At Sayge your privacy is important to us, so we strive to be transparent about how we collect, use and share information about you. This policy is intended to help you understand:
- WHAT INFORMATION WE COLLECT
- HOW WE USE INFORMATION
- HOW WE SHARE INFORMATION
- HOW WE STORE INFORMATION
- HOW TO ACCESS AND CONTROL YOUR INFORMATION
- HOW WE TRANSFER INFORMATION INTERNATIONALLY
- HOW WE PROTECT YOUR DATA
- OUR DATA BREACH PROCEDURES
- INDUSTRY REGULATORY DISCLOSURE REQUIREMENTS
- ADDITIONAL IMPORTANT PRIVACY MATTERS
- HOW TO CONTACT US
1. WHAT INFORMATION WE COLLECT
Information You Share with Us
We require certain information to provide our services to you. For example, you must have an account in order to purchase or interact with the Services. When you choose to share the information below with us, we collect and use it to operate our Services.
Account Information. When you use the Services, you will provide information that could be personal information, such as your name, telephone number and email address.
User Content. The Services may include publicly accessible blogs, community forums, or private messaging features. The Services may also contain links and interactive features with various social media platforms (e.g., widgets). If you already use these platforms, their cookies may be set on your device when using our Services or other services. You should be aware that personal information which you voluntarily include and transmit online in a publicly accessible blog, chat room, social media platform or otherwise online, or that you share in an open forum may be viewed and used by others without any restrictions. We are unable to control such uses of your information when interacting with a social media platform, and by using such services you assume the risk that the Personal Information provided by you may be viewed and used by third parties for any number of purposes.
When you visit the website, information submitted through the contact forms is sent to our company email, hosted by Gmail. Google adheres to the EU “Privacy Shield” policy. We collect and store the following information from users:
- Contact Information (e.g., name, company, and email address)
- IP address
- Type of device/operating system/browser used to access the Services
- Device ID
- Browser information, cookie information, geographic location, and traffic data.
This information may be collected when you register on the website or submit a request through our Get Started contact form. Submitted data will not be passed onto the third party without your consent.
Information We Collect Automatically
We automatically receive and record information from your use of the Services, including app usage, your IP address and cookie information. This information is used to optimize your user experience. Generally, the Services automatically collect usage information, such as the number and frequency of users of the Services. We may use this data in aggregate form, that is, as a statistical measure, but not in a manner that would identify you personally. This type of aggregate data enables us and third parties authorized by us to figure out how often individuals use parts of the Services so that we can analyze and improve them.
For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org.
Pixel Tags / Web Beacons. A pixel tag (also known as a web beacon) is a piece of code embedded on the Site that collects information about users’ engagement on that web page. The use of a pixel allows us to record, for example, that a user has visited a particular web page or clicked on a particular advertisement. Advertisements served through the Services may be targeted to users who fit a certain general profile category may be based on anonymized information inferred from information provided to us by a user, including Personal Information (e.g., gender or age), may be based on the Services usage patterns of particular users, or may be based on your activity on Third Party Services. We do not provide Personal Information to any ad networks for use outside of the Services. To increase the effectiveness of ad delivery, we may deliver a file (known as a “web beacon”) from an ad network to you through the Services. Web beacons allow ad networks to provide anonymized, aggregated auditing, research and reporting for us and for advertisers. Web beacons also enable ad networks to serve targeted advertisements to you when you visit other websites. Because your web browser must request these advertisements and web beacons from the ad network’s servers, these companies can view, edit or set their own cookies, just as if you had requested a web page from their site.
Analytics. We use Google Analytics, a service provided by Google, Inc. (“Google”), to gather information about how users engage with our Services. For more information about Google Analytics, please visit www.google.com/policies/privacy/partners/. You can opt out of Google’s collection and processing of data generated by your use of the Services by going to http://tools.google.com/dlpage/gaoptout .
For further details, please see the ‘about Hotjar’ section of Hotjar’s support site.
Embedded Content from Other Websites. Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Aggregate Information. We collect statistical information about how both unregistered and registered users, collectively, use the Services (“Aggregate Information”). Some of this information is derived from personal information. This statistical information is not personal information and cannot be tied back to you, your account or your web browser.
2. HOW WE USE THE INFORMATION
While we consider the collection and processing of your information to be in our legitimate business interests we take your privacy rights seriously. We use information about you for a number of purposes. Below are the specific purposes for which we use the information we collect about you.
