Your privacy is important to us
Please read this policy carefully to understand how we handle and treat your personal information.
Question Base collects data to enable it to operate the Services effectively, and to provide you with the best experiences on the Platform. You provide some of this data to us directly, such as when you register to use our Services (whether directly through us, or indirectly through Slack), subscribe to a newsletter, respond to a survey, make an inquiry through our website, contact us for support, or contact us as a prospective customer, vendor, supplier, or consultant. We get some of your data by recording how you interact with our website and our Services by, for example, using technologies like cookies. We also obtain and process data in the context of providing the Services.
You have choices about the data we collect. When you are asked to provide personal data, you may decline. But if you choose not to provide data that is necessary to enable us to provide the Services, you may not be able to use all or part of those Services.
The data we collect depends on the context of your interactions with the Platform, and the Services you use. The data we collect can include the following:
Name and contact information. We may collect your first and last name, company account name, Slack handle, email address, postal address, phone number, company information, and other similar contact data.
Payment information. When you make purchases on our website, a secure window will be opened directly to our payment provider, and any payment information that you provide is sent directly to the payment provider. We do not have access to complete payment information.
Customer information. When you subscribe to our Services, you will control what data is collected and stored on our systems. For example, you might give us the following types of data during your use of the Services: name and email address. In such cases, we act as a data processor, in accordance with your instructions.
Device and Usage information. We may collect data about your device and how you and your device interact with us and our Services. For example, we may collect:
- Use data. We may collect data about the features you use, the Services you purchase, and the web pages you visit. This also includes your interactions on our website and your interactions with us via email or social media.
- Device, connectivity, and configuration data. We may collect data about your device and the network you use to connect to our Services. This may include data about the operating system and other software installed on your device, including product keys. It may also include IP address, browser type, operating system, and referring URLs.
We use the data we collect to operate our business and to provide the Services to you. This includes using the data to improve our Services, and to personalize your experiences. We may also use the data to communicate with you, inform you about your account, provide security updates, and give you information about the Services. We may also use the data to manage your email subscriptions, improve the relevance and security of our website, respond to user inquiries, send you periodic marketing communications about our Services, and improve the relevance of our advertising.
Providing and improving our Services. We use data to provide and improve the Services we offer, and to perform essential business operations. This includes operating the Services, maintaining and improving the performance of the Services, developing new features, conducting research, and providing customer support. Examples of such uses include the following:
We implement a variety of security measures to maintain the safety of your personal information when you enter, submit, or access your personal information. We offer the use of a secure server. All supplied sensitive/credit information is transmitted via Secure Socket Layer (SSL) technology and then encrypted into our payment gateway providers database only to be accessible by those authorized with special access rights to such systems, and are required to keep the information confidential. Your financial information (e.g. credit cards) is never stored on our servers.
We implement a variety of measures to ensure that our processing systems remain confidential, resilient, and available.
High Availability. Every part of the Services utilize properly-provisioned, redundant servers (e.g., multiple load balancers, web servers, replica databases) in case of failure. We take servers out of operation as part of regular maintenance, without impacting availability.
Business Continuity. We keep backups of data in AWS. While never expected, in the case of production data loss (i.e., primary data stores loss), we will restore organizational data from these backups.
Physical Access Controls. Question Base is hosted on AWS. Their data centers feature a layered security model, including extensive safeguards such as custom-designed electronic access cards, alarms, vehicle access barriers, perimeter fencing, metal detectors, and biometrics. Our employees do not have physical access to AWS data centers, servers, network equipment, or storage.
Logical Access Controls. Question Base is the assigned administrator of its infrastructure on AWS, and only our designated authorized team members have access to configure the infrastructure on an as-needed basis.
Cookies are small files that a site or its service provider transfers to your computer's hard drive through your Web browser (if you allow) that enable the site’s or service provider’s systems to recognize your browser and capture and remember certain information. You can choose to disable cookies, but if you do, your ability to use or access certain parts of our website may be affected.
Our Site may contain electronic images known as web beacons (also called single-pixel gifs) that we use to help deliver cookies on our websites, and to count users who have visited those websites. We may also include web beacons in our promotional email messages or newsletters, to determine whether and when you open and act on them. In addition to placing web beacons on our own Site, we sometimes work with other companies to place our web beacons on their websites or in their advertisements.
Finally, our Services may contain web beacons or similar technologies from third-party analytics providers that help us compile aggregated statistics about the effectiveness of our promotional campaigns or other operations. These technologies enable the analytics providers to set or read their own cookies or other identifiers on your device, through which they can collect information about your online activities across applications, websites or other products.
