Back to top

Privacy Policy

Last updated October 18, 2019.

Startup Stack respects your privacy and is committed to protecting the Personal Data it collects. The purpose of this Privacy Policy is to inform you of how we protect your privacy when accessing or using Startup Stack Resources.

General Terms and Privacy Shield Notice

Scope

This Privacy Policy applies to Startup Stack Resources that link to, or reference, this Privacy Policy, and describes the ways Startup Stack collects and uses your personal information and the choices you have regarding collection, use, maintenance, access and transmission of your personal information. Capitalized terms not expressly defined in this Privacy Policy shall have the meaning found in our Terms and Conditions. By utilizing a Startup Stack Resource, including without limitation the Startup Stack Services, Startup Stack’s website or otherwise providing your Personal Data to Startup Stack via any other means, you or the entity you represent accept and consent to the rights, obligations and practices described in this Privacy Policy.

Privacy Shield and Cross-Border Transfers of Personal Data

Startup Stack is an organization headquartered in the United States of America (the “US”). By utilizing a Startup Stack Resource, you expressly consent to Startup Stack’s access, maintenance, transmission and/or use of your Personal Data outside of your country of residence, regardless of location or jurisdiction.

This means that your use of a Startup Stack Resource may result (i) in your Personal Data being stored and/or processed in any country that Startup Stack, our affiliates or our subprocessors maintain facilities, and (ii) that while in such jurisdictions, your Personal Data may be subject to access pursuant to the laws of those jurisdictions (which may be more or less comprehensive as the laws of your country). To obtain a list of Startup Stack’s affiliates and subprocessors, please email support@startupstack.tech.

In addition to our obligations under US law, Startup Stack supplements the protection of the international transfer of your Personal Data in the following ways:

  • EU-US Privacy Shield. The European Union – US Privacy Shield Framework (“EU-US Privacy Shield”) is an international agreement between the European Union (“EU”) and the US regarding the collection, use, and retention of personal information transferred from the European Economic Area to US data processors. The EU-US Privacy Shield is administered by the United States Department of Commerce and governed by the EU-US Privacy Shield Principles. Startup Stack participates and complies with the EU-US Privacy Shield and agrees that all cross-border transfers of Personal Data from/to the European Economic Area are subject to the EU-US Privacy Shield Principles. As a participant of the EU-US Privacy Shield, Startup Stack is subject to the regulatory enforcement powers of the US Federal Trade Commission, and in some instances, may be required to disclose Personal Data to lawful requests by public authorities. In the event of a conflict between the terms in this Privacy Policy and the EU-US Privacy Shield Principles, the EU-US Privacy Shield Principles shall govern. To learn more about the Privacy Shield and to view Startup Stack’s EU-US Privacy Shield certification, please visit https://www.privacyshield.gov/.

  • Swiss-US Privacy Shield. The Switzerland – US Privacy Shield Framework (“Swiss-US Privacy Shield”) is an international agreement between Switzerland and the US regarding the collection, use, and retention of personal information transferred from Switzerland to US data processors. The Swiss-US Privacy Shield is administered by the United States Department of Commerce and governed by the Swiss-US Privacy Shield Principles. Startup Stack participates and complies with the Swiss-US Privacy Shield and agrees that all cross-border transfers of Personal Data from/to Switzerland are subject to the Swiss-US Privacy Shield Principles. As a participant of the EU-US Privacy Shield, Startup Stack is subject to the regulatory enforcement powers of the US Federal Trade Commission, and in some instances, may be required to disclose Personal Data to lawful requests by public authorities. In the event of a conflict between the terms in this Privacy Policy and the Swiss-US Privacy Shield Principles, the Swiss-US Privacy Shield Principles shall govern. To learn more about the Privacy Shield and to view Startup Stack’s Swiss-US Privacy Shield certification, please visit https://www.privacyshield.gov/.

Third Party Transfers of Data

Startup Stack may transfer Personal Data to third parties acting on our behalf when operationally necessary to provide the Services. If Startup Stack has received your Personal Data in the US or the EU and subsequently transfers your Personal Data to a third party acting on our behalf, and such third-party agent processes your Personal Data in a manner that is inconsistent with the applicable Privacy Shield Principles, Startup Stack will remain responsible and liable unless we can prove that Startup Stack is not responsible for the event giving rise to the damage.

Dispute Resolution

Please direct any complaints regarding this Privacy Policy to us at privacy@startupstack.tech, or via postal mail or facsimile using contact information found on Startup Stack’s About Us page. We will attempt to resolve any such complaints in a reasonably timely manner and in accordance with this policy.

