Táve | Privacy Policy

Effective Date: May 21, 2021

At Táve we recognize that privacy is important. This Privacy Policy (“Policy”) applies to all of our products, services, and websites (“Service”) offered by Tave Corporation (“Táve”).

If you have questions about this or any Táve policy, please contact us at any time.

GDPR

Pursuant to Article 27 of Europe’s General Data Protection Regulation (GDPR), Táve has appointed European Data Protection Office (EDPO) as its GDPR representative in the EU. You can contact EDPO regarding matters pertaining to the GDPR by sending an email to privacy@edpo.brussels, using EDPO’s online request form, or writing to EDPO at Avenue Huart Hamoir 71, 1030 Brussels, Belgium.

Your California Privacy Rights

If you are a California resident, you may have the following rights:

Access. You may have the right to access the categories of personal information we have collected about you, the sources from which we collected that information, the business or commercial purpose for collecting your personal information, the categories of third parties with whom we share your personal information, the specific pieces of personal information we have collected about you, and the categories of personal information we disclosed for a business purpose.
Deletion. You may have the right, under certain circumstances, to request that we delete the personal information you have provided to us.
Non-discrimination. You have the right to be free from discrimination related to your exercise of any of your California privacy rights.

We do not sell your personal information.

In order to protect your personal information from unauthorized access or deletion, we may require you to verify your login credentials before you can submit a rights request. If you do not have an account with us, or if we suspect that your account has been compromised, we may ask you to provide additional personal information for verification. If we are subsequently unable to confirm your identity, we may refuse your rights request.

In addition, there may be information we will not return in response to your request, such as information that could affect the privacy of others or violate legal requirements. Likewise, there may be reasons why we cannot comply with your deletion request, such as our need to keep your personal information to comply with a legal obligation.

You may use an authorized agent to submit a rights request. If you do so, the agent must present signed written authorization to act on your behalf, and you may also be required to independently verify your identity or your legal authority or ownership of the personal information with us.

In addition, California Civil Code Section 1798.83 (the “Shine the Light Law”) permits users of our Services that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes.

To exercise any of the rights described in this section, please contact us at any time at support@tave.com.

Sub-Processors and Onward Transfer

Táve is responsible for the processing and handling of personal data it receives. Táve requires all sub-processors that receive personal information to execute a data processing agreement (DPA) compliant with the GDPR with Táve prior to acting as a sub-processor.

Táve currently uses the following sub-processors with personal data:

Amazon Web Services, Inc.
Google LLC & Google Ireland Limited (Maps & ReCaptcha)
Twilio, Inc. & SendGrid, Inc.
Papertrail, Inc.
Intercom R&D Unlimited Company
PayPal (Europe) S.á.r.l. et Cie, S.C.A. (Braintree)
Square, Inc.
Stripe, Inc.
European Data Protection Office (EDPO)
Upvoty.com
Microsoft Corporation (Clarity)
Peaberry Software Inc. (Customer.io)

Táve uses the online services of an additional outside companies to retrieve the weather (or climate trends) at a certain location at a given time, but we anonymize the coordinates to a 1.1km grid inside the EEA as to not provide personal information to the subcontractor:

Visual Crossing Corporation

In addition, you or your clients may submit personal information to payment gateways, such as Square, Inc. or Stripe, Inc., while using the Service. The personal information is sent directly from the visitor’s browser to the payment gateway, bypassing the Service. Táve uses tokens, similar to cookies, that are not personally identifiable to subsequently access and use the payment information provided to the payment gateway. It is dependent on you to select a GDPR-compliant payment gateway, to enter into any necessary sub-processor agreements directly with them, and making the necessary Privacy Policy disclosures prior to inviting your clients to pay using a third party payment gateway.

Dispute Resolution

In compliance with the the Principals, Táve commits to resolve complaints about your privacy and our collection or use of your personal information. Individuals with inquiries or complaints regarding this privacy policy should first contact us.

Táve has committed to refer unresolved privacy complaints to an independent dispute resolution mechanism, established by JAMS and conducted in English. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed by Táve, please contact them for more information and to file a complaint:
https://www.jamsadr.com/submit/

Data Processing Addendum

Táve users can sign the Digital Processing Addendum here. When completed, please email it to privacy@tave.com to fully execute agreement.

Information we collect and how we use it:

In order to provide our full range of services, we may collect the following types of information:

