Privacy Policy

This Privacy Policy (the “Policy”, the “Privacy Policy”) applies to the processing of personal data by Social Force Pty Ltd, a company registered in Australia (ABN: 11 660 345 862), with registered address: Unit 4 133 CRAWFORD RD MAYLANDS WA 6051, (”Social Force Pty Ltd”, ”we”, ”us” and ”our”) in its capacity as a data controller of personal data.

It explains our data privacy practices in regard to the processing of personal data of individuals (“data subjects”, “you”, “your”) who visit our website (the ”Site”) and/or use the services and/or products ordered or accessed through the Site (the “Services”). For the avoidance of doubt, this Policy does not apply to the processing of your personal data by third parties whose websites are not owned and operated by us.

  1. Categories of data subjects and types of personal data 

For the purposes of this Policy, the natural persons, whose personal data is subject to data processing under this Policy, respectively the types of their personal data processed by us, may be categorised as follows:

Website visitors

Definition:

Individuals who visit our Site. For the avoidance of doubt, websites hosted by us but operated by our Customers are not part of the definition of Site. Our Site and Services may contain links to third-party websites, which are not under our control, and we are not responsible for their content. In the event that you follow a link to such pages, please note that there are other respective privacy policies that may apply and we do not have control over it. We encourage you to review the privacy policies of these parties before using such other websites.

Types of personal data: 

  • Contact information – We may collect personal data such as first and last name, email address and other contact and personal information when you sign up for our newsletter, register and get access to a demo version of product(s) and/or Services, download materials from our Site, such as e-books, communicate, comment, review and/or discuss topics in the sections provided for this on our Site.
  • Personal data, contained in log files – When you visit our Site we may process information such as your IP address, referral URL, exit URL, browser software, operating system, date/time and/or clickstream data.
  • Personal data collected through website analytics tools – We may collect information about your use of our Site, such as number of visits, pages visited, popularity of certain content. Analytics tools use tracking technologies (such as cookies) to recognise your device and compile information about you. They collect information such as what pages you visit and how much time you spend on these pages, the IP address assigned to you, what operating system and web browser you use, and what site you visited prior to visiting our Site.

Customers

Definition: Persons who enter into an agreement with us for the provision of Services.

Types of personal data:  

  • Customer account information – We process personal information such as first and last name, name of the legal entity and its legal representative, address, phone number, email address, language preferences, IP address, payment and billing information (i.e. credit card information and/or PayPal account, personal or TAX identification number etc.), so you can place orders, request information, get support and use the Services. You may also opt to provide information about your Facebook and/or Twitter accounts.
  • Personal data, contained in log files – When a Customer visits our Site we may process information such as IP address, referral URL, exit URL, browser software, operating system, date/time and/or clickstream data.
  • Personal data collected through website analytics tools – We may collect information about Customer’s use of our Site, such as number of visits, pages visited, popularity of certain content. Analytics tools use tracking technologies (such as cookies) to recognise the device used and compile the information. They collect information such as what pages the Customer visits and how much time the Customer spends on these pages, the IP address assigned to the Customer, what operating system and web browser the Customer uses, and what site the Customer visited prior to visiting our Site.
  • Other types of personal data – When the Customer contacts us, including via any of our support channels, we may process the personal data provided to us (including voice) in order to deal with the Customer’s query. In addition, if the Customer loses access to its account, we may request certain documents in order to verify its identity. Those documents may contain personal data such as name, address, nationality, date of birth, identification document number, etc. In addition, when you purchase a SSL certificate for your website, hosted with us, we store its key in order for the certificate to operate properly.

Users

Definition: Individuals who access and/or administer any of the Services for our Customers.

