This Privacy Policy explains how DriftPatrol (a product of Deer Track Design LLC) collects, uses, retains, and discloses personal data when you visit our website, create an account, or use the Service. DriftPatrol is the data controller for account and website data and the data processor for Customer Data submitted through the Service.
This Policy applies to personal data processed in connection with the Service. It does not apply to third-party websites linked from our site or to content retrieved from Monitored URLs, which is governed by those third parties' policies and by our Data Processing Addendum.
Email address, organization name, billing address, role/title, and authentication metadata (magic-link tokens, session identifiers).
Pages visited, features used, timestamps, IP address, user-agent string, referring URL, device type, and approximate geolocation derived from IP.
Monitored URLs, labels, categorization, alert keywords, and content retrieved from those URLs. This data is processed on Customer's behalf under the DPA.
Email correspondence, support tickets, and any content you send to us.
We use strictly necessary cookies for authentication (session token) and limited first-party analytics cookies to measure aggregate usage. We do not use advertising or cross-site tracking cookies.
For visitors and customers in the European Economic Area, United Kingdom, or Switzerland, we process personal data under one or more of the following bases: (a) performance of a contract; (b) compliance with legal obligations; (c) our legitimate interests in operating and securing the Service, provided those interests are not overridden by your rights; and (d) your consent, which you may withdraw at any time.
We do not sell personal data. We disclose personal data only as follows:
Vetted service providers that assist us in operating the Service, including cloud hosting, email delivery, payment processing, and machine-summarization. A current list is maintained in the DPA, Exhibit B.
Where required by applicable law, subpoena, court order, or other lawful process, or to protect rights, safety, or property.
In connection with a merger, acquisition, financing, reorganization, or sale of assets, subject to customary confidentiality obligations.
At your explicit request, for example when you integrate a third-party tool.
Personal data may be processed in the United States and other jurisdictions where our subprocessors operate. Where required, we rely on Standard Contractual Clauses approved by the European Commission and the UK's International Data Transfer Addendum, as applicable, together with supplementary safeguards.
Account data is retained for the duration of the account plus ninety (90) days thereafter. Usage logs are retained for up to thirteen (13) months. Customer Data retention is governed by the Agreement and DPA. Backups are purged in the ordinary course within twelve (12) months. We retain limited records as required by tax, accounting, anti-fraud, or other legal obligations.
You have the right to access, rectify, erase, restrict processing, object to processing, data portability, and to lodge a complaint with your supervisory authority.
You have the right to know what personal information we collect; to delete personal information; to correct inaccurate personal information; to opt out of "sale" or "sharing" (we do neither); and to non-discrimination for exercising your rights.
Send requests to [email protected]. We will verify your identity before fulfilling requests. We respond within thirty (30) days (GDPR) or forty-five (45) days (CCPA), extendable as law permits.
We implement administrative, technical, and physical safeguards designed to protect personal data, described in our Security Overview. No system is perfectly secure; we cannot guarantee absolute security.
The Service is not directed to individuals under sixteen (16). We do not knowingly collect personal data from children. If you believe a child has provided us personal data, contact [email protected] and we will delete it.
We do not currently respond to "Do Not Track" signals due to the absence of an industry standard. We do not engage in cross-site tracking.
We may update this Policy. Material changes will be announced via the Service or email at least thirty (30) days before they take effect.
DriftPatrol (Deer Track Design LLC), 9198 Apollo Rd, Bloomington, IL 61705, USA.
Privacy inquiries: [email protected]. Data Protection Officer (EEA/UK): [email protected].