You may also, under certain circumstances, invoke binding arbitration for complaints not resolved by the dispute resolution procedures described in this section. For more information about binding arbitration and the Privacy Shield frameworks, please visit the Privacy Shield website at https://www.privacyshield.gov/.

Additional Terms

  1. Who does the Privacy Policy apply to? — This Privacy Policy applies to all Customers of, and Visitors to, any Startup Stack Resource or Startup Stack Service. In the case of Customers, the Account Holder shall be responsible for (i) informing their End Users, if any, of the existence of this Privacy Policy, as well as any amendments, updates or modifications made to this Privacy Policy and (ii) agreeing to this Privacy Policy, as amended, updated or modified from time to time, on behalf of his, her or its End Users.

  2. What Personal Data is Collected by Startup Stack? — Startup Stack considers any information that can be used to directly or indirectly identify you to be Personal Data, including without limitation, Personal Data that is accessed, collected, maintained, transmitted and/or used by Startup Stack in the normal course of our business, and is subject to the provisions of this Privacy Policy and applicable law.

  3. How is Personal Data Collected by Startup Stack? — Startup Stack collects and logs your IP address, the time and duration of your visit, the time and duration of the pages on Startup Stack’s website that you view (where applicable) and information about your computer system, such as your browser type and operating system, whenever a Startup Stack Resource is accessed or used by you. In the case of Customers, we collect, maintain, transmit and/or use Personal Data provided by you in your Account, including without limitation, your full name, Startup Stack identification number, billing data and contact information.

    Startup Stack will likely place a cookie on your hard drive during the web visit. A cookie is a unique alphanumeric identifier that Startup Stack uses to determine the number of unique Visitors that view its website, whether or not those Visitors are repeat Visitors, and the source of the visits. Cookies cannot be executed as code or used to deliver a virus. Other servers cannot read cookies and personal information cannot be gathered from cookies. Cookies are simply an identifier shared between you and Startup Stack to allow Startup Stack to improve the services Startup Stack offers to you through its website. If you do not wish cookies to be placed on your computer, then they can be disabled in your web browser. The option to do so is normally found in your browser’s “security settings” section. However, please note, permanently disabling cookies in your browser may hinder your use of Startup Stack’s website as well as other website and interactive services.

    A web beacon, also known as a web bug, is a small graphic (usually 1 pixel x 1 pixel), that is embedded in a web advertisement, email, or page on Startup Stack’s website, which is invisible to you. When you view a page on Startup Stack’s website, an e-mail or an advertisement, your web browser will request the web beacon from a web server, which in turn will set a cookie in your web browser containing a unique identifier. This unique identifier will be linked to log information that is used to track your usage of Startup Stack’s website in order to determine the effectiveness of content and advertising campaigns.

    Startup Stack does not collect personal information about you as part of a web visit, but web visit information may be tied to other information (including personal information) that Startup Stack collects from you via chat, web forms, and the other means Startup Stack describes in this Privacy Policy.

  4. Why Does Startup Stack Collect Personal Data?

    For Customers

    Startup Stack may use your Personal Data to process your service requests, handle orders, deliver products and services, process payments, communicate with you about orders, provide access to secure areas of Startup Stack’s website, and to enable Startup Stack to review, develop and continually improve the products, services and offers that it provides. Startup Stack also uses this information to prevent or detect fraud or abuses of Startup Stack’s website and to enable third parties to carry out technical, logistical or other functions on its behalf.

    For Visitors

    Startup Stack uses Personal Data to send information about Startup Stack to Visitors and to contact them when necessary. Startup Stack also uses the information that it collects to improve the content of its website and as training aids for its employees. Visitors have discretion as to whether to grant information to Startup Stack upon Startup Stack’s request for information.

    For Financial Information

    Startup Stack may ask Customers to enter credit card or account information in order to process orders for services placed with Startup Stack. Financial information provided via its website is transferred over a secure connection via Chargebee, Inc. and Stripe, Inc. payment processing companies. Startup Stack does not collect this information and will not authorize the release of the information to anyone not directly involved in processing the transaction. This information may be encrypted and stored for logging purposes by Chargebee, Inc or Stripe, Inc.

    Credit card numbers are used only for processing payments and are not used for any other purposes. Startup Stack entered into a written agreement with Chargebee, Inc. and Stripe, Inc. and it will continue to enter into written agreements with third parties that provide credit card processing services. Startup Stack will ensure that appropriate security and confidentiality measures are in place in safeguarding your personal data.