Information you provide – When you sign up for a Táve account or other Táve service or promotion that requires registration, we ask you for personal information (such as your name, email address and an account password). You may also import or enter personal information about clients, leads, vendors, and other contacts.
Information your client provides – Certain Táve features allow you to collect personal information directly from your clients and others, such as using a New Lead form, publishing a questionnaire, receiving an online payment, or connecting Táve to a third-party email system.
Credit card information – While we store information relating to billing, such as your billing address and the last four digits of your credit card, we do not store your full credit card number. Instead, we request a special token from our merchant account provider that allows us to access, clone, modify, or void the transaction or monthly recurring billing subscription without needing to store or for our staff to later view your credit card information.
Táve cookies – When you visit Táve, we may send one or more cookies – a small file containing a string of characters – to your computer that uniquely identifies your browser. We use cookies to improve the quality of our service by storing user preferences and tracking user trends, such as how people use the system. Most browsers are initially set up to accept cookies, but you can reset your browser to refuse all cookies or to indicate when a cookie is being sent. However, most Táve features and services will not function properly if your cookies are disabled.
Log information – When you use Táve services, our servers automatically record information that your browser sends whenever you visit a website. These server logs may include information such as your web request, Internet Protocol address, browser type, browser language, the date and time of your request, one or more cookies that may uniquely identify your browser, or details of any error encountered by our servers.
User communications – When you send email or other communication to Táve, we may retain those communications in order to process your inquiries, respond to your requests and improve our services.
Affiliated sites – We offer some of our services in connection with other web sites. Personal information that you provide to those sites may be sent to Táve in order to deliver the service. We process such information in accordance with this Policy. The affiliated sites may have different privacy practices and we encourage you to read their privacy policies.
Google data – If you connect Google Accounts to your Táve account, our use, processing, and transfer of information received from Google Accounts will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Choices for personal information

When you sign up for a particular service that requires registration, we ask you to provide personal information. If we use this information in a manner different than the purpose for which it was collected, then we will ask for your consent prior to such use.

If we propose to use personal information for any purposes other than those described in this Policy, we will offer you an effective way to opt out of the use of personal information for those other purposes. We will not collect or use sensitive information for purposes other than those described in this Policy, unless we have obtained your prior consent.

You can decline to submit personal information to any of our services, in which case Táve may not be able to provide those services to you.

Information sharing

Táve only shares personal information with other companies or individuals outside of Táve in the following limited circumstances:

We have your consent. We require opt-in consent for the sharing of any sensitive personal information.
We provide such information to our subsidiaries, affiliated companies or other trusted businesses or persons for the purpose of processing personal information on our behalf. We require that these parties agree to process such information based on our instructions and in compliance with this Policy and any other appropriate confidentiality and security measures.
We have a good faith belief that access, use, preservation or disclosure of such information is reasonably necessary to (a) satisfy any applicable law, regulation, legal process or enforceable governmental request, (b) enforce applicable Terms of Service, including investigation of potential violations thereof, (c) detect, prevent, or otherwise address fraud, security or technical issues, or (d) protect against imminent harm to the rights, property or safety of Táve, its users or the public as required or permitted by law.

If Táve becomes involved in a merger, acquisition, or any form of sale of some or all of its assets, we will provide notice before personal information is transferred and becomes subject to a different privacy policy.

We may share with third parties certain pieces of aggregated, non-personal information, such as how many users clicked on a particular link or use certain features. Such information does not identify you individually.

Information security

We take appropriate security measures to protect against unauthorized access to or unauthorized alteration, disclosure or destruction of data. These include internal reviews of our data collection, storage and processing practices and security measures, as well as physical security measures to guard against unauthorized access to systems where we store personal data.

We restrict access to personal information to Táve employees, contractors and agents who need to know that information in order to operate, develop or improve our services. These individuals are bound by confidentiality obligations and may be subject to discipline, including termination and criminal prosecution, if they fail to meet these obligations.

Data integrity

Táve processes personal information only for the purposes for which it was collected and in accordance with this Policy. We review our data collection, storage and processing practices to ensure that we only collect, store and process the personal information needed to provide or improve our services. We take reasonable steps to ensure that the personal information we process is accurate, complete, and current, but we depend on our users to update or correct their personal information whenever necessary.

Accessing and updating personal information

When you use the Service, we make good faith efforts to provide you with access to your personal information and either to correct this data if it is inaccurate or to delete such data at your request if it is not otherwise required to be retained by law or for legitimate business purposes. We ask individual users to identify themselves and the information requested to be accessed, corrected or removed before processing such requests, and we may decline to process requests that are unreasonably repetitive or systematic, require disproportionate technical effort, jeopardize the privacy of others, or would be extremely impractical (for instance, requests concerning information residing on backup storage media), or for which access is not otherwise required. In any case where we provide information access and correction, we perform this service free of charge, except if doing so would require a disproportionate effort.

When your account is closed

Táve may delete the data of a customer who’s account is closed in accordance with the Terms of Service. Once the account has been deleted, some or all of it may reside for a period of time in backups, logs, server environments, correspondence or other locations.

Enforcement

Táve regularly reviews its compliance with this Policy. Please feel free to direct any questions or concerns regarding this Policy or Táve’s treatment of personal information by contacting us through this web site. When we receive formal written complaints at this address, it is Táve’s policy to contact the complaining user regarding his or her concerns. We will cooperate with the appropriate regulatory authorities, including local data protection authorities, to resolve any complaints regarding the transfer of personal data that cannot be resolved between Táve and an individual.

Changes to this policy

Please note that this Privacy Policy may change from time to time. We will not reduce your rights under this Policy without your explicit consent, and we expect most such changes will be minor. Regardless, we will post any Policy changes on this page and, if the changes are significant, we will provide a more prominent notice.

May 21, 2021: Privacy Shield References removed.