kapptive - logo colour (1)

Privacy Policy

Privacy Policy

Last Updated: 2022-11-15

Introduction

Kapptive Studios (“we” or “us” or “our”) respects the privacy of our users (“user” or “you”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website kapptive.ca, including any other media form, media channel, mobile website, or mobile application related or connected thereto (collectively, the “Site”). Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the Site.

We reserve the right to make changes to this Privacy Policy at any time and for any reason. We will alert you about any changes by updating the “Last Updated” date of this Privacy Policy. Any changes or modifications will be effective immediately upon posting the updated Privacy Policy on the Site, and you waive the right to receive specific notice of each such change or modification.

You are encouraged to periodically review this Privacy Policy to stay informed of updates. You will be deemed to have been made aware of, will be subject to, and will be deemed to have accepted the changes in any revised Privacy Policy by your continued use of the Site after the date such revised Privacy Policy is posted.

Data protection

We take the protection of your personal data very seriously. We treat your personal data as confidential and in accordance with the statutory data protection regulations and this privacy policy.

If you use this Site, various pieces of personal data will be collected. Personal information is any data with which you could be personally identified. This privacy policy explains what information we collect and what we use it for. It also explains how and for what purpose this happens.

Please note that data transmitted via the internet (e.g. via email communication) may be subject to security breaches. Complete protection of your data from third-party access is not possible.

SSL or TLS encryption

This Site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the Site operator. You can recognize an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar.

If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.

What We Collect and Receive

In order for us to provide you the best possible experience on our websites, we need to collect and process certain information. Depending on your use of the Services, that may include:

Server log files

The website provider automatically collects and stores information that your browser automatically transmits to us in “server log files”.  This information may include but is not limited to:
– Browser type and browser version
– Operating system used
– Referrer URL
– Host name of the accessing computer
– Time of the server request
– Internet Protocol (IP) addresses
– Locale and language preferences.

Personal Data

Personally identifiable information, such as your name, shipping address, email address, and telephone number, and demographic information, such as your age, gender, hometown, and interests, that you voluntarily give to us when you register with the Site or when you choose to participate in various activities related to the Site, such as online chat and message boards. You are under no obligation to provide us with personal information of any kind, however your refusal to do so may prevent you from using certain features of the Site.

Derivative Data

Information our servers automatically collect when you access the Site, such as your IP address, your browser type, your operating system, your access times, and the pages you have viewed directly before and after accessing the Site. (If you are using our mobile application, this information may also include your device name and type, your operating system, your phone number, your country, your likes and replies to a post, and other interactions with the application and other users via server log files, as well as any other information you choose to provide.)

Mobile Device Data

Device information, such as your mobile device ID, model, and manufacturer, and information about the location of your device, if you access the Site from a mobile device.

Data From Contests, Giveaways, and Surveys

Personal and other information you may provide when entering contests or giveaways and/or responding to surveys.

Third Party Services

WordPress CMS

Contact form

Should you send us questions via the contact form, we will collect the data entered on the form, including the contact details you provide, to answer your question and any follow-up questions. We do not share this information without your permission.

Comments

When visitors leave comments on the Site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the Site, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the Site can download and extract any location data from images on the Site.

Cookies

WordPress uses cookies for a number of different purposes. Some cookies are necessary for technical reasons; some enable a personalised experience for both visitors and registered users; and some allow the display of advertising from selected third party networks. Some of these cookies may be set when a page is loaded, or when a visitor takes a particular action (clicking the ‘like’ or ‘follow’ button on a post, for example).  
Below the different categories of cookies set by WordPress.org are outlined, with specific examples available on their website. This includes their name and purpose. Certain cookies are only set for logged-in visitors, whereas others are set for any visitors.

Strictly Necessary: These are the cookies that are essential for WordPress.org to perform basic functions. These include those required to allow registered users to authenticate and perform account related functions.  
Functionality: These cookies are used to store preferences set by users such as account name, language, and location.

Performance: Performance cookies collect information on how users interact with websites hosted on WordPress.org, including what pages are visited most, as well as other analytical data. These details are only used to improve how the Site functions.  
Tracking: These are set by trusted third party networks (e.g., Google Analytics) to track details such as the number of unique visitors, and pageviews to help improve the user experience.  
Third Party/Embedded Content: WordPress.org makes use of different third party applications and services to enhance the experience of website visitors. These include social media platforms such as Facebook and Twitter (through the use of sharing buttons), or embedded content from YouTube and Vimeo. As a result, cookies may be set by these third parties, and used by them to track your online activity. We have no direct control over the information that is collected by these cookies.

Embedded content from other websites

Articles on this Site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Local Storage

This website uses LocalStorage to save the setting when Dark Mode support is turned on or off.
LocalStorage is necessary for the setting to work and is only used when a user clicks on the Dark Mode button.
No data is saved in the database or transferred.

Google Web Fonts

For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.

For this purpose your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our plugin. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

If your browser does not support web fonts, a standard font is used by your computer.

Further information about handling user data, can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy at https://www.google.com/policies/privacy/.

