Last updated July 2023. Replaces all prior versions.
Cove Tool, Inc. (the “Company,” “we,” “our,” or “us”) is committed to protecting your privacy. This notice describes the types of personal data that we may collect from you or that you may provide when you visit our website at https://www.cove.tools/ (“Website”), interact with us or use our software or services (together, the “Services”). This notice also describes our practices for using, maintain, protecting, and disclosing that personal data. Please read this Privacy Notice carefully as it will help you make informed decisions about sharing your personal data with us.
Who Is Responsible for The Processing of Your Personal Data?
The data controller for the purposes of processing personal data in the context of our Services is Cove Tool, Inc., located at:
100 Peachtree Street
Atlanta, GA 30303
Questions, comments, and requests regarding our Privacy Notice may be addressed to us at firstname.lastname@example.org.
What Types of Personal Data Do We Process?
We collect personal data relating to prospective and existing customers, for instance when an individual submits a request through our Services or registers on our Website (e.g., if you sign up for a live or on demand webinar). Some of this information may be regulated under applicable data privacy laws.
The Website also automatically collects the following data via cookies and other automatic collection technology:
The provision of certain types of personal data may be necessary or optional, depending on the services you wish to receive. Mandatory data will be marked as such at the moment of collection of your personal data. If you refuse to provide mandatory data, we may not be able to process your request (such as your contact request or purchase) or provide you with Services.
We will not collect personal data if that collection is prohibited under the applicable data protection laws.
We use a third-party service provider to collect and process all payment card information.
We take reasonable steps to maintain personal data in a manner that ensures it is accurate, complete and up-to-date.
For Which Purposes Do We Process Your Personal Data?
We process personal data in accordance with applicable data protection laws and only for limited, explicit and legitimate purposes.
We will not use personal data for any purpose that is incompatible with the purpose for which it was initially collected unless you provide your prior, explicit consent for further use.
We process your personal data for the following purposes and corresponding legal basis:
For questions or additional information regarding the purpose and legal basis for processing personal data, please contact us at email@example.com.
How Do We Disclose Your Personal Data?
We will only grant access to personal data on a need-to-know basis, and that access will be authorized and limited to the personal data that is necessary to perform the function for which such access is granted.
Service providers are legally and contractually required to abide by our instructions when processing personal data and will only receive personal data according to the purposes of the service agreement or any other type of contract entered into with us.
Your personal data may be transmitted to the following recipients when you access, browse, navigate and/or use the Services:
How Do We Handle International Transfers of Your Personal Data?
International data transfers refer to transfers of personal data outside of the European Union (“EU”), United Kingdom (“UK”) or Australia. The information that we collect about you will be stored in the United States and shared with third parties located in the United States. When we transfer your personal data from your local jurisdiction to other countries that do not provide adequate legal protection for the processing of personal data, we will ensure that appropriate safeguards are implemented to secure such data transfers in compliance with applicable data protection laws and after having carried out an assessment of the level of protection of your rights in the territory or the third country where the recipient is established. We have implemented international data transfer agreements based on EU and UK Standard Contractual Clauses to cover our international data transfers and a copy of these clauses can be obtained by contacting us at firstname.lastname@example.org.
How Long Do We Retain Your Personal Data?
We will retain your personal data for as long as necessary for the purposes disclosed in this Privacy Notice, unless required by our legal obligations to retain it for longer. To determine the appropriate retention period for personal data, we consider the amount, nature and sensitivity of data, the potential risk of harm from unauthorized use or disclosure of data, the purposes for which we process data, whether we can achieve those purposes through other means and all applicable legal, regulatory, and compliance requirements.
For example, the data collected when you request to purchase our services will be kept at least until their processing is complete.
In addition, we will keep your personal data during:
the statute of limitation, if needed for evidence purposes;
the applicable legal retention periods, in particular regarding commercial, compliance, and regulatory matters, or any other mandatory retention period (such as legal hold or investigation).
What Security Measures Have We Implemented?
We have implemented reasonable measures designed to secure your personal data from accidental loss and from unauthorized access, use, alteration, and disclosure. Unfortunately, the transmission of information via the Internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to us.
Our Services may contain links or references to other websites outside of our control. Please be aware that this Privacy Notice does not apply to these websites. The Company encourages you to read the privacy notices and terms and conditions of linked or referenced websites you enter. These third-party websites may send their own cookies and other tracking devices to you, log your IP address, and otherwise collect data or solicit personal data. THE COMPANY DOES NOT CONTROL AND IS NOT RESPONSIBLE FOR WHAT THIRD PARTIES DO IN CONNECTION WITH THEIR WEBSITES, OR HOW THEY HANDLE YOUR PERSONAL DATA. PLEASE EXERCISE CAUTION AND CONSULT THE PRIVACY NOTICES POSTED ON EACH THIRD-PARTY WEBSITE FOR FURTHER INFORMATION.
What Happens If A Child Under The Age of 16 Uses Our Website?
Our Services are not intended for children under 16 years of age, and the Company does not knowingly collect or use any personal data from children under the age of 16. No one under the age of 16 should provide any information to or through the Services. If we learn we have collected or received personal data from a child under the age of 16, we will delete that information. If you believe we might have any information from or about a child under the age of 16, please contact us at email@example.com.
European Union, United Kingdom, And Australian Privacy Rights
If you are a resident of the European Union (“EU”), United Kingdom (“UK”), or Australia the rights described in this section can be exercised by you at any time by contacting us firstname.lastname@example.org.
Right to access. You are entitled to obtain confirmation from us as to whether or not any personal data concerning you is processed by us.
