Cirrus Insight Privacy Policy

Introduction

Welcome to Cirrus Insight, a service provided by Cirrus Insight, collectively referred to as “Cirrus Insight”, “we”, “our” and “us”.

Your privacy is important to us, so the goal of this policy is to be transparent about what information Cirrus Insight collects, uses, and shares.

This policy explains your rights with regards to that information. It also explains how to access and update your information, and how you can object to its use.

By using the Website, Apps or any of the Services, and in particular by registering a Cirrus Insight account, you are consenting to the use of your information in the manner set out in this Privacy Policy.

If you do not agree to any of the provisions of this Privacy Policy, you should not use the Website, the Apps or any of the Services. If you have any questions or concerns, please contact us.

Please note that this Privacy Policy only applies to the Website, the Apps and the Services (together, the “Platform”). For convenience, Cirrus Insight integrates with 3rd party applications (for example, Stripe for payment processing) and you may find links to other 3rd Party applications (websites, apps and services, or tools) which enable you to share information. Cirrus Insight is not responsible for the privacy practices of 3rd Parties and we recommend that you review the privacy policies for each before connecting your Cirrus Insight account or sharing any personal data.

Guiding Principles

We pride ourselves on the Services we provide, and recognize that in order to provide them we need you to agree to our policy! We use Cirrus Insight ourselves, and we believe in treating our customers as we would wish to be treated. With that in mind we have developed this Privacy Policy to be as transparent as possible and to provide you with the tools needed to a) fully understand our policy, b) fully understand how our policy affects you and your customers and c) make meaningful choices about how your (and their) information is used.

Information we collect

Since we use Cirrus Insight ourselves, we collect the same information on you as we will collect on your behalf from your contacts. The information we collect comes from various sources. These include our own Website (the information that you provide by signing up for our Services) as well as that collected via other third party applications and Services such as Facebook, LinkedIn, Google, CRM, email and marketing automation tools.

We only collect information that is critical to the delivery of our Services to you, our customer, or information that you volunteer at your discretion, such as a Profile Picture or Avatar.

All of the information collected directly by us is listed below:

• Email address – used for communications and to provide a means for identifying people within the same organization.
• First and Last Name – used to identify you and to great you personally (you are not just a number to us!)
• Company Name – used to identify the company you work at for easier administration of company accounts.
• Username – used to log in to our system
• Password – used to log in to our system
• Job Title – used to identify trends across similar roles and responsibilities so that we can provide you with more targeted insight in to how your customers within a specific role compare within your competitors customers in the same role.
• Standard website log information (including type of device, browser version, operating system, IP address, etc.) – used to connect a specific individual with third party tracking data such as Google Analytics, Facebook, etc.
• Oauth token – used to connect to your email server for the purposes of using our “Contact Sweep” services, a component of Sync
• Salesforce Token – used connecting to your Salesforce account.
• Salesforce Instance URL – used to connect to you to your instance of Salesforce

For details on information collected by third party applications please refer to their individual Privacy Policies available via their websites.

User Created Content

Cirrus Insight stores “meta data” (attributes to track and sync your data on your behalf) about email, calendar, task and contacts.  This also includes any assets you upload to Cirrus Insight, such as images, icons, or logos.

We use this information to securely store your work, and provide access to your to analytics across your email, web and calendar interactions.

CRM Data

Cirrus Insight does not store your CRM proprietary information, but when sync or analytics services are activated, does store unique record ID’s in order to provide the service.

Device Information and Log Data

We collect information about the type of device you use to access Cirrus Insight, as well as your device settings, operating system, browser information, connection type, IP address, and the URLs of referring pages. Additionally, we log the date and time you access our services, as well as any error or crash data.

We use device and location information to help us optimize your Cirrus Insight display and performance, provide accurate billing information, understand user demographics, and improve overall user experience. Your log data helps us troubleshoot errors, analyze performance, resolve reliability issues, perform security audits, and investigate potential service fraud or abuse.

Payment Information

For customers that purchase online with a credit card, we use a third party payment processor, Stripe, for all payments. Cirrus Insight does not store credit card details and instead relies on Stripe for this.  When you purchase a subscription through one of our payment processors, we receive only partial information about your card, and Cirrus Insight doesn’t store cardholder information on our servers.

