Privacy Policy
Last updated: October 30, 2024
We do not store your emails, files, or calendar events on our servers. Your content stays with you, safeguarded by our strong privacy measures. We do collect some metadata, like usage patterns and anonymized data, to help improve our services. Below, we explain what we collect and why.
Metadata vs. User Content
User Content:
• What We Don’t Store: Unlike many services, we do not store your emails, files, calendar events, or any personal content. Your private information remains on your device and is inaccessible to us or anyone else.
• Encryption: Your communications are protected by strong encryption, ensuring that only you and the intended recipients can access your content.
Metadata:
• What We Collect: To improve our services and understand how users interact with the app, we collect metadata such as usage patterns, previews, device information, and anonymized data. This data does not include the actual content of your communications.
• Personal Identifiable Information (PII) and Analytics: We may collect PII, such as your IP address, device type, and app usage data, to provide better service and support. All of this information is handled with strict privacy guidelines.
Why We Collect Metadata
• Service Improvement: Metadata helps us understand how the app is used, enabling us to make it more efficient and user-friendly.
• Security: Collecting certain metadata helps us detect and prevent security threats, ensuring your content remains secure.
This Privacy Policy below explains in more detail how we collect, use, disclose, and safeguard your information when you visit our website and use our services. The extent and type of information we receive from you depends on the information you provide voluntarily.
The purpose of this Policy is to ensure all individuals whose Personal Data is collected by Knap are well informed about how and why Knap collects Personal Data and what rights are available to them, including the General Data Protection Regulation (“GDPR”), California Consumer Privacy Act (“CCPA”) and any other applicable data protection legislation and regulations. By using our service, you agree to the collection and use of information in accordance with this policy.
1. Scope
IF YOU DO NOT AGREE WITH THE TERMS IN THIS PRIVACY POLICY, DO NOT USE THE SERVICES AND SITES OF KNAP. CONTINUED USE OF THE SERVICES AND SITES OF KNAP CONSTITUTES YOUR FREELY GIVEN, SPECIFIC AND INFORMED CONSENT AND AGREEMENT TO YOUR PERSONAL DATA BEING PROCESSED PURSUANT TO THIS NOTICE.
2. Definitions
Personal Data and Personal Information: Any information about an individual who can be identified, directly or indirectly, such as a name, email address, identification number, location data, or online identifier.
Usage Data: Information collected automatically through the use of our service, such as IP addresses, browser types, page visit durations, and other diagnostic data.
Cookies: Small files stored on your device that track, save, and store information about your interactions and usage of the website.
Data Controller: Knap, which determines the purposes and means of processing Personal Data.
Data Processors (Service Providers): Third parties including natural or legal persons, public authority, agency, or other body which is engaged by Knap to process data on our behalf.
Data Subject & User: The identifiable natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
“We”, “our” and “us”: in this Privacy Notice refers to Knap, Inc., its affiliates and any sub-processor or contractor delivering the services and products herein on behalf of Knap and its affiliates.
“You”: Means the individual to whom any given Personal Data covered by this Privacy Policy relates.
3. Types of Data Collected
Personal Data: While using our service, we may ask you to provide us with certain personally identifiable information, including but not limited to your email address, name, phone number, and usage data.
Usage Data: This may include information such as your computer's IP address, browser type, browser version, the pages of our service that you visit, the time and date of your visit, the time spent on those pages, and other diagnostic data.
Tracking Cookies Data: We use cookies and similar tracking technologies to track the activity on our service and hold certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent.
Personal Data from Other Sources: Personal Data may be collected either electronically or physically, including but not limited to emails, cold calls, social media networking sites, subscriptions to databases, and information provided to Knap representatives.
4. Use of Data
Knap uses the collected data for various purposes, including but not limited to:
- Providing and maintaining our service.
- Marketing.
- Notifying you about changes to our service.
- Allowing you to participate in interactive features of our service when you choose to do so.
- Providing customer support.
- Gathering analysis or valuable information to improve our service.
- Monitoring the usage of our service.
