Privacy Policy

This Privacy Policy (Privacy Notice) is meant to help you understand what data we collect, why we collect it, and what we do with it.

Overview

This Privacy Policy (Privacy Notice) is meant to help you understand what data we collect, why we collect it, and what we do with it. Please, take the time to read our Privacy Policy carefully. We want to be clear on how we’re using information, and the ways in which you can protect your privacy.

When we refer to “Fibery”, we mean the entity that acts as the Controller or Processor of your information, as explained in more detail below. If you have any questions, please feel free to contact us at: data-privacy@fibery.io

Applicability of Privacy Policy

This Privacy Policy applies to your Personal Data when you use:

It also applies to other interactions (e.g. customer support inquiries, webinars, user conferences, feedback sharing, etc.) you may have with Fibery.

The scope of the data processing will differ for the services and websites mentioned above, but this document covers the most comprehensive examples.

If you do not agree with the terms, you should not access or use the Services, websites, or any other aspect of Fibery business.

This Privacy Policy does not apply to any third party applications or software that integrate with the Services through plugins, scripts or external tools. The organization (e.g., your employer or another entity) that entered into the Service Agreement (“Customer”) controls their instance of the Services (their “Instance”) and any associated Customer Data. If you have any questions about specific Instance settings and privacy practices, please contact the Administrator of the Customer whose Instance you use. If you have a registered Services user, you can check the "People" view in your Account (https://YOUR-INSTANCE.fibery.io) for contact information of your Instance Administrator(s). If you have received an invitation to join Instance but have not yet created an user account, you should request assistance from the Customer that sent the invitation.

Information we receive and collect

Fibery may collect and receive Customer Data (including Personal Data) and other information and data:

Information you provide to us:

Account and Profile Information: We collect information about you and your company as you register an Instance, create or modify your user account, make purchases, as well as use, access, or interact with the Services and websites (including but not limited to when you upload, download, collaborate on, or share Content). Information we collect includes:

You may provide this information directly when you enter it in Services.

In some cases, another user (such as a system Administrator) may create a user account on your behalf and may provide your information, including Personal Data (most commonly when your company requests that you use our Services). We collect Information under the direction of our customers, and usually have no direct relationship with the individuals (Data Subjects) whose personal data we process. If you are providing information (including Personal Data) about someone else, you must have the authority to act for them and to consent to the collection and use of their Personal Data as described in this Privacy Policy.

Content

We collect and store Content that you create, input, submit, post, upload, transmit, store or display in the process of using our Service or website. Such Content includes any Personal Data that you choose to include.

Other submissions

We collect other data that you submit to our Website, or as you participate in any interactive features of our Service, participate in surveys, contests, promotions, activities or events, apply for a job, request customer support, communicate with us via third party social media sites, share feedback or otherwise communicate with us. For example, information regarding a problem you are experiencing with a Fibery product could be submitted to our Support Services or posted in our public forums.

Information we collect from your use of the Services and websites.

Web Logs

As with any website and Service delivered over the Internet, we gather certain information and store it in log files when you interact with our Website and Service. This information includes internet protocol (IP) addresses as well as browser type (User Agent), URLs of referring/exit pages, date/time stamp, information you search for, locale and language preferences, information about browser configuration and plugins, language preferences and cookie data, identification numbers associated with your Devices (where available), and system configuration information (where available).

Services Metadata and Analytics:

We collect analytics information when you use our Website and Service to help us improve services. In the Service, this analytics information consists of the feature and action of the Service being used, the associated account name, the user ID and IP address of the individual who is using the feature or function, as well as additional information required to detail the operation of the function and which parts of the Service are being used. Occasionally, we connect Personal Data to information gathered in our log files and analytics as necessary to improve Services for individual customers or resolve issues when requested by users. This combined Information is then treated in accordance with this Privacy Policy.

As of the date this policy went into effect, we use:

Analytics Information Derived from Customer Data

Analytics information also consists of data we collect as a result of running queries against Data across our user base for the purposes of generating Usage Data. "Usage Data" is aggregated data about a group or category of features or users that does not contain Personal Data or any Confidential Information submitted to the Service. For example, we may query Customer Data to determine the number of Projects created in Accounts or the number of work items created in the Account.

Cookies and Other Tracking Technologies

Fibery and third party partners, use various technologies to collect information, such as cookies. Cookies are small data files stored on your hard drive or in device memory. We use cookies to to allow you to access and use the Websites or Service without re-entering your username or password (authentication), improve and customize Services and your User Experience, to count visits, and understand which areas and features of the Website and Service are most popular.

