PRIVACY POLICY FOR KRISP
Last updated: October 25, 2024
Welcome to www.krisp.ai (“Site”), hosted by Krisp Technologies, Inc. (“Company”, “we”, “us” and/or “our”). Company provides AI meeting assistant and noise cancellation technologies to individuals and businesses (“Krisp”). In order to provide the Site and/or Krisp, we collect personal data from our Site visitors (“Site Visitors”) and our customers (“Customers”). We also collect the personal data of our Customers’ Authorized Users (as defined in the Krisp Terms of Use) when they use Krisp, and we also collect certain information from third parties. All references to “you” and “your” in this Privacy Policy mean the Site Visitors, Customers, including the person accepting this Privacy Policy on behalf of an entity or organization, and Authorized Users, as the case may be.
This Privacy Policy applies to personal information collected by Company when you use our Site and/or Krisp, or otherwise provide us with personal information. Please read it carefully to understand our policies and practices regarding your personal information and how we will treat it. If you do not agree with our Privacy Policy, please do not download, install, register with, access, or use the Site and/or Krisp. Please note that this Privacy Policy does not apply to Krisp for Enterprises product users, and their End Users (as such terms are defined in our Privacy Policy for Enterprises) and access to and use of Krisp and the Site by such parties is subject to our Privacy Policy for Enterprises.
IF YOU ARE AN INDIVIDUAL LOCATED IN THE EEA: If you are located in the European Economic Area (“EEA”), this entire Privacy Policy applies to you. However, please see the section titled Additional Information for Users in the EEA, which will inform you in detail about our legal bases for processing and your rights regarding the processing of your personal data.
IF YOU ARE A RESIDENT OF NEVADA: If you are a resident of Nevada, this entire Privacy Policy applies to you. However, please see the section titled Notice to Nevada Consumers, which will also apply to you.
WHO WE ARE
Company is a Delaware corporation with the following corporate information:
Krisp Technologies, Inc.
2150 Shattuck Ave, Penthouse 1300, Berkeley, CA 94704, United States
For users in the EEA and the U.K., note that we may collect your personal data as:
- A “data controller” when we determine the means and purpose of processing, such as when we process the personal data of our Site visitors and/or customers, or as
- A “data processor” when we collect and process personal data of Authorized Users on behalf of our Customers who use Krisp.
When we act as a ‘data processor’, our Customers are primarily responsible for making sure that they have properly informed Authorized Users of their policies and practices and your rights. However, Company handles and secures your personal information as set forth in this Privacy Policy (except as noted otherwise in this Privacy Policy).
CHILDREN’S PRIVACY
Company does not knowingly collect information from children under the age of 16. If you are under the age of 16, please do not submit any personal data to us. We encourage parents and legal guardians to monitor their children’s Internet usage and to help enforce our Privacy Policy by instructing their children never to provide personal data without their permission. If you have reason to believe that a child under the age of 16 has provided personal data to Company through the Site or Krisp, please contact [email protected] and we will endeavor to delete that information from our databases.
CHANGES TO THIS PRIVACY POLICY
This Privacy Policy was last updated on the date indicated above, but we suggest that you review it from time to time, as our Site and/or Krisp and our business may change. As a result, at times it may be necessary for the Company to make changes to this Privacy Policy. Company reserves the right to update or modify this Privacy Policy at any time and from time to time without prior notice. However, if an update materially impacts your rights or how we use your personal information, we will notify you either by email or other direct communication before such updates take effect. Your continued use of the Site and/or Krisp after any changes or revisions to this Privacy Policy shall indicate your agreement with the terms of such revised Privacy Policy.
TO WHOM DOES THIS POLICY APPLY
Note at the outset that this Privacy Policy does not cover our Customers’ websites, products or services. Each Customer is responsible for posting its own terms, conditions, and privacy policies, and ensuring compliance with all applicable laws and regulations. This Privacy Policy applies to:
- Customers: as noted above, this includes any individual who registers or creates an account individually or on behalf of an entity or organization in order to use Krisp.
- Site Visitors: visitors to our Site, including those who may also opt-in to receive commercial communications from Company.
