Privacy Policy
Last Updated: 1 Sept 2023
1. Introduction
Before utilizing our Service, which includes the Website, Widget, and API (collectively referred to as the “Service”), please take a moment to review this Privacy Policy (“Privacy Policy”). This policy outlines the nature of the information we gather, as well as how we manage, use, and share this data. Your access and use of the Service are conditioned upon your acceptance of and compliance with the Terms of Service available at the following link: https://www.dialoggpt.io/terms (“Terms of Service”), which encompasses the stipulations of this Privacy Policy. DialogGPT.io (“Company”) is responsible for the operation of the Service.
We utilize your data to enhance and deliver the Service. By engaging with the Service, you consent to the gathering, use, and management of your information in line with this policy. Unless explicitly stated in this Privacy Policy, the terminology used here aligns with the definitions in our Terms of Service.
2. Definitions
- API: Refers to DialogGPT's application programming interface designed for integration with the User's software.
- Cookies: Small files stored on your Device.
- Device: Refers to a computer or a mobile device.
- Data Controller: A natural or legal entity that determines the purpose and means of processing personal data. For this Privacy Policy, we act as the Data Controller for your data.
- Data Processors (or Service Providers): Natural or legal entities processing data on behalf of the Data Controller. We might employ various Service Providers to process your data more efficiently.
- Data Subject: A living individual who is the subject of Personal Data.
- Personal Data: Information about a living individual who can be identified from that data or from that combined with other information we possess or likely to possess.
- Service: Encompasses the Website, Widget, and/or the API, depending on the specific offerings to a User.
- Usage Data: Data collected automatically, generated either by the use of the Service or from the Service infrastructure (e.g., duration of a page visit).
- User: An individual using our Service. The User is the Data Subject whose Personal Data is processed.
- Website: Refers to web pages located at DialogGPT.io.
- Widget: A DialogGPT widget that can be integrated into the User's website.
3. The Data Controller
The controller of your Personal Data is: DialogGPT.io.
4. Information Collection and Use
We gather a variety of information types for multiple objectives to enhance and deliver our Service to you.
5. Types of Data Collected
Personal Data
When you interact with our Service, we might request you to share specific personal information that can be utilized to get in touch with or recognize you (“Personal Data”). This can include:
- email address,
- first name and last name,
- Cookies and Usage Data.
Usage Data
We might also gather details that your browser dispatches whenever you access our Service or when you use the Service via a Device (“Usage Data”). This Usage Data can encompass details like your computer's IP address, browser type and version, the Service pages you visit, the time and date of your access, the duration spent on those pages, unique Device identifiers, and other diagnostic details. When accessing the Service via a Device, this Usage Data can include details such as the Device type, its unique ID, its IP address, your operating system, the type of browser you use, unique Device identifiers, and other diagnostic data.
Tracking & Cookies Data
We employ cookies and similar tracking tools to monitor interactions on our Service and store specific information. Cookies are tiny data files which might have an anonymous unique identifier. These are dispatched from a website to your browser and saved on your Device. Tracking tools like beacons, tags, and scripts are also utilized to gather and monitor details and to refine and analyze our Service. Although you can set your browser to decline all cookies or to notify you when a cookie is being sent, not accepting cookies might make certain parts of our Service inaccessible. We use cookies such as:
- Session Cookies: To operate our Service,
- Preference Cookies: To recall your preferences and various settings,
- Security Cookies: For security measures,
- Advertising Cookies: To present you with ads that might be pertinent to you and your interests.
6. Use of Data
DialogGPT.io utilizes the gathered Personal Data for several objectives:
- To offer and maintain our Service; Personal Data type: email address, first name, last name, Cookies, and Usage Data; necessity: contract performance.
- To inform you about alterations to our Service; Personal Data type: email address, first name, last name, Cookies, and Usage Data; necessity: contract performance.
- To let you engage in our Service's interactive features; Personal Data type: email address, first name, last name, Cookies, and Usage Data; necessity: contract performance.
