A. Yours and our responsibilities
Summary: This policy applies to all registered Azura users and also visitors of our platform. When handling the data of end-customers of Azura users, we act as a “data processor” and Azura merchants are responsible for ensuring their data is protected and handled in accordance to all applicable laws.
Who does this policy apply to?
-
If you are a Azura customer or subscriber, or just visiting our website, this policy applies to you.
-
For your customers who are just making a purchase of your goods through Azura, but are not registered users, we act as the “data processor” for you, the merchant: this means we only process their data to help us provide our service to you, or in accordance with your instructions, or as required by law. You are responsible for making sure that their personal data is treated in accordance with applicable data protection laws. That includes informing them how service providers (like us) collect and use data on your behalf.
Our responsibilities
If you are a registered Azura customer or a visitor to our website we act as the “data controller” of personal data. This means we determine how and why your data are processed.
Your responsibilities
-
Read this Privacy Policy
-
If you provide us with personal information about other people (i.e. if you are registering on behalf of someone else, or you are transmitting data from your customers), or if others give us your information, we will only use that information for the specific reason for which it was provided to us. By submitting the information, you confirm that you have the right to authorise us to process it on your behalf in accordance with this Privacy Policy.
B. When does Azura collect your data?
Summary: Azura collects your data in all of our interactions from the moment you visit our website. Some data is collected automatically, and some data is only collected with your consent.
With your consent we collect your data when:
-
You register for an account
-
You upload content to Azura using our Product Designer tool
-
You integrate Azura through API’s (Ours, 3rd party storefronts, website builders, etc….)
-
You publish products to 3rd party sales channels
-
We email each other
-
You contact our support and/or success team (we may also collect call audio, which we will disclose on the call);
-
When you connect with us on social media
-
You request a demo of Azura
-
You participate in a user research study
-
You opt-in to marketing messages
-
Enter a sweepstakes or contest, or register for a promotion;
-
Participate in our user referral program;
Automatically we collect your data when:
-
You browse any part of our website
-
You use Azura to create products
-
You read our help section
-
You order products from Azura
C. Categories of data collected
Summary: Azura collects different kinds of data and we process that data for different purposes.
Contact details and basic information
Your name, address, telephone number, email address…
Financial information
Your Paypal account email, credit/debit card details…
Data from your content and products
The products you have designed, the artwork you have uploaded…
Contractual Data
The sales you have made, your customers’ data, store name, order details…
Data that identifies you
Your IP address, login information, browser type and version, time zone setting, browser plug-in types, geolocation information about where you might be, operating system and version…
Data on how you use Azura
Your URL clickstreams (the path you take through our site), products/services viewed, page response times, download errors, how long you stay on our pages, what you do on those pages, how often, and other actions…
What about really sensitive data?
We don’t collect any “sensitive data” about you (like racial or ethnic origin, political opinions, religious/philosophical beliefs, trade union membership, genetic data, biometric data, health data, data about your sexual life or orientation, and offences or alleged offences).
What about children’s data?
Azura is a business-to-business service directed to and intended for use only by those who are 18 years of age or over. We do not target Azura at children, and we do not knowingly collect any personal data from any person under 16 years of age.
D. How and why we use your data
Summary: According to Data Protection Law, we can only process your data for specific purposes and only when we have a legal basis to do so. The reasons are outlined below.
Keeping Azura running
Managing your requests (like creating products, integrating sales channels, completing transactions and fulfilling orders), login and authentication, remembering your settings, processing payments, hosting and back-end infrastructure.
Legal basis for processing data: contract, legitimate interests
Improving Azura
Testing features, interacting with feedback platforms and questionnaires, managing landing pages, heat mapping our site, traffic optimization and data analysis and research, including profiling and the use of machine learning and other techniques over your data and in some cases using third parties to do this.
Legal basis for processing data: contract, legitimate interests
Customer support
Notifying you of any changes to our service, solving issues via live chat support, phone or email including any bug fixing.
