Our core beliefs regarding user privacy and data protection are:
- User privacy and data protection are human rights
- We have a duty of care to the people within our data
- Data is a liability, it should only be collected and processed when absolutely necessary
- We will never sell, rent, or distribute your personal information
To comply with the GDPR, we use a Consent Management Platform from OneTrust that prompts for opt-in consent to customers with an EU IP address. If consent is not given, then our non-necessary pixels/cookies like LinkedIn's and Facebook's retargeting tag are not dropped on the page.
You can edit your cookies settings at any time here.
We also honor all data rights including view, rectify, and delete. Please reach out to [email protected] if you would like to do any of these.
For CCPA, technically due to our revenue and how many users' data we collect, we do not fall under California's requirement to comply with the CCPA ($25MM min in revenue / 50% of rev from data sales / or handle data on 50K+ CA consumers). That said, we still honor your data rights, so if you would like to see or delete any data we have on you, please reach out to [email protected]
When you establish your Kevel account, purchase other services through our Site, or fill out a web form (such as "Contact Us"), you may provide us with your personal information, such as your name and email address.
We do not distribute or sell this information, although Kevel does store this information with various third party data processors. This data is used only to respond to contact requests in a timely manner. The data provided (name, email, company) is stored indefinitely for analysis, but you can request for its deletion by emailing [email protected]
If you are set up to pay by credit card, then Kevel or its payment processor will collect personally identifiable information (credit card number, billing address, phone number) and keep this information on file in our server in order to process your recurring invoices. This information is only used to verify credit card authenticity, and issue invoices as per your agreement with Kevel. Upon discontinuation of your service, your credit card information will be deleted. If we are unable to process your subscription, this information, along with your account information, may be used to contact you.
We use Google Analytics for aggregated, anonymized website traffic analysis. In order to track your session usage, Google drops a cookie (_ga) with a randomly-generated ClientID in your browser. This ID is anonymized and contains no identifiable information like email, phone number, name, etc. We also send Google your IP Address. We use GA to track aggregated website behavior, such as what pages you looked at, for how long, and so on. This information is important to us for improving the user experience and determining site effectiveness. If you would like to access what browsing information we have - or ask us to delete any GA data - please delete your _ga cookies, reach out to us via [email protected], and/or install the Google Analytics Opt-Out Browser Add-On.
Hubspot is a CRM and marketing tool used by Kevel to manage who fills out forms and respond to support tickets. It's a needed service for us to be able to interact and respond to our customers. This data is not used for profiling or retargeting. If you would like to be removed from this database, please let us know.
Clearbit is a tool for website de-anonymization that helps with tailoring site content.
More info about these cookies can be found here.
While Kevel does not display ads on our marketing site, we do use the tracking pixels of a few large ad platforms (Facebook, Quora, LinkedIn, Google Ads) for the purpose of retargeting and/or conversion tracking to know what campaigns drove what leads.
When you visit our site, these pixels receive anonymized information about your browsing behavior, which can be used to build profiles for retargeting on those platforms. Additionally, if you fill out our contact form, they will be pinged and will report a conversion if it came from them.
These retargeting tags are not dropped for EU residents unless consent has been given. They will also not be dropped for anyone should you block them in your cookie settings.
More info about these cookies can be found here.
If you choose to request more information about Kevel's product, the email and info that you submit will be forwarded to Formstack, and Hubspot, who provide us with our CRM and email services. They are considered third-party data processors. Data will also appear in Slack, as that is where we get notified of new leads.
Your information is deleted from Formstack every three months, but remains indefinitely in Hubspot and Slack until you request removal. To do this, please reach out to [email protected]
If you choose to provide your email (which is all these ask for), then the info you submit will be stored in Formstack, Mailchimp, and Hubspot. We do not sell these emails, and we use them only for the monthly/quarterly updates. To remove yourself from these lists, you can unsubscribe from any of the emails and/or reach out to [email protected]
Information in Formstack and Mailchimp is deleted every three months, but remains indefinitely in Hubspot until you request deletion (or unsubscribe).
Kevel uses a service called Statuspage.io to monitor our API uptime. In that portal you can sign up for notifications (via email or phone number). If you have signed up but would like us to remove your info, please let [email protected] know.
You also have the option to unsubscribe directly from any emails you may receive.
