Effective Date: 02/24/2024
Uptk LLC (“we,” “us,” or “our”) operates uptk.io. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.
1. Information We Collect
Personal Data:
We may collect personally identifiable information, such as your name, email address, and contact details, when you register for our services or communicate with us.
Usage Data:
We automatically collect information about your interactions with our services, including your IP address, browser type, operating system, pages viewed, and the dates/times of your visits.
Cookies and Tracking Technologies:
We use cookies and similar tracking technologies to track activity on our service and store certain information.
Google OAuth Data for Email Campaigns:
When you connect a Google account for our email campaign services, we collect only the necessary credentials – such as the app token and refresh token – required to send, manage, and track your outgoing emails. This data is collected solely to facilitate your email campaigns.
2. How We Use Your Information
We use the information we collect in the following ways:
- To provide, operate, and maintain our services
- To improve, personalize, and expand our services
- To communicate with you, including customer service and support
- To process transactions and send related information
- To monitor and analyze usage and trends to improve your experience
- To detect, prevent, and address technical issues
- To facilitate email sending and manage your email marketing campaigns using Google OAuth data
We use your Google OAuth data solely for sending and managing outgoing emails and will not use it for any other purposes.
3. Sharing Your Information
We do not share your personal or Google OAuth data with any third parties, except as required by law.
4. Personal Data Protection Guidelines
We are committed to ensuring that your personal data is handled securely and in compliance with relevant data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
- Data Minimization: We only collect and retain the minimum personal information necessary for legitimate business purposes.
- Encryption: All sensitive data (e.g., passwords, access tokens) is encrypted in transit (TLS) and at rest using industry-standard algorithms such as AES-256.
- Access Controls: Access to user data is limited strictly to authorized personnel and is protected by role-based access control, logging, and auditing.
- User Consent: We request explicit consent before collecting personal data where required and provide clear options to withdraw it.
- Breach Notification: In the event of a data breach affecting your personal information, we will notify you promptly and in accordance with applicable legal obligations.
- Subprocessor Due Diligence: All third-party services (e.g., Stripe, AWS) are reviewed for security compliance before integration.
- Right to Delete: You may contact us to request complete removal of your data from our systems, subject to any legal obligations to retain it.
5. Your Data Protection Rights
Depending on your location, you may have the following rights regarding your personal data:
- The right to access – You have the right to request copies of your personal data.
- The right to rectification – You have the right to request that we correct any information you believe is inaccurate.
- The right to erasure – You have the right to request that we erase your personal data, under certain conditions.
- The right to restrict processing – You have the right to request that we restrict the processing of your personal data, under certain conditions.
- The right to object to processing – You have the right to object to our processing of your personal data, under certain conditions.
- The right to data portability – You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.
6. Data Retention and Deletion
We retain your personal information, including Google OAuth data, only as long as necessary to provide our services or as required by law. When the data retention period expires or upon your request, we will securely delete or anonymize your information.
7. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. You are advised to review this Privacy Policy periodically for any changes.
8. Contact Us
If you have any questions about this Privacy Policy, please contact us at:
Email: info@uptk.io