Onehub is the controller of the Personal Data collected through the Services. Any questions or concerns regarding Onehub's privacy and data protection practices can be directed to our Data Protection Lead at email@example.com.
"Personal Data" is information that directly or indirectly identifies you. Below are some examples of the Personal Data we may collect through the Services:
We collect information as follows.
While this information on its own may not constitute your "personal data", we may combine the information we collect via Cookies with personal data that we have collected from you to learn more about how you use the Services to improve them.
We use both session cookies (which expire once you close your web browser) and persistent cookies (which stay on your device until you delete them). To make it easier for you to understand why we need them, the Cookies we use on the Services can be grouped into the following categories:
|_onehub_workspaces_session_id||onehub.com||Persistent: 30 Days||This cookie is used by Onehub by default to uniquely identify your session on the site and relates your unique session to server side data.|
|doppio_login||ws.onehub.com||Session||This cookie is used by Onehub to remember the default application your user is registered for.|
|_ga||Google Analytics||Persistent: 2 Years||Used by Google Analytics to register a unique ID that is used to generate statistical data on how the visitor uses the website.|
|_gat_UA-6155421-2||Google Analytics||Persistent: 2 Years||Used by Google Analytics to track campaign related information for the user.|
|_gcl_au||Google Analytics||Persistent: 3 Months||Used by Google AdSense to track advertisement efficiency across websites using their services.|
|_gid||Google Analytics||Persistent: 1 Day||Used by Google Analytics to register a unique ID that is used to generate statistical data on how the visitor uses the website.|
|_gid||Google Analytics||Persistent: 1 Day||Registers a unique ID that is used to generate statistical data on how the visitor uses the website.|
|test_cookie||Persistent: 1 Minute||Used by the Google DoubleClick network to test whether the visitor's browser allows cookies to be stored.|
|_fr||Persistent: 3 Months||Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers.|
|_ok||Olark||Session||Used by Olark for most recent Olark site ID (security measure).|
|_okbk||Olark||Session||Used by Olark for extra state information (e.g. chat box being open/closed).|
|_okdetect||Olark||Session||Used by Olark to test whether the visitor's browser allows cookies to be stored.|
|_oklv||Olark||Session||Used for the Olark loader version (for improved caching).|
|hblid||Olark||Persistent: 1 Year||Used by Olark as a visitor identifier to remember this visitor between visits.|
|olfsk||Olark||Persistent: 1 Year||Used for Olark for storage identifier to maintain chat state across pages (e.g. message history).|
|wcsid||Olark||Session||Used by Olark as a session identifier to keep track of a single chat session.|
To enhance our content and to deliver a better online experience for our users, we sometimes embed images and videos from other websites on the Services. We currently use, and may in future use content from websites such as Facebook, LinkedIn and Twitter. You may be presented with Cookies from these third-party websites. Please note that we do not control these Cookies. The privacy practices of these third parties will be governed by the third parties’ own privacy statements or policies. We are not responsible for the security or privacy of any information collected by these third parties, using cookies or other means. You should consult and review the relevant third-party privacy statement or policy for information on how these cookies are used and how you can control them.
Onehub web pages may use other technologies such as web beacons to help deliver cookies on the Services and count users who have visited those websites. We also may include web beacons in our promotional email messages or newsletters to determine whether you open and act on them as well as for statistical purposes.
In addition to standard cookies and web beacons, the Services can also use other similar technologies to store and read data files on your computer. This is typically done to maintain your preferences or to improve speed and performance by storing certain files locally.
Cookies can be controlled, blocked or restricted through your web browser settings. Information on how to do this can be found within the Help section of your browser. All Cookies are browser specific. Therefore, if you use multiple browsers or devices to access websites, you will need to manage your cookie preferences across these environments.
If you are using a mobile device to access the Services, you will need to refer to your instruction manual or other help/settings resource to find out how you can control cookies on your device.
Please note: If you restrict, disable or block any or all Cookies from your web browser or mobile or other device, the Services may not operate properly, and you may not have access to the Services available through the Services. Onehub shall not be liable for any impossibility to use the Services or degraded functioning thereof, where such are caused by your settings and choices regarding cookies.
To learn more about cookies and web beacons, visit http://www.allaboutcookies.org/.