Legal basis for for processing data: contract
Marketing purposes (with your consent)
Sending you emails and messages about new features, products and services, and content.
Legal basis for processing data: consent
E. What these legal bases mean
Consent:
You have given clear consent for us to process your information for a specific purpose.
You can withdraw your consent at any time by emailing privacy@azura.com or by navigating to your profile page and managing your data settings.
Contract:
Processing your data is necessary for a contract you have with us, or because we have asked you to take specific steps before entering into that contract.
Legitimate interests:
Processing your data is necessary for our legitimate interests or the legitimate interests of a third party, provided those interests are not outweighed by your rights and interests.
These legitimate interests are:
-
gaining insights from your behaviour on our website or in our app
-
delivering, developing and improving the Azura service
-
enabling us to enhance, customise or modify our services and communication
-
determining whether marketing campaigns are effective
-
enhancing data security
In each case, these legitimate interests are only valid if they are not outweighed by your rights and interests.
F. Your privacy rights and choices
Summary: When it comes to your data and privacy, you have a lot of control for what Azura can do. All of your data settings can be managed from your Azura account page, or by emailing us at privacy@azura.com. These include your rights to review, correct and delete your data.
Your rights
You can exercise your rights at any time by sending us an email at privacy@azura.com or by navigating to your Azura account page.
You have the right to access information we hold about you
This includes the right to ask us supplementary information about:
-
the categories of data we’re processing
-
the purposes of data processing
-
the categories of third parties to whom the data may be disclosed
-
how long the data will be stored (or the criteria used to determine that period)
-
your other rights regarding our use of your data
We will provide you with the information within one month of your request, unless doing so would adversely affect the rights and freedoms of other (e.g. another person’s confidentiality or intellectual property rights). We’ll tell you if we can’t meet your request for that reason.
You have a right to see what personal information has been shared with third parties.
California Civil Code Section § 1798.83 allows users of our Services that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. If you would like to make such a request, please send an email to privacy@azura.com.
You have the right to make us correct any inaccurate personal data about you
If after accessing your information, you believe that we have incorrect or inaccurate data, you can request us to change or correct it.
You can object to us using your data for profiling you or making automated decisions about you
We may use your data to determine whether we should let you know information that might be relevant to you (for example, tailoring emails to you based on your behaviour). Otherwise, the only circumstances in which we will do this is to provide the Azura service to you.
You have the right to port your data to another service
We will give you a copy of your data in CSV or JSON so that you can provide it to another service. If you ask us and it is technically possible, we will directly transfer the data to the other service for you. We will not do so to the extent that this involves disclosing data about any other individual.
You have the right to be ‘forgotten’ by us
You can do this by asking us to delete any personal data we hold about you, if it is no longer necessary for us to hold the data for purposes of your use of Azura. You have the right to lodge a complaint regarding our use of your data Please tell us first, so we have a chance to address your concerns. If we fail in this, EU residents can address any complaint to the relevant data authority from this list: http://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm
The US does not view privacy in the same way and has not established processes for lodging complaints for the type of data we are collecting. If you have a complaint about our use of your data, reach out to us at privacy@azura.com and we will address your concerns as best we can.
Your choices
You can choose not to provide us with personal data
If you choose to do this, you can continue to use the website and browse its pages, but we will not be able to process transactions or fulfill orders without personal data.
You can turn off cookies in your browser by changing its settings
You can block cookies by activating a setting on your browser allowing you to refuse cookies. You can also delete cookies through your browser settings. If you turn off cookies, you can continue to use the website and browse its pages, but Azura and certain services (like Zendesk) will not work effectively.
You can control certain third party collection and use of your information
Third parties may offer ways for you to choose not to have your information collected or used. You can opt out of receiving targeted ads from members of the Network Advertising Initiative (“NAI”) on the NAI’s website: https://www.networkadvertising.org/understanding-online-advertising/what-are-my-options/
To prevent Google Analytics from collecting or using your information, you may install the Google Analytics Opt-Out Browser Add-on; go to Google Analytics Opt-Out Browser Add-on.
