Effective – 09 December 2020 (last update – 28 December 2020)
Thanks for visiting Pont! We are Alterment OÜ, and here we explain why and how we collect, use, disclose, and store your personal data when you are using website www.pont.ee (including demo mode).
Data Controller and Processors
We are your personal data controllers – that means that we determine the purposes and means of the processing of your personal data. The legal basis for each category of personal data is indicated in the respective sections of this Policy.
API Providers connected to your account may be your personal data processors. They process your personal data according to User Terms of Service and their own policies. More information could be found in the "API Providers" section.
Personal data means any information related to an identified or identifiable natural person. You may find more details about personal data definition in Article 4 and Recital 30 of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR).
We collect the following personal data you provide us while you use our service:
Data necessary for our service
After your registration in Pont, in connection with the contract (by contract we mean Customer Terms of Service or User Terms of Service whichever applies), collecting and processing your personal data listed here is necessary for the performance of such contract:
1. Account information. Using our service, you or Customer may provide us information about your name, email, address, phone number, domain, schedule and vacation dates.
How do we use it: your account information is used by us in order to provide you with our service. This information will be accessible for all users in your workspace.
2. Billing details. We may collect your billing information such as your bank name, intermediary bank name, account details, credit card details.
How do we use it: if Customer uses an invoice feature in Pont, we will use this information to create and process your invoices to Customer.
Without the information described in this section, we simply wouldn't be able to fulfil the contract.
3. Contact information. Your email, address and phone number.
How do we use it: we may use this information to contact you or to answer on your request. We may also contact you to inform you about significant updates to our services.
4. Usage data. We collect some default information about usage of our service: log data (including its date and time), IP address, browser type, some browser settings and browser plugins, device information (your screen resolution, operating system, device settings etc.).
How do we use it: site may work differently depending on your device. We use this information in order to make our service work as designed on your device.
We do not knowingly collect any other personal data except stated above, so we encourage you not to provide any other personal data except the stated above if it is not related to our service. Please do not provide sensitive personal information.
If you gave us your consent to receive our emails, we will contact you from time to time using the email you provided during registration on our service. We may send you information about recent updates of our service or some other marketing materials. If you would like to unsubscribe from our newsletter, you may contact us or use the link in our emails.
Before you register in our service we will process only statistical data (which is not personal data in itself). We do not collect any of your personal Data before your registration on our service except the personal data that you provide via Facebook Messenger. You may find more information in "Google Analytics" and "Facebook Messenger" sections.
Personal Data Disclosure
We will not disclose or share any of your personal data with third parties except:
- It is necessary for the performance of the contract:
- with our employees or contractors who are responsible for contacting you;
- with other users in Customer's workspace;
- with other users beyond Customer's workspace, if you share this information with them;
- if you make payment, your name, email and billing details will be shared with a third-party payment gateway;
- with a successor in case of transferring the rights under Customer Terms of Service.
- Based on your consent:
- with API providers linked to your account.
- If disclosure is required by law or court order.
We do not sell your personal data.
Personal Data Storage and Transfer
Your personal data is stored in Ireland. We do not knowingly transfer your personal data into other countries.
However, API providers and third party services may store and process your data outside the European Union.
If you contact us via email, your message will be stored on Google servers which may be located in various countries, so your data can be transferred to other countries outside the EU, but Google is using European Commission's Standard Contractual Clauses (SCCs). Our email server supports TLS encryption to ensure the security of sending and receiving emails. However, to take advantage of it, your email service provider needs to support it too.
Third Party Links
This website may contain links to third party websites, which are governed by their own privacy policies. We are not responsible for the content or privacy of third party websites, so we encourage you to check third parties' privacy and security policies before providing them with any information.
Third Party Services
We use Google Analytics to get a better understanding of how people use our website. It allows us to collect various statistical data, such as the number of users visiting and their geographic distribution.
We do not share any of this data with Google or other third-parties and we do not use Remarketing or Advertising Reporting Features. Neither do we use User-ID. Also, we configured Google Analytics to anonymise your IP address.
We believe this configuration restricts the information collected to the bare minimum required for us to obtain meaningful statistical data. Neither we, nor other parties use it for targeting ads or any equally evil marketing purposes.
You may opt-out of making your site activity available to Google Analytics by using the Google Analytics Opt-out Add-on.
We use Facebook Messenger addon on our service to be able to contact you through a special form. You may find more information about Facebook cookies here and here.
We support third parties application programming interfaces ("API") to integrate user information and data into our system. You hereby give us your consent to share the information listed below with a corresponding API provider in order to provide you with our service.
The following API providers may be integrated into your account:
|API Provider||Data requested||Why do we collect this data||Link on API Provider Privacy document|
||Your name, your account name and email, API token.
||To let you sign up and sign in using your google account.
||Your name, your slack nickname, photo (avatar) of your account, API token.
||To let you create user groups; to attach Slack channels; to add the "write me" button on the user page; add users to project-related chat rooms when.
||Your issues description, time tracked and comments to issues, API token.
||To fetch YT issues; to fetch YT time tracks; to fetch comments to YT issues.
||Time tracked, API token.
||To set your time tracks.
||Your account name, your repositories information, comments made by you, API token.
||To fetch repositories (allow to choose repository for a project); to fetch PRs; to fetch comments to PRs; to invite users to Github organization.
||Your account name, your repositories information, comments made by you, API token.
||To fetch repositories.
Our website is not directed at children under 18, and we do not knowingly collect personal data from children under 18. If a child under the age of 18 has provided us with personal data, the child's parent or guardian may contact us and request that such information be deleted.
Your Data Protection Rights
General Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016) provides data protection rights for each user. Here they are:
Right to access – you have the right to request from us a confirmation as to whether or not any personal data concerning you has been processed. You also can request a copy of your personal data that we hold.
Right to rectification – you have the right to request us to correct your personal data you believe is inaccurate or incomplete.
Right to erasure – in certain circumstances, you can ask for your personal data we hold to be erased.
Right to restriction of processing – in certain circumstances, you can request us to limit the way we use your personal data.
Right to data portability – in certain circumstances, you can request us to transfer your personal data to another company.
Right to object – you have the right to challenge certain types of processing, such as direct marketing.
Updating and Definitions
Do Not Track
If you would like to access, erase, update or rectify any of your personal data that we hold or exercise any other of your data protection rights, please contact us:
Murad Murzaev <email@example.com>
Pille tn 7/5-13, 10138,
Tallinn, Kesklinna linnaosa,
Data Protection Authority
If you wish to lodge a complaint, you may contact Estonian Data Protection Inspectorate:
+372 627 4135
39 Tatari St.