Pipeline On
Back to Home

GDPR Privacy Notice

Last Updated: December 22, 2024

1. Introduction

This GDPR Privacy Notice supplements our main Privacy Policy and provides additional information for individuals located in the European Economic Area (EEA), United Kingdom (UK), and Switzerland regarding their data protection rights under the General Data Protection Regulation (GDPR) and related legislation.

Pipeline On ("we," "our," or "us") is committed to protecting the privacy and security of personal data in accordance with applicable data protection laws.

2. Data Controller

Pipeline On is the data controller responsible for processing your personal data. For any questions regarding this notice or our data practices, please contact us at:

Data Protection Contact
Email: hello@pipelineon.com
Website: pipelineon.com

3. Lawful Bases for Processing

We process personal data only when we have a valid lawful basis to do so. The lawful bases we rely on include:

3.1 Consent

Where you have given clear consent for us to process your personal data for a specific purpose, such as receiving marketing communications or allowing cookies for personalized advertising.

3.2 Contract

Where processing is necessary for the performance of a contract with you, such as providing our Services to you or processing your payments.

3.3 Legal Obligation

Where processing is necessary for compliance with a legal obligation to which we are subject.

3.4 Legitimate Interests

Where processing is necessary for our legitimate interests or those of a third party, provided your rights and interests do not override those interests. Our legitimate interests include:

  • Operating and improving our Services
  • Understanding how users interact with our website
  • Marketing our products and services
  • Preventing fraud and maintaining security

4. Categories of Personal Data

We may process the following categories of personal data:

  • Identity Data: Name, username, or similar identifier
  • Contact Data: Email address, telephone number, and business address
  • Technical Data: IP address, browser type and version, device information, time zone, and operating system
  • Usage Data: Information about how you use our website and Services
  • Marketing Data: Your preferences for receiving marketing communications
  • Transaction Data: Details about payments and purchases

5. Your Rights Under GDPR

As a data subject, you have the following rights under the GDPR. You can exercise these rights by contacting us at hello@pipelineon.com.

5.1 Right of Access

You have the right to request a copy of the personal data we hold about you and information about how we process it.

5.2 Right to Rectification

You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.

5.3 Right to Erasure ("Right to be Forgotten")

You have the right to request that we delete your personal data in certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected.

5.4 Right to Restriction of Processing

You have the right to request that we restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.

5.5 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another controller.

5.6 Right to Object

You have the right to object to the processing of your personal data in certain circumstances, including processing for direct marketing purposes.

5.7 Right to Withdraw Consent

Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.

5.8 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority, in particular in the EU/EEA member state of your residence, place of work, or place of the alleged infringement.

6. International Data Transfers

We are based in the United States. If you are located in the EEA, UK, or Switzerland, your personal data may be transferred to and processed in the United States or other countries outside your jurisdiction.

When we transfer personal data outside the EEA/UK/Switzerland, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission
  • Transfers to countries with an adequacy decision from the European Commission
  • Your explicit consent to the transfer

7. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including satisfying legal, accounting, or reporting requirements. Retention periods vary depending on the context and our legal obligations.

When personal data is no longer needed, we will securely delete or anonymize it.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies on our website. In accordance with GDPR and the ePrivacy Directive, we obtain your consent before placing non-essential cookies on your device.

You can manage your cookie preferences through your browser settings or through any cookie consent mechanism we provide on our website.

For more information about the cookies we use, please see our main Privacy Policy.

9. Third-Party Processors

We may engage third-party service providers to process personal data on our behalf. These processors are contractually required to:

  • Process personal data only on our documented instructions
  • Ensure appropriate security measures are in place
  • Not engage sub-processors without our authorization
  • Assist us in fulfilling data subject rights requests
  • Delete or return personal data at the end of the service

10. Security Measures

We implement appropriate technical and organizational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include:

  • Encryption of data in transit and at rest
  • Access controls and authentication mechanisms
  • Regular security assessments and testing
  • Employee training on data protection
  • Incident response procedures

11. Changes to This Notice

We may update this GDPR Privacy Notice from time to time. We will notify you of any material changes by posting the new notice on our website and updating the "Last Updated" date.

12. Contact Us

If you have any questions about this GDPR Privacy Notice or wish to exercise your data protection rights, please contact us at:

Pipeline On
Email: hello@pipelineon.com
Website: pipelineon.com

GDPR Opt-Out

You can opt out of the collection of your personal data by contacting us at hello@pipelineon.com with the subject line "GDPR Opt-Out Request."