Privacy Policy

10.    Limits to Your Privacy

‍Our Sites may contain links to external websites and areas where you can provide information to third parties. These are provided for your convenience only, and we do not have control over the content or privacy and security practices and policies of such third parties or third-party sites. Any Personal Data you provide in such areas and on such linked pages is provided directly to that third party and is subject to that third party’s privacy policy. Please learn about the privacy and security practices and policies of external websites and third parties before providing them with Personal Data.

‍11.    Choice Regarding Collection, Use & Distribution of Personal Information

‍You can choose to opt-out whenever your Personal Information is (i) to be disclosed to a third party or (ii) to be used for a purpose that is materially different from the purpose(s) for which it was originally collected or subsequently authorized by you.If you choose to opt-out, please contact us via email at privacy@knap.ai. In such an event, you will be only able to access public areas of the Sites and may be limited in the use of Knap’s Sites. In certain cases, limiting the use and disclosure of your Personal Data may impact functionality or prevent the use of Knap products or services.

‍12.    EU - U.S Data Protection Framework Notice:

‍Knap complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. Knap has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. Knap has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) Program, and to view our certification, please visit https://www.dataprivacyframework.gov.

‍13.    KNAP’S PRIVACY STATEMENT FOR CALIFORNIA RESIDENTS

NOTICE OF COLLECTION OF PERSONAL INFORMATION

‍This Knap Privacy Notice (“Notice”) sets forth Knap and its affiliates disclosure obligations under California law, including California Consumer Privacy Act of 2018 (“CCPA”).

We collect the following categories of Personal Data when you interact with us: identifiers and contact information, professional or employment-related information, Internet or other electronic network activity information and geolocation data.We collect this Personal Data to operate and maintain our website, provide Knap’s services to you, evaluate employment applications and display advertising relevant to you.We do not “sell” (as defined under the CCPA) information associated with your activity on our website.

‍CCPA Mandatory Disclosures:

‍We collected the following categories of Personal Data in the last 12 months: identifiers and contact information, professional or employment-related information, Internet or other electronic network activity information and geolocation data.

We collected Personal Data from the following types of sources: website visitors (through direct submissions by visitors as well as automated means); customers; job applicants and employees; social media networking sites, third-party databases; and in-person events.

We disclosed the following categories of Personal Data for a business purpose in the last 12 months: identifiers, Internet or other electronic network activity information and geolocation data. We disclosed these categories of Personal Data to vendors who support the operation of our services and perform advertising services on our behalf. In addition, we disclosed information about job applicants and employees to our service providers and clients to support Knap’s human resources and business operations.

‍Consumer Rights under the CCPA:

‍Under the CCPA, Data Subjects may have the following consumer rights:

a. Abbreviated Right to Know (Collection): You have the right to request, at no charge, that we disclose to you the categories and specific pieces of Personal Information collected in the prior 12 months.

b. Expanded Right to Know (Collection and Disclosure): You have the right to request that we disclose certain information about how we have handled your Personal Information in the prior 12 months, including the:

- categories of Personal Information collected about you;
- categories of sources from which we collected your Personal Information; business and/or commercial purposes for collecting and disclosing your Personal Information; and
- categories of third parties to/with whom your Personal Information has been disclosed/shared, including for a business purpose; and
- the specific pieces of Personal Information collected about you.

c. Access and Portability: You have the right to obtain a list of categories and a copy of the Personal Information, in a portable and (if technically feasible) readily usable format, collected on you covering the 12-month period preceding the request.

d. Deletion: You have the right to request the deletion of your Personal Information we have collected from you. This right may be subject to certain conditions and limitations under the law.Right to be Free from Discrimination: Knap will not discriminate against you for exercising your rights under the CCPA.

‍Instructions for CCPA Requests:

‍Right to Know, Delete and Access: You can make a request to exercise your right to know, access or delete Personal Data by sending an email to privacy@knap.ai. We may ask you to provide additional information to verify your identity before we process your request.
‍
‍Instructions for Authorized Agents

‍You may authorize an agent to make a CCPA request on your behalf. The agent must present your signed authorization allowing the agent to act on your behalf, or a power of attorney that meets the applicable requirements of the California Probate Code. In addition, we may contact you directly to confirm that you authorized the agent to submit the request.
‍
‍Additional Rights under California Law

‍A business subject to California Business and Professions Code Section 22581 must allow California residents under age 18 who are registered users of online sites, services or applications to request and obtain removal of content or information they have publicly posted. Your request should include a detailed description of the specific content or information to be removed. Your request does not guarantee complete or comprehensive removal of content or information posted online and that the law may not permit or require removal in certain circumstances.