For more details about how we use these technologies, please see our Cookies Policy.

Information from third party services

We also obtain information from third parties and combine that with Information we collect through websites. For example, we may have access to certain information from a third party social media or authentication service if you browse our Websites. Any access that we may have to such Information from a third party social or authentication service is in accordance with the authorization procedures determined by that service. You should check your privacy settings on these third party services to understand and change the information sent to us through these services.

How we use information we collect

Customer Data will be used by Fibery in accordance with Customer instructions, including any applicable terms in the Agreement and Customer use of Services functionality, and as required by applicable law. Fibery is a Processor of Customer Data, and the Customer is the Controller. Customer may, for example, use the Services to grant and remove access to an Instance, assign roles and configure settings, access, modify, export, share, and remove Customer Data, and otherwise use the Services.

We use the Information we collect about you (including Personal Data to the extent applicable) for multiple purposes, including:

Notwithstanding the foregoing, we will not use the Personal Data that appears in our Analytics Data or Web logs for any purpose. The use of Information collected through our Services and websites shall be limited to the purposes disclosed in this policy.

If Information is aggregated or de-identified so it is no longer reasonably associated with an identified or identifiable natural person, Fibery may use it for other purposes such as sharing usage statistics in our blogposts. To the extent Information is associated with an identified or identifiable natural person and is protected as Personal Data under applicable data protection laws, it is referred to in this Privacy Policy as “Personal Data.”

Information sharing and disclosure

We will not share or disclose any of your Personal Data or Other Data with third parties except as described in this Policy. We do not sell your Personal Data or other Data.

Your Use

When you use Fibery Service, Data you have provided will be displayed back to you.

Third Party Services

Customer can choose to connect Third Party Services using Apps, scripts or other tools to their instance. Typically, Third Party Services are software that integrate with our Service, and Customer can permit its Instance Users and/or Administrators to enable and disable these integrations for their Instance. Once enabled, the provider of a Third Party Service may share certain information with Fibery. For example, if a Source Control integration is enabled to permit Source code commits to be linked to Fibery Entities in the Instance, we will receive repository access credentials and source code along with additional information that the application has made available to Fibery. Administrators and Users should check the settings and additional details for these Third Party Services to understand what data may be disclosed to Fibery. When a Third Party Service is enabled, Fibery is authorized to connect and access Data made available to Fibery

Generally, no one is under a statutory or contractual obligation to provide any Customer Personal Data or other Data (collectively, “Data”). However, certain Information is collected automatically and, if some Information such as Instance setup details is not provided, we may be unable to provide the Service.

Third Party Service Providers and Partners

We may engage third party companies or individuals as service providers or business partners to process Data and support our business. These third parties may, for example, provide server hosting and storage services. Additional information about the the sub-processors we use to support delivery of our Services is available as part of our Data Processing Addendum per request.

Corporate Affiliates

Fibery may share Other Information with its corporate affiliates, parents, and/or subsidiaries with such access governed by this Policy in any case.

During a change to Fibery business

If Fibery engages in a merger, acquisition, bankruptcy, dissolution, reorganization, sale of some or all of Fibery’ assets or stock, financing, public offering of securities, acquisition of all or a portion of our business, a similar transaction or proceeding, or steps in contemplation of such activities (e.g. due diligence), some Data may be shared or transferred, subject to standard confidentiality arrangements and this Policy’s provisions.

Aggregated or obfuscated Data

We may disclose or use aggregated and/or completely obfuscated Data for any purpose. For example, we may share aggregated or de-identified Other Information with prospects or partners for business or research purposes, such as telling a prospective Fibery customer the average size of the Instance database.

To comply with Law

If we receive a request for information from a Law Enforcement Agency, we may disclose Data if we reasonably believe disclosure is in accordance with or required by any applicable law, regulation or legal process. We will notify you about such a request immediately upon receiving it.

With Consent

Fibery may share Data with third parties when we have consent to do so.

Data Retention

Fibery will retain Customer Data in accordance with a Customer’s instructions, including any applicable terms in the Terms of Service and as required by applicable law. Fibery may retain Personal Information for Instance Administrators and Owners after you have deactivated your account for the period of time needed for Fibery to pursue legitimate business interests, conduct audits, comply with (and demonstrate compliance with) legal obligations, resolve disputes and enforce our agreements — usually for no longer than 6 years. Other Instance Data submitted to the Service will be removed or obfuscated within 6 months after the Service License expiration, unless we're explicitly instructed by the Customer to remove data immediately. To deactivate an organization account, please contact Supportor Sales.