- Authorized Users: Company processes Authorized User data on behalf of its Customers. While our Customers are responsible, as data controllers, for how and why they collect and process their Authorized User personal information, this Privacy Policy also applies to any Authorized User personal information that we process, as a data processor, in order to provide Krisp to our Customers, except where specifically indicated.
- Other Individuals: Company also collects certain professional information from third parties about individuals with whom we do not have a direct relationship or individuals who contact us to get more information about Krisp.
INFORMATION WE COLLECT
What personal information we collect and process depends on how and why you use our Site and/or Krisp. Generally, we process personal information that we receive:
- Directly from you when you provide it to us, such as in connection with our Site and/or Krisp.
- Indirectly, through automated technologies such as cookies, or from third parties.
PLEASE NOTE AT THE OUTSET THAT COMPANY DOES NOT HAVE ACCESS TO OR STORE ANY AUDIOVISUAL DATA, EXCEPT WE MAY STORE VOICE AND/OR VIDEO CONTENT ON OUR SERVERS WHEN THE KRISP RECORDING FEATURE IS ON. EXCEPT AS PROVIDED HEREIN, COMPANY PROCESSES MICROPHONE/SPEAKER AUDIO DATA ONLY ON USERS’ DEVICES. THIS DATA DOES NOT LEAVE THE USERS’ DEVICES AND COMPANY DOES NOT HAVE ACCESS TO THE CONTENT OF CUSTOMER AND AUTHORIZED USER CONVERSATIONS.
MEETING NOTES FEATURE, WHICH INCLUDES MEETING TRANSCRIPTS, AND MEETING SUMMARIES, IS AVAILABLE FOR KRISP AI MEETING ASSISTANT PRODUCT USERS. YOU ACKNOWLEDGE AND AGREE THAT WE MAY STORE THE MEETING TRANSCRIPTS ON OUR SERVERS IN ORDER TO ENABLE THE FULL FUNCTIONALITY OF THE MEETING NOTES FEATURE. WE MAY SHARE YOUR MEETING TRANSCRIPTS WITH THIRD PARTY SERVICE PROVIDERS IN ORDER TO PROVIDE YOU WITH AI-GENERATED MEETING SUMMARIES, WHICH MAY ALSO BE STORED BY US. THE LIST OF OUR CURRENT THIRD PARTY SERVICE PROVIDERS IS AVAILABLE HERE AND SUCH THIRD PARTY’S TERMS ALSO APPLY TO YOUR USE OF THE MEETING NOTES FEATURE. PLEASE NOTE THAT YOU MAY OPT OUT OF THE MEETING NOTES FEATURE FROM THE KRISP APP.
WHEN THE KRISP RECORDING AND MEETING NOTES FEATURES ARE ON, WE STORE SUCH AUDIO AND/OR VIDEO RECORDINGS AND MEETING NOTES ONLY IN CONNECTION WITH PROVIDING SERVICES TO THE CUSTOMER – WE DO NOT MONITOR, SELL OR USE SUCH CONTENT FOR ANY PURPOSE AND WE DO NOT CONTROL HOW RECORDINGS AND MEETING NOTES ARE PROCESSED. THE CUSTOMER, RATHER THAN COMPANY, CONTROLS HOW SUCH CONTENT IS PROCESSED. ANY QUESTIONS ABOUT THE PROCESSING OF SUCH CONTENT SHOULD BE ADDRESSED TO THE CUSTOMER DIRECTLY.
WE HAVE ROBUST ACCESS CONTROLS TO PREVENT UNAUTHORIZED ACCESS TO RECORDINGS AND/OR MEETING NOTES STORED ON COMPANY SERVERS. UNLESS OTHERWISE PROVIDED HEREIN, WE STORE RECORDINGS AND/OR MEETING NOTES UNTIL YOU INSTRUCT US TO DELETE THE RECORDINGS, MEETING NOTES AND/OR YOUR ACCOUNT WITH COMPANY. YOU CAN CONTACT [email protected] TO REQUEST RECORDINGS AND/OR MEETING NOTES DELETION.
Information We Collect Directly From You
You can generally visit our Site without having to submit any personal information. If you request more information, or sign up for Krisp, we will collect personal information as follows.