Some web browsers (including Safari, Internet Explorer, Firefox and Chrome) incorporate a "Do Not Track" ("DNT") or similar feature that signals to websites that a user does not want to have his or her online activity and behavior tracked. If a website that responds to a particular DNT signal receives the DNT signal, the browser can block that website from collecting certain information about the browser’s user. Not all browsers offer a DNT option and DNT signals are not yet uniform. For this reason, many website operators, including Onehub, do not respond to DNT signals.
We will only use your Personal Data when the law allows us to. Most commonly, we will use your Personal Data in the following circumstances:
We will only use your Personal Data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If we need to use your Personal Data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so. Please note that we may process your Personal Data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.
Onehub uses information collected for the following purposes based on our legitimate interests:
We also use your Personal Data when necessary for the performance of a contract or to comply with legal obligations in the following contexts:
Onehub may aggregate information collected though the Services and remove identifiers so that the information no longer identifies or can be used to identify an individual ("Anonymized Information"). Onehub shares Anonymized Information with third parties and does not limit third parties' use of the Anonymized Information because it is no longer Personal Data.
Applicable law may require Onehub to disclose your Personal Data if: (i) reasonably necessary to comply with legal process (such as a court order, subpoena or search warrant) or other legal requirements; (ii) disclosure would mitigate Onehub’s liability in an actual or threatened lawsuit; (iii) necessary to protect legal rights of Onehub, users, customers, business partners or other interested parties; or (iv) necessary for the prevention or detection of crime (subject in each case to applicable law). For residents of the European Economic Area ("EEA"), Onehub will disclose Personal Data only when permitted to do so under applicable European and EU Member States’ national data protection laws and regulations.
California Shine the Light Law: California Civil Code Section 1798.83 permits users who are California residents to obtain from us once a year, free of charge, a list of third parties to whom we have disclosed personal information (if any) for direct marketing purposes in the preceding calendar year. If you are a California resident and you wish to make such a request, please send an e-mail with "California Privacy Rights" in the subject line to firstname.lastname@example.org or write us at: Onehub, 1109 1st Avenue, Suite 406, Seattle, WA 98101.
The Services are not directed to or intended for use by minors. Consistent with the requirements of applicable law, if we learn that we have received any information directly from a minor without his or her parent’s verified consent, we will use that information only to respond directly to that child (or his or her parent or legal guardian) to inform the minor that he or she cannot use the Services and subsequently will delete that information.
California Minors: While the Service is not intended for anyone under the age of 18, if you are a California resident who is under the age of 18 and you are unable to remove publicly-available content that you have submitted to us, you may request removal by contacting us at: email@example.com. When requesting removal, you must be specific about the information you want removed and provide us with specific information, such as the URL for each page where the information was entered, so that we can find it. We are not required to remove any content or information that: (1) federal or state law requires us or a third party to maintain; (2) was not posted by you; (3) is anonymized so that you cannot be identified; (4) you don’t follow our instructions for removing or requesting removal; or (5) you received compensation or other consideration for providing the content or information. Removal of your content or information from the Service does not ensure complete or comprehensive removal of that content or information from our systems or the systems of our service providers. We are not required to delete the content or information posted by you; our obligations under California law are satisfied so long as we anonymize the content or information or render it invisible to other users and the public.
Onehub takes precautions intended to help protect information that we process but no system or electronic data transmission is completely secure. Any transmission of your Personal Data is at your own risk and we expect that you will use appropriate security measures to protect your Personal Data.
You are responsible for maintaining the security of your account credentials for the Services. Onehub will treat access to the Services through your account credentials as authorized by you. Unauthorized access to password-protected or secure areas is prohibited and may lead to criminal prosecution. We may suspend your use of all or part of the Services without notice if we suspect or detect any breach of security. If you believe that information you provided to us is no longer secure, please notify us immediately using the contact information provided below.
If we become aware of a breach that affects the security of your Personal Data, we will provide you with notice as required by applicable law. To the extent permitted by applicable law, Onehub will provide any such notice that Onehub must provide to you under applicable law at your account’s email address. By using the Services, you agree to accept notice electronically.
All payments received via credit card are processed securely by Braintree, using measures that comply with the Payment Card Industry Data Security Standard ("PCI DSS").