To provide the Services and personalize your experience. We use information about you to provide the Services to you, authenticate you when you log in, provide customer support and operate and maintain the Services.
For research and development. We are always looking for ways to make our Services smarter, faster, more secure, integrated and useful to you. To that end, we use collective learnings about how people use our Services and feedback provided directly to us to troubleshoot and to identify trends, usage, activity patterns and areas for integration and improvement of the Services.
To communicate with you about the Services. We use your contact information to send transactional communications via email and within the Services, including confirming your purchases, reminding you of subscription expirations, responding to your comments, questions and requests, providing customer support, and sending you technical notices, updates, security alerts, and administrative messages.
To market, promote, and drive engagement with the Services. We use your contact information and information about how you use the Services to send promotional communications that may be of specific interest to you, including by email and by displaying ads on other companies’ websites and applications, as well as on platforms like Facebook and Google. These communications are aimed at driving engagement and maximizing what you get out of the Services, including information about new features, survey requests, events and other information we think may be of interest to you. We also communicate with you about new product offers, promotions and contests.
Conducting surveys and collecting feedback about our Services. We do this to pursue our legitimate interests to understand if the Services are helpful to you and to evaluate the effectiveness of any updates we provide.
Customer support. We use your information to resolve technical issues you encounter, to respond to your requests for assistance, to analyze crash information, and to repair and improve the Services.
For safety and security. We use information about you and your Service use to verify accounts and activity, to monitor suspicious or fraudulent activity and to identify violations of Service policies.
To protect our legitimate business interests and legal rights. Where required by law, where we believe it is in our legitimate business interest, or where it is necessary to protect our legal rights, interests and the interests of others, we use information about you in connection with legal claims, compliance, regulatory, and audit functions, and disclosures in connection with the acquisition, merger or sale of a business.
With your consent. We use information about you where you have given us consent to do so for a specific purpose not listed above. For example, we may publish testimonials or featured customer stories to promote the Services, with your permission.
Additional purposes. We may process your information for any other purpose disclosed to you in connection with our Services from time to time. If we intend to process your personal data for a purpose other than that set out above, we will provide you with information prior to such processing and will obtain your consent where necessary.
Legal basis for processing (for EEA users): If you are an individual in the European Economic Area (EEA), we collect and process information about you only where we have legal bases for doing so under applicable EU laws. The legal bases depend on the Services you use and how you use them. This means we collect and use your information only where: We need it to provide you the Services, including to operate the Services, provide customer support and personalized features and to protect the safety and security of the Services; It satisfies a legitimate interest (which is not overridden by your data protection interests), such as for research and development, to market and promote the Services and to protect our legal rights and interests; You give us consent to do so for a specific purpose; or We need to process your data to comply with a legal obligation.
If you have consented to our use of information about you for a specific purpose, you have the right to change your mind at any time, but this will not affect any processing that has already taken place. Where we are using your information because we or a third party (e.g. your employer) have a legitimate interest to do so, you have the right to object to that use though, in some cases, this may mean no longer using the Services.
3. HOW WE SHARE INFORMATION
If you use the Get Started tab, the message can only be seen by our team.
We may share your information with our third-party service providers, to comply with legal obligations, to protect and defend our rights and property, or with your permission. Below are the specific ways we share information we collect about you.
Communications with Us. As part of the Services, you may occasionally receive text, email and other communications from us, such as communications relating to your Account. In the event that we communicate with you through text, standard messaging rates apply.
User Profile Information. User profile information including your username and other information you enter may be displayed to other users to facilitate user interaction within the Services. We will not directly reveal user email addresses to other users.
Information Shared with Our Agents. We employ and contract with people and other entities that perform certain tasks on our behalf and who are under our control (our “Agents”). We may need to share personal information with our Agents in order to provide products or services to you. Unless we tell you differently, our Agents do not have any right to use personal information or other information we share with them beyond what is necessary to assist us. You hereby consent to our sharing of personal information with our Agents.
Aggregate Information. We share Aggregate Information with our partners, service providers and other persons with whom we conduct business. We share this type of statistical data so that our partners can understand how and how often people use our Services and their services or websites, which facilitates improving both their services and how our Services interface with them. In addition, these third parties may share with us non-private, aggregated or otherwise non-personal information about you that they have independently developed or acquired.