Contact Forms
If you contact us via the contact form on our Site, we will ask you to provide information (e.g. your name, email address, company name, title).
Account Information
When you register for a Customer account (including when you join for free) we request your email address. For corporate Customers with multiple team members, we may also ask you to submit your name and company name, as well as team members who will have access to Krisp. This information is your “Account Information” for the purposes of this Privacy Policy. Account Information is required to identify you as a Customer and permit you to access your account(s).
Note that our corporate Customers are responsible for ensuring that they comply with applicable privacy laws and notice requirements with respect to any individual whose name and information is submitted in connection with the Account Information.
Your Content
If you provide Your Input (as defined in our Terms of Use), we may collect personal data contained in Your Input. If we generate Your Content (as defined in our Terms of Use), we may also collect and store such information in accordance with this Privacy Policy, including any types of personal data contained therein.
Customer Payment Information
You are not required to enter your credit card information unless and until you decide to continue with a paid subscription to Krisp. In order to process your payment Information, we use PCI-compliant third-party processors, as explained in the section on Payment Processing below. This information is processed by our payment service provider and we receive a confirmation of payment, which we then associate with your Account Information and any relevant transactions. In case of corporate Customers, other payment methods (e.g wire transfer) may be availed to you.
Optional Information
We may also ask you to submit personal information if you choose to use interactive features of the Site and/or Krisp, including participation in research studies, surveys, promotions, requesting customer support, or otherwise communicating with us. For example, if you participate in a research study or survey, we may record your participation and feedback. In accordance with the consent provided by your device or other third-party API, we may process any contact information that you choose to provide us access to when using the Site and/or Krisp. We may also ask you for information when you interact with us (such as when responding to notices and announcements from us), and when you report a problem with Krisp and/or the Site or otherwise correspond with us. This includes:
- Records and copies of your correspondence (including email addresses, reported issues containing recordings of your noise/voice cancellation test results, which can be stored and used by us in accordance with this Privacy Policy, the Terms of Use), if you contact us
- Your responses to surveys that we might ask you to complete for research purposes.
Information We Collect Indirectly
Device and Usage Information
When you download, use or interact with the Site, even if you do not have an account, we, or authorized third parties engaged by us, may automatically collect information about your use of the Site via your device. This information is collected via cookies and similar technologies (“Device and Usage Information”) and consists of:
- Information About your Device: information about the devices and software you use to access the Site — primarily the internet browser or mobile device that you use, the website or source that linked or referred you to the Site, your IP address or device ID (or other persistent identifier that uniquely identifies your computer or mobile device on the Internet), the operating system of your computer or mobile device, device screen size, and other similar technical information.
- Usage Information: information about your interactions with the Site, including access dates and times, hardware and software information, device event information, log data, crash data, cookie data, and search queries on the Site and/or Krisp. This information allows us to understand the screens that you view, how you’ve used the Site and/or Krisp (which may include administrative and support), and other actions on the Site. We, or authorized third parties, automatically collect log data when you access and use the Site, even if you have not created an account or logged in. We use this information to administer and improve the Site and/or Krisp, analyze trends, track users’ use of the Site, and for remarketing purposes, as explained here.
- Location Information: based on Device and Usage Information, we are also able to determine general location information, but we do not store IP addresses.
Information from Third Parties
In some instances, we process personal information from third parties. This consists of data from our partners, such as transactional data from providers of payment services, or information from third parties who assist us with fraud prevention. We also collect information from third parties about Other individuals with whom we do not have a direct relationship. This information consists of business or professional information and includes name and email address, along with information such as title and company name, and we use this information for our marketing purposes.
From time to time, we may combine information we collect as described above with personal information we obtain from third parties. For example, we may combine information entered through a Company sales submission with information that we receive from a third-party sales intelligence platform to enhance our ability to market Krisp to Customers or potential Customers.
