We Fund the American Dream

Privacy Policy

Privacy Policy

Who we are



Our company name is RPA Commercial Loans. We are a division of Intouch Dynamics, with corporate registered address of 30 N Gould Street, Suite R, Sheridan, WY 82801.


Our website addresses include:


https://rpacommercialloans.com

https://rpacommercialcapital.com

https://rpacapitallending.com

https://rpa-us.com


Privacy Policy

CCPA Privacy Policy
Privacy Policy


Our Privacy Policy was last updated on September 18, 2024.


This Privacy Policy describes our policies and procedures on the collection, use and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You. We use Your Personal data to provide and improve the Service. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

Interpretation and Definitions


The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.


Definitions


For the purposes of this Privacy Policy:


  • "Account" means a unique account created for You to access our Service or parts of our Service.
  • "Business", for the purpose of the CCPA (California Consumer Privacy Act), refers to the Company as the legal entity that collects Consumers' personal information and determines the purposes and means of the processing of Consumers' personal information, or on behalf of which such information is collected and that alone, or jointly with others, determines the purposes and means of the processing of consumers' personal information, that does business in the State of California.
  • "Company" (referred to as either "the Company", "We", "Us" or "Our" in this Agreement) refers to rpa-us.com and/or RPA Commercial Loans.
  • "Country" refers to United States.
  • "Consumer", for the purpose of the CCPA (California Consumer Privacy Act), means a natural person who is a California resident. A resident, as defined in the law, includes (1) every individual who is in the USA for other than a temporary or transitory purpose, and (2) every individual who is domiciled in the USA who is outside the USA for a temporary or transitory purpose.
  • "Cookies" are small files that are placed on Your computer, mobile device or any other device by a website, containing the details of Your browsing history on that website among its many uses.
  • "Device" means any device that can access the Service such as a computer, a cell phone or a digital tablet.
  • "Do Not Track (DNT)” is a concept that has been promoted by US regulatory authorities, in particular the U.S. Federal Trade Commission (FTC), for the Internet industry to develop and implement a mechanism for allowing internet users to control the tracking of their online activities across websites.
  • "Personal Data" is any information that relates to an identified or identifiable individual. For the purposes of the CCPA, Personal Data means any information that identifies, relates to, describes or is capable of being associated with, or could reasonably be linked, directly or indirectly, with You.
  • "Sale", for the purpose of the CCPA (California Consumer Privacy Act), means selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating orally, in writing, or by electronic or other means, a Consumer's personal information to another business or a third-party for monetary or other valuable consideration.
  • "Service" refers to the Website.
  • "Service Provider" means any natural or legal person who processes the data on behalf of the Company. It refers to third-party companies or individuals employed by the Company to facilitate the Service, to provide the Service on behalf of the Company, to perform services related to the Service or to assist the Company in analyzing how the Service is used.
  • "Usage Data" refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
  • "Website" refers to rpa-us.com, accessible from www.rpa-us.com
  • "You" means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.


Collecting and Using Your Personal Data

Types of Data Collected


Personal Data

While using Our Service, We may ask You to provide Us with certain personally identifiable information that can be used to contact or identify You. Personally identifiable information may include, but is not limited to:


  • Email address
  • First name and last name
  • Phone number
  • Address, State, Province, ZIP/Postal code, City
  • Usage Data


Usage Data

Usage Data is collected automatically when using the Service. Usage Data may include information such as Your Device's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data. When You access the Service by or through a mobile device, We may collect certain information automatically, including, but not limited to, the type of mobile device You use, Your mobile device unique ID, the IP address of Your mobile device, Your mobile operating system, the type of mobile Internet browser You use, unique device identifiers and other diagnostic data. We may also collect information that Your browser sends whenever You visit our Service or when You access the Service by or through a mobile device.


Tracking Technologies and Cookies

We use Cookies and similar tracking technologies to track the activity on Our Service and store certain information. Tracking technologies used are beacons, tags, and scripts to collect and track information and to improve and analyze Our Service. The technologies We use may include:


Cookies or Browser Cookies.A cookie is a small file placed on Your Device. You can instruct Your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if You do not accept Cookies, You may not be able to use some parts of our Service. Unless you have adjusted Your browser setting so that it will refuse Cookies, our Service may use Cookies.


Web Beacons.Certain sections of our Service and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of a certain section and verifying system and server integrity).


Cookies can be "Persistent" or "Session" Cookies. Persistent Cookies remain on Your personal computer or mobile device when You go offline, while Session Cookies are deleted as soon as You close Your web browser.


We use both Session and Persistent Cookies for the purposes set out below:


Necessary / Essential Cookies


Type: Session Cookies


Administered by: Us


Purpose: These Cookies are essential to provide You with services available through the Website and to enable You to use some of its features. They help to authenticate users and prevent fraudulent use of user accounts. Without these Cookies, the services that You have asked for cannot be provided, and We only use these Cookies to provide You with those services.


Cookies Policy / Notice Acceptance Cookies


Type: Persistent Cookies


Administered by: Us

Purpose: These Cookies identify if users have accepted the use of cookies on the Website.


Functionality Cookies


Type: Persistent Cookies


Administered by: Us

Purpose: These Cookies allow us to remember choices You make when You use the Website, such as remembering your login details or language preference. The purpose of these Cookies is to provide You with a more personal experience and to avoid You having to re-enter your preferences every time You use the Website.


Tracking and Performance Cookies


Type: Persistent Cookies


Administered by: Third-Parties

Purpose: These Cookies are used to track information about traffic to the Website and how users use the Website. The information gathered via these Cookies may directly or indirectly identify you as an individual visitor. This is because the information collected is typically linked to a pseudonymous identifier associated with the device you use to access the Website. We may also use these Cookies to test new pages, features or new functionality of the Website to see how our users react to them. For more information about the cookies we use and your choices regarding cookies, please visit our Cookies Policy or the Cookies section of our Privacy Policy.


Use of Your Personal Data


The Company may use Personal Data for the following purposes:


  • To provide and maintain our Service, including to monitor the usage of our Service.
  • To manage Your Account: to manage Your registration as a user of the Service. The Personal Data You provide can give You access to different functionalities of the Service that are available to You as a registered user.
  • For the performance of a contract: the development, compliance and undertaking of the purchase contract for the products, items or services You have purchased or of any other contract with Us through the Service.
  • To contact You: To contact You by email, telephone calls, SMS, or other equivalent forms of electronic communication, such as a mobile application's push notifications regarding updates or informative communications related to the functionalities, products or contracted services, including the security updates, when necessary or reasonable for their implementation.
  • To provide You with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless You have opted not to receive such information.
  • To manage Your requests: To attend and manage Your requests to Us.
  • For business transfers: We may use Your information to evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which Personal Data held by Us about our Service users is among the assets transferred.
  • For other purposes: We may use Your information for other purposes, such as data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns and to evaluate and improve our Service, products, services, marketing and your experience. We may share Your personal information in the following situations:
  • With Service Providers: We may share Your personal information with Service Providers to monitor and analyze the use of our Service, for payment processing, to contact You.
  • For business transfers: We may share or transfer Your personal information in connection with, or during negotiations of, any merger, sale of Company assets, financing, or acquisition of all or a portion of Our business to another company.
  • With Affiliates: We may share Your information with Our affiliates, in which case we will require those affiliates to honor this Privacy Policy. Affiliates include Our parent company and any other subsidiaries, joint venture partners or other companies that We control or that are under common control with Us.
  • With business partners: We may share Your information with Our business partners to offer You certain products, services or promotions.
  • With other users: when You share personal information or otherwise interact in the public areas with other users, such information may be viewed by all users and may be publicly distributed outside.
  • With Your consent: We may disclose Your personal information for any other purpose with Your consent. Retention of Your Personal Data The Company will retain Your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use Your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies. The Company will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of Our Service, or We are legally obligated to retain this data for longer time periods.

