DragBin LogoDragBin

Privacy Policy

Last Updated: 2 October 2024

Introduction

At DragBin Inc. ("DragBin," "we," "us," or "our"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you use our services, in compliance with the General Data Protection Regulation (GDPR) and other applicable laws.

By accessing or using our services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

1. Definitions

Personal Data: Any information relating to an identified or identifiable natural person.

Processing: Any operation performed on personal data, such as collection, storage, use, disclosure, or deletion.

Data Subject: An individual whose personal data is processed.

Controller: The entity that determines the purposes and means of processing personal data.

2. Data Controller

DragBin Inc. acts as the data controller for the personal data we process. For any inquiries regarding your personal data, please contact us at:

Email: [email protected]

Address: DragBin Inc., 1234 Cloud Street, Tech City, [Country]

3. Information We Collect

3.1 Personal Data

We may collect the following personal data:

  • Contact Information: Name, email address, phone number, and mailing address.
  • Account Information: Username, password, and subscription details.
  • Billing Information: Credit card numbers, billing address, and transaction history.
  • Usage Data: IP address, browser type, operating system, access times, and pages viewed.

3.2 Files and Content

All files and content you upload to DragBin are subject to zero-knowledge encryption. This means:

Zero-Knowledge Encryption: Your files are encrypted on your device before being transmitted to our servers. Only you hold the encryption keys, and we cannot access your decrypted data.

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: When you have given clear consent for us to process your personal data.
  • Contractual Necessity: Processing is necessary for the performance of a contract with you.
  • Legal Obligation: Compliance with legal obligations to which we are subject.
  • Legitimate Interests: Processing is necessary for our legitimate interests or those of a third party, provided your rights do not override those interests.

5. How We Use Your Information

We may use your personal data for the following purposes:

  • To Provide Services: Facilitate account creation, authenticate users, and provide access to our services.
  • Customer Support: Respond to inquiries, troubleshoot issues, and provide technical assistance.
  • Billing and Payments: Process transactions, manage subscriptions, and prevent fraud.
  • Communication: Send administrative information, updates, and promotional materials (with your consent).
  • Analytics: Analyze usage patterns to improve our services and user experience.
  • Legal Compliance: Comply with applicable laws, regulations, and legal processes.

6. Data Sharing and Disclosure

We do not sell or rent your personal data to third parties. We may share your data in the following circumstances:

  • Service Providers: With trusted third-party vendors who perform services on our behalf, subject to confidentiality agreements.
  • Legal Requirements: When required by law, court order, or governmental regulation.
  • Business Transfers: In connection with a merger, sale, or asset transfer, provided the receiving party agrees to respect your personal data in a manner consistent with this Privacy Policy.

7. International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses: Utilizing contractual provisions approved by the European Commission.
  • Privacy Shield Frameworks: Complying with applicable data protection frameworks (if applicable).

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. Upon termination of your account, we will securely delete or anonymize your data.

9. Your Rights Under GDPR

As a data subject, you have the following rights:

  • Right of Access: Obtain confirmation whether your personal data is being processed and access to your data.
  • Right to Rectification: Correct inaccurate or incomplete personal data.
  • Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data under certain conditions.
  • Right to Restrict Processing: Request restriction of processing under specific circumstances.
  • Right to Data Portability: Receive your personal data in a structured, commonly used format.
  • Right to Object: Object to processing based on legitimate interests or for direct marketing purposes.
  • Right to Withdraw Consent: Withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

To exercise your rights, please contact us at [email protected].

10. Data Security

We implement comprehensive security measures to protect your personal data:

  • Encryption: Zero-knowledge end-to-end encryption for all files and data in transit and at rest.
  • Access Controls: Role-based access controls and multi-factor authentication for administrative access.
  • Security Audits: Regular penetration testing and security assessments.
  • Compliance: Adherence to industry standards such as ISO/IEC 27001 for information security management.

11. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

  • Essential Cookies: Necessary for the operation of our services.
  • Analytics Cookies: Help us understand user interaction and improve our services.
  • Preference Cookies: Remember your preferences and settings.

You can manage your cookie preferences through your browser settings.

12. Third-Party Links

Our services may contain links to third-party websites. We are not responsible for the privacy practices of those sites. We encourage you to read their privacy policies.

13. Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If you believe we have collected such data, please contact us for deletion.

14. Changes to This Privacy Policy

We may update this Privacy Policy periodically. Significant changes will be communicated via email or a prominent notice on our website. The "Last Updated" date will reflect the effective date of the latest revision.

15. Contact Us

For questions or concerns about this Privacy Policy or our data practices, please contact:

Data Protection Officer (DPO): [email protected]

Address: DragBin Inc., Cloud Street