BLACKFIRE PRIVACY POLICY

Last Updated: June 14th, 2018

This privacy policy (“Privacy Policy”) applies to the Blackfire service ("Service") provided by Blackfire SAS (a company registered in France under company number RCS Nanterre 834 640 237) whose registered office is located at 92 boulevard Victor Hugo, 92110 Clichy, FRANCE (herein referred as "Blackfire", "we", "us", "our").

Blackfire is committed to safeguarding the personal data of Users and visitors of the Site (“Visitors”). This Privacy Policy is part of the Terms & Conditions. Each word defined in the https://blackfire.io/terms-of-use page has the same meaning in this document.

By using the Site, Users and Visitors agree to abide and be bound by this Privacy Policy, which may be modified or updated from time to time without notice, except for stipulations requiring Users’ consent. In this event the update will be displayed on the Site.

Processing of Users and Visitors personal data

Blackfire collects and processes Users and Visitors personal data in a fair and lawful manner and in respect of their rights. Blackfire is the entity responsible for processing Users and Visitors’ personal data.

Nature of personal data collected by Blackfire

Blackfire collects and processes data that Users voluntarily provide in order to access or use its Service and data related to Users and Visitors’ preferences and traffic. The purpose of this data processing is to provide Blackfire products and services and to send newsletters. The legal basis for the processing is the consent to Blackfire newsletters and also the performance of the contract with Users (or precontractual measures for Visitors) for the provision of Blackfire products and services.

Users need to open an Account and provide Blackfire with at least the following personally identifiable data to use the Services: Last name, first name, function, country, email.

Users may need to complete their profile with other personal data (such as their address, their bank details nor phone number) for billing purposes.

Blackfire may collect other personal data, such as IP addresses.

Blackfire will never collect nor process personal data pertaining to, directly or indirectly, race, health, sexual orientation, political, philosophical, or religious views or to special categories of Personal Data within the meaning of the GDPR relating to Users and Visitors.

Cookies

Blackfire may place "cookies" on Users and Visitors’ terminals. These small files may contain, for instance, personal data, traffic data and Users and Visitors preferences

The purposes of these cookies are to authenticate Users, record Users and Visitors’ visit and to restore their web pages when they connect with their usual terminal.

Cookies are mandatory to use the Site and consequently must be accepted by Users and Visitors.

Blackfire authorizes its partners to place cookies on Users and/or Visitors’ terminals to collect their data for marketing and statistical purposes:

  • Google Analytics provided by Google Inc. as a means of measuring audience reach;

  • Intercom to product-related notifications to Users, aiming at facilitating onboarding activities. Intercom may collect geographical positioning and name of the twitter account of Users. These data are not transferred to Blackfire;

  • Recurly to facilitate Users’ payment.

Users and Visitors may delete the cookies after their visit or configure their internet browser to prevent them.

If Users and Visitors disable cookies, however, they may not be able to use all portions of the Services or all functionalities of the Services.

The validity period of cookies is 13 months. A new prior consent will be requested by Blackfire after this period.

More details about our cookie policy: https://blackfire.io/cookie-policy.

Retention of Users’ personal data

Security

The personal data that Users communicate to Blackfire are hosted by Amazon Web Services (Ireland).

In accordance with the GDPR, Blackfire undertakes to take all necessary precautions to preserve the security of the Personal Data processed and in particular to prevent them from being distorted, damaged or communicated to unauthorized persons. Blackfire uses its best efforts to prevent any interference with Users personal data such as loss, diversion, intrusion, unauthorized disclosure, alteration, or destruction.

Term

Unless required by law, the personal data processed by Blackfire will be deleted three (3) months after the cancellation of Users Blackfire Account.

Cancellation of Blackfire Account

At any time Users may request that their Blackfire Account be cancelled, within the conditions and limitations stated in the Terms.

Communication from Blackfire

Blackfire may send emails to Users to the address associated with their Blackfire Account for technical or administrative purposes or to inform Users of the evolution of its Service. Blackfire shall not send Users commercial offers unrelated to Blackfire.

Blackfire will never send to Users commercial email if they refused to receive it.

Transfer of Users and Visitors’ personal data

Transfer to third parties

Blackfire undertakes not to share Users and Visitors’ personal data with or transfer them to third parties unless such sharing or transfer is to provide technical support (Amazon Web Services, Office365) or specific services, such as communicating with Users via live chat software or processing payment for purchases (such as Recurly, Quickbooks), necessary to the use of the Service, to analyze and report (such as Chartmogul, Google Analytics), or to send newsletters or generate leads (such as Intercom, Campaign Monitor, Hubspot).

Blackfire undertakes not to share Users and Visitors’ personal data with or transfer them to third parties for other purposes than mentioned above unless they have consented prior to said sharing or transfer. Blackfire will never share Users and Visitors’ personal data with third parties that do not guarantee an adequate protection.

Blackfire may provide Users personal Data if required by law or compelled by a court of law.

Transfer from Integration Partners

We may receive personal data about Users from companies ("Integrations Partners") that grant access to our Service by way of a co-branded or private-labeled website, and technical integrations. Integration Partners may supply us with Users personal data, such as name and e-mail and mailing address information, in order to help us establish an Account or fulfill orders.

Right to access, modify, and delete Users’ personal data

Pursuant to French and European law, Users have the right to freely access their data, rectify them, request their deletion, oppose to their treatment, and obtain the communication in a structured and readable format (except for legitimate cause). Users also have the right to lodge a claim with a supervisory authority and set guidelines for their digital will.

Users may exercise their rights by contacting Blackfire: privacy@blackfire.io. Users may also modify their personal data directly from their Blackfire Account.

Non-personally identifiable data: traffic

Traffic data are generated when Users and Visitors’ terminals connect to the internet and to the Site and are not sufficient alone to identify them. Blackfire may collect the following data: origin of the connection, type and version of Users and Visitors’ internet browser, duration of connection, etc. Such data may be used for statistical purposes to analyze the traffic and to improve the Site. Traffic data are always processed anonymously.