To opt out of tracking by Mixpanel: https://mixpanel.com/optout/
To opt out of tracking by Hotjar: https://www.hotjar.com/legal/compliance/opt-out
To manage ads that you see on Google: https://support.google.com/ads/answer/2662922?hl=en
To manage ad settings on Facebook: https://www.facebook.com/adpreferences/?entry_product=ad_settings_screen
You can ask us not to use your data for marketing
We will inform you (before collecting your data) if we intend to use your data for marketing and if third parties are involved. You can opt out from marketing by emailing us at customercare@azura.com, or by navigating to your account page and managing your data settings.
G. How secure is the data we collect?
Summary: We do a lot of things to keep your data safe on our end, but you are also responsible for keeping your account information safe and secure. If you feel that your data has been breached, immediately change your password and get in touch with our support team.
We have physical, electronic, and managerial procedures to safeguard and secure the information we collect. For more information on our efforts to ensure your data is held in a secure manner, please contact us at privacy@azura.com
Our Infrastructure
Azura operates on servers and cloud components that comply with strict international standards. Access to infrastructure at Azura is securely controlled and available from specific locations only. This access is limited to specific employees only and protected by 2-factor authentication.
Data is stored in the US region by default on AWS/Azure servers and is continuously backed up. Our infrastructure’s data centres and cloud services from providers are protected by physical access controls, intrusion and fire detection systems and 24/7 professional security staff.
Document security
All documents and information are version controlled by Atlassian services by defaults, so there’s a permanent trail not only on the database level but also on the storage level.
Monitoring
We have continuous resource and infrastructure access monitoring in operation 24/7, 365 days a year. Any alerts generated by our monitoring system are sent to team members immediately and actioned. Azura uses both third parties and in-house scans for vulnerability testing and app protection (WAF).
Training and audits
Regular third party audits are conducted at Azura to ensure we use the latest technologies and best practices to protect data. All employees at Azura are trained in data security and are bound by strict confidentiality provisions.
And please remember:
-
You provide personal data at your own risk: unfortunately, no data transmission is guaranteed to be 100% secure
-
You are responsible for the security of your username and password: keep them secret and safe.
-
If you believe your privacy has been breached, please change your password as soon as possible and contact us immediately on customercare@azura.com or via Zendesk using the chat icon.
H. Where do we store the data?
The personal data we collect is processed at our offices in Texas and in any data processing facilities operated by the third parties identified below.
By submitting your personal data, you agree to this transfer, storing or processing by us. If we transfer or store your information outside the EEA in this way, we will take steps to ensure that your privacy rights continue to be protected as outlined in this Privacy Policy.
I. How long do we store your data?
We will archive and stop actively using any personal identifiable information about you within 6 months from the last time you used Azura. We will delete your personal data from our archives no later than 6 years from the last time you used Azura or upon your request.
J. Third parties who process your data
Summary: To effectively run Azura we need to partner with various third parties around the world. These include our print providers that work with us to offer and fulfill products and services and also tools like Google Apps and Zendesk that allow us to communicate and deliver our service to you. This section outlines who we work, for what purposes and where you can find more information about their privacy policies.
To deliver the best possible Azura experience we often have to partner with third parties to deliver services that we cannot. These include our print partners that we work with to offer products and fulfill orders, services that support our communications, both internal for our team and external when we communicate with you, tools that keep our web platform and API running, as well as services that allow us to study the use of our platform and learn how best to develop and design new features, messages and offers.
When we do this, sometimes it is necessary for us to share your data with them in order to get these services to work well. Your data is shared only when strictly necessary and according to the safeguards and good practices detailed in this Privacy Policy.
Here are the details of our main third-party service providers, the data being collected or shared and the reason sharing is necessary.
