×

STRUCTIONSITE PRIVACY POLICY

 

I Introduction and Objective

II Scope and Related Policies

1.0 Definitions

2.0 Summary

2.1 How we collect Personal Data

2.2 What Personal Data we collect

2.2.1  Personal Data Collected Automatically

2.2.1.1 Geographical Information

2.2.1.2  Cookies and Similar Technologies

2.2.1.3  Local Storage Objects

2.3  How we use the Personal Data we collect

2.3.1  Payment Information

2.4  How we Share Personal Data we Collect

2.4.1  Personal Information

2.4.2  Employees of  StructionSite

2.4.3  Service Providers

2.4.4  Third Parties

2.4.5 Social Media Features

2.4.6  Disclosing Information to Other Customers or Third Parties

2.4.7  Your Interaction with Third Parties

2.5 How we Store and Secure the Information we Collect

2.5.1 Breach Notification.

2.6   How we Transfer Personal Data we Collect Internationally

2.7 How to access and control your Personal Data

2.7.1  If you have an account with us

2.7.2  If you Reside in the European Economic Area or Switzerland

Right to access

Right of erasure

Right to object to Processing

Right to restrict Processing

Right to data portability

2.8 Other Important Privacy Information

2.8.1 Our Policy Toward Children

2.8.2 Changes to our Privacy Policy

2.8.3  Contacting Us

2.8.4  Notice to Authorized Users

 

I Introduction and Objective

 

This Privacy Policy was last updated on 04.17.2019.

The aim of this Privacy Policy (“Privacy Policy”) is to explain how we collect, use, protect and disclose your Personal Data when you use the Platform and Services.

This Privacy Policy, together with our Terms of Use, our Data Processing Agreement, and our Cookie Policy agreed to by you and incorporating this Privacy Policy, establishes the legal terms and conditions of the agreement between us governing the submission of the data and our use of it in performing the Services. All capitalized terms used in this Privacy Policy and not otherwise defined here will have the meanings assigned in the Terms of Use. By submitting the Personal Data to us, you agree to be bound by this Privacy Policy and you allow us to use your Customer Data in the manner specified in this Privacy Policy.

 

Business address

2201 Broadway, 4th Floor
Oakland, CA 94612
United States

 

Phone number

(415) 890-5144

Email:
privacy@structionsite.com

II Scope and Related Policies

List of our other privacy-related documents:

Terms of Service
Cookie Policy
Data Processing Agreement

1.0 Definitions

“Applicable Law” –  means any Law applicable from time to time to the performance of this Privacy Policy and related Terms of Use.

“Authorized Users” – your employees, agents, consultants or independent contractors who are authorized by you to use the Platform, the Services, and the documentation in accordance with the Terms of Use.

“Controller” means the natural or legal person, public authority, agency or other bodies which, alone or jointly with others, determines the purposes and means of the Processing of Personal Data

“EU Representative” – means a natural or legal person established in the European Union (“EU”) who, designated by the Controller or Processor in writing, represents the Controller or Processor with regard to their respective data Processing obligations.

“Personal Data” – is any information relating to an identified or identifiable natural person (“Data Subject”).

Personal Data Breach – is a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, Personal Data transmitted, stored or otherwise Processed.

“Processor” means a natural or legal person, public authority, agency or other body which Processes Personal Data on behalf of the Controller;

“Processing” – is any operation or set of operations which are performed on Personal Data or on sets of Personal Data, whether or not by automated means.

“Staff” means any natural person or legal entity employed or contracted by us (including, but not limited to employees, interns, contract employees, consultants and volunteers).

“Third Party” means a natural or legal person, public authority, agency or body other than the Data Subject, Controller, Processor and persons who, under the direct authority of the Controller or Processor, are authorized to Process Personal Data;

2.0 Summary

Your privacy is important to us, and so is being transparent about how we collect, use, and share your Personal Data and Customer Data.

We are responsible as a Controller and Processor.

As a Controller, we determine the purposes and means of the Processing of Personal Data while as a Processor we Processes Personal Data on your behalf.

This Privacy Policy is in relation to us as the Controller. The DPA further details our obligations as a Processor and applies to Processing of Personal Data belonging to persons residing in the European Economic Area (the “EEA”) or Switzerland.