We use your payment information in order to fulfil, track, and manage your subscription.  We use a third party payment processor to process payments made to us. In connection with the processing of such payments, we do not retain any personally identifiable information or any financial information such as credit card numbers. Rather, all such information is provided directly to our third party processor, Stripe, whose use of your personal information is governed by their privacy policy, which may be viewed at https://stripe.com/us/privacy.

Service Metadata

This data is generated automatically, when you visit Cirrus Insight. It provides us with information about how you browse our website and use our app. That includes the links you click, the search terms you use, and the features you access.

We use this metadata to help us understand how our users work, and what they find most valuable at Cirrus Insight. We also use this information to measure the efficiency of our product, enhance our services and guide our future development.

Support Information

When you reach out to Cirrus Insight, you may contact our team through the service of a third-party support platform. The information you provide to our team, including any troubleshooting documentation or screen shots, are saved as part of your support history.

We use this information to resolve any issues you are having, relay feedback to our team, respond to your comments and requests, and confirm your purchases and refunds. We also use this data to provide you with security alerts and technical notices.

Cookie Information

Cirrus Insight uses cookies and similar technologies for tracking across different devices, websites and online services.

We use this information both for secure authentication and for the maintenance of your active sessions.

Integrations and Linked Services

Cirrus Insight offers integrations with a number of third-party services. For instance, you can sign up and log into Cirrus Insight by using Salesforce, Gmail, Office 365 and other third-party authentication providers. You can also connect your Cirrus Insight account to services in order to be able to interact and analyze your data.

Whenever you or your account owner links to one of these third-party services, Cirrus Insight is only authorized by permissions sets you authorize for the service.

We use this information to authenticate, connect, or link your third-party accounts to Cirrus Insight. However, we do not receive or store passwords for any of these third-party services.

Information Provided by Other Users

Other Cirrus Insight users may provide contact information about you when they share content, or when they invite you to the service.

We use this information to facilitate collaboration and to help you communicate with your team members and stakeholders.

How we share information

We Do Not Sell Your Information

Cirrus Insight users create and share sensitive and proprietary data on our platform. Since we appreciate our users’ need for privacy, we adhere to a straightforward business model based on the offer of both paid subscriptions and free plans. This means that, no matter what Cirrus Insight plan you choose, we will never sell information about you, your profile, your projects, nor your data and metadata, to advertising companies or other third parties.

Google User Data

Cirrus Insight's use and transfer to any other app of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements.

Other Cirrus Insight Users

Cirrus Insight is a collaborative platform that’s designed to let you share and disseminate your work. This means you are free to invite your peers to view, comment, download, or edit collaboratively in real-time, depending on the settings that you select. In addition, you may also grant your team members project access rights that are equivalent to yours, including the ability to transfer your ownership to a different account. Some of these collaborative features display your publicly accessible profile information to the other users you’ve invited to collaborate.

Community and Forums

Cirrus Insight offers publicly accessible blogs and community forums. Any comments you contribute to these platforms may be read, collected or used by any member of the public who chooses to access them. Your information may remain posted on these sites, even if your account is deleted at your request.

Testimonials and Case Studies

We might contact you with a request to provide information that would appear, as a testimonial or case study, on our blog and website. In this case, we would seek explicit, written consent to use this information.

Social Media Links and Third-Party Widgets

Some Cirrus Insight services include social media links and widgets. In order to function properly, these features may set a cookie that records the Cirrus Insight page from which you engaged them, as well as your IP address. These features may also link to other websites or services whose privacy policies differ from ours. As a result, any information you provide to them will be governed by their policies and not this one.

Third-Party App Integrations

Cirrus Insight users are free to allow third-party apps and integrations to connect to their Cirrus Insight account. Once enabled, Cirrus Insight may share information with those services. Cirrus Insight does not control the way in which these services collect, share, or use information. Because of this, Cirrus Insight users should review the privacy policies of all third-party services before connecting to, or using their applications.

Legal Compliance and Fraud Prevention

In exceptional circumstances, we may disclose information about you to a third party if we receive a request and believe that the disclosure is in accordance with or required by any applicable law, rule or regulation, legal process, or enforceable governmental request. We may also do so to enforce our Terms of Service, investigate potential violations, prevent and detect fraud, track and solve security or technical issues, and protect against any harm to the rights, property or safety of Cirrus Insight, its users, or the public as required or permitted by law.