Transfer of Your Personal Data


Your information, including Personal Data, is processed at the Company's operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of Your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from Your jurisdiction. Your consent to this Privacy Policy followed by Your submission of such information represents Your agreement to that transfer. The Company will take all steps reasonably necessary to ensure that Your data is treated securely and in accordance with this Privacy Policy and no transfer of Your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of Your data and other personal information.


Disclosure of Your Personal Data


Business Transactions


If the Company is involved in a merger, acquisition or asset sale, Your Personal Data may be transferred. We will provide notice before Your Personal Data is transferred and becomes subject to a different Privacy Policy.


Law enforcement


Under certain circumstances, the Company may be required to disclose Your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).


Other legal requirements


The Company may disclose Your Personal Data in the good faith belief that such action is necessary to:

  • Comply with a legal obligation
  • Protect and defend the rights or property of the Company
  • Prevent or investigate possible wrongdoing in connection with the Service
  • Protect the personal safety of Users of the Service or the public
  • Protect against legal liability


Security of Your Personal Data


The security of Your Personal Data is important to Us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While We strive to use commercially acceptable means to protect Your Personal Data, We cannot guarantee its absolute security.


Detailed Information on the Processing of Your Personal Data


The Service Providers We use may have access to Your Personal Data. These third-party vendors collect, store, use, process and transfer information about Your activity on Our Service in accordance with their Privacy Policies.


Analytics


We may use third-party Service providers to monitor and analyze the use of our Service


Email Marketing


We may use Your Personal Data to contact You with newsletters, marketing or promotional materials and other information that may be of interest to You. You may opt-out of receiving any, or all, of these communications from Us by following the unsubscribe link or instructions provided in any email We send or by contacting Us.


Payments


We may provide paid products and/or services within the Service. In that case, we may use third-party services for payment processing (e.g. payment processors).


We will not store or collect Your payment card details. That information is provided directly to Our third-party payment processors whose use of Your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.


CCPA Privacy Policy


This privacy notice section for California residents supplements the information contained in Our Privacy Policy and it applies solely to all visitors, users, and others who reside in the State of California.


Categories of Personal Information Collected


We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular Consumer or Device. The following is a list of categories of personal information which we may collect or may have been collected from California residents within the last twelve (12) months.


Please note that the categories and examples provided in the list below are those defined in the CCPA. This does not mean that all examples of that category of personal information were in fact collected by Us, but reflects our good faith belief to the best of our knowledge that some of that information from the applicable category may be and may have been collected. For example, certain categories of personal information would only be collected if You provided such personal information directly to Us.


Category A: Identifiers.


Examples: A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, driver's license number, passport number, or other similar identifiers.


Collected: Yes.


Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).


Examples: A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver's license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories.


Collected: Yes.


Category C: Protected classification characteristics under California or federal law.


Examples: Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).


Collected: No.


Category D: Commercial information.


Examples: Records and history of products or services purchased or considered.


Collected: Yes.


Category E: Biometric information.


Examples: Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.


Collected: No.


Category F: Internet or other similar network activity.


Examples: Interaction with our Service or advertisement.


Collected: Yes.


Category G: Geolocation data.


Examples: Approximate physical location.


Collected: No.


Category H: Sensory data.


Examples: Audio, electronic, visual, thermal, olfactory, or similar information.


Collected: No.


Category I: Professional or employment-related information.


Examples: Current or past job history or performance evaluations.


Collected: No.


Category J: Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)).


Examples: Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.


Collected: No.


Category K: Inferences drawn from other personal information.


Examples: Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.


Collected: No.


Under CCPA, personal information does not include:


  • Publicly available information from government records
  • Deidentified or aggregated consumer information
  • Information excluded from the CCPA's scope, such as:
  • Health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA) or clinical trial data
  • Personal Information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FRCA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver's Privacy Protection Act of 1994


Sources of Personal Information


We obtain the categories of personal information listed above from the following categories of sources:


  • Directly from You. For example, from the forms You complete on our Service, preferences You express or provide through our Service, or from Your purchases on our Service.
  • Indirectly from You. For example, from observing Your activity on our Service.
  • Automatically from You. For example, through cookies We or our Service Providers set on Your Device as You navigate through our Service.
  • From Service Providers. For example, third-party vendors to monitor and analyze the use of our Service, third-party vendors for payment processing, or other third-party vendors that We use to provide the Service to You.


Use of Personal Information for Business Purposes or Commercial Purposes


We may use or disclose personal information We collect for "business purposes" or "commercial purposes" (as defined under the CCPA), which may include the following examples:


  • To operate our Service and provide You with our Service.
  • To provide You with support and to respond to Your inquiries, including to investigate and address
  • Your concerns and monitor and improve our Service.
  • To fulfill or meet the reason You provided the information. For example, if You share Your contact information to ask a question about our Service, We will use that personal information to respond to Your inquiry. If You provide Your personal information to purchase a product or service, We will use that information to process Your payment and facilitate delivery.
  • To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
  • As described to You when collecting Your personal information or as otherwise set forth in the CCPA.
  • For internal administrative and auditing purposes.
  • To detect security incidents and protect against malicious, deceptive, fraudulent or illegal activity, including, when necessary, to prosecute those responsible for such activities.

Please note that the examples provided above are illustrative and not intended to be exhaustive. For more details on how we use this information, please refer to the "Use of Your Personal Data" section. If We decide to collect additional categories of personal information or use the personal information We collected for materially different, unrelated, or incompatible purposes We will update this Privacy Policy.


Disclosure of Personal Information for Business Purposes or Commercial Purposes


We may use or disclose and may have used or disclosed in the last twelve (12) months the following categories of personal information for business or commercial purposes:


  • Category A: Identifiers
  • Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))
  • Category D: Commercial information
  • Category F: Internet or other similar network activity


Please note that the categories listed above are those defined in the CCPA. This does not mean that all examples of that category of personal information were in fact disclosed, but reflects our good faith belief to the best of our knowledge that some of that information from the applicable category may be and may have been disclosed.


When We disclose personal information for a business purpose or a commercial purpose, We enter a contract that describes the purpose and requires the recipient to both keep that personal information confidential and not use it for any purpose except performing the contract.


Sale of Personal Information


As defined in the CCPA, "sell" and "sale" mean selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating orally, in writing, or by electronic or other means, a consumer's personal information by the business to a third-party for valuable consideration. This means that We may have received some kind of benefit in return for sharing personal information, but not necessarily a monetary benefit.


Please note that the categories listed below are those defined in the CCPA. This does not mean that all examples of that category of personal information were in fact sold, but reflects our good faith belief to the best of our knowledge that some of that information from the applicable category may be and may have been shared for value in return.


We may sell and may have sold in the last twelve (12) months the following categories of personal information:


  • Category A: Identifiers
  • Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))
  • Category D: Commercial information
  • Category F: Internet or other similar network activity


Share of Personal Information


We may share Your personal information identified in the above categories with the following categories of third parties:


  • Service Providers
  • Payment processors
  • Our affiliates
  • Our business partners
  • Third-party vendors to whom You or Your agents authorize Us to disclose Your personal information in connection with products or services We provide to You

Sale of Personal Information of Minors Under 16 Years of Age


We do not knowingly collect personal information from minors under the age of 16 through our Service, although certain third-party websites that we link to may do so. These third-party websites have their own terms of use and privacy policies and we encourage parents and legal guardians to monitor their children's Internet usage and instruct their children to never provide information on other websites without their permission.


We do not sell the personal information of Consumers We actually know are less than 16 years of age, unless We receive affirmative authorization (the "right to opt-in") from either the Consumer who is between 13 and 16 years of age, or the parent or guardian of a Consumer less than 13 years of age. Consumers who opt-in to the sale of personal information may opt-out of future sales at any time. To exercise the right to opt-out, You (or Your authorized representative) may submit a request to Us by contacting Us.


If You have reason to believe that a child under the age of 13 (or 16) has provided Us with personal information, please contact Us with sufficient detail to enable Us to delete that information.