This Privacy Policy is intended to help you understand:

 

2.1 How we collect Personal Data

2.2 What Personal Data we collect

2.3 How we use the Personal Data we collect

2.4 How we share Personal Data that we collect

2.5 How we store and secure the Personal Data we collect

2.6 How we transfer Personal Data we collect internationally

2.7 How to access and control your Personal Data

2.8 Other important privacy information

2.1 How we collect Personal Data

2.2 What Personal Data we collect

We may collect and store any Personal Data you or your Authorized Users provide to us.

This includes:

 

2.2.1  Personal Data Collected Automatically

We collect non-personally identifiable information automatically for the primary purpose of customizing the Platform and Services, understanding how they are used, and preventing misuse.

This includes:

2.2.1.1 Geographical Information

Some devices allow applications to access real-time location-based information:

GPS or sensor data from your device that may provide information on nearby wi-fi access points and cell towers. In addition, some of the information we collect from you, for example, IP address can sometimes be used to approximate a device’s location. Finally, some browsers share your location information (either the location registered with your account or gleaned from other geolocation methods) with sites you visit and we may obtain location information about you in this way. If you do not wish us to receive this information, please configure your devices and browsers not to share it. If you do not provide certain geographical information, however, you may not be able to use all aspects of the Platform or the Services.

2.2.1.2  Cookies and Similar Technologies

We also use “cookies” to collect information and improve the Services. A cookie is a small data file that we transfer to your device. We may use “persistent cookies” to recognize you for future access to the Platform. We may use “session ID cookies” to enable certain features of the Platform, to better understand how you interact with the Platform and to monitor aggregate usage and web traffic routing on the Platform. You can instruct your browser, by changing its options, to stop accepting cookies or to prompt you before accepting a cookie from the websites you visit. If you do not accept cookies, however, you may not be able to use all aspects of the Platform or the Services. Visit our Cookie Policy for more information and detailed list of cookies we Process.

2.2.1.3  Local Storage Objects

We use Local Storage Objects such as HTML5 or Flash to store content information and preferences. Third parties with whom we partner to provide certain features on our site may use LSOs such as HTML 5 or Flash to collect and store information. Various browsers may offer their own management tools for removing HTML5 LSOs.

2.3  How we use the Personal Data we collect

We may use Personal Data that we collect about you to deliver the Services, and manage the Platform and our business. We only conduct these activities in a lawful manner. The lawful basis we rely on is detailed in the table below.

 

Lawful BasisExample Users
Lawful base: Contract

We need this information to provide you with the Services you are paying us for.

  • Manage your account and provide you with customer support
  • Enforce or exercise any rights in our Terms of Use
  • Process payment information
  • Perform functions as otherwise described to you at the time of collection
Lawful base: Legitimate Interest

We have a legitimate business interest to offer you the best service possible.

  • Perform research and analysis about your use of, or interest in, our products, services, or content, or products, services
  • Recommend product upgrades
  • Perform mobile application analytics
Lawful base: User’s Consent
  • Communicate with you by email, postal mail, telephone and/or mobile devices about products or services that may be of interest to you either from us or Third Parties.
  • Post user reviews on the Website.
  • Perform functions as otherwise described to you at the time of collection
Anonymised Data

Automatically collected non-personally identifiable information may be aggregated and disclosed without restriction.

 We may share aggregated, non-personally identifiable information publicly. For example, we may share information publicly to show trends about the general use of the Services with the press, in our marketing materials or with our business partners.

We may collate or connect non-personally identifiable information with your Personal Data, in which case the resulting personally identifiable information will be treated as Personal Data.

Other Disclosures

Lawful basis: Applicable Law, Vital Interest, Legitimate Interest

  • Protect the safety of any person from death or serious bodily injury.
  • Prevent fraud or abuse of us or our customers and Authorized Users.
  • Protect our property rights.
  • Enforce the Terms of Use, including investigation of potential violations we provide your information to a law enforcement agency as set forth above, we will remove encryption before providing it. If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction, but we will notify you (for example, via email and/or a prominent notice on the Website) of any change in control or use of your Personal Data or if either become subject to a different privacy policy. We will also notify you of choices you may have regarding the information.
  • We may disclose information that we collect when we have a good faith belief that disclosure is reasonably necessary

 

2.3.1  Payment Information

We use credit card and other Personal Data (such as IOS store, Stripe email addresses) you submit to us on the Platform, and other information that we collect, as required, to process payments you make through the Platform through our payment processor intermediaries. We do not store credit card or other payment method information. Our third-party payment processors have the sole and complete responsibility for the storage of credit card and payment information. We may also share Personal Data with our payment processor intermediaries for risk management and fraud prevention.