- Detecting, preventing, and addressing technical issues.Protecting against fraud and ensuring the security of the service.
- Compliance with legal obligations.
Knap's access to any and all GSuite data is read-only - Knap does not request write privileges to your Google account. Knap does not store any of your GSuite data on our servers aside from your email address. Knap's use of GSuite data is to provide our users with productivity gains by enabling automations across GSuite and other data sources.
Knap does log generic analytics on how Knap is used - however, these analytics never include what you type into Knap, or any of the GSuite data that is used by Knap.
Knap does not use Google Workspace APIs (including GSuite data) to develop, improve, or train generalized AI and/or ML models. Data obtained through Google Workspace APIs is not transferred to third-party AI tools for the purpose of creating generalized AI/ML models.
5. Legal Basis for Processing Personal Data
Knap may process your Personal Data based on:
Consent: You have given your consent for processing Personal Data for one or more specific purposes.
Performance of a Contract: Processing is necessary for the performance of an agreement with you and/or for any pre-contractual obligations thereof.
Legal Obligations: Processing is necessary for compliance with a legal obligation to which Knap is subject.
Legitimate Interests: Processing is necessary for the purposes of the legitimate interests pursued by Knap or a third party, except where such interests are overridden by your fundamental rights and freedoms.
6. Retention of Data
Knap will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies.
7. Transfer of Data
Your information, including Personal Data, may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.
Knap will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy, and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place, including the security of your data and other personal information.
8. Sharing of Personal Data
Personal Data is shared in accordance with the procedures stated as follows:
- With your consent.
- We use affiliated and unaffiliated service providers all over the world that help us deliver our services and run our business subject to agreements with data protection obligations in line with this privacy policy.We will disclose data as required by law including to meet national security requirements or to protect you, other users, us or third parties from harm, including fraud, data security breaches or where someone’s physical safety seems at risk; and
- In a re-organization or sale of some or all of our company or assets, your data may be transferred, subject to the acquirer accepting the commitments made in this privacy policy and in compliance with applicable law.
When Knap does share your Personal Information with other entities that act as our service providers and/or sub-processors, Knap will:
- transfer such data only for limited and specified purposes.
- Ascertain, through written agreement, that the sub-processor is obligated to provide at least the same level of privacy protection as is required by this privacy policy.
- take reasonable and appropriate steps to ensure that the sub-processor effectively processes the Personal Data transferred in a manner consistent with our obligations under this Policy.
- require the sub-processor to notify Knap if it makes a determination that it can no longer meet its obligation to provide the same level of protection as is required by this Policy.
- upon notice, take reasonable and appropriate steps to stop and remediate unauthorized processing;
- provide a summary or a representative copy of the relevant privacy provisions of its contract with that sub-processor to authorized regulators upon request; and
- remain liable to you if the sub-processor processes your personal data in a manner inconsistent with privacy principles of EU-U.S. Data Protection Framework.
Other terms:
9. Disclosure of Your Data
Knap may disclose your Personal Data in good faith when such action is necessary to:
- Comply with a legal obligation.
- Protect and defend the rights or property of Knap.
- Prevent or investigate possible
- Protect the personal safety of users of the service or the public.
- Protect against legal liability.
We may also disclose your information if we believe it is necessary or appropriate to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of our Terms of Service, or as evidence in litigation in which we are involved.
10. Limits to Your Privacy
Our Sites may contain links to external websites and areas where you can provide information to third parties. These are provided for your convenience only, and we do not have control over the content or privacy and security practices and policies of such third parties or third-party sites. Any Personal Data you provide in such areas and on such linked pages is provided directly to that third party and is subject to that third party’s privacy policy. Please learn about the privacy and security practices and policies of external websites and third parties before providing them with Personal Data.
11. Choice Regarding Collection, Use & Distribution of Personal Information
You can choose to opt-out whenever your Personal Information is (i) to be disclosed to a third party or (ii) to be used for a purpose that is materially different from the purpose(s) for which it was originally collected or subsequently authorized by you.If you choose to opt-out, please contact us via email at privacy@knap.ai. In such an event, you will be only able to access public areas of the Sites and may be limited in the use of Knap’s Sites. In certain cases, limiting the use and disclosure of your Personal Data may impact functionality or prevent the use of Knap products or services.