Your Rights under the CCPA


The CCPA provides California residents with specific rights regarding their personal information. If You are a resident of California, You have the following rights:


  • The right to notice. You have the right to be notified which categories of Personal Data are being collected and the purposes for which the Personal Data is being used.
  • The right to request. Under CCPA, You have the right to request that We disclose information to You about Our collection, use, sale, disclosure for business purposes and share of personal information. Once We receive and confirm Your request, We will disclose to You:
  • The categories of personal information We collected about You
  • The categories of sources for the personal information We collected about You
  • Our business or commercial purpose for collecting or selling that personal information
  • The categories of third parties with whom We share that personal information
  • The specific pieces of personal information We collected about You
  • If we sold Your personal information or disclosed Your personal information for a business
  • purpose, We will disclose to You:
  • The categories of personal information categories sold
  • The categories of personal information categories disclosed
  • The right to say no to the sale of Personal Data (opt-out). You have the right to direct Us to not sell Your personal information. To submit an opt-out request please contact Us.
  • The right to delete Personal Data. You have the right to request the deletion of Your Personal Data, subject to certain exceptions. Once We receive and confirm Your request, We will delete (and direct Our Service Providers to delete) Your personal information from our records, unless an exception applies. We may deny Your deletion request if retaining the information is necessary for Us or Our Service Providers to:
  • Complete the transaction for which We collected the personal information, provide a good or service that You requested, take actions reasonably anticipated within the context of our ongoing business relationship with You, or otherwise perform our contract with You.
  • Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
  • Debug products to identify and repair errors that impair existing intended functionality.
  • Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.
  • Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 seq.).
  • Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information's deletion may likely render impossible or seriously impair the research's achievement, if You previously provided informed consent.
  • Enable solely internal uses that are reasonably aligned with consumer expectations based on Your relationship with Us.
  • Comply with a legal obligation.
  • Make other internal and lawful uses of that information that are compatible with the context in which You provided it.
  • The right not to be discriminated against. You have the right not to be discriminated against for exercising any of Your consumer's rights, including by:Denying goods or services to You
  • Charging different prices or rates for goods or services, including the use of discounts or other benefits or imposing penalties
  • Providing a different level or quality of goods or services to You
  • Suggesting that You will receive a different price or rate for goods or services or a different level or quality of goods or services

Exercising Your CCPA Data Protection Rights

In order to exercise any of Your rights under the CCPA, and if You are a California resident, You can contact Us:


Only You, or a person registered with the California Secretary of State that You authorize to act on Your behalf, may make a verifiable request related to Your personal information.


Your request to Us must:

  • Provide sufficient information that allows Us to reasonably verify You are the person about whom We collected personal information or an authorized representative.
  • Describe Your request with sufficient detail that allows Us to properly understand, evaluate, and respond to it.

We cannot respond to Your request or provide You with the required information if we cannot:

  • Verify Your identity or authority to make the request, and
  • confirm that the personal information relates to You

We will disclose and deliver the required information free of charge within 45 days of receiving Your verifiable request. The time period to provide the required information may be extended once by an additional 45 days when reasonably necessary and with prior notice.


Any disclosures We provide will only cover the 12-month period preceding the verifiable request's receipt.

For data portability requests, We will select a format to provide Your personal information that is readily usable and should allow You to transmit the information from one entity to another entity without hindrance.


Do Not Sell My Personal Information


You have the right to opt-out of the sale of Your personal information. Once We receive and confirm a verifiable consumer request from You, we will stop selling Your personal information. To exercise Your right to opt-out, please contact Us.


The Service Providers we partner with (for example, our analytics or advertising partners) may use technology on the Service that sells personal information as defined by the CCPA law. If you wish to opt-out of the use of Your personal information for interest-based advertising purposes and these potential sales as defined under CCPA law, you may do so by following the instructions below.


Please note that any opt-out is specific to the browser You use. You may need to opt-out on every browser that You use.


Mobile Devices


Your mobile device may give You the ability to opt-out of the use of information about the apps You use in order to serve You ads that are targeted to Your interests:


  • "Opt-out of Interest-Based Ads" or "Opt-out of Ads Personalization" on Android devices
  • "Limit Ad Tracking" on iOS devices


You can also stop the collection of location information from Your mobile device by changing the preferences on Your mobile device.


Children's Privacy


Our Service does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from anyone under the age of 13 without verification of parental consent, We take steps to remove that information from Our servers.


If We need to rely on consent as a legal basis for processing Your information and Your country requires consent from a parent, We may require Your parent's consent before We collect and use that information.


Links to Other Websites


Our Service may contain links to other websites that are not operated by Us. If You click on a third-party link, You will be directed to that third-party's site. We strongly advise You to review the Privacy Policy of every site You visit.


We have no control over and assume no responsibility for the content, privacy policies or practices of any third-party sites or services.


Changes to this Privacy Policy


We may update Our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this URL.


We will let You know via email and/or a prominent notice on Our Service, prior to the change becoming effective and update the "Last updated" date at the top of this Privacy Policy, if you are a subscriber to our site.


You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.


Contact us via admin@rpa-us.com.

Third-Party Applications on Our Site

The following privacy policy(ies) apply to the third-party apps as listed:

Quick-App

The Loan Post, Inc. dba LendingWise (the “Company”) is committed to maintaining robust privacy protections for its users.  Our Privacy Policy (“Privacy Policy”) is designed to help you understand how we collect, use and safeguard the information you provide to us and to assist you in making informed decisions when using our Service.  

For purposes of this Agreement, “Site” refers to the Company’s website, which can be accessed at lendingwise.com or theloanpost.com

“Service” refers to the Company’s services accessed via the Site, in which users can manage their customer information via an online web application system

The terms “we,” “us,” and “our” refer to the Company.

“You” refers to you, as a user of our Site or our Service. 

By accessing our Site or our Service, you accept our Privacy Policy and Terms of Use, and you consent to our collection, storage, use and disclosure of your Personal Information as described in this Privacy Policy.

I. INFORMATION WE COLLECT

We collect “Non-Personal Information” and “Personal Information.” Non-Personal Information includes information that cannot be used to personally identify you, such as anonymous usage data, general demographic information we may collect, referring/exit pages and URLs, platform types, preferences you submit and preferences that are generated based on the data you submit and number of clicks. Personal Information includes information on your users and customers  including email, date of birth, SSN, addresses, and more PCI related data which you submit during the loan creation process within the application. 

  1.    Information collected via Technology

To activate the Service you do not need to submit any Personal Information other than your email address. To use the Service thereafter, you do not need to submit further Personal Information on yourself or your customers. However, in an effort to improve the quality of the Service, we track information provided to us by your browser or by our software application when you view or use the Service, such as the website you came from (known as the “referring URL”), the type of browser you use, the device from which you connected to the Service, the time and date of access, and other information that does not personally identify you. We track this information using cookies, or small text files which include an anonymous unique identifier. Cookies are sent to a user’s browser from our servers and are stored on the user’s computer hard drive. Sending a cookie to a user’s browser enables us to collect Non-Personal information about that user and keep a record of the user’s preferences when utilizing our services, both on an individual and aggregate basis. For example, the Company may use cookies to collect the following information:

  •   pages that you visited or features you may have utilized

The Company may use both persistent and session cookies; persistent cookies remain on your computer after you close your session and until you delete them, while session cookies expire when you close your browser. 

In addition to the information provided automatically by your browser when you visit the Site, to become a subscriber to the Service you will need to create a personal profile. You can create a profile by registering with the Service and entering your email address, and creating a user name and a password. By registering, you are authorizing us to collect, store and use your email address in accordance with this Privacy Policy.

The Site and the Service are not directed to anyone under the age of 13. The Site does not knowingly collect or solicit information from anyone under the age of 13, or allow anyone under the age of 13 to sign up for the Service. In the event that we learn that we have gathered personal information from anyone under the age of 13 without the consent of a parent or guardian, we will delete that information as soon as possible. If you believe we have collected such information, please contact us at privacy@lendingwise.com.

