Docuo Privacy Policy
Last updated: September 28, 2023
ZEGOCLOUD PTE. LTD.(“we”, “our”, “us” or “the Company”) respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, share, and protect your personal data when you visit the docuo.spreading.ai domain name (the "Site"), the Docuo platform (the "Docuo"), or related services (collectively referred to as "Services").
Please take a moment to read this privacy policy carefully. By accessing or using our Services, you agree that we can collect, use and share your personal data as described in this policy. If you do not agree with this policy, please do not access or use our Services.
1. Types of Personal Data We Collect
"Personal data" means any information relating to an identified or identifiable person. Personal data does not include aggregated, non-personally identifying information.
We collect different types of personal data depending on how you use and interact with our Services:
We collect different types of personal data depending on how you use and interact with our Services:
1.1 Data You Provide to Us Directly
• Account registration: When you register for a Docuo account, we ask for your email address, name, and password. This allows us to create your account and provide access to Docuo.
• Content: Any information you add to Docuo when creating, uploading, or sharing on documents, projects, document sites, or other content.
1.2 Data Collected Automatically
• Log data: Server logs and other information automatically collected from your browser or device when you access our Services. This includes IP address, type of device, operating system version, browser type, pages visited, date/time of activities, and other related data.
• Cookies and tracking technologies: We use cookies and similar technologies like pixels, events, SDKs and scripts to recognize you across different services and devices. These technologies allow us to analyze how you use Docuo, enable our services, and provide a secure experience. You can manage cookie preferences through your browser or device settings.
• Device information: Technical information collected from the device you use to access Docuo, such as your hardware model, operating system details, device identifiers, mobile network, and browser type.
• Usage data: We collect analytics data on how you interact with and use Docuo to help us improve user experience. We work with analytics services like Google Analytics to assist with collecting this data.
1.3 Data from Third Party Sources
We may obtain additional personal data about you from third party sources to supplement the information you provide. For example:
• Social media networks if you connect with or share Docuo content on those platforms.
• Analytics providers to analyze usage data so we can improve our Services.
• Public databases to prevent fraud, spam and other prohibited activities.
We only obtain your data from third parties where we have your consent to do so or as permitted by applicable laws. The specific data we receive depends on your privacy settings on those third party sites and services.
2. How We Use Personal Data
We only use your personal data for the purposes outlined in this privacy policy. We do not sell your data to third parties or use it for behavioral advertising.
The ways we may use personal data include:
• Provision of Service - Provision of Services Process transactions, create accounts, host and share your content, enable collaboration, provide support etc. We require certain data to fulfill our contractual obligations and provide you the Services.
• Service communications - Contact you about your account you have registered for, security issues, programmed maintenance etc. These communications are part of our Services and contractual obligations.
• Respond to your queries - Provide customer service, technical assistance, and other support services. We cannot respond without processing your personal data.
• Product development - Develop new features, improve existing offerings, analyze performance, fix bugs, perform quality testing etc. Processing data helps us understand user needs and improve Docuo.
• Security - Detect and prevent spam, abuse, fraud, and illegal activity. Personal data may be processed to identify harmful activities that compromise our Services or community guidelines.
• Analytics - Understand how Docuo is being accessed and used. We work with trusted analytics partners to compile aggregated statistics and reports using data collected on our site.
• Legal obligations - Comply with applicable laws, regulations, court orders or other binding directives from government/public authorities. Personal data may need to be processed to meet compliance requirements.
• Legitimate Interests - Where required by law, we rely on "legitimate interests" for processing data in a fair and ethical manner that does not outweigh your privacy rights. This may include fraud prevention, direct marketing, network and data security, debugging, research etc. You have a right to object in such cases.
We only process personal data where we have a lawful basis for doing so, such as:
• Consent - Where you have given clear consent for us to process your data for a specific purpose. For example, during registration.
• Legal Obligation - When we need to comply with a legal or regulatory obligation.
• Contract Performance - When processing is required to provide you Services or fulfill contractual obligations.
• Legitimate Interest - Where we have a legitimate interest in processing data that does not outweigh your rights and freedoms. We will always notify you of such processing.
3. How We Share Personal Data
We do not sell or rent your personal data to third parties for marketing or advertising purposes. We only share data in the following circumstances:
3.1 Our affiliates
We may transfer your personal information to our Affiliates because they could provide assistance in operation, development and improvement of the Docuo.
