Hi! We noticed that your browser has extensions installed that may cause our website to not display or function properly for you.
For best user experience, we highly suggest to turn off ad blockers or privacy trackers (such as Privacy Badger or Firefox Enhanced Tracking).
Thank you.
Dated July 2024
Anduin Transactions, Inc. (“Anduin”, “we,” “us,” or “our”) is committed to protecting the privacy of our users’ information. The following policy (the “Privacy Policy”) describes how we collect, use, and disclose information we receive from users of our website, products and services (collectively, the “Services”). This Privacy Policy describes our policies and procedures with respect to Personal Data (as defined below) collected, held, used or processed by us when you use the Services; the measures taken to protect the confidentiality, integrity and security of that personal data; and your rights regarding such Personal Data.
By creating an account or otherwise visiting or using the Services, you acknowledge that you have read and agree to this Privacy Policy, which may be updated by us at any time without notice to you. If we update this Privacy Policy, we will post the updated version here. Any such changes will be effective when you first access the Services after we post the changes here. If we make any material changes in the way we collect, hold, use, process or share your Personal Data, we will endeavor to provide you with appropriate notice before such changes take effect. For the purposes of compliance with the E.U. General Data Protection Regulation (“GDPR”), Anduin is a data processor with respect to your Personal Data. We process Personal Data on behalf of the controller. As used in this Privacy Policy, the term “Personal Data” shall have the meaning given under the GDPR.
Information Collected
We collect different types of information from users through our Services.
Account information. We collect information to create your account and to understand your specific needs to serve you better. Account information includes but is not limited to login credentials, your name, email address, and/or phone number.
Contact information. You can choose to store your contacts on our Services to make it easier for you to do things like share and collaborate on a matter or invite others to use the Services. If you do, we’ll store those contacts on our servers for you to use as well.
Organization information and activities. You can choose to create or join an organization in order to securely share data or information and collaborate with your organization members. We also analyze the activities to (i) improve the Services’ usability and (ii) support users and troubleshoot issues.
Customer Data. While using our Services, you may electronically submit data or information to us (each, the “Customer Data”). This information will be transmitted to our servers solely for the purposes of completing the intended transaction. Anduin does not see, review, share, distribute, or reference any such Customer Data except as explained in accordance with the Anduin Terms of Service (the “TOS”) or as may be required by applicable law. In accordance with the TOS, Anduin may access Customer Data only: (i) to provide the Services, (ii) to prevent or address service or technical problems, (iii) upon an explicit request from you in connection with customer support matters, (iv) for product development, or (v) as may be required by applicable law.
In addition, in the course of providing the Services to you, Anduin may collect Sensitive Personal Information (“SPI”) including your Social Security Number, driver’s license, state identification card, or passport number and your account log-in, financial account, in combination with any required security or access code, password, or credentials allowing access to an account. Anduin will share such SPI with third parties strictly in relation to providing the Services but will not sell such information.
Automated Information Collection
When you access our Services, some information is collected automatically. For example, when you access one of our websites, we automatically collect your browser’s internet protocol (IP) address, your browser type, the type and identifier of the device you are using such as a personal computer or a mobile device, the website(s) you recently visited prior to accessing any web-based Services, the actions you take on our Services, and the content, features, and activities in which you participate on our Services.
The information is collected automatically using technologies such as standard server logs, cookies, and web beacons. A “cookie” is a text file that websites send to a visitor’s computer or other Internet-connected device to uniquely identify the visitor’s browser or to store information or settings in the browser. A “web beacon,” also known as an Internet tag, pixel tag or clear GIF, links web pages to web servers and their cookies and may be used to transmit information collected through cookies back to a web server. We use this automatically-collected information to administer, operate, and improve our Services, including more effective and targeted marketing. You can stop certain types of cookies from being downloaded to your device by selecting the appropriate settings on your web browser. Most web browsers will tell you how to stop accepting new browser cookies, how to be notified when you receive a new browser cookie and how to disable existing cookies. You can find out how to do this for your particular browser by clicking “help” on your browser’s menu or by visiting www.allaboutcookies.org.
Third-Party Web Analytic Services
Through our Services, we may obtain Personal Data about your online activities over time and across third-party apps, websites, devices, and other online services. On our Services, we use third-party online analytics services, such as those of Google Analytics. The service providers that administer these analytics services use automated technologies to collect data (such as email addresses, IP addresses, cookies, and other device identifiers) to evaluate, for example, the use of our Services and to diagnose technical issues. To learn more about Google Analytics, please visit https://support.google.com/analytics/answer/6004245.
Usage and Disclosure of Information
General Uses and Disclosures. We use and share the information we collect from users for the purposes described below. When necessary, we will obtain your consent before using your data for these purposes.
Currently, Anduin’s servers, and therefore your data, are located in the United States. Personal Data from the E.U. may be transferred to, stored in and processed in, the United States, and transferred to and processed in other countries. If we transfer your Personal Data out of the E.U. to a country not deemed to provide an adequate level of Personal Data protection for purposes of applicable data protection laws such that additional safeguards are required, the transfer will be performed:
In addition, we may use your personal data for the following purposes:
Withdrawing Your Consent
At any time, you may withdraw your consent to Anduin for using, disclosing, or otherwise processing your Personal Data. You may withdraw your consent by emailing Anduin at gdpr@anduintransact.com, and following the instructions in our communications to you.
Please note that your withdrawal of consent to use certain Personal Data about you: (1) may limit our ability to deliver certain benefits and services to you, and (2) does not affect the legality of our processing activities based on your consent prior to your withdrawal.
Your Rights
Under the GDPR, you have the right to:
Retention of Personal Data
We will retain your Personal Data only as long as necessary to process requests or other submissions, fulfill the terms of our service contract(s) with you and comply with applicable law.
When we process Personal Data to comply with our legal obligations, we will retain the Personal Data for as long as the customer continues to be a customer of Anduin, and for 5 years from the date you are no longer a customer of Anduin or as otherwise required under applicable law.
Security of Personal Data
No data transmitted over or accessible through the internet can be fully secure. While we attempt to protect all Personal Data, we cannot ensure or warrant that any Personal Data will be completely secure from misappropriation by hackers or criminal activities, or a failure of computer hardware, software, or a telecommunications network. We will notify you upon becoming aware of a security breach involving your Personal Data stored by or for us as soon as reasonably possible.
Filing a Complaint
You may file a complaint regarding this Privacy Policy or our privacy practices by contacting us. Additionally, you may file a complaint with the E.U. data protection authorities (the “DPAs”). Please contact us to be directed to the appropriate DPA contact(s).
Data Protection Officer
We have appointed a Data Protection Officer to oversee our GDPR compliance efforts. You may reach our Data Protection Officer at gdpr@anduintransact.com.
Comments and Questions
If you have a comment, question, or request related to this Privacy Policy, please contact us at gdpr@anduintransact.com.
The Uniform Electronic Transactions Act, The U.S. ESIGN act of 2000, eIDAS No 910/2014 from the European Union (Basic and Advanced), Write Once Read Many Archiving (WORM), EU General Data Protection Regulation (GDPR), SOC2 Security, Availability & Confidentiality Type 1.
© 2024 Anduin Transactions. All Rights Reserved.