CoreSender™ - Privacy Policy

We know your time is valuable. The following is a brief summary of how CoreSender™ processes your Personal Data.

We encourage you to read the entire Privacy Policy described below to help you understand exactly how your Personal Data is processed and how to execute your rights associated with it.

Privacy policy

This Privacy Policy establishes the rules for the protection of all Clients of the Service and all Users (“Users”) of the CoreSender™ Service (“Service”) in relation to the processing of Personal Data. We value your trust and make every possible effort to provide you with complete control over your Personal Data. Below, we will describe with complete transparency the scope of our Data processing practices in connection to your use of our Tools and Services (including websites) (“Services”). We will explain our reasons and methods for Data processing, as well as, Data security rules and the rights your have related to their processing. By using our Website or Service, you are indicating that you agree to and accept all policies and regulations related to the use of CoreSender. We ask that you familiarize yourself with all our rules and regulations before proceeding with our services. If you do not agree to the rules set out in this Policy, you should not begin using our Service or Website.

Check the basic concepts

Below are the basic concepts that will help you to better understand this Policy:

Personal Data - the is the Data of our Users otherwise known as data entrusted to us for processing by our Users as well as the data of any Users processed in connection with the use of the Service or Website.

Data regarding activity on the Website or Service - Data consisting of your activity in the Service or Website which may include data about the session, your device and the operating system, browser, location and unique ID registered and stored via cookies or tracking scripts. The following data is included: search history, clicks on the Website, visits to the home page and subpages of the Website, the date of creation and login to your Account, data on the use of certain services provided on the Website and Service, history of your activity related to our email correspondence with you.

Data provided in the Account details - Personal data provided by the Customer in the “Account Details” tab, including: name, surname, company name, address data, email address, phone number, country, time zone, information necessary to process payments, industry, number of employees.

Registration data - Data provided in the registration forms located on the Website: email address, name. CoreSender™ (my) - Global Email Solutions Ltd, 590 Kingston Road, London, SW20 8DN, United Kingdom

Client - A person using the Service for their business or professional activity, regardless of the legal form of such activity.

Contacts - People whose Data (especially email addresses) are processed through use of the Service or to which Users send electronic communication (in particular, email communication).

Account - An individual designated space made available to the User as part of the CoreSender™ Service through which - after logging in - the User can use the Service.

Policy - the CoreSender™ Privacy Policy which you are currently reading.

Processing - Operations performed on Personal Data such as collecting, saving, storing, developing, changing, sharing, making backup copies and other necessary operations which assist in the performance of the Service or use of the Website.

Regulations – CoreSender™ Service Regulations

RODO - Regulation (EU) 2016679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 9546 / EC (general regulation on protection data).

Website - Websites belonging to CoreSender, specifically those located at at www.coresender.com. The User can log into their Account via Website.

Service - Any services provided by CoreSender™ electronically in the Software-as-a-Service (Saas) model, specifically providing the Customer with the possibility of using the Account, managing the Data entrusted to CoreSender™ for processing and operating mailing campaigns.

Privacy Settings - A space in the Account in which the Customer can manage privacy preferences and exercise his rights as a subject of data processing.

User - A person using the Website or Service. Capitalized terms found in the Privacy Policy which are not defined above retain and transfer their designated meanings or definitions from the CoreSender™ Terms and Conditions.

Who are we? Useful contact information

Unless otherwise stated, we process Personal Data as an administrator in connection with your use of the Service and the Website. In this role, we are responsible for determining the purpose and rules of Data processing. Sometimes we also act as an entity that processes Data on your behalf. You are then able to decide what Personal Data you entrust to us and for what purposes you use the Service. You can find out more information in section VII.3: Our contact details: Global Email Solutions Ltd, 590 Kingston Road, London, SW20 8DN, United Kingdom

In an effort to help you to contact us in order to exercise your rights, expressions or withdrawal of consents or any other issues related to the protection of Personal Data, we have created a special email address [email protected] for your correspondence.

Officer of Personal Data Protection

At CoreSender, we have appointed a Data Protection Officer whom you can contact regarding all matters of the processing of your Personal Data and the use of related rights. Contact with the Data Protection Officer may take place through:

How do we process data? Your Personal Data and how it is processed.

The protocol for processing your Personal Data varies depending on whether you are a registered User an unlogged visitor to the Website. The goals and scope of the Personal Data processed by us are variable. You will find more information how we process Data in relation to the specific purposes for which it is necessary

In order to use the Website or Service.

In order to provide the Service and Website, CoreSender™ performs the following activities: administrative tasks related to the conclusion of a contract for the provision of services under the Terms, opening of an Account and customer authentication on the Website, providing access to the Service, including sending communications related to the use of the Service and its functioning (among others system and transactional messages), delivery of content ordered by Users or visitors (including those who do not have an Account but use the Website), actions taken to serve customers and Users, processing complaints, invoicing, fee charging, possible claims and quality control of the Service.