2.4  How we Share Personal Data we Collect

2.4.1  Personal Data

We do not share your Personal Data with others except as indicated in this Privacy Policy or with your explicit consent.

2.4.2  Staff of StructionSite

Our Staff having permanent or regular access to Personal Data undergo appropriate data protection training. All persons authorized to Process your information have committed themselves to confidentiality or are under an appropriate statutory obligation of confidentiality.

2.4.3  Service Providers

We may share information, including Personal Data, with third parties that perform certain services on our behalf. These services may include fulfilling orders, providing customer service and marketing assistance, performing business and sales analysis, ad tracking and analytics, supporting the Website functionality, and supporting surveys and other features offered through the Platform. We may also share your name, contact information and credit card information with our service providers who process payments. These service providers may have access to Personal Data needed to perform their functions but are not permitted to share or use such information for any other purposes and are not permitted to use the information in violation of this Privacy Policy.

 

2.4.4  Third Parties

The Website may include links to Third-Party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow Third Parties to collect or share data about you. We do not control these Third-Party websites and are not responsible for their privacy obligations.

Your interactions with Third Parties through the Platform and Services are governed by the privacy policies, if any, of those Third Parties. We are not responsible for what those Third Parties do with your information. So you should make sure you trust those Third Parties and that they have privacy policies acceptable to you.

When you click-through on Third-Party offers featured on the Platform, we may share Personal Data with the businesses with which we partner to offer you the applicable products or services. When you elect to engage in a particular merchant’s offer or program, you authorize us to provide your email address and other information to that Third Party. We may share your information with a Third-Party application or a Third-Party merchant services provider or other resellers with your consent, for example when you choose to access the Platform through such an application or are provided with access to the Platform through such a Third-Party merchant services firm.

When you use the Services to disclose information to Third Parties, we may share that information with those Third Parties as requested.

 

2.4.5 Social Media Features

The Platform may include, from time to time, social media features, such as Linkedin and Twitter buttons and widgets, such as “share” buttons or interactive mini-programs that run on our Platform. These features may collect your IP address, which page you are visiting on our Website, and may set a cookie to enable the feature to function properly. Social media features and widgets are either hosted by a Third Party or hosted directly on the Platform.

 

2.5 How We Store and Secure the Information We Collect

We use reasonable methods, consistent with industry practices, to protect the confidentiality of your information, including administrative, physical and technical methods. Information you submit to or receive from our Services is sent using an encrypted TLS (SSL) connection.

No method of transmission over the internet is completely secure and no method of protecting information is completely secure. Therefore we cannot and do not guarantee the security of your information.

To find out more about our security practices visit our security page.

 

2.5.1 Breach Notification

In the event that we become aware of a Personal Data Breach which has resulted or may result in the unauthorized access, use or disclosure of Personal Data belonging to you or your Authorized Users, we will promptly investigate the matter and notify you of such breach.

Such investigation will be without delay, consistent with

(1) legitimate needs of law enforcement;

(2) measures necessary to determine the scope of the breach;

(3) efforts to identify the individuals affected; and

(4) steps to restore the reasonable integrity of our Platform.

We are responsible for notifying you and, as applicable, any other parties of any security breach in accordance with Applicable Law.

 

2.6 How we Transfer Personal Data we Collect Internationally

Information collected from you may be stored and Processed in the EEA, Switzerland, the United States or any other country in which we or our service providers maintain facilities.

By using the Services, you agree to any such transfer of information outside of your country. Such countries may have laws which are different, and potentially not as protective, as the laws of your own country.

Whenever we share Personal Data originating in the EEA or Switzerland we will rely on suitable safeguards.

If you reside in the EEA, Switzerland or other regions with Law governing data collection and use, please note that you are agreeing to the transfer of your Personal Data to the United States and other jurisdictions in which we operate.

