Privacy & Data Policy
Version 0.1 - July 2019
-
Introduction
We are datacy Inc. and we operate under the name of datacy. By visiting datacy.com and/or using our Service, you agree to the terms outlined in this privacy policy.
-
Our Privacy Principles
When it comes to collecting, storing and processing your data, datacy treats your data the way we would want our own data to be treated. This can be broken down into the following principles:
-
We ensure that you have a right to exercise control over what data is collected and sold via our Service. We will never collect, access, use, modify, share, rent or sell your data without your explicit permission.
-
We only process your data in accordance with your instructions, if such processing is necessary to provide the Service to you or to detect, prevent or otherwise address fraud or security issues.
-
We ensure that we have appropriate measures in place to handle your data securely.
-
-
What data we hold
We hold and deal with your data in accordance with our Privacy principles and in accordance with your instructions. All our Services are designed to give you control of your data and profit directly when it is sold, with datacy acting as a platform that allows you to do so. We don’t collect, store or use your data without your consent and only access the information we need to function as a secure and feature-rich distributed data marketplace. This means that unlike other services, we don't use your data for ad targeting or for commercial purposes not related to our Services.
-
Basic Account data
You provide us with details such as your name and email address to create a datacy account which is needed to use our Services. The legal basis for processing is consent.
When you open a datacy account you can opt to set up a password recovery email address. We will only use this address to send you a password recovery code if you forget your password.
-
Data you collect using our Services
Our Service allows you to collect a wide range of data about yourself, ranging from electronic communications to your browsing habits and your data from social networking sites (collectively referred to as, "your data"). This may also include additional personal or other information that you agree to provide to us, including your age, gender, or biometric data as well as your data residing on any third-party platforms, such as Facebook ( a “Third-Party Platform”), when you link them to the datacy network.
You provide additional information or collect data to increase your data sales revenue. We’ll only deal with this information in accordance with the permissions you set. You can pause data collection at any time, restrict collection from any site and delete any data you do not want to sell. You are in control.
-
Transaction data
datacy does not process payments from users and instead relies on different payment providers around the world. It is the payment providers that handle and store your credit card details. Your credit card information never reaches datacy’s servers. We do not access and do not store your credit card information. Although we work with payment providers they are completely independent of datacy. Please study their relevant privacy policies before sharing your financial data available with them.
-
Cross-device functionality
We may also store some aggregated metadata to create datacy features that work across all your devices.
-
Safety and security
As our user numbers grow, it is likely we will become a lucrative target for spammers and hackers. To improve the security of your account and to prevent spam, abuse, and other violations of our Terms of Service, we may collect metadata such as your IP address, devices you've used, history of username changes, etc. If collected, this metadata will be kept for 12 months maximum.
-
-
Keeping your data safe
-
Storing Data
All data you collect using datacy are stored on our distributed network and servers. Your data is hashed and stored heavily encrypted (both in storage and in transit) using the latest security protocols. The encryption keys which unlock the data are only visible to you and those you share the data with. This way no unauthorized third party can get access to your data.
-
When your data is sold
All data sold on datacy is aggregated and anonymized before being listed for sale to ensure your privacy is protected.
All your data is encrypted with a key created at the time of collection. When you sell your data, the data is decrypted by you and encrypted again - this time with another key which is only known to you and is sent to the data buyer. They can then download and decipher the file. This means that the file looks like a piece of random indecipherable garbage to everyone except for you and the data buyer. There is no way for anybody else without your permission to learn what data is being sent in these transactions.
-
Retention
Unless stated otherwise in this Privacy Policy, we will store your data for as long as it is necessary to provide you with the Services and meet laws and regulations of the countries we operate in.
-
-
Processing your data
-
Our Services
We will process your data to provide you with our Service. For example, we may use your information to:
-
help us maintain your datacy account
-
improve the Services we provide
-
-
Spam and Abuse
To prevent phishing, spam and other kinds of abuse and violations of our Terms of Service, our systems may check your data. If you abuse any of the terms of our Terms of Service, your account may be suspended – temporarily or permanently. You can send an appeal using [email protected] In case of more serious violations, your account may be banned. We may also use automated algorithms to analyze the data to stop the abuse.
-
Advanced features
We may use aggregated data about how you use datacy to build useful features. For example, when you open the Search menu, datacy may display the data you are more likely to search in a box at the top of the screen. To do this, we calculate a rating that shows which data you search for frequently.
-
-
Sharing your data
-
When you sell your data
Except as otherwise stated in this Privacy Policy, we do not collect, store, access, use, sell, rent or share your data without your explicit consent. We may use the Personal Information you provide to us to communicate with you, for example, in response to questions you have asked or to provide technical support.
We share your data on your behalf whenever a data sale is made. All sales are made with your explicit permission and in accordance with the terms, you set. Before any sale, all data is completely anonymized– i.e. stripped of any association with Personal Information, and aggregated to preserve your anonymity and privacy.
By agreeing to this Privacy Policy and choosing to sell your data, you are instructing us to transfer your data, on your behalf, to those users in accordance with this Privacy Policy. We employ all appropriate technical and organizational measures (including encryption of your data) to ensure a high level of security for all your data.
-
Our legal obligations
We may access or share your basic profile data when we believe in good faith that disclosure is necessary to establish, protect, or exercise our rights; protect your safety or the safety of others; investigate fraud or other illegal activities, or respond to a government request.
-
-
Your rights
Datacy is built to give your complete visibility over your data. Through your datacy account you can:
-
access all data you collected or sold through datacy
-
control how your data is collected or sold
-
delete or amend your personal information
-
restrict, or object to, the processing of any of your data
-
withdraw any consent you’ve previously given us
-
correct any inaccurate or incomplete personal data we hold on you
-
lodge a complaint with national data protection authorities regarding our processing of your personal data
-
If you need help in exercising any of these rights, please get in touch with us.
-
-
Deleting your data
-
Accounts
You can delete your account at any time from your settings page. Deleting your account will remove all your data from the datacy network. When you delete your data on datacy it’s gone forever and cannot be recovered.
-
Account Self-Destruction
By default, if you stop using datacy for at least 1 year, your account will be deleted along with all your data held on the datacy network. You can go to your Settings to change the exact period of inactivity, after which your inactive account will self-destruct. In some circumstances, like cases of anti-money laundering or fraud, we may have to keep your data for longer.
-
-
Making a complaint
If you have a complaint, please contact us and we’ll do our best to fix the problem. If you’re still not happy, you can refer your complaint to your relevant national data regulation authority.
-
Changes to this policy
We’ll post any changes we make to our Privacy Policy on this page and, if they’re significant changes we’ll let you know by email.