Types of personal data:  

  • User information – We may process personal information such as first and last name, address, phone number, email address, so you can access and/or administer the Services, request information and get support.
  • Personal data, contained in log files – When a User visits our Site we may process information such as IP address, referral URL, exit URL, browser software, operating system, date/time and/or clickstream data.
  • Personal data collected through website analytics tools – We may collect information about User’s use of our Site, such as number of visits, pages visited, popularity of certain content. Analytics tools use tracking technologies (such as cookies) to recognise the device used and compile the information. They collect information such as what pages the User visits and how much time the User spends on these pages, the IP address assigned to the User, what operating system and web browser the User uses, and what site the User visited prior to visiting our Site.
  • Other types of personal data – When the User contacts us, including via any of our support channels, we may process the personal data provided to us in order to deal with the User’s query.

Registrants

Definition: Owners of domain names, registered with us.

Types of personal data: 

Domain name ownership information – We process personal data such as first and last name, name of the legal entity and its legal representative, address, phone number and email address of the Registrants, as well as the domain name and its status, name server, IP address etc.

End Users

Definition: Persons who visit, access, use and/or interact with our Customers’ websites.

Types of personal data: 

  • Personal data, contained in log files – When an End User visits our Customer’s website we process End User’s information such as IP address, domain name, date, request method, URI user agent, referrer, TLS version, cache data.

Affiliates

Definition: Persons who participate in our Affiliate Program.

Types of personal data: 

  • Affiliate account information – We process personal information such as first and last name, name of the legal entity and its legal representative, address, phone number, email address, IP address, payment information (i.e. PayPal account and/or bank account information, personal or TAX identification number etc.).
  • Personal data, contained in log files – When an Affiliate visits our Site we may process information such as IP address, referral URL, exit URL, browser software, operating system, date/time and/or clickstream data.
  • Personal data collected through website analytics tools – We may collect information about Affiliate’s use of our Site, such as number of visits, pages visited, popularity of certain content. Analytics tools use tracking technologies (such as cookies) to recognise the device used and compile the information. They collect information such as what pages the Affiliate visits and how much time the Affiliate spends on these pages, the IP address assigned to the Affiliate, what operating system and web browser the Affiliate uses, and what site the Affiliate visited prior to visiting our Site.
  • Other types of personal data – When the Affiliate contacts us, including via any of our support channels, we may process the personal data provided to us in order to deal with the Affiliate’s query. In addition, if the Affiliate loses access to its account, we may request certain documents in order to verify its identity. Those documents may contain personal data such as name, address, nationality, date of birth, identification document number etc.

Participants in events/promotions

Definition: Individuals, who participate in raffles, surveys and/or register to attend events, webinars and other promotions (co)organised and/or sponsored by us or any of the companies part of Social Force Pty Ltd.

Types of personal data: 

  • Contact information – We may process Participant’s data such as first and last name, email address, address, phone number, social media username, etc.
  • Other types of personal data – We may process your image and voice, if the event/promotion is being recorded. In case the promotions take place on our Site, when you visit it we may process information such as your IP address, referral URL, exit URL, browser software, operating system, date/time and/or clickstream data. We may also collect information about your use of our Site, such as number of visits, pages visited, popularity of certain content. Analytics tools use tracking technologies (such as cookies) to recognise your device and compile information about you. They collect information such as what pages you visit and how much time you spend on these pages, the IP address assigned to you, what operating system and web browser you use, and what site you visited prior to visiting our Site.

Other individuals

Definition: Individuals, who may not fall under the scope of the definitions listed above, such as potential customers, third parties, part of ownership account disputes, complainants, followers in our social media channels, etc.

Types of personal data:

  • Contact information – We may process information such as  first and last name, name of the legal entity and its legal representative, email address, address, phone number,  social media username, etc.
  • Other types of personal data – We may process your voice, if you contact us by phone, and/or your image, in case you share such data with us. We may process any other types of personal data provided to us in order to deal with your query.
  1. Sources of data collection

Apart from you, being the main source of information, we collect about you, we may also collect information from publicly accessible sources and/or third parties, such as our affiliates, trusted partners, including but not limited to marketing, advertising, security service providers, etc.