II. HOW WE USE AND SHARE INFORMATION

Personal Information:

Except as otherwise stated in this Privacy Policy, we do not sell, trade, rent or otherwise share for marketing purposes your Personal Information with third parties without your consent. We do share Personal Information with vendors who are performing services for the Company, such as the servers for our email communications who are provided access to user’s email address for purposes of sending emails from us. Those vendors use your Personal Information only at our direction and in accordance with our Privacy Policy.

In general, the Personal Information you provide to us is used to help us communicate with you. For example, we use Personal Information to contact users in response to questions, solicit feedback from users, provide technical support, and inform users about promotional offers.

We may share Personal Information with outside parties if we have a good-faith belief that access, use, preservation or disclosure of the information is reasonably necessary to meet any applicable legal process or enforceable governmental request; to enforce applicable Terms of Service, including investigation of potential violations; address fraud, security or technical concerns; or to protect against harm to the rights, property, or safety of our users or the public as required or permitted by law. 

Non-Personal Information:

In general, we use Non-Personal Information to help us improve the Service and customize the user experience. We also aggregate Non-Personal Information in order to track trends and analyze use patterns on the Site. This Privacy Policy does not limit in any way our use or disclosure of Non-Personal Information and we reserve the right to use and disclose such Non-Personal Information to our partners, advertisers and other third parties at our discretion. We may use your logo, company name, contact info on social media to announce an affiliate relationship with LendingWise, which creates public awareness for both parties. 

In the event we undergo a business transaction such as a merger, acquisition by another company, or sale of all or a portion of our assets, your Personal Information may be among the assets transferred. You acknowledge and consent that such transfers may occur and are permitted by this Privacy Policy, and that any acquirer of our assets may continue to process your Personal Information as set forth in this Privacy Policy. If our information practices change at any time in the future, we will post the policy changes to the Site so that you may opt out of the new information practices. We suggest that you check the Site periodically if you are concerned about how your information is used. 

III. HOW WE PROTECT INFORMATION

We implement security measures designed to protect your information from unauthorized access. Your account is protected by your account password and we urge you to take steps to keep your personal information safe by not disclosing your password and by logging out of your account after each use. We further protect your information from potential security breaches by implementing certain technological security measures including encryption, firewalls and secure socket layer technology. However, these measures do not guarantee that your information will not be accessed, disclosed, altered or destroyed by breach of such firewalls and secure server software. By using our Service, you acknowledge that you understand and agree to assume these risks.

IV. YOUR RIGHTS REGARDING THE USE OF YOUR PERSONAL INFORMATION

You have the right at any time to prevent us from contacting you for marketing purposes.  When we send a promotional communication to a user, the user can opt out of further promotional communications by following the unsubscribe instructions provided in each promotional e-mail. You can also indicate that you do not wish to receive marketing communications from us in the Unsubscribe link within an email or notify us at unsubscribe@lendingwise.com

V. LINKS TO OTHER WEBSITES

As part of the Service, we may provide links to or compatibility with other websites or applications. However, we are not responsible for the privacy practices employed by those websites or the information or content they contain. This Privacy Policy applies solely to information collected by us through the Site and the Service. Therefore, this Privacy Policy does not apply to your use of a third party website accessed by selecting a link on our Site or via our Service. To the extent that you access or use the Service through or on another website or application, then the privacy policy of that other website or application will apply to your access or use of that site or application. We encourage our users to read the privacy statements of other websites before proceeding to use them.

VI. CHANGES TO OUR PRIVACY POLICY

The Company reserves the right to change this policy and our Terms of Service at any time.  We will notify you of significant changes to our Privacy Policy by sending a notice to the primary email address specified in your account or by placing a prominent notice on our site. Significant changes will go into effect 30 days following such notification. Non-material changes or clarifications will take effect immediately. You should periodically check the Site and this privacy page for updates.

VII. CONTACT US

If you have any questions regarding this Privacy Policy or the practices of this Site, please contact us by sending an email to privacy@lendingwise.com

Last Updated: This section of our Privacy Policy was last updated in August 2020.

Online Chat Service

The Privacy program of Twilio Inc. and its group companies (‘Twilio’, ‘we’ or ‘our’) is built on our Binding Corporate Rules ('BCRs'), which serve as our code of conduct that governs our global processing of personal data. 

In order to provide products and services to our customers and conduct our day-to-day business operations, including the operation of our websites, we collect, use and share, or otherwise process personal data about our customers, our customers’ authorized users ('end users') and their customers, our website visitors and business contacts. 

Personal data is any information that directly identifies you, such as your name and email address, or that indirectly identifies you, for example a phone number or device identifier.

The personal data we may collect and process about you varies depending on our relationship with you. We may have a direct relationship with you because you have set up an account or consented to receive marketing communications from us, or we may have an indirect relationship with you via your relationship with one of our customers; for example you may be their employee or their customer.

We take privacy, data protection and our legal obligations very seriously. We are committed to being transparent with you about how we use personal data. This Privacy Notice aims to describe our privacy practices in a clear, accessible and easy to understand way and to let you know how you can exercise your rights in relation to your data. 

This Privacy Notice applies where Twilio processes personal data as a data controller, in connection with the products and services we provide to our customers (“Services”) and the operation of our business, including our websites.  As a data controller, we determine the purpose (why) and means (how) of personal data processing and are ultimately responsible for the correct handling of your data, in accordance with applicable law. 

This Notice does not apply to the Personal Data we process in relation to job applicants. This is covered by our Global Applicant Privacy Notice.

We also process personal data for most of our Services as a data processor. As a data processor, we process personal data related to our customers' employees, end users and customers on behalf of our customers to provide Services to them in accordance with their instructions. These instructions are set out in our customer agreements, Data Protection Addendum, service specific terms or through a customer's use or configuration of a product feature.  You should contact these organizations directly for information about how they process your personal data as a data controller and to exercise your rights in relation to that data.

Contents of our Privacy Notice

Personal Data We Process

How We Process Personal Data

How We Disclose Personal Data

International Data Transfers

How We Secure Personal Data

How Long We Retain Personal Data

Your Rights and Choices About Your Data

How To Exercise Your Rights and Choices

How We Use Cookies and Other Tracking Technologies

Children

Automated Decision-Making

How to Contact Us

Changes to Our Privacy Notice

Twilio Product Privacy

Personal Data We Process

The personal data we collect about you depends on your relationship with us and the purposes for which we process that personal data. The following describes the types of personal data that we collected and disclosed for a business purpose in the preceding 12 months.

Personal Data You Share With Us Directly

Contact Information - When you sign up for a Twilio, Sendgrid or Segment account and use any of our products and services, request product information, ask for a call from our sales team, or participate in events, we ask you to provide us with your name, company name, business address, phone number, email address and other contact information. We also ask you to create a password and name your account (or accounts, if you have more than one). 

Customer Account Data - We process certain personal data to manage our relationship with you and administer you or your company’s account. This includes purchase history, names or contact information of individuals authorized to manage the Twilio account on behalf of our customer to set up, access and manage billing. We also collect personal data required to administer use of your account and the Services, and information to allow us to verify your identity for Know Your Customer or other identity verification purposes.

Customer Content - We receive and store the content of communications received from you or our customers and other personal data uploaded to the Services or generated for our customers’ use as part of the Services, which we may be authorized by you or our customer to use, where necessary for specific legitimate business purposes and in accordance with applicable law.

Marketing and Contact Preferences - We use information about how you would like to be contacted and choices you have made to send you marketing communications.

Payment Information - In connection with products and services you pay for, we ask you to provide our payment processor with your payment method information like a credit card or your Paypal account and your billing address. Our payment processor, acting on our behalf, gathers this so we can bill you for your use of our Services. Our payment processor will share your billing address with Twilio for this purpose.

Personalization Details - Some of our products, such as our short code service, may require you to complete an application form by providing details about your or your company’s  intended use of the product to determine eligibility for these products.

Professional Information - The information we process about you with respect to your employment or profession, including company, job title, email address, phone number and online business networking profile.

Subscriber Records - For some of our communications products, we may also obtain proof of identity from you or our customer that includes a proof of address, name, physical address, or other identification information. For example, to use our Trust Hub or to obtain a phone number in certain countries, local law may require us to have a physical service address on file for the individual who will be using that Twilio number, whether that’s you or our customer's end user. 