Cloudflare

We use Cloudflare by the company Cloudflare, Inc. (101 Townsend St., San Francisco, CA 94107, USA) on this Site to enhance its speed and security. For this, Cloudflare uses cookies and processes user data. Cloudflare, Inc. is an American company that offers a content delivery network and various security services. These services take place between the user and our hosting provider.  
Simply put, Cloudflare makes copies of our Site and places them on its own servers. Thus, when you visit our Site, a load distribution system ensures that the main part of our Site is delivered by a server that can display our Site to you as quickly as possible. It helps us make our Site faster and more secure. Cloudflare offers us web optimisations as well as security services such as DDoS protection and a web firewall. Moreover, this includes a Reverse-Proxy and the content distribution network (CDN). Cloudflare blocks threats and limits abusive bots as well as crawlers that waste our bandwidth and server resources.  
Cloudflare may collect certain information about the use of our Site and may process data we send or data which Cloudflare has received certain instructions for. Mostly, Cloudflare receives data such as IP addresses, contacts and protocol information, security fingerprints and the Sites’ performance data. Log data for example helps Cloudflare identify new threats. That way, Cloudflare can ensure a high level of security for our Site. As part of their services, Cloudflare process this data in compliance with the applicable laws.  
Cloudflare uses a cookie for security reasons. The cookie (__cfduid) is used to identify individual users behind a shared IP address, and to apply security settings for each individual user. The cookie expires after one year, and Cloudflare only keeps data logs for as long as necessary, and in most cases deletes data within 24h hours.  
For more information, including how you can delete and prevent data storage, see Cloudflare’s Privacy Policy.

Google reCAPTCHA

We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on the Site. This service is provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA (“Google”).

reCAPTCHA is used to check whether the data entered on our Site (such as on a contact form) has been entered by a human or by an automated program. To do this, reCAPTCHA analyzes the behavior of the Site visitor based on various characteristics. This analysis starts automatically as soon as the Site visitor enters the Site. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, how long the visitor has been on the Site, or mouse movements made by the user). The data collected during the analysis will be forwarded to Google.

The reCAPTCHA analyses take place completely in the background. Site visitors are not advised that such an analysis is taking place.

Data processing is based on Art. 6 (1) (f) GDPR. We have a legitimate interest in protecting this Site from abusive automated crawling and spam.

For more information about Google reCAPTCHA and Google’s privacy policy, please visit the following links: https://www.google.com/intl/de/policies/privacy/ and https://www.google.com/recaptcha/intro/v3.html.

Matomo (formerly called Piwik)

This Site uses the open-source web analysis service Matomo. Matomo uses technologies that make it possible to recognize the user across multiple pages with the aim of analyzing the user patterns (e.g. cookies or device fingerprinting). The information recorded by Matomo about the use of this Site will be stored on our server. Prior to archiving, the IP address will first be anonymized.

Through Matomo, we are able to collect and analyze data on the use of our Site-by-Site visitors. This enables us to find out, for instance, when which page views occurred and from which region they came. In addition, we collect various log files (e.g. IP address, referrer, browser, and operating system used) and can measure whether our Site visitors perform certain actions (e.g. clicks, purchases, etc.).

The use of this analysis tool is based on Art. 6(1)(f) GDPR. The Site operator has a legitimate interest in the analysis of user patterns, in order to optimize the operator’s web offerings and advertising. If a corresponding agreement has been requested (e.g. an agreement to the storage of cookies), the processing takes place exclusively on the basis of Art. 6(1)(a) GDPR; the agreement can be revoked at any time.

IP anonymization

For analysis with Matomo we use IP anonymization. Your IP address is shortened before the analysis, so that it is no longer clearly assignable to you.

We host Matomo with Digital Ocean in the Toronto, Canada data center.

Execution of a contract data processing agreement

We have concluded a contract for order processing with these third-party providers, which guarantees that the data collected with Matomo will be processed exclusively according to our instructions and in accordance with the GDPR.

Social Bookmarks and Social Media links

“Social bookmarks” (e.g., from Facebook, Twitter, LinkedIn, GitHub or Xing) and social media links are integrated on our Site. Social bookmarks are Internet bookmarks that allow users of such a service to collect links and news items. Bookmarks and social media links are only included on our Site as a link to the corresponding services. After clicking on the integrated graphic, you will be redirected to the respective provider’s website, i.e., only then will user information be transmitted to the respective provider. For information on the handling of your personal data when using these websites, please refer to the privacy policies of the respective providers.

Third party disclosure  

We may disclose information to third parties when outsourcing services, such as data storage, debt collection, bulk distribution and mailing, direct marketing, technology support services and obtaining expert help from consultants to improve our services.  
We have contractual agreements with our service providers to protect your information up to the same standards as if we stored the information ourselves and to prevent them using the information we provide for any purposes than our own.  

Our Site may direct you to websites operated by third parties (Linked Sites). We are not responsible for the content or practices of the Linked Sites or their privacy policies regarding the collection, storage, use and dissemination of your Personal Information. We encourage you to always read the applicable privacy statement of any Linked Site before using it.

Required by law

There are times when we will be required by law to disclose any personal information we have about you, such as in the instance of an investigation into bankruptcy, counter-terrorism, fraud, taxation etc.

Your Rights

You have the right to be informed of Personal Data processed by Kapptive Studios, a right to rectification/correction, erasure and restriction of processing. You also have the right to ask from us a structured, common and machine-readable format of Personal Data you provided to us.  

We can only identify you via your email address and we can only adhere to your request and provide information if we have Personal Data about you through you having made contact with us directly and/or you using our Site and/or service. We cannot provide, rectify or delete any data that we store on behalf of our users or customers.  

To exercise any of the rights mentioned in this Privacy Policy and/or in the event of questions or comments relating to the use of Personal Data you may contact Kapptive Studios’s support team: [email protected]

In addition, you have the right to lodge a complaint with the data protection authority in your jurisdiction.

Contact Details and Additional Information

If you require further information regarding this Privacy Policy please contact us at [email protected]