Thank you for choosing to use Imageroller or one of our websites. This policy explains the what, how, and why of the information we collect when you visit one of our websites, or when you use our Services. It also explains the specific ways we use and disclose that information. We take your privacy extremely seriously, and we never sell customer data or email addresses.
On 25th May there's a big change happening to privacy laws in the UK.
The new General Data Protection Regulation (GDPR) gives you more control over how your personal information is used and makes it quicker and easier for you to check and update the information we, and other organisations we work with, hold about you.
As always, if we collect, use, store or share your data, we will continue to do so safely and securely.
By keeping your details up to date, we can use this information to provide even better services for you and help keep your account safe.
We'll be able to:
Our current hosting provider is A2 Hosting. The server we use is located within the EU (Amsterdam, Netherlands). All emails collected using the 'Early Bird' request mechanic are first encrypted within a user's browser before being encrypted again and sent over HTTPS/SSL to a secure third-party platform (MailChimp) for storage/processing.
If you would like to know what personal data we have stored in your name and on which third-party platform it exists, you may request a copy of that data by emailing firstname.lastname@example.org. Should you wish to have your details deleted from any or all of our systems, including third-party platforms, you may do so by emailing email@example.com. We aim to support all reasonable requests within 24/48hrs (although requests are often actioned in much less time).
We maintain a strict security policy within our studio to ensure login details to hosting, emails and third-party systems are kept secure. All studio computers are password protected and only designated personnel are afforded access. We use a password manager to encrypt all logins and only connect to the internet using a VPN service to secure all traffic.
If you have any questions regarding our commitment to GDPR, please get in touch.
These definitions should help you understand this policy. When we say “we,” “us,” “our,” and “Imageroller,” we are referring to Avakore Ltd d.b.a Imageroller, a United Kingdom limited liability company. We provide online platforms that you may use to create and share visual content, including creating, editing and posting images and other information across the world's most popular social networks. When we say “Member,” we are referring to the person or entity that is registered with us to use the Services. When we say “you,” we are referring either to a Member or to some other person who visits any of our Websites. “Personal Information” means information that can be used to identify you, including, but not limited to, first and last name, date of birth, email address, gender, occupation or other demographic information.
If you have any questions or comments, or if you want to update, delete, or change any Personal Information we hold, or you have a concern about the way in which we have handled any privacy matter, please use our contact form to send us a message. You may also contact us by postal mail or email at:
Imageroller (c/o Avakore Ltd)
Attn. Privacy Officer
20-22 Wenlock Road, London, England, N1 7GU
(c) User invitations: When you invite a person to join your Account with their email address, we have and may access this contact data.
(d) Information from your use of the Service: We may receive information about how and when you use the Services, store it in log files or other types of files associated with your account, and link it to other information we collect about you. This information may include, for example, your IP address, time, date, browser used, and actions you have taken within the application. This type of information helps us to improve our Services for both you and for all of our users.
(f) Web beacons: We use web beacons on our Websites and in our email communications. When we send emails to Members, we may track behavior such as who opened the emails and who clicked the links. This allows us to measure the performance of our email campaigns and to improve our features for specific segments of Members. To do this, we include single pixel gifs, also called web beacons, in emails we send. Web beacons allow us to collect information about when you open the email, your IP address, your browser or email client type, and other similar details. We also include Web Beacons in the emails we deliver for you. We use the data from those Web Beacons to create reports about how our email campaign performed and what actions our Members took.
(g) Information from other sources: We may receive more information about you or other Members, such as name, email address, demographic information, IP addresses, location, and use of social media websites, by searching the Internet or querying third parties (we refer to that information as “Supplemental Information”). We use Supplemental Information to develop features including Social Profiles, a tool that helps you learn about your Members and allows you to send them more relevant content.