You have the right to access your personal data, to obtain a copy of it free of charge (except for repetitive or excessive requests) and to be provided with the following information: (i) purposes of such processing, (ii) categories of personal data concerned, (iii) recipients or categories of recipients of personal data, in particular recipients in third countries outside the EU, UK, or Australia, (iv) the envisaged retention period or, if not possible, the criteria used to determine it, (v) existence of the right to request rectification or erasure of personal data, as well as the right to object to or request restriction of processing, (vi) the right to lodge a complaint with a supervisory authority, (vii) information relating to any third party source of personal data if the data were not collected from you, and (viii) the existence, the logic involved, the significance and the consequences of any automated decisions, including profiling. Where personal data is transferred outside of the EU, UK, or Australia, you will be informed of the appropriate safeguards relating to such transfer.
Right to rectification. You have the right to obtain without undue delay the rectification of inaccurate, incomplete or outdated personal data concerning you.
Right to erasure. You have the right to obtain without undue delay the erasure of your personal data in one of the following cases:
The personal data is no longer necessary in relation to the purpose(s) for which it was collected or otherwise processed;
You withdraw the consent on which the processing was based, and there are no other legal grounds for the processing;
You object to the processing, as provided in the “Right to object” section below;
Your personal data has been unlawfully processed;
Your personal data has to be erased for compliance with a legal obligation in the EU, UK, or Australia.
However, we may refuse the erasure of personal data if the processing of such data is necessary for (i) exercising the right of freedom of expression and information, (ii) compliance with a legal obligation which requires processing by EU, UK, or Australia law or for the performance of a task carried out in the public interest, (iii) reasons of public interest in the area of public health, scientific or historical research purposes or statistical purposes, or (iv) establishment, exercise or defense of legal claims.
Right to restriction. You have the right to obtain restriction of processing in the following cases:
Where you claim inaccuracy of your personal data processed by us (the restriction being provided for a period enabling us to verify the accuracy);
Where the processing appears unlawful, and you oppose the erasure and request the restriction of use of your personal data instead;
Where we do not need your personal data for the purposes of processing, but the personal data is required by you for the establishment, exercise or defense of legal claims; and
Where an objection is raised by you in relation to the processing, pending the verification whether the legitimate grounds of the Company override those of you.
When you have obtained a restriction of processing of your personal data, you will be informed prior to the lifting of such restriction.
Right to object. As a general rule, you have the right to object, at any time and on legitimate grounds relating to your particular situation, to the processing of your personal data. Provided that such objection is justified, we will no longer process the personal data concerned unless we can demonstrate compelling legitimate grounds for the processing which override your interests.
Right to data portability. In cases where the data processing is based on your consent or on your contract, and where such processing is carried out by automated means, you can request us (i) to communicate to you the personal data concerning you, in a structured, commonly used and machine-readable format, in order to be able to further transmit such personal data to another data controller, or (ii) to directly transmit such personal data to such other data controller, if technically feasible. However, we can refuse such request if the processing concerned is necessary for the performance of a task carried out in the public interest or if responding to such request risks to adversely affect the rights and freedoms of others.
Right to withdraw consent. Where the processing of your personal data is based on consent, you have the right to withdraw such consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
Right to lodge a complaint. You also have the right to lodge a complaint with the competent supervisory authority. If you are a resident of Australia, please get in touch if you have any questions or complaints about how we collect, use or manage personal data about you. You can contact us using the contact information below. If you make a complaint, we will endeavor to respond within a reasonable period after the request is made, you have the right to make a complaint to the Office of the Australian Information Commissioner (“OAIC”). Please note the OAIC requires any complaint to be made to us before you make a complaint to the OAIC. Further details about how to lodge a complaint with the OAIC can be found at https://www.oaic.gov.au/privacy/privacy-complaints/lodge-a-privacy-complaint-with-us/.
Notice To Canadian Users
If you are in Canada, the disclosures set out below apply to you in addition to the general sections of this Privacy Notice.
Your Rights. You may request access to or correction of personal data about you in our control as detailed in the contact us section below. These rights are subject to certain exceptions and we may take steps to verify your identity before responding to your request.
We, our service providers and other parties with whom personal data about you may be shared as described in this Privacy Notice may process and store personal data about you outside of Canada, including in the United States and in other countries. While outside of Canada, personal data about you will be subject to applicable local laws, which may not afford the same level of protection to personal data about you as the laws in Canada.
Do Not Track Signals
Web browsers and other technologies you may use to access the Website may include a Do-Not-Track (“DNT”) feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage no uniform technology standard for recognizing and implementing DNT signals has been finalized. As a result, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online.
California Privacy Rights
California’s “Shine the Light” law (Civil Code Section § 1798.83) permits users of our Website that are California residents to request certain information regarding our disclosure of personal data to third parties for their direct marketing purposes. As of the date of this Privacy Notice, we do not disclose personal data to third parties for their direct marketing purposes.
As of the date of this Privacy Notice, the California Consumer Privacy Act of 2018 (“CCPA”) does not apply to us. If that were to change in the future, we will update this Privacy Notice.
Notice To Residents of Nevada
We do not sell your personal data. If that were to change in the future, we will update this Privacy Notice.
Privacy Notice Updates
We reserve the right to change this notice at any time. Any changes we make will be posted on this page. If we make material changes to how we treat your personal data, we will take reasonable steps to attempt to notify you of the change. The date this notice was last revised is identified at the top of the page. Following a change to this notice, your continued use of our Services after such amendments will be deemed your acknowledgement of these changes to this notice.
If you have questions about this Privacy Notice or would like to contact us about it, you may do so via the following avenues:
100 Peachtree Street
Atlanta, GA 30303