Information We Collect: When you interact with us through the Services, we may collect Personal Data and other information from you, as further described below:
Personal Data That You Provide Through the Services: We collect Personal Data from you when you voluntarily provide such information, such as when you contact us with inquiries, register for access to the Services, purchase products, or use certain Services where Personal Data is required. Personal Data may include your name, address, email address, telephone number, and billing information, such as credit card numbers and billing address. We ask that in using our Services, you keep your information as up-to-date as possible, so please go to your Account to make any necessary changes.
You have a right to access the personal information held about you. You can obtain a copy of your personal information and request changes or deletion of your personal information and/or account by emailing us at email@example.com. For your protection, you may be required to provide proof of your identity before obtaining a copy of your personal information.
Personal Data We Receive as a Processor: We may receive Personal Data about you from photographers who upload that data to our platform for use with certain features of our Services (“Processor Data”). Management of Processor Data is solely in the control of the applicable photographer, and our only use of Processor Data is to store it and to make it available to the applicable photographers as part of the Services provided to them. We require photographers to obtain your consent in order for us to use Processor Data as described above, and we comply with applicable laws as a processor in that regard. To exercise rights or choices with respect to Processor Data, please make your request directly to the applicable photographer for whom we process that data.
Non-Identifiable Data: When you interact with us through the Services, we receive and store certain personally non-identifiable information. Such information, which is collected passively using various technologies, cannot presently be used to specifically identify you. We may store such information itself or such information may be included in databases owned and maintained by our affiliates, agents or service providers, and is used as provided in our Terms of Service. The Services may use such information and pool it with other information to track, for example, the total number of visitors to our Site, the number of visitors to each page of our Site, and the domain names of our visitors' Internet service providers. It is important to note that no Personal Data is available or used in this process.
Aggregated and Anonymized Personal Data: In an ongoing effort to better understand and serve the users of the Services, we often conduct research on its customer demographics, interests and behavior based on the Personal Data and other information provided to us. This research may be compiled and analyzed on an aggregate basis, and we may share this aggregate data with its affiliates, agents, business partners and customers. This aggregate information does not identify you personally. We may also disclose aggregated user statistics in order to describe our services to current and prospective business partners, and to other third parties for other lawful purposes.
Our Disclosure of Your Personal Data and Other Information: We are not in the business of selling your information. We consider this information to be a vital part of our relationship with you. There are, however, certain circumstances in which we may share your Personal Data with certain third parties without further notice to you, as set forth below:
Business Transfers: As we develop our business, we might sell or buy businesses or assets. In the event of a corporate sale, merger, reorganization, dissolution or similar event, Personal Data may be part of the transferred assets.
Agents, Photographers, Consultants and Related Third Parties: We, like many businesses, sometimes hire other companies to perform certain business-related functions. Examples of such functions include mailing information, order processing and fulfillment, maintaining databases and processing payments. When we employ another entity to perform a function of this nature, we only provide them with the information that they need to perform their specific function. And when we fulfill orders, we may share that order information with the applicable photographer.
Legal Requirements: We may disclose your Personal Data if required to do so by law or in the good faith belief that such action is necessary to (i) comply with a legal obligation, including disclosure in response to lawful requests or for the purpose of meeting national security or law enforcement requirements, (ii) protect and defend our rights or property, (iii) act in urgent circumstances to protect the personal safety of users of the Services or the public, or (iv) protect against legal liability.
You can visit the Site without providing any Personal Data. If you choose not to provide any Personal Data, you may not be able to use certain Services.
Integrating Social Networking Services: You may wish to share information and activities from the Services with social media platforms. To utilize social media sharing features, you will be prompted to grant permissions within those platforms, as you choose. For Facebook updates, you will need to allow account login and publishing permissions. This enables you to: post questions and content to a feed, upload photos/videos, add likes and comments, create notes and post to events and groups. However, please remember that the manner in which social networking services use, store and disclose your information is governed by the policies of such third parties, and we shall have no liability or responsibility for the privacy practices or other actions of any social networking services that may be enabled within the Services.
Security: Zenfolio uses standard industry security practices to protect Your personal information including Secure Socket Layer (SSL) transmission technology for all sensitive information exchanges. This technology encrypts information You send us to avoid it being intercepted before reaching our secure HTTPS servers. We follow generally accepted industry standards, including physical, electronic and managerial safeguards to protect the Personal Data submitted to us from unauthorized access or disclosure. These safeguards are regularly reviewed to protect against unauthorized access, disclosure and improper use of your information, and to maintain the accuracy and integrity of that data. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. We assume no liability for any disclosure of data due to errors in transmission, unauthorized third-party access, or other acts of third parties.
In compliance with the Privacy Shield Principles, we commit to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to Privacy Shield. European Union and Swiss individuals with Privacy Shield inquiries or complaints should first contact us at: firstname.lastname@example.org. As noted above, for issues regarding Processor Data, you should contact the applicable photographer. However, if the photographer does not time address your concerns, please contact us at: email@example.com with details about your issue.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact JAMS, our U.S.-based third party dispute resolution provider (free of charge), at https://www.jamsadr.com/eu-us-privacy-shield.
If you have a Privacy Shield complaint that cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction.
Last updated: March 11, 2019