Privacy statement and compliance with RGPD guidelines
Last updated: 9 July 2021
Check it Out S.A.S. places the utmost importance on the privacy of your information. This privacy statement explains what personal data Check it Out S.A.S. processes, how Check it Out S.A.S. processes it and for what purposes. In particular, it lets you know how Check it Out S.A.S. complies with the General Data Protection Regulation 2016/679 of 27 April 2016 (GDPR) for residents of the European Union.
Check it Out S.A.S. currently offers one product: the video application “Kannelle”. References to Check it Out S.A.S. products in this statement include services, websites, applications, pieces of software, servers necessary for the operation of the “Kannelle” application.
This statement applies to interactions between Check it Out S.A.S. and you, the Check it Out S.A.S. products listed below, and other Check it Out S.A.S. products resulting in the display of this statement.
For any questions regarding privacy, complaints or questions for the Privacy Officer/Data Protection Officer in the European Union at Check it Out S.A.S., please contact us at email@example.com.
The personal data we collect
Check it Out S.A.S. collects data from you as part of its interactions with you and through its products. You provide some of this information directly and we obtain other information by collecting data about how you interact with, use and enjoy our products. The data collected varies depending on the context of your interactions with
Check it Out S.A.S., the choices you make (including regarding your privacy settings), the products and features you use.
If you represent an organisation (for example, a business or educational institution) that uses Check it Out S.A.S. business products, please see the Business Products section of this privacy statement to find out how we process your data. If you are an end user of a Check it Out S.A.S. product or a Check it Out S.A.S. account provided by your organization, see the Products Provided by Your Organization and Check it Out S.A.S. Account sections for more information.
You can decide what technologies you want to use and what data you want to share. When we ask you to provide personal data, you can decline. However, most of our products require some personal data because it allows us to provide a service to you. If you choose not to provide the required data that enables us to provide a product or feature to you, you will not be able to use that product or feature. Similarly, if we need to collect personal data in order to comply with the law or to enter into or complete a contract with you, and you do not provide it, we will not be able to enter into that contract; for the same reason, if it relates to an existing product you are using, we may have to suspend or cancel your use of that product. If this is the case, we will notify you in due course. If providing data is optional and you choose not to share your personal data, you will not be able to access certain features that use it, such as personalisation which will not work for you.
How we use personal data
Check it Out S.A.S. uses the data we collect in order to provide you with rich and interactive experiences. In particular, we use data to:
provide our products, which includes updating, securing, troubleshooting, as well as providing support; this also includes sharing data, where necessary to provide the service or to complete transactions you request;
improve and develop our products;
personalize our products and make recommendations;
we also use data to conduct our business, including analysing our performance, complying with our legal obligations, developing our working practices and carrying out research.
- We also use data to provide information to our customers and to the public.
Sharing your personal data
We do not share your personal data. If in a future perspective we were to do so, it would necessarily be done with your consent or in very specific cases:
to carry out a transaction or provide a product that you have requested or authorised.
when required by law or to respond to legal process;
to protect our customers;
to protect the rights and property of Check it Out S.A.S. and its customers.
How to access and control your personal data
You can also make choices about the collection and use of your data by Check it Out S.A.S.. You can control your personal data obtained by Check it Out S.A.S. and exercise your data protection rights, by contacting Check it Out S.A.S. at firstname.lastname@example.org. In some cases, your ability to access or control your personal data will be limited, to the extent required or lets by applicable law. How you access or control your personal data also depends on the products you use.
Cookies and similar technologies
We also use or may use “web beacons” to help us place cookies and gather usage and performance data. Our websites may include web beacons, cookies and similar technologies from third party service providers.
Products provided by your organisation – notice to end users
If you are using a Check it Out S.A.S. product or an email address to access Check it Out S.A.S. products and that product or email address has been provided by an organisation with which you are affiliated, such as an employer or school, that organisation may:
Control and administer your Check it Out S.A.S. product and product account, including potentially controlling the privacy settings of the product or product account.
Potentially access your data (e.g. your Kannelle videos).
If you lose access to your business or school account (e.g., if you change jobs), you may lose access to products and the content associated with those products, including those you have created or acquired for your own personal account, if you have used your business or school account to log in to those products.
If your organization lets you access Check it Out S.A.S. products, your use of Check it Out S.A.S. products is subject to your organization’s policies, if any. You should direct any requests regarding privacy, including requests to exercise your data protection rights, to your organization’s administrator. When you use social features in Check it Out S.A.S. products, other users in your network may see some of your activity. Check it Out S.A.S. is not responsible for the privacy or security policies or practices of our customers, which may differ from those stated in this privacy statement.
