Buttonizer GDPR

Privacy by design

Buttonizers' GDPR in short

Buttonizer, a European company (The Netherlands), collects as little data as possible and is fully compliant with the European General Data Protection Regulation, also known as GDPR.

We choose to work only with companies that are GDPR compliant and do not set any tracking cookies when using our widget on your site. Our database, application and widgets are hosted on servers in The Netherlands.

Going into detail - business talk

Buttonizer is part of Blinktuit V.O.F., registered in The Netherlands. On this information page we will explain how our organization uses the personal data we collect from you when you use our application or implement our widget to your site.

What data do we collect?

When using our application
Buttonizer only collects the following data in case you have a Buttonizer account:

  • Personal identification information
    • Name
    • Email address
  • Billing information, processed by Freemius or Shopify
  • Domain name

 

When using our widget
Buttonizer does not collect any visitor information until any user interaction by design.

We only collect information:

  • When clicking a button. The information we collect:
    • When was the button clicked
    • On what page the button was clicked (URL)
    • How long a visitor was on the page before clicking the button
    • The country of the visitor (using Cloudflare information)
    • The device type of the visitor (desktop, tablet or phone)
  • When filling in a form-widget:
    • We collect the data that was entered in the fields.
    • We will process it to the destination service that was configured by the site widget owner.
    • We do not log entries unless explicitly stated or set up.

How do we collect your data?

When using our application
You directly provide Buttonizer with most of the data we collect. We collect data and process data when you:

  • Create an account on our application
  • Voluntarily complete a customer survey or provide feedback on any of our message boards or via email.

 

When using our widget
We do not intentionally collect data from site guests loading in the Buttonizer widget on your site(s). However, our webserver does temporarily log your client IP address to process the request.

The server logs are rotated and purged automatically in the background and the information is not used or processed on any other location in or outside the Buttonizer ecosystem.

How will we use your data?

When using our application
Buttonizer collects your data so that we can:

  • Manage your account
  • Investigating crashes of our applications
  • Handle opt-ins for our email newsletter/special deals

 

When Buttonizer processes your order, it may send your data to, and also use the resulting information from, credit reference agencies to prevent fraudulent purchases.

When using our application or widget
All traffic to our buttonizer.pro and buttonizer.io domain is served via Cloudflare proxy which is being used as our CDN and worldwide coverage. Assets served via our servers could be cached temporarily on their service.

To read more about Cloudflare’s GDPR compliance, read more here.

How do we store your data?

Buttonizer securely stores your data in databases and servers in The Netherlands using DigitalOcean as data-processor. Our database is configured so it can only be accessed by servers utilized by Buttonizer.

Storage servers

We currently have the following servers that could (partly) store account/action data:

  • Sentry (self-hosted) – Used to identify crashes, errors and performance issues of our API or any of our frontends, such as, but is not limited to:
    • Buttonizer Dashboard
    • Buttonizer Editor
    • Buttonizer for WordPress dashboard
    • Buttonizer for Shopify dashboard
  • Prometheus (self-hosted) – Storing click-data and webserver analytics and other kind of collected insights 
  • Flarum (self-hosted) – Community software for our Buttonizer Community, storing basic account data if you sign in with your Buttonizer Account

Delete my data

If you wish to no longer use Buttonizer, you can request us deletion of your account. Your request will be processed within a several days, but no longer than 7 days from the moment your request has been received.

In this case we will erase your data from our databases and servers. It is possible that your information is still available in backups, up to (at max) two weeks from the point that your account has been deleted.

Securing your data

Measures we have taken to protect your data:

  • All services are accessible over HTTPS only (SSL/TLS)
  • Our database server is configured to be only accessible via Buttonizer servers/services
  • Minimalize data collection
  • Servers are only accessible using SSH keys
  • Passwords are securely stored and hashed using the industry standard Bcrypt (Blowfish algorithm)
  • Security program

For more information, please visit our dedicated page about security and disclosure.

Third-party services we use

As stated earlier, we try to minimalize external services as much as possible. A lot of what we do is built or stored in-house. However, in some situation this is not the case, and some data is shared.

When using our application
As mentioned earlier, we only use applications/services that comply with the GDPR too and don’t share data outside of the service that we pay for. We minimalize data-sharing to the absolute minimum to what is required for that service.

This section only applies for users that have created a Buttonizer account.

