as of April 18, 2023
Privacy and security are of utmost importance to Pusher (hereinafter known as “Black Lab”, “Provider,” “us”, “we”, “the App” or “the Site”) and we strive to ensure that our technical and organizational measures in place respect your data protection rights.
This Privacy Policy describes how we manage, process and store personal data submitted in the context of providing our services. “Personal data” refers to any information relating to an identifiable individual or his or her personal identity.
In subscribing to our services or filling in a contact form on our website (pusher-app.com) or other sites owned by Black Lab, you agree and accept that we may gather, process, store and/or use the personal data submitted in accordance with the rules set forth below.
By giving your consent to us, you also retain the right to have your personal data rectified, to be forgotten and/or to be erased.
Personal data is collected on our website by Black Lab SAS, a company registered under France law number 843 974 825 with the Caen Trade & Companies Register, and having its registered office at 29 rue du Val es Dunes, 14000 Caen, France.
Collected data are classified as either
• Information intended for use only by specific individuals on a need-to-know basis
• Information protected by law, contractual obligation, or policy
• Information with the potential for severe negative repercussions to Black Lab’s reputation, resources, services, or individuals if disclosed
• Information intended for Black Lab use only
• Non-public information that does not reach the sensitivity of Confidential
• Information with the potential for moderate negative repercussions to Black Lab’s reputation, resources, services, or individuals if disclosed
Public
• Information intended to be publicly available
• Information that poses little or no risk to Black Lab’s reputation, resources, services, or individuals if disclosed
Internal
Confidential
All confidential data are encrypted at rest.
When you subscribe to our services, the following data is collected and managed (note that there is no aggregated elements)
Data element
Isolated
- Access tokens
- Passwords (Black Lab applications, SMTP/IMAP)
Confidential
email address, first name, last name, company name, Intra-community VAT number (when applicable), login, password, mailing address, country, phone number, IP address(es) and domain name, user application notifications, campaign data, campaign leads, email templates, graveyard email list, information on subscriptions and messages on our site. Some data is collected automatically by reason of your activity on the site (see paragraph on cookies below).
The data submitted should not include any sensitive personal data, such as government identifiers (i.e. social security, driving licence, or taxpayer identification numbers), complete credit card or complete personal bank card numbers, medical records or particulars connected with applications for care or treatment associated with private individuals.
The chart below summarizes the requirements for handling information based on classification. Information comingled with multiple classifications must always be handled with the highest applicable classification (e.g. public information that is stored or transmitted along with Confidential information may be encrypted in order to simplify the use of encryption solutions).
Confidential
Distribution
Labeling
Paper documents
Electronic files
Internal
Distribution
Labeling
Paper documents
Electronic files
Public
Distribution
Labeling
Paper documents
Electronic files
Your personal data is processed to meet one or several of the following purposes. Each purpose is associated with a legal basis, the list of which can be found below.
On the basis of our legitimate interest of offering you a safe, optimum, efficient and personalized experience, we carry out processing operations for the following purposes:
On the performance basis of a contract to which you are a party, we carry out processing operations for the following purposes:
On the bases of your consent or legitimate interest, we carry out processing operations for the following purposes:
On the basis of the compliance with our legal and regulatory obligations, we carry out processing for the following purposes:
We use the personal data submitted to us only in accordance with the applicable data protection legislation.
For those of you that have expressly opted in to receive our Pusher newsletters, you are easily able to unsubscribe by following the “unsubscribe” links included in every email sent.
Without systematically doing so, we may analyze and track the various rates (for example: click, open, bounce rates) and the number of emails sent with Pusher which you open to assess performance rates on your emailing campaigns.
Pusher publishes a list of Customers & Testimonials on its sites with information on our customers’ names and job titles. Pusher undertakes to obtain the authorization of every customer before publishing any testimonial on its websites. If you wish to be removed from this list, you can send us an email to privacy@pusher-app.com and we will delete your information promptly.
