Privacy Policy

Personal Information Collection

We collect your Personal Information in the following ways:
Information You Provide: When you create an account, we collect Account Information, User Content, Communication Information, and Social Media Information.
Other Information You Provide: Additional information you provide during events, surveys, or identity verification.
Automatically Collected Information: When you use our Services, we automatically receive Technical Information, including Log Data, Usage Data, Device Information, and data from Cookies and Analytics.

Use of Personal Information

We use Personal Information for the following purposes:
Providing, administering, and analysing Services.
Improving Services, conducting research, and developing new programs.
Communication with users.
Fraud prevention, ensuring IT security, and business transfers.
Compliance with legal obligations.

Use of Personal Information

We may disclose Personal Information in certain circumstances to:
Vendors, service providers, and affiliates for business operations.
During business transfers or strategic transactions.
To comply with legal requirements or protect rights, safety, or property.

Data subject rights

We recognize and respect the importance of your privacy rights. Under this Privacy Policy, you, as a data subject, have the following rights:
Right to Access: You have the right to request access to your personal data that we process.
Right to Rectification: You are entitled to correct or update your personal data if it is inaccurate or incomplete.
Right to Erasure: You have the right to request the deletion of your personal data from our records, subject to certain exceptions.
Right to Restrict Processing: You may request that we limit the way we use your personal data.
Right to Data Portability: Where applicable, you may request a copy of your personal data in a digital format.
Right to Object: You have the right to object to the processing of your personal data in certain circumstances, including for marketing purposes.
Right to Withdraw Consent: If you have given consent to the processing of your data, you have the right to withdraw that consent at any time.
Right to Non-Discrimination: You have the right to not be discriminated against for exercising any of your privacy rights.
These rights may vary depending on your location and the applicable data protection laws. If you wish to exercise any of these rights, please contact us at the provided contact information. We may require verification of your identity for security purposes before processing your request.

Your rights

Depending on location, you may have rights to access, delete, rectify, or restrict processing of your Personal Information. You can opt out of certain data uses.

Cookies

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

International Transfer and Sharing of Personal Information

Transfers to Third Parties: In the course of our operations, we may transfer your Personal Information to third-party service providers, business partners, and affiliates. These transfers are essential for the seamless provision of our services, operational efficiency, and for offering you the best possible experience. We ensure that these third parties adhere to similar standards of data protection and confidentiality as we do, and they are obligated to use your Personal Information only for the purposes for which they have been engaged by us.
International Transfers: Your Personal Information may be transferred to, stored in, and processed in countries outside of your country of residence. These international transfers are made to countries where we have operations or where our service providers are located. We take all necessary steps to ensure that any such transfers comply with applicable data protection laws and that your Personal Information remains protected to the standards described in this policy. This includes the use of standard contractual clauses approved by the European Commission or other relevant authorities, and taking additional security measures where required.
Safeguards: To ensure the protection of your Personal Information, we implement appropriate legal and security measures in these international transfers. This includes conducting rigorous assessments of the privacy laws and practices of the receiving countries and ensuring that adequate data protection is in place in line with EU data protection standards or other applicable laws. We also require all our third-party service providers and international affiliates to commit to adequate data protection standards and to use your Personal Information strictly in accordance with our instructions and data protection laws.
Your Rights and Choices: We respect your rights regarding your Personal Information. If you have concerns about the transfer of your Personal Information to other countries, you may contact us using the details provided in this policy. We are committed to addressing your inquiries and providing you with information about the safeguards we have put in place.

Additional U.S. State Disclosures

Category of Personal Information

Disclosure of Personal Information

Identifiers, such as your name, contact details, IP address, and other device identifiers

We may share your information with affiliates, vendors, and service providers for processing as instructed by us. Additionally, we may disclose it to law enforcement and other third parties for legal purposes, parties involved in transactions, corporate administrators of enterprise or team accounts, and other users or third parties you opt to share it with.

Commercial Information, such as your transaction history

We may share your information with affiliates, vendors, and service providers for processing as instructed. Additionally, we may disclose it to law enforcement and other third parties for legal reasons, parties involved in transactions, and corporate administrators of enterprise or team accounts.

Network Activity Information, such as Content and how you interact with our Services

We may share your information with affiliates, vendors, and service providers for processing as instructed. Additionally, disclosure may occur to law enforcement and other third parties for legal reasons, parties involved in transactions, and other users and third parties you choose to share it with.