Support and Feedback - When you interact with us on our websites (including via our Help Center Assistant), through our AI chatbot, over the phone or via email, we process the phone number or email address that you use, the content of your interaction and the feedback you provide about our services. You may also provide us with feedback about our Services in surveys and questionnaires. We will let you know when a call may be recorded, in accordance with applicable law.

Personal Data We Generate or Collect Automatically

Communications Usage Data - When you or our customers use Twilio communications products, we collect electronic communications metadata, such as phone numbers and routing information, the source and destination of a communication, location of the device generated in the context of delivering the communication, date, time, duration and type of communication, status of the message, error data and traffic records.

Device Information and IP Addresses - When you use our account portal, we collect your IP address and device information through tracking technologies like cookies, web beacons, pixels, and similar technologies. We also collect IP addresses when you make requests to our APIs and in our server logs. Additionally, we collect information about your device, such as your computer or mobile device operating system type and version number, manufacturer and model, browser type, screen resolution, unique identifiers, and general location information such as city or town when you use our account portal. We do not collect precise geolocation information.

Online Activity Information - When you visit Twilio websites, including our web forms, we use tracking technologies such as cookies, web beacons, and pixels to collect the following data: your device and browser, time zone setting, web pages visited, products you view or search for, page response times, download errors, length of visits to certain pages, page interaction information, IP address. 

Security Identifiers or SIDs - When you sign up for an account with Twilio, we’ll automatically assign you and each of your accounts a unique security ID and generate an API token for each account. We keep a record of these credentials so we know it is you making the requests when your application makes requests to our API using these credentials.

Customer Proprietary Network Information - When you use certain US voice-based communications services, Twilio collects information associated with your service usage. This includes information such as the number of phone calls, call destinations, call locations, type, and service configuration, and is known as Customer Proprietary Network Information (CPNI). CPNI does not include information such as your name, address, phone number, or the content of phone calls. We use CPNI to market Twilio-related products or services to which you are not already subscribed unless you have exercised your right to opt out. For information about your CPNI choices, see the section “Your Rights and Choices About Your Data” below.

Personal Data Collected From Other Sources

Add-On Service Data - In the event you purchase our services through one of our Add-On Partners, they may share your personal data with us to fulfill their contractual obligations. Add-On Partners may share your personal data in the form of leads when you download Twilio content on the Add-On Partner’s website or you participate in events and webinars of which Twilio is a sponsor.

Professional Data - We collect certain personal data such as employment or professional information from sources other than you. We may combine this data with other personal data that you share with us. 

Publicly-Available Sources - We may also use publicly-available information about you that we have gathered through services like LinkedIn, or we may obtain information about you or your company from third party providers, such as your industry, the size of your company, and your company’s website URL. 

Social Media Data - Social media service providers such as Google, LinkedIn, and Meta may provide us with information about you, in accordance with your privacy settings on those sites. 

Telecommunication Data - We receive communication-related data from telecommunications operators, aggregators and carriers that may include phone type, carrier history, SIM status and history, city and/or country where phone was first registered, contract and account type, IP address city and/or country and a validation result of personal data provided by our customer and whether it matches data held by the carrier.

How We Process Personal Data

The purposes for which we process personal depends on your relationship with us. We only use personal data that is necessary to fulfill the specified purposes listed below as applicable to you and in accordance with applicable data protection law. 

Purpose

Personal Data Processed

Legal Basis for Processing


Creating and managing accounts, including verification of the identity of our customer’s end user for Know-Your-Customer (KYC) or identity verification purposes.

Add-On Service Data
Contact Information 
Customer Account Data
Online Activity Information
Payment Information
Professional Information
Subscriber Records

 

Legitimate Interest
Legal Obligation


Carrying out Twilio’s core business operations, such as account administration, accounting, auditing and compliance, business analytics, filing taxes, finance, forecasting, consolidated management and reporting, product strategy and revenue planning.

Add-On Service Data
Professional Information
Customer Account Data
Support and Feedback
Customer Content
Communications Usage Data
Payment Information
Publicly Available Sources
Social Media Data

 

Legitimate Interest


Billing and relationship management.

Add-On Service Data
Contact Information
Communications Usage Data 
Payment Information

Legitimate Interest


Providing, optimizing and maintaining our services, platform, including debugging and troubleshooting.

Add-On Service Data
Subscriber Records
Online Activity Information
Communications Usage Data
Customer Content
Device Information

Legitimate Interest


Preventing, detecting and investigating security incidents and managing the security of Twilio’s platform, services, websites and accounts.

Add-On Service Data
Communications Usage Data
Customer Content
Device Information
Online Activity Information 
Payment Information
Subscriber Records
Telecommunication Data
Contact Information

Legitimate Interest
Legal Obligation


Determining eligibility for certain products.

Add-On Service Data
Contact Information
Payment Information
Personalization Details
Subscriber Records

Legitimate Interest


For routing and connectivity purposes to send messages on behalf of our customers, including transmitting, distributing and exchanging communications using phone numbers, either through the public switched telephone network or other communications networks.

Add-On Service Data
Communications Usage Data

Legitimate Interest


Providing customer support, including responding to your requests and communicating with you about your account and use of the services, including suspicious activity or security alerts. 

Contact Information
Customer Content
Communications Usage Data
Professional Information
Support and Feedback
Other personal data provided by requestor

Legitimate interest

 


Sending important notifications about our products and services.

Add-On Service Data
Contact Information
Customer Account Data

Legitimate Interest


Complying with legal and regulatory obligations, telecommunication provider requirements and communications industry codes of practice.

Subscriber Records
Customer Content
Communications Usage Data

Legal Obligation
Legitimate Interest


Sending marketing communications in accordance with your marketing preferences.

Add-On Service Data
Contact Information
Marketing and Contact Preferences 
Professional Data
Publicly Available Sources
Social Media Data

Legitimate Interest
Consent


Analyzing your interest in our products and delivering marketing campaigns that are relevant to you.

Add-On Service Data
Contact Information
Marketing and Contact Preferences 
Professional Data
Publicly Available Sources
Social Media Data

Legitimate Interest
Consent


Deploying cookies and other tracking technologies in accordance with your online settings.

Add-On Service Data
Contact Information
Marketing and Contact Preferences 
Professional Data
Social Media Data

Legitimate Interest
Consent


Understanding how visitors navigate our websites, and tracking and optimizing the performance of our advertising activities.

Device Information
Online Activity Information
Publicly Available Sources
Social Media Data

Legitimate Interest


Understanding how customers are using our platform and improving the website navigation experience.

Add-On Service Data
Contact Information
Marketing and Contact Preferences 
Online Activity Information
Professional Data

Legitimate Interest
Consent


Conducting questionnaires and surveys to improve our products and provide training to our employees.

Add-On Service Data
Contact Information
Customer Account Data
Marketing and Contact Preferences 
Personalization Details
Professional Data
Support and Feedback

Legitimate Interest
Consent


Managing your participation in our events and webinars and granting you access to whitepapers and on-demand resources.

Add-On Service Data
Contact Information
Customer Account Data
Marketing and Contact Preferences 
Professional Data
Support and Feedback

Legitimate Interest
Consent



Collecting sales insights and performing lead scoring.

Contact Information
Professional Data
Publicly Available Sources
Social Media Data

Legitimate Interest


Developing our business by updating, expanding, and analyzing our customer relationship records.

Contact Information
Marketing and Contact Preferences 
Payment Information
Professional Data
Publicly Available Sources
Social Media Data

Legitimate Interest
Consent


Identifying potential job candidates.

Publicly Available Sources
Social Media Data

Legitimate Interest


Developing or improving our products and services, including anonymizing, de-identifying, pseudonymizing and aggregating personal data for this purpose.

Communications Usage Data
Customer Content
Personalization Details
Support and Feedback

Legitimate Interest


As otherwise authorized by you or our customer in Service specific terms or through your or our customer’s use and configuration of features in a product.

