Latest Update: January 2023
Welcome to designstripe! We’re happy to meet you.
Should you have any concerns or inquiries regarding the processing of your personal data, do not hesitate to reach out to us! You can e-mail us at email@example.com.
We collect personal data to offer our Services, to perform analytics, and to process job applications. Below is a table containing the categories of personal data that we collect, along with the purpose for collection.
Depending on the jurisdiction we are in, we use different legal bases to process your personal data. In Canada, we rely on your consent. If you are in the European Union, we rely on different legal basis to justify our processing of your personal data, such as consent, the performance of a contract and our legitimate interests. These legal bases may not be valid under all jurisdictions and are only indicative. Each time consent is the legal basis, you can withdraw your consent at any time.
This information is collected automatically by our Services to function effectively, to repair bugs, analyze web traffic, derive insights, or ensure the security of our Services.
We collect electronic data based on our legitimate interest to make our Services functional and secure.
Usage and Performance Data
We collect this information to understand the usage of our Services, whether there are bugs, and generally, to improve our Services.
Usage data do not allow us to determine your identity, and are generally provided as aggregated data or by reference to an anonymous identifier.
If you communicate with us by email, on social media, by using the form on our Website, or by any other means, we collect the personal data that you share with us, such as your email address and the content of your communication. If you communicate with us using social media, we will have access to your publicly available information.
We collect communication data based on consent.
We collect error-related data associated with their user, if their app crashes
We collect error-related data so that we can support users of our Services.
We collect this data to perform our contract with you.
When you make an account with us, we collect the following information:
We collect this information so you can create an account to use our Website and Application.
We collect this data based on consent.
Job Application Data
When you apply for a job with designstripe, we collect the following information:
We collect this information to evaluate your job application.
We collect this data based on consent.
You can login into our Services in one of two ways:
We require an email and password for you to login into the Services.
When you use a third-party service to login, your password and email are automatically pulled to allow you to login.
We collect this data based on consent.
We collect marketing data so that we can send you newsletters and marketing communications.
You can unsubscribe at any time directly in the emails or by contacting us.
We collect marketing data based on consent.
To process payments:
We require payment information to allow our payment processor Stripe to process payments. Stripe also uses your Identification Data that you provide with your Financial Information to conduct verifications to prevent fraud, money-laundering and other bad stuff! Stripe is certified PCI DSS Level 1.
We collect this data based to perform our contract with you.
Social Media Data
Publicly available information
If you follow us or interact with us on social media, we may process your personal data for marketing or advertising purposes, subject to applicable laws, including those on consent.
We collect this data based on our legitimate interests as part of our direct marketing strategy.
We collect essential, functional and analytics cookies. These are installed by us and third parties. We install essential cookies based on our legitimate interests, as essential cookies are required to provide you with the Services. However, we only install functional and analytics cookies based on your consent.
We collect cookies that classify in each of these categories:
Essential cookies are necessary to operate the core functions of our Services. These include login cookies, session ID cookies, language cookies as well as security cookies. We are not required to obtain your consent for these cookies.
Functional cookies are used to provide you with some functionalities, such as a live chat, and to remember preferences, consents and configurations.
Analytics cookies are used to generate aggregated statistical data about traffic and behaviour of Users when using our Services. For instance, we can determine how much time Users spend on a page, and how successful our advertising is.
Yes, designstripe uses Google Analytics to view key metrics such as how many visitors view the website, and peak hours of traffic. Google Analytics is Google’s analytical tool that helps us to understand how Users engage with our Services. It uses a set of cookies to collect information and report site usage statistics without allowing us to identify individual visitors. We also track paid ads on Google Analytics.
For more information on Google Analytics, including how to opt out from certain data collection, please visit https://tools.google.com/dlpage/gaoptout?hl=en.
Yes, we share your personal data with third parties for a number of reasons including: (1) to provide you with the Services, (2) to provide IT support, (3) to process payments, (4) to send emails and communicate with you, and (5) as required by the law. We can also share your personal data in the context of a merger and acquisition, as part of bankruptcy procedures or for other corporate requirements.
To be clear, we are not data brokers, and we do not sell your personal data to third parties.
