Here at Keyword Cupid we believe in the importance of thoughtfully handling personal information and is committed to privacy practices that are transparent and compliant.
This Privacy Statement sets out how KC (hereinafter the Website, Keyword Cupid, Data Governor, Application) uses the personal information we collect and receive about you.
Among the types of Personal Data that this Application collects, by itself or through third parties, there are: email address; Cookies; Usage Data; first name; last name; password; Universally unique identifier (UUID).
In cases where this Application specifically states that some Data is not mandatory, Users are free not to communicate this Data without consequences to the availability or the functioning of the Service.
Personal Data may be freely provided by the User, or, in case of Usage Data, collected automatically when using this Application.
Unless specified otherwise, all Data requested by this Application is mandatory and failure to provide this Data may make it impossible for this Application to provide its services.
In the event our site contains links to third-party sites and services, please be aware that those sites and services have their own privacy policies.
We point out that we make due diligence to make your personal data to be processed in accordance with the requirements of applicable law, including in particular in accordance with the Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016.
On the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (General Data Protection Regulation) (hereinafter the "GDPR").
The processing of personal data is based on the lawfulness, reliability and transparency of information. The data is collected by the Data Governor for a specific, explicit and legitimate purpose, and the scope of data is limited to the data necessary to achieve this purpose.
The Data Governor makes the necessary efforts to ensure the greatest possible security and protection of personal data processed by him.
Providing data is voluntary. Each of you has the right to inspect and check your personal data, update it and to submit a request to delete your data.
Personal data have been collected by us primarily directly from you or from entities cooperating with us on the basis of your consent or to perform our outlined services.
PERSONAL DATA GOVERNOR
The Personal Data Governor is: Keyword Cupid LLC., with registered office at the 42 Read's Way, New Castle, DE 19720, USA.
With respect to your rights as personal data subjects (i.e. people to whom the data relates) and with respect to the mandatory rules of law, including especially the Regulation of the European Parliament and the Council (EU) 2016/679 of 27 April 2016 on protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing directive 95/46/WE (General Data Protection Regulation), hereinafter referred to as GDPR, and other relevant personal data protection laws, we commit to maintaining the safety and confidentiality of all personal data that you share with us.
All our employees have been properly trained in personal data protection, and our company, as the Personal Data Governor, has introduced new security measures, as well as technical and organisational means, in order to ensure the highest possible level of personal data protection.
We have introduced appropriate procedures and policies to process personal data in accordance with GDPR, so that personal data processing occurs lawfully and reliably and you, as the persons to whom the data relates, may execute all your relevant rights. Additionally, if needed, we cooperate with the regulatory body within the territory of Delaware.
Any questions, requests or complaints relating to personal data processing in our company (the Personal Data Governor), hereinafter referred to as Applications, should be sent via e-mail to the following e-mail address: firstname.lastname@example.org, or in writing to the postal address of the Personal Data Gobernror, i.e. 42 Read's Way, New Castle, DE 19720, USA. The Applications should clearly contain: • the data of the person or persons to whom the Application relates, • the event that the Application relates to, • the filed requests and their legal basis, • the desired means of solving the issue.
METHODS OF PROCESSING
The Data Governor takes appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data.
The Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Data Governor,in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of this Application (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Data Governror.
PLACE OF PROCESSING
The personal information we collect is stored and/or processed in United States or where we or our partners, affiliates, and third-party providers maintain facilities.
Depending on the User's location, data transfers may involve transferring the User's Data to a country other than their own.
Users are also entitled to learn about the legal basis of Data transfers to a country outside the European Union or to any international organization governed by public international law or set up by two or more countries, such as the UN, and about the security measures taken by the Owner to safeguard their Data.
If any such transfer takes place, Users can find out more by checking the relevant sections of this document or inquire with the Data Governror using the information provided in the contact section
The countries to which we store, process, or transfer your personal information may not have the same data protection laws as the country in which you initially provided the information.
CATEGORIES OF PERSONAL DATA COLLECTED
We may collect personal information from you when you do any of the following on our website:
- Sign up to receive updates from us via email or social media channels
- Register for an account
- Purchase a subscription
- Enter any of our competitions, contests, sweepstakes, and surveys
- Use a mobile device or web browser to access our content
- Contact us via email, social media, or on any similar technologies
- Mention us on social media
Our Website may collect the following personal data:
- E-mail address: we collect your e-mail address in order to create an Account for you.
- Name, surname, residential address and Tax ID: we collect it from entrepreneurs and customers requesting us to issue an invoice
- Credit card number, CVC code and expiration date: these informations are necessary to pay for our services.
Usage and geographic data. KC collects information related to your use of our products, services and websites.
We analyze that usage data so that we can improve our products and your experience with them.
In certain instances, Keyword Cupid provides administrative tools so you can opt out of the collection of some usage data.
Usage data includes online and technical information about your computer's or mobile device's operating system and browser type; your device type; details about
how you are using our products (including natural language queries); your Internet Protocol (IP) address, and geographic areas derived from your IP address; networking connection data;
KC cookie information; file information; metadata; time stamped logs regarding access times and duration of visits; the web pages you visited before coming to Keyword Cupid's website
(referring URL); and other usage data relating to your activities on our Sites, including the pages you request.