    For Use Information

    Startup Stack uses website use information to measure interest in and develop its web pages and marketing plans, customize the content you view on your web visits based on your activity during past visits, and administer Startup Stack’s website. In addition:

    • Startup Stack uses a Visitor’s IP address to help diagnose problems with its servers, and to administer its website.

    • Startup Stack uses cookies to help it recognize Visitors as unique Visitors when they return to Startup Stack’s website. Startup Stack also uses cookies to tailor content or advertisements to match your preferred interest; avoid showing Visitors the same advertisements repeatedly; compile anonymous, aggregated statistics that allow Startup Stack to understand how users use its site and to help it improve the structure of its website (Startup Stack cannot identify Visitors personally in this way); and count the number of anonymous users of its websites.

    • Startup Stack uses web beacons to count the number of times that its advertisements and web-based e-mail content are viewed. Startup Stack combines web beacon information with cookies to track activity on its website originating from advertisements and web-based e-mail content.

    For Support Information

    Startup Stack uses information that you provide to it via telephone calls, chat, e-mail, web forms and other communications to correspond with you about services you may be interested in purchasing. If you elect to purchase a service online using a web form, Startup Stack will use the information to establish your account. Information you submit in writing, such as chat, e-mail, and web form information is archived and may be tied to information that Startup Stack collects about your web visits. Your telephone call may be recorded for training purposes and Startup Stack may enter information you provide via telephone into its systems to use for the purposes described in this paragraph.

  5. What does Startup Stack Disclose to Regulatory Agencies and other Third Parties?

    Startup Stack transfers Personal Data to third parties, including without limitation, law enforcement agencies and consumer reporting agencies, in the normal course of business, subject to service of lawful process or your written consent. If you breach the Terms of Service or other applicable Service Level Agreement, or if Startup Stack is under a duty to disclose your Personal Data in order to comply with any legal obligation, Startup Stack may disclose your information to the relevant authority. Disclosure may include, but is not limited to, exchanging information with other companies and organizations for the purposes of regulatory auditing, fraud protection and credit risk reduction. In particular, Startup Stack may release the information it collects to third parties when Startup Stack believes that it is appropriate to comply with the law, to enforce legal rights, to protect the rights and safety of others, or to assist with industry efforts to control fraud, spam or other undesirable conduct. In the event of a Customer request for the disclosure of Personal Data by Startup Stack, Customer will be responsible for the cost of disclosure efforts outside of Startup Stack’s normal course of business.

    Startup Stack may release the information it collects to third parties, where the information is provided to enable such third party to provide services to Startup Stack, provided that the third party has agreed to use at least the same level of privacy protections described in this Privacy Policy, and is permitted to use the information only for the purpose of providing services to Startup Stack.

  6. Exercising User Choice

    Subject to applicable law, you have the choice to and right to limit, restrict or deny Startup Stack’s ability to share your Personal Data with third parties or use of your Personal Data for a purpose that is materially different from the purpose for which it was originally collected or authorized by you. In order to exercise your right to choose, please contact us at privacy@startupstack.tech, or via postal mail or facsimile using contact information found on Startup Stack’s About Us page. Please note, in the absence of any notice to the contrary, you expressly grant Startup Stack permission to share your Personal Data at Startup Stack’s discretion.

  7. Security and Integrity of your Personal Data

    Startup Stack intends to protect and secure your Personal Data in accordance to the terms of this Privacy Statement and the Customer Agreement, and has implemented physical, administrative and technical measures designed to protect your Personal Data from unauthorized access, use or disclosure. These industry-standard safeguards are consistent with the ISO/IEC 27001:2013 standard, and include without limitation encryption of credit card information, password and/or cryptographic key-based authentication controls on servers which house personal information, browser-based secure sockets layer encryption, and other storage system access control mechanisms to protect the integrity of internal databases and prevent unauthorized access. Startup Stack requires all Startup Stack business partners and vendors to provide the same or greater protections for any Personal Data that is disclosed by Startup Stack in furtherance of our provision of a Startup Stack Resource to you. To learn more about Startup Stack’s contractor requirements, please contact us at privacy@startupstack.tech, or via postal mail or facsimile using contact information found on Startup Stack’s About Us page.