Interest-Based Advertising. We may allow third-party advertising partners to set tracking tools (e.g., cookies) to collect information regarding your activities (e.g., your IP address, page(s) visited, time of day). We may also share such de-identified information as well as selected personal information (such as demographic information and past purchase history) we have collected with third-party advertising partners. These advertising partners may use this information (and similar information collected from other websites) for purposes of delivering targeted advertisements to you when you visit other websites within their networks. This practice is commonly referred to as “interest-based advertising” or “online behavioral advertising. We may allow access to other data collected by the Site to facilitate transmission of information that may be useful, relevant, valuable or otherwise of interest to you.
Information Disclosed Pursuant to Business Transfers. In some cases, we may choose to buy or sell assets. In these types of transactions, user information is typically one of the transferred business assets. Moreover, if we, or substantially all of our assets, were acquired, or if we go out of business or enter bankruptcy, user information would be one of the assets that is transferred or acquired by a third party. You acknowledge that such transfers may occur, and that any acquirer of us or our assets may continue to use your Personal Information as set forth in this policy.
Information Disclosed for Our Protection and the Protection of Others. We also reserve the right to access, read, preserve, and disclose any information as it reasonably believes is necessary to (i) satisfy any applicable law, regulation, legal process or governmental request, (ii) enforce these Terms of Service, including investigation of potential violations hereof, (iii) detect, prevent, or otherwise address fraud, security or technical issues, (iv) respond to user support requests, or (v) protect our rights, property or safety, our users and the public. This includes exchanging information with other companies and organizations for fraud protection and spam/malware prevention.
Managed accounts and administrators: If you register or access the Services using an email address with a domain that is owned by your employer or organization, or associate that email address with your existing account and such organization wishes to establish an account, certain information about you including your name, profile picture, contact info, content, and account use may become accessible to that organization’s administrator and to us, as permitted by your administrator, to provide you support or additional products and services.
Information We Share with Your Consent: We will share your personal information with any relevant party you have granted us permission to share with.
- Contractors: have a valid need-to-know for some personal information required in order for Sayge to provide coaching services to clients.
- Payment Processors: our payment processing partner (currently Stripe for payment through our two SquareSpace sites that support, www.saygecircle.com and www.startsayge.com) collects your voluntarily provided payment card information necessary to process your payment.
- Third Party Vendors: (e.g. Google Suite, Google Analytics, Heroku, Salesforce, Tableau, and Drift) may have access to your personal data to assist in the provision of the Platform service and other business-related functions such as cloud storage, hosting and communications providers, mobile phone push data, email provisioning and usage analytics.
4. HOW WE STORE AND SECURE INFORMATION
Keeping your information secure is a top priority for us. To that end we comply with industry-standard best practices to secure your information. We use data hosting service providers in the United States to host the information we collect, and we use technical measures to secure your data. While we implement safeguards designed to protect your information, no security system is impenetrable and due to the inherent nature of the Internet, we cannot guarantee that data, during transmission through the Internet or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others. How long we keep information we collect about you depends on the type of information, as described in further detail below. After such time, we will either delete or anonymize your information or, if this is not possible (for example, because the information has been stored in backup archives), then we will securely store your information and isolate it from any further use until deletion or anonymization is possible.
Account Information. We retain your account information until you delete your account. We also retain some of your information as necessary to comply with our legal obligations, to resolve disputes, to enforce our agreements, to support business operations and to continue to develop and improve our Services. Where we retain information for Service improvement and development, we take steps to eliminate information that directly identifies you, and we only use the information to uncover collective insights about the use of our Services, not to specifically analyze personal characteristics about you.
Information You Share on the Services. If your account is deactivated or disabled, some of your information and the content you have provided will remain.
Marketing information. If you have elected to receive marketing emails from us, we retain information about your marketing preferences unless you specifically ask us to delete such information. We retain information derived from cookies and other tracking technologies for a reasonable period of time from the date such information was created.
Managed Accounts. If the Services are made available to you through an organization (e.g., your employer), we retain your information as long as required by the administrator of your account.
5. HOW TO ACCESS AND CONTROL YOUR INFORMATION
You have the right to request a copy of your information, to object to our use of your information (including for marketing purposes), to request the deletion or restriction of your information, or to request your information in a structured, electronic format. Below, we describe the tools and processes for making these requests.
Access and Update Your Information. Our Services and related documentation give you the ability to access and update certain information about you from within the Service. You can update your profile information within your profile settings and modify content that contains information about you using the editing tools associated with that content.
Deactivate Account. You can deactivate your access to the Services at any time.
Delete Your Information. Our Services and related documentation give you the ability to delete certain information about you from within the Service. Please note, however, that we may need to retain certain information for record keeping purposes, to complete transactions or to comply with our legal obligations.