Data used will vary based on customer authorization

Legitimate Interest


Protecting the health and safety of our employees, visitors and our properties.

Contact Information
Customer Account Data

 

Legal Obligation


Protecting the rights and freedoms of individuals, meeting legal obligations, including complying with valid court orders, disclosure requests, subpoenas, and other appropriate legal mechanisms and complying with telecommunications providers requirements and communications industry codes of conduct.

Add-On Service Data
Communications Usage Data
Customer Content
Device Information
Online Activity Information 
Marketing and Contact Preferences 
Payment Information
Subscriber Records
Telecommunication Data

Legal Obligation
Legitimate Interest


How We Disclose Personal Data

We disclose personal data to third parties in limited circumstances in order to provide the Services and to otherwise run our business. Below are the different scenarios under which we may disclose your data to third parties.

Telecommunications Service Providers

Twilio’s communications products provide an easier way for developers to build applications that make use of the publicly switched telephone network (PSTN) to send communications. Therefore, we engage with a global network of telecommunications operators, aggregators, carriers and other communication service providers (collectively, “telecommunications service providers”) as necessary to route and connect those communications from the sender to the intended recipient. How telecommunications service providers handle this data is generally determined by their own policies and local regulations.

Where telecommunications service providers transmit the content of a communication, they function neither as data controllers nor data processors, instead they act simply as a conduit to transmit communication content. In the event telecommunications services providers process any personal data for their own purposes such as communications metadata required to transmit the message, or for billing or fraud prevention purposes, they also act as data controllers.

We may have to share Subscriber Records with local government authorities or local telecommunications carriers that provide connectivity services. However, we don’t share subscriber records for purposes other than this, and we treat these records with our highest confidentiality.

Other Communications Service Providers

For proper routing and connectivity, Twilio also enables sending or receiving communications through communications service providers that do not use the PSTN, these are referred to as Over-the-Top (OTT) communications service providers. If you or our customer chooses to use Twilio to send or receive communications by way of these providers, Twilio will disclose communications content and other data to these providers as necessary to route and connect those communications from the sender to the intended recipient. How those OTT communications service providers, as data controllers, handle this data is determined by their own policies and local regulations.

Third Party Service Providers

Twilio engages third-party vendors and service providers to carry out certain personal data processing functions on our behalf. These providers are limited to only accessing or using personal data to provide services to us and must provide reasonable assurances they will appropriately safeguard the data.

Add-On Partners 

Add-ons are additional features, functionality or services offered by Twilio’s Add-on partners (who are third parties not affiliated with Twilio). Twilio may make Add-ons available through the Twilio Marketplace. Some Add-ons may need to access or collect some of your information, including personal data. If you choose to use an Add-on, Twilio will disclose your information to the Add-on partner so you can use the Add-on. Twilio does not control Add-on partners’ use of your information and their use of your information will be in accordance with their own policies. If you do not want your information to be disclosed to an Add-on partner, then you should not use the Add-on.

Twilio Group Members

We may disclose your personal data among Twilio Group Members. Twilio Group Members will only use the information as described in this Privacy Notice. Twilio Group Members are listed in Appendix 1 in our Binding Corporate Rules.

Compliance with Legal Obligations

We may disclose your personal data to a third party if:

  • we reasonably believe that disclosure is compelled by applicable law, regulation, legal process, or a government request (including to meet national security, emergency services, or law enforcement requirements);
  • to enforce our agreements and policies;
  •  to protect the security or integrity of our services and products;

  • to protect ourselves, our other customers, or the public from harm or illegal activities; or

  • to respond to an emergency which we believe in good faith requires us to disclose data to assist in preventing a death or serious bodily injury. 

For more details, please see the procedure laid out in our Binding Corporate Rules.

If Twilio is required by law to disclose any personal data about you, we will notify you of the disclosure requirement to the extent legally permitted and where Twilio determines such disclosure will not interfere with an ongoing investigation. Further, we object to information requests we do not believe were issued properly.

Business Transfers

In connection with a corporate sale, merger, reorganization, dissolution or similar event, personal data about you may be part of the assets transferred or disclosed in connection with the due diligence for any such transaction. If required by law, we will notify you prior to such a transfer and provide you with information about any choices you may have with respect to your personal data.

Aggregated, Anonymized or De-identified Data

Aggregated, anonymized and de-identified data may be derived by Twilio from your personal data but is generally not considered personal data under data protection law as this data does not directly or indirectly reveal your identity. We may use and disclose de-identified, anonymized or aggregated data to third parties. We do not disaggregate or reidentify de-identified data.

International Data Transfers

As a global organization, we may need to transfer your personal data to Twilio affiliates, contractors, service providers and third parties in various countries and jurisdictions around the world. When we transfer your personal data, we take care to use appropriate safeguards to ensure your personal data remains protected.

Data Transfers to the United States and Elsewhere 

When you use our account portal, or our other products and services, your personal data may be transferred to the United States, where our primary processing facilities are located, and possibly to other countries where we or our service providers operate. 

Safeguards for Data Transfers

Twilio employs appropriate safeguards for cross-border transfers of personal data, as required by applicable local law. 

EU-U.S. Data Privacy Framework (“EU-U.S. DPF”), the UK Extension to the EU-U.S. DPF and Swiss-U.S. Data Privacy Framework (“Swiss-U.S. DPF“)

As set forth by the U.S. Department of Commerce Twilio is officially certified under the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF and Swiss-U.S. DPF and relies on these certifications as its primary transfer mechanisms for transfers of personal data from the EU and Switzerland to the U.S. Twilio adheres to the DPF principles for onward transfers of personal data to third parties and remains liable for damages caused by third parties under the DPF unless Twilio did not cause the event giving rise to damage. The U.S. Federal Trade Commission has jurisdiction over Twilio’s compliance with the DPF. To learn more about the DPF Program, and to view our certifications, please visit the DPF website.

Twilio’s Binding Corporate Rules

Twilio has established and implemented a set of Binding Corporate Rules for internal transfers of personal data between Twilio Group Members in the European Union and Twilio Group Members elsewhere as a data controller. Twilio’s BCRs have been approved by European Union Data Protection Authorities and are a commitment by Twilio to adequately protect personal data that Twilio processes regardless of where the information resides. You can access Twilio’s BCR-Controller Policy here.

Where neither the EU-U.S. DPF, the UK extension to the EU-U.S. DPF, Swiss-EU DPF nor Twilio's BCRs apply, we rely instead on other data transfer mechanisms to transfer personal data outside the EEA, the UK, and Switzerland, such as Standard Contractual Clauses and the UK’s International Data Transfer Agreement.

APEC CBPR & PRP Participation

Twilio’s privacy practices, described in this Privacy Notice, comply with the APEC Cross Border Privacy Rules (“CBPR”) and Privacy Recognition for Processors (“PRP”) Systems. The APEC, CBPR and PRP systems provide a framework for organizations to ensure protection of personal data transferred among participating APEC economies. More information about the APEC framework can be found here.

How We Secure Personal Data

To protect personal data from loss, or unauthorized use, access or disclosure, Twilio uses reasonable and appropriate security measures designed to protect the security of your personal data both online and offline. These measures vary based on the sensitivity of the personal data we collect, process and store and the current state of technology.  All systems used to support our business are governed by Twilio’s Information Security Policy and Standards which are built on industry standards and best practices such as the ISO 27001 and NIST standards. More information about our security measures can be found in our Security Overview.

How Long We Retain Personal Data

We endeavor not to retain personal data in a form which permits identification of individuals for longer than is necessary for the purposes for which that data is processed. We retain personal data in accordance with Twilio's record retention policies and guidelines as revised and updated from time to time.

Twilio will store your Customer Account Data as long as needed to provide you or our customer with the Services and to operate our business. If you ask Twilio to delete specific personal data from your Customer Account Data (see ‘Your Rights and Choices About Your Data’ below), we will honor this request, unless deleting that information prevents us from carrying out necessary business functions, such as billing for our services, calculating taxes, or conducting required audits.

