When we refer to "Echoes-AI", we mean the Echoes-AI entity that acts as the controller or processor of your information, as explained in more detail in the " Identifying the Data Controller and Processor" section below.
Echoes-AI may collect and receive Customer Data and other information and data ("Other Information") in a variety of ways:
Generally, no one is under a statutory or contractual obligation to provide any Customer Data or Other Information (collectively, "Information"). However, certain Information is collected automatically and, if some Information, such as Echoes-AI Workspace setup details, is not provided, we may be unable to provide the Services.
Customer Data will be used by Echoes-AI in accordance with Customer's instructions, including any applicable terms in the Customer Agreement and Customer's use of Services functionality, and as required by applicable law. Echoes-AI is a processor of Customer Data and Customer is the controller. Customer may, for example, use the Services to grant and remove access to an Echoes-AI Workspace, assign roles and configure settings, access, modify, export, share, and remove Customer Data and otherwise apply its policies to the Services.
Echoes-AI uses Other Information in furtherance of our legitimate interests in operating our Services, Websites, and business. More specifically, Echoes-AI uses Other Information:
This section describes how Echoes-AI may share and disclose Information. Customers determine their own policies and practices for the sharing and disclosure of Information, and Echoes-AI does not control how they or any other third parties choose to share or disclose Information.
Echoes-AI takes security of data very seriously. Echoes-AI works hard to protect Other Information you provide from loss, misuse, and unauthorized access or disclosure. These steps take into account the sensitivity of the Other Information we collect, process, and store, and the current state of technology. To learn more about current practices and policies regarding security and confidentiality of the Services, please see our Security Statement. Given the nature of communications and information processing technology, Echoes-AI cannot guarantee that Information, during transmission through the Internet or while stored on our systems or otherwise in our care, will be absolutely safe from intrusion by others.
To the extent prohibited by applicable law, Echoes-AI does not allow use of our Services and Websites by anyone younger than 16 years old. If you learn that anyone younger than 16 has unlawfully provided us with personal data, please contact us and we will take steps to delete such information.
Data protection law in certain jurisdictions differentiates between the "controller" and "processor" of information. In general, Customer is the controller of Customer Data. In general, Echoes-AI is the processor of Customer Data and the controller of Other Information. Echoes-AI Inc., a US company based in New York, NY is the controller of Other Information and a processor of Customer Data relating to Authorized Users who use Echoes-AI Workspaces established for Customers worldwide.
Individuals located in certain countries, including the European Economic Area, have certain statutory rights in relation to their personal data. Subject to any exemptions provided by law, you may have the right to request access to Information, as well as to seek to update, delete, or correct this Information. You can usually do this using the settings and tools provided in your Services account. If you cannot use the settings and tools, contact Customer for additional access and assistance. Please check your Echoes-AI Workspace(s) for Customer contact information.
To the extent that Echoes-AI's processing of your Personal Data is subject to the General Data Protection Regulation, Echoes-AI relies on its legitimate interests, described above, to process your data. Echoes-AI may also process Other Information that constitutes your Personal Data for direct marketing purposes and you have a right to object to Echoes-AI's use of your Personal Data for this purpose at any time.
Subject to applicable law, you also have the right to (i) restrict Echoes-AI's use of Other Information that constitutes your Personal Data and (ii) lodge a complaint with your local data protection authority. If you are a resident of the European Economic Area and believe we maintain your Personal Data within the scope of the General Data Protection Regulation (GDPR), you may direct questions or complaints to your local supervisory authority.
In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
General. We rely on our Privacy Shield certification to transfer Personal Data that we receive from the EU to Echoes-AI in the U.S. and we process such Personal Data in accordance with the Privacy Shield Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement and Liability (“Privacy Shield Principles“), as described below.
Access. EU users have certain rights to access, correct, amend, or delete Personal Data where it is inaccurate, or has been processed in violation of the Privacy Shield Principles. Please see the “Your Rights” section above for more information on the rights of users in the EU.
Recourse, Enforcement, Liability. In compliance with the Privacy Shield Principles, Echoes-AI commits to resolve complaints about our collection or use of your personal information. EU individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Echoes-AI at: firstname.lastname@example.org
Echoes-AI has further committed to cooperate with the panel established by the EU data protection authorities (DPAs) with regard to unresolved Privacy Shield complaints concerning data transferred from the EU.
If your complaint is not resolved through these channels, under certain conditions a binding arbitration option may be available before a Privacy Shield Panel. For additional information, please visit: www.privacyshield.gov/article?id=ANNEX-I-introduction .
We are subject to the investigatory and enforcement powers of the Federal Trade Commission with respect to Personal Data received or transferred pursuant to the Framework.
Individuals may have the right to limit the use and disclosure of their personal information as required by the Privacy Shield’s Principles, such as whether your personal information is disclosed to a third party or used for purposes materially different from the purpose for which the personal information was originally collected or subsequently authorized by you. If you wish to limit the use and disclosure of personal information in accordance with the Privacy Shield Principles, please contact us at email@example.com.
Updated: July 14, 2020