Unverified Commit 346eee95 authored by Markus Kirsch's avatar Markus Kirsch Committed by gitbook-bot

GitBook: [master] 3 pages and 2 assets modified

parent 8d40a086
# Privacy Policy # Privacy Policy
_Effective date: August 12th, 2020_ _Effective date: October 23rd, 2020_
Rocket.Chat Technologies Corp. \("us", "we", or "our"\) operates the [https://rocket.chat](https://rocket.chat) website, the [https://open.rocket.chat](https://open.rocket.chat) community server, the Marketplace, incl. associated Rocket.Chat Apps, Rocket.Chat´s Cloud Offering and the Rocket.Chat mobile applications \(the "Service"\). Rocket.Chat Technologies Corp. \("us", "we", or "our"\) operates the [https://rocket.chat](https://rocket.chat) website, the [https://open.rocket.chat](https://open.rocket.chat) community server, the Marketplace, incl. associated Rocket.Chat Apps, Rocket.Chat´s Cloud Offering and the Rocket.Chat mobile applications \(the "Service"\).
...@@ -10,53 +10,53 @@ We use your data to provide and improve the Service. By using the Service, you a ...@@ -10,53 +10,53 @@ We use your data to provide and improve the Service. By using the Service, you a
## Summary ## Summary
* Administrators are responsible for user privacy, we help administrators * **Administrators are responsible for user privacy, we help administrators**
There are basically two ways of using Rocket.Chat: self-managed \(also known as on-premises deployment\) on your own or someone else´s infrastructure or via our hosted offering. In both cases, the administrator of that instance - or the organization behind the administrator - is the person responsible to ensure privacy of Rocket.Chat users. We aim to help by providing features in our products and services to make that job easier. We also provide this policy to explain what we do as a "helping hand"/data processor for administrators in case we process personal data of users. There are basically two ways of using Rocket.Chat: self-managed \(also known as on-premises deployment\) on your own or someone else´s infrastructure or via our hosted offering. In both cases, the administrator of that instance - or the organization behind the administrator - is the person responsible to ensure privacy of Rocket.Chat users. We aim to help by providing features in our products and services to make that job easier. We also provide this policy to explain what we do as a "helping hand"/data processor for administrators in case we process personal data of users.
* You remain in control of your personal data * **You remain in control of your personal data**
We cannot access your personal data in a self-managed instance of Rocket.Chat. Our code is open source, there are no back doors whatsoever. You are however free to connect a self-managed instance to other services, e.g. our marketplace or push notification gateway, where this privacy policy applies. When you do not register your instance, these settings are turned off by default. You can also connect it to third party services, such as external authentication services, in which case their privacy policy applies. It is your choice and you are not forced to do so. In our hosted offering, we only process your data for the purposes of providing you the service in the name of the administrator. Administrators are still in full control over the configuration of their instance. We cannot access your personal data in a self-managed instance of Rocket.Chat. Our code is open source, there are no back doors whatsoever. You are however free to connect a self-managed instance to other services, e.g. our marketplace or push notification gateway, where this privacy policy applies. When you do not register your instance, these settings are turned off by default. You can also connect it to third party services, such as external authentication services, in which case their privacy policy applies. It is your choice and you are not forced to do so. In our hosted offering, we only process your data for the purposes of providing you the service in the name of the administrator. Administrators are still in full control over the configuration of their instance.
* We don´t sell your data * **We don´t sell your data**
We do not sell your personal data. Our business model is to provide you with a free edition and we charge you for extra services or features, according to the plan you choose. What you process within Rocket.Chat is yours and stays yours. We do not sell your personal data. Our business model is to provide you with a free edition and we charge you for extra services or features, according to the plan you choose. What you process within Rocket.Chat is yours and stays yours.
* Our community server is for testing purposes * **Our community server is for testing purposes**
Our community server [https://open.rocket.chat](https://open.rocket.chat) is a testing ground for our users and we use it to test and analyze new features. We track user activity in there with the trackers described below - including google analytics - to learn how our service is used and to improve our product. Our community server [https://open.rocket.chat](https://open.rocket.chat) is a testing ground for our users and we use it to test and analyze new features. We track user activity in there with the trackers described below - including google analytics - to learn how our service is used and to improve our product.
