Privacy policy

Any personal data provided to or gathered by the Platform under this Policy will be stored and controlled by Hyperstate who is the data controller ( “data fiduciary”)  for the purposes of collection of personal data by the Platform, the data so collected shall be stored at Amazon Web Services Mumbai data centers.

To provide the services and experiences on the Platform and for billing purposes, we must process information about you and about others with whom you interact or if you use their personal information. We collect the data such as :

1. Information and content you provide
   We collect contact information like email address, professional title, name of the organization, postal address and phone number, display name, display picture, preferences,  content, and other information you provide when you use our Platform, including when you sign up for the account, information through participation in surveys, calls with our representatives, support information posted on public forums of Kappa, projects created, projects published using Kappa.
   
   
2. Your usage
   We collect information about how you use our Platform, such as which functionality or features you use, the actions you take, your collaborator, website you visited before coming to the Platform, pages and screen viewed, time spent on a page, navigation path between pages and screens, information about the activity on a page or screen, access time, duration of access and the frequency of such usage.
   
   
3. Information about transactions made on our Products
   If you are in charge of your Kappa subscription, we collect partial details of payment method, billing information, transaction history and tax ID (wherever applicable). However, we never physically receive or store full information while using card for payment. It is collected and processed directly by Stripe (who is our processing partner) and this entity shall be responsible for complying with all extant laws, guidelines and regulatory circulars.
   
   
4. Things others do and information they provide about you.
   We also analyze content, communications and information other users provide about you on our Platform.
   
   
5. Device information
   As described below, we collect information from and about the computers and phones connected and using our Platform. For example, we use the information collected to better understand which features are or aren’t important to you, or to help us quickly identify the problem you might be experiencing with any of Platform’s functionalities and to secure your account from unauthorized access.
   
   Information we obtain from these devices includes:
   
   
   1. Device attributes:
      Information such as operating system, version number, device type, model, manufacturer, hardware and software versions or browser type.
   2. Identifiers:
      Unique identifiers or device IDs associated with the same device or account and general location (region, city, country).
   3. Network and connections:
      Information such as time zone and IP address.
   4. Cookie data:
      Cookies are alphanumeric identifiers that we transfer to your computer's hard drive through your Web browser to enable our systems to recognise your browser and to provide features such as “Recommended for You”, personalised advertisements on other Websites. Data from cookies stored on your device, including cookie IDs and settings that Uniquely identifies a user, saves browser settings, preferences, pages and screens viewed. The “Help” menu on the menu bar of most browsers will tell you how to prevent your browser from accepting new cookies, how to have the browser notify you when you receive a new cookie and how to disable cookies altogether. Additionally, you can disable or delete similar data used by browser add-ons, such as Flash cookies, by changing the add-on's settings or visiting the website of its manufacturer. However, because cookies allow you to take advantage of some of Platform’s essential features, we recommend that you leave them turned on. If you do leave cookies turned on, be sure to sign off when you finish using a shared computer.
   5. JavaScript Libraries
      We collect the data via Snippets of the code within web pages that executes when certain conditions are met.
   6. Pixels
      We use this to check whether a webpage or an email is accessed or opened, a certain content within that is clicked or viewed.

End User Data is collected by Customers and within the designated spaces within the Company’s Platform being the Customer Accounts. Only the Customer accesses its Customer Account. End User data being collected by Customers may include, without limitation, information about the identity of End users (such as name, postal address, e-mail address, IP address and phone number), as well as information about the pages users visit, the features they use, and the actions they take while using Customer Accounts. This Privacy Policy does not apply to End User Data collected by the Customer within the Customer Account, and we, Hyperstate are not responsible for the Customers’ handling of End User Data. Our Customers have their own policies regarding the collection, use and disclosure of your personal information within the Customer Accounts. To learn about how a particular Customer handles your personal information, we encourage you to read the Customer’s privacy policy. Our use of End User Data provided by our Customers to us in connection with the license given to Customer, is subject to the written agreement between Hyperstate and Customer.

1. Provide, personalize and improve our Services:
   We use the information to deliver our Services efficiently, billing,  personalize features and make suggestions for you (such as features you might be interested in using or have not used),  Our legal basis for such processing is the need to comply with contractual obligations contained in the Terms of Usage;
   
   
2. Product research and development:
   We use the information to develop, test and improve our Platform, including by conducting surveys and research, and testing and troubleshooting new products and features. Such processing is necessary for our legitimate interests consisting in providing an innovative services and experiences to our users and partners;
   
   
3. Provide measurement, analytics, and other business services:
   We use the information to analyze the effectiveness of our marketing campaigns. Such data may be aggregated, pseudonymized or de-identified, but if it does contain personal data, processing is necessary for our legitimate interests consisting in efficient marketing and lead generation;
   
   
4. Promote safety, integrity and security:
   We use the information to verify accounts and activity, combat harmful conduct, detect and prevent spam and other bad experiences, maintain the integrity of our Platform. We also use data we have to investigate suspicious activity or violations of our terms or policies. Such processing is necessary for our legitimate interests consisting in providing a safe environment and secure Service to our users and partners;
   
   
5. Communicate with you:
   We use the information to send you marketing communication, relevant news and updates that we believe may interest you. Such processing is necessary for our legitimate interests consisting in efficient marketing. You may always object to such processing by clicking the “Unsubscribe” link within such email or via account/profile with Kappa We may also communicate with you about our Services, Platform and policies and terms as necessary to comply with our contractual obligations as contained in the Terms of Usage. We also use your information to respond to you when you contact us.
   
   
6. Billing:
   Whenever you have to make a payment, you will select the payment method insert address & contact details for accounting and invoice generation.