We may link this information to the personal information we have collected about you and use it for the purposes described in this Privacy Statement, and we may deliver targeted marketing and product information back to you based on your usage data.
- Inferred and derived information. Data such as propensities and attributes that KC generates to help us understand you and your preferences.
- Demographic Information. Employment status, occupation, region. If you participate in a Keyword Cupid research focus group, then you will have the option to provide further information, such as gender, race, and age.
- Third party data. We may receive your personal information from third party suppliers or partners. If you connect with KC accounts on third party social networking sites, we may receive information about your social networking accounts, for example, your name, user name or display name, public profile, and email address. We may combine information you provide with data we collect automatically and with data we receive from third parties.
Images, video and recordings. Pictures, videos or audio recordings may be collected by keywordcupid.com.
For example, if you attend a KC event, your image may be captured in a photo or video. If you call KC customer support, your call may be recorded.
If you decline to provide your personal information or ask us to delete it, we may be unable to continue to provide or support our products or services. Sending an inquiry using the contact form.
- Communication using e-mail messages as well as Messenger (Intercom) type messengers.
When we collect and process personal information, and while we retain this information, we will protect it within commercially acceptable means to prevent loss and theft,
as well as unauthorised access, disclosure, copying, use or modification.
Although we will do our best to protect the personal information you provide to us, we advise that no method of electronic transmission or storage is 100% secure and no one can guarantee absolute data security.
You are responsible for selecting any password and its overall security strength, ensuring the security of your own information within the bounds of our services.
For example, ensuring any passwords associated with accessing your personal information and accounts are secure and confidential.
Your personal data may be transferred to entities cooperating with Keyword Cupid, and we may disclose personal information to:
- a parent, subsidiary or affiliate of our company
- third-party service providers for the purpose of enabling them to provide their services including (without limitation) IT service providers, data storage, hosting and server providers, ad networks, analytics, error loggers, debt collectors, maintenance or problem-solving providers, marketing or advertising providers, professional advisors, and payment systems operators
- our employees, contractors, and/or related entities
- our existing or potential agents or business partners
- sponsors or promoters of any competition, sweepstakes, or promotion we run credit reporting agencies, courts, tribunals, and regulatory authorities, in the event you fail to pay for goods or services we have provided to you
- courts, tribunals, regulatory authorities, and law enforcement officers, as required by law, in connection with any actual or prospective legal proceedings, or in order to establish, exercise, or defend our legal rights
- third parties, including agents or sub-contractors who assist us in providing information, products, services, or direct marketing to you (i.e. Stripe)
- third parties to collect and process data (ie. Google Analytics, Google Ads, Facebook Ads, IG, TikTok, Snapchat)
- an entity that buys, or to which we transfer all or substantially all of our assets and business
In these cases, KC each time will ensure the confidentiality of the data provided and that only the data necessary for the proper performance of the contract and based on appropriate safeguards for personal data required by applicable law are provided.
LEGAL BASIS OF PROCESSING
The Data concerning the User is collected to allow Keyword Cupid to provide its Service, comply with its legal obligations, respond to enforcement requests, protect its rights and interests
(or those of its Users or third parties), detect any malicious or fraudulent activity, as well as the following: Access to third party services' accounts, Managing contacts and sending messages,
Interaction with external social networks and platforms, Registration and authentication provided directly by this Application, Analytics, Registration and authentication, Displaying content
from external platforms, User database management, Contacting the User, SPAM protection, Hosting and backend infrastructure and Connecting Data.
The Data Governor may process Personal Data relating to Users if one of the following applies:
- Users have given their consent for one or more specific purposes. Note: Under some legislations the Data Governor may be allowed to process Personal Data until the User objects to such processing (“opt-out”), without having to rely on consent or any other of the following legal bases. This, however, does not apply, whenever the processing of Personal Data is subject to European data protection law; provision of Data is necessary for the performance of an agreement with the User and/or for any pre-contractual obligations thereof
- Processing is necessary for compliance with a legal obligation to which the Data Governor is subject
- Processing is related to a task that is carried out in the public interest or in the exercise of official authority vested in the Data Governror
- Processing is necessary for the purposes of the legitimate interests pursued by the Data Governor or by a third party.
- In any case, the Data Governor will gladly help to clarify the specific legal basis that applies to the processing, and in particular whether the provision of Personal Data is a statutory or contractual requirement, or a requirement necessary to enter into a contract.
