Trust Center > Privacy Policy
SkyKick Global Privacy Notice
Last updated: April 3, 2024
SkyKick LLC and its subsidiaries and affiliated companies (“SkyKick”, “we”, “our” or “us”) always attaches great importance on the protection of your personal data. As a business, we are committed to respecting and protecting the privacy of all individuals with whom we interact. We are committed to being transparent in our handling and processing of personal data at all times in accordance with applicable privacy and data protection laws.
This privacy notice (“Privacy Notice”) applies to information we collect when you use the SkyKick website available at skykick.com or any successor website (the “SkyKick Site”). This Privacy Notice further applies to our handling of personal data from contacts at our business partners and other individuals we interact with as part of our business (collectively “Business Partners”).
This Privacy Notice does not apply to our processing of personal data:
- Of our staff and applicants; or
- Where we act as a “processor” under applicable privacy and data protection laws.
This Privacy Notice may be updated from time to time to reflect changes in law, best practice or a change in our practices regarding the treatment of personal data. The date of the most recent revision will appear at the top of this page. You should check this Privacy Notice frequently for updates. If we make any important changes to this Privacy Notice (e.g. with regard to the personal data we collect or why we use it), we will notify you and/or we will add a statement on the SkyKick Site to this effect.
Where relevant under the applicable privacy and data protection laws:
- SkyKick LLC is the controller of the personal data processed in the context of the SkyKick Site.
- The SkyKick affiliate with whom you have a business relationship or with whom you otherwise interact is the controller of the personal data processed in that context.
If you have any questions about this Privacy Notice, our approach to privacy or you would like to exercise any of the rights mentioned in this Privacy Notice, you can contact our Global Data Protection Officer and privacy compliance team at via DataPrivacy@SkyKick.com or via post:
200 W Thomas St #400
Seattle, WA 98119
United States
This Privacy Notice explains the following:
- How we collect your personal data
- The types of personal data we collect for our purposes and the applicable legal basis for our data processing
- How we secure your personal data
- How long we will keep your personal data
- With whom we share your personal data
- Where we store your personal data
- Our responsibility for third party links
- Local provisions: European Union
1. How we collect your personal data
We collect information you provide directly to us. For example, we collect information when you submit content to the SkyKick Site, submit an order, setup a profile to access SkyKick products, request information about SkyKick’s products and services or otherwise communicate with us. When you access or use the SkyKick Site, we automatically collect information about you, including:
- Log Information: We log information about your use of the SkyKick Site, including the type of browser you use, access times, pages viewed, your IP address and the page you visited before navigating to the SkyKick Site.
- Information Collected by Cookies and Other Tracking Technologies: We use various technologies to collect information, and this may include sending cookies to your computer or mobile device. Please see our Cookie Notice.
2. The types of personal data we collect for our purposes and the applicable legal basis for our data processing
In the context of your use of the SkyKick Site and/or in the context of interacting with you as part of our business, we collect, store and use personal data about you as set out in the “personal data” column below. Below you will also find the purpose of the processing and (for the EEA and UK only) the legal basis we rely on for each type of personal data that we process about you.
Personal data | Purpose | Legal basis (EEA and UK only) |
Profile personal data, such as:
|
Keep and maintain an accurate and adequate profile administration. | Necessary for the purpose of our legitimate interests to maintain an adequate profile administration. |
Log-in data, such as:
This information is also referred to as ‘Portal Data’ in the Partner Terms and Conditions, or ‘Account Credentials’ in the Customer Terms and Conditions. |
Maintain and ensure a secured online environment on our services. | Necessary for the purpose of our legitimate interests to keep the SkyKick Site and your data secure. |
Business Partner data, including, but not limited to when you create an account with us or when you submit an order, such as:
This information is also referred to as Order Data in the Customer Terms and Conditions. |
For facilitating support and to allow potential Business Partners to connect with SkyKick, for the assessment and acceptance of a (potential) Business Partner and for the conclusion and execution of an agreement, including for communicating with a (potential) Business Partner. | Necessary for the purpose of our legitimate interests to facilitate support, to get potential Business Partners connected with SkyKick, to effectively manage our business relationships, to interact with (potential) customers, vendors, partners, investors, journalists etc. |
Communication data, such as:
|
Facilitate the provision of a communication tool. | Necessary for the purpose of our legitimate interests to facilitate the provision of a communication tool. |
Data when you complete a form on the SkyKick Site (Form data)*, such as:
*Other than when you create an account with us. |
Facilitate the provision of a demo, webinar, event, etc. | Necessary for the purpose of our legitimate interests to facilitate the provision of the demo, webinar, event, etc. |
Promotion data (direct marketing communication), such as:
|
Sending direct marketing communications. | Consent. |
Usage Data, regarding the use of the SkyKick services, such as log files or invoicing related data. | For the purposes of billing, enhancing our services and creating new features, functionality, and services. | Necessary for the purpose of our legitimate interests to facilitate and enhance the SkyKick services, including the creation of new features, functionalities, and service. |
Cookies | Please see our Cookie Notice |
3. How we secure your personal data
We maintain appropriate organizational and technological safeguards to help protect against unauthorized use, access to or accidental loss, alteration, or destruction of personal data.