## Definitions ## Definitions
* Service * **Service**
Service means the [https://rocket.chat](https://rocket.chat) website, the [https://open.rocket.chat](https://open.rocket.chat) community server, the Rocket.Chat Marketplace, incl. associated Rocket.Chat Apps, the [https://cloud.rocket.chat](https://cloud.rocket.chat) service offering, push notification gateways and the Rocket.Chat mobile applications operated by Rocket.Chat Technologies Corp. Service means the [https://rocket.chat](https://rocket.chat) website, the [https://open.rocket.chat](https://open.rocket.chat) community server, the Rocket.Chat Marketplace, incl. associated Rocket.Chat Apps, the [https://cloud.rocket.chat](https://cloud.rocket.chat) service offering, push notification gateways and the Rocket.Chat mobile applications operated by Rocket.Chat Technologies Corp.
* Personal Data * **Personal Data**
Personal Data means data about a living individual who can be identified from those data \(or from those and other information either in our possession or likely to come into our possession\). Personal Data means data about a living individual who can be identified from those data \(or from those and other information either in our possession or likely to come into our possession\).
* Usage Data * **Usage Data**
Usage Data is data collected automatically either generated by the use of the Service or from the Service infrastructure itself \(for example, the duration of a page visit\). Usage Data is data collected automatically either generated by the use of the Service or from the Service infrastructure itself \(for example, the duration of a page visit\).
* Cookies * **Cookies**
Cookies are small pieces of data stored on your device \(computer or mobile device\). Cookies are small pieces of data stored on your device \(computer or mobile device\).
* Data Controller * **Data Controller**
Data Controller means the natural or legal person who \(either alone or jointly or in common with other persons\) determines the purposes for which and the manner in which any personal information are, or are to be, processed. Data Controller means the natural or legal person who \(either alone or jointly or in common with other persons\) determines the purposes for which and the manner in which any personal information are, or are to be, processed.
For the purpose of this Privacy Policy, we are a Data Controller of your Personal Data. For the purpose of this Privacy Policy, we are a Data Controller of your Personal Data.
* Data Processors \(or Service Providers\) * **Data Processors \(or Service Providers\)**
Data Processor \(or Service Provider\) means any natural or legal person who processes the data on behalf of the Data Controller. Data Processor \(or Service Provider\) means any natural or legal person who processes the data on behalf of the Data Controller.
We may use the services of various Service Providers in order to process your data more effectively. We may use the services of various Service Providers in order to process your data more effectively.
* Data Subject \(or User\) * **Data Subject \(or User\)**
Data Subject is any living individual who is using our Service and is the subject of Personal Data. Data Subject is any living individual who is using our Service and is the subject of Personal Data.
...@@ -88,7 +88,7 @@ This Usage Data may include information such as your computer's Internet Protoco ...@@ -88,7 +88,7 @@ This Usage Data may include information such as your computer's Internet Protoco
When you access the Service by or through a mobile device, this Usage Data may include information such as the type of mobile device you use, the IP address of your mobile device, your mobile operating system, the app version, the type of mobile Internet browser you use, unique device identifiers and other diagnostic data. When you access the Service by or through a mobile device, this Usage Data may include information such as the type of mobile device you use, the IP address of your mobile device, your mobile operating system, the app version, the type of mobile Internet browser you use, unique device identifiers and other diagnostic data.
As a byproduct of the usage data within a Rocket.Chat instance, Administrators may chose to share aggregated and therefore anonymous, non-personal data with us to help us learn more about how our product is being used. The information shared is the same information as is shown on the "info"-page of the administration panel of an instance. E.g. this statistics sharing would transmit the total \# of channels, but it would not transmit the actual channel names, and so on, preserving privacy of your workspace. This is completely optional to use and can be activated and deactivated any time. As a byproduct of the usage data within a Rocket.Chat instance, Administrators may chose to share aggregated and therefore anonymous, non-personal data with us to help us learn more about how our product is being used. This setting is described [here](https://docs.rocket.chat/guides/administrator-guides/general#reporting). The information shared is the same information as is shown on the "info"-page of the administration panel of an instance. E.g. this statistics sharing would transmit the total \# of channels, but it would not transmit the actual channel names, and so on, preserving privacy of your workspace. This is completely optional to use and can be activated and deactivated any time.