 III. Purposes of and legal basis for data processing 

We strive to collect only the minimum personal data necessary for the completion of the purposes of data processing, as set out below:

  • To provide, maintain and secure the Services (including our network, information systems and the server infrastructure operated by us) and fulfil our obligations under the applicable agreements and terms, including to administer any promotions (co)organised and/or sponsored by us or any of the companies part of Social Force Pty Ltd Group. In such cases the legal basis for the data processing is the performance of a contract and compliance with a legal obligation.
  • To maintain and secure our Site, network, information systems and the server infrastructure operated by us, including but not limited to investigating and preventing fraudulent transactions, unauthorized access to the Services and other illegal activities, to address any queries, to enforce our terms, to defend against claims and protect the rights, property or safety of Social Force Pty Ltd, to improve and/or develop the Services for the benefit of our Customers, and for statistical purposes. In such cases the legal basis for the data processing is our legitimate interest.
  • To promote our brand and Services, including to send marketing communication, newsletters, surveys, monitor and analyse activities for advertising purposes etc. In such cases the legal basis for the data processing is your consent.
  • To fulfil our legal obligations, such as compliance with court orders, orders/requests or other documents issued by competent authorities, applicable legislation, etc. In such cases the legal basis for the data processing is the compliance with a legal obligation to which we are subject.
  • For other purposes which may not fall under the scope of the above-mentioned purposes we will obtain your consent.
  1. Cookies, beacons, tags, pixels

We use cookies to collect some of the information set out in this Policy. Cookies can store your account identifier, ordering status, personalisation or website tracking. They can also be used for technical purposes such as keeping track of your current shopping session and enabling you to proceed to checkout and pay for your according order or to save information which has already been entered (languages preference, and your region), so that we can offer improved and more personalised Services, products and other relevant communication tailored to you. Cookies also allow us to fulfil our contractual obligations to third parties and partners if you have made a purchase on our Site by following a link from theirs.

We also use remarketing pixels provided by third parties to collect the information that you have visited our Site and were interested in certain offers. We also use beacons, tags, click tracking codes and scripts to analyse trends and movements of users around the Site, gather information about the user base as a whole and how we can improve the Services and Site, to provide advertising based upon activities and interests and to measure advertising effectiveness. As a result we may display targeted, or interest-based, offers to you based on the products you currently own or have recently viewed and deliver other communication more relevant to you and your interests outside of our Site, on other websites part of the third party’s network.

You can find detailed information about our use of cookies in our Cookie Policy.

  1. Sharing of personal data

We disclose entire or part of your personal data in the following circumstances and always ensure that the appropriate safeguards on your privacy are undertaken:

  1. To provide the Services and run our business – We may engage third-party service providers in the delivery of the Services and also for administrative, billing, tax and all other purposes related to the management of your account and our operations. In such cases your personal data may be shared with companies part of Social Force Pty Ltd, business partners, independent contractors, external consultants, auditors, collaborators, etc. Those third-party service providers include companies that operate in different industries such as fraud detection, technology service, internet information providers, payments and data processors, couriers, providers from the finance, media, internet content and information industries, advertising and marketing, technologies, analytics, etc. and that may be located worldwide (including but not limited to the EU, EEA, Switzerland, UK, USA, Australia, Singapore, Japan, etc.).

1.1 We also may share data with Google for use of Google Products and services. For example, we use an invisible reCaptcha service to protect our website from malicious activity. Use of the invisible reCaptcha and other Google products/services is subject to Google’s Privacy Policy and Terms of Service.

  1. To comply with the applicable legislation and to exercise rights – We may share personal data with companies, organisations or individuals when we believe in good-faith that access, use, preservation or disclosure of such data is necessary to meet any applicable law, comply with regulations, legal procedures, enforceable requests and/or competent authority requirements; to enforce our terms, defend against claims and protect the rights, property or safety of Social Force Pty Ltd, our Customers and/or the public as required and/or permitted by law.
  2. To comply with ICANN’s and ICANN-accredited registrar providers’ rules, regulations and policies – Social Force Pty Ltd, in its capacity as a reseller of domain names, shares Registrant’s data for the purposes of domain name registration and/or to comply with the applicable rules, regulations and policies of ICANN and the relevant registrar providers (such as, Synergy Wholesale,  TuCows (OpenSRS), ENOM, Openprovider, etc.).
  3. In case of business reorganization, transfers and/or acquisitions – We may share your information to third parties in connection with any prospective or completed business reorganization, merger, sale of company assets, or acquisition of all or a portion of our business by another entity, or in the unlikely event that Social Force Pty Ltd goes out of business or enters bankruptcy. If any of these events happens, we may take any reasonable steps to notify you and this Policy would continue to apply to your personal data processing.
  4. To comply with your instructions – We may share your information with third parties with your explicit consent or at your direction. We will not, however, sell, rent, share or otherwise disclose personal data for commercial purposes in any way that is contrary to the commitments made in this Policy.
  1. International data transfers

In the course of our business operations and for the delivery of the Services we may transfer personal data around the world (including but not limited to the USA, Australia, Singapore, Japan) where we and/or the third parties, specified in Section III above, use data centres, facilities and/or maintain data processing operations.

  1. Transfers between the UK and the EU/EEA

When transferring personal data from the UK to the EU/EEA we rely on the data adequacy granted to the EU/EEA by the UK government. For data that flows from the EU/EEA to the UK we rely on the adequacy decisions of the European Commission in relation to the UK. This means that the EU and the UK have both determined each region’s data protection laws to be sufficiently robust to ensure data can safely flow between the UK and the EU/EEA.

  1. Transfers outside the UK and the EU/EEA

In the event that we transfer personal data from the EU/EEA and/or the UK to countries which are not considered to provide an adequate level of data protection, we will ensure that:

  • we have provided appropriate and proportional technical and organisational data protection and cybersecurity risk mitigation measures, as well as we have performed the appropriate risk assessments when transferring your personal data outside of the EU, EEA and the UK;
  • we have provided appropriate safeguards to protect your personal data by virtue of making available the Standard Contractual Clauses, approved by the the European Commission (when the data subject is located in the EU/EEA) or the International Data Transfer Agreement, issued by the competent authority in the UK (when the data subject is located in the UK), as transfer mechanisms.

 VII. Security measures

We use Secure Sockets Layer (SSL) protocol to encrypt the information you enter on our Site in order to protect its security during transmission to and from our Site. When storing information, we protect its security by encrypting critical data. Access to this information is severely restricted, logged and reviewed periodically. When we collect credit card data and payments (we do not store full credit card numbers and CVV codes), the credit card data is subject to tokenisation and strong security measures applied by our payment processors in accordance with the PCI DSS requirements.

We maintain physical, logical, electronic and procedural safeguards when collecting, storing and disclosing personal data. Our security procedures require us in some cases to request proof of identity before disclosing personal data to you.

To protect against unauthorised access to your account and information, we implement session management, strong authentication requirements, login expiration mechanisms and the option of using 2-factor authentication for Client Area access. Authentication data is encrypted. As an additional safety measure, we ask you to sign out when you finish using your account and your computer.

Although we take appropriate technical and organizational measures to maintain the safety and security of your personal data against loss, theft and unauthorized use, access or modification, please note that no transmission of information over the Internet is not completely secure. Consequently, please note that we cannot fully guarantee the security of any personal data that you transfer over the Internet to us.

VIII. Retention periods

Information collected on our Site will only be retained for as long as necessary to fulfil the purpose for which it was collected. In general, we will automatically and securely delete your Client Area account information 2 years after you no longer have any active Services with us. Since we offer a Service for customers worldwide and we need to comply with regulations across the globe in regard to retention of personal information related to contractual agreements, provision of Services, financial, billing, invoicing operations, tax calculations etc., a versioned copy of your order, payment and billing documentation may be stored for a period of 10 years after the termination of your customer account. Your personal data is deleted automatically by our systems in accordance with these retention periods.

  1. Your rights

By visiting the “Owner Profile Details” section in your Client Area, you can access, correct, and delete certain personal data associated with your account.