  • AWS SES (Amazon Simple Email Service): We send emails via our AWS account. Data that is being processed:
    • Email address
  • Freemius: Our license and subscription manager (more information about this here). Data that is being processed:
    • Basic account info (such as email address and name)
    • Payment processor
    • Billing information (invoices)
    • Domain(s) and license activations
  • Cloudflare: Our worldwide CDN. Data that is being processed:
    • IP Adress to process your request to our servers
  • Sendinblue: Used for sending our newsletter. Data that is being processed:
    • Email address
  • DigitalOcean: Our server infrastructure & database. More information about them here.

When using our widget
Other than Cloudflare, we do not use any third-party service for serving our widget. We won’t share (or collect) any data of incoming requests.

This section only applies for website visitors loading in our widget: 

  • Cloudflare: Our worldwide CDN. Data that is being processed:
    • IP Adress to process your request to our servers
  • DigitalOcean: Our server infrastructure & database. More information about them here.

Marketing

Buttonizer would like to send you information about products and services of ours that we think you might like.

lf you have agreed to receive marketing, you may always opt out at a later date.

You have the right at any time to stop Buttonizer from contacting you for marketing purposes.

lf you no longer wish to be contacted for marketing purposes, please click the ‘Unsubscribe’ link in our emails or check your account settings.

What are your data protection rights?

Buttonizer would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:

The right to access – You have the right to request Buttonizer for copies of your personal data.

The right to rectification – You have the right to request that Buttonizer correct any information you believe is inaccurate. You also have the right to request Buttonizer to complete information you believe is incomplete.

The right to erasure – You have the right to request that Buttonizer erase your personal data.

The right to restrict processing – You have the right to request that Buttonizer restrict the processing of your personal data, under certain conditions.

The right to object to processing – You have the right to object to Buttonizer’s processing of your personal data, under certain conditions.

The right to data portability – You have the right to request that Buttonizer transfer the data that we have collected to another organization, or directly to you, under certain conditions.

lf you make a request, we have one month to respond to you. lf you would like to exercise any of these rights, please contact us via our contact form.

What are cookies?

Cookies are text files placed on your computer to collect standard Internet log information and visitor behavior information. When you visit our websites, we may collect information trom you automatically through cookies or similar technology.

For further information, visit allaboutcookies.org.

How do we use cookies?

When using our application
Buttonizer uses cookies in a range of ways to improve your experience on our website, including: 

  • Keeping you authenticated (signed in)
  • Being affiliated via another Buttonizer user

When using our widget
Buttonizer uses cookies in a range of ways to improve your site visitors experience on your website, including:

  • Open Buttonizer menu at first page load (cookie type: boolean)
  • Show Buttonizer menu after several number of seconds (cookie type: timestamp)
  • Buttonizer exit intent, when set on ‘only once per browser session‘. (cookie type: sessioncookie with value: timestamp, feature in Buttonizer Pro)
  • Current state of the Buttonizer group to re-open if you navigate to another page (cookie type: object-boolean)

These cookies are set on your own domain and are not being used for tracking. You can find more information about our cookies here and on cookiedatabase.org.

What types of cookies do we use?

When using our application

Buttonizer will only set functional cookies:

  • Functionality – Buttonizer uses these cookies so that we recognize you on our application and remember your authentication state. A mix of first-party and third-party cookies are used.

 

When using our widget

  • Functionality – Buttonizer uses these cookies to influence the behaviour of the Buttonizer widget

How to manage cookies

You can set your browser not to accept cookies. However, in a few cases, some of our applications features such as signing in may not function as a result.

Privacy policies of other websites

The Buttonizer application might contain links to other websites or subdomains. Our privacy policy applies only to our website and subdomains of buttonizer.pro and buttonizer.io, so if you click on a link to another website, you should read their privacy policy.

Changes to our privacy policy and GDPR page

Buttonizer keeps its this page under regular review and places any updates on this web page. This webpage was last updated on October 4, 2022.

How to contact us

lf you have any questions about Buttonizer’s privacy policy, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact us.

How to contact the appropriate authority

Should you wish to report a complaint or if you feel that Buttonizer has not addressed your concern in a satisfactory manner, you may contact the Information Commissioner’s Office. 

Email: [email protected]

Address

BlinktUit
Bredewater 16
2715 CA Zoetermeer
The Netherlands

Privacy by Design - A word from us

As you might have read above, we try to collect as little information as possible from anyone using or connecting to our service. This is by design and chosen because we think that’s important to do these days.

Our focus is to be the-way-to-go for advanced floating content without being “another service that want your data“. However, as any other Software as a Service platform, we do process data, but try to do this as carefully and as little as possible.

If you have any questions about what you have read above, or you think we’ve missed something, just reach out to us! Use our contact form or our feedback form.

Just in case you were wondering: we will never sell your information. In fact, some data is publicly available via our Grafana server