#### Location Data #### Location Data
...@@ -120,7 +120,23 @@ Examples of Cookies we use: ...@@ -120,7 +120,23 @@ Examples of Cookies we use:
* Preference Cookies. We use Preference Cookies to remember your preferences and various settings. * Preference Cookies. We use Preference Cookies to remember your preferences and various settings.
* Security Cookies. We use Security Cookies for security purposes. * Security Cookies. We use Security Cookies for security purposes.
## Use of Data ### Distinction of data collection between Self Managed Workspaces and Hosted Workspaces
The following paragraph applies to data processing in Rocket.Chat workspaces and is for clarification purposes only. Self Managed workspaces and workspaces hosted by us differ in the kind of data we are processing from you, because in case of our hosted offering, all data put into the workspaces is technically processed on our infrastructure.
There is also a difference between **registered**, self managed workspaces \(which consume services from us\) and **unregistered**, self managed workspaces.
See the following table for a general distinction between the data that is processed in each case. Keep in mind that this can differ in individual circumstances, such as cases where apps are installed on unregistered workspaces via workarounds.
| Data type | Self Managed \(not registered\) | Self Managed \(registered\) | Hosted |
| :---: | :---: | :---: | :---: |
| **Account Data** | no | yes - to register your workspace via an account \(optional\) | yes - to register your workspace via an account |
| **Usage Data** | no | yes - as per the service you are consuming via your registration, e.g. push notifications via our gateway | yes - as part of using the hosted workspace on our infrastructure |
| **App Data** | no | yes - if you install apps from the marketplace and based on the use case of the app. Third party apps have their own privacy policy. | yes - if you install apps from the marketplace and based on the use case of the app. Third party apps have their own privacy policy. |
| **User content** | no | no - content is not processed, unless it falls under the aforementioned \(e.g. the content of a push notification sent via our gateway\) | yes - as part of using the hosted workspace on our infrastructure. End-to-end encrypted content is only stored in encrypted form. |
| **Tracking and Cookies** | no | yes - tracking occurs on our end to monitor the consumption of the services you use \(Usage Data\). We do not track inside the workspace. | yes - tracking occurs to monitor the consumption of the services used. |
## Use of Personal Data
Rocket.Chat Technologies Corp. uses the collected data for various purposes: Rocket.Chat Technologies Corp. uses the collected data for various purposes:
......
...@@ -2,7 +2,7 @@ ...@@ -2,7 +2,7 @@
This page lists Rocket.Chat's current subprocessors for personal data and is updated on a regular basis. This page lists Rocket.Chat's current subprocessors for personal data and is updated on a regular basis.
Last update: 24.09.2020 Last update: 23rd October,2020
<table> <table>
<thead> <thead>
...@@ -49,6 +49,10 @@ Last update: 24.09.2020 ...@@ -49,6 +49,10 @@ Last update: 24.09.2020
<td style="text-align:left">PRVolt</td> <td style="text-align:left">PRVolt</td>
<td style="text-align:left">email marketing</td> <td style="text-align:left">email marketing</td>
</tr> </tr>
<tr>
<td style="text-align:left">Yesware</td>
<td style="text-align:left">email marketing</td>
</tr>
</tbody> </tbody>
</table> </table>
...@@ -52,7 +52,7 @@ To enter your server information: ...@@ -52,7 +52,7 @@ To enter your server information:
1. Read and agree to the Terms and Privacy Policy. 1. Read and agree to the Terms and Privacy Policy.
2. Hit **Continue**, as shown below: 2. Hit **Continue**, as shown below:
![](../.gitbook/assets/image%20%2893%29.png) ![](../.gitbook/assets/image%20%2890%29%20%281%29.png)
Verify your password to continue. Verify your password to continue.
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment