Menu

Privacy Policy

Last updated on 14.09.2023

About

We are a Swiss company, Byteful GmbH ("Byteful", "we" or "us"). This privacy policy will help you understand how we collect and use your personal data and assist you in exercising the privacy rights available to you.

Scope

This privacy policy applies to all services provided by us through the use of the MailBindr email creation platform (further referred to as "MailBindr" or the "Platform") and the website under the domain www.mailbindr.app, including any subdomains (collectively, the "Services"). This privacy policy does not apply to any processing by third-party websites, services or applications.

By using our Services, you consent to the collection and use of information in accordance with this policy. 

Personal data that we collect

The personal data we collect depends on how you interact with our Services.

When we use the term “personal data” in this privacy policy, we mean all information that can be used to identify a natural person, either alone or when combined with other information. ‎

 

Information that you provide to us

Account Information —  When you create an account on the MailBindr platform, we collect the personal data you provide to us, such as your name and email address. 

Payment Information —  When you sign up for an MailBindr subscription, we use a third-party service (Stripe Inc.) to process your payments on our behalf. We transfer to this service the payment information you provide, including your name, email address, billing address, payment card information, and any other applicable billing information. We do not store or have access to your payment information, but we have access to information associated with your payment information (e.g. the fact that you have paid, the last four digits of your credit card information, and your country of origin).

Communication Information —  We collect personal data from you such as your name and your email address when you request information about the Services, register for our newsletter, or otherwise communicate with us. If you contact our customer service or support personnel, we collect the information you provide to our representatives.

Candidate Information —  We may post job openings on the Services. If you apply to one of these postings, we will collect and process the candidacy information you provide us.

Information collected automatically (technical information)

Usage Data —  When you use our Services, information about how you access our Services and how you use them is automatically collected. This usage data may include information such as your IP address, your browser type and version, operating system or device, the pages of our website that you visit, the time spent on these pages and other anonymized data about the choices made on the Services. 

Cookies & similar technologies —  We, as well as our partners (e.g., our advertising and analytics partners), may store cookies on your device if necessary for the smooth operation of our website and web application (technically necessary cookies), including for being able to log in. We may also use analytics and advertising cookies, but only with IP anonymization enabled and after you have provided your consent to any of these through our cookie consent widget. A cookie statement is provided where you can find a list of all cookies used with important details such as storage duration, purpose and the indication of origin. 

Additionally, you can restrict or disable the storage of cookies in your web browser at any time. You can delete cookies that have already been stored. When disabling cookies, the functionality of this website may be limited.

Cookies help us provide you with the best possible user experience and provide insights on how to improve our service.

Legal basis for the processing of personal data

Contractual fulfillment (Art 6 Abs 1 lit b GDPR) —  We process personal data because this is necessary for us to provide our services to you. For example, we cannot create an account for you and reply to your support request, if you choose not to share your personal data with us.

Consent (Art 6 Abs 1 lit a GDPR)— When you have given us explicit consent to process your personal data for a specific purpose, for example to send you our newsletter.

Legitimate interest (Art 6 Abs 1 lit f GDPR) —  Our legitimate interests are our commercial company interests. We rely on this reason only when balanced against your rights and freedoms.

Legal obligation (Art 6 Abs 1 lit c GDPR)  — There may be cases when we have a legal responsibility to process your personal data in order to comply with our legal obligations.

Purposes of processing

We use the personal information that you provide to us and that we collect automatically for the following purposes:

  • To provide you with our services and customer support;
  • To analyze, improve, personalize and monitor our Services, marketing, customer relationships and experiences;
  • Communicate with you regarding important product updates, platform issues or incidents, general information about services or to send you our newsletter;
  • Administering and protecting our business and Services (including troubleshooting, data analysis, system maintenance, internal quality control, managing payments);
  • Recruiting and hiring;
  • To verify compliance with applicable legal requirements and our policies;

Data retention periods

We retain your personal data only for as long as necessary for the purposes stated in this privacy policy and only to the extent necessary to comply with our legal obligations, resolve potential disputes, and enforce our legal agreements and policies.

Please note that we also retain usage data for internal analysis purposes. Usage data is generally retained for a shorter period of time, unless such data is used to improve the security or functionality of our services or we are required by law to retain such data for a longer period of time. 
 

Data transmission

We do not sell, rent or trade your personal data. We may share your personal data on a need-to-know basis with the following categories of third parties:

  • Our service providers used in the provision of our products and services, specifically:
    • SALESFORCE Inc. (Application Server)
    • DigitalOcean, LLC (File Storage Server)
    • Stripe Inc. (Payment processing)
  • Competent authorities or other third parties, if required by law or reasonably necessary, to protect the rights, property and safety of ourselves or others.

All hosting servers used are located in the European Union.

We reserve the right to transfer personal data about you in the event that we sell or transfer all or a portion of our business or assets in accordance with applicable law. Should such a sale or transfer occur, we will use reasonable efforts to direct the transferee to use the data you have provided to us in a manner that is consistent with this privacy policy. Following such a sale or transfer, you may contact the entity to which we transferred your data with any inquiries concerning the processing of that data.
 

Security measures

We have implemented organizational and technical measures to ensure a level of protection appropriate to the risk in accordance with Art. 32 GDPR, taking into account the current available technologies, costs of implementation and the nature, scope, context and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons.
 

Organizational measures

The measures include in particular ensuring the confidentiality, integrity and availability of data by controlling access to the data, as well as disclosure of the data. We have established data management procedures to ensure the exercise of your rights and response to data breaches. These procedures are regularly reviewed and our security measures are continuously adapted in line with technological developments.

Technical measures

We take into account the protection of personal data already during development, the selection of hardware and software, according to the principle of privacy by design and by default (Art. 25 GDPR).  The security measures include in particular the encrypted transmission (SSL) of data between your browser and our server. 

Your rights in relation to your personal data

You have a right of information about your stored data and, if applicable, a right to correction or deletion of this data. When we process your information based on your consent, you have the right to withdraw your consent at any time without affecting the lawfulness of processing based on such consent before it is withdrawn.

Contact

Responsible party in the sense of the data protection laws:

Byteful GmbH
Company data protection officer
Rychenbergstrasse 35, 8400 Winterthur
Email: info@byteful.ch

Change of the privacy policy

We reserve the right to make changes to the privacy policy at any time. Any change we make to our privacy policy in the future will be posted on this page and, if necessary, you may be notified of the changes via email. Please check back frequently for any updates or changes to our privacy policy. All changes shall be effective from the date of publication, unless otherwise provided in the notification.