In addition, Onehub may also process Personal Data that has been uploaded to Onehub’s cloud solutions Services by Users (as defined in Onehub’s Terms of Service) forming part of the Customer Data (as defined in Onehub’s Terms of Service). In such capacity, Onehub is a “processor” of the Personal Data as it does not control such data. With respect to such data, the subscribing User is responsible for individual notification of purpose and for obtaining appropriate consent when they collect such Personal Data. Personal Data that is transferred to Onehub by Users to be processed shall be deemed to have been collected with appropriate notification. Onehub assumes no responsibility for obtaining or validating that appropriate consent has been obtained with respect to such data provided by Users.
Any questions or concerns regarding Onehub’s privacy and data protection practices can be directed to our Data Protection Lead at email@example.com.
"Personal Data" is information that directly or indirectly identifies you. Below are some examples of the Personal Data we may collect through the Services:
We collect information as follows.
While this information on its own may not constitute your "personal data", we may combine the information we collect via Cookies with personal data that we have collected from you to learn more about how you use the Services to improve them.
We use both session cookies (which expire once you close your web browser) and persistent cookies (which stay on your device until you delete them). To make it easier for you to understand why we need them, the Cookies we use on the Services can be grouped into the following categories:
|Cookie Name||Function||Applicable System|
|Ga, Gat, Gid, Gtag||These are set by Google to provide data for related reporting capabilities.||Corporate Website; Onehub Service|
|_cf_bm||This is set by Hcaptcha, as an antibot solution that protects user privacy.||Corporate Website|
|_onehub_workspaces_session_id 4nehub.com||This cookie is set by Onehub by default to uniquely identify your session on the site and relates your unique session to server-side data||Corporate Website; Onehub Service|
|_oklv||These are set by Olark Live Chat software. Provides functionality for website to engage in instant messaging communication with visitors. Caching for software.||Corporate Website|
|_ok_okck, _okcs||These are set by Olark Live Chat software. Provides functionality for website to engage in instant messaging communication with visitors. Site identifier used for security purposes.||Corporate Website|
|_okbk, _okdetect||These are set by Olark Live Chat software. Provides functionality to engage in instant messaging communication with visitors. Contains software state information.||Corporate Website|
|_okgid, _wcsid||These are set by Olark allowing group id to be locked to the visitor. Wcsid is a session identifier that we use only on your site to keep track of a single chat session.||Corporate Website|
|Olfsk||These are set by Olark Live Chat software. Maintains message history across pages.||Corporate Website|
|OptanonAlertBoxClosed||This cookie is set by websites using certain versions of the cookie law compliance solution from OneTrust. It is set after visitors have seen a cookie information notice and in some cases only when they actively close the notice down. It enables the website not to show the message more than once to a user. The cookie has a one year lifespan and contains no personal information.||Corporate Website|
|OptanonConsent||These are set by OneTrust. It stores information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category. This enables site owners to prevent cookies in each category from being set in the users browser, when consent is not given. It contains no information that can identify the site visitor.||Corporate Website|
|PHPSESSID||These are set by Onehub, this session cookie only contains a reference to a session (a visit to our site) stored on the web server. No information is stored in the user’s browser and this cookie can only be used by the web site in the current session||Corporate Website|
|Cookie Name||Function||Applicable System|
|Cookie_test||This is set by OneTrust to perform internal scans on the website.||Corporate Website|
|Ce.cch, ce_gtld||These are set by Crazy Egg and track a visitor session unique ID, tracking host and start time; are used to identify the top level domain.||Corporate Website|
|_cuid||This is set by Onehub as a collision-resistant IDs optimized for horizontal scaling and performance.||Corporate Website|
|Ga, Gat, Gid, Gtag||These are set by Google to provide data for related reporting capabilities.||Corporate Website; Onehub Service|
|Gclxxxx||These are set by Google. It is a conversion tracking cookie, which helps to improve performance.||Corporate Website; Onehub Service|
|_GRECAPTCHA||These are set by Google. Profiles the interest of web users to sell advertising space to organizations based on profiles.||Corporate Website; Onehub Service|
|Hblid||These are set by Olark Live Chat software. Identifies unique visitor between visits.||Corporate Website|
|JSESSIONID||This is a Java Script to maintain an anonymous user session.||Corporate Website|
