Nimbata is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC).
Nimbata is committed to protecting the confidentiality, integrity, and availability of our customers’ data. Information required from our users is the minimum in order to perform our services.
In this Policy, the words “our,” “us,” “we,” and “Nimbata” refer to Nimbata, LLC. and our affiliates, including any person or entity that controls us, is controlled by us, or is under common control with us. This policy covers information we collect both as a controller and a processor when engaging with our app.
Nimbata reserves the right to modify this policy. Any changes will be in effect 30 days after they are posted in our web site.
Information Provided by You Directly
We collect information needed in order to fulfill your requests, which may take place using a form on our web site, when you call us or you send us an e-mail. If you just need to know about our services we will require contact information, such as your name, address, telephone number and e-mail address so that we can respond to your request.
Information Collected Automatically
When visiting the Nimbata Site, we and the service providers acting on our behalf, automatically collect certain data using tracking technologies, such as cookies and web beacons.
This data is used to understand how visitors of the Nimbata site or app are using it and which pages and features are most popular. It also helps us to improve our website and track performance of our advertisements. In addition, tracking technologies are used to help improve the navigation experience on the Nimbata site and app and to determine propensity to purchase.
Our site includes various types of cookies to enhance the user experience. These include:
Web Beacons are similar to cookies and they are used to improve the website functionality
If you subscribe to our services, we will also need information that relates to the relationship between Nimbata and the customer (or subscriber). This may include: billing, contact, credit card information and in some cases the Tax Identification Number. All personal information is accessible and can be modified by the respective subscribers.
This account information is collected so that we know who you are and so we can communicate with you about your account, and we can recognize you when you communicate with us through the Nimbata app.
Your email address and your account password are used to authenticate your account and allow you to access your application. If two factor authentication is set up for your account, we’ll ask you to enter a telephone number to which we will communicate verification codes to verify that it is you logging into your account. When you sign up for a paid account or upgrade your account from a trial account, we’ll ask you to provide our payment processor (Stripe/Paypal) with information like your credit card data and/or your billing address. Our payment processor, acting on our behalf, gathers this so that we can bill you for your use of our services and will generally share your billing address with Nimbata.
For some products such as Tracking Numbers (in certain countries), we may have to obtain a physical address from you in order to abide by local regulations. This information may be kept on record and shared with the telecommunications carrier from whom Nimbata obtained the phone number from or local government authorities upon their request. Unless prohibited by law, we will always let you know if we have to share your address under such circumstances.
Furthermore, when you interact with our customer support team, sales team or account management team, you will be asked to give your account information and share with us the question or problem you’re experiencing. We gather this information so that we can help you with your question or problem.
If using a Nimbata API, you will also be given access to an authentication key specific to your account. This will be used in connection with making requests to our platform. We keep a record of these credentials, so that we know that it is you making the requests.
Customer Usage Information includes operational information like call logs, origination and termination points (i.e. to/from phone numbers), call traffic routing information, API requests or app activity information.
We collect this information so that we can appropriately manage and route customer traffic, analyze and improve our products and services, and identify and solve problems that may come up. We also collect it so that we can properly bill you for your use of our services and to support regulatory requirements, such as calculation and reporting of tax or similar obligations.
Our customers are generally marketing agencies or businesses that use the Nimbata products and services to track performance of their marketing campaigns, sales teams or operations. As such, our customers have their own customers or users that we are reporting on (called end-users).
Our customers who use the Nimbata app, products and services, act as the controllers of personal data for the end-user For residents in the EU and Switzerland, it is important to emphasize that by calling our phone numbers, Nimbata operates only as a processor, and is not a controller in relation to any personal information processed about you.
In cases where there are special agreements between the customer and Nimbata, if the special agreements and this policy are in conflict, those special agreements will apply.
Customer Content consists of information obtained from the communications aspect of the Nimbata products and services, such as phone calls. We may collect Customer Content in connection with your use of the services to transmit voice calls to and from the carrier networks. In doing so this information is exchanged to route calls appropriately, and present that information in our app and API. In case recording and transcriptions are enabled, we will also collect those recordings or transcriptions.
Customers have the control over which information they want to collect and what they are doing with that information. We simply provide the tools to collect the information.
