Introduction

‍

This Privacy Policy applies to the processing of personal data we collect when you:
‍

• Visit our website (“Site”) or branded social media pages;
• Receive communications from us, including emails or phone calls;
• Use and interact with our Services (for example, when you create an individual user account with Shipfix as an employee or representative of our Subscribers – “Corporate Users”), or are designated as a point of contacts for administrative tasks regarding the Services such as billing and notifications.
  ‍

This Privacy Policy does not apply to our processing of personal data in our capacity as processor or service provider on behalf of our customers, including where we offer to our customers various tools through which they can collect personal data about individuals who exchange emails with Corporate Users or are included in Corporate Users’ contact lists. Our processing of that information is governed by our agreement with our customers.

‍

‍

About Shipfix

‍

Shipfix provides an Internet based subscription service for the maritime and trade industries that offers businesses subscribing to the services (“ Subscribers ”) collaborative tools to structure trading information, improve email management, obtain valuable insights on the market and counter-parties, and identify new business opportunities (“ Services ”).

‍

Controller

‍

Shipfix Technologies S.A.S. and Shipfix LTD are responsible for how your personal data is handled as joint controllers. You can find our contact information in the “Contact Us” section below. Additionally, we have appointed a Data Protection Officer (“DPO”). To contact our DPO, please email privacy@shipfix.com .

‍

Personal Data We Collect

‍

We have provided below an overview of the information we collect when you interact with our Services or the Site, and examples of how we use the specific types of information.

‍

Personal Data That You Provide

‍

Identification data : Depending on your use of the Services, we may collect your name, email address, phone number, and mailing/billing addresses. You also have the option of adding a profile picture, a display name, job title, phone number, location and other details to your profile information to be displayed in our Services.

‍

Professional life data : Depending on your interaction with us, we collect professional email address, job title, phone number, location, and information that you may provide when you request user support.

‍

Payment information : We collect certain payment and billing information when we receive payments for our Services such as billing address, payment card details and bank account information, which we collect via secure payment processing services.

‍

Communications data : If you communicate with us via a phone call or videoconference, we may record that call for training, quality assurance, and administration purposes. If required under applicable law, we will obtain your prior consent or give you the option to object to a call being recorded.

‍

Personal Data We Collect From Other Sources

‍

We also collect information about you from other sources, in particular:

‍

• Apollo business intelligence platform, through which we can obtain information to assist us in better marketing to potential prospects and others who may be interested in our Services, including first name, contact details, job description. For information about Apollo’s privacy practices, please visit https://www.apollo.io/privacy/ ;

‍

• LinkedIn, used to search for prospects and obtain insights into the engagement with advertisement on LinkedIn. Please refer to LinkedIn Privacy Policy for further information: https://www.linkedin.com/legal/privacy-policy; and

‍

• Other customers or our employees or contractors who may provide us with your business contact information for the purposes of obtaining services.

‍

Automatically Collected Data

‍

When you visit, use and interact with the Site or the Services, we may receive certain information about your visit, use or interactions. For example, we may monitor the number of people that visit our Site, peak hours of visits, which page(s) are visited on our Site, the domains our visitors come from (e.g., google.com , yahoo.com , etc.), and which browsers people use to access and visit our Site (e.g., Firefox, Microsoft Internet Explorer, etc.), broad geographical information, and Site-navigation pattern. In particular, the following information is created and automatically logged in our systems:

‍

• Log data : Information that your browser automatically sends whenever you visit the Site (“log data”). Log data includes your Internet Protocol (“IP”) address (so we understand which country you are connecting from when you visit the Site), browser type and settings, the date and time of your request, and how you interacted with the Site.;

‍

• Cookies : Please see the “Cookies” section below to learn more about how we use cookies.

‍

• Device information : Includes name of the device, operating system, and browser you are using. Information collected may depend on the type of device you use and its settings.

‍

• Usage Information : We collect information about how you use our Services, including statistical usage data derived from the operation of our Services, data regarding configurations, log data, filtering choices and information regarding the performance results for the Services.

‍

How We Use Personal Data

‍

We process your personal data as necessary to:

‍

• Perform our contract with you or your employer (“ Contractual Necessity ”),
• Comply with legal obligations (“ Legal Obligation ”), and
• Where it is necessary for our legitimate business purposes, your interest or the interests of a third party (“ Legitimate Interests ”).
• ‍

In some cases we need your consent for processing your personal data, such as to send you marketing emails or for the use of cookies and other similar technologies where required by the applicable law, as explained in more detail below.

‍

The specific purposes for which we process your personal data and the legal bases we rely on for the processing are listed below.

How We Share Personal Data

‍

We share your personal data with third parties in the following situations:

‍

• Vendors and Service Providers : To assist us in meeting business operations needs and to perform certain services and functions, we may share personal data with service providers, including hosting and other information technology services; email communication software providers and email newsletter providers; database and sales/customer relationship management services; payment service providers; and web analytics services (for more details on the third parties that place cookies through the Site, please see the “Cookies” section below). Pursuant to our instructions, these parties will access, process or store personal data in the course of performing their duties to us.

