Privacy policy

Last updated: September 25, 2020

Sendinblue (consequently “we”, “us” and “our”) operates the MailClark website and application (the “Service”) for Slack and Microsoft Teams (the “Platform”).

This page informs you of our policies regarding the collection, use and disclosure of information when you use our Service.

By using the Service, you agree to the collection and use of information in accordance with this policy.

Information you provide to us

We collect certain information about you when you provide it directly to us in order to use our Service. We only obtain information necessary to provide you with our Service. We are not in the business of selling information to third parties for profiling or targeting.

As an email & social client available solely for Slack and Microsoft Teams, the core functionality of our Service is based on connecting your Platform’s team(s), also called workspace, to email and/or social account(s). Without such access, we are unable to provide you with our Service.

Platform account: When you add our Service to your team, your name and email address as well as your team’s name and domain will be provided to us. We use the Platform’s direct messages between you and our bot for announcements (e.g. new feature, survey, promotional offer) and your email address for onboarding purposes, but all our communications come with an link to unsubscribe. The only exceptions are communications about a major change of billing or terms, and important security announcements.

Email/social account(s): In order to receive, send and manage messages from the Platform, we require you to connect your email (IMAP/SMTP server details or OAuth for Gmail, Office 365, Outlook.com) and/or social (OAuth for Facebook, Twitter) account(s). The only option to use our Service without providing third-party credentials is to forward emails to a @mailclark.ai address.

Information we collect automatically

When you interact with our Service, we automatically collect information about you (“Log Data”). This Log Data may include information such as your computer’s Internet Protocol (“IP”) address, browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages and other statistics.

In addition, we use third-party services such as Google Analytics, Mixpanel, Facebook Messenger that collect, monitor and analyze this type of information in order to increase our Service’s functionality.

These third-parties use cookies to help us analyze how our users are using the Service and they have their own Privacy Policies addressing how they use such information. Cookies are small text files placed on your device, which may include an anonymous unique identifier.

How we use information

We use the information we collect to provide our Service, namely to let you and your teammates collectively manage emails and social messages from the Platform you use. This includes receiving messages, sending messages and, more broadly, syncing conversations between the Platform and the email/social account(s) that you’ve connected. Additional operations might be available depending on the type of email/social account (e.g. archiving emails for Gmail).

Cloud sync: Unlike email clients that perform tasks locally, our Service is entirely cloud-based. By using our Service you authorize us to store your email and/or social credentials on our servers, scan the contents of your inbox, cache the contents as deemed necessary until you explicitly revoke our access by disconnecting an account or uninstalling our Service, and make messaging operations (such as sending or archiving messages) from our servers on your behalf.

Research and development: We utilize our collective learnings about the way users interact with our Service, as well as feedback provided directly to us, to troubleshoot issues, fix bugs, enhance functionality, and identify areas for improvement of the Service.

How long information is stored for

We retain your information for a period of time consistent with the original purpose of collection. We delete your information within 14 days after you uninstall our Service from the Platform. In accordance with the law, we retain certain information (such as invoicing information) to comply with our legal obligations.

EU individuals may send us a request to erase data at any time (see the “European Union individuals” section below).

Disclosure of information

Service providers. Only our service providers and trusted third-party applications have access to your information. These parties include hosting, back-up and other IT services providers (AWS Ireland, Mailgun), billing and processing payments functions (Chargebee, Stripe, GoCardless). We only provide such parties with the information that they need to perform the services we have hired them to provide.

Business transaction. If Sendinblue is involved in a merger, acquisition, reorganization, dissolution or asset sale, your information may be transferred.

Compliance with laws. We will disclose your information where required to do so by law or subpoena or if we believe that such action is necessary to comply with the law and the reasonable requests of law enforcement or to protect the security or integrity of our Service.

International transfer. Your information may be transferred to servers located outside of your country where the data protection laws may differ than those from your jurisdiction. Sendinblue operates in France, your data is processed and stored in AWS datacenter in Ireland. Your consent to this Privacy Policy followed by your submission of your information represents your agreement to that transfer.

European Union individuals

This section applies if you are an individual in the EU.

Data controller. Sendinblue is the data controller for processing of your personal information. We act as a data processor (or service provider) in relation to the Service we provide to our users.

Your Rights. Subject to EU General Data Protection Regulation, you have the following rights in relation to your personal information:

  • Right to be informed. