Privacy Policy

Privacy Policy

1. Privacy

Your privacy is very important to us. Accordingly, we have developed this Policy in order for you to understand how we collect, use, communicate and disclose personal information. The following is our privacy policy at Writeasst.

• Before or at the time of collecting personal information, we will identify the purposes for which information is being collected.

• We will collect and use personal information solely with the objective of fulfilling those purposes specified by us and for other compatible purposes, unless we obtain the consent of the individual concerned or as required by law.

• We will only retain personal information as long as necessary for the fulfillment of those purposes.

• We will collect personal information by lawful and fair means and, where appropriate, with the knowledge or consent of the individual concerned.

• Personal data should be relevant to the purposes for which it is to be used, and, to the extent necessary for those purposes, should be accurate, complete, and up-todate.

• We will protect personal information by reasonable security safeguards against loss or theft, as well as unauthorized access, disclosure, copying, use or modification.

• We will make readily available to customers information about our policies and practices relating to the management of personal information.

We are committed to conducting our business in accordance with these principles in order to ensure that the confidentiality of personal information is protected and maintained.

2. Which Personal Information Do We Gather From You?

When you gain access, sign up, participate in, create an account, or in other ways use our services, we can collect personal information about you. The personal information, we collect, depends on the circumstances and the services you use, but can consist of the following:

3. User Generated Personal Information

Your purchase references, i.e. if you react on ads or campaigns

• IP address

We can also gather other information about your use of our services through cookies and similar technologies.

4. Personal Information Gathered From Third Party

We may supplement the information we collect from you with information we receive from third parties and through your use of websites, products or services offered by other products in our company, Loudis impact s.r.o.. This can for example Include information we receive from third parties who provide our payment solutions in order to enable payment when using our Services.

5. Why Do We Gather Your Personal Information?

Our purpose

We process your personal information for the following purposes:

A) For the sake of our contractual relationship:

• To handle payment for your account and to deliver order and invoice information to you

• To keep track of your purchases in order to ensure that we can provide you with the services that you are entitled to

• To communicate with you about your subscription, account or purchase of our Services

• To inform you about changes in our Services

• To provide offers, news, information, products or services that you request from us

B) For legitimate purposes:

• To share your information with other products within Loudis impact s.r.o. when necessary for administrative purposes or for the deliverance of our Services to you

• To use IP address or other information required to block the malicious use of our Services for the purpose of protecting our Services or otherwise enforcing or using our Terms and Conditions

• To provide information in a merger and acquisition process for business and strategic management purposes.

• In order to provide you with offers, news, information, products or services that we believe may be of interest to you, including tailor-made advertising, it relate to your likely interests

• For analysis and statistical purposes

• To establish, exercise or defend legal requirements

C) We may also process your personal information if it is necessary for us to comply with a legal obligation or decision of an authority.

What legal basis in GDPR is the processing of your personal data based on?

• point (A) is required for the conclusion and fulfillment of our obligations following our agreement with you;

• point (B) is required for our legitimate interests in developing, managing, protecting and marketing our Services as well as from a business and strategic perspective;

• point (C) will only occur if we have received your consent to such treatment;

• point (D) is required to comply with legal obligations;

6. Is It Mandatory For You To Provide Your Personal Information

Personal information that we request from you and which is marked “mandatory” in any way, is required for us to provide our Services (for legal, contractual, administrative, technical or similar reasons ).

However, some of your personal information may only be required if you use specific features, enable optional parts of the Service, or request access to certain resources, offers, promotions, programs, or similar from us or our marketing partners.

You will be informed of this before collecting such personal information from you.

7. Who Can We Share Your Personal Information With?

Group transfers

We may disclose your personal information to other products within Loudis impact s.r.o., if necessary for administrative purposes or for the provision of our Services to you. If you have consented to this, we may also disclose your personal information to products within Loudis impact s.r.o. for marketing purposes. Products that access your personal information follow practices in accordance with this Privacy Policy.

The partners, sponsors and advertisers

We can share your personal information with our collaborators and sponsors. In addition, we may also share your personal information with our collaborators and advertisers, but only after you have requested it or assent that you have consented to it.

As described, we may also use aggregated information to monitor the use of our Services in order to help us improve and develop our Services, and we may make such aggregated information available to third parties, such as. content partners or advertisers. Aggregated information does not include personal information and can’t be linked to you.

Third parties for security or other legitimate reasons

We may also disclose your personal information to third parties if we reasonably have reason to believe that disclosure of such personal information is necessary:

• In order to comply with applicable legal obligations, including applications, court orders, government requests or search warranties, or otherwise required by law;

• To protect our rights or property, or the safety of our customers or employees;

• To protect against fraudulent, malicious, misuse, unauthorized or illegal use or subscription to our Services and to protect our network, Services, Devices and Users from such use;

• To promote or defend against complaints or legal claims in court, administrative cases and procedures and the like;

• To assess credit risk, for reporting purposes or to receive payment for our Services;

• As part of merger and aggregation, provided that the potential buyer or seller agrees to respect and process your personal information in accordance with our Privacy Policy;

• To external auditors and supervisors

8. Where Do We Process Your Personal Information?

The personal data we collect from you can be transferred to and stored at a destination outside the European Economic Area (“EEA”), including destinations not covered by a decision of the European Commission on an adequate level of protection for the processing of personal data. It can be shared with other products within Loudis impact s.r.o., handled by employees working for us or for one of our suppliers outside the EEA. Such staff may, for example, be involved in fulfilling your order, processing your payment information and performing our support services. We take all reasonable precautions to ensure that your personal information is processed safely and in accordance with this Privacy Policy and has taken appropriate safeguards to protect your personal information. For further information about or a copy of these safeguards, please contact us using the contact information found at the end of this Privacy Policy.

9. How Long Do We Store Your Personal Data?

We will keep your personal information only as long as we consider it necessary to fulfill our purposes as described above under “Why do we process your personal information”. Then we will delete or, in some cases, anonymize your personal information. We regularly check whether we have saved personal information to be deleted. Since we process your personal information for different purposes, the actual period of personal information will vary.

Typically, the following deletion deadlines apply:

Data type What is it? Deletion deadline
User data User data is information about, how you use the service and which orders you make. Until the account is deleted (is processed in 5 years)
Customer service data Customer service data is information that you provide when you are in contact with Writeasst customer service and voice recordings made for educational purposes. 3 years (call logs and text dialogs)

1 month (voice recordings)
Account information Account information is information about your account, such as username, password and purchase information made in the
Writeasst service.
Until deletion of account
Transaction data Transaction data is information about transactions made on your account in connection with purchases made in the
Writeasst service
10 years

10. How Do We Protect Your Personal Information?

Protecting your personal information is important to us. All personal information you provide us is stored on secure servers and we have strict procedures to protect against loss, abuse, unauthorized access, change, disclosure or destruction of your personal information. Any payment transactions will be encrypted by industry standard technology and subject to PCI security standards.

While we work hard to protect your personal data, we cannot guarantee that our security measures prevent any unauthorized attempts to access, use or disclose personal information. However, we maintain safety and incident plans, including plans for handling any breach of data security, in case of a physical or technical incident to handle this in a timely fashion and limit any adverse effect of such an incident.

11. How Can You Access Your Personal Information?

We understand that sometimes you may need additional information from us about your personal information and how they are processed or that you may want to update or correct the personal information you have given us. Therefore, you include the following rights:

Right to access your personal information:You are entitled to be verified by us if we process personal information about you and, if so, to access your personal information and data.

Right to get corrected personal information:If you find that personal information we treat about you is inaccurate, you have the right to make us correct such personally identifiable information.

Right to delete personal information (the right to be forgotten):Under certain circumstances, for example, if your personal information has been processed illegally or you have withdrawn your consent (if processing of your personal information is based on your consent), you have the right to request and delete your personal information from us.

Right to limit processing:under certain circumstances, i.e. If you contest the accuracy of your personal information or if you object to our legitimate purpose to process your personal information, you are entitled to request that we limit the processing of your personal information until a solution has been found.

Right to protest against processing:under certain circumstances, i.e. if you contest our legitimate interest in processing your personal information, you have the right to object, for reasons relating to your particular situation, against such processing.

Right to data portability: If your personal information is processed automatically based on your consent or in the performance of our contractual relationship, you have the right to request that we provide you with your personal information in a machine-readable format for transmission to another data controller.

Right to lodge a complaint with the supervisory authority: You have the right to file a complaint regarding our processing of your personal information to your supervisory authority.

If our processing of your personal information is based on your consent, you have the right to withdraw such consent at any time (however, it will not affect processing based on your consent before withdrawal) by contacting us or by updating the settings in the Service. (where relevant).

Please contact us using the contact details below to make a request for your rights. We will make commercially reasonable efforts to respond to your request within 30 days of receiving such a request. If we cannot comply with your request within 30 days, we will let you know about this, the reason for the delay and when we expect to be able to meet your request.

Also, be aware that you can change your contact preferences on the “Settings” page if you do not want to receive certain types of information from us. You can also do this at any time by contacting us at [email protected] or by calling +420 228 881 403.

12. Changes To This Privacy Policy

Our Privacy Policy may be amended from time to time. Therefore, be sure to review the latest version of this policy on a regular basis. We will disclose any changes to the Privacy Policy here, and if the changes are significant, we will provide you with a more prominent message such as email. If we change this Privacy Policy in a way that will affect how we use your personal information, we will advise you about the choices you may have as a result of these changes. We will also keep previous versions of this Privacy Policy in an archive for your review.

13. Personal Data Controller

Under the GDPR, Loudis impact s.r.o. is a data controller for the Personal Data collected from all categories of data subjects listed above, with the following exceptions: Loudis impact s.r.o. is a data processor of the User logs, administrative user logs, and some account settings information. In addition, Loudis impact s.r.o. is a data processor for any of the information provided by the User through the Website that transit. Where Loudis impact s.r.o. is a data processor, Loudis impact s.r.o. processes data on behalf of its the User under their data processing instructions.