We retain Personal Data in identifiable form only for as long as necessary to fulfill the purposes for which the Personal Data was provided to Onehub or, if longer, to comply with legal obligations, to resolve disputes, to enforce agreements and similar essential purposes. To determine the appropriate retention period for Personal Data, we consider the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of your Personal Data, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means, and the applicable legal requirements.
You may request access to your personal information or correct an error or omission in your personal information by contacting us at firstname.lastname@example.org or write us at: Onehub, 1109 1st Avenue, Suite 406, Seattle, WA 98101. We will make good faith efforts to resolve requests to correct inaccurate information except where the request is unreasonable, requires disproportionate technical effort or expense, jeopardizes the privacy of others, or would be impractical. Residents of the EEA and California may have additional rights concerning the access and updating of their Personal Data (see Sections 12 and 13 below).
Onehub participates in the EU-U.S. and the Swiss-U.S. Privacy Shield Frameworks. Please see our Privacy Shield Policy for information about Onehub’s data practices regarding personal information it receives from European Union member countries and Switzerland pursuant to the respective Privacy Shield frameworks. To learn more about the Privacy Shield program generally, and to view Onehub’s certification, please visit https://www.privacyshield.gov/. In the event Privacy Shield is no longer deemed adequate by the European Commission, Onehub shall continue to comply with its requirements under the Privacy Shield framework, and otherwise take steps to comply with the General Data Protection Regulation.
Residents of the EEA may be entitled to other rights under the GDPR. These rights are summarized below. We may require you to verify your identity before we respond to your requests to exercise your rights. If you are entitled to these rights, you may exercise these rights with respect to your Personal Data that we collect and store:
You may exercise these rights free of charge. These rights will be exercisable subject to limitations as provided for by the GDPR. Any requests to exercise the above listed rights may be made to: email@example.com. If you are an EEA resident, you have the right to lodge a complaint with a Data Protection Authority about how we process your Personal Data at the following website: https://edpb.europa.eu/about-edpb/board/members_en.
Whenever we transfer your Personal Data out of the EEA, we ensure a similar degree of protection is afforded to it by using a solution that enables lawful transfer of personal data to a third country in accordance with Article 45 or 46 of the GDPR (including the European Commission Standard Contractual Clauses).
For additional information on the mechanisms used to protect your Personal Data, please contact us at firstname.lastname@example.org.
Our Services collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device ("personal information"). In particular, the Services collect or may have collected in the last twelve (12) months the categories of personal information as described in Section 2 above.
We may use or disclose the personal information we collect for one or more of the business purposes indicated in Section 5 above.
We will not collect additional categories of personal information or use the personal information we collected for materially different, unrelated, or incompatible purposes without providing you notice.
We may disclose your personal information to a third party for a business purpose. When we disclose personal information for a business purpose, we enter a contract that describes the purpose and requires the recipient to both keep that personal information confidential and not use it for any purpose except performing the contract. We share your personal information with the categories of third parties listed in Section 6 above.
In the preceding twelve (12) months, we have disclosed the following categories of personal information for a business purpose:
The CCPA provides consumers (California residents) with specific rights regarding their personal information. This section describes your CCPA rights and explains how to exercise those rights.
You have the right to request that we disclose certain information to you about our collection and use of your personal information over the past twelve (12) months. Once we receive and confirm your verifiable consumer request, we will disclose to you:
You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request, we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies.
To exercise the access, data portability and deletion rights described above, please submit a verifiable consumer request to us by either:
For submissions via email, please complete and send us a completed copy of this Verifiable Consumer Request Form.
Only you, or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child.
You may only make such a request for access or data portability twice within a 12-month period. The verifiable consumer request must provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative, and describe your request with sufficient detail that allows us to properly understand, evaluate and respond to it.
We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. Making a verifiable consumer request does not require you to create an account with us. We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.
We endeavor to respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing. We will deliver our written response electronically. Any disclosures we provide will only cover the 12-month period preceding the receipt of the verifiable consumer request. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.
We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
We will not discriminate against you for exercising any of your CCPA rights.
If you have any questions, comments, or concerns about how we handle your Personal Data, then you may contact us at email@example.com or write to us at: Onehub, 1109 1st Avenue, Suite 406, Seattle, WA 98101.