4. How long we will keep your personal data
We do not keep your personal data any longer than necessary for the processing purposes.
Retention Period | |
Profile data | Until you (request us to) delete your profile |
Log-in data | Until you (request us to) delete your profile |
Business Partner data |
|
Communication data | Until you (request us to) delete your profile |
Promotion data | Until you opt-out of receiving promotional emails or messages |
Form data | Until you (request us to) delete your profile |
Usage data | Until you (request us to) delete your profile |
Information collected through the use of cookies | Please see our Cookie Notice |
After the retention period, your personal data will either be securely deleted or anonymized so that it can be used for analytical purposes. You may request further information via the contact details given above.
5. With whom we share your personal data
The personal data we collect, we share with parties including:
- Group companies: We will share personal data in our group for the purposes of complying with our business requirements (including, but not limited to, administrative, management and accounting purposes), maintaining and managing a centralized human resources database, ensuring general governance at group level, safety and security, for support (including regarding IT), and as part of our regular reporting activities on company performance, in the context of a business reorganization or group restructuring exercise;
Recipients: SkyKick LLC, SkyKick UK Limited, SkyKick B.V., SkyKick KK, SkyKick Pvt. Ltd.
- Authorities / authorized bodies: In response to a request for information if we believe disclosure is in accordance with any applicable law, regulation or legal process, or as otherwise required by any applicable law, rule or regulation. This includes requests by which to meet national security or law enforcement requirements (e.g., for the provision of pensions, tax etc.). In such event we shall share your personal data with the relevant supervisory authority, investigative authority, courts, or other governmental body in compliance with applicable data protection and privacy laws;
- Companies who process personal data on our behalf: We will share personal data with or provide access to third parties who work on behalf of us or provide services to us in this respect. Such companies are listed in our Cookie Notice.
Further, we may disclose or share your personal data:
- With professional advisors and others, such as attorneys, accountants, auditors, insurance companies, other professional advisors if we believe (a) to be necessary or proportionate to (i) comply with applicable law, our user agreements or policies, (ii) respond to requests from authorities / authorized bodies or you, (iii) enforce our Customer Terms and Conditions or Partner Terms and Conditions, and (iv) protect our rights, privacy, safety or property, and that of our group companies, you or others; or (b) your actions are inconsistent with the spirit or language of our user agreements or policies, or to protect the rights, property and safety of SkyKick or others;
- In connection with, or during negotiations of, any merger, sale of company assets, through an initial public offering, financing or acquisition of all or a portion of our business to another company. In such event, we may share your personal data with the new owner or merging party respectively, but only to the extent necessary for the purpose for which your personal data are processed;
- With your consent or at your direction, including if we notify you through the SkyKick Site that the information you provide will be shared in a particular manner and you provide such information; or
- If we are subject to insolvency proceedings, as part of the sale of our assets by a liquidator (or similar).
6. Where we store your personal data
SkyKick stores your personal data on servers located in the European Union and in the United States. These servers can be made accessible for SkyKick’s group company(ies) in other parts of the world. Access will always be controlled on a need-to-know basis, and only provided where it is necessary or to allow us to perform any necessary or legitimate functions, such as supporting, maintaining and improving the SkyKick Site. Our processors and other parties with whom we share your personal data may store your personal data in other locations.
If we share your personal data in accordance with this Privacy Notice with our group companies or third parties, we take steps to ensure that we meet any applicable requirements under the applicable privacy and data protection laws.
7. Our responsibility for third-party links
The SkyKick Site may offer social sharing features, including links to websites and services operated by third parties. If you follow a link to any of these websites, please note that these websites have their own privacy notices and terms and conditions. Further, we can have no responsibility for or control over the information collected by any third-party website and we cannot be responsible for the protection and privacy of any information which you may provide on such websites. You should read the privacy notices and terms and conditions of such third parties before using their websites or services.