|Pardot, Ipv322701||These are set by Pardot, a marketing automation platform which provides lead generation services to businesses to track workflows.||Corporate Website|
|SM||These are set by Microsoft MSN which we use to measure the use of the website for internal analytics.||Corporate Website|
|SRM_B, CLID||These are set by Microsoft MSN to ensure the proper functioning of this website.||Corporate Website|
|Visitor_IDhash||This is a cookie pattern that appends a unique identifier for a website visitor, used for tracking purposes. The cookies in this domain have a lifespan of 10 years.||Corporate Website|
|Cookie Name||Function||Applicable System|
|Ajs_group_id||This is set by Atlassian/Jira which tracks visitor usage within the website.||Corporate Website|
|ANONCHK||These are set by Microsoft storing the session ID for a user. This cookie ensures that clicks from advertisement on the Bing search engine are verified and it is used for reporting purposes and for personalization.||Corporate Website|
|_clck, _clsk||These are set by Microsoft. Persists the Clarity User ID and preferences, unique to that site, on the browser. This ensures that behavior in subsequent visits to the same site will attribute to the same user ID. Connects multiple page views by a user into a single Clarity session recording.||Corporate Website|
|_fbp||These are set by Facebook to deliver a series of advertisement products such as real time bidding from third party.||Corporate Website|
|First_touch||These are set by Google and used for site analytics.||Corporate Website|
|MUID||These are set by Microsoft, used as a unique identifier. It can be set by embedded Microsoft scripts. May sync across many different Microsoft domains, allowing user tracking.||Corporate Website|
|Tldtest_xxxx, amp_fef1e8, amplitude_testonehub.com||These are set by Amplitude, to help predict which combination of features and customer actions in the product are utilized.||Corporate Website|
|_uetsid||These are set by Microsoft Bing to determine what ads should be shown that may be relevant to the end user perusing the site.||Corporate Website|
|_uetvid||These are set by Microsoft Bing ads and allows us to engage with a user that has previously visited our website.||Corporate Website|
To enhance our content and to deliver a better online experience for our users, we sometimes embed images and videos from other websites on the Services. We currently use, and may in future use content from websites such as Facebook, LinkedIn and Twitter. You may be presented with Cookies from these third-party websites. Please note that we do not control these Cookies. The privacy practices of these third parties will be governed by the third parties’ own privacy statements or policies. We are not responsible for the security or privacy of any information collected by these third parties, using cookies or other means. You should consult and review the relevant third-party privacy statement or policy for information on how these cookies are used and how you can control them.
Onehub web pages may use other technologies such as web beacons to help deliver cookies on the Services and count users who have visited those websites. We also may include web beacons in our promotional email messages or newsletters to determine whether you open and act on them as well as for statistical purposes.
In addition to standard cookies and web beacons, the Services can also use other similar technologies to store and read data files on your computer. This is typically done to maintain your preferences or to improve speed and performance by storing certain files locally.
Cookies can be controlled, blocked or restricted through your web browser settings. Information on how to do this can be found within the Help section of your browser. All Cookies are browser specific. Therefore, if you use multiple browsers or devices to access websites, you will need to manage your cookie preferences across these environments.
If you are using a mobile device to access the Services, you will need to refer to your instruction manual or other help/settings resource to find out how you can control cookies on your device.
Please note: If you restrict, disable or block any or all Cookies from your web browser or mobile or other device, the Services may not operate properly, and you may not have access to the Services available through the Services. Onehub shall not be liable for any impossibility to use the Services or degraded functioning thereof, where such are caused by your settings and choices regarding cookies.
To learn more about cookies and web beacons, visit http://www.allaboutcookies.org/.
Some web browsers (including Safari, Internet Explorer, Firefox and Chrome) incorporate a "Do Not Track" ("DNT") or similar feature that signals to websites that a user does not want to have his or her online activity and behavior tracked. If a website that responds to a particular DNT signal receives the DNT signal, the browser can block that website from collecting certain information about the browser’s user. Not all browsers offer a DNT option and DNT signals are not yet uniform. For this reason, many website operators, including Onehub, do not respond to DNT signals.
