Privacy Policy
Your privacy is extremely important to us. To perform our tasks efficiently and optimize our services for you, we process personal data. Safeguarding the security and privacy of your personal information is not only in your interest but also in ours. Ziber follows relevant laws and regulations that impose requirements on the use of sensitive information.
Ziber collects data from you through our interactions with you and through our products and services. You provide some of this data directly, while other data is obtained through collecting information about your interactions, usage, and experiences with our products and services. What data we collect depends on the context of your interactions with Ziber and the options you choose, such as your privacy settings and the products and features you use.
Ziber as Data Controller of your personal data
Ziber is responsible for processing your personal data when, for example, you request a service from Ziber or subscribe to a Ziber newsletter. In this Privacy Policy, you will find more information on how we process your personal data when Ziber acts as the Data Controller.
Ziber as Data Processor for other organizations
When another organization requests that you use one (or more) of Ziber's "Services" (as described in our Terms of Use) because that organization has purchased those Services from Ziber and uses them for their own operations, we process your personal data in accordance with the Data Processing Agreement we have with that organization. This applies, for example, when your child's educational institution asks you to use the Ziber Kwieb parent app. Do you want to know more about the agreements we have with that organization regarding the processing of your personal data? Read more at Data Processing Agreement.
Personal Data
We only request personally identifiable information when it is truly necessary, for example, to process your request or to use one of the Services.
Name, Title, Job Position, and Contact Information
When you contact Ziber, for example, to subscribe to a service or inquire about a service, we process personal data to handle your request and continue supporting the service. This includes activities like subscribing to a service or registering a domain name.
Subscription and License Information
Information about your subscriptions, licenses, and other rights.
Email Address
If you wish to receive our newsletter, you can provide your email address on one of our websites (e.g., ziber.eu).
Various Content
If you provide us with information (files, documents, videos, photos, or other digital material) at our request, which contains personally identifiable information necessary for us to deliver a service, solve problems, or further develop services, we will process that data. For example, this could include the names and email addresses of employees from your organization for whom we create accounts on our Services.
Credentials
Passwords, password hints, and similar security information used for identity verification and access to the account.
If you unsolicitedly share personal data with Ziber, such as a copy of your passport, we will not process this information and will delete it immediately.
Ziber ID
When using one of our Services, you will often need to create a Ziber ID (account), so we can identify you, securely store your data, and provide better support with questions or issues. When you create a Ziber ID, we process the following personal data:
Name, Email, and Password
An account includes at least an email address and password, and possibly a name. Only the name and, if available, the profile picture will be shared with other users of our Services unless the software explicitly allows you to restrict access to certain parts. The Ziber ID ensures that unauthorized persons cannot access your data, and only you can modify or delete your personal data with Ziber. You can delete the Ziber ID yourself; refer to our support articles.
Profile Picture, Phone Number, Address, Job Position, Preferred Language, Gender, and Biography
Optionally, you can enhance your Ziber ID with additional personal data, such as a profile picture, phone number, address, job position, preferred language, gender, and biography, which we store for you. This allows you to easily share this information with other designated parties/users of our Services, and also enhances your experience of using the Services. For instance, when making a payment via Ziber Pay, you can retrieve your address from your Ziber ID profile and share it with the party you are making the purchase/payment to.
We will clearly indicate in our Services when these optional personal details from your Ziber ID are shared with other users, so you are aware. By using the Ziber Services and continuing to use them, you indicate that you understand and agree to this.
Data
In addition to the personal data you have provided to Ziber and the data associated with your Ziber ID, we collect information about your use of our services, which may also be personally identifiable ("Data"), and are described here:
Interactions
Data about the performance of products and/or services and any issues you experience, including error reports. Error reports may include software and/or hardware details related to an error, the content of the operation you were performing at the time of the error, and system data about your device.
Support-related Data
Information you provide when contacting our support team, such as the products and/or services you use and other details that help us provide assistance. For example: contact or verification information, the content of your chats and other communications with Ziber, and data about the products and/or services you use in relation to your support inquiry.
Aggregate Statistics
Ziber collects statistics about user (browsing) behavior on its websites and services. For example, Ziber tracks the most visited Ziber websites by Customers or the most commonly used search terms before a user visits a Ziber website. This data is collected without personally identifying individuals.
Cookies
A cookie is a piece of data that a server sends to the browser with the intention of being stored on the visitor's computer and returned to the server on a subsequent visit. Ziber uses cookies to identify users and save their preferences. Users of Ziber websites who do not want cookies placed on their computers can set this preference in their web browser, with the note that certain features of Ziber websites and/or Services may not function properly.
Legal Basis
The legal basis for storing and/or retaining your personal data is based on your consent, a contract, or a legitimate interest on our part as the Data Controller.
Consent
In the case of consent, we will explicitly ask for it before you provide your personal data to us. You may withdraw this consent at any time.
Contract
It is possible that a contract with Ziber has been established, making you known to us as a data subject through your personal data. For example, you may be a co-administrator (via a Ziber ID) of a website purchased from Ziber by your organization through a contract. This is just one example of many possibilities.
Legitimate Interests of the Data Controller (us)
- For developing and improving our products and services
- For providing support to you
- To personalize our products and make recommendations
- We also use the data for our business operations, including analyzing our performance, complying with legal obligations, developing our staff, and conducting research.
Recipients of Personal Data
We do not share your data with other organizations, except for Ziber Affiliates, when there is a legal basis, for product development, to provide services to you, or to protect our rights.
Other Users of Our Services
Your name and profile picture (if added) from your Ziber ID are shared with other users of our Services. In some services, you can turn off sharing your name and profile picture with certain other users, such as in Ziber Kwieb. Other personal data from your Ziber ID, such as address details, is only shared with other users after we have obtained your permission.