‍14. KNAP’S PRIVACY STATEMENT FOR BRAZIL RESIDENTS

Introduction:

‍Through this Privacy Statement ("Statement") Knap, Inc. ("Knap" or the "Company") commit to comply with the legal determinations regarding the processing of data of identified and/or identifiable natural persons that are under the protection of the General Law for the Protection of Personal Data (Law No. 13,709/2018 – “LGPD”). This Statement is part of the Global Data Protection Policy.

The practices described herein apply to the processing of Personal Data in Brazil and are subject to local laws, including the LGPD. Accordingly, the guidelines set forth herein apply when Knap processes Personal Data from Data Subjects who, according to Article 3 of the LGPD, are the target of any data processing operation in Brazil, or who are in Brazil, and/or whose Personal Data has been collected in the Brazilian territory.

‍Personal Data Subject Rights

‍In addition to the rights listed elsewhere in this Policy, the General Data Protection Law of Brazil or the “LGPD” provides the following rights to Data Subjects:

- confirmation of the existence of the processing,
- anonymization, blocking or deletion of unnecessary or excessive data or data processed in noncompliance with the LGPD,
- obtaining information about public and private entities with which the Controller has shared data,
- opposing to the processing carried out based on one of the situations of waiver of consent,
- requesting the review of decisions made solely based on automated processing of Personal Data affecting the interests of the Data Subjects receiving clear and adequate information regarding the criteria and procedures used for automated decisions and, as applicable, and
- data portability.

‍Notification of Data Protection Incidents

In the event of a potential breach of the data security requirements (“data protection incident”), Knap will have investigation, information and damage mitigation obligations. A data protection incident is considered a personal data breach (“Personal Data Breach”) if there is a breach of security leading to the unlawful destruction, alteration, unauthorized disclosure or use of Personal Data. When the Personal Data Breach is likely to result in a risk or relevant damage to natural persons, the Brazilian Data Protection Authority (“ANPD”) and the Data Subjects must be informed of the corresponding breach, in a reasonable period of time (up to 48 hours as of the discovery of the data protection incident).

Sub-contractors are required to report any Personal Data Breach immediately to the Company.

If you know or suspect that a Personal Data Breach has occurred, do not attempt to investigate the matter yourself, you are required to report this immediately to the DPO and Legal Department. You should preserve all evidence relating to the potential Personal Data Breach.

‍Definitions

‍"Sensitive Personal Data": Personal Data concerning racial or ethnic origin, religious conviction, political opinion, membership of a trade union or religious, philosophical, or political organization, data concerning health or sexual life, genetic or biometric data, when associated with a natural person.

"Data Protection Officer": A person indicated by the Controller and Processor to act as a communication channel between the Controller, the Data Subjects, and the National Data Protection Authority.

‍Instructions for Requests Related to Brazilian LGPD

‍According to the General Data Protection Law of Brazil (LGPD),  Knap in Brazil, is considered a 'Controller' and 'Processor' of Personal Data, depending on the data processing context. If you need to contact someone about any matter involving Personal Data under the application of the LGPD, please send an e-mail to privacy@knap.ai. Below is the information relating to the Data Protection Officer of Knap.

Joe Bagdon

15. Security of Data

‍The security of your data is important to us. Knap uses appropriate security measures to protect against the loss, misuse, and alteration of your data under our control. These measures include physical, electronic, and administrative safeguards. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.

‍16. Your Data Protection Rights

‍Depending on your location, you may have the following rights regarding your Personal Data:
‍Access: You have the right to request copies of your Personal Data.
‍Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
‍Erasure: You have the right to request that we erase your Personal Data, under certain conditions.
‍Restriction of Processing: You have the right to request that we restrict the processing of your Personal Data, under certain conditions.
‍Objection to Processing: You have the right to object to our processing of your Personal Data, under certain conditions.
‍Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
‍
‍17. Children’s Privacy:

‍Our service does not address anyone under the age of 16 ("Children"). We do not knowingly collect personally identifiable information from anyone under the age of 16. If you are a parent or guardian and you become aware that your child has provided us with Personal Data without your consent, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we will take steps to delete that information.
‍
‍18. Changes to This Privacy Policy:

‍Knap may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last Updated” date at the top. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.