Bluefile (“Bluefile” or “we”) welcomes you. We provide you with our web and mobile application “Bluefile” (“App”, “Applications”, or “Bluefile”) under these Terms of Service.
This Privacy Notice describes which of your personal data Bluefile collects, how stores, processes, and uses it, and what happens when you use Bluefile.
We collect your personal data according to this Privacy Notice when you use the Applications.
We understand you care about your privacy, and we appreciate the trust you place in us. To justify that trust, we embed the latest data security standards, improve our awareness of privacy matters, and comply with the General Data Protection Regulation and other privacy laws.
Please note that we do not collect, track, or store any personal data over what we need to provide and improve our product and services, perform our marketing campaigns as described in this Privacy Notice, and comply with our legal obligations.
Table of Contents
- About Us
- About You
- Personal Data
- Data Sharing with Third Parties
- Security Measures
- Data Subjects Rights
- Privacy Notice Updates
Company: Bluefile LLC
Address: 30 N Gould St. Ste R, Sheridan, WY 82801
Support Email: email@example.com
Security Email: firstname.lastname@example.org
Privacy Email: email@example.com
When you use our Applications, you become our user (“User”).
Free User: User who uses the Applications for free.
Subscription User: User who subscribes to the professional plan.
Delegate User: Any user, registered or unregistered, who manages user information after being given permission by a Subscription User.
Please note! We do not knowingly process the personal data of Users under the age of 18. If you are such a User or you are a legal representative of such a User, please, contact us.
Sources of Data
We receive data when you visit our App and interact with it, depending on your actions in the App.
We may also, although we do not necessarily do so, receive data from third parties. It depends on your settings and the features you use.
Legal Basis for Processing
- performance of the contract — for the processing of personal data necessary for the negotiating on, conclusion, and performance of a contract with you;
- legal obligation — for the processing of data as required by applicable laws or if requested by a law enforcement agency, court, supervisory authority, or another state-authorized public body;
- legitimate interest — for the processing necessary for the development of our services, taking into consideration your interests, rights, and expectations;
- consent — for additional processing for specific purposes.
We collect technical data to optimize performance, debug issues, and enhance features while ensuring security and privacy in order to improve the overall user experience.
We may collect the IP address (process, code type, report version, accountsCache, local), Incident Identifier (path, parent process, exception type, oneTimeCodes), CrashReporterKey (timezone, date/time, exception codes, deviceUUID), Hardware model (version, ios/android version, crashed thread, deviceName) all for the smooth operation of the app, improvement of the app, and performance of the contract.
Account data refers to all Users. We collect this data to track and analyze transactions, provide personalized experiences, maintain transaction history, and improve user engagement.
Free User Data
We collect Free User personal data to register you within the App, add preferred cloud services, and provide our services.
Registration Process: Collection of full name, email, company, profession and preference settings. We collect this to register you and set the app to your preferences. Legal basis for this collection is performance of the contract.
Scanning of Documents: Collection of documents and their content. We collect this information as a part of our provisions of services. Legal basis for this collection is the performance of contract.
Email: Stored until requested by the user to be removed.
Documents and their content: Stored until removed by the user or a delegated user.
Preference settings: Stored until removed by the user.
Subscription User Data
We collect Subscription User personal data to register you within the App, add preferred cloud services and provide our services. We also collect payment data to facilitate secure transactions and manage subscription services. Collection of the data is done during the processes below:
Registration Process: Collection of full name, email, phone, profession, and preferences. This information is collected to become registered and structure the app to your personal preferences. The legal basis is performance of contract.
Scanning of the documents: Documents and their content. This is collected as a part of the provision of services. The legal basis is performance of contract.
Add cloud services: Collection of email, service you would like to add, and account data from the service. This information is to facilitate file sharing between the services. The legal basis is performance of contract.
Payment provision: Collection of email and payment details. This information is collected to facilitate payment for the subscription. The legal basis is performance of contract.
Email: stored until requested to be removed by user.
Documents and their content: Stored until requested to be removed by user.
Preference Settings: Stored until requested to be removed by user.
Payment details: Not stored. Only used upon subscription.
Data Received from Third Parties
Data Sharing from Third Parties
We use your personal data on the basis of the performance of the contract to provide services and communicate with the Users.
We share your data with the service providers (please, request Annex A. List of the processors to look through the list of service providers) and contractors to the extent necessary to provide services, technical and customer support, who, for example, help us:
- operate, develop, and improve the features and functionality of our App;
- provide you with their services;
- complete your payment transactions;
- fulfill your support requests;
- convert your files;
- communicate with you as described elsewhere in this Privacy Notice.
In addition, we have implemented organizational and technical measures to ensure the security of personal data during data transfer to third-party.
We can share your data on the following grounds: consent, compliance with the law, and performance of a contract.
Performance of a contract. We may transfer your data to our contractors and partners for contractual purposes.
Consent. We may transfer your personal data based on your explicit consent.
Compliance with the law. We may disclose your personal data to third parties to the extent that it is necessary:
- to comply with a government request, court order, or applicable law;
- to prevent unlawful use of our App or policies;
- to protect against claims of third parties;
- to help prevent or investigate fraud.
Transfer of personal data to third parties. We may transfer your personal data to third parties based on a data processing agreement, subject to the application of technical and organizational measures to protect your personal data. We may share data with certain companies, consultants, and contractors hired to provide certain services to us or on our behalf.
Please note! We will ask for your consent if the transfer of data is not part of the contract.
We systematically perform Data Protection Impact Assessments to ensure that we use an appropriate level of technical and organizational measures to prevent accidental or unlawful destruction, loss, alteration, and unauthorized disclosure of or access to personal data transmitted, stored, or otherwise processed.
To be more specific, to protect your personal data, we use HTTPS and encryption, divided group and individual access (where appropriate), an alarm system, corporate VPN, and written approved internal policies (like password policy and physical access policy).
Moreover, we systematically monitor our technologies’ state of the art and never forget about the backups. All our contractors are under contractual obligations compliant with the GDPR requirements. You can contact customer support in case of any questions regarding the security issues.
You may reference our security page to find information about the specific steps we mentioned above.
Data Subject Rights
United States Residents
You, as data subjects, have some special privacy rights. To use them, please contact us.
Note: Depending on the state and legislative requirements, we have from 30 to 60 days to exercise your request, with the right to postpone it for 30 days more.
If your complaint is not satisfied, you can file a complaint with the Federal Trade Commission.
Your rights vary depending on the laws that apply to you. Some states do not have their own privacy laws. The rights of residents of such states are governed by U.S. federal law. Specific state privacy rights are listed below:
Do Not Sell My Personal Information
California residents have the right under the California Consumer Privacy Act (“CCPA”) to opt out of the “sale” of their personal information by a company governed by the CCPA.
Readdle does not sell your personal information to anyone nor use your data as a business model.
However, we support the CCPA by allowing California residents to opt out of any future sale of their personal information.
Privacy Notice Updates
The Privacy Notice and the relationships falling under its effect are regulated by the General Data Protection Regulation. Existing laws and requirements for processing personal data are subject to change. Should this be the case, we will publish a new version of the Privacy Notice addressing such changes in our App.
If we make substantial changes to the Privacy Notice or the App that affect your data privacy rights, we will notify you by email or display information in the App and ask you to read it. We will notify you in advance, and if you continue using the App after the changes come into effect, it shall be deemed that you have agreed to and accepted the updated Privacy Notice.