Your Rights and Choices About Your Data

Depending on the data protection laws applicable to you, you may have the following rights in relation to your personal data that we process as a data controller:

  • that we provide details about the categories of personal data that we collect about you, including how we collect and share it;

  • that we provide you access to, and a copy of, the personal data we collect about you;

  • that we update or correct any inaccurate personal data we have about you; 

  • that we delete the personal data we have about you;

  • that we restrict processing of personal data about you; 

  • that we provide you with your personal data in a structured, commonly used format and to transmit that information to another controller, and where feasible, transmit the information directly;

  • that we provide you with the right to object to the processing of personal data, including profiling;

  • that we provide you with a free, easy mechanism to object to use of your personal information for direct marketing purposes;

  • that you not be subject to a decision based solely on automated processing, including profiling, that produces legal effects or similarly affects your individual rights; 

  • to withdraw your consent; and 

  • to complain to a competent supervisory authority and/or to commence proceedings in a court of competent jurisdiction.

Twilio will honor your rights subject to limitations in certain situations, such as where Twilio can demonstrate that it has a legal requirement or legitimate interest to process your data or can legitimately apply an exemption to the exercise of a right under applicable law. More information about these rights can be found in our Binding Corporate Rules Controller Policy Rule 10.

If you are a US resident interested in what personal data we have disclosed lately for our business purposes, here’s a list:

  • Identifiers

  • Commercial information

  • Financial information

  • Internet or other electronic activity information

  • Geolocation information

  • Professional or employment information

By “our business purposes,” we mean that we only disclose personal data as we describe in the section "How We Disclose Personal Data" above.  Also, as described in the “How We Use Cookies & Other Tracking technologies” section below, we process personal data to deliver ads targeted to your interests on other companies’ websites and mobile apps. Some of these activities may be considered “sharing” or “targeted advertising” under certain laws. You have the right to opt out of the processing of your personal data for targeted advertising, and can do so by adjusting your preferences using our Cookie Preferences Tool located on the bottom right of the Twilio website you are visiting. Any choices concerning cookies are browser and/or device specific. If you clear your cookies from your browser on any of your devices, your choices will need to be reset.  

You also have the right to request the restriction of processing of your sensitive personal information. Where applicable, the respective sensitive personal information will be marked accordingly and may only be processed by us for certain purposes. At the current time, however, we do not use or disclose sensitive personal information for purposes other than those expressed in this Privacy Notice or otherwise permitted by applicable law, and these uses cannot be limited under California law.

You may have additional rights under our Binding Corporate Rules in the EU. For example, where you believe your personal data has been transferred by an EU-based Twilio company to our US headquarters and processed by the US company in breach of the Binding Corporate Rules, you may have a right to:

  • Lodge a complaint with the Twilio company that transferred your data outside Europe;

  • Lodge a complaint with the supervisory authority in the same country as the Twilio company that transferred your data outside Europe; and

  • Bring a court action against the Twilio company that transferred your data outside Europe.

If Twilio processes your personal data as a data processor on behalf of a customer, we will either direct you to contact our customer to exercise your rights.

How To Exercise Your Rights and Choices

The following sections provide information about how to exercise certain rights in relation to your personal data. To exercise any other rights, please contact us at privacy@twilio.com.

Accessing and Controlling Account Data

As part of the services we provide to our customers, we provide you with a number of self-service features at no additional cost within the Twilio console itself, including the ability to access your data, update any incorrect data, download a copy of your data, delete your data, or restrict the use of your data. You can make various choices about your Customer Account Data through the account portal when you log into your Twilio account or through the marketing preferences center. Any other requests about your data you cannot make through these self-service tools, you can request by contacting Customer Support.

Closing Your Account and Deletion

To request closure or deletion of your Twilio account, you can contact Customer Support. Please be aware that closure or deletion of your Twilio account will result in you permanently losing access to your account and the data in the account. After closure of your account, certain information associated with your account may remain on Twilio’s servers in an aggregated form that does not identify you. Similarly, after you close your account, we will retain data — including personal data — associated with your account that we are required to maintain for legal purposes or for necessary business operations (see “How Long We Retain Personal  Data” section above) until it’s no longer needed.

In some instances, we will need to verify your identity before honoring your request. We will generally verify your identity by asking you to provide personal data related to your recent interactions with us. Thereafter, we will process your request and inform you of any decisions we have made about your request.  Additionally, you may exercise your privacy rights through an authorized agent. If we receive your request from an authorized agent, we may ask for evidence that you have provided such agent with a power of attorney or that the agent otherwise has valid written authority to submit requests to exercise rights on your behalf. If you are an authorized agent seeking to make a request, please contact us at privacy@twilio.com.

We won’t discriminate against you or change the price of our services if you make a request, but if you ask us to delete your data, it may affect your ability to use our Services.

Customer Proprietary Network Information (CPNI)

As an individual Twilio account holder or as an authorized representative of a Twilio customer in the US, you have the right to restrict Twilio’s use of CPNI. To opt-out of the use of CPNI data related to your Twilio account to market other Twilio products and services based on your usage of our products, click here.  Please note that, if you have subscribed for the services on behalf of an organization, the CPNI relates to the service usage by that organization and not you individually. Opting-out of the use of CPNI for marketing will not unsubscribe you from other types of marketing contacts from Twilio and will not affect the status of the services you currently have with us. Your approval or opt-out of the use of your CPNI outside of the services to which you are already subscribed is valid until you affirmatively revoke or limit such approval.

Communication Preferences

You can opt out of receiving marketing communications from us at any time through your marketing preferences page by clicking the “unsubscribe” link at the bottom of any marketing email you receive from Twilio. You can also update your communication preferences using our online form or contact our Customer Support Team to communicate your choice to opt out. Please note that it may take up to three days to remove your contact information from our marketing communications lists, so you may receive correspondence from us for a short time after you make your request. You will not be able to opt out of service emails from us, such as password reset emails, billing emails, or notifications of updates to our terms, unless you deactivate your account.

How We Use Cookies and Other Tracking Technologies

Twilio uses common information gathering tools such as cookies, web beacons, pixels and other similar tracking technologies to automatically collect information as you navigate our websites, your account or when you interact with emails we send to you.

Cookies

A cookie is a small text file that is stored in your browser or elsewhere on your hard drive. Cookies allow Twilio to identify your device as you navigate our websites or your account. This makes navigating and interacting with our websites or your account more efficient, easy and meaningful for you.

Twilio uses both session and persistent cookies. Session cookies are cookies that disappear from your computer or browser when you turn off your computer. Persistent cookies stay on your computer even after you’ve turned it off. 

The cookies on our websites fall into three categories: (1) Required Cookies, (2) Functional Cookies, and (3) Advertising Cookies. To learn more about each category of cookie, you can visit our cookie consent tool by clicking on the “Cookie Preferences” link on the bottom right of the Twilio website you are visiting.

Manage Your Cookie Preferences

Twilio uses a cookie consent tool, which you can utilize to customize your cookie preferences. When you visit our website for the first time, a cookie consent banner will pop up and ask you to customize your cookie preferences. If you decide to change your preferences at a later date, you can easily do so by clicking on the “Cookie Preferences” link on the bottom right of the Twilio website you are visiting. Please note that Required Cookies cannot be disabled and if you decide to opt-out of Functional Cookies, certain functionality of our websites or your account may be impacted.  Any choices concerning cookies are browser and/or device specific. If you clear your cookies from your browser on any of your devices, your choices will need to be reset.

Manage Cookies Using Your Browser

In addition to using our Cookie Consent tool, you can use your browser settings to opt out of Functional Cookies and Advertising Cookies. For more information on how to do that, click here. To manage privacy and storage settings for cookies, click here.

Universal Opt-Out Mechanisms

Global Privacy Control (GPC) and Do Not Track (DNT) are tools that you can use to inform websites of your privacy preferences in regard to ad trackers. To set up GPC, you can visit the Global Privacy Control page. To set DNT, you can visit the All About DNT page. Please note that this may impact the functionality of our websites or your account.