Personal data relating to you collected on our website are destined for Pusher’s own use and may be forwarded to Pusher’s partner companies so that we may obtain assistance and support in the context of carrying out our services. Pusher ensures that it has in place clear data protection requirements for all of its third party providers.
Pusher does not sell or rent your personal data to third parties for marketing purposes whatsoever.
In addition, Pusher does not disclose your personal data to third parties, except if: (1) you (or your account administrator acting on your behalf) requests or authorized disclosure thereof; (2) the disclosure is required to process transactions or supply services which you have requested (i.e. to check you are employing best practices in your mailings or for the purposes of processing an acquisition card with credit-card issuing companies); (3) Pusher is compelled to do so by a government authority or a regulatory body, in the case of a court order, a summons to appear in court or any other similar requisition from a government or the judiciary, or to establish or defend a legal application; or, (4) the third party is a subcontractor or sub-processor of Pusher in the carrying out of services (for example: Pusher uses the services of an Internet provider, a telecommunications company, a host provider, CRM tools, customer support client tools, invoices tools, payment tools, analytics tools).
In accordance with the French Data Protection Laws and the European General Data Protection Regulation 2016/679 (GDPR) you have several rights related to the collection of your personal data:
You can exercise these rights by sending us a support ticket directly on the support chat (either on the website or on the app) or, by sending an email at privacy@pusher-app.com. Your requests will be processed within 30 days. We may require that your request be accompanied by a photocopy of proof of identity or authority.
You are also able at any time to modify personal data by logging into your account and navigating to “User Settings”.
In the context of using our services, namely creating emailing campaigns and contact lists, Pusher has access to the information contained in the email contact lists you create in your account, as well as the subject and content of the emails that you send out via our services.
This data is stored on secure servers and only a limited number of people are authorized to access your contact lists, in particular for the purpose of providing support services.
You are easily able to recover your contact lists from your Pusher account at any time, by clicking on the “export” button. You may also modify and or delete contacts at any time from your account.
In no case does Pusher sell, share or rent out your contact lists to third parties, nor does it use them for any purposes other than those set forth in this policy. We will use the information from your contact lists only for legal requirements, to invoice and collect summaries for our own statistics and for the purposes of providing you with customer support services.
As creator of the contact lists and associated email campaigns, you are considered the data controller within the meaning of the GDPR, and Pusher is acting only as a data processor. In this capacity, you are responsible in particular for:
If a recipient of your emails sent via our services requests us to modify or delete his/her personal data, we will honor that request after proper verification and will inform you of it.
Your personal data is kept for the periods set out below.
The host servers on which Pusher processes and stores its databases are located exclusively within the European Union.
Pusher will inform you immediately, to the extent we are legally authorized to do so, in case of any application or order originating from an administrative or judicial authority relating to your personal data.
Regarding the tools we use (see article “Third party disclosures” on recipients of the collected data, concerning our processors), your personal data could be transferred outside the European Union. The transfer of your data within this framework is secured by the following safeguards:
Within the framework of its services, Pusher attributes the very highest importance to the security and integrity of its customers’ personal data.
Thus and in accordance with the GDPR, Pusher undertakes to take all pertinent precautions in order to preserve the security of the data and, in particular, to protect them against any accidental or unlawful destruction, accidental loss, corruption, unauthorized circulation or access, as well as against any other form of unlawful processing or disclosure to unauthorized persons.
To this end, Pusher implements industry standard security measures to protect personal data from unauthorized disclosure. Using industry recommended methods of encoding, Pusher takes the measures necessary to protect information connected with payments and credit cards.
Moreover, in order to avoid in particular all unauthorized access, to guarantee accuracy and the proper use of the data, Pusher has put the appropriate electronic, physical and managerial procedures in place with a view to safeguarding and preserving the data gathered through its services.