- For customer support; Personal Data type: email address, first name, last name, Cookies, and Usage Data; necessity: contract performance.
- To gather insights for Service improvement; Personal Data type: email address, first name, last name, Cookies, and Usage Data; necessity: Data Controller's legitimate interests.
- To monitor Service usage; Personal Data type: email address, first name, last name, Cookies, and Usage Data; necessity: Data Controller's legitimate interests.
- To address technical issues; Personal Data type: email address, first name, last name, Cookies, and Usage Data; necessity: Data Controller's legitimate interests.
- For any other purpose you provide; Personal Data type: email address, first name, last name, Cookies, and Usage Data; necessity: contract performance.
- To enforce our rights from contracts with you, including billing; Personal Data type: email address, first name, last name, Cookies, and Usage Data; necessity: contract performance.
- To send notices about your account/subscription; Personal Data type: email address, first name, last name, Cookies, and Usage Data; necessity: contract performance.
- To offer news and special offers; Personal Data type: email address, first name, last name, Cookies, and Usage Data; necessity: your consent.
- For any other described purpose when collecting data; Personal Data type: email address, first name, last name, Cookies, and Usage Data; necessity: contract performance.
7. Retention of Data
We preserve your Personal Data only for the duration necessary for the objectives highlighted in this Privacy Policy. We will store and utilize your Personal Data as required to fulfill our legal duties (e.g., if we need to keep your data in line with relevant laws), settle disputes, and implement our legal contracts and policies. Personal Data processed based on your consent will be kept as long as the pertinent consent isn't withdrawn and until the expiration of claims arising from the Service. We will also keep Usage Data for internal analytical purposes. Typically, Usage Data is stored for a shorter duration, unless it's used to enhance our Service's security or functionality, or we're legally mandated to keep this data for extended periods.
8. Transfer of Data
Your details, inclusive of Personal Data, might be transferred to and stored on computers situated outside your state, province, country, or other governmental jurisdiction where the data protection regulations might vary from your jurisdiction. If you're residing outside the United States and opt to provide data to us, be informed that we transfer the data, inclusive of Personal Data, to the United States for processing. The Company will undertake all steps reasonably essential to ensure your data is processed securely and in alignment with this Privacy Policy. No transfer of your Personal Data will occur to an entity or a nation unless there are sufficient controls, including your data's security and other personal details. When transferring your Personal Data to other nations, we will safeguard that Personal Data as outlined in this Privacy Policy and in compliance with the prevailing law. We employ contractual protections for the Personal Data transfer among various jurisdictions (as per the European Commission’s standard contractual clauses mentioned in Article 46. 2 c) of the GDPR).
9. Disclosure of Data
We might disclose the Personal Data you provide in the following situations:
- When mandated by law or in response to valid requests from public authorities.
- In the event of a merger, acquisition, or asset sale involving us or our subsidiaries.
- To our subsidiaries, affiliates, and employees for operational purposes.
- To contractors, service providers, and other third parties that assist our business operations.
- To fulfill the specific purpose for which you provided the data.
- For showcasing your company’s logo on our Website.
- With your explicit consent in other specific scenarios.
We ensure that we neither sell nor share your Personal Data, apart from the scenarios mentioned in this Privacy Policy.
10. Security of Data
Your data's security is a priority for us, though it's important to note that no method of transmission over the Internet or electronic storage can guarantee complete security. To protect the Personal Data you provide, we employ suitable administrative, technical, and physical safeguards. These measures help prevent accidental, unlawful, or unauthorized destruction, loss, alteration, access, disclosure, or use of your Personal Data. For instance, we keep backup copies and restrict access to authorized personnel only.
11. Your Data Protection Rights Under General Data Protection Regulation (GDPR)
If you are a resident of the European Union (EU) and European Economic Area (EEA), you possess specific data protection rights, as outlined by GDPR. Our objective is to facilitate your ability to correct, amend, delete, or restrict the use of your Personal Data. You have the following data protection rights:
- Access: You can request access to your Personal Data, which involves sharing or sending a copy of all your processed Personal Data.