We will only use your Personal Data when the law allows us to. Most commonly, we will use your Personal Data in the following circumstances:
We will only use your Personal Data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your Personal Data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so. Please note that we may process your Personal Data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.
Onehub uses information collected for the following purposes based on our legitimate interests:
We may use your Personal Data when necessary for the performance of a contract or to comply with legal obligations in the following contexts:
From time to time, we may ask for your consent to use your information. Subject to applicable law, you may withdraw your consent at any time by contacting us at firstname.lastname@example.org. With respect to the placement of cookies for which your consent is the legal basis for processing, you may withdraw your consent by modifying your Cookie preferences.
Onehub may aggregate information collected though the Services and remove identifiers so that the information no longer identifies or can be used to identify an individual ("Anonymized Information"). Onehub shares Anonymized Information with third parties and does not limit third parties’ use of the Anonymized Information because it is no longer Personal Data.
Applicable law may require Onehub to disclose your Personal Data if: (i) reasonably necessary to comply with legal process (such as a court order, subpoena or search warrant) or other legal requirements; (ii) disclosure would mitigate Onehub’s liability in an actual or threatened lawsuit; (iii) necessary to protect legal rights of Onehub, users, customers, business partners or other interested parties; or (iv) necessary for the prevention or detection of crime (subject in each case to applicable law). For residents of the European Economic Area ("EEA"), Onehub will disclose Personal Data only when permitted to do so under applicable European and EU Member States’ national data protection laws and regulations.
California Shine the Light Law: California Civil Code Section 1798.83 permits users who are California residents to obtain from us once a year, free of charge, a list of third parties to whom we have disclosed personal information (if any) for direct marketing purposes in the preceding calendar year. If you are a California resident and you wish to make such a request, please send an e-mail with "California Privacy Rights" in the subject line to email@example.com or call us at: 1-800-331-5841.
The Services are not directed to or intended for use by minors. Consistent with the requirements of applicable law, if we learn that we have received any information directly from a minor without his or her parent’s verified consent, we will use that information only to respond directly to that child (or his or her parent or legal guardian) to inform the minor that he or she cannot use the Services and subsequently will delete that information.
California Minors: While the Service is not intended for anyone under the age of 18, if you are a California resident who is under the age of 18 and you are unable to remove publicly-available content that you have submitted to us, you may request removal by contacting us at: firstname.lastname@example.org. When requesting removal, you must be specific about the information you want removed and provide us with specific information, such as the URL for each page where the information was entered, so that we can find it. We are not required to remove any content or information that: (1) federal or state law requires us or a third party to maintain; (2) was not posted by you; (3) is anonymized so that you cannot be identified; (4) you don’t follow our instructions for removing or requesting removal; or (5) you received compensation or other consideration for providing the content or information. Removal of your content or information from the Service does not ensure complete or comprehensive removal of that content or information from our systems or the systems of our service providers. We are not required to delete the content or information posted by you; our obligations under California law are satisfied so long as we anonymize the content or information or render it invisible to other users and the public.
Onehub takes precautions intended to help protect information that we process but no system or electronic data transmission is completely secure. Any transmission of your Personal Data is at your own risk and we expect that you will use appropriate security measures to protect your Personal Data.
You are responsible for maintaining the security of your account credentials for the Services. Onehub will treat access to the Services through your account credentials as authorized by you. Unauthorized access to password-protected or secure areas is prohibited and may lead to criminal prosecution. We may suspend your use of all or part of the Services without notice if we suspect or detect any breach of security. If you believe that information you provided to us is no longer secure, please notify us immediately using the contact information provided below.
If we become aware of a breach that affects the security of your Personal Data, we will provide you with notice as required by applicable law. To the extent permitted by applicable law, Onehub will provide any such notice that Onehub must provide to you under applicable law at your account’s email address. By using the Services, you agree to accept notice electronically.
All payments received via credit card are processed securely by Braintree, using measures that comply with the Payment Card Industry Data Security Standard ("PCI DSS").
