Thank you for choosing to be part of our community at Captisa (“company”, “we”, “us”, or “our”). We are committed to protecting your personal information and your right to privacy. If you have any questions or concerns about our policy, or our practices with regards to your personal information, please contact us at [email protected]
1. What Information do we collect?
Personal information you disclose us
In Short: We collect personal information that you provide to us such as name, address, contact information, passwords and security data, and payment information
We collect personal information that you voluntarily provide to us when registering, interest in obtaining information
about us, our products and services, when participating in activities such as posting messages in our online forums, or support requests.
Name and Contact Data. We collect your first and last name, email address, postal address, phone number, and other similar contact data.
Credentials. We collect passwords and similar security information used for authentication and account access.
Payment Data. We collect data necessary to process your payment if you upgrade to a paid plan, such as your payment instrument number (such as a credit card number),
and the security code associated with your payment instrument. All payment data is stored by our payment processor and you should review its privacy policies and contact the payment processor directly to respond to your questions.
All personal information that you provide to us must be true, complete and accurate, and you must notify us of any changes to such personal information.
Information automatically collected
In Short: Some information – such as IP address and/or browser and device characteristics – is collected automatically when you visit our site.
We automatically collect certain information when you visit, use or navigate the site. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use our site. This information is primarily needed to maintain the security and operation of our site, and for our internal analytics and reporting purposes.
2. Will your information be shared with anyone?
In Short: We only share information with your consent, to comply with laws, to protect your rights, or to fulfill business obligations.
Personal information we gather is for internal use only and we will not authorize the release of this information to anyone outside Captisa, except as clearly described below.
We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process, such as in response to a court order or a subpoena (including in response to public authorities to meet national security or law enforcement requirements).
Web beacons are tiny transparent images embedded in ads on webpages to track how many users visit our website or view our digital ad to help us understand how users are interacting with our website.
Captisa uses Google Analytics to help us understand how you engage with our website and applications. To learn more about how Google Analytics collects and processes data, please see https://www.google.com/policies/privacy/partners/.
Captisa uses Microsoft Application Insights to monitor and assess the health of the services we provide in real time. App Insights logs tons of useful information, like requests to our servers, connections to third-party dependencies, and any errors that may occur during processing. This data includes information like the IP address, browser version, internal user id and organization id for each request—information typically found in web server logs. We actively monitor and review reports from App Insights to proactively address any issues as they occur. App Insights is a Microsoft Azure product and is governed by the same security measures as our production hosting environment.
4. Is your information transferred internationally?
In Short: We may transfer, store, and process your information in countries other than your own.
Our servers are located in United States. If you are accessing our site from outside the United States,
please be aware that your information may be transferred to, stored, and processed by us in our facilities
and by those third parties with whom we may share your personal information (see “Will your information be shared with anyone?” above), in the United States and other countries.
5. How long do we keep your information?
When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
6. How do we keep you information safe?
We aim to protect your personal information through a system of organizational and technical security measures.
We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process. However, please also remember that we cannot guarantee that the internet itself is 100% secure. Although we will do our best to protect your personal information, transmission of personal information to and from our is at your own risk. You should only access the services within a secure environment.
7. Do we collection information from minors?
We do not knowingly collect data from or market to children under 18 years of age.
We do not knowingly solicit data from or market to children under 18 years of age. By using the site,
you represent that you are at least 18 or that you are the parent or guardian of such a minor and consent to such minor dependent’s use of the
site. If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data from our records.
If you become aware of any data we have collected from children under age 18, please contact us at [email protected]
8. What are your privacy rights?
You may review, change, or terminate you account at any time.
If you would at any time like to review or change the information in your account or terminate your account, you can:
- Access and modify your personal information by logging into Captisa using your email address and password and going to https://captisa.com/system/settings.
- If you have forgotten your password, you can reset your password by going to https://captisa.com/account/forgotpassword/.
- You can unsubscribe from our marketing email list at any time by clicking on the unsubscribe link in the emails that we send or by contacting us using the details provided below. You will then be removed from the marketing email list – however, we will still need to send you service-related emails that are necessary for the administration and use of your account.
If you have an account with Captisa, we do not delete the data in your account, you are responsible for and control the time periods for which you retain this data. There are controls in your account where you can delete data at the account level (all data in your account) and at the response level. If you are a Respondent, you will need to ask the account owner how long your responses will be stored in Captisa databases.
9. Do we make updates to this policy?
Yes, we will update this policy as necessary to stay compliant with relevant laws.
10. How can you contact us about policy?
If you have quetions or comments about this policy, please feel free to contact us