Site Privacy Policy

How do we use your information?

We may use the information we collect from you when you register, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:

• To personalize your experience and to allow us to deliver the type of content and product offerings in which you are most interested.
• To improve our website in order to better serve you.
• To allow us to better service you in responding to your customer service requests.
• To administer a contest, promotion, survey or other site feature.
• To quickly process your transactions.
• To send periodic emails regarding your order or other products and services.

How do we protect your information?

Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible.

Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.

We implement a variety of security measures when a user places an order enters, submits, or accesses their information to maintain the safety of your personal information.

All transactions are processed through a gateway provider and are not stored or processed on our servers.

Third-Party Disclosure

We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information.

Third-Party Links

We do not include or offer third-party products or services on our website.

Changes to our Privacy Policy

We may change this Privacy Policy from time to time. If we make any changes, we will notify you by revising the "Effective Starting" date at the top of this Privacy Policy. If we make any material changes, we will provide you with additional notice (such as by adding a notice on the FusionAuth home page, login screens, or by sending you an email notification). We encourage you to review our Privacy Policy whenever you use the FusionAuth Website to stay informed about our information practices and the ways you can help protect your privacy. If you disagree with any changes to this Privacy Policy, you will need to stop using the FusionAuth Website and deactivate your account(s).

How does site handle Do Not Track Signals?

We honor Do Not Track signals and Do Not Track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.

Google Analytics Tracking

We at fusionauth.io use Google Analytics to collect data. We need this data to understand how you use our website so we can improve its design and functionality. We also need the data to get the most out of our marketing campaigns.

For more information on Google's privacy practices, please visit the Google Privacy Policy: https://policies.google.com/privacy

You can opt-out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on: https://tools.google.com/dlpage/gaoptout

Our Policy towards Children

Generally, we like well behaved children, but the FusionAuth Website is not directed to individuals under 13. We do not knowingly collect Personal Information from children under 13. If we become aware that a child under 13 has provided us with Personal Information, we will take steps to delete such information. If you become aware that a child has provided us with Personal Information, please contact our FusionAuth Support.

International Users

If you are visiting from the European Union or other regions with laws governing data collection and use, please note that you are agreeing to the transfer of your Personal Information to the United States to us. By providing your Personal Information, you consent to any transfer and processing in accordance with this Policy.

Fair Information Practices

The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur will we notify you via email within 72 hours.

CAN-SPAM Act

The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.

We collect your email address in order to:

• Send information, respond to inquiries, and/or other requests or questions.
• Process orders and to send information and updates pertaining to orders.
• Send you additional information related to your product and/or service.
• Market to our mailing list or continue to send emails to our clients after the original transaction has occurred.

To be in accordance with CAN-SPAM, we agree to the following:

• Not use false or misleading subjects or email addresses.
• Identify the message as an advertisement in some reasonable way.
• Include the physical address of our business or site headquarters.
• Monitor third-party email marketing services for compliance, if one is used.
• Honor opt-out/unsubscribe requests quickly.
• Allow users to unsubscribe by using the link at the bottom of each email.

Your options:

• You may opt out of receiving promotional communications from FusionAuth by using the unsubscribe link and or update your email preferences within each email, or emailing us to have your contact information removed from our promotional email list or registration database. Although opt-out requests are usually processed immediately, please allow ten (10) business days for a removal request to be processed. Even after you opt out from receiving promotional messages from us, you will continue to receive transactional messages from us regarding the FusionAuth Website.
• You may be able to opt out of receiving personalized advertisements from companies who are members of the Network Advertising Initiative or who subscribe to the Digital Advertising Alliance's Self-Regulatory Principles for Online Behavioral Advertising. For more information about this practice and to understand your options, please visit: http://www.aboutads.info and http://www.networkadvertising.org/choices/. You may also use TRUSTe's Preference Manager at http://preferences-mgr.truste.com.

Data Privacy Framework

FusionAuth is headquartered in the United States. To provide and operate our services, it is necessary for us to process your personal information in the United States and potentially other countries where we have operations or service providers.

FusionAuth complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. FusionAuth has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) Principles with respect to the processing of personal data received from the European Union, United Kingdom, and Switzerland in reliance on the DPF. If there is any conflict between the terms in this privacy policy and the Data Privacy Framework Principles, the Data Privacy Framework Principles shall govern. To learn more about the Data Privacy Framework program, and to view our certification, please visit https://www.dataprivacyframework.gov/.

