Last updated: Nov 1 2022
We provide additional information for data subjects in the EEA, Switzerland and the UK (collectively, “Europe”) below.
Personal Information We Collect
Information you provide to us, such as:
Third party sources. We may combine personal information about you with personal information we obtain from other sources, such as:
Automatic data collection. We our service providers, and our advertising partners may automatically log information about you, your computer or mobile device, and your interaction over time with our Services, our communications and other online services, such as:
We use the following tools for automatic data collection:
How We Use Personal Information
We use your personal information for the following purposes or as otherwise described at the time of collection:
Service delivery. We use your personal information to:
Research and development. To continue to operate and improve our Services, and to create new features and capabilities for our users, we may create and use aggregated, de-identified or other anonymous data from personal information we process.
Marketing and advertising. We may use personal information for marketing and advertising purposes, including:
Compliance and protection. We may use personal information to:
How We Share Personal Information
We may share your personal information with:
Service providers. Companies and individuals that provide services on our behalf or help us operate our Services or our business (such as hosting, information technology, customer support, email delivery, and website analytics services).
Advertising and marketing partners. When you visit our corporate website, third party advertising companies may use automated technologies to collect information for interest-based advertising purposes described above. We do not allow advertising partners to collect this data from our web application after you log into your Bookkeep account.
Marketing partners. Other companies that provide business services that may be of interest to you.
Professional advisors. Professional advisors, such as lawyers, auditors, bankers and insurers, where necessary in the course of the professional services that they render to us.
Authorities and others. Law enforcement, government authorities, and private parties, as we believe in good faith to be necessary or appropriate for the compliance and protection purposes described above.
Business transferees. Acquirers and other relevant participants in business transactions (or negotiations for such transactions) involving a corporate divestiture, merger, consolidation, acquisition, reorganization, sale or other disposition of all or any portion of the business or assets of, or equity interests in, Bookkeep or our affiliates (including, in connection with a bankruptcy or similar proceedings).
Please keep in mind that whenever you voluntarily make your personal information available for viewing by third parties or the public on or through our Services, that information can be seen, collected and used by others. We are not responsible for any use of such information by others.
How You May Direct Us to Share Personal Information Through our Services
To provide additional versatility, you may direct us to share some personal information associated with your account (e.g. summary and order level data) with third parties.
In all such situations, we share personal information that the third party requires to provide the services that you requested, and we have implemented reasonable confidentiality and security measures to help protect your information that we transmit. Some of these third parties may notify us of the details and/or status of the service that you have requested so we that can improve your experience with Bookkeep.
Opt out of marketing communications. You may opt out of marketing-related communications by following instructions contained in the marketing communications we send you.
Update your Authentication Service settings. To stop sharing your information with Google or other Authentication Services with whom Bookkeep permits you to connect your account, please modify your privacy settings on those platforms.
Do Not Track. Some Internet browsers may be configured to send “Do Not Track” signals to the online services that you visit. We currently do not respond to “Do Not Track” or similar signals. To find out more about “Do Not Track,” please visit http://www.allaboutdnt.com.
Processing Personal Information in the US
We have personnel and use service providers located in the United States. To provide our Services and operate our website, it is necessary for us to process personal information in the United States.
Other Sites and Services
Our Services may contain links to websites and other online services operated by third parties. In addition, our content may be integrated into web pages or other online services that are not associated with us. These links and integrations are not an endorsement of, or representation that we are affiliated with, any third party. We do not control websites or online services operated by third parties, and we are not responsible for their actions.
We employ a number of technical, organizational and physical safeguards designed to protect the personal information we collect. However, no security measures are failsafe and we cannot guarantee the security of your personal information.
The Services are not intended for use by children under 13 years of age. If we learn that we have collected personal information through our Services from a child under 13 without the consent of the child’s parent or guardian as required by law, we will delete it.
How to Contact Us
You can reach us by email at [email protected] or at the following mailing address:
410 Atlantic Ave
Brooklyn NY 11217
Notice to Europeans
Controller. For purposes of European data protection legislation, we are the controller of the personal data that we process on our own behalf. You can contact us using the information listed in the How to Contact Us section above.
Representative. Our representatives in Europe are:
You may contact these representatives at https://verasafe.com/public-resources/contact-data-protection-representative.
Legal basis for processing. We use your personal information only as permitted by law. Our legal bases for processing the personal data we process as a controller are described in the table below.
GDPR Legal Basis
· Payment and transaction data
· Processing is necessary to perform the contract governing our provision of our Services or to take steps that you request prior to signing up for the Services.
· Consent for using analytics cookies.
· Legitimate interests in (i) sending you information regarding products and services that may be of interest to you and (ii) informing our marketing strategy.
· Consent for sending marketing communications regarding other products and services that may be of interest to you.
· Consent for using third-party advertising cookies.
· Payment and transaction data
· Legitimate interests in keeping our Services, network and information systems secure.
· Complying with law
Your rights. Data protection laws give you certain rights regarding your personal data. If you are located in Europe, you may ask us to take the following actions in relation to your personal data that we process as a controller:
You may submit these requests by email or our postal address provided above.
We may request specific information from you to help us confirm your identity and process your request. Applicable law may require or permit us to decline your request. If we decline your request, we will tell you why, subject to legal restrictions. If you would like to submit a complaint about our use of your personal information or our response to your requests regarding your personal information, you may contact us or submit a complaint to the data protection regulator in your jurisdiction. You can find your data protection regulator here. If you are located in the UK, you may submit a complaint to the Information Commissioner’s Office at https://ico.org.uk/make-a-complaint/your-personal-information-concerns/.
Data retention. We retain personal information for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements, to establish or defend legal claims, or for fraud prevention purposes. When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.