Changes in Business

If Cirrus Insight engages in a merger, acquisition, reorganization, bankruptcy, dissolution, sale of company assets, financing, public offering of securities, or due diligence and other steps in contemplation and negotiation of such activities, we may share or transfer information that we collect under this privacy policy, subject to standard confidentiality agreements.

How we store, secure, and transfer information

Third Party Service Providers

Cirrus Insight contracts with third-party service providers. These services may require access to your information in order to help us operate, market, and support our services. For example, Cirrus Insight uses third-party services to provide hosting, maintenance, backup, virtual computing, storage, payment processing, customer support, data analytics, advertising, marketing, and other services. Our contracts with these services provide for the maintenance, confidentiality, security, and integrity of the information we share with them.

Data Security

Cirrus Insight takes data security very seriously and implements the industry’s best practices and policies. We take all reasonable measures to protect your information and to prevent any kind of unauthorized access, misuse, loss, or disclosure.

Cirrus Insight is built on the Microsoft Azure platform and deploys some of the highest security measures to ensure data security; 256 Bit encryption for data in transit, TDE for encrypting data at rest, and automated data masking to protect personally identifiable information.  Information regarding Azure certifications and compliance can be found here. https://www.microsoft.com/en-us/trustcenter/compliance/default.aspx  The third-party service providers that we use for infrastructure and payment processing are ISO certified and PCI compliant, and they adhere to the same privacy and security principles as we do.

We conduct regular, manual and automated security audits. We also participate in voluntary penetration tests performed by third parties; these tests are followed by concrete, internal security policy updates and actionable engineering items for our development team.

While no system is infallible, we strive to keep our systems secure and constantly updated.

Data Retention

Cirrus Insight stores your information for as long as your account is active, and for a reasonable period thereafter, in case you decide to use our services again..

International Data Transfers

Cirrus Insight collects information internationally and uses hosting and cloud computing infrastructure located primarily in the United States to transfer process and store information.

Your data rights and choices

The following is a summary of choices you can make to exercise your data rights:

Opt Out of Promotional Communications

You have the right to opt-out of receiving any promotional communication. To unsubscribe from our newsletter, or other promotional emails, use the link at the bottom of the message. You can also contact us directly to have your information removed from our promotional contact list. Please note that, even if you unsubscribe, you will continue to receive non-promotional, transactional messages regarding your account and other essential services.

Access and Update Personal Information

You have the right to access and edit your profile and billing information at any time. You also have the right to rectification in case your personal data is incomplete or inaccurate. To update your information, log in to your account and use the editing tools in your Cirrus Insight Dashboard. If you require assistance, please contact us.

Right to be Forgotten

You have the right to be forgotten which means that, at any time, you can request that Cirrus Insight permanently delete all applicable data records, including your profile information, both personal and financial, along with any user-created content. In some cases, we may need to retain partial information to fulfill our legal responsibilities, or to complete ongoing financial transactions.

Data Portability

You have the right, at any time, to request and receive the information that you have provided to Cirrus Insight. We will provide you with your information, in a machine-readable format, so that you can make use of it in other contexts, or with other service providers.

Access Under 16 Years of Age

Cirrus Insight’s services are not directed at children. Furthermore, we do not knowingly collect personal information from individuals under 16 years of age, unless consent is given or authorized by the holder of parental responsibility over the child. If we become aware that someone under 16 has provided us with personal details, we will take steps to delete such information. If you become aware that a child has unlawfully or unwittingly provided us with personal data, please contact us.

Request That We Stop Using Your Information

Even if you have previously consented to our Terms of Service and Privacy Policy, you have the right, at any time, to change your mind and object to the collection, use, and processing of your personal information. Additionally, you are under no contractual obligation to continue to provide any information to Cirrus Insight. However, we require certain information in order to provide you with our services. Therefore, if you disagree with the terms of this Privacy Policy or our Terms of Service, you should stop using Cirrus Insight, and contact us so that we may delete your information.

More Information

For more information on this or any other of our policies, please contact us.