  8. Access to Personal Data

    You control access to Personal Data maintained or stored by you via Startup Stack’s web-based interface for account management. You may update your information at any time. You may cancel your account at any time and may request that your personal information be deleted from Startup Stack’s databases, with the exception of: network access logs, which may be stored for any duration of time at Startup Stack’s discretion, cases where financially fraudulent or otherwise illegal activity is deemed to have occurred (as determined by Startup Stack management or law enforcement officials), in which case personal information may be retained indefinitely for purposes of ongoing investigation and prevention of fraud recurrence, or cases where a violation of the Terms of Service and applicable Service Level Agreement has resulted in cancellation of your account (as defined by revocation of your permission to utilize Startup Stack’s services), in which case personal information may be retained indefinitely for purposes of prevention of further use of Startup Stack’s services in the future by the offending individual. Upon request, Startup Stack will grant you reasonable access to Personal Data maintained by Startup Stack about you. In addition, we will take reasonable steps to correct, amend or delete information that is demonstrated by you to be inaccurate, incomplete or processed in violation of applicable law. Unless required by law, Startup Stack will not permit you to access the Personal Data of any Data Subject other than yourself.

  9. Sensitive Information

    Startup Stack will not intentionally collect or maintain, and requests that you do not provide, any information regarding your medical or health condition, race or ethnic origin, political opinions, religious or philosophical beliefs or other sensitive information. If you host any material or information that is sensitive and/or subject to the Graham-Leach Bailey Act, the Health Information Privacy Portability and Accountability Act, or any other law or regulation, such information and compliance with applicable privacy laws remains solely your responsibility. Startup Stack is not responsible for any sensitive information stored by you on its systems.

  10. Children’s Online Privacy Protection

    Startup Stack’s services are not designed for or directed to children under thirteen (13) years of age and Startup Stack will not intentionally collect or maintain information about anyone under thirteen (13) years of age.

  11. Hosted Data

    With the exception of software installed by, or configuration data maintained by Startup Stack, you retain sole ownership of all information stored on Startup Stack Services. Startup Stack may access this information only for the purposes of making backups or incidentally as part of routine system maintenance. Startup Stack will not otherwise copy, examine, data-mine, or disclose such information to third parties, except where required by law. Unless explicitly requested otherwise, Startup Stack will not maintain copies of your hosted data, including backups, beyond the term of your subscription.

    You are solely responsible for ensuring compliance with any and all applicable privacy guidelines and regulations for all jurisdictions in which you may operate with respect to appropriate practices for the collection, storage, and dissemination of personal information using your Startup Stack Services.

  12. Enforcement

    If you believe your Personal Data has been used in a way that is not consistent with this Privacy Policy, or if you have further questions regarding this Privacy Policy, please contact our Custodian of Records via email or by writing us at the following address:

    Custodian of Records
    Startup Stack LLC
    11835 Carmel Mountain Rd
    Suite 1304 #363
    San Diego, CA 92128

  13. Definitions

    “Custodian of Records” means the Startup Stack employee described in Section 12 of this Privacy Policy.

    “Terms of Service” means the Startup Stack Terms and Conditions published here, as amended at Startup Stack’s sole and absolute discretion from time to time.

    “IP” means any internet protocol address, including without limitation, unique and non-unique network addresses.

    “Personal Data” means any information relating to a Data Subject that you or your End Users directly or indirectly provide to us as part of the Startup Stack Services or any Data Subject’s use of any Startup Stack Resource.

    “Privacy Policy” means this policy, as amended at Startup Stack’s sole and absolute discretion from time to time.

    “Visitor” or “Visitors” means any individual(s) or entity(ies) that accesses, maintains, transmits, develops, acquires, operates or otherwise uses any Startup Stack Resource but is not a Customer.

    “Startup Stack Service” means any application or service running on a server managed by Startup Stack on your behalf as part of a Startup Stack subscription plan.

  14. Changes

    Amendments to this Privacy Policy may be made at any time and you should check back frequently for any changes. Startup Stack will also provide public notice of amendments to this Privacy Policy on the appropriate Startup Stack Resource. Unless otherwise directed by you in writing to the Custodian of Records, you agree that Startup Stack shall have the right and ability to amend this Privacy Policy at Startup Stack’s sole and absolute discretion, and that you waive any requirement for specific or expressed acknowledgement or agreement to any such amendments or modifications. This Privacy Policy was last updated on October 18, 2019.

  15. Verification

    Startup Stack utilizes the self-assessment approach to assure its compliance with its Privacy Policy. Startup Stack regularly verifies that the Privacy Policy is accurate, comprehensive, prominently displayed, completely implemented and in conformity with applicable international law. Startup Stack conducts its self-assessment on an annual basis to ensure that all relevant privacy practices are being followed. Appropriate employee training is in place and internal procedures for periodically conducting objective reviews of compliance are in place. A statement verifying this self-assessment is signed by a corporate officer or other authorized representative at least once per year.