We share your personal data with your consent, or as necessary to provide the Services to you. We also share your data with vendors working on our behalf; when required by law or to respond to legal process; to protect our customers; to protect lives; to maintain the security of our Services; and to protect our rights or our property.
We share your personal data with your consent, or as necessary to provide the Services to you. We also share personal data with vendors or agents working on our behalf for the purposes described in this Policy. For example, companies we have hired to provide cloud hosting services, off-site backups, marketing campaigns, and customer support may need access to personal data to provide those functions. In such cases, these companies are required to abide by our data privacy and security requirements and are not allowed to use personal data they receive from us for any other purpose.
We may disclose your personal data as part of a corporate transaction such as a corporate sale, merger, re-organization, dissolution, or similar event.
Finally, we will access, transfer, disclose, and/or preserve personal data, when we have a good faith belief that doing so is necessary to:
We may use and share aggregated non-personal information with third parties for marketing, advertising, and analytics purposes. We do not sell or trade your personal information to third parties.
How you can access and control your personal data will depend on which Services you use.
You can opt-out from receiving marketing communications from us by using the opt-out link on the communication
Data Erasure and Slack. You can request that we delete your personal data by sending an email to firstname.lastname@example.org with “Please delete my personal data” in the subject line. We will verify your ability to access that email, then delete the personal data associated with your email address. We will use reasonable efforts to respond to your request within 14 days of our receipt of the request. Please note that we retain billing and usage metadata about a company or individual as required for compliance with law and regulation. Removing Question Base from your Slack workspace is a prerequisite for the complete deletion of your data. Please, review Slack Help Center on how to remove apps: https://slack.com/intl/en-gb/help/articles/360003125231-Remove-apps-and-customised-integrations-from-your-workspace/
Your Communications Preferences. You can choose whether you wish to receive marketing communications from us. If you receive marketing communications from us and would like to opt-out, you can do so by following the directions in that communication. Please note that these choices do not apply to mandatory communications that are part of the Services such as administrative or billing-related communication. Surveys or other informational communications will have their own unsubscribe method.
The Service is not intended to be used by minors under the age of 16 and we do not knowingly collect personal information from them. If you have a reason to believe that a child under the age of 16 has provided us with personal information, please contact us at email@example.com with sufficient detail to enable us to delete that information.
Occasionally, at our discretion, we may include or offer third-party products or services on our website or through our Services. If you access other websites using the links provided, the operators of these websites may collect information from you that will be used by them in accordance with their privacy policies. These third-party sites have separate and independent privacy policies. We, therefore, have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.
We will process information from the European Economic Area. In some cases, data may also be processed from other countries, including the UK, in which case we will implement the security measures required by law. In particular, we will be signing Standard Contractual Clauses to ensure that the information is protected at all times.
You can update any information we may have from you by means of updating the account settings in your Slack. Please remember that it is your duty to keep the information updated so we can correctly provide you with the Services, and you undertake to verify the information you have handed us from time to time to make sure that it is accurate.
Personal information is processed by us, an entity incorporated in accordance with the laws of Denmark with the following contact details:
We may retain your personal information as long as you continue to use the Services, have an account with us, have Question Base installed on your Slack workspace, or for as long as is necessary to fulfil the purposes outlined in the policy. You can ask to close your account by contacting us at the details below, and we will delete your personal information on request.
We will retain your personal data for as long as necessary to provide the Services to you, or for other essential purposes such as complying with our legal obligations, resolving disputes, and enforcing our agreements. Because these needs can vary for different types of data in the context of the different Services we provide, actual retention periods can vary significantly. The criteria we use to determine the retention periods include:
Either if you are a customer, a professional, or a third party, you have the right to withdraw your consent at any time. You also have the right to request access to, and rectification of, or erasure of your personal data, or restriction of processing, or to object to processing, as well as the right to data portability. Please note that if you choose to cancel your data and you are a customer, your account will be deleted and all data in your account will be permanently deleted from our systems. You may lodge a complaint at any time with the Danish Data Protection Agency.
We will update this privacy statement when necessary to reflect customer feedback and changes in our Services. When we post changes to this statement, we will revise the “last updated” date at the top of the statement. If there are material changes to the statement or in how we will use your personal data, we will notify you by directly sending you a notification. We encourage you to periodically review this privacy statement.
For data portability requests, please contact us at firstname.lastname@example.org and we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.
Send a request on email@example.com
Question Base ApS, P.O.Pedersenvej 2, 8200 Aarhus, Denmark