In addition, by submitting your inquiry to the email specified in the “Contact information” section of this Policy you may request from us any of the following actions:

  • to confirm whether or not personal data about you is being processed;
  • to provide you with further details about how we process your personal data;
  • to provide you with a copy of any data which we hold about you;
  • to withdraw your consent to processing your personal data, where we rely on your consent as a legal basis for processing;
  • to consider any valid objection to the processing of your personal data, including the right to object to processing where we are relying on our legitimate interests as a legal basis for processing;
  • to request an update, rectification or deletion of your personal data, which we process about you;
  • to restrict the way that we process your personal data;
  • to consider any valid request to transfer (if technically feasible) your personal data to a third-party service provider.

We will review and address your request(s) within one month as of the date of receipt. Please note that if your request is particularly complex or you have made a number of requests, it may take us longer than a month to respond to you. In this case, we will notify you and keep you updated. Please note that we may ask you to provide us with additional information necessary to verify your identity prior to our response. However, in certain circumstances such as to comply with the applicable legislation, we may be unable to honour your request, for which you will be duly notified.

  1. Age Restrictions

In accordance with Social Force Pty Ltd Terms of Service, our Site and the Services are designated for use by  individuals who are at least 18 years old. If you are under the age of 18, you must request your parent or guardian to use the Site instead. Should you have evidence that someone under the age of 18 has bought Services and provided their personal data to us, please contact us using the details set out in the “Contact information” section below. If we become aware that we process personal data of a person under the age of 18, we will delete the data and terminate the use of the Services.

  1. Changes to the Privacy Policy

We reserve the right to modify this Policy at any time. If we decide to change our Policy, we will post the updates in the Site and in any other place we deem appropriate, so that you are aware of what personal data we collect, how we use it, and under what circumstances, if any, we disclose it.

If we make material changes to this Policy, we will notify you by email, or by means of a notice via our Site, at least ten (10) calendar days before the changes take effect.

XII. Contact information

For any data processing-related questions and/or requests, please contact us at [email protected].

Who we are

Our website address is: https://www.socialforce.com.au.

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select ”Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent

Visitor comments may be checked through an automated spam detection service.

YouTube

Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited.

If you’re logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

YouTube is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

Further information about handling user data, can be found in the data protection declaration of YouTube under https://www.google.de/intl/de/policies/privacy.

Vimeo

Our website uses features provided by the Vimeo video portal. This service is provided by Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA.

If you visit one of our pages featuring a Vimeo plugin, a connection to the Vimeo servers is established. Here the Vimeo server is informed about which of our pages you have visited. In addition, Vimeo will receive your IP address. This also applies if you are not logged in to Vimeo when you visit our plugin or do not have a Vimeo account. The information is transmitted to a Vimeo server in the US, where it is stored.

If you are logged in to your Vimeo account, Vimeo allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your Vimeo account.

For more information on how to handle user data, please refer to the Vimeo Privacy Policy at https://vimeo.com/privacy.

Google Web Fonts

For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.

For this purpose your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our plugin. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO.

If your browser does not support web fonts, a standard font is used by your computer.

Further information about handling user data, can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy at https://www.google.com/policies/privacy/.

SoundCloud

On our pages, plugins of the SoundCloud social network (SoundCloud Limited, Berners House, 47-48 Berners Street, London W1T 3NF, UK) may be integrated. The SoundCloud plugins can be recognized by the SoundCloud logo on our site.

When you visit our site, a direct connection between your browser and the SoundCloud server is established via the plugin. This enables SoundCloud to receive information that you have visited our site from your IP address. If you click on the “Like” or “Share” buttons while you are logged into your SoundCloud account, you can link the content of our pages to your SoundCloud profile. This means that SoundCloud can associate visits to our pages with your user account. We would like to point out that, as the provider of these pages, we have no knowledge of the content of the data transmitted or how it will be used by SoundCloud. For more information on SoundCloud’s privacy policy, please go to https://soundcloud.com/pages/privacy.

If you do not want SoundCloud to associate your visit to our site with your SoundCloud account, please log out of your SoundCloud account.