12. EU - U.S Data Protection Framework Notice:
Knap complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. Knap has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. Knap has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) Program, and to view our certification, please visit https://www.dataprivacyframework.gov.
13. KNAP’S PRIVACY STATEMENT FOR CALIFORNIA RESIDENTS
NOTICE OF COLLECTION OF PERSONAL INFORMATION
This Knap Privacy Notice (“Notice”) sets forth Knap and its affiliates disclosure obligations under California law, including California Consumer Privacy Act of 2018 (“CCPA”).
We collect the following categories of Personal Data when you interact with us: identifiers and contact information, professional or employment-related information, Internet or other electronic network activity information and geolocation data.We collect this Personal Data to operate and maintain our website, provide Knap’s services to you, evaluate employment applications and display advertising relevant to you.We do not “sell” (as defined under the CCPA) information associated with your activity on our website.
CCPA Mandatory Disclosures:
We collected the following categories of Personal Data in the last 12 months: identifiers and contact information, professional or employment-related information, Internet or other electronic network activity information and geolocation data.
We collected Personal Data from the following types of sources: website visitors (through direct submissions by visitors as well as automated means); customers; job applicants and employees; social media networking sites, third-party databases; and in-person events.
We disclosed the following categories of Personal Data for a business purpose in the last 12 months: identifiers, Internet or other electronic network activity information and geolocation data. We disclosed these categories of Personal Data to vendors who support the operation of our services and perform advertising services on our behalf. In addition, we disclosed information about job applicants and employees to our service providers and clients to support Knap’s human resources and business operations.
Consumer Rights under the CCPA:
Under the CCPA, Data Subjects may have the following consumer rights:
a. Abbreviated Right to Know (Collection): You have the right to request, at no charge, that we disclose to you the categories and specific pieces of Personal Information collected in the prior 12 months.
b. Expanded Right to Know (Collection and Disclosure): You have the right to request that we disclose certain information about how we have handled your Personal Information in the prior 12 months, including the:
- categories of Personal Information collected about you;
- categories of sources from which we collected your Personal Information; business and/or commercial purposes for collecting and disclosing your Personal Information; and
- categories of third parties to/with whom your Personal Information has been disclosed/shared, including for a business purpose; and
- the specific pieces of Personal Information collected about you.
c. Access and Portability: You have the right to obtain a list of categories and a copy of the Personal Information, in a portable and (if technically feasible) readily usable format, collected on you covering the 12-month period preceding the request.
d. Deletion: You have the right to request the deletion of your Personal Information we have collected from you. This right may be subject to certain conditions and limitations under the law.Right to be Free from Discrimination: Knap will not discriminate against you for exercising your rights under the CCPA.
Instructions for CCPA Requests:
Right to Know, Delete and Access: You can make a request to exercise your right to know, access or delete Personal Data by sending an email to privacy@knap.ai. We may ask you to provide additional information to verify your identity before we process your request.
Instructions for Authorized Agents
You may authorize an agent to make a CCPA request on your behalf. The agent must present your signed authorization allowing the agent to act on your behalf, or a power of attorney that meets the applicable requirements of the California Probate Code. In addition, we may contact you directly to confirm that you authorized the agent to submit the request.
Additional Rights under California Law
A business subject to California Business and Professions Code Section 22581 must allow California residents under age 18 who are registered users of online sites, services or applications to request and obtain removal of content or information they have publicly posted. Your request should include a detailed description of the specific content or information to be removed. Your request does not guarantee complete or comprehensive removal of content or information posted online and that the law may not permit or require removal in certain circumstances.
