as of January 27, 2019
Privacy and security are of utmost importance to Mailmeteor and we strive to ensure that our technical and organisational measures in place respect your data protection rights.
In subscribing to our services or filling in a contact form on our website (mailmeteor.com) or other sites owned by Mailmeteor, you agree and accept that we may gather, process, store and/or use the personal data submitted in accordance with the rules set forth below.
By giving your consent to us, you also retain the right to have your personal data rectified, to be forgotten and/or to be erased.
Personal data is collected on our website by Mailmeteor SAS, a company under registration under the laws of France, and having its main office at 28 rue Albert, 75013 Paris, France.
When you use our services, the following data is collected and managed: your email address, metadata about your merger campaign (as explained below).
By subscribing, we may also ask you for the following information: first name, last name, Intracommunity VAT number where applicable, postal address, country, telephone number, IP address(es) and domain name.
By using our services, some data is collected automatically by reason of your activity on the site (see paragraph on cookies below).
The data submitted does not include any sensitive personal data, such as Government identifiers (i.e. social security, driving licence, or taxpayer identification numbers), complete credit card or complete personal bank card numbers, medical records or particulars connected with applications for care or treatment associated with private individuals.
With each merger, only a subset of information are stored in our secure servers. Such information are called metadata and contain the followings:
This is the exhaustive list of information that are saved at each merge. As seen above, email addresses of your recipients are not transmitted to our server, as well as your emails content (or subject), nor any other information inside the sheet.
The principal purpose of collecting your personal data is to offer you a safe, optimum, efficient and personalised merger experience. To this end, you agree and accept that we may use your personal data to:
We use the personal data submitted to us only in accordance with the applicable data protection legislation.
For our clients who have signed up on our website, we processes your personal data for the performance of the contract between us to provide our services.
For our newsletter, use case studies and marketing material sign ups, we process your personal data based on the express consent you provide for this specific purpose.
An unsubscribe link should be included in every newsletter and marketing email sent by you.
For those of you that have expressly opted in to receive our Mailmeteor newsletter, you are easily able to unsubscribe by following the “unsubscribe” links included in every email.
Without systematically doing so, we may analyse and track the various rates (for example: click, open, bounce rates) and the number of emails sent which you open to assess performance rates on your emailing campaigns.
Mailmeteor publishes a list of Customers & Testimonials on its site with information on our customers’ names and job titles. Mailmeteor undertakes to obtain the authorisation of every customer before publishing any testimonial on its website. If you wish to be removed from this list, you can send us an email to firstname.lastname@example.org and we will delete your information promptly.
Personal data relating to you collected on our website are destined for Mailmeteor’s own use and may be forwarded to Mailmeteor’s partner companies so that we may obtain assistance and support in the context of carrying out our services. Mailmeteor ensures that it has in place clear data protection requirements for all of its third party providers.
Mailmeteor does not sell or rent your personal data to third parties for marketing purposes whatsoever.
In addition, Mailmeteor does not disclose your personal data to third parties, except if: (1) you (or your account administrator acting on your behalf) requests or authorises disclosure thereof; (2) the disclosure is required to process transactions or supply services which you have requested (i.e. to check you are employing best practice in your mailings or for the purposes of processing an acquisition card with credit-card issuing companies); (3) Mailmeteor is compelled to do so by a government authority or a regulatory body, in the case of a court order, a summons to appear in court or any other similar requisition from a government or the judiciary, or to establish or defend a legal application; or, (4) the third party is a subcontractor or sub-processor of Mailmeteor in the carrying out of services (for example: Mailmeteor uses the services of an Internet provider or a telecommunications company).
In accordance with the French Data Protection Laws and the European General Data Protection Regulation 2016/679 (GDPR) you have a right of access, correction and removal of your personal data which you may exercise by sending us a support ticket directly on the support chat (either on the website or on the app) or, by sending an email at email@example.com. Your requests will be processed within 30 days. We may require that your request be accompanied by a photocopy of proof of identity or authority.
You are also able at any time to modify personal data by logging into your account and clicking on “User Settings”.
You can choose to decline acceptance of all cookies, but your ability to browse certain pages of the site may be reduced. The cookies used by Mailmeteor are intended to enable or facilitate communication, to enable the services requested by users to be supplied, to recognise users when they re-visit the site, to secure payments which users may make, to register the language spoken by users or other preferences necessary for the service requested to be supplied.