Notwithstanding this, there is no absolute safety from piracy or hackers. That is why in the event a breach of security were to affect you, Pusher undertakes to inform you thereof without undue delay and to use its best efforts to take all possible measures to neutralize the intrusion and minimize the impacts. Should you suffer any loss by reason of the exploitation by a third party of a security breach, Pusher undertakes to provide you with every assistance necessary so you are able to assert your rights. Moreover if, by some exceptional case, the direct loss incurred arose due to fault or gross negligence by Pusher, you will be able to seek compensation within the limit of liability referred to in our Terms of Use.
You should keep in mind that any user, customer or hacker who discovers and takes advantage of a breach in security renders him or herself liable to criminal prosecution and that Pusher will take all measures, including filing a complaint and/or bringing court action, to preserve the data and the rights of its users and of itself and to limit the impacts.
1. What is a Cookie?
When browsing our sites, cookies, pixels, tags and other trackers (hereafter referred to as “Cookies”) are installed on your computer.
A cookie is a small file, often encrypted, that is stored in your browser or device and is identified by a name. It is installed when you visit a site or application. Each time you return to the said site or application, the Cookie is retrieved from your browser or device. This ensures that each time you visit the site or application, the browser is recognized. The installation of these Cookies is likely to enable us to access your browsing data and/or personal data concerning you.
2. Cookies Identification
Technical and functional Cookies
Technical and functional Cookies are necessary for the proper functioning of the Site and to provide you with our services. They are used throughout your navigation, in order to facilitate it and to carry out certain functions.
For example, a technical Cookie may be used to store your responses to a form or your preferences regarding the language or layout of the Site, where such options are available.
We use the following technical and functional Cookies:
no cookie at this moment.
Advertising Cookies
Advertising Cookies may be created not only by our sites but also by other websites and applications that serve ads, announcements, widgets or other elements displayed on the page.
These Cookies can be used, among other things, to personalize and measure the effectiveness of advertising or to carry out targeted advertising.
We use the following Advertising Cookies:
no cookie at the moment.
Analytical Cookies
These Cookies allow us to measure the number of visits, page views and user activity. If necessary, they may collect your IP address to know the city from which you are connecting. Analytical Cookies allow us to generate statistics on the use and navigation of our Site in order to improve our performances. The Cookies used also allow us to identify navigation problems and eventually to solve them.
We use the following Analytical Cookies:
_gid Used by Google Analytics to count pageviews / 1 day
_ga Used by Google Analytics to register a unique ID that is used to generate statistical data on how the visitor uses the website / 2 years
_hjTLDTest Used by Hotjar to determine generic cookie path / Session
_hjid Used by Hotjar to store a unique user ID / 1 year
_hjAbsoluteSessionInProgress Used by Hotjar to store unique visits / Session
__hstc Used by Hubspot to store time of visit / 13 months
hubspotutk Used by Hubspot to store and track a visitor’s identity / 13 months
_gac_* Used by Google Analytics and Google Ads to store and count page views / 90 days
3. Your Cookies preferences
Cookies that can be installed without consent
Some cookies do not require your consent, such as:
Acceptance or refusal of Cookies subject to your express consent
All other Cookies require your consent. These include Advertising Cookies, Social Networking Cookies, Content Personalization Cookies and some Audience Analysis Cookies. You may freely choose to accept or decline the use of these Cookies.
You can accept or refuse these Cookies the first time you browse the Site.
Your choices to accept or refuse these Cookies will be retained for a period of six (6) months.
You are free to withdraw your consent and more generally to change your preferences at any time via the link "Manage cookies" at the bottom of each page.
Your browser settings
It is also possible to set your browser to accept or reject certain Cookies.
Pusher reserves the right to update this Privacy Policy at any time, in particular pursuant to any changes made to the laws and regulations in force. Any modifications made will be notified to you via our Website or by email, to the extent possible, thirty (30) days at least before any changes come into force. We would recommend that you check these rules from time to time to stay informed of our procedures and rules relating to your personal information.
If you have questions, you can email us at Data Protection Officer directly at: privacy@pusher-app.com or by mail to: Black Lab SAS, Attn: Data Protection Officer / Legal Department, 29 rue du Val es Dunes, 14000 Caen, France.