Our Affiliates will take organisational and technical measures to safeguard your personal information and never use your personal information in contraction to this Policy.
3.2 Our business partners
We employ our business partners to perform functions on our behalf. Examples include the Cloud service provider, the data analysis provider, the web monitoring service provider, the sales& marketing service provider, and the customer services provider.
These business partners may have access to personal information needed to perform their functions, but may not use it for other purposes. Further, they must process the personal information in accordance with this Policy and as permitted by applicable data protection laws.
3.3 Our professional advisers and insurers
We may provide our professional advisers and insurers with your personal information where we believe it is necessary to exercise, establish or defend our legitimate interests, to protect your vital interests, rights or property and those of other users, or as otherwise required or permitted by applicable laws and regulations.
3.4 Public authorities
We may disclose personal information if permitted or required by law, for example, in response to a court order or a subpoena.
To the extent permitted by applicable law, we also may disclose personal information (i) in response to a law enforcement or public agency’s request; (ii) if we believe disclosure may prevent the instigation of a crime, facilitate an investigation related to public safety or protect the safety of end users; (iii) to protect the security or integrity of our sites, applications, and other technology, as well as the technology of our service providers; or (iv) enable us to take precautions against liability.
We will not transfer the data to third parties without your explicit consent, in particular not for advertising purposes.
Your personal information shall only be transferred if you have given your consent to do so, or if we are entitled or obliged to do so due to legal regulations and/or official or judicial orders.
This may especially involve the provision of information for law enforcement purposes, for averting danger, or for enforcing intellectual property rights.
We only use your personal information to provide the services you request. If we cooperated with external service providers in the provision of services, they shall also only access the data for the purpose of providing services.
We use technical and organizational measures to ensure compliance with the data protection regulations and also ask for compliance on the part of our external service providers in this respect.
4. Data Retention and Deletion
Typically, personal data and content data associated with your Docuo account is retained for the lifespan of the account until it is deleted by the user. Data utilized for analytical purposes, along with log data, is stored for a finite duration of 180 days.
Certain types of data may be stored indefinitely until the user exercises their right to delete their account. It should be noted that inactive user accounts are not automatically purged from our system. As such, unless a user action is taken to delete the account, the associated data will be preserved indefinitely.
This retained data may be used as necessary to fulfill our legal obligations, address disputes, and enforce our contractual agreements. Upon the cessation of these legal, dispute, or contractual necessities, the corresponding personal data is slated for deletion.
If you wish to delete your account, please send an email to team@docuo.ai, and we will take care of your request within 24 hours.
5. Cross-Border Transfer
You acknowledge and agree that we may access and process personal data on a global basis as necessary to provide the products and services, and in particular that personal data may be transferred to and processed by us in Singapore, United States and other jurisdictions where our Affiliates and business partners have operations.
6. Cookies and Online Tracking
We use first party and third party cookies, pixels and similar technologies (together referred to as "cookies") to collect data about your browsing behavior when you access our Services. This allows us to recognize your device and serve relevant personalized content.
Wherever personal data is transferred outside its country of origin, each party will ensure such transfers are made in compliance with the requirements of applicable data protection laws and regulations.
• Strictly necessary cookies - Required for core Site operations like authentication, security, payments and account access. These cookies cannot be disabled, but you can set your browser to reject them.
• Preferences cookies - Allow us to store your preferences and settings like language, font size, appearance etc.
• Performance cookies - Help us analyze site usage so we can improve performance. For example, cookies show us most visited pages or error messages. We also use cookies to track your session and provide customer support.
• Your cookie choices: You can control cookies through your browser settings and other tools:
• Browser settings allow you to accept, reject or delete cookies.
• Tools like Google Analytics Opt-out let you opt out of analytics tracking.
If you choose to reject the use of those cookies, you will still be able to use the Docuo while without them, but Docuo may not function as you expect it to and this could lead to a poor experience of Docuo for you.
If you choose to reject the use of those cookies, you will still be able to use the Docuo while without them, but Docuo may not function as you expect it to and this could lead to a poor experience of Docuo for you.