Check it Out S.A.S.
With a Check it Out S.A.S. account, you can login to Check it Out S.A.S. products. The personal data associated with your Check it Out S.A.S. account includes:
professional contact details to reach you in case of need (email and in some cases telephone),
data about the device with which you use your Account,
data about your use of the Services,
we do not collect personal data such as age, gender, banking information or navigation data (GPS).
Logging into your Check it Out S.A.S. account lets you enjoy consistent personalisation and experiences across all products and devices, as well as enabling other features.
There is currently only one type of Check it Out S.A.S. account:
When you or your organisation (for example, an employer or your school) create your Check it Out S.A.S. account linked to the email address provided to you by that organisation, we call that account a business or school account.
We do not offer a personal Check it Out S.A.S. account (in case you create your own Check it Out S.A.S. account linked to your personal email address) or a third party account (in case you log in through an email address offered by your service, internet or cable provider).
Other important privacy information
Now comes additional privacy information, such as how we secure your data, where your data is processed and how long we keep your data.
From a technical perspective, we secure your personal data in the following ways:
All http requests are https (SSL encryption).
On our servers (AWS, based in France or Ireland), we store business assets (such as logos, jingles, music and font files) and user logs based on their activities on Check it Out Products. In our database (AWS Neo4j), with respect to personal data management, we only store the relationships between work emails and workspaces
User activity is recorded on our secure AWS servers based on the use of our Services. We do not record personal data, except for the user’s unique identification number and business email address.
Personal passwords used by individuals to log in / register for the Services are managed by a specialist third party and fully encrypted. We do not have access to them.
We have an access/intrusion detection system included in our authentication management service. This IDS deals with (i) brute force protection and (ii) violated password protection. It sends an email to the attacked person, blocks login attempts and notifies administrators.
We also secure your personal data from an organisational perspective:
We have specified access roles in Check it Out SAS.
Only our CEOs / CTOs / COOs have full access to our server side services (storage and database).
The technical team also has modified access to several services as it is part of their daily tasks to improve the technical aspects of the Services.
Other team members do not have access to the Services back-end or programming interfaces.
All back-end user account passwords are complex as they are generated with a password manager.
All Check it Out SAS members are encouraged to manage their authentication via the password manager, generating complex passwords.
All Check it Out SAS members are regularly trained in information security and access permissions are reviewed each time employees enter/leave and at least every 3 months.
Personal data that is stored in our database is in France, Ireland and Belgium (on Amazon Web Services servers and on our third-party authentication service).
Personal data stored in our CRM (Customer Relationship Manager) is hosted in Germany.
In addition, to a greater extent, some indirect personal data is hosted in the United States. This includes the actions of users of the Services (managed by an analytics service) and user support discussions related to their use of the Services.
We retain Personal Data for as long as necessary for the purposes for which the Personal Data was collected, based on the following criteria:
The duration of our contractual relationship;
The management of the commercial relationship;
Legal requirements (including accounting requirements).
In addition, when a business reaches the end of its Kannelle subscription, we deactivate all user access by switching flags in our database. At the request of the business or the users themselves, we permanently delete all personal information that was on our servers.
Business products are Check it Out S.A.S. products and pieces of software primarily designed and offered for use by businesses. These include the following products: “Kannelle”.
In the event of a conflict between this Check it Out S.A.S. Privacy Statement and the terms of any contract between a customer and Check it Out S.A.S. regarding products for businesses, the terms of this contract shall prevail.
You can also learn more about the features and settings of our business products, including choices that affect the protection of your or your end users’ personal data, in the product documentation.
If any of the terms below are not defined in this privacy statement, the definitions are listed below.
When a customer tries, purchases, uses, subscribes to, or receives support or professional services for a business product, Check it Out S.A.S. collects data for the purposes of providing the service (including what uses are consistent with providing the service), providing the best experience for our products, conducting our business and communicating with the customer. For example:
When a customer contacts a Check it Out S.A.S. sales representative, we collect their name, contact information and organisation information to ensure the communication goes smoothly.
When a customer interacts with a Check it Out S.A.S. support professional, we collect device or usage data or error reports to diagnose and resolve problems.
When a customer purchases products, we collect contact and professional payment data to process the payment.
When Check it Out S.A.S. sends communications to a customer, we use data to personalise the content of the communications.
When a client contacts Check it Out S.A.S. for professional services, we collect the name and contact information of the client’s designated point of contact and use the information provided by the client to perform the services requested by the client.
The Business Products may let you purchase, subscribe to, or use other online products and services from Check it Out S.A.S. or third parties with different privacy practices. These other online products and services are governed by their respective privacy statements and policies.