Infrastructure
Microsoft Corporation Privacy policy
-
Contact details
-
Data that identifies you
-
contractual data
-
data on how you use Azura
Microsoft Azure is an ever-expanding set of cloud services that helps us build, manage, and deploy Azura.
Analytics and Marketing
Google Analytics Privacy policy
-
How you use Azura
-
Data that identifies you
-
Cookies
Google Analytics is a web analytics service: we use it to track your use of the service, and prepare reports on user activity.
Google Adwords Privacy policy
-
Data that identifies you
-
Cookies
Google Adwords is a marketing tool that allows us to reach potential users and grow the Azura audience.
Facebook Inc. Privacy policy
-
Data that identifies you
-
Cookies
Facebook business tools offer a number of services including analytics and advertising that allow us to track your use of the service, prepare reports on user activity and grow Azura’s audience.
Mixpanel, Inc. Privacy policy
-
Data on how you use Azura
-
Data that identifies you
-
Cookies
This is a web analytics service: we use it to track your use of the service, and prepare reports on user activity.
Hotjar Ltd. Privacy policy
-
Data that identifies you
-
How you use Azura
-
Data from your content and products
-
Cookies
This is a web analytics service: we use it to track your use of the service, and prepare reports on user activity.
Unbounce Marketing Solutions Inc. Privacy policy
-
Data that identifies you
-
How you use Azura
-
Cookies
Integrations (by your request)
Shopify, Inc. Privacy policy
-
Contact details
-
Data that identifies you
-
Contractual data
-
Data from your content and products
This integration allows you to sell your products on Shopify and allows us to automate order fulfillment to your end customers.
Etsy, Inc. Privacy policy
-
Contact details
-
Data that identifies you
-
Contractual data
-
Data from your content and products
This integration allows you to sell your products on Etsy and allows us to automate order fulfillment to your end customers.
Bubblestorm Management (Pty) Ltd (WooCommerce.com) Privacy policy
-
Contact details
-
Data that identifies you
-
Contractual data
-
Data from your content and products
This integration allows you to sell your products on Woocommerce and allows us to automate order fulfillment to your end customers.
Google, Inc. Privacy policy
-
Data that identifies you
-
How you use Azura
-
Contact details
-
Data from your content and products
-
Cookies
This enables users to connect Google services like Google Drive, where images may be stored.
Communications and Research
Sendgrid, Inc. Privacy policy
-
Contact details
-
How you use Azura
-
Contractual data
We use this service for sending, storing and tracking emails.
Aftership, Ltd. Privacy policy
-
Contractual data
We use this service for delivering tracking information on your orders.
The Rocket Science Group LLC d/b/a MailChimp Privacy policy
-
Contact details
-
How you use Azura
-
Data that identifies you
We use this service for sending emails, managing mailing lists, and/or delivering newsletters about Product updates and changes.
Typeform S.L. Privacy policy
-
Contact details
-
How you use Azura
-
Data that identifies you
-
Contractual data
-
Data from your content and products
We use this service to learn about user needs, to facilitate order issue submission and to understand and improve Azura services by capturing feedback from our users.
Zendesk, Inc. Privacy policy
-
Contact details
-
How you use Azura
-
Data from your content and products
-
Contractual data
-
Data that identifies you
-
Cookies
We use this service for customer communications, user interaction, helpdesk assistance, in app messaging and improving our platform and service.
Google, Inc. Privacy policy
-
Contact details
-
How you use Azura
-
Data from your content and products
-
Contractual data
-
Data that identifies you
-
Cookies
We use Google Suite for business for customer communications, user interaction, User Research, and improving our platform and service.
Formagrid, Inc. (airtable) Privacy policy
-
Contact details
-
How you use Azura
-
Data from your content and products
-
Contractual data
-
Data that identifies you
We use Airtable to store and analyze data for purposes of research and product development.