YOUR RIGHTS: CONTROLLING YOUR PERSONAL INFORMATION
According to the GDPR, each person whose personal data is being processed by the personal data administrator has the right to:
- Be informed of the processing of their personal data, as per art. 12 of the GDPR – the Administrator is obliged to share information specified in the GDPR (incl. relating to data itself, contact details, purposes and legal basis for personal data processing, personal data recipients or categories of recipients, if any exist, or the period for which the data shall be processed or criteria, based on which such a period is set) with the person to whom the data relates; this obligation should be executed immediately at the moment when the data is first acquired, and if the data is not acquired from the person to whom it relates, but from another source, then it should be executed within a reasonable time frame, depending on the circumstances; the Administrator may choose to not provide this information to the person to whom the data relates if this person has already been informed
- Have access to their personal data, as per art. 15 of the GDPR – when providing us with your personal data, you have the right to access and review it; it does not mean, however, that you have access to all documents that contain your data, seeing as such documents may contain confidential information; you do have the right to be informed as to which of your data is being processed and how, as well as the right to receive copies of your personal data, with the first copy being issued free of charge, and for each subsequent one, according to the GDPR, we may charge a relevant administrative fee relating to the making of the copy,
- Correct or update the personal data, as per art. 16 of the GDPR – if your personal data has changed, please inform us, as the Personal Data Administrator, of this fact, so that the personal data we are holding corresponds to the actual information and is up to date; also, in situations where the personal data has not changed, but for some reason the data we hold is incorrect or has been incorrectly saved (e.g. due to an editorial mistake), please inform us of this, so that we may correct the relevant data points,
- Delete the data (the right to be forgotten), as per art. 17 of the GDPR – in other words, you have the right to demand that we “delete” the data held by us, as the Personal Data Administrator, and the right to request that we, as the Personal Data Administrator, inform other administrators we shared your data with, of your wish to have it deleted. You may request deletion of your personal data first and foremost when:
- the purposes for which the personal data had been shared have been fulfilled, e.g. we fully executed the sale contract we had concluded,
- the basis for the processing of your personal data was an express consent that was subsequently withdrawn and there is no other legal basis for us to further process your personal data
- you filed a rejection of the processing of your personal data by us, as per art. 21 of the GDPR, and believe that we have no underlying legal basis allowing us to further process your personal data
- your personal data was being processed illegally, i.e. for purposes that were against the law or without any legal basis for its processing – please remember that in such cases you will need to provide a basis for such a request
- the need to delete your personal data results from the mandatory rules of law
- the personal data relates to a minor and was collected as part of an information society service
- Transfer the data, as per art. 20 of the GDPR – you have the right to receive your data in a format allowing you to review it on your computer and the right to transfer the data in such format to another administrator; you have this right only when the basis for the processing of your personal data was an express consent or the data was processed automatically,
- file a rejection to the processing of the personal data, as per art. 21 of the GDPR – you have the right to file a rejection, if you do not agree to us processing your personal data that we had processed thus far for specific purposes, in accordance with the mandatory rules of law
- refuse profiling, as per art. 22, relating to art. 4.4 of the GDPR – in our Website you shall not be subject to automated decision-making or profiling, as per the GDPR, unless you provide us with an express consent to do so; additionally, you shall always be informed of any instances of profiling, should they occur
- file a complaint to a regulatory body (i.e. to the President of the Data Protection Authority), as per art. 77 of the GDPR – if you believe we are processing your personal data illegally or in any way that violates your rights resulting from the mandatory rules of personal data protection laws or the supervisory authority of another Member State of the European Union with jurisdiction over the place of habitual residence or your job or the person to the place of the alleged infringement.
In the event of a Website user with the right under the abovementioned rights, the Data Governor shall comply with the request or refuse to comply with it immediately, but no later than within one month after receiving it. However, it may happen that due to the complicated nature of the request or the number of requests, the Data Governor will not be able to fulfill the request within the month referred to in the previous sentence, then it will fulfill it within the next two months, at the same time informing the user about the intended extension of the deadline and its reasons.
You also have the right to request that we restrict the processing of your personal information if (i) you are concerned about the accuracy of your personal information; (ii) you believe your personal information has been unlawfully processed; (iii) you need us to maintain the personal information solely for the purpose of a legal claim; or (iv) we are in the process of considering your objection in relation to processing on the basis of legitimate interests.
You may objecting to processing. You have the right to object to processing of your personal information that is based on our legitimate interests or public interest. If this is done, we must provide compelling legitimate grounds for the processing which overrides your interests, rights, and freedoms, in order to proceed with the processing of your personal information.
You may have the right to request a copy of the personal information we hold about you. Where possible, we will provide this information in CSV format or other easily readable machine format. You may also have the right to request that we transfer this personal information to a third party.
You may have a right to request that we delete the personal information we hold about you at any time, and we will take reasonable steps to delete your personal information from our current records. If you ask us to delete your personal information, we will let you know how the deletion affects your use of our website or products and services. There may be exceptions to this right for specific legal reasons which, if applicable, we will set out for you in response to your request. If you terminate or delete your account, we will delete your personal information within 30 days of the deletion of your account. Please be aware that search engines and similar third parties may still retain copies of your personal information that has been made public at least once, like certain profile information and public comments, even after you have deleted the information from our services or deactivated your account.
At any time, the user of a Website may submit to the Data Governror any complaints, queries and requests regarding the processing of his personal data and the exercise of his rights.
You have the right to withdraw your consent to the processing of your personal data at any time, but withdrawal of consent does not affect the lawfulness of the processing based on your prior consent before its withdrawal.
We do not aim any of our products or services directly at children under the age of 13 and we do not knowingly collect personal information about children under 13.