Togetzr Privacy Policy

How we protect your privacy

on Togetzr.com and when you use our services

Togetzr SA and its affiliates offer many services to help you run your business, including a platform to host your own Togetzr database. As part of running those services we collect data about you and your business. This data is not only essential to run our services, but also critical for the safety of our services and all our users.

This policy explains what information is collected, why it is collected, and how we use it.

Information we collect

Most of the personal data we collect is directly provided by our users when they register and use our services. Other data is collected by recording interactions with our services.

Account & Contact Data: When you register on our website to use or download one of our products, or to subscribe to one of our services (Togetzr Online, Free Trial, Togetzr Apps, etc.), or fill in one of our contact forms, you voluntarily give us certain information. This typically includes your name, company name, email address, and sometimes your phone number, postal address (when an invoice or delivery is required),your business sector and interest in Togetzr, as well as a personal password.

We never record or store credit card information from our customers, and always rely on trusted third-party PCI-DSS-compliant payment processors for credit card processing, including for recurring payment processing.

Browser Data: When you visit our website and access our online services, we detect and store your browser language and geolocation in order to customize your experience according to your country and preferred language. Our servers also passively record a summary of the information sent by your browser for statistical, security and legal purposes: your IP address, the time and date of your visit and the page or resource you are accessing, your browser version and platform, and the web page that referred you to our website.

Your browser may also be used to store and retrieved your current session data, with the help of a session cookie (see also the Cookie section for more details).

Form protection: some forms on our website may be protected by Google reCAPTCHA. This technology relies on heuristics that are based on technical characteristics of your browser and device, and may also use specific Google cookies. See also Google Privacy Policy and Terms of Use in the Third Party Service Providers section below.

Customer Databases: When you subscribe to an Togetzr Cloud service and create your own Togetzr database (for example by starting a Free Trial), any information or content you submit or upload into your database is your own, and you control it fully.

Similarly, when you upload an on-premises database to the Togetzr Upgrade website, you own the data in it.

This data will often include personal information, for example: your list of employees, your contacts and customers, your messages, pictures, videos, etc. We only ever collect this information on your behalf, and you always retain ownership and full control on this data.

The other sections of this Policy explain:

how we process this data,
how long we keep it,
and how you can access or request deletion of this data
and which third-party service providers are involved.

If you do not consent or if we do not offer you the option to opt-in, your trial session will not be recorded and no data will be collected for this purpose.

In-App Purchase (IAP) Transaction Data: When you use Togetzr on the Togetzr Cloud or on your own self-hosted deployments, some optional "In-App Purchase" services may be active by default. This typically includes auto-completion features to help you quickly input client and supplier info, as well as integration with third-party service providers for sending and receiving SMS, paper letters, etc.

When you use these services, with or without payment, some necessary transaction data is transmitted to Togetzr Cloud services and have to be communicated to third-party services for the purpose of executing the service. You can find the detailed privacy policy for each service on the IAP Privacy Policy page.

The IAP services are always optional, even when enabled by default, and the IAP Privacy Policy also explains how you can opt-out of those services.

How we use this information

Account & Contact Data: We use your contact information in order to provide our services, to answer your requests, and for billing and account management reasons. We may also use this information for marketing and communication purposes (our marketing messages always come with a way for you to opt-out at any time). We also use this data in aggregated/anonymised form in order to analyze service trends.

If you have registered to participate in an event published on our website, we may transfer your name, email address, phone number and company name to our local organizer and to the sponsors of the event for both direct marketing purposes and in order to facilitate the preparations and booking for the event.

If you have expressed interest in using Togetzr or otherwise asked to be contacted by an Togetzr service provider, we may also transfer your name, email address, phone number and company name to one of our official Partners in your country or region, for the purpose of contacting you to offer their local assistance and services.

Browser Data: This automatically recorded data is anonymously analyzed in order to maintain and improve our services. Google reCAPTCHA may also be used for security purposes, in order to prevent abuse of our services. In that case we only process the anonymous score that reCAPTCHA determines based on your browser and device.

We will only correlate this data with your personal data when required by law or for security purposes.

Customer Database: We only collect and process this data on your behalf, in order to perform the services you have subscribed to, and based on the instructions you explicitly gave when you registered or configured your service and your Togetzr database.

Our Helpdesk staff and engineers may access this information in a limited and reasonable manner in order to solve any issue with our services, or at your explicit request for support reasons, or as required by law.

The contents of your project repository is stored as long as your Togetzr.com subscription is active in order to provide the service itself.