Ziber Employees
Authorized Ziber employees may access your personal data to provide support, handle your request, implement changes, make backups, and perform any other necessary tasks to deliver our Services and products or comply with legal obligations. Ziber employees are contractually bound to confidentiality regarding your personal data stored and/or available at Ziber.
Ziber Affiliates
Authorized employees of Ziber Affiliates may access your personal data to provide support, handle your request, implement changes, and perform any other necessary tasks to deliver our Services and products or comply with legal obligations. Employees of Ziber Affiliates are contractually bound to confidentiality regarding your personal data stored and/or available at Ziber.
Ziber Partners
Authorized employees of Ziber Partners (as described in the Terms of Use and Ziber Customer Terms) may access your personal data to provide support, handle your request, implement changes, and perform any other necessary tasks to deliver our Services and products or comply with legal obligations. Employees of Ziber Partners are contractually bound to confidentiality regarding your personal data stored and/or available at Ziber.
Sub-processors
When you use specific components of our services, it is possible that personal data, which could potentially lead to your identification, may be processed by other organizations Ziber collaborates with (Sub-processors). These are the Sub-processors Ziber works with:
| Sub-processor | Functionality | Processed Data | Location |
|---|---|---|---|
| Microsoft Azure | Error logging | User data and related actions performed in Ziber Software | NL |
| Microsoft 365 | Communication for support, delivery, and development of Ziber Services to Customer and users. | Personal data possibly shared by the user with Ziber for support, delivery, and development of the Services. | EU |
| Zendesk | Support via email and chat | Name, email address, and user-shared information that may contain personal data | Outside EU |
| Support via WhatsApp | Mobile phone number and user-shared information that may contain personal data | Outside EU | |
| Linear | Handling Ziber processes related to acquisition, delivery, and development of services | Name, email address, and possibly other personal data | Outside EU |
| CustomerIO | Support via email | Name, email address, and possibly other personal data | EU |
Data Retention
Personal Data
The personal data you provide to us through contact interactions or as part of an agreement with Ziber is retained for a maximum of 8 years after the agreement expires.
If you send us unsolicited personal information, such as a copy of your passport, we will not process this information and will delete it immediately.
All emails sent to privacy@ziber.eu are retained for a maximum of 60 days and are automatically deleted thereafter.
Ziber ID
Your Ziber ID is retained until you delete it yourself. You can delete the Ziber ID on your own or have it deleted by us. After the account is deleted, it may take up to 90 days for the personal data to be permanently removed or anonymized from the Ziber platform. Refer to support.ziber.eu for an explanation of the process to delete your Ziber ID. Optional personal data you have added to your Ziber ID is retained until you delete it yourself or until your Ziber ID is deleted.
Data
Data is retained as long as it is valuable for the ongoing development of certain Services.
Your Rights
You have the right to access your personal data stored by us.
You can view part of this data by logging in with your Ziber ID via ziber.eu. You can also make changes there, and you have the option to delete your Ziber ID and associated profile data yourself or have Ziber delete it for you.
For access to other personally identifiable information, you can submit a request via privacy@ziber.eu so we can first verify if more personal information about you is present at Ziber and then provide you access to it.
We also inform you of the option to file a complaint regarding our processing of your personal data via https://ec.europa.eu/consumers/odr.
Privacy by Design
Ziber takes the principle of 'Privacy by Design and Default' into account when developing Services, ensuring that it is clear and transparent to you why your personal data is requested, what happens to your data, and how long it will be stored before you provide this data to Ziber.
Protection
Ziber will take all necessary measures that can reasonably be expected to protect against unauthorized access, use, alteration, or destruction of potentially personally identifiable and personally identifiable information. In the event that a data breach is detected by Ziber, as outlined in Articles 33 and 34 of the GDPR (General Data Protection Regulation), we will notify our users and/or the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) promptly, accurately, and completely.
Data Processing Agreement
Ziber also processes personal data for and on behalf of other organizations (Customers) that have purchased a Service from Ziber. Under the GDPR (General Data Protection Regulation), Ziber and the Customer are required to enter into a Data Processing Agreement. The Customer agrees to Ziber’s Data Processing Agreement as soon as the Customer starts using the Service. It is then the responsibility of the Customer to inform you about how your personal data is processed by Ziber.
You can find our Data Processing Agreement at legal.ziber.eu. Depending on the Customer's country of residence, the Data Processing Agreement may have country-specific adjustments.
Changes to the Privacy Policy
Ziber may update its Privacy Policy at its own discretion. Ziber encourages users to regularly review this Privacy Policy for any changes. If you have a Ziber ID, we will also notify you of any changes to this Privacy Policy. You will be asked to agree to the revised policy within a reasonable period so that you can continue using our Services.
Other
If Ziber, or most of its assets, is sold or in the event Ziber ceases operations or goes bankrupt, user information will be one of the assets transferred to the acquiring party. You acknowledge that such a transaction may occur, and that the acquirer of Ziber may continue to use your personal information as described in this policy.
In the event of conflicting descriptions between this Privacy Policy and the terms of any agreement(s) between a Customer and Ziber for Services purchased, the terms of the agreement(s) will take precedence.
For more information about the features and settings of our Services, including options that affect your privacy or the privacy of your end users, please refer to the product documentation at support.ziber.eu.
Contact Person
Ziber has appointed a Data Protection Officer, Jonathan Apeldoorn. For questions or comments about our Privacy Policy, you can email privacy@ziber.eu or call +31 (0)224-290 989. All emails sent to privacy@ziber.eu are retained for a maximum of 60 days and then automatically deleted.
Definitions
For a list of definitions used, click here.