Atlassian Pty Ltd Privacy policy
-
How you use Azura
-
Data from your content and products
-
Contractual data
-
Data that identifies you
We use Atlassian products to store and analyze data for purposes of research and product development, to solve bugs and build out the Azura Platform.
Payments
Stripe, Inc. Privacy policy
-
Contact details
-
Financial information
-
Cookies
-
Contractual data
This service processes payments for us.
Paypal, Inc. Privacy policy
-
Contact details
-
Financial information
-
Cookies
-
Contractual data
This service processes payments for us.
This Data Processing Agreement outlines:
-
What personal data is being sent
-
How that data needs to be secured and kept confidential
-
The purposes for which that data will be processed
-
How long that data will be stored
-
How they respond when users exercise their rights to privacy
-
How they respond if a data breach occurs
K. Cookies
We use cookies. Unless you adjust your browser settings to refuse cookies, we (and these third parties) will issue cookies when you interact with Azura. These may be ‘session’ cookies, meaning they delete themselves when you leave Azura, or ‘persistent’ cookies which do not delete themselves and help us recognise you when you return so we can provide a tailored service.
How can I block cookies?
You can block cookies by activating a setting on your browser allowing you to refuse the setting of cookies. You can also delete cookies through your browser settings. If you use your browser settings to disable, reject, or block cookies (including essential cookies), certain parts of our website will not function fully. In some cases, our website may not be accessible at all. Please note that where third parties use cookies we have no control over how those third parties use those cookies.
Which specific cookies do we use?
Google, Inc.
Google Analytics uses cookies allows us to see information on the activities of visitors to our website and users of our service, including page views, source and time spent on Azura. The information is depersonalized and is displayed as numbers, meaning it cannot be tracked back to individuals. This will help to protect your privacy.
To opt out of being tracked by Google Analytics across all websites click here.
Zendesk, Inc.
Zendesk uses cookies to recognise particular people who have interacted with Zendesk through Azura previously. This may be visitors to our website, Azura users or counterparties.
You may refuse the transmission of your Information by opting out (contact them direct for more information), however please note that you will delete the opt out cookie when you delete your cookies in your browser settings
Mixpanel, Inc.
Mixpanel uses cookies to help analyse how visitors arrive at and use the service, and provides us with statistical reports on activity. The information generated by the cookies or other technologies about your use of the Services (including IP address) is transmitted to Mixpanel and potentially stored on servers in the United States. Mixpanel will use this information to compile reports for us.
To opt out of being tracked by Mixpanel across all websites click here.
Hotjar, Inc.
Hotjar uses cookies allows us to see information on the activities of visitors to our website and users of our service, including page views, source and time spent on Azura. The information is depersonalized and is displayed as numbers, meaning it cannot be tracked back to individuals. This will help to protect your privacy.
To opt out of being tracked by Hotjar across all websites click here.
Facebook, Inc.
Facebook uses cookies if visitors have a Facebook account, use the Facebook Products, including their website and apps, or visit other websites and apps that use the Facebook Products (including the Like button or other Facebook Technologies). Cookies enable Facebook to offer the Facebook Products to visitors and to understand the information they receive about visitors, including information about their use of other websites and apps, whether or not they are registered or logged in.
To opt out of being tracked by Facebook by following the instructions here.
L. What if we change this Policy?
We reserve the right to make changes to this Privacy Policy at any time to reflect changes in the law, our data collection and use practices, the features of our Services, or advances in technology. Please check this page periodically for changes. If we make any material changes to this Privacy Policy, we will notify you via the email address provided for Registered Users and we will also post a notice on our home page and post the updated Privacy Policy here.
The date the Privacy Policy was last revised is identified at the top of the page. Please review the changes carefully. Your continued use of the Services following the posting of changes to this Privacy Policy will mean you consent to and accept those changes. If you do not consent to such changes, you should stop using our Services.
Contact us at any time at customercare@azura.com if you have more questions about this privacy policy, your rights, or our privacy practices.