- Rectification: You can request the correction of inaccurate Personal Data by indicating the specific data that requires rectification.
- Erasure: You can request the erasure of your Personal Data; however, there are certain circumstances under which erasure can be refused as defined by law.
- Restriction of Processing: You can request the restriction of processing of your Personal Data by specifying the data that should be restricted.
- Objection: You can object to the processing of your Personal Data based on circumstances specific to you.
- Withdrawal of Consent: You can withdraw your consent to process your Personal Data, but this applies only to processing based on consent. If there's a legal basis for processing that's not reliant on consent, we can continue processing for the defined purposes.
- Complaint: You have the right to lodge a complaint with a supervisory authority if you believe that the processing of your Personal Data violates GDPR.
If you wish to exercise any of these rights, please contact us at support@dialoggpt.io. Kindly note that we may require identity verification before addressing your requests. Additionally, some necessary data may be required for us to provide the Service.
12. Your Data Protection Rights under the California Privacy Protection Act (CalOPPA)
CalOPPA is a groundbreaking state law in the United States that mandates commercial websites and online services to display a privacy policy. The impact of this law extends beyond California's borders, requiring any person or company in the United States (and even globally) that operates websites collecting personally identifiable information from California consumers to prominently display a clear privacy policy on their website. This policy must explicitly outline the types of information collected and the parties with whom it is shared. Compliance with this policy is essential.
For more information about the California Online Privacy Protection Act (CalOPPA), you can visit: https://consumercal.org/about-cfc/cfc-education-foundation/california-online-privacy-protection-act-caloppa-3/.
According to CalOPPA, we agree to the following:
- Users can visit our site anonymously.
- Our Privacy Policy link includes the word “Privacy” and is easily accessible on the specified page above, as well as on the home page of our website.
- Users will be informed of any changes to our privacy policy on our Privacy Policy Page.
- Users have the ability to update their personal information by emailing us at support@dialoggpt.io.
Our Policy on “Do Not Track” Signals:
We respect and honor Do Not Track signals. This means we do not track, utilize cookies, or engage in advertising when a Do Not Track browser mechanism is active. "Do Not Track" is a preference that you can enable in your web browser to inform websites that you do not wish to be tracked. You can enable or disable this feature by accessing the Preferences or Settings page of your web browser.
13. Service Providers
We may collaborate with third-party companies and individuals to support and enhance our Service ("Service Providers"). These entities assist us in delivering the Service, performing Service-related functions, or aiding in the analysis of how our Service is utilized. These third parties are granted access to your Personal Data solely for the purpose of fulfilling these tasks on our behalf. They are under the obligation not to reveal or utilize your Personal Data for any other objectives.
14. Payments
Should we offer paid products and/or services through our Service, we may engage the services of third-party providers for payment processing (e.g., payment processors). We do not retain or collect your payment card details; instead, this information is transmitted directly to our third-party payment processors, whose utilization of your personal information is regulated by their respective Privacy Policies. These payment processors adhere to the PCI-DSS standards, managed by the PCI Security Standards Council. PCI-DSS criteria are designed to guarantee the secure management of payment information. The payment processors we collaborate with include:
- Stripe - The Privacy Policy of Stripe Inc. can be found at: https://stripe.com/us/privacy.
15. Links to Other Sites
Our Service may include links to external sites that are not operated by us. If you click on a third-party link, you will be directed to that third party's website. We strongly recommend reviewing the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party websites or services.
16. Children's Privacy
Our Service is not intended for individuals under the age of 16 (“Children”). We do not knowingly collect personally identifiable information from individuals under the age of 16. If you are a parent or guardian and you believe that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verifiable parental consent, we will take steps to remove that information from our servers.