(h) Information from the use of our Mobile Apps: When you use our mobile apps, we may collect certain information in addition to information described elsewhere in this Policy. For example, we may collect information about the type of device and operating system you use. We may ask you if you want to receive push notifications about activity in your account. If you have opted in to these notifications and no longer want to receive them, you may turn them off through your operating system. We do not ask for, access or track any location-based information from your mobile device at any time while downloading or using our Mobile Apps or Services. We may use mobile analytics software (such as Fabric.io) to better understand how people use our application. We may collect information about how often you use the application and other performance data.
We may use and disclose Personal Information only for the following purposes:
(b) To send you informational and promotional content that you may choose (or “opt in”) to receive. You can stop receiving our promotional emails by following the unsubscribe instructions included in every email.
(c) To bill and collect money owed to us by our Members. This includes sending you emails, invoices, receipts, notices of delinquency, and alerting you if we need a different credit card number. We use third parties for secure credit card transaction processing, and we send billing information to those third parties to process your orders and credit card payments. To learn more about the steps we take to safeguard that data, see Section 14 below.
(e) To communicate with our Members about their account and provide customer support.
(g) To protect the rights and safety of our Members and third parties, as well as our own.
(h) To meet legal requirements, including complying with court orders, valid discovery requests, valid subpoenas, and other appropriate legal mechanisms.
(i) To provide information to representatives and advisors, including attorneys and accountants, to help us comply with legal, accounting, or security requirements.
(j) To prosecute and defend a court, arbitration, or similar legal proceeding.
(k) To respond to lawful requests by public authorities, including to meet national security or law enforcement requirements.
(l) To provide, support, and improve the Services we offer. This includes our use of the data that our Members provide us in order to enable our Members to use the Services to communicate with their Members. This also includes, for example, aggregating information from your use of the Services or visit to our Websites and sharing this information with third parties to improve our Services. This might also include sharing your information or the information you provide us about your Members with third parties in order to provide and support our Services or to make certain features of the Services available to you. When we do have to share Personal Information with third parties, we take steps to protect your information by requiring these third parties to enter into a contract with us that requires them to use the Personal Information we transfer to them in a manner that is consistent with this policy.
As you use our Services, you may import into our system Personal Information you have collected from your Members or other individuals. We have no direct relationship with your Members or any person other than you, and for that reason, you are responsible for making sure you have the appropriate permission for us to collect and process information about those individuals. Consistent with the uses of Personal Information covered in Section 6, we may transfer Personal Information of you or your Members to companies that help us promote, provide, or support our Services or the services of our Members (“Service Providers”). All Service Providers enter into a contract with us that protects Personal Information and restricts their use of any Personal Information consistent with this policy. As part of our Services, we may use and incorporate into features information you have provided, we have collected from you, or we have collected about Members. We may share this information, including Member email addresses, with third parties in line with the approved uses in Section 6.
If you are a Member and no longer want to be contacted by one of our Members, please unsubscribe directly from that Member’s newsletter or contact the Member directly to update or delete your data. If you contact us, we may remove or update your information within a reasonable time and after providing notice to the Member of your request.
We will retain Personal Information we process on behalf of our Members for as long as needed to provide our Services or to comply with our legal obligations, resolve disputes, prevent abuse, and enforce our agreements.
(a) Blog. We have public blogs on our Websites. Any information you include in a comment on our blog may be read, collected, and used by anyone. If your Personal Information appears on our blogs and you want it removed, contact us here. If we are unable to remove your information, we will tell you why.
(b) Social media platforms and widgets. Our Websites include social media features, such as the Facebook Like button. These features may collect information about your IP address and which page you are visiting on our Website, and they may set a cookie to make sure the feature functions properly. Social media features and widgets are either hosted by a third party or hosted directly on our Website. We also maintain presences on social media platforms including Facebook, Twitter, and Instagram. Any information, communications, or materials you submit to us via a social media platform is done at your own risk without any expectation of privacy. We cannot control the actions of other users of these platforms or the actions of the platforms themselves. Your interactions with those features and platforms are governed by the privacy policies of the companies that provide them.