Accessing, Updating or Deleting Your Personal Information

Account & Contact Data: You have the right to access and update personal data you have previously provided to us. You can do so at any time by connecting to your personal account on Togetzr.com. If you wish to permanently delete your account or personal information for a legitimate purpose, please contact our Helpdesk to request so. We will take all reasonable steps to permanently delete your personal information, except when we are required to keep it for legal reasons (typically, for administration, billing and tax reporting reasons).

Customer Database: You can manage any data collected in your databases hosted on Togetzr.com at any time, using your administration credentials, including modifying or deleting any personal data stored therein.

At any time you can export a complete backup of your database via our control panel, in order to transfer it, or to manage your own backups/archive. You are responsible for processing this data in compliance with all privacy regulations.

You may also request the deletion of your entire database via your control panel, at any time.

When you use the Togetzr Database Upgrade service, your data is automatically deleted after your upgrade was successfully completed, and may also be deleted upon request from you.

Safety Retention Period: we retain a copy of your data in our backups for safety reasons, even after they are destroyed from our live systems.

Security

We realize how important and sensitive your personal data is, and we take a great number of measures to ensure that this information is securely processed, stored and preserved from data loss and unauthorized access.

Third Party Service Providers / Subprocessors

In order to support our operations we rely on several Service Providers. They help us with various services such as payment processing, web audience analysis, cloud hosting, marketing and communication, etc.

Whenever we share data with these Service Providers, we make sure that they use it in compliance with Data Protection legislation, and that the processing they carry out for us is limited to our specific purpose and covered by a specific data processing contract.

Below is a list of the Service Providers we are currently using, why we use them, and what kind of data we share with them.

A. Subprocessors

These third-party service providers are processing data for which Togetzr is Controller or Processor, on behalf of Togetzr.

Important: due to the great variability in resources and services provided by these subprocessors, Togetzr Customers cannot select the subprocessor that will be used to process their data. They can however choose their main hosting region (see the Data Location section).

Subprocessors	Purpose	Shared Data
Contabo GmbH Privacy & Security	Infrastructure and hosting of Togetzr.com (production + backups), Togetzr SaaS (production + backups).	Currently hosted by Contabo: Production data from Togetzr.com and its affiliate services, including Togetzr Online (SaaS) Customer Databases, and the Togetzr Database Upgrade services, including Customer databases currently being upgraded; Backup data for all Togetzr cloud services.

Subprocessors

Purpose

Shared Data

Contabo GmbH

Privacy & Security

Infrastructure and hosting of Togetzr.com (production + backups), Togetzr SaaS (production + backups).

Currently hosted by Contabo: Production data from Togetzr.com and its affiliate services, including Togetzr Online (SaaS) Customer Databases, and the Togetzr Database Upgrade services, including Customer databases currently being upgraded; Backup data for all Togetzr cloud services.

B. Third-party Processors and Controllers

These third-party service providers are processing data for which Togetzr is a Controller, as Processors, on behalf of Togetzr, or they are receiving such data as Controllers, for the specific purpose of performing the services they have been contracted to provide.

Service Provider	Purpose	Shared Data
Viva PCI • Privacy & Security	Payment processing on Togetzr.com.	Shared with Viva: Order details (amount, description, reference), Customer name and email. Only stored by Viva: credit card info.
Google Analytics Privacy & Security • Types of cookies	Anonymous website audience analysis. Opt-out	Shared with Google Analytics: Non-personal browser data, anonymized IP, geolocation info, language (no identifiable information).
Google reCAPTCHA Privacy & Security	Form protection.	Used by Google reCAPTCHA: Browser and device characteristics, Google cookies.

Data Retention

Account & Contact Data: we will only retain such data as long as necessary for the purpose for which it was collected, as laid out in this policy, including any legal retention period, or as long as necessary to carry out a legitimate and reasonable promotion of our products and services.

Job Application Data: If we do not hire you, we may keep the information you provide for up to 3 years in order to contact you again for any new job proposition that may come up, unless you ask us not to do so. If we hire you, your personal information will be stored for the duration of your employment contract with us, and afterwards, during the applicable legal retention period that applies in the country where we employed you.

Browser Data: we may retain this data for a maximum of 12 months, unless we need to keep it in relation with a legitimate concern related to the security or performance of our services, or as required by law. Any server-side session information is discarded maximum 7 days after it stops being actively used.

Server Logs & Security Logs: we retain those logs for a maximum of 12 months, unless we need to keep them in relation with a legitimate concern related to the security or performance of our services, or as required by law.