‍

• Business Transfers : Your personal data will be used by us or shared with our affiliated companies for internal reasons, primarily for business and operational purposes. If we are involved in a merger, acquisition, financing due diligence, reorganisation, bankruptcy, receivership, sale of all or a portion of our assets, or transition of service to another provider, your personal data may be shared in the diligence process with counterparties and others assisting with the transaction and transferred to a successor or affiliate as part of that transaction along with other assets.

‍

• Legal Requirements : If required to do so by law or in the good faith belief that such action is necessary to (i) comply with legal or regulatory obligations, (ii) protect and defend our rights or property, (iii) prevent fraud, (iv) act in urgent circumstances to protect the personal safety of users of the Site, or the public, or (v) protect against legal liability.

‍

Data Retention

‍

We keep personal data for as long as reasonably necessary for the purposes described in this Privacy Policy, while we have a legitimate business need to do so, or as required by law (e.g. for tax, legal, accounting or other purposes), whichever is the longer.

‍

In relation to marketing activities, we retain information about your marketing preferences until you opt out of receiving these communications and in accordance with our policies.

‍

To determine the appropriate retention period for your personal data, we will consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we use your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

‍

Your Rights

‍

The GDPR grants European data subjects the following rights:

‍

• Access . You can request a copy of the personal data that we maintain about you. If you require additional copies, we may need to charge a reasonable fee.

‍

• Deletion and Correction . You can ask us to delete or correct the personal data that we hold about you.

‍

• Objection . You may have the right to object to how we use your personal data.

‍

• Restrict Processing . You may ask us to suspend our processing of your personal data, for example, if you want us to establish its accuracy or the reason for processing it.

‍

• Data Portability . If required to do so, we will give you your personal data in a structured, commonly used, and machine-readable format.

‍

• Withdraw Consent : Where we rely on your consent to process personal data about you, you have the right to later withdraw your consent in the manner indicated when you consent or by contacting us as described in this Privacy Policy.
  ‍
• Right to decide the fate of your data after death: the right to impose the fate that you wish to reserve your Personal Data in the event of death.

‍

To exercise these rights, please email our DPO at privacy@shipfix.com . You also have the right to submit a complaint to the Commission Nationale de l'Informatique et des Libertés (CNIL) sending a letter to the following mailing address:

‍

CNIL
3 Place de Fontenoy
TSA 80715
75334 Paris Cedex 07
France

‍

You may also submit a complaint to then CNIL here .

‍

You may also contact the Information Commissioner’s Office (ICO) in the United Kingdom. You can find details about how to do this on the ICO’s website at https://ico.org.uk/concerns/ .

‍

Data Transfers

‍

In connection with the operation of our Services, your personal data will be transferred to Shipfix LTD in the United Kingdom, pursuant to the European Commission’s adequacy decision for transfers of personal data to the United Kingdom (Commission Implementing Decision of 28 June 2021). We also rely on service providers that process personal data on our behalf in the United States. The United States may have data protection laws less stringent than or otherwise different from the laws in effect in Europe. We have taken measures to protect the confidentiality and security of your personal data, and your rights as a data subject.

‍

Security

‍

We have implemented physical, technical, and administrative security measures designed to protect the confidentiality of personal data we process both online and offline from loss, misuse, and unauthorised access, disclosure, alteration or destruction. However, no Internet or e-mail transmission is ever fully secure or error free. In particular, e-mail sent to or from us may not be secure. Therefore, you should take special care in deciding what information you send to us via the Services or e-mail. Please keep this in mind when disclosing any personal data to Shipfix via the Internet. In addition, we are not responsible for circumvention of any privacy settings or security measures contained on the Services, or third party websites.

‍

Children

‍

The Site and our Services are not directed to children who are under the age of 18. Shipfix does not knowingly collect personal data from children under the age of 18. If you have reason to believe that a child under the age of 18 has provided personal data to Shipfix through the Site or the Services please contact us and we will endeavor to delete that information from our databases.

‍

Links to other Sites

‍

The Site may contain links to other websites not operated or controlled by Shipfix, including social media services (“Third Party Sites”). The information that you share with Third Party Sites will be governed by the specific privacy policies and terms of service of the Third Party Sites and not by this Privacy Policy. By providing these links we do not imply that we endorse or have reviewed these sites. Please contact the Third Party Sites directly for information on their privacy practices and policies.

‍

Cookies

‍

We and our partners use cookies to operate and administer our Site, make it easier for you to use the Site during future visits, and gather usage data on our Site. For more information about the cookies used on our Site, please refer to our Cookie Policy , which forms part of this Privacy Policy.

‍

Changes To The Privacy Policy

‍

We reserve the right to modify this Privacy Policy at any time. If we make material changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy and posting it on the Site. If required by law, we will also provide notification of changes in another way that we believe is reasonably likely to reach you, such as via email or another manner through the Site. Any modifications to this Privacy Policy will be effective upon our posting the modified version (or as otherwise indicated at the time of posting). In all cases, your use of the Site or the Services after the effective date of any modified Privacy Policy indicates your acknowledgment of the modified Privacy Policy.

‍

Contact Us

‍

If you have any questions about our Privacy Policy, please feel free to contact our DPO at privacy@shipfix.com , or send a letter to the following mailing address:

‍

SHIPFIX TECHNOLOGIES S.A.S.
112 Avenue de Paris - CS 60002
94306 Vincennes Cedex,
France

Last Updated February 17th 2023

‍