Opt Out of Advertising Cookies

To learn more about how to opt out of targeting and advertising cookies, you can go to the Your Online Choices page, the Network Advertising Initiative page, and the Digital Advertising Alliance’s Consumer Choice page. These opt-out tools are provided by third parties, not Twilio. We do not control or operate these tools or the choices that advertisers and others provide through these tools.

Web Beacons

Twilio also uses web beacons to gather data about your use of our websites, your account, and how you interact with emails we have sent to you. Web beacons are clear electronic images that can recognize certain types of data on your computer, like when you view a particular website tied to the web beacon, and a description of a website tied to the web beacon. Additionally, we may put web beacons in marketing emails that notify us when you click on a link in the email that directs you to a Twilio website.

Children

Our products and services are not directed to or intended to be used by children (under the age of 13 in the US and UK, or 16 in the EEA). We do not knowingly permit children to sign up for a Twilio account. If we become aware that a child has signed up for an account, we will take reasonable steps to deactivate the account and remove their personal data from our records as quickly as possible. If you believe an underage person has signed up for a Twilio account, please contact us at privacy@twilio.com with the subject line “Children”.

Automated Decision Making

Automated decision-making occurs when an electronic system uses personal data to make a decision about you, without human involvement. Twilio uses automated decision-making leveraging a variety of signals derived from records we collect or obtain from third party vendors, to help monitor, identify, and suspend accounts sending spam or engaging in other abusive or fraudulent activity. If your account is suspended under these circumstances you will be notified of the suspension and given an opportunity to request human review of the suspension decision.

We may rely on other automated decision-making where: 

  • We have notified you of the decision and provided you with the opportunity to request a human review of the decision

  • It is necessary to perform a contract with you and appropriate measures are in place to safeguard your rights

  • We have your consent and we have put in place appropriate measures to safeguard your rights

How to Contact Us

If you have any questions, concerns or complaints about this Privacy Notice or our data protection practices, please do not hesitate to contact our Data Protection Officer by emailing us at privacy@twilio.com or by writing to us at any of the following addresses:

Worldwide Headquarters 

Twilio Inc. 

101 Spear Street, 5th Floor

San Francisco CA 94105

 

EEA Headquarters 

Twilio Ireland Limited

70 Sir John Rogerson's Quay

Dublin 2

D02 R296, Ireland

Complaints

We will endeavor to resolve questions, concerns or complaints you raise with us in accordance with our Complaints Handling Procedure. In the unlikely event that we are unable to resolve your concern, you can find information about your options to seek assistance through independent dispute resolution mechanisms or complaints to your local data protection authority here.

In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Twilio commits to refer unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF to JAMS, an alternative dispute resolution provider based in the United States, the European Union, the United Kingdom, and/or Switzerland. If you do not receive timely acknowledgment of your DPF Principles-related complaint from us, or if we have not addressed your DPF Principles-related complaint to your satisfaction, please visit https://www.jamsadr.com/DPF-Dispute-Resolution for more information or to file a complaint. The services of JAMS are provided at no cost to you.

You have the possibility, under certain conditions, to invoke binding arbitration for complaints regarding DPF compliance that are not resolved by any of the other DPF mechanisms. You can find more information in the DPF ANNEX-I-introduction.

If your question or complaint relates to personal data we process as a data processor on behalf of a customer, we will direct you to contact our customer to address your question or complaint.

Changes to Our Privacy Notice

We will periodically review this Privacy Notice and may change it to address legal, technical or business development requirements. When we change this Privacy Notice, the most current version will be available at https://www/twilio.com/legal/privacy with the date indicating when it was last updated. If we make material changes that affect your rights, we will provide you with advance notice, such as by posting a message in the Twilio console or sending an email to the address we have on file for you. We will comply with applicable law with respect to any changes we make to this Notice. We will also seek your consent to material changes, where required by applicable law.

Twilio Product Privacy

Twilio offers a range of industry-leading communications and customer data platform services to our customers. Depending on the Service, Twilio may be a data controller and data processor of personal data used to provide the Services.  

Twilio processes personal data (Communications Usage Data and Customer Content) for most of our Services as a data processor acting on the instruction of our customer and in accordance with the terms of our agreement with a customer, our Data Protection Addendum, and service specific terms. Our services provide customers with ways to control, access and secure their data.

We also offer customers the ability to store, delete, access, or exercise other choices about their personal data. The ability to make these choices depends on the Twilio product or service being used and how it is being used by a customer. Customers are referred to our API docs for each of our products and services, along with SendGrid’s documentation and Segment’s documentation to find more detailed information about managing personal data collected and stored in connection with their use of our products and services. We also provide an overview of our retention and deletion practices, including how to delete data you control in our support documentation. We provide information about the security measures we use to protect our customer’s data  in our Security Overview, and if you are located in a country that requires you to obtain information about our supplemental measures, you may read more about those measures here.

For some of the Services we also act as a data controller where disclosed and agreed to by our customer in the agreement, Data Protection Addendum, product specific terms or via the customers’ use and configuration of a product or feature.As a data controller, Twilio is responsible for the processing of the personal data.  

For more detail on our Services, please find information below or by visiting our products page.

Authy

The Authy service is our standalone two-factor authentication (2FA) service for desktop and mobile. The Authy apps generate one time passwords and push notifications that can be used as a part of a two-step verification process with your Authy-compatible accounts to add another layer of security. Authy’s 2FA can be used on its own or with applications that directly integrate with Authy’s 2-factor authentication API.

Due to the nature of the Authy service, Twilio collects the following additional personal data elements to other Twilio services:

Identifiers 

Once you open the Authy app, we ask you to provide us with a phone number to create your Authy account. We send a verification code to that phone number to be sure that the person creating the Authy account also has control over the phone number entered. This phone number is considered your “primary device,” and will be the identifier for your Authy account. We use that phone number to identify you, to provide you 2FA services, and to maintain logs for security and anti-fraud purposes. We also collect your email address, and we use it for identity verification and account recovery purposes. 

Device Information

When you download and open the Authy desktop or mobile app, we automatically collect information about the type of device you have downloaded the app on and your device identifier. We collect this to ensure we deliver the right version of the app for your device and so that we can provide appropriate follow up support as necessary. We also use your device information to ensure proper delivery of our service and to provide and deliver support and maintenance of the Authy app.

Login History and Authy Account History

When you use an Authy token to log into an account, whether the token was generated on the app or one sent to you via your phone number, we collect and keep information associated with your login activity including information like your IP address, what application you logged in to, that you logged in, and when. If you change your phone number or email associated with your Authy account, we will also keep a log of that. We collect this information to monitor for suspicious activity and also as another piece of information that could be used to verify your identity if we suspect your account may be compromised.

Geolocation information

If you have location services turned on, we collect your location based on your IP address. We use this information for anti-fraud purposes, to check for suspicious activity and as another piece of information we can use to verify your identity if we suspect your account may be compromised.

Frontline Services

To use the Frontline services, you must log in to the Frontline app using a third party account (through your Single Sign-On provider). The authentication of your login details is handled by that third party and we only collect the information you expressly agree to share with us at the time you give permission to link the Frontline app with the third party account. We only gather the information you and our customers give us access to, and we only use it for the purposes for which you and our customers have provided it to us. Please see the Frontline App Terms for specific details about your relationship with us.

SendGrid Services

The SendGrid services also collect additional data in the form of web beacons placed in the body of emails delivered using the SendGrid platform. This allows us to keep track of whether or not an email has been delivered, opened, clicked on, whether it bounced or was treated as spam. You can learn more about web beacons in the section titled “How We Use Cookies and Other Tracking Technologies” above.

Voice Intelligence

Voice Intelligence incorporates artificial intelligence and machine learning to transcribe and analyze voice calls into a structured format that allows our customers to drive their business processes. To translate voice calls into structured content, Twilio processes certain data as a controller, including personal data contained in voice calls disclosed to us by our customer through their use of the service.

This section of our Privacy Policy page was last updated November 12, 2024.

Back to Home