14. KNAP’S PRIVACY STATEMENT FOR BRAZIL RESIDENTS
Introduction:
Through this Privacy Statement ("Statement") Knap, Inc. ("Knap" or the "Company") commit to comply with the legal determinations regarding the processing of data of identified and/or identifiable natural persons that are under the protection of the General Law for the Protection of Personal Data (Law No. 13,709/2018 – “LGPD”). This Statement is part of the Global Data Protection Policy.
The practices described herein apply to the processing of Personal Data in Brazil and are subject to local laws, including the LGPD. Accordingly, the guidelines set forth herein apply when Knap processes Personal Data from Data Subjects who, according to Article 3 of the LGPD, are the target of any data processing operation in Brazil, or who are in Brazil, and/or whose Personal Data has been collected in the Brazilian territory.
Personal Data Subject Rights
In addition to the rights listed elsewhere in this Policy, the General Data Protection Law of Brazil or the “LGPD” provides the following rights to Data Subjects:
- confirmation of the existence of the processing,
- anonymization, blocking or deletion of unnecessary or excessive data or data processed in noncompliance with the LGPD,
- obtaining information about public and private entities with which the Controller has shared data,
- opposing to the processing carried out based on one of the situations of waiver of consent,
- requesting the review of decisions made solely based on automated processing of Personal Data affecting the interests of the Data Subjects receiving clear and adequate information regarding the criteria and procedures used for automated decisions and, as applicable, and
- data portability.
Notification of Data Protection Incidents
In the event of a potential breach of the data security requirements (“data protection incident”), Knap will have investigation, information and damage mitigation obligations. A data protection incident is considered a personal data breach (“Personal Data Breach”) if there is a breach of security leading to the unlawful destruction, alteration, unauthorized disclosure or use of Personal Data. When the Personal Data Breach is likely to result in a risk or relevant damage to natural persons, the Brazilian Data Protection Authority (“ANPD”) and the Data Subjects must be informed of the corresponding breach, in a reasonable period of time (up to 48 hours as of the discovery of the data protection incident).
Sub-contractors are required to report any Personal Data Breach immediately to the Company.
If you know or suspect that a Personal Data Breach has occurred, do not attempt to investigate the matter yourself, you are required to report this immediately to the DPO and Legal Department. You should preserve all evidence relating to the potential Personal Data Breach.
Definitions
"Sensitive Personal Data": Personal Data concerning racial or ethnic origin, religious conviction, political opinion, membership of a trade union or religious, philosophical, or political organization, data concerning health or sexual life, genetic or biometric data, when associated with a natural person.
"Data Protection Officer": A person indicated by the Controller and Processor to act as a communication channel between the Controller, the Data Subjects, and the National Data Protection Authority.
Instructions for Requests Related to Brazilian LGPD
According to the General Data Protection Law of Brazil (LGPD), Knap in Brazil, is considered a 'Controller' and 'Processor' of Personal Data, depending on the data processing context. If you need to contact someone about any matter involving Personal Data under the application of the LGPD, please send an e-mail to privacy@knap.ai. Below is the information relating to the Data Protection Officer of Knap.
Joe Bagdon
15. Security of Data
The security of your data is important to us. Knap uses appropriate security measures to protect against the loss, misuse, and alteration of your data under our control. These measures include physical, electronic, and administrative safeguards. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
16. Your Data Protection Rights
Depending on your location, you may have the following rights regarding your Personal Data:
Access: You have the right to request copies of your Personal Data.
Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
Erasure: You have the right to request that we erase your Personal Data, under certain conditions.
Restriction of Processing: You have the right to request that we restrict the processing of your Personal Data, under certain conditions.
Objection to Processing: You have the right to object to our processing of your Personal Data, under certain conditions.
Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
17. Children’s Privacy:
Our service does not address anyone under the age of 16 ("Children"). We do not knowingly collect personally identifiable information from anyone under the age of 16. If you are a parent or guardian and you become aware that your child has provided us with Personal Data without your consent, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we will take steps to delete that information.
18. Changes to This Privacy Policy:
Knap may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last Updated” date at the top. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
Contact Us
If you have any questions about this Privacy Policy, please contact us by email at: privacy@knap.ai