We may receive information about you when you integrate third-party apps, or link a third-party service with Krisp. If you decide to activate an integration, the third-party may share with us some information about you that is required to ensure your experience is more seamless, such as your name, email address, or other content or information needed to facilitate the integration. For example, you may authorize Krisp to connect with a third-party calendaring service or to sync a contact list or address book so that your meetings and connections are available to you through Krisp. We may share such information with our third party service providers for the sole purpose of providing Krisp to you and only in accordance with the terms of this Privacy Policy. The information we receive when you link or integrate Krisp with a third-party service depends on the settings, permissions and privacy policy controlled by that third-party service. You should always check the privacy settings and notices in these third-party services to understand what data may be disclosed to us or shared with Krisp. Additionally, if you sign up or login to Krisp using a third party authentication provider supported by us, we may collect authentication information provided to us by such a provider to allow you to log in. Please note, that no information obtained through such third-party apps or services (e.g. Google Workspace APIs) is used to develop, improve, or train generalized AI and/or ML models. Additionally, when obtaining information from Google APIs, our use and transfer to any other app of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements.
Information We Process on Behalf of Our Customers
As noted above, we will process Account Information in order to provide Krisp to our Customers. This includes End User information, in order to enable End Users to access and use Krisp, and consists of name and/or email address.
As explained above, we do not have access to or store any voice content, except as described herein.
REMARKETING TAGS
This Site uses Google, Twitter, Linkedin & Facebook remarketing services or tags in order to advertise to previous visitors to our Site on third-party platforms such as those listed above. With the help of cookies or tags, these remarketing services allow us to advertise our Site to visitors who may have visited our Site. This could be in the form of an advertisement on the Google search results page, a site in the Google Display Network, or somewhere on Facebook, Linkedin or Twitter.
Third-party vendors, including Google, Facebook, Linkedin and X (formerly known as Twitter), use cookies (or similar technologies) to serve ads based on someone’s past activity on the Site, and as such, your personal information may be collected and used by those third-party vendors, subject to their respective privacy policies. It is your responsibility to read through their respective policies.
You can opt-out of remarketing by visiting the links below:
PAYMENT PROCESSING
We do not directly collect your payment information and we do not store your payment information. We use third-party, PCI-compliant, payment processors, which collect payment information on our behalf in order to complete transactions. While our administrators are able to view and track actual transactions via customer portals, we do not have access to, or process, your credit card information. In case of corporate Customers, if we availed other payment methods, we may request your bank information to process refunds, if any.
ANALYTICS
Google Analytics
The Site uses Google Analytics, an analytics service that drops cookies and/or similar technologies to collect and store Device and Usage Information. We use Google Analytics to calculate visitor, session and campaign data for the Site analytics reports.
You can read Google’s privacy policy here. You can opt-out from being tracked by Google Analytics in a particular browser on a particular device by downloading and installing the Google Analytics Opt-out Browser Add-on for that browser, which is available here.
Behavioral Analytics
We use third-party in-Site behavior analytics platforms (such as Hotjar), which are designed to give us an aggregated view of our visitors’ behavior while browsing the Site. By using heat maps (a graphical representation of data that uses a system of color-coding to represent different values) and similar technologies, these services provide us valuable insight about what is of interest to visitors on our Site. Hotjar is not designed to track individual users, however if you wish to opt-out, please click here.
Please see more on our use of analytics data here.
VIDEOS
Our Site may contain videos or links to videos relating to Krisp. If you click on a link or view a video, we do not collect any information, however the third-party video platforms, such as YouTube, may collect some personal information as set forth in their privacy notices.
HOW & WHY WE USE PERSONAL INFORMATION
We use your personal information for a number of different reasons, as further explained below.
For users located in the EEA, and the U.K., we must have a valid legal basis in order to process your personal data when we are acting as a ‘data controller’. The main legal bases under the European Union’s General Data Protection Regulation (GDPR) that justify our collection and use of your personal information are:
- Performance of a contract: when your personal information is required in order to enter into or perform our contract with you, such as when you engage us to provide Krisp.
- Consent: when you have consented to our use of your personal information via a consent form (online or offline).
- Legitimate interests: when we use your personal information to achieve a legitimate interest and our reasons for using it outweigh any prejudice to your data protection rights.
- Legal obligation: when we must use your personal information to comply with our legal obligations.
- Legal claims: when your personal information is necessary for us to defend, prosecute or make a claim.