We may disclose Personal Information to the following types of third parties for the purposes described in this policy:
(a) Service providers. Sometimes, we need to use third party Service Providers in order to provide and support the features of our Services. For example, if it is necessary to provide you something you have requested (e.g. enable a feature such as Social Profiles), then we may share your Personal Information with a Service Provider for that purpose. We will tell you we are working with a Service Provider whenever reasonably possible, and you may request at any time the names of our Service Providers. Just like with the other third parties we work with, these third party Service Providers enter into a contract that requires them to use your Personal Information in a manner that is consistent with this policy.
We may, from time to time, offer surveys, contests, sweepstakes, or other promotions on our Websites or through social media (collectively “Our Promotions”). Participation in our Promotions is completely voluntary. Information requested for entry may include personal contact information such as your name, address, date of birth, phone number, email address, username, and similar details. We use the information you provide to administer Our Promotions. We may also, unless prohibited by the Promotion’s rules or law, use the information provided to communicate with you, or other people you select, about our Services. We may share this information with our affiliates and other organizations or Service Providers in line with this policy and the rules posted for the Promotion.
If a security breach causes an unauthorized intrusion into our system that materially affects you or people on your Account, then Imageroller will notify you as soon as possible and later report the action we took in response.
We take reasonable and appropriate measures to protect Personal Information from loss, misuse and unauthorized access, disclosure, alteration and destruction, taking into account the risks involved in the processing and the nature of the Personal Information.
Our credit card processing vendor uses security measures to protect your information both during the transaction and after it is complete. Our vendor is certified as compliant with card association security initiatives, including the Visa Cardholder Information Security and Compliance (CISP), MasterCard® (SDP), and Discovery Information Security and Compliance (DISC). We also perform annual SOC II audits. If you have any questions about the security of your Personal Information, you may contact us at firstname.lastname@example.org.
Imageroller accounts require a username and password to log in. You must keep your username and password secure, and never disclose it to a third party. Because the information in your Account sensitive, account passwords are encrypted, which means we cannot see your passwords. We cannot resend forgotten passwords either. We will only reset them.
Our servers are located across the globe including the United States. Our offices are located in the United Kingdom, so your information may be transferred to, stored, or processed in the United States and/or United Kingdom. While the data protection, privacy, and other laws of the United States or United Kingdom might not be as comprehensive as those in your country, we take many steps to protect your privacy, including offering a data processing agreement. By using our Websites, you understand and consent to the collection, storage, processing, and transfer of your information to our facilities in the United States and those third parties with whom we share it as described in this policy.
We do our best to keep your data accurate and up to date, to the extent that you provide us with the information we need to do so. If your data changes (for example, if you have a new email address), then you are responsible for notifying us of those changes. Upon request, we will provide you with information about whether we hold, or process on behalf of a third party, any of your Personal Information.
We will retain your information for as long as your account is active or as long as needed to provide you with our Services. We may also retain and use your information in order to comply with our legal obligations, resolve disputes, prevent abuse, and enforce our Agreements.
As explained in Sections 6 and 9 of this policy, Imageroller shares your Personal Information and the Personal Information you may have added to your Account in the form of email invitations with Service Providers in order to provide and support our Services. With respect to Personal Information we share with our advertising partners, you have a choice. You can opt-out of this sharing with our third party advertising partners by adjusting your cookie settings as explained in more detail in Section 5 and in our Cookie Statement.
We will give an individual, either you or an Account User, access to any Personal Information we hold about them within 30 days of any request for that information. Individuals may request to access, correct, amend or delete information we hold about them by contacting us here. Unless it is prohibited by law, we will remove any Personal Information about an individual, either you or an Account User, from our servers at your or their request. There is no charge for an individual to access or update their Personal Information.
“Do Not Track” is a standard that is currently under development. Because it is not yet finalized, Imageroller adheres to the standards in this policy and does not monitor or follow any Do Not Track browser requests. That said, some of our features may have the ability to monitor or follow Do Not Track browser requests.
Updated 11 September, 2017