The Federal Trade Commission has jurisdiction over FusionAuth’s compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF).

FusionAuth commits to resolve complaints about our collection or use of your personal information. EU, UK, and Swiss individuals with inquiries or complaints regarding our Data Privacy Framework policy should first contact FusionAuth at privacy@fusionauth.io

In compliance with the EU-U.S. Data Privacy Framework (DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. FusionAuth commits to refer unresolved complaints about our handling of Non-HR personal data to JAMS, an independent dispute resolution provider based in the United States. Non-HR data includes all personal data that FusionAuth processes on behalf of its customers.

If you submit a DPF Principles-related complaint and either (1) do not receive timely acknowledgment from FusionAuth, or (2) are not satisfied with how FusionAuth addressed your complaint, please visit https://www.jamsadr.com/DPF-Dispute-Resolution to learn more or file a complaint. JAMS provides these dispute resolution services at no cost to you.

Additionally, if you are an EU, UK or Swiss data subject, you may invoke binding arbitration in certain cases, as further described in Annex I of the EU-U.S. Data Privacy Framework Agreement, the UK Extension to the EU-U.S. Data Privacy Framework Agreement and the Swiss-U.S. Data Privacy Framework Agreement. For further information, please visit the Data Privacy Framework web site at https://www.dataprivacyframework.gov/framework-article/ANNEX-I-introduction or contact our privacy team.

How We Share Your Personal Information

Authorities. We may disclose your personal information to law enforcement and government authorities as we believe in good faith to be necessary or appropriate for the compliance and protection purposes described above.
‍
‍Third Parties and others. We do not sell, disclose, trade, or otherwise transfer to outside parties your Personally Identifiable Information.

Your Rights and Choices

Access and Data Rights: Depending on your location, you may have certain rights regarding your personal information:

• The right to know what personal information we process about you
• The right to access your personal information
• The right to rectify/correct your personal information
• The right to restrict the use of your personal information
• The right to erasure/deletion of your personal information
• The right to data portability
• The right to object to processing
• The right to withdraw consent
• The right to opt-out of the sale or sharing of their personal information

To make a request, please email us at privacy@fusionauth.io
‍
For EU, UK, and Swiss individuals, these rights are guaranteed under the Data Privacy Framework. We will respond to requests to exercise
these rights within 30 days.

You have several options to control how your online activity and device data are collected through our Services:

Analytics Data Collection We use Google Analytics to help us better understand how people engage with the Services by collecting information and creating reports about how users use our Services. For more information on Google Analytics, click here. For more information about Google’s privacy practices, click here. You can opt out of Google Analytics by downloading and installing the browser plug-in available at: https://tools.google.com/dlpage/gaoptout. 

Do Not Track. Some Internet browsers may be configured to send “Do Not Track” signals to the online services that you visit. We currently do not respond to “Do Not Track” or similar signals. To find out more about “Do Not Track,” please visit http://www.allaboutdnt.com.

Onward Transfer Responsibility: When transferring personal information to third parties or agents, FusionAuth remains responsible under the DPF Principles for the processing of that information. FusionAuth shall remain liable if a third party or agent processes such personal information in a manner inconsistent with the Principles, unless FusionAuth proves that it is not responsible for the event giving rise to the damage.

Accessing and Updating your Information

You may often correct, update, amend, or remove your Personal Information in your account settings or by directing your query to your account administrator. You may also contact FusionAuth Support, or contact us by postal mail using the address listed below. We will respond to your request for access within 30 days.

You or your administrator may be able to deactivate your FusionAuth Website account. If you can deactivate your own account, you can most often do so in your account settings. Otherwise, please contact your administrator. To deactivate an organization account, please contact FusionAuth Support. To deactivate an account made for you without authorization, please contact us at the contact information below.

We will retain your account information for as long as your account is active, or as reasonably useful for commercial purposes or as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. If your account is managed by an administrator, that account administrator may have control with regards to how your account information is retained and deleted.

Contacting Us

11080 Circle Point Rd.
Suite 405
Westminster, CO 80020
‍
Email: sales@fusionauth.io