At Drime, we respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, and disclose your personal information in connection with our online cloud storage server ("Service"). By using our Service, you consent to the collection, use, and disclosure of your personal information in accordance with this Privacy Policy.

Important: We store all data on servers in France. If you access your data or give someone else access to your data using our services and you or they are not in France, you or they may be accessing that data from a country that does not give adequate protection to personal information when compared to that to that given under the France Personal Information Protection and Electronic Documents Act. Under our Terms of Service (“Terms”) you authorise us to grant this access.

1. Information We Collect

We collect the following types of personal information when you use our Service:

• Information you provide : When you create an account, we collect your name, email address, and password. When you use our Service, we collect the content you upload to our Service, including any images and contact list information.
  
  

• Information we collect automatically : When you use our Service, we automatically collect information about your device, such as your IP address, browser type, and operating system. We also collect information about your use of our Service, such as the date and time of access, the pages or files accessed, and the amount of data transferred.
  
  

• Information we collect with your permission : If authorized, Drime may request and collect access to all files on your device.

How We Collect Your Information:

We collect/receive information about you in the following manner:

1. When a user fills up the registration form or otherwise submits personal information

2. Interacts with the website

3. From public sources

2. Use of Information

We will use the information that we collect about you for the following purposes:

1. Marketing/ Promotional

2. Creating user account

3. Customer feedback collection

4. Enforce T&C

5. Processing payment

6. Administration info

7. Manage customer order

8. Site protection

9. User to user comments

10. Manage user account
    
    

We may disclose your personal information to the following third parties:

• Service providers: We may share your personal information with service providers who help us provide our Service, such as hosting and storage providers.

• Legal authorities: We may disclose your personal information to legal authorities or third parties if we believe it is necessary to comply with a legal obligation, such as a court order, or to protect our rights or the rights of others.

If we want to use your information for any other purpose, we will ask you for consent and will use your information only on receiving your consent and then, only for the purpose(s) for which grant consent unless we are required to do otherwise by law.

How We Share Your Information:

We will not transfer your personal information to any third party without seeking your consent, except in limited circumstances as described below:

1. Analytics

2. Data collection & process

We require such third party’s to use the personal information we transfer to them only for the purpose for which it was transferred and not to retain it for longer than is required for fulfilling the said purpose.

We may also disclose your personal information for the following: (1) to comply with applicable law, regulation, court order or other legal process; (2) to enforce your agreements with us, including this Privacy Policy; or (3) to respond to claims that your use of the Service violates any third-party rights. If the Service or our company is merged or acquired with another company, your information will be one of the assets that is transferred to the new owner.

3. Third party

Our Service may contain links to other websites that are not operated by us. This Privacy Policy does not address the privacy policy and other practices of any third parties, including any third party operating any website or service that may be accessible via a link on the Service. We strongly advise you to review the privacy policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

4. Security

4.1 

We take reasonable steps to protect your personal information from unauthorized access, disclosure, or alteration. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee the absolute security of your personal information.

4.2 

We strongly urge you to use best practices for ensuring the safety of your systems and devices (e.g. via strong unique passwords, security upgrades, firewall protection, anti-virus software, securing devices). Drime will never send an email asking for your password, so do not be fooled by any such email since it will not be from us. We cannot guarantee the security of computers or devices nor of transmission from and to your device over the Internet and thus cannot guarantee there will be no unauthorised access.Using the same password for Drime as you have used at other sites can lead to others accessing and taking control of your Drime account if one of those other sites is breached or hacked.

5. Retention of Information

We will retain your personal information with us for 90 days to 2 years after users terminate their accounts or for as long as we need it to fulfill the purposes for which it was collected as detailed in this Privacy Policy. We may need to retain certain information for longer periods such as record-keeping / reporting in accordance with applicable law or for other legitimate reasons like enforcement of legal rights, fraud prevention, etc. Residual anonymous information and aggregate information, neither of which identifies you (directly or indirectly), may be stored indefinitely.

6. Data Subject Rights

Under the GDPR, you have the following rights regarding your personal data:

• Right to access: You can request access to the personal information we hold about you.

• Right to rectification: You can request that we correct any inaccurate or incomplete personal information.

• Right to erasure: You can request the deletion of your personal information under certain circumstances.

• Right to restrict processing: You can request that we limit the processing of your personal information.

• Right to data portability: You can request a copy of your personal information in a structured, machine-readable format.

• Right to object: You can object to the processing of your personal information in certain situations.

• Right not to be subject to automated decision-making: You have the right to object to automated decision-making, including profiling, where it produces legal effects or similarly significantly affects you.

7. Children's Privacy

Our Service is not directed to children under the age of 13, and we do not knowingly collect personal information from children under the age of 13. If you are a parent or guardian and believe that your child has provided personal information to us, please contact us immediately.

8. Payment

8.1 PayPal

We use the online payment service PayPal on our website. The service provider is the American company PayPal Inc. The company PayPal Europe (S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg) is responsible for the European region.

PayPal also processes data from you in the USA, among other places. We would like to point out that according to the opinion of the European Court of Justice, there is currently no adequate level of protection for the transfer of data to the USA. This may be associated with various risks for the legality and security of the data processing.

As a basis for data processing at recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, thus especially in the USA) or a data transfer there, PayPal uses so-called standard contractual clauses (= Art. 46. para. 2 and 3 DSGVO). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data comply with European data protection standards even if they are transferred to third countries (such as the USA) and stored there. Through these clauses, PayPal undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the USA. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among other places: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=de

For more information on the standard contractual clauses and on the data processed through the use of PayPal, please see the privacy policy at https://www.paypal.com webapps/mpp/ua/privacy-full.