In the table below, we provide more information on the third parties we share your personal data with, and provide their privacy policies by hyperlinks.
IT Service Providers
We use communication partners to send you emails, to manage our live chats, and to send other communications.
We share personal data with financial partners to complete payments.
For example, we use Stripe to process payments.
If we integrate our Platform with third parties’ applications, such as a payment platform, this may require the sharing of personal data with these third parties.
Law Enforcement and other authorities
We may receive requests by authorities to access your personal data . We will validate that the request is licit before responding. When possible, we will advise you. We will only share what is strictly required.
In the case of a merger or acquisition, sale of assets, corporate reorganization, bankruptcy filing, insolvency procedures or similar circumstances, your personal data would be considered our assets and property. In these circumstances, ownership of the personal data we collected may be transferred or we may have to share some of your personal data to conclude, negotiate or discuss with third parties. We will only share what we are required to share for these specific purposes.
We use in AWS, GCP, Auth0 & Mongo Atlas to store your personal data in the United States and Canada. Our service providers may process your personal data internationally, including in the United States, depending on where they are located.
If you are in the European Union, we are required to ensure that appropriate safeguards are in place prior for transferring your personal data out of the European Union. We do so through standard contractual clauses, as is the case for AWS, or through other safeguards when they are available.
We retain personal data for as long as necessary to provide you with the Services, to perform our marketing campaigns effectively or as required by applicable laws, whichever is longer. We use both persistent and session cookies. Session cookies are deleted once you close your browser, whereas persistent cookies remain active on your device for longer. For instance, Google Analytics cookies remain installed on your device for 2 years. This allows Google Analytics to track you for analytic purposes, as well as for marketing purposes, and to provide us with aggregated data on your behaviour.
We use Google Cloud Platform and AWS to host our Services which are certified by independent auditors based on several frameworks, such as SOC 1/ISAE 3402, SOC 2, ISO 27001, ISO 27017 and ISO 27018. Our payment processor, Stripe, is certified PCI DSS Level 1.
However, securing your personal data requires teamwork. You also need to do your part, such as by keeping your credentials confidential and using secure networks, especially when you make a payment.
The law provides you with rights over your personal data. Your rights vary depending on the laws that apply to your situation, and the specific circumstances of the request. designstripe acknowledges the right of individuals to access their personal data. Upon request to firstname.lastname@example.org, we will provide you with confirmation as to whether we are processing your personal data, and have the data communicated to you within a reasonable amount of time. Your rights differ depending on where you are located in the world.
In the European Union, you may also benefit from these additional rights:
If you would like to learn more about these rights, please click here for a more detailed explanation. All of these rights are subject to limitations within the law, so if we cannot comply, we will respond to you and let you know why.
If you want to exercise one of these rights and the situation allows for such exercise, you can contact us at email@example.com.
We will try to help you with your request free of charge. However, we may request that you pay a reasonable fee if you request a transcript, or a reproduction or wish for us to send a copy of your personal data, if the law allows us to do so. If we need to charge a fee to process your application, we will contact you before addressing your request.
For security reasons and to avoid any fraudulent request, we may require that you provide proof of identity with your request. We will not use such personal data for any other purposes.
We will respond to your request within thirty (30) days, unless agreed otherwise. If your request is denied, we will notify you in writing, and provide you with detailed motives and information on how to contest our decision.
If you are in the European Union, you can contact your local data protection authority. The list of data protection authorities can be found here.
The Office of the Privacy Commissioner of Canada drafted this FAQ to help you access your personal data when it is held by a business. You can also contact the Office of the Privacy Commissioner of Canada’s Information Center:
9:00 am to 4:00 pm EST
Office of the Privacy Commissioner
30 Victoria Street
You can also use this online form.
If you have any issue with how we process your personal data, or how we responded to your request, please let us know. We will do our best to improve our processes to make certain that it does not happen again. We will also provide you with additional information about our practices if you would like us to do so.
If you are still not satisfied, you can lodge a complaint with the Office of the Privacy Commissioner of Canada using this online form, or to your local privacy regulators, or if you are in the European Union, with your local data protection authority.