Kevel will use the personal information you provide to provide requested services, alert you of new products and services, features and enhancements, respond to your support issues, and/or notify you of upgrade opportunities, promotions, and special offers. You agree that we may communicate with you via email and any similar technology for any purpose relating to the Site.
We may also:
Disclose personal information to our subsidiaries and affiliates and to any contractors, service providers and other third parties who need to know such information to support our permitted uses of personal information.
Release personal information and/or other information if required to do so by law, or in the good-faith belief that such action is necessary to comply with state, federal or international laws or respond to a court order, subpoena, search warrant, or national security or law enforcement requirement.
Disclose personal information and/or other information about you that we believe, in good faith, is appropriate or necessary to enforce our agreements, take precautions against liability, to investigate and defend against any third-party claims, to assist government enforcement agencies, to protect the security or integrity of the Site, and protect the rights, property, or personal safety of Kevel, our users or others.
Kevel does not knowingly allow children under the age of eighteen (18) to sign up for an account on the Site or to otherwise disclose any of their personal information to us. If you are under 18 years old, please do not use or access our Site. We do not intend to collect information about children under the age of 18. If we later obtain actual knowledge that a user is under 18 years of age, we will take steps to remove that user’s information from our systems. If you are the parent or guardian of a child under 18 whom you believe has disclosed personal information to us, please contact us at [email protected] so that we may delete and remove the child’s information from our systems.
We provide you the opportunity to opt out of receiving certain communications from us and our business partners, at the point in the registration process where we request information about you. In addition, all marketing e-mails from Kevel will provide you with the opportunity to unsubscribe from future marketing mailings. Even if you opt out of such mailings, however, we reserve the right to send you e-mail and other communications to disclose maintenance and other service-related issues.
Please contact us at [email protected] if you need to update and/or correct your account information. Alternately, if you are a registered user of Kevel’s service, you can change your account information through the management component of the service. You may need to supply certain information so that we can try to verify that you have authority to modify this information.
The Site may contain links to other Internet sites. We have no responsibility for the privacy practices of other websites, including the websites of our business partners. Whenever a web browser window is opened in Kevel that does not show a web page created by Kevel (noted by a Kevel copyright statement at the bottom of such pages), then it should be assumed that Kevel privacy policies do not apply.
We use a number of third parties to process personal data on our behalf. These third parties have been carefully chosen in respect to their privacy policies. These partners do not distribute or sell your information, and no non-anonymized PII like email, name, or company are shared with them.
- Email Storage: MailChimp, Formstack
- CRMs & User Interaction: Intercom, Hubspot, Clearbit
- Tracking: Google Analytics
- Retargeting/Conversion tracking: LinkedIn, Facebook, Quora, Capterra, Google Ads
- Consent Management Platform: OneTrust
- Database: AWS, DataDog
For a full list of sub-processors Kevel uses, please visit this page.
We intend to protect your privacy to the fullest extent possible as described in this policy while also fulfilling our responsibility to uphold all applicable laws and regulations. Due to potential legal requirements and other possible circumstances, we cannot ensure that all of your private communications and other personally identifiable information will never be disclosed or accessed in ways not otherwise described in this policy.
We may be compelled under law to disclose information to governments or third parties under certain circumstances or third parties may unlawfully intercept or access transmissions or private communications. Further, we can, and you hereby authorize us to, disclose any information to law enforcement or other government officials that we, in our sole discretion, believe necessary or appropriate in compliance with the law and national security or law enforcement requirements.
In the event that all or part of Kevel is acquired by or merged with a third party entity, you agree that we may transfer or assign the information we have collected from you as part of such merger, acquisition, or other change of control. In the unlikely event of our bankruptcy, insolvency, reorganization, receivership, or assignment for the benefit of creditors, or the application of laws or equitable principles affecting creditors’ rights generally, we may not be able to control how your personal information is treated, transferred, or used.
We have implemented reasonable security measures on the Site to help protect against the loss, misuse and alteration of the personal information under our control. Additionally, Kevel takes reasonable steps to ensure that our third party business partners, including our hosting partners, provide sufficient protection for personal information.
Kevel's DPA is aimed to help you feel confident that you are working with a GDPR-compliant partner and to save both parties from legal harm should the other party breach the agreement. The details of the DPA live here.
Last Modified: December 2nd, 2020
Updated about a month ago