Customer content is used primarily for the purposes of reporting in your account and app or through our API. We convey it to and from telecommunications carrier networks, record and transcribe it as per your instruction. Customer content stored on our systems may also be used to to troubleshoot issues or manage call quality concerns.
As controllers or processors, Nimbata or its successor(s) may share your information in the manner and for the purpose described below:
As a processor, Nimbata will not share customer content, customer account data or customer usage data with any third parties. However, usage data may be shared with communication providers and telephony operators so that they may route and connect communications from the caller to the intended recipient. How those providers and telephony operators handle your Customer Content and Customer Usage Data is generally determined by those operators’ own policies and applicable regulations.
In cases of onward transfer to third parties of Personal Data received pursuant to the EU-U.S. Privacy Shield and the Swiss-U.S. Privacy Shield, Nimbata is potentially liable.
Nimbata does not sell or provide any of your information to third parties unless it is done for purposes as outlined above.
When using our app, products or service, your account data, customer content and usage data may be sent to the United States and possibly other countries. While some of this may be in connection with routing your communications in the most efficient way, we also store customer information on servers located in the United States. We may also store this information on servers and equipment in other EU countries however.
When transferred, we take appropriate steps to protect your privacy, personal data and interests, including encryption during transit and storage and in accordance with applicable law. Transfers are limited to countries which are recognized as providing an adequate level of legal protection or where we can be satisfied that alternative arrangement are in place to protect your privacy rights.
Nimbata commits to provide to individuals the contents of their data and the capability to correct or erase personal data on their behalf.
In compliance with the Privacy Shield Principles, Nimbata commits to resolve complaints about our collection or use of your personal information. European Union or Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact:
Spyros Photopoulos firstname.lastname@example.org
Chief Privacy Officer Phone: (888) 340-8380
10 Pole Plain Rd
Sharon, MA 02067
Nimbata has further committed to cooperate with the panel established by the EU data protection authorities (DPAs) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved Privacy Shield complaints concerning data transferred from the EU and Switzerland.
We may use your email address to send you information about other Nimbata products, services, or events that you might be interested in. In doing so, we will have obtained your prior consent before marketing to you.
You can choose not to receive marketing promotions from Nimbata at any time by unsubscribing in the email or through the settings in the app.
Nimbata does not intend the site, app and services to be used by individuals under the age of 16. We do not seek or knowingly collect any personal information on children under 16 years of age. If we discover we have received any personal information from a child under the age of 16 in violation of this Policy we will make commercially reasonable efforts to delete such information from our database as quickly as possible. If you believe we have any information about anyone under the age of 16, please contact us at email@example.com.
Information collected by Nimbata is retained indefinitely and available to our client for as long as they remain a client in good standing. If a client cancels their account (or is terminated for any reason), we cannot guarantee that their data will remain if they wish to return later. Customers can use the Nimbata redaction features to remove sensitive data from the app. However, while an automatic data sunset policy does not exist today, we plan to incorporate one in the near future. If you wish to have your data redacted or fully scrubbed, please contact us at firstname.lastname@example.org and we will under reasonable efforts expedite the request.
We take measures to protect the security of our customers’ and our customers’ end-user information both online and offline. These vary based on the sensitivity of the information that we collect, process and store and the current state of technology. While we strive to protect your information, we cannot guarantee that unauthorized access, hacking, information loss or an information breach will never occur. Security practices that we follow include:
Nimbata uses sub-processors like Amazon AWS, Twilio, Plivo and others, to facilitate specific communication applications. An up to date list of all Sub-processors Nimbata engages with, can be found below:
|Name||Description / Use||Country|
|Amazon Web Services||Information technology infrastructure and storage of data||USA|
|Twilio||Transmission to or from Nimbata to the customer’s telephone network and termination point(s).||USA|
|Plivo||Transmission to or from Nimbata to the customer’s telephone network and termination point(s).||USA|
|Flowroute||Transmission to or from Nimbata to the customer’s telephone network and termination point(s).||USA|
|Google Cloud||Transcription services, converting audio to text.||USA|
Nimbata LLC | email@example.com
Last Updated: Oct 2018