Below are the general purposes and corresponding legal bases (in brackets) for which we may use your personal information:
- Providing you access to and use of the Site and Krisp, including accessing content, features and functionality [depending on the context, performance of a contract, legitimate interests, or consent]
- Providing Krisp and creating accounts [performance of a contract]
- Processing and completing transactions, including verifying payments, and sending you related information, including purchase confirmations and invoices and important notices [depending on the context, performance of a contract or legitimate interests]
- Developing and improving the Site, Krisp and user experience, troubleshooting user issues, if authorized by any applicable settings, and conducting research studies, or surveys. [legitimate interests or consent]
- Responding to your queries and requests, or otherwise communicating directly with you such as to give you notices about your account [depending on the context, performance of a contract, legitimate interests, and in some cases, legal claims]
- Improving the content and general administration of the Site, including system maintenance and upgrades, enabling new features and enhancing both Site Visitor and Customer experience [legitimate interests]
- Improving our proprietary and third party AI models and providing more accurate services when you (i) voluntarily provide feedback to us, such as by rating the quality of meeting transcripts or summaries; or (ii) give us your explicit permission to do so.[consent]
- Detecting fraud, illegal activities or security breaches [legitimate interests]
- Providing Krisp to our Customers [depending on the context, performance of a contract or legitimate interests]
- Ensuring compliance with applicable laws [compliance with a legal obligation]
- Conducting statistical analyses and analytics by monitoring and analyzing trends, usage, and activities on the Site [consent where required (e.g. third-party cookies), or legitimate interests]
- Customizing Krisp and the Site experience according to your individual interests, such as through storing information about your preferences and recognizing you when you use or access the Site or Krisp [legitimate interests]
- Managing our relationship with you, including Customer service or feedback [legitimate interests or performance of a contract]
- Send you related information, such as updates, security alerts, and support messages [legitimate interests]
- Increasing the number of customers who use our Site and Krisp through marketing and advertising [consent where required, or legitimate interests]
- Sending commercial communications, in line with your communication preferences, about products and services, features, newsletters, offers, promotions, and events [consent and in some cases, depending on location, with existing customers, legitimate interests]
- Providing social features as part of the Site and Krisp [legitimate interests]
- Recording and storing your meetings [Consent]
- Identifying and noting users’ participation in transcribed meetings, if you have enabled this optional feature within Krisp, until the feature is deactivated by you [Consent];
- Carrying out our obligations and enforcing our rights arising from any contracts entered into between you and us, including for billing and collection [depending on the context, performance of a contract or legal claims]
- Providing information to regulatory bodies when legally required, and only as outlined below in this Privacy Policy [legal obligation, legal claims, legitimate interests]
DISCLOSURE OF YOUR INFORMATION
We only disclose your personal information as described below.
Third-Party Service Providers
Company discloses personal information to our third-party agents, contractors, or service providers who are hired to perform services on our behalf. These companies do things to help us provide the Site and/or Krisp, and in some cases collect information directly, for example as explained in Payment Processing above. Below is an illustrative list of functions for which we may use third-party service providers:
- Hosting and content delivery network services
- Analytics services
- Providing backend support for certain features (e.g. text summarizations)
- Marketing and social media partners
- Customer support services
- Payment processors
- Communication platforms
- Functionality and debugging services
- Professional service providers, such as auditors, lawyers, consultants, accountants and insurers
For the complete list of our subprocessors that we use under this Privacy Policy and the Terms of Use, please visit our Privacy for Humans page.
Business Transfers and Transactions
As we continue to grow, we may purchase websites, applications, subsidiaries, other businesses or business units. Alternatively, we may sell businesses or business units, merge with other entities and/or sell assets or stock or receive financing, in some cases as part of a reorganization or liquidation in bankruptcy. In order to evaluate or as part of these transactions, we may transfer your personal information to a successor entity upon a merger, consolidation or other corporate reorganization in which Company participates, to a purchaser or acquirer of all or a portion of Company’s assets, bankruptcy included, or to an investor.