We retain Personal Data in identifiable form only for as long as necessary to fulfill the purposes for which the Personal Data was provided to Onehub or, if longer, to comply with legal obligations, to resolve disputes, to enforce agreements and similar essential purposes. To determine the appropriate retention period for Personal Data, we consider the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of your Personal Data, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means, and the applicable legal requirements.
You may request access to your personal information or correct an error or omission in your personal information by contacting us at email@example.com or call us at: 1-800-331-5841. We will make good faith efforts to resolve requests to correct inaccurate information except where the request is unreasonable, requires disproportionate technical effort or expense, jeopardizes the privacy of others, or would be impractical. Residents of the EEA and California may have additional rights concerning the access and updating of their Personal Data (see Sections 12 and 13 below).
Onehub participates in the EU-U.S. and the Swiss-U.S. Privacy Shield Frameworks. Please see our Privacy Shield Policy for information about Onehub’s data practices regarding personal information it receives from European Union member countries and Switzerland pursuant to the respective Privacy Shield frameworks. To learn more about the Privacy Shield program generally, and to view Onehub’s certification, please visit https://www.privacyshield.gov/. In the event Privacy Shield is no longer deemed adequate by the European Commission, Onehub shall continue to comply with its requirements under the Privacy Shield framework, and otherwise take steps to comply with the General Data Protection Regulation.
Residents of the EEA may be entitled to other rights under the GDPR. These rights are summarized below. We may require you to verify your identity before we respond to your requests to exercise your rights. If you are entitled to these rights, you may exercise these rights with respect to your Personal Data that we collect and store:
You may exercise these rights free of charge. These rights will be exercisable subject to limitations as provided for by the GDPR. Any requests to exercise the above listed rights may be made to: firstname.lastname@example.org. If you are an EEA resident, you have the right to lodge a complaint with a Data Protection Authority about how we process your Personal Data at the following website: https://edpb.europa.eu/about-edpb/board/members_en.
Whenever we transfer your Personal Data out of the EEA, we ensure a similar degree of protection is afforded to it by using a solution that enables lawful transfer of personal data to a third country in accordance with Article 45 or 46 of the GDPR (including the European Commission Standard Contractual Clauses).
For additional information on the mechanisms used to protect your Personal Data, please contact us at email@example.com.
Our Services collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device ("personal information"). In particular, the Services collect or may have collected in the last twelve (12) months the categories of personal information as described in Section 2 above.
We may use or disclose the personal information we collect for one or more of the business purposes indicated in Section 5 above.
We will not collect additional categories of personal information or use the personal information we collected for materially different, unrelated, or incompatible purposes without providing you notice.
We may disclose your personal information to a third party for a business purpose. When we disclose personal information for a business purpose, we enter a contract that describes the purpose and requires the recipient to both keep that personal information confidential and not use it for any purpose except performing the contract. We share your personal information with the categories of third parties listed in Section 6 above.
In the preceding twelve (12) months, we have disclosed the following categories of personal information for a business purpose:
The CCPA provides consumers (California residents) with specific rights regarding their personal information. This section describes your CCPA rights and explains how to exercise those rights.
You have the right to request that we disclose certain information to you about our collection and use of your personal information over the past twelve (12) months. Once we receive and confirm your verifiable consumer request, we will disclose to you:
You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request, we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies.
To exercise the access, data portability and deletion rights described above, please submit a verifiable consumer request to us by either:
For submissions via email, please complete and send us a completed copy of this Verifiable Consumer Request Form.
Only you, or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child.
You may only make such a request for access or data portability twice within a 12-month period. The verifiable consumer request must provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative, and describe your request with sufficient detail that allows us to properly understand, evaluate and respond to it.
We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. Making a verifiable consumer request does not require you to create an account with us. We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.
We endeavor to respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing. We will deliver our written response electronically. Any disclosures we provide will only cover the 12-month period preceding the receipt of the verifiable consumer request. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.
We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
We will not discriminate against you for exercising any of your CCPA rights.
If you have any questions, comments, or concerns about how we handle your Personal Data, then you may contact us at firstname.lastname@example.org or call us at: 1-800-331-5841.