Geolocation Data

We may share your information with affiliates, vendors, and service providers as needed for processing, with law enforcement and other third parties for legal reasons, and with parties involved in transactions.

Your account login credentials and payment card information (Sensitive Personal Information)

We disclose this information to our affiliates, vendors and service providers, law enforcement, and parties involved in Transactions.

Subject to local law and applicable exceptions, individuals may have the following privacy rights regarding their Personal Information:
Access: The right to know details about how we process your Personal Information, including specific pieces collected from you.
Deletion: The right to request the removal of your Personal Information.
Correction: The right to rectify inaccuracies in your Personal Information.Non-Discrimination: The right to be free from discrimination when exercising privacy rights.
We do not sell or share Personal Information for cross-contextual behavioral advertising, as defined by local law. Additionally, we do not process sensitive Personal Information to infer consumer characteristics.
To exercise these rights under local law, submit requests via admin@talkstack.ai. For security, we may verify your identity through credentials or additional Personal Information. If verification fails, we cannot fulfill your request.

Additional U.S. State Disclosures

Security Measures:
We are committed to protecting your Personal Information. To ensure the security and confidentiality of the data we collect, we have implemented a comprehensive set of security measures. These include both online and offline safeguards designed to protect Personal Information against loss, misuse, unauthorized access, disclosure, alteration, and destruction. Our security measures are regularly reviewed and updated in accordance with the latest industry standards and technological advancements.

Data Retention:
The retention of your Personal Information is carefully managed in alignment with our commitment to meeting business needs and complying with legal obligations. We retain Personal Information only for as long as is necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. Upon expiration of the necessary retention period, your Personal Information is securely deleted or anonymized, so it can no longer be associated with you. In certain cases, we may retain anonymized information for statistical analysis and business planning, ensuring that personal identifiers are removed.

We also take into account the sensitivity of the Personal Information we collect, store, and process in determining the appropriate retention period. By balancing the need to maintain adequate information for our business operations and your right to privacy, we ensure that your Personal Information is held responsibly and in accordance with applicable laws and regulations.

International Users

Your Personal Information may be processed and stored in the United States. Legal bases for processing include contract performance, legitimate interests, consent, and legal obligations.

Governance Process for Privacy Policy Compliance

1. Privacy Governance Structure:
We have established a dedicated privacy governance structure within our organization. This includes a Privacy Officer or Data Protection Officer (DPO) who is responsible for overseeing data protection strategies and ensuring compliance with privacy laws and regulations, such as the Personal Data Protection Act (PDPA) in Singapore.
The DPO works closely with key departments (such as IT, legal, HR, and operations) to implement and monitor privacy practices.

2. Regular Audits and Assessments:
We conduct regular audits and assessments of our privacy practices and policies to ensure ongoing compliance. This includes reviewing our data processing activities, data storage, and data transfer mechanisms, especially for cross-border data transfers.
We also assess the efficacy of our security measures and update them as necessary to address new risks or compliance requirements.

3. Employee Training and Awareness:
All employees undergo regular training on data protection principles, the importance of privacy, and their role in maintaining compliance. This training is updated regularly to reflect changes in laws and best practices.
We foster a culture of data privacy awareness throughout the organization to ensure that privacy considerations are a key part of decision-making processes.

4. Policy Review and Update:
Our Privacy Policy is reviewed and updated periodically to ensure it remains in line with evolving legal requirements and best practices. Changes to the policy are communicated to all relevant stakeholders, including employees and customers.We also review and update our internal privacy framework and guidelines regularly to align with our Privacy Policy.

5. Stakeholder Engagement and Compliance:
We engage with stakeholders, including customers, employees, and regulatory authorities, to address any privacy concerns and feedback. This ensures transparency and trust in our privacy practices.We maintain an open line of communication for privacy inquiries and complaints, ensuring prompt and effective responses to privacy-related issues.

6. Incident Management and Reporting:
We have established procedures for managing and reporting data privacy incidents in compliance with legal requirements. This includes a clear protocol for incident response, notification to affected individuals, and reporting to regulatory authorities where necessary.

Changes to the Privacy Policy

We may update the Privacy Policy, and the revised version will be posted on our website.

Contact Us

We may update the Privacy Policy, and the revised version will be posted on our website.