Customers
When we act on behalf of our Customers (as a data processor or service provider), we may provide End Users’ personal information to our Customers in order to comply with their requests, End Users’ requests and/or regulator requests, among others. Occasionally, we will provide our Customers with aggregated information that does not identify Authorized Users directly, in order to provide information about usage, demographics (such as general location) or other general information. If you subscribe to Krisp using your business email address and your employer has a Krisp account, we may add your Krisp account to your employer’s corporate Krisp workspace, if allowed by your employer’s Krisp account settings. Besides, If your employer does not yet have a corporate Krisp account, we also may provide your business email address to your employer on their request.
Legal Obligations and Security
In addition, Company will preserve or disclose your personal information in limited circumstances (other than as set forth in this Privacy Policy), including: (i) with your consent; (ii) when we have a good faith belief it is required by law, such as pursuant to a subpoena, warrant or other judicial or administrative order (as further explained below); (iii) to protect the safety of any person and to protect the safety or security of our Site and/or Krisp or to prevent spam, abuse, or other malicious activity of actors with respect to the Site and/or Krisp; or (iv) to protect our rights or property or the rights or property of those who use the Site and/or Krisp. If we are required to disclose personal information by law, such as pursuant to a subpoena, warrant or other judicial or administrative order, our policy is to only respond to requests that are properly issued by law enforcement within the United States or via mutual legal assistance mechanism (such as a treaty) in accordance with applicable laws.
DATA SECURITY
We respect and are committed to safeguarding your privacy and have undertaken and put in place reasonable security measures.
To learn about our Security measures, please visit our Security for AI Meeting Assistant page.
“DO NOT TRACK”
Krisp does not respond to Do Not Track (“DNT”) browser signals. For more information on DNT settings generally, please visit https://allaboutdnt.com .
HOW LONG DO WE KEEP YOUR PERSONAL INFORMATION?
General Retention Periods
We use the following criteria to determine our retention periods:
- The amount, nature and sensitivity of your information.
- The reasons for which we collect and process the personal data.
- The length of time we have an ongoing relationship with you and provide you with access to our Site and/or Krisp.
- Applicable legal requirements.
We retain personal information for as long as needed to provide Krisp. Note, however, that with respect to our Customers with active accounts, we may retain certain essential account information, but otherwise regularly delete other information that is less essential to the provision of Krisp in order to minimize our storage of data. We also will retain personal information that we’ve collected from you where we have an ongoing legitimate business need to do so (for example, to comply with applicable legal, tax or accounting requirements). Additionally, we cannot delete information when it is needed for the establishment, exercise or defense of legal claims (also known as a “litigation hold”). In this case, the information must be retained as long as needed for exercising respective potential legal claims. When we no longer have an ongoing legitimate business need to process your personal information, we will either delete or anonymize it or, if this is not possible (for example, because your personal information has been stored in backup archives), we will securely store your personal information and isolate it from any further processing until deletion is possible. For any questions about data retention, please contact [email protected].
Anonymization
In some instances, we may choose to anonymize your personal data instead of deleting it, for statistical use, for instance. When we choose to anonymize, we make sure that there is no way that the personal data can be linked back to you or any specific user.
OPTING-OUT OF MARKETING
You may opt-out at any time of marketing that we may send you by clicking on the unsubscribe link contained in each email, or you may contact us directly at [email protected].
NOTICE TO NEVADA CONSUMERS
We do not sell your personal information within the scope of, and according to the defined meaning of, a “sale” under NRS 603A.
INTERNATIONAL DATA TRANSFERS
Company is a United States corporation, which primarily processes and stores information in the United States. To facilitate our global operations, we may process and store personal information from around the world, including from other countries and in other countries in which Company, our group affiliates, or our subprocessors (as identified in our Privacy for humans webpage) have operations, in order to provide the Site and/or Krisp.
If you are accessing or using our Site and/or Krisp or otherwise providing personal information to us, you acknowledge and agree that your personal information may be transferred or stored in the United States, where we are established, as well as other jurisdictions in which we, our group affiliates or our subprocessors operate.
Where personal data of users in the EEA, Switzerland, or the UK is being transferred to a recipient located in a country outside the EEA, Switzerland, or the UK which has not been recognized as having an adequate level of data protection, we take appropriate safeguards to ensure that your personal information will remain protected in accordance with this Privacy Policy and applicable laws. These safeguards include implementing the Module 2 of European Commission’s Standard Contractual Clauses as issued on 4 June 2021 under Article 46(2) GDPR for transfers originating in the EEA, Switzerland (with amendments required under the applicable Swiss law) and the UK Addendum permitted under Article 46(2) of the UK GDPR for the transfer of data originating in the UK. Please contact us if you have any questions or concerns related to international data transfers.