LOCAL PROVISIONS
8. Local provisions: European Union
If you are based in the European Union, the following applies in addition to the remainder of this Privacy Notice:
- GDPR means Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
- If we share your personal data with our group companies or third parties located outside the European Economic Area, we take steps to ensure that appropriate safeguards are in place to guarantee the continued protection of your personal data, particularly by signing the Standard Contractual Clauses adopted by the European Commission (article 46(2)(c) GDPR). You can find more information about the Standard Contractual Clauses here. You can also contact our Global Data Protection Officer at DataPrivacy@SkyKick.com
- For transfers of personal data to our SkyKick entity in the United Kingdom (i.e. SkyKick UK Ltd.) the following applies. The European Commission has determined that the United Kingdom offers an adequate level of data protection for personal data transferred within the scope of the GDPR from the EU to the UK (please see here). This means that your personal data will be subject to a level of data protection similar as in the EU, and, as a consequence, personal data may flow from the EU to the UK. without additional safeguards being necessary.
- SkyKick has certified compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. SkyKick has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) and to the UK Extension to the EU-U.S. DPF, as well as to the Swiss-U.S. DPF Principles. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
In compliance with the EU-U.S. DPF Principles, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF Principles, SkyKick commits to resolve complaints about our collection or use of your personal information. EU, UK or Swiss individuals with inquiries or complaint regarding our Data Privacy Framework policy should first contact SkyKick at:
G. Doeswijk
Data Protection Officer
SkyKick has further committed to refer unresolved non-human resources data related Data Privacy Framework complaints to JAMS, an alternative dispute resolution provider located in the United States. If you do not receive a timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction please visit their website at https://www.jamsadr.com/dpf-dispute-resolution for more information or to file a complaint. The services of JAMS are provided at no cost to you.
In the context of an onward transfer, SkyKick has responsibility for the processing of personal information it receives under the Data Privacy Framework and subsequently transfers to a third party acting as an agent on its behalf. SkyKick shall remain liable under these principles if its agent processes such personal information in a manner inconsistent with the principles, unless SkyKick proves that it is not responsible for the event giving rise to the damage. The Federal Trade Commission has jurisdiction over SkyKick compliance with the Data Privacy Framework.
- We set out below your data protection rights under the GDPR in more detail and give information on how you can exercise them. Most of these rights are not absolute and are subject to exemptions in the law. We will respond to your exercise of right request within one month but have the right to extend this period in certain circumstances. If we extend the response period, we will let you know within one month from your request. If your request is clearly unfounded or excessive, we reserve the right to charge a reasonable fee or refuse to comply with it in such circumstances.
- Access your personal data. You are entitled to ask us if we are processing your personal data and, if we are, you can request access to your personal data. This enables you to receive a copy of the personal data we hold about you.
- Request the transfer of your personal data.We will provide to you or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. Please note, this right applies to the personal data you have provided to us and only if we use your personal data on the basis of consent or where we used your personal data to perform a contract with you.
- Request erasure (deletion) of your personal data.You are entitled to ask us to delete or remove personal data in certain circumstances. There are certain exceptions where we may refuse a request for erasure, for example, where the personal data is required for compliance with law or in connection with legal claims. When we need to rely on an exemption, we will inform you about this.
- Request correction or updating of your personal data. This enables you to have any incomplete or inaccurate data we hold about you corrected.
- Request the restriction of our processing of your personal data in some situations. If you request this, we can continue to store your personal data but are restricted from processing it while the restriction is in place.
- Object to our processing of your personal data where we are relying on legitimate interest. You also have a right to object where we are processing your personal data for the purposes of direct marketing or profiling. You can object at any time and we shall stop processing the information you have objected to, unless we can show compelling legitimate grounds to continue that processing.
- Withdraw your consent.Where you have provided your consent to our processing of your personal data you can withdraw your consent at any time. If you do withdraw consent, it will not affect the lawfulness of what we have done with your personal data before you withdrew consent.
- Lodge a complaint at a supervisory authority.We will do our best to resolve any complaint. However, if you feel we have not resolved your complaint, you have a right to lodge a complaint with a supervisory authority in the country where you live, where you work or where an alleged infringement of the applicable data protection law took place. A list of EU supervisory authorities and their contact details is available here.
- In the limited circumstances where you may have provided your consent to the processing of your personal data for a specific purpose, you have the right to withdraw your consent for that specific processing at any time. Please note that the withdrawal of your consent does not affect the lawfulness of the processing based on your consent before its withdrawal. If you exercise the rights above and there is any question about who you are, we may require you to provide information from which we can satisfy ourselves as to your identity.
- Under certain conditions you may invoke binding arbitration.