Request That We Stop Using Your Information. In some cases, you may ask us to stop accessing, storing, using and otherwise processing your information where you believe we don’t have the appropriate rights to do so. For example, if you believe a Services account was created for you without your permission or you are no longer an active user, you can request that we delete your account as provided in this policy. Where you gave us consent to use your information for a limited purpose, you can contact us to withdraw that consent, but this will not affect any processing that has already taken place at the time. You can also opt-out of our use of your information for marketing purposes by contacting us, as provided below. When you make such requests, we may need time to investigate and facilitate your request. If there is a delay or dispute as to whether we have the right to continue using your information, we will restrict any further use of your information until the request is honored or the dispute is resolved, provided your administrator does not object (where applicable). If you object to information about you being shared with a third-party app, please disable the app or contact your administrator to do so.
Opt Out of Communications. You may opt out of receiving promotional communications from us by using the unsubscribe link within each email, updating your email preferences within your Service account settings menu, or by contacting us as provided below to have your contact information removed from our promotional email list or registration database. Even after you opt out from receiving promotional messages from us, you will continue to receive transactional messages from us regarding our Services. You can opt out of some notification messages in your account settings.
Send “Do Not Track” Signals. Some browsers have incorporated “Do Not Track” (DNT) features that can send a signal to the websites you visit indicating you do not wish to be tracked. We support Do Not Track (“DNT”). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked. You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser.
Data portability. Data portability is the ability to obtain some of your information in a format you can move from one service provider to another (for instance, when you transfer your mobile phone number to another carrier). Depending on the context, this applies to some of your information, but not to all of your information. Should you request it, we will provide you with an electronic file of your basic account information and the information you create on the spaces under your sole control.
To exercise the rights described above, you must send us a request that (1) provides sufficient information to allow us to verify that you are the person about whom we have collected Personal Data, and (2) describes your request in sufficient detail to allow us to understand, evaluate, and respond to it. Each request that meets both of these criteria will be considered a “Valid Request.” We may not respond to requests that do not meet these criteria. We will only use Personal Data provided in a Valid Request to verify you and complete your request. You do not need an account to submit a Valid Request.
We will work to respond to your Valid Request within 45 days of receipt. We will not charge you a fee for making a Valid Request unless your Valid Request(s) is excessive, repetitive, or manifestly unfounded. If we determine that your Valid Request warrants a fee, we will notify you of the fee and explain that decision before completing your request.
You may submit a Valid Request by sending an email to: email@example.com.
6. HOW WE TRANSFER DATA INTERNATIONALLY
Where the laws of your country allow you to do so, you authorize us to transfer, store, and use your data in the United States. In some of the countries to which we transfer personal data, the privacy and data protection laws and rules regarding when government authorities may access data may vary from those of your country.
When we transfer personal data outside of the European Union or EFTA States, we ensure an adequate level of protection for the rights of data subjects based on the adequacy of the receiving country’s data protection laws, contractual obligations placed on the recipient of the data (model clauses may be requested by inquiry as described below), or EU-US and Swiss-US Privacy Shield principles.
We comply with the EU-US and Swiss-US Privacy Shield principles (the “Principles”) regarding the collection, use, sharing, and retention of personal data from the European Union and Switzerland.
Privacy Shield participants are subject to the investigatory and enforcement powers of the US Federal Trade Commission and other authorized statutory bodies. Under certain circumstances, participants may be liable for the transfer of personal data from the EU or Switzerland to third parties outside the EU and Switzerland.
If you are an EU Data Subject, you have certain rights with respect to your Personal Data, including those set forth below. For more information about these rights, or to submit a request, please email firstname.lastname@example.org.
Please note that in some circumstances, we may not be able to fully comply with your request, such as if it is frivolous or extremely impractical, if it jeopardizes the rights of others, or if it is not required by law, but in those circumstances, we will still respond to notify you of such a decision. In some cases, we may also need you to provide us with additional information, which may include Personal Data, if necessary, to verify your identity and the nature of your request.
- Access: You can request more information about the Personal Data we hold about you and request a copy of such Personal Data.
- Rectification: If you believe that any Personal Data we are holding about you is incorrect or incomplete, you can request that we correct or supplement such data.
- Erasure: You can request that we erase some or all of your Personal Data from our systems.
- Withdrawal of Consent: If we are processing your Personal Data based on your consent (as indicated at the time of collection of such data), you have the right to withdraw your consent at any time. Please note, however, that if you exercise this right, you may have to then provide express consent on a case-by-case basis for the use or disclosure of certain of your Personal Data, if such use or disclosure is necessary to enable you to utilize some or all of our Services.
