Privacy Policy
Introduction
This Privacy Policy ("Policy") describes how DoneThat ("we," "our," or "us") collects, uses, and discloses information when you use our SaaS application ("DoneThat" or the "Service"). DoneThat enables organizations to analyze screenshots through third-party AI technologies to enhance work visibility among teams and managers.
Information We Collect
Information You Provide
- Account Information: When you register for DoneThat, we collect information such as your name, email address, organization name, job title, and billing information.
- Content: Screenshots and related work materials that you upload to the Service for analysis and sharing.
- User Feedback: Information you provide when you contact our support team or respond to surveys.
Information Collected Automatically
- Usage Data: Information about how you interact with DoneThat, including features used, time spent on the Service, and actions taken.
- Device Information: Information about the devices used to access DoneThat, including IP address, browser type, operating system, and device identifiers.
- Cookies and Similar Technologies: We use cookies and similar tracking technologies to collect information about your browsing activities and to maintain your session and preferences.
- Analytics Data: We use Google Analytics to collect and analyze usage data across our web application (app.donethat.ai) and desktop application. This includes information about how you interact with our services, pages visited, time spent on features, and other usage patterns. This data helps us improve our services and understand how users engage with our platform.
How We Use Information
We use the information we collect to:
- Provide, maintain, and improve the Service
- Process and complete transactions
- Send administrative information, including updates about the Service
- Respond to comments, questions, and customer service requests
- Analyze usage patterns to enhance user experience
- Detect, prevent, and address technical issues
- Comply with legal obligations
Third-Party AI Processing
AI Analysis of Screenshots
DoneThat utilizes third-party AI services to analyze screenshots and work content. These third parties process visual data to extract work-related information for visibility purposes. For a complete list of our AI providers and other subprocessors, please visit our Subprocessors page.
Third-Party AI Provider Selection
We select third-party AI providers that maintain appropriate security measures and data handling practices. However, once data is shared with these providers, their processing is governed by their own privacy policies and terms. Details about our providers' privacy policies and security measures can be found on our Subprocessors page.
Data Minimization
We take reasonable steps to ensure that sensitive information is not extracted from screenshots. Furthermore, neither we nor the third-party AI providers store screenshots beyond the duration of the analysis without explicit user consent.
Data Sharing and Disclosure
We may share information with:
Within Your Organization
Information and analyzed content is shared within your organization according to the permissions and settings configured by your account administrator.
Service Providers
Third-party vendors, consultants, and service providers who require access to perform work on our behalf, including cloud hosting providers, payment processors, and analytics services. A complete list of our subprocessors, including their locations and purposes, is available on our Subprocessors page.
Third-Party AI Partners
The third-party AI services that analyze screenshots and other content submitted to the Service.
Business Transfers
If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction.
Legal Requirements
If required to do so by law or in response to valid legal process, or if we believe that disclosure is reasonably necessary to protect our rights, property, or safety and that of our users or the public.
Data Security
We implement appropriate technical and organizational measures to protect the information we collect and maintain. However, no security system is impenetrable, and we cannot guarantee the absolute security of our systems.
Data Retention
We retain information for as long as necessary to provide the Service and fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.
Data Storage
Your data is primarily stored in our secure data centers located in the European Union. We use Google Cloud Platform as our primary infrastructure provider, ensuring your data is protected by industry-standard security measures and compliance certifications. For more information about our data storage locations and providers, please visit our Subprocessors page.
Your Rights and Choices
We believe in transparency and giving you control over your data. You have the following rights regarding your personal information:
Access and Correction
You can access and update your personal information through your account settings. If you need assistance accessing or correcting your information, please contact our support team.
Data Export
You can request a copy of your personal information in a structured, commonly used, and machine-readable format. We will provide this data within 30 days of your request.
Deletion
You can request the deletion of your personal information. We will honor your request unless we are legally required to retain certain information or need it to protect our legal rights.
Processing Preferences
You can control how we process your data by adjusting your account settings or contacting us. This includes managing your communication preferences and data processing options.
Exercising Your Rights
To exercise any of these rights, please contact us at privacy@donethat.ai. We will respond to your request within 30 days. We may need to verify your identity before processing your request.
International Data Transfers
Your information may be transferred to and processed in countries other than the country in which you reside. These countries may have data protection laws that are different from those in your country. For details about where our subprocessors store and process data, please refer to our Subprocessors page.
We have implemented appropriate safeguards to ensure that your information remains protected in accordance with this Privacy Policy when transferred internationally.
Children's Privacy
DoneThat is not intended for use by children under the age of 16, and we do not knowingly collect personal information from children under 16.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For material changes, we will provide additional notice, such as sending an email to the administrator of your organization's account.
Contact Us
If you have any questions about this Privacy Policy, please contact our Data Protection Officer at:
privacy@donethat.ai
Legal Basis for Processing (For EEA and UK Users)
If you are located in the European Economic Area (EEA) or the United Kingdom, our legal basis for collecting and using personal information will depend on the specific information concerned and the context in which we collect it:
- Contract: Processing necessary for the performance of our contract with you.
- Legitimate Interests: Processing based on our legitimate interests, provided those interests are not outweighed by your rights and interests.
- Consent: Processing based on your consent, which you can withdraw at any time.
- Legal Obligation: Processing necessary to comply with our legal obligations.
Data Controller
Letss B.V. is the data controller responsible for your personal information collected through DoneThat.
support@letss.app
This Privacy Policy was last updated on March 20, 2024. We will notify you of any material changes to this policy.