Mailmeteor also uses analytics and tracking tools to measure website and digital data to gain customer insights, to carry out analyses on browsing experience so as to improve content, and to send targeted advertisements.
By default, cookies are not installed automatically (with the exception of those cookies needed to run the site and Mailmeteor’s services, and you are informed of their installation by a banner). In accordance with the regulations that apply, Mailmeteor will require your authorisation before implanting any other kind of cookie on your hard drive. To avoid being bothered by these routine requests for authorisation and to enjoy uninterrupted browsing, you can configure your computer to accept Mailmeteor cookies or we are able to remember your refusal or acceptance of certain cookies. By default, browsers accept all cookies.
In the context of using our services, namely creating bulk email campaigns, Mailmeteor has access to some information contained in the spreadsheet you created inside Google services (namely Google Mail and Google Spreadsheet), as well as the subject and content of the emails that you send out via our services.
This data is not stored on our secure servers, but is processed on Google services directly. Only a limited part of such data (namely metadata) are transmitted to our secure servers, with a limited list of people that are authorised to access such data, in particular for the purpose of providing support services.
You are easily able to recover, modify and or delete such information, at any time, right from your Google Spreadsheet. Once such data are removed from Google Spreadsheet, we are unable to retrieve metadata. If you also want to remove the metadata, you can do so right from your Mailmeteor account by clicking on the delete button.
In no case does Mailmeteor sell, share or rent out any of your information to third parties, including but not limited to contacts list, nor does it use them for any purposes other than those set forth in this policy. We will use the information from your Google Spreadsheet only for technical requirements and for the purposes of providing you with customer support services.
As creator of the contact lists and associated email campaigns, you are considered the data controller within the meaning of the GDPR, and Mailmeteor is acting only as a data processor. In this capacity, you are responsible in particular for:
If a recipient of your emails sent via our services requests us to modify or delete his/her personal data, we will honor that request after proper verification and will inform you of it.
Mailmeteor collects your personal data for the requirements of carrying out its contractual obligations as well as information about how and when you use our services and we retain this data in active databases, log files or other types of files so long as you use our services.
Mailmeteor only stores your data for the time needed to provide to you our services, and in no event no longer than 3 months after closing your account (unless otherwise required by law). You are able to access your personal data for as long as you hold an active account with us and for a period that varies depending on the type of data concerned. Your event data (statistics, for example), will be deleted every 13 months during active use of your account. Other data may be deleted at any time during active use of your account in accordance with the provisions set forth above.
The host servers on which Mailmeteor processes and stores its databases are located exclusively within the Google infrastructure, in European Union and United States of America.
Mailmeteor will inform you immediately, to the extent we are legally authorised to do so, in case of any application or order originating from an administrative or judicial authority relating to your personal data.
Within the framework of its services, Mailmeteor attributes the very highest importance to the security and integrity of its customers’ personal data.
Thus and in accordance with the GDPR, Mailmeteor undertakes to take all pertinent precautions in order to preserve the security of the data and, in particular, to protect them against any accidental or unlawful destruction, accidental loss, corruption, unauthorised circulation or access, as well as against any other form of unlawful processing or disclosure to unauthorised persons.
To this end, Mailmeteor implements industry standard security measures to protect personal data from unauthorised disclosure. In using industry recommended methods of encoding, Mailmeteor takes the measures necessary to protect information connected with payments and credit cards.
Moreover, in order to avoid in particular all unauthorised access, to guarantee accuracy and the proper use of the data, Mailmeteor has put the appropriate electronic, physical and managerial procedures in place with a view to safeguarding and preserving the data gathered through its services.
You should keep in mind that any user, customer or hacker who discovers and takes advantage of a breach in security renders him or herself liable to criminal prosecution and that Mailmeteor will take all measures, including filing a complaint and/or bringing court action, to preserve the data and the rights of its users and of itself and to limit the impacts.
If you have questions, you can email us at Data Protection Officer directly at: firstname.lastname@example.org or by mail to: Mailmeteor SAS, Attn: Data Protection Officer / Legal Department, 28 rue Albert, 75013, Paris, France.