- Portability: You can ask for a copy of your Personal Data in a machine-readable format. You can also request that we transmit the data to another controller where technically feasible.
- Objection: You can contact us to let us know that you object to the further use or disclosure of your Personal Data for certain purposes, such as for direct marketing purposes.
- Restriction of Processing: You can ask us to restrict further processing of your Personal Data.
- Right to File Complaint: You have the right to lodge a complaint about our practices with respect to your Personal Data with the supervisory authority of your country or EU Member State.
7. HOW WE PROTECT YOUR DATA
We employ third-party business providers that provide services to Sayge customers, and we may need to share this information with them so that we can provide services to you. However, we do not sell your personal information to third parties. We use the personal information we obtain as described in this policy and rely on a number of legal basis to do so including:
- Fulfillment of the contractual obligation of Sayge and its Coaches to provide coaching sessions;
- Our legitimate business interests;
- Compliance with a legal obligation, court order or to exercise or defend a legal claim;
- To offer training of our Coaches and our Instructors in the U.S. and around the world
- To communicate with you via email,
- Protection against identity theft and prevention fraud or other unlawful activity;
- Response to your inquiries.
8. OUR DATA BREACH PROCEDURES
We promptly identify and respond to any breaches, to act to prevent harm and to report, if and as required, to the relevant supervisory authority and users. We follow all requirements of the General Data Protection Regulation (GDPR) and we acknowledge the various data breach obligations in each of the jurisdictions in which we operate.
9. INDUSTRY REGULATORY DISCLOSURE REQUIREMENTS
Sayge is headquartered in the United States and its primary storage of personal information collected is in the United States. Depending on where you are located and applicable law, Sayge will rely on certain legal bases to transfer your personal information into the United States such as: your consent (if required), to perform a contract with you. Sayge takes precautions to keep your personal information secure and comply with applicable law.
If you are a resident of the European Economic Area, when we process your personal data we will only do so in the following situations: We have your consent to share your personal data. We need to use your personal data to perform our responsibilities under our contract with you (e.g., processing payments for and providing the services you have requested). We have a legitimate interest in processing your personal data. For example, we may process your personal data to communicate with you about changes to our Services and to provide, secure, and improve our Services.
10. ADDITIONAL IMPORTANT PRIVACY MATTERS
Notice to End Users. Our products are intended for use by organizations and individuals. Where the Services are made available to you through an organization (e.g. your employer), that organization is the administrator of the Services and is responsible for the end-users and/or Service sites over which it has control. If this is the case, please direct your data privacy questions to your administrator, as your use of the Services is subject to that organization’s policies. We are not responsible for the privacy or security practices of an administrator’s organization, which may be different from this policy.
Even if the Services are not currently administered to you by an organization, if you are a member of a team administered by an organization, or if you use an email address provided by an organization (such as your work email address) to access the Services, then the administrator of that team or the owner of the domain associated with your organizational email address (e.g. your employer) may assert administrative control over your account and use of the Services at a later date. You will be notified if this happens.
Team and enterprise administrators are able to restrict your access to and privileges within the respective team or enterprise the administrator controls. In some cases, enterprise administrators can also:
- require you to reset your account password; and
- restrict, suspend or terminate your access to the Services or your account.
If you do not want an administrator to be able to assert control over your account or use of the Services, you should deactivate your membership with the relevant team or enterprise or remove any email addresses containing a domain owned or controlled by the administrator entirely from your account. Once an administrator asserts control over your account or use of the Services, you may no longer be able to withdraw membership or change the email address associated with your account without administrator approval.
Please contact your organization or refer to your administrator’s organizational policies for more information.
Minimum Age. The Services are not directed to individuals under 16. We do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided us with personal information, we will take steps to delete such information. If you become aware that a child has provided us with personal information, please contact our support services.
California Privacy Rights. California law permits users who are California residents to request and obtain from us once a year, free of charge, a list of the third-parties to whom we have disclosed their personal information (if any) for their direct marketing purposes in the prior calendar year, as well as the type of personal information disclosed to those parties.
11. CONTACT US
Contacting us: If you have any questions, please don’t hesitate to contact us at:
ATTN: Information Security Officer
77 Sands St, 6th floor, Brooklyn, NY 11201
Please include your name, address, and/or email address when you contact us.
Effective Date: January 10, 2023