What data do we process and for what purposes?

In order to create an Account and authenticate the User on the Website, we process:

The password is always stored in an encrypted form and we do not have access to it.

In order to provide you access to the Service (i.e. after logging into the Account as our User, we process the following data as your administrator:

By providing you with our Service, we also process Personal Data entrusted by the User for the purposes of providing the Service. As a User, you may also use the Website in a manner that does not require the creation of an Account, e.g. by downloading guides and other training materials, subscribing to the newsletter concerning new entries on our blog, accessing our Knowledge Base, subscribing to a webinar, course or other type of events organized by us or with our participation, or by requesting to write an article on the blog. Therefore, in order to enable the use of the Website, we process the following data of the User:

For legitimate business purposes

The data we process is for the legitimate purposes of CoreSender™ as described below, in regards to the nature of the relationship between us, the Service and our clients or Users.

What data do we use and their purpose?

Sending of marketing messages

What data is used and for what purposes?

In order to send our Customers and Users marketing and promotional messages regarding our Website and Service, we may process the following data: - Registration data.

For marketing purposes, including account creation

In order to provide the Service or Website

One of the primary reasons that we process your data is because it is a necessary part of how the Service or Website is utilized. In other words, in order to register as a Customer or User or order our materials as a User, we need to process your Personal Data. Otherwise, we would not be able to provide you with the Service or allow you to use the Website. The data is necessary for the completion of the contract and policies of the service (Article 6 (1) (b) of the GDPR).

For legitimate business purposes

The legal basis for the processing of the above information is the legitimate interests of the administrator (Article 6 (1) (f) of the RODO). Below we indicate the legitimate interests that entitle CoreSender™ to the processing of Personal Data.

For the purpose of sending marketing messages

The legal basis is the agreement to which you consented (Article 6 (1) (a) and the RODO).

For marketing purposes, including creating your customer profile.

The legal basis for the processing of this data is in connection to CoreSender’s legitimate interests (Article 6 (1) (f) of the GDPR). We believe that we have a legitimate interest in analyzing how our Customers and Users use our Service and Website, in order to improve it and promote our products and services to increase the number of Customers and Users who use them. Service and Website Users who are willing to receive marketing communications via e-mail address provided by them or those who have given their consent to the use of cookies, by means of voluntary, informed and unambiguous consent, and therefore we believe that they can reasonably expect us to send such communications to them through our website as well as through the use of external display ads. At the same time, we believe that these people expect the content that they will receive or view will be in accordance with their interests - to this end, we analyze their use of our Service or Website (profiling). Tailored marketing communication addressed to Clients and Users gives them the possibility to take advantage of attractive offers and provides optimal use of our Service and Website. At the same time, in order to explain the profiling described above, we use only information or data related to the activity on the Service or Website from Clients or Users. We are only interested in how you use the Service or Website, not what you do on other websites. Therefore, we acknowledge that our interests are legitimate and lawful, and at the same time do not violate the laws or rights of our Users, Clients or Customers.

Who we share your data with.

We provide your personal data to the following recipients:

To which countries is my data transmitted?

Recipients to whom we provide Personal Data are located mainly in Poland and other countries of the European Economic Area (EEA), e.g. in France. Some of them are located outside the EEA. In connection to the transfer of your data outside the EEA, we have ensured that the recipients of the data guarantee a high level of personal data protection. Depending on the supplier, these guarantees are a result of:

Your rights. You have control over your data

We ensure that our Clients and Users can exercise their data rights. You can exercise your rights by sending a request at [email protected] Inform us about the reason for the application and the right you want to exercise. If you have an Account in the Service, you can exercise your rights directly by managing the Privacy Settings after logging into the Account. Remember that if you change your Privacy Settings, for technical reasons, it may take up to 3 hours for the changes to appear in our systems. Therefore, it may occur that, for example, you may not receive an email from us if you have modified certain settings.. If we feel it is necessary to identify you, we may ask you additional questions or ask you to provide documentation confirming your identity. Although this may be obvious - in an effort for full transparency - we do not charge you for exercising the following rights. An exception may be made for the fee of issuing additional copies of data. According to the RODO regulations, you are entitled to:

The right to express and withdraw consents

If we ask for your consent, it is always voluntary. We inform you about the right to withdraw consent before providing it. We never require a consent on our Website or Service for various processing of Personal Data or we do not rely on the consent to conclude the contract - including the provisions of the Service - although consent is not necessary for its performance. In addition, you have the right to withdraw any consent you gave at the time of creating an Account or by using the Website, including:

Withdrawal of consent takes effect from the moment of withdrawal and does not affect the processing that took place before the withdrawal of consent. Withdrawal of consent does not entail any negative consequences for you. However, it may prevent you from continuing to use some of the functions of the Website or Service (eg, withdrawal of consent to the use of cookies may affect the use of certain parts of the Website) which, according to law, we can only provide with your consent (e.g. to receive a newsletter about new products in our Knowledge Base).