We collect, use and share the data that we have in the ways described above:

1. as necessary to fulfill Our Terms of Usage;
2. consistent with your consent, which you may revoke at any time through the account settings of your Platform user account/profile or writing to the grievance officer whose details are given hereunder;
3. as necessary to comply with our legal obligations for our (or others’) legitimate interests continuity of business, product and service enhancement, availability of service, billing, business analytics unless those interests are overridden by your interests or fundamental rights and freedoms that require protection of personal data.

We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information (“Personal Info”) unless we provide users with advance notice. This does not include website hosting partners and other parties who assist us in operating our Platform, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when its release is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property or safety.

Your data may shared with others in the following ways:

1. Within Hyperstate People and accounts you share and communicate with:
   When you use Platform, you choose, who has access to the content you manage. For example, when you invite a user/Customer to the Project you choose people who have access to that Project, you may select or restrict permissions to such people either by letting them create and manage the Project or just overseeing the content being created;
   
   
2. Sharing with Third-Party Partners is automated via APIs and code snippets provided by the data sub-processors: We work with third-party partners (see the list of our sub-processors at https://kappax.io/legal/sub-processors )  who help us provide and improve our Services and Platform, their processors are may or may not be located in India. We don't sell any of your information to anyone, and we never will. There are restrictions on how our partners can use and disclose the data we provide. Here are the types of third parties we share information with:
   
   
   1. Payment made for the Services
      As already highlighted above we never physically receive or store full information while using card for payment. It is collected and processed directly by our payment partners. We only store the last 4 digits of credit card numbers to trigger subscriptions charges via Payment Partners.
      
      
   2. Partners delivering aggregated statistics of your usage
      We provide our partners with anonymized and not-anonymized data about your usage and activity to better understand your behavior and analyzing your experience.
      
      
   3. Advertisers
      We provide our advertising partners with some of your data to promote our own content and services and to better personalize advertisement you see on social media.
      
      
   4. Law enforcement or legal requests
      We share information with law enforcement or in response to legal requests pursuant to and in consonance with the laws of India being the Country where our Company is incorporated and where our headquarters is situated.

We follow generally accepted industry standards to protect the information submitted to us, both during transmission and once we receive it. We maintain appropriate administrative, technical and physical safeguards to protect personal data against accidental or unlawful destruction, accidental loss, unauthorized alteration, unauthorized disclosure or access, misuse, and any other unlawful form of processing of the personal data in our possession. This includes, for example, firewalls, password protection and other access and authentication controls. Further:

1. Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible;
2. Your personal information is contained behind secured networks and is only accessible by a limited number of persons (who are authorized)  have special access rights to such systems, and are required to keep the information confidential;
3. All sensitive information you supply (your phone, credit card, and authorization) is encrypted over the network/transmission and not at rest.

Hyperstate’s Platform contains links to other websites. Our Policy applies only to our Platform, so if you click on a link to another website, you should read their respective privacy policies.

Hyperstate would like to make sure you are fully aware of all your data protection rights. Every user is entitled to the following:

1. The right to access- You have the right to request Hyperstate for copies of your personal data. We may charge you a small fee for this service.
2. The right to rectification- You have the right to request Hyperstate to correct any information you believe is inaccurate. You also have the right to request us  to complete information you believe is incomplete.
3. The right to erasure-You have the right to request that we erase your personal data, under certain conditions.
4. The right to restrict processing-You have the right to request that we restrict the processing of your personal data, under certain conditions.
5. The right to object to processing-You have the right to object to Hyperstate’s processing of your personal data, under certain conditions.
6. The right to data portability-You have  the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
   
   If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at our email:
   
   write to us: legal@kappax.io

You have the right to access, rectify, port and erase your data. Learn more about these rights, and find out how you can exercise your rights in the account settings of your Platform user account/profile. You also have the right to object to and restrict certain processing of your data. When you update information, we usually keep a copy of the previous version for our records.  This includes the right to object to our processing of your data for direct marketing, which you can exercise by using the “unsubscribe” link in such marketing communications. As already highlighted you can also disable cookies altogether.

We store data until it is no longer necessary to provide our Services or until your account is deleted - whichever comes first. However, the contact information of the Customer, transaction history and marketing information, Work Space ( a group of Customer Kappa Interactive Experiences or teams coming together to collaborate for the purpose of creating/managing a Customer Kappa Interactive Experience on the Platform), Published Customer Kappa Interactive Experience (we reserve the right to showcase the published Projects on any platform of our choice) is retained post deletion. You can delete:

1. Customer Kappa Interactive Experience - All information associated with it, including analytics, form responses, , URLs, content gets deleted from the system;
2. Customer Account - All Customer Accounts can be deleted including all Customer Kappa Interactive Experience.

We may from time to time update this Policy. Where possible, we will notify you of the changes or remind you regularly to review this Policy via email. Unless stated otherwise, our current Policy applies to all information that we have about you and your account. We stand behind the promises we make, however, and will never materially change our policies and practices to make them less protective of customer information collected in the past without the consent of affected user/customers.

Examples of information you can access easily include: up-to-date information regarding  personal information (including name, e-mail, password, communications and personalised advertising preferences and address book); payment settings; e-mail notification settings (including Alerts, newsletters); recommendations (including recent product-view history, prior-order history and Favourites); Your Profile (including Projects).

In case of clarification regarding this Policy or any other concern regarding privacy You can contact us online, or by mail at:
Email: legal@kappax.io
Address: B519, City vista, Ashok nagar, Kharadi, Pune - 411014

Should you wish to report a complaint or if you feel that Hyperstate has not addressed the concern in a satisfactory manner, you may contact the Grievance Officer. Contact details are given at https://kappax.io/legal/grievance-office

By clicking your consent hereunder you are agreeing to and shall be bound by the privacy policy of the Platform, Website, Kappa, Software and such or other components withing the Platform