When you use our website or services, we appreciate that you’re trusting us with your personal information. We’re committed to protecting it, and our Privacy Notice explains what information we collect, how we use it, and what rights you have in relation to it.
We collect information that you provide to us, that we collect automatically, and that we potentially collect from other third party sources. We process your information for purposes based on legitimate business interests, the fulfillment of our contract with you, compliance with our legal obligations, and your consent.
Some of our legitimate business interests include purposes such as data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns, and evaluating and improving our website and services.
Cookies are small data files that are placed on your computer or mobile device when you visit our website. Some cookies are required for technical reasons in order for our website to operate, and we refer to these as “essential” or “strictly necessary” cookies. Other cookies also enable us to target the interests of our users to enhance the experience on our Online Properties. Third parties serve cookies through our website for advertising, analytics, and other purposes.
You have the right to decide whether to accept or reject cookies. You can exercise your cookie rights by setting your preferences in the Cookie Consent Manager available in the Quick Access menu of this privacy center.
Our Cookie Policy explains how Termly uses cookies and similar technologies to recognize you when you visit our website. It explains what these technologies are and why we use them, as well as your rights to control our use of them.
We provide you with a software that you access remotely via the cloud that you can use for consent management, the generation of policies, legal agreements, disclaimers, and other documents generated using information related to your business or organization.
When agreeing to these terms, you agree to our Data Processing Agreement covering personal data that Termly processes on your behalf and in connection with our services, including personal data relating to visitors to and users of your platform.
Before Termly engages any sub-processor, we perform due diligence on its data protection practices to ensure that it provides the required level of protection.
We sign Data Processing Agreements with each of our vendors, service providers, and contractors, setting out the nature and purpose of the processing and the obligations of each party.
To be transparent about how your data is shared, we set up a sub-processor list in which you can learn more about how we use third parties and what protection they guarantee.
A Data Processing Agreement is a contract that sets out on which terms a party – ie. Termly customer – may request another party – ie. Termly – to process personal data on its behalf.
Our Data Processing Agreement covers Personal Data that Termly processes on your behalf, in connection with our services, including Personal Data relating to your platform’s visitors and users.
If you are using our services, our DPA is incorporated into our Terms of Use by default. However we encourage you to review it to make sure that our processing and data protection practices are in line with your organization’s.
To provide our services, Termly may transfer personal data to third countries, notably the United States, with a level of data protection different from your country of residence.
For any Personal Data originating in the EEA or the UK, we apply the requirements of the GDPR irrespective of the location of processing, and we ensure that a valid legal framework applies for the cross-border transfer.
If no legal framework or adequacy decision exists for the countries we are transferring personal data to, we rely on Standard Contractual Clauses, as required by the EEA and UK data protection laws.
How is the personal data of your users handled by our Consent Management Platform?
When you use our Consent Management Platform – including our cookie scanner, cookie banner, and consent manager – the personal data of your users are processed by Termly’s app.
When collecting your users’ consent, our platform first processes their location to determine which consent banner to display according to the parameters you set. Once your users have chosen their consent preferences, their consent logs are created in our app.
Consent logs include the following personal data of your users:
User ID
IP address anonymized
IP country, Browser/device version
Cookie preferences
Consent date & time
Website url
Consent page url
Only you, and in some limited instances Termly employees, may have access to this information. Consent logs are stored and encrypted on Amazon Web Services’ servers in the United States.
How is the personal data of your users handled by our DSAR form?
When your users submit a privacy request through our DSAR portal – part of our Consent Management Platform DSAR Manager – their personal data are processed by Termly’s app.
Privacy requests submitted through this portal include the following personal data:
User ID
Website ID
User name
User email
Time submitted
Any information submitted on the form such as request type, agent requesting, relevant law, etc.
Only you, and in some limited instances Termly employees, may have access to this information. DSAR forms are stored and encrypted on Amazon Web Services’ servers in the United States.
How does Termly handle your privacy requests?
When you submit a privacy request – either by email, through our dedicated portal, or any other channel – we will automatically send you a confirmation that we have received it.
Depending on the type of request you make, your location, and the applicable legislation, we will let you know the applicable time for us to treat your request.
Once we have completed it, we will send you a confirmation.
Should you sign a Data Processing Agreement with Termly?
Yes, we recommend you sign a Data Processing Agreement with us. It’s a requirement under the GDPR and the CCPA — known as a Service Agreement — and it sets out the terms on which you may request us to process personal data on your behalf.
If you are using our services, we provide a Data Processing Agreement. We encourage you to contact us to make sure that our processing and data protection practices are in line with your organization’s.