 

2.7 How to access and control your Personal Data

2.7.1  If you have an account with us

You have the ability to review and update your Personal Data online by logging into your account and editing your account profile. More information about how to contact us is provided below.

If you have an account with us, you also may close your account at any time through the Platform. After you close your account, you will not be able to sign in to the Platform or access any of your Personal Data. If you close your account, we may retain

Information stored in routine backups may also be retained for the period those backups are retained in the ordinary course of business.

You can choose not to provide us with certain information, but that may result in you being unable to use certain features of the Platform and Services because that information may be required in order for you to register as a customer, purchase Services, obtain customer support, or initiate other transactions.

You also will be given the opportunity, in any commercial email that we send to you, to opt-out of receiving such messages in the future. We may send you transactional and relationship emails, such as service announcements, administrative notices, and surveys, without offering you the opportunity to opt-out of receiving them. Please note that changing information in your account, or otherwise opting out of receipt of promotional email communications, will only affect future activities or communications from us. If we have already provided your information to a Third Party or a service provider before you have changed your preferences or updated your information, we will notify said Third Party or service provider.

Our mobile applications may also deliver notifications to your phone or mobile device. You can disable these notifications by visiting the personal profile page associated with your account, accessing the notification settings menu on your device, or by deleting the relevant application.

Most web browsers are set to accept cookies by default. If you prefer, you can usually choose to set your browser to remove or reject browser cookies. Please note that if you choose to remove or reject cookies, this could affect the availability and functionality of the Platform and Services.

 

2.7.2  If you Reside in the European Economic Area or Switzerland

If you reside in the EEA or Switzerland, you have the right to exercise additional rights available to you under Applicable Law, including:

Right to access

You reserve the right to obtain information regarding the Processing of your Personal Data and access to the Personal Data which we hold about you.

Right of erasure

You can request that we erase your Personal Data in certain circumstances. Please note, however, that we may need to retain certain information for record-keeping purposes, to complete transactions or to comply with our legal obligations, among other things.

Right to object to Processing

You have the right to request that we stop Processing your Personal Data and/or to stop sending you marketing communications.
Right to restrict Processing

You have the right to request that we restrict Processing of your Personal Data in certain circumstances, for example, where you believe that the Personal Data we hold about you is inaccurate or unlawfully held.

Right to data portability

Upon your request you will be provided with the Personal Data we hold about you in a structured, machine-readable and commonly used format.

If you would like to exercise any of the above rights, please contact our privacy support team (see our contact details in Section 2.9.3 below). We will consider your request in accordance with Applicable Law. To protect your privacy and security, we may take steps to verify your identity before complying with the request.

You also have the right to complain to a data protection authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority.

For additional information contact privacy@structionsite.com

2.8 Other Important Privacy Information

 

2.8.1 Our Policy Toward Children

The Services are not directed or available to persons under 18. We do not knowingly collect Personal Data from children under 18. If a parent or guardian becomes aware that his or her child has submitted Personal Data in violation of our policies and has provided us with Personal Data without their consent, he or she should contact us at privacy@StructionSite.com. If we become aware that a child under 18 has provided us with Personal Data, we will take steps to delete that Personal Data from our records, subject to any retention reasonably necessary to comply with our legal obligations, meet regulatory requirements, resolve disputes, prevent fraud and abuse or enforce the Terms of Use.

2.8.2 Changes to our Privacy Policy

We may make changes to this Privacy Policy from time to time. If this Privacy Policy is modified, we will update this page and the revision date.

2.8.3 Contacting Us

If you have any questions about this Privacy Policy, our privacy practices, your Personal Data, or anything relating to the Services, including requests that we unsubscribe you from communications, you may email us at: privacy@StructionSite.com.

Our EU Representative is Tom McNamara, ℅ Kimura Limited, 32 Pleasants Street, Dublin 8, Ireland.

2.8.4 Notice to Authorized Users

Our Services are intended for use by businesses that are our customers. Where the Services are made available to an Authorized User through our customer (e.g. an employer), our customer is the administrator of the Services and is responsible for the accounts and/or Services over which it has control. Authorized Users should direct data privacy questions to their administrators, as their use of the Services is subject to that business’s policies.