at your own risk. Once we receive the data transmission, we make our best efforts to ensure its security and privacy on our systems.
Our blog is managed by a third-party application that may require you to register to post a comment. We do not have access or control of the information posted to the blog. You will need to contact or login into the third-party application if you want your personal information that was posted to the comments section removed. To learn how the third blog party application uses your information, please review their privacy statement.
Facebook Connect or another OpenID provider
You can log in to the Website using sign-in services such as Facebook Connect or an Open ID provider. These services will authenticate your identity and provide you the option to share certain personal information with us such as your name and email address to pre-populate our sign-up form. Services like Facebook Connect give you the option to post information about your activities on the Website to your profile page to share with others within your network.
Social Media Widgets
We post Customers’ testimonials/reviews on the Website which may contain personal information. We do obtain the Customer's consent via email prior to posting the testimonial/review to post their name along with their testimonial/review. If you wish to update or delete your testimonial, you can contact us using our feedback form.
View, Change or Remove Information
Upon request GetResponse will provide you with information about whether we hold any of your personal information. You may change or delete your profile information at any time by going to your profile page and clicking the 'My Account' option from the menu, and then updating the existing information. Please contact us using our feedback form if you need assistance in updating or reviewing your information. GetResponse will respond to you to review the information within 20 days.
If, however, we make material changes or GetResponse is going to use Users' personal information in a manner different from that stated at the time of collection we will notify Users via the Website prior to the change becoming effective. Users will have a choice as to whether or not we use their information in this different manner. However, if Users have opted out of all communication with the Website, or deleted their Account, then they will not be contacted, nor will their personal information be used in this new manner.
Information posted by Users in online blog updates, public forums, or online bulletin boards may be displayed on the Website.
"Effective Date": 11/06/2018