Your Choices

You may opt out of receiving promotional communications from Fibery by using the unsubscribe link within each email or emailing us to have your contact information removed from our email list or registration database. Although opt-out requests are usually processed immediately, please allow ten (10) business days for a removal request to be processed. Even after you opt out from receiving any promotional or supporting messages from us, you will continue to receive important technical transactional messages from us regarding Service until your Instance is deactivated or removed.

Security

Fibery takes security of data as our first priority and works hard to protect Information you provide from loss, misuse, and unauthorized access or disclosure. These steps take into account the sensitivity of the Information we collect, process and store, and the current state of technology. To learn more about current practices and policies regarding security and confidentiality of the Services, please see our Security Statement. You're also welcome to request additional information about pentests and certificates via email to Support. Given the nature of communications and information processing technologies, Fibery cannot guarantee that Information, during transmission through the Internet or while stored on our systems and services, will be absolutely safe from any intrusion by others.

Age Limitations

To the extent prohibited by applicable law, Fibery does not allow use of our Service and Website by anyone younger than 16 years old unless there is a custom agreement in place. If you learn that anyone younger than 16 has unlawfully provided us with personal data, please contact us via data-privacy@Fibery.io or Support, and we will take the necessary steps to delete such information.

Changes To This Privacy Policy

Fibery may change this Privacy Policy from time to time. Laws, regulations and industry standards evolve, which may make those changes necessary, or we may make changes to our business. We will post the changes to this page and encourage you to review our Privacy Policy to stay informed. If we make significant changes that alter your privacy rights, Fibery will provide additional notice via email or through the Service. If you disagree with the changes to this Privacy Policy, you should deactivate your Services account.

International data transfers and model clauses

Fibery may transfer your Personal Data to countries other than the one in which you live. We deploy the following safeguards if Fibery transfers Personal Data originating from the European Union or Switzerland to other countries not deemed adequate under applicable data protection law:

Data Controller and Processor definition

Data protection law in certain jurisdictions differentiates between the “Controller” and “Processor” of information. In general, the Customer is the Controller of Customer Data. In general, Fibery is the Processor of Customer Data and the Controller of Other Information or individual Leads who just created a Service instance or signed up for information such as a mail list, webinar, etc..

Your rights and updating your information

Individuals located in certain countries, including the European Economic Area, have certain statutory rights in relation to their Personal Data. Subject to any exemptions provided by law, you may have the right to request access to Information, as well as to seek to access, update, delete, or correct this Information.

Regardless of your country of residence, you can accomplish this using the settings and tools provided in your Instance user account or Customer Center account. If you cannot use the settings and tools, contact your Instance Administrator as mentioned above or our Customer Support via support@Fibery.io for additional access and assistance.

If your account is managed by an Administrator, that account administrator may have control with regards to how your account information is retained and deleted.

To the extent that Fibery processing of your Personal Data is subject to the GDPR, Fibery relies on its legitimate interests, described above, to process your data. Fibery may also process other Information that constitutes your Personal Data for direct marketing purposes as described above. You have a right to object to Fibery use of your Personal Data for this purpose at any time by opting out; do this by contacting us via support@Fibery.io or data-privacy@Fibery.io

Data Protection Authority

Subject to applicable law, you also have the right to:

If you are a resident of the European Economic Area and believe we maintain your Personal Data within the scope of the General Data Protection Regulation (GDPR), you may direct questions or complaints to our supervisory authority:

Office of the Cyprus Commissioner for Personal Data Protection ('Commissioner')
1, iasonos Str. 2nd Floor, 1082 Nicosia, Cyprus
P.O. BOX 23378, 1682 Nicosia
T +35722818456
F +35722304565
commissioner@dataprotection.gov.cy

Contacting us

Please feel free to contact Fibery if you have any questions about this Privacy Policy or our practices, or if you are seeking to exercise any of your statutory rights. You can contact us at support@Fibery.io or at our mailing address below:

28 Oktovriou 2, 1st Floor, Flat/Office 101
Egkomi, Makedonitissa,
2414, Nicosia
Cyprus

Last update date: November 7th 2019.