7. Minors
Docuo is intended for adults to use. We do not intend to provide any of our services to those we consider to be an individual under the age of adults as specified by laws in your jurisdiction, unless with the involvement of a guardian.
We consider it the responsibility of the guardian to supervise the child’s use of our services. We will not make profiling, tracking or monitoring behaviorally or making targeted advertisements on children and other data processing which may cause significant harm to children.
If it can be proved that a minor has provided us with personal information without parental or guardian consent, the parent or guardian should contact us to remove the information. You may send your request for erasure in writing to our email address as listed in this Policy.
8. Third Party Services
Docuo may contain links to third party websites and services, such as buttons that link to social networks. We do not control how these platforms collect, use or share your information. Visiting third party services is at your own risk. Please review their privacy policies carefully.
We may allow interactions or integrations with third party apps, tools or APIs that you choose to enable. Your use of such third party services is voluntary. We are not responsible for how they may collect or use your data, which is governed by their privacy practices.
Docuo may also contain third party content like videos which may place their own cookies or tracking pixels. For example, embedded YouTube videos are governed by Google's privacy policy. Disabling cookies may impact your ability to view such content.
9. Security Measures
We implement appropriate technical and organizational measures to prevent unauthorized access, to maintain information accuracy and to ensure the correct use of the information we hold.
Upon becoming aware of an information breach, we will notify you and the regulatory authorities in accordance with the timescales and scope required by applicable laws and regulations.
Access to the collection system is restricted to the relevant system administrator, and users’ information is stored in the system database, which can only be queried by system administrators with authority.
Additionally, our corporate values, ethical standards, policies and practices are committed to the protections of users. In general, our business practices limit the use and disclosure of such information only to authorized persons, processes and transactions.
However, apart from regular controls, absolute protection against all risks is not possible.
No data transmission over the internet or any wireless network can be guaranteed to be perfectly secure.
As a result, while we use appropriate technical and organizational measures to protect the information we hold for you, we cannot guarantee the security of any information you transmit over the internet.
10. Privacy Rights and Choices
Depending on your jurisdiction, you may have certain rights and choices regarding how your personal data is used. Note that any requests to exercise these rights will be assessed by Docuo on a case-by-case basis considering applicable local laws.
• Access / port personal data: You can request details of the personal data we hold about you including copies. This service is generally free of charge unless excessive effort is required.
• Update personal data: When your personal data is inaccurate or incomplete, you can request that we update or amend it.
• Delete personal data: You may request deletion of personal data we hold about you, subject to data retention requirements. Docuo can delete your account and associated data on request.
• Object to processing: You can object to certain types of processing, such as direct marketing or processing based on legitimate interest. We will stop such processing unless we have a compelling justification to continue.
• Right to complain: You can lodge a complaint about data practices to the applicable supervisory authority.
To make privacy requests, please contact our Data Protection Officer as outlined in the How to Contact Us section below. We will respond to all requests within 30 days unless a longer period is permissible under law. We may charge a reasonable fee to cover the costs of responding to certain requests if allowed by law.
11. Sensitive Data
Unless explicitly requested, we kindly request you to refrain from submitting or adding sensitive personal data such as social security numbers, genetic data, health information, biometrics or religious details to Docuo. Such information is subject to additional protections under many privacy laws like the GDPR.
If you do provide any sensitive data where we request it, we will only process it with your explicit consent and as per applicable regulations. If you notice any unsolicited sensitive data on Docuo. Please report it immediately by sending an email to dpo@zegocloud.com, so we can promptly erase it and terminate related accounts if unlawful activity is suspected.
12. Changes to this Privacy Policy
We reserve the right to amend this Privacy Policy occasionally to keep it up to date with legal requirements and the way we operate our business. If we consider that the changes are material, we will notify you through the usual Docuo communication channels - via email, or webpage notification. The Privacy Policy was last updated on the date shown at the top of this page.
13. How to Contact Us
We have appointed a data protection officer to support us in relation to data privacy issues and with whom you can also make contact directly. Our data protection officer is available to you to deal with queries relating to our handling of personal information or to provide other information on data privacy issues. We will, upon verification of your identity, respond to your requests within the period prescribed by law.
You can contact us as follows:
E-mail: dpo@zegocloud.com
Address: 10 Anson road, #05-01, International Plaza, Singapore 079903