17. Changes to This Privacy Policy
We may revise and update our Privacy Policy from time to time. Any changes will be effective when we post the updated Privacy Policy on this page and update the "effective date" at the top of this page, unless a different type of notice is required by applicable law. We recommend reviewing this Privacy Policy periodically for any changes. By continuing to use our Service or providing us with Personal Data after an updated Privacy Policy is posted or you are notified if applicable, you agree to the revised Privacy Policy and the practices outlined in it.
18. Contact Us
If you have any questions or concerns about this Privacy Policy, please feel free to contact us at support@dialoggpt.io.
19. Privacy Policy Addendum
Addendum to Privacy Policy for Canada
Personal Data maintained and processed by our affiliates and third-party service providers in the U.S. and other foreign jurisdictions may be subject to disclosure pursuant to a lawful access request by U.S. or foreign courts or government authorities. We will not provide your information to third parties for marketing purposes without your prior consent. For more information about our privacy practices; to access, update, or correct inaccuracies in your personal information; or if you have a question or complaint about the manner in which we or our service providers treat your personal information, please contact us using the data indicated in the "Contact Us" section above.
Addendum to Privacy Policy for Mexico
To the extent Mexican privacy laws or regulations apply, the following additional Mexico-specific provisions apply and shall prevail over conflicting provisions in the Privacy Policy.
How We Use the Information We Obtain
In addition, we may use your Personal Data for the other purposes listed in the "Use of Data" section of the Privacy Policy, which may be considered secondary purposes under Mexican law. We do not use or share personal payment or financial information except in connection with the processing of payments or where there is another legal basis. You may withdraw your consent to our processing of your Personal Data by contacting us as indicated in the "How to Contact Us" section of the Privacy Policy. If you withdraw your consent for us to process your Personal Data for one of the primary purposes indicated above, then in some situations, we may not be able to provide the service, though we may still engage in certain processing authorized by law. The Company may also use data and related data analysis in other Company products and services.
Information We Share
We may share your Personal Data as provided in the Privacy Policy, but to the extent permitted by law, you may withdraw your consent to this sharing by contacting us as indicated in the "How to Contact Us" section of the Privacy Policy. We also share the related information we obtain with our customers, partners, affiliates, and joint marketing partners. These entities, which collectively are referred to here as the "Business Partners," may use the information for the purposes described in this Privacy Policy. We may also share the information with our Business Partners and other third parties for warranty, troubleshooting, or maintenance purposes, or for improving the design and performance of their products and services.
Requests for Access, Correction, Cancellation, Objection or Consent Withdrawal
In addition to any rights granted in the Privacy Policy, you may ask us to cancel your Personal Data to the extent permitted by law by contacting us as indicated in the "How to Contact Us" section of the Privacy Policy. Following a valid cancellation request, we may hold the Personal Data for the duration and purposes permitted by law before deleting it. We will answer your requests to access, correct, or cancel your Personal Data or to object or withdraw your consent to our processing of your Personal Data within 20 business days from the date we receive your complete request or as provided by law. To be considered complete, your request must include your full name and contact address, and a clear and detailed description of your request.
Addendum to Privacy Policy for Japan
The Company complies with Japanese laws and regulations, including the Act on the Protection of Personal Information. The Company is primarily responsible for the management of the Personal Data that is jointly used with our affiliates or third parties. We will not provide your information to third parties for marketing purposes without your prior consent.
Addendum to Privacy Policy for Republic of Korea
Except as otherwise required by law, consumer Personal Data is securely disposed of without delay when (i) the consumer revokes his or her consent for our use of the information, (ii) the purpose of our collection and use of the Personal Data has been accomplished or (iii) the legal retention period has expired. If applicable law requires the preservation of Personal Data that otherwise would be disposed of, the Personal Data is transferred to a separate database and then disposed of after the period determined by the applicable law. Personal Data is disposed of using a method that is reasonably likely to prevent the Personal Data from being restored or reused. We will not provide your Personal Data to third parties in violation of law (such as without your consent, where consent is required). For the purposes stated in the Privacy Policy, Company or our affiliates are responsible for the handling of Personal Data with respect to services provided in the Republic of Korea.