You can withdraw your consent in the following simple methods:

The right to access data

You have the right to obtain information from us regarding whether we process your personal data. If this is the case, you have the right to obtain:

If you have an Account in the Service, you may directly access the content of Your Personal Data provided to us at any time after logging into the Account. We do not charge a fee for the first copy of the data. In the case of further requests for a copy of the Data, we may charge a fee in the amount resulting from the administrative costs associated with the preparation of such information.

The right to edit data

You have the right to correct, modify and supplement the Personal Data provided by you. You can do this by yourself in the Privacy Settings of your Account. In regards to other Personal Data, you have the right to request that we edit this data (if it is incorrect) and to supplement it (if it is incomplete).

The right to delete data (“the right to be forgotten”)

In cases, specified by law, you have the right to request that we remove any Personal Data associated with you. We will treat the request to remove all Personal Data as a request to delete your Account. You have the right to request the deletion of Personal Data if:

We will keep some of your data in spite of its request for removal, if it is necessary to fulfill our legal obligation or to establish, assert or defend claims. This applies in particular to Personal Data including: name, surname, e-mail address and history of use of the Website or Service, which we retain for purposes of handling complaints and claims related to the use of the Website or Service.

The right to limit processing

You have the right to request a restriction on the processing of your Personal Data. If you make such a request, we will prevent you from using certain functions of the Website or Service which require the processing of Data to function properly. We will also not send you any messages, including marketing messages. You have the right to demand the restriction of the use of your personal data in the following cases:

The right to object to data processing

You have the right to oppose the use of your Personal Data at any time if we process your data based on our legitimate interests.

These cases are described above in the sections For legitimate business interests and For marketing purposes, including creating your customer profile. In particular, you have the right to object at any time to the processing of Data for the purposes of direct marketing, including the creation of your profile. In this case, we will no longer process your Data for this purpose and you will no longer receive marketing messages from us. In addition, withdrawing consent to receive marketing communications regarding our products or services will mean your opposition to the processing of your Data for direct marketing purposes, including creating your profile. In regards to the processing described in the section For legitimate business interests, if your objection is found to be well founded and we have no other legal basis to process your Personal Data, we will delete the information which you have objected to.

The right to transfer data

If you have set up an Account with us or consented to the processing of your Data, you have the right to obtain the Personal Data related to you in a structured, commonly used, machine readable and interoperable format. This data may then be sent to another administrator. We will send your Personal Data as a .CSV file. The .CSV format is a widely used, machine-readable format that allows you to send the received data to another Personal Data Administrator. If you currently have an Account in the Service, you can exercise your right after logging into the Account.

The right to submit a complaint to the authority

You have the right to complain about the processing of your data to the supervisory authority, which in the case of Poland is the President of the Office for Personal Data Protection, contact details:

Other useful information

Do I need to provide CoreSender™ with my data?

Sometimes we may ask you to provide your personal information. For example:

it is required in order to create an Account or to receive any materials you have ordered or downloaded from our Service or Website, as well as to allow participation in an promotion of your choosing. Failure to provide such Data results in the inability to use some or all of the functions of the Website or Service. Providing other Data than the required Data is voluntary.

How long do we keep your data?

If you are our customer, we store your personal data for the duration of your Account in the Service. After deactivation of the Account, your data will be stored for 60 days strictly to allow you to reactivate your Account if you should choose to do so. During this time, your Data will only be kept in storage and no additional activity will be carried out on it, unless it is required as a result of obligations imposed on us by law or other authorized bodies. After this deadline, your Personal Data will be removed from the main database and will not be able to be recovered. For the next 120 days, the data will be stored in an encrypted format on our backup servers. This period is required due to the specificity of the backup operation to completely delete the data.

Personal Data of Users who are not our Customers, we store for a period of time corresponding to the life cycle of the cookies stored on their devices. Details on how we use cookies can be found in the Cookies Policy.

Personal Data of people subscribed to our newsletters or people who have agreed to receive marketing materials from us, we will process until you opt out of receiving the newsletter or materials. After these dates, your details will become anonymous, except for the following:

We will keep this data for a period of time necessary to resolve complaints, compliance with tax and accounting regulations and handling claims related to the use of the Service.

Why am I entering a contract with CoreSender™ entrusting the processing of my personal data?

If you are our client and operate in the European Economic Area or in other cases, if RODO applies to your business, while using our Services, you entrust CoreSender™ with the processing of Personal Data, in particular the details of your Contacts, on the terms set out in the Terms and Conditions.