Privacy Policy

Effective from the 28th of November 2019

Our privacy policy applies to all visitors, users, and others who use the services we provide via our websites crioapp.com, www.crio.digital and all our iOS and Android apps. We refer to all of these products as “Services” in this policy. If you do not agree with this policy, do not access or use our Services or interact with any other aspect of our business. Where we provide the Services under contract with an organisation (for example your employer) that organisation controls the information processed by the Services.

Information Collection

We collect information about you in 4 ways. When you voluntarily provide it to us, when you voluntarily give us permission to obtain, when other sources provide it to us, or when you use our Services.

The information you provide to us:

  • Personal Information: When you sign up to our Services, you provide us certain information, including your name, country, language, email address, how you intend to use our Services, or anything else you may be asked and decide to provide.

  • Personal Design Assets: When you create content using our Services, you may choose to upload images, icons, fonts, videos, files, as well as add textual content.

  • Business Information: Our Services can be used for business purposes. If you are authorised to create or manage an account on behalf of an organisation, you may choose to provide information related to that organisation.

  • Business Brand Assets: When you manage or create content for an organisation, you may choose to upload logos, images, icons, fonts, videos, files, as well as add textual content on behalf of that organisation.

  • Information you provide through our support channels: Our Services provide customer support channels, where you may choose to submit information regarding a problem you are experiencing. Whether you email us, open a support ticket, speak to one of our representatives directly or otherwise engage with our support team, you will be asked to provide contact information, a description of the problem you are experiencing, screenshots or information that would be helpful in resolving the issue.

Information Use

You or the administrator of a business account may give us permission to access information from third-party services. For example, you may want to connect your Facebook, Instagram, Google, Pinterest, LinkedIN, Snapchat. DropBox or any other platform accounts to our Services, which allows us to access, display and store files to or from those accounts as authorised by you. You may also choose to create an account or login using your Google or Facebook credentials, so we will receive your name and email address as permitted by your profile settings in order to authenticate you. You can also authorise us to synchronised a contact list, so that you can easily connect with those contacts within our platforms. The information we receive when you link or integrate our Services with a third-party service depends on the settings and privacy policy controlled by that third-party service. You can check the privacy settings and notices in these third-party services to understand what data may be shared with us.

Legal basis for processing

Other users of the Services may provide information about you. For example, we may receive your email address from a user when they provide it in order to invite you to the Services. Similarly, an administrator of an organisation may provide information they may find useful for content creation, for example, they may provide us with your name, email address and telephone number, so that a business cards can be easily created with your details.

Partners: We work with partners who provide consulting, implementation, training around the Services we offer. Some of these partners also help us to market, promote and resell our products. We receive information from these partners, such as billing information, contact information, company name, what services you purchased or may be interested in, evaluation information you have provided, events you have attended, and what country you are in.

Advertising Partners: We receive information about you and your activities on and off the Services from third-party advertising partners who provide us with information about your interest in and engagement with our Services and online advertisements.

Information Disclosure

Usage Details: Your usage details such as time, frequency, duration and pattern of use, features used and the amount of storage used will be recorded by us in order to enhance your experience of the Services and to help us provide you the best possible service.

Device Information: We also collect information about the device you’re using the Service on, including what type of device it is, what operating system you’re using, device settings, unique device identifiers, and crash data. Whether we collect some or all of this information often depends on what type of device you’re using and its settings. For example, different types of information are available depending on whether you’re using a Mac or a PC, or an iPhone or an Android phone.

Cookies: Like many websites we may use “cookies” a small data file that is transferred to your computer’s hard disk or similar technologies to record log data. When we use cookies, we may use “session” cookies (that last until you close your browser) or “persistent” cookies (that last until you or your browser deletes them). For example, we may use cookies to store your settings so you don’t have to set them up every time you visit our website. Most Internet browsers automatically accept cookies. You can instruct your browser, by changing its settings, to stop accepting cookies or to prompt you before accepting a cookie from the websites you visit. 

Information Transfer

We use  AWS as our data hosting service provider internationally who is beholden to treating your personal information in accordance to the General Data Protection Regulation (GDPR) (EU) 2016/679:: and this ::Privacy Policy:: Statement. We use technical measures to secure your data and in order to prevent loss of data due to errors or system failures, we also keep backup copies of data including the contents of your user account. While we implement safeguards designed to protect your information, no security system is impenetrable and due to the inherent nature of the Internet, we cannot guarantee that data, during transmission through the Internet or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others. We may retain and use your personal information and data as necessary to comply with our legal obligations, resolve disputes, and enforce our rights.

Information Control

You can exercise choices regarding your information by logging into the Services and using settings available within the Services or your account as described below. For all other requests, you may contact us as provided in the Contact Us section below to request assistance.

Unlink your account to third-party apps: Where you have asked us to share data with third parties, for example, by installing third-party apps, you will need to contact those third-party service providers directly to have your information deleted or otherwise restricted. If you have unresolved concerns, you may have the right to complain to a data protection authority in the country where you live, where you work or where you feel your rights were infringed.

From email notifications: You may opt out of receiving promotional communications from us by using the unsubscribe link within each email, updating your email preferences within your Service account settings menu, or by contacting us as provided below to have your contact information removed from our promotional email list or registration database. Even after you opt out from receiving promotional messages from us, you will continue to receive transactional messages from us regarding our Services. You can opt out of some notification messages in your account settings.

From organisation email notifications: You may opt out from receiving emails from organisations you have joined for businesses purposes. These emails are not triggered by us, but by the company who uses our Services.

From push notifications: You can disable push notifications from us through your device & browser settings.

Notice to End Users Policies Changes: We may change this policy from time to time. We encourage Users to frequently check this page for any changes to stay informed about how we are helping to protect the personal information we collect. If you continue to use our Services after those changes are in effect, you agree to the revised policy. If the changes are significant, we may provide more prominent notice or obtain your consent as required by law.

Links: Please note that content created and displayed through our Services may contain links to third party websites. We hereby disclaim any liability in relation to the privacy practices of other websites.

Notice to End Users

Many of our products are intended for use by organisations. Where the Services are made available to you through an organisation account (e.g. your employer, supplier or client), that organisation is the administrator of the Services and is responsible for the accounts and/or Service sites over which it has control. If this is the case, please direct your data privacy questions to your administrator, as your use of the Services is subject to that organisations policies. We are not responsible for the privacy or security practices of an administrator’s organisation, which may be different than this policy. Administrators are able to:

  • View and disclose content you created or uploaded on the account.

  • Modify and take ownership of content you created/uploaded on the account.

  • Require you to reset your account password;

  • Restrict, suspend or terminate your access to the Services;

  • Access information in and about your account;

  • Access or retain information stored as part of your account;

  • Install or uninstall third-party apps or other integrations In some cases, administrators can also:

  • Restrict, suspend or terminate your account access;

  • Change the email address associated with your account;

  • Change your information, including profile information;

  • Restrict your ability to edit, restrict, modify or delete information

Even if the Services are not currently administered to you by an organisation, if you use an email address provided by an organisation (such as your work email address) to access the Services, then the owner of the domain associated with your email address (e.g. your employer) may assert administrative control over your account and use of the Services at a later date. You will be notified if this happens. If you do not want an administrator to be able to assert control over your account or use of the Services, use your personal email address to register for or access the Services. If an administrator has not already asserted control over your account or access to the Services, you can update the email address associated with your account through your account settings in your profile. Once an administrator asserts control over your account or use of the Services, you will no longer be able to change the email address associated with your account without administrator approval. Please contact your organisation or refer to your administrator’s organisational policies for more information.