8.2 Stripe

If you choose a payment method offered via the payment service provider "Stripe", the payment processing will be carried out via Stripe Payments Europe Ltd., 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland, to whom we will pass on your information provided during the ordering process together with the information about your order (name, address, account number, bank code, possibly credit card number, invoice amount, currency and transaction number) in accordance with Art. 6 (1) lit. b GDPR. Your data will only be passed on for the purpose of processing payments with Stripe Payments Europe Ltd. and only to the extent necessary for this purpose. You can find more information on the data protection of "Stripe" at the following Internet address: https://stripe.com/de/privacy#translation.

Stripe acts as a processor in order to be able to complete transactions within the payment networks. Within the scope of the order processing relationship, Stripe acts exclusively according to our instructions and has been contractually obligated within the meaning of Art. 28 GDPR to comply with the provisions of data protection law.

Stripe has implemented compliance measures for international data transfers. These apply to all global activities where Stripe processes personal data of individuals in the EU. These measures are based on the EU Standard Contractual Clauses (SCCs).

For more information on opt-out and redress options against Stripe, please visit: https://stripe.com/privacy-center/legal

9. Communications

We may send invoices, security or service updates and various other notices by email to the email address listed in your account. They will be deemed to be received in accordance with our Terms.

In rare cases, a person may receive an email from us asking them to confirm their new Drime Account email address, but in fact they did not try to create an account at all - someone else started the process and used their email address either maliciously or by mistake. In these cases, we ((Drime)(https://drime.cloud)) have a volatile/incomplete account that can be used to upload files. Upon request and proof of ownership of the email address, we will delete and or re-enable the account.

10. Law

Subject to the rights that those in the European Union have under the GDPR, this Policy and its interpretation and operation are governed solely by France law. Subject to the rights that those in the European Union have under the GDPR, you, Drime and all users, submit to the exclusive jurisdiction of the France unals and courts as further described in our Terms and you agree not to raise any jurisdictional issue if we need to enforce an arbitral award or judgment in France or another country.

11. No commercial sale of data

We will never sell Your Files, any Account Data or any Usage Data. We will not disclose or otherwise provide Your Files, any Account Data or any Usage Data to a third party, or make any other use of Your Files, Your Chats, any Account Data or any Usage Data, for any purpose which is not specifically allowed under this Policy, our Cookie Policy, our Terms or our Copyright Policy or is not incidental to the normal use of our services.

1
12. Your datas

12.1

 We will retain your files for as long as you are subscribed to our Services, but subject to our rights to suspend and terminate as set forth in our Terms of Service. You must keep copies/backups of your files. We do not guarantee that there will be no data loss or that the Services will be error-free.

You should download your files before you stop using our Services.

12.2 

We may, but are not obligated to, retain your files after your account is suspended or terminated. In particular, we may, but are not obligated to, retain your files if we need to do so for evidentiary purposes in connection with a violation of our Cookie Policy or our Terms of Use, or in light of ongoing or anticipated action by a competent law enforcement agency authorized by law.

12.3

We understand the importance of protecting your personal data. We want to assure you that all user files and data are securely stored on our servers. We take the necessary security measures to safeguard your data during transmission to our servers and while it is stored within our system. Our robust security protocols are designed to protect your information from unauthorized access, disclosure, or alteration. We continuously monitor and update our systems to maintain a high level of security and ensure the integrity of your data. Rest assured that we prioritize the confidentiality and privacy of your information, and we are committed to providing a safe and secure environment for your data storage needs.

13. Data Upload and DownloadData Up and Download

Drime offers the ability to upload and store text files, documents, images, videos and other digital content to or from our servers. Strict internal privacy processes and security requirements govern and ensure that this digital content is not accessible to third parties or someones. We never share this content with third parties unless required by applicable France law.

14. What are my rights ?

If you have any questions about your data protection rights or would like to exercise any of the following rights, you can contact us at any time: What are my rights?

1. Right of access according to Art. 15 GDPR (for example, if you would like to know what data we are storing about you, you can contact us).

2. Deletion according to Art. 17 GDPR (for example, you can contact us if you want certain data we have stored about you to be deleted)

3. Right of withdrawal according to Art. 7(3) GDPR (e.g. if you want to withdraw a given consent for email notifications, you can contact us).

4. Correction according to Art. 16 GDPR (e.g. in your customer dashboard you can independently correct or change your information at any time. If you need help, for example to change or replace an email address, you can contact us).

5. Restriction of processing according to Art. 18 GDPR (e.g. if you do not want to have your e-mail address deleted, but only use it to send certain e-mails, you can contact us).

6. Objection according to Art. 21 GDPR (e.g. if you do not agree with the analysis procedures mentioned in the privacy policy, please contact us).

7. Pursuant to GDPR Art 77 (1) right to lodge a complaint with a competent supervisory authority (e.g., in the event of a complaint, you can also contact the data protection supervisory authority directly).

15. Changes to Privacy Policy

We reserve the right to modify or replace this Privacy Policy at any time. Your continued use of our Service after any such changes constitutes your acceptance of the new Privacy Policy.

16. Contact Us

If you have any questions or concerns about our Privacy Policy or our Service, please contact us at contact@drime.cloud .

This Privacy Policy was last updated on 07/03/2024.