Customer Database: we will only retain this data as long as necessary for providing the services you subscribed to. For databases hosted on the Togetzr Cloud, if you cancel the service your database is kept deactivated for 3 weeks (the grace period during which you can change your mind), and then destroyed. For databases uploaded to the Togetzr Database Upgrade website, your database is kept for up to 4 months after the last successful upgrade, and may be deleted earlier upon request.

Physical Data Location / Data Transfers

For customers concerned about EU data protection regulations, countries with a sign in the above lists are in EU or currently subject to an adequacydecision from EU authorities.

International Staff

In some cases, the personal data mentioned in this Privacy Policy may be accessed by staff members of Togetzr SA subsidiaries in other countries. Such access will always be done for the same purposes and with the same privacy and security precautions as if it was done by our own local staff, so all the guarantees we provide still apply.

We use EU StandardContractual Clauses to bind our subsidiaries in a way that offers sufficient safeguards on data protection for the limited and temporary data transfers that occur for such access.

Third Party Disclosure

Except as explicitly mentioned above, we do not sell, trade, or otherwise transfer your personal data to third parties. We may share or disclose aggregated or de-identified information, for research purposes, or to discuss trends or statistics with third-parties.

Cookies

Cookies are small bits of text sent by our servers to your computer or device when you access our services. They are stored in your browser and later sent back to our servers so that we can provide contextual content. Without cookies, using the web would be a much more frustrating experience. We use them to support your activities on our website, for example your session (so you don't have to login again) or your shopping cart.

Cookies are also used to help us understand your preferences based on previous or current activity on our website (the pages you have visited), your language and country, which enables us to provide you with improved services. We also use cookies to help us compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future.

We also use third-party services such as Google Analytics, who set and use their own cookies to identify visitors and provide their own contextual services. For more information regarding those third-party providers and their Cookie Policy.

Here is an overview of the cookies that may be stored on your device when you visit our website:

Category of Cookie	Purpose	Cookies
Session & Security	Authenticate users, protect user data and allow the website to deliver the services users expect, such as maintaining the content of their cart, or allowing file uploads. The website will not work properly if you reject or discard those cookies.	session_id (Togetzr) td_id (Togetzr) fileToken (Togetzr) __cfduid (CloudFlare)
Preferences	Remember information about the preferred look or behavior of the website, such as your preferred language, region and timezone. Your experience may be degraded if you discard those cookies, but the website will still work.	frontend_lang (Togetzr) cids (Togetzr) togetzr_no_push (Togetzr) tz (Togetzr)
Interaction History	Used to collect information about your interactions with the website, the pages you've seen, and any specific marketing campaign that brought you to the website. We may not be able to provide the best service to you if you reject those cookies, but the website will work.	im_livechat_history (Togetzr) im_livechat_previous_operator_pid (Togetzr) utm_campaign (Togetzr) utm_source (Togetzr) utm_medium (Togetzr) fs_uid (FullStory)
Advertising & Marketing	Used to make advertising more engaging to users and more valuable to publishers and advertisers, such as providing more relevant ads when you visit other websites that display ads or to improve reporting on ad campaign performance. Note that some third-party services may install additional cookies on your browser in order identify you. You may opt out of a third-party's use of cookies by visiting the Network Advertising Initiative opt-out page. The website will still work if you reject or discard those cookies.	__gads (Google) __gac (Google) _fbp (Facebook)
Analytics	Understand how visitors engage with our website, via Google Analytics. Learn more about Analytics cookies and privacy information. The website will still work if you reject or discard those cookies.	_ga (Google) _gat (Google) _gid (Google) _gac_* (Google)

You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. Each browser is a little different, so look at your browser's Help menu to learn the correct way to modify your cookies, or look at the links below.

We do not currently support Do Not Track signals, as there is no industry standard for compliance.

Policy Updates

We may update this Privacy Policy from time to time, in order to clarify it, to reflect any changes to our website, or to comply with legal obligations. The "Last Updated" mention at the top of the policy indicates the last revision, which is also the effective date of those changes. We give you access to archived versions of this policy, so you can review the changes.

Contacting Us

If you have are any question regarding this Privacy Policy, or any enquiry about your personal data, please reach out to the Togetzr Helpdesk or contact us via email at privacy@togetzr.com or by post:

Togetzr S.A.S. - Data Protection

9 Chemin de la Gommerie

78120 Rambouillet, France

VAT: FR19915322234