If you are a Customer, you are responsible for informing your Authorized Users of how and where their personal information will be processed at the time of collection. Because different countries may have different data protection laws than the United States we take steps to ensure adequate safeguards are in place to protect your data as explained in this Privacy Policy. We enter into data processing agreements with our Customers on request.
ADDITIONAL INFORMATION FOR USERS IN THE EEA AND THE U.K.
Rights and Choices
If the GDPR applies to you because you are in the EEA or the U.K., you have certain rights in relation to your personal data:
- The right to be informed: our obligation to inform you that we process your personal data (and that’s what we’re doing in this Privacy Policy)
- The right of access: your right to request a copy of the personal data we hold about you (also known as a ‘data subject access request’)
- The right of rectification: your right to request that we correct personal data about you if it is incomplete or inaccurate (though we generally recommend first making any changes in your Account Settings)
- The right to erasure (also known as the ‘right to be forgotten’): under certain circumstances, you may ask us to delete the personal data we have about you (unless it remains necessary for us to continue processing your personal data for a legitimate business need or to comply with a legal obligation as permitted under the GDPR, in which case we will inform you)
- The right to restrict processing: your right, under certain circumstances, to ask us to suspend our processing of your personal data
- The right to data portability: your right to ask us for a copy of your personal data in a common format (for example, a .csv file)
- The right to object: your right to object to us processing your personal data (for example, if you object to us processing your data for direct marketing)
- Rights in relation to automated decision-making and profiling: our obligation to be transparent about any profiling we do, or any automated decision-making. These rights are subject to certain rules around when you can exercise them.
How you may exercise these rights depends on how you use the Site and/or Krisp, as explained below. For Authorized Users in the EEA or the U.K., please read below.
Customers, Site Visitors in the EEA or the U.K.
If you are located in the EEA or the U.K. and you are a Customer or Site Visitor, and wish to exercise any of the rights set out above, you may contact us at [email protected] using the term “DSR” as your email subject line. You will not have to pay a fee to access your personal data (or to exercise any of the other rights) unless your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request under those circumstances. If we cannot reasonably verify your identity, we will not be able to comply with your request(s). We may need to request specific information from you to help us confirm your identity. This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. Note that this is especially true when you engage a third party to assist you in exercising your rights. We will respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated as required by law. In addition, we will always balance your rights against those of other data subjects in connection with any requests, and in some cases this may require us to redact our responses or deny a request.
If you no longer wish to receive our marketing/promotional information, we remind you that you may withdraw your consent to direct marketing at any time directly from the unsubscribe link included in each electronic marketing message we send to you. If you do so, we will promptly update our databases, and will take all reasonable steps to meet your request at the earliest possible opportunity, but we may continue to contact you to the extent necessary for the purposes of providing Krisp.
Finally, you have the right to make a complaint at any time to the supervisory authority for data protection issues in your country of residence. We would, however, appreciate the chance to address your concerns before you approach the supervisory authority, so please contact us directly first.
Authorized Users in the EEA or the U.K.
Company has no direct relationship with Authorized Users. Our Customers are solely responsible for ensuring compliance with all applicable laws and regulations with respect to their Authorized Users, and this includes handling all data subject requests. We rely on our Customers to comply with the underlying legal requirements and respond directly to Authorized Users when Authorized Users wish to exercise the rights set forth above. However, if an Authorized User sends a request to Company to access, correct, update, or delete his/her information, we will direct that Authorized User to contact the Customer’s website(s) with which he/she interacted directly, and cooperate with our Customers as required by applicable law in order to ensure that our Customers satisfy their Authorized Users’ requests.
CONTACT US
If you have questions about data protection, or if you have any requests for resolving issues with your personal data, we encourage you to first contact us so we can reply to you more quickly.
Krisp Technologies, Inc.
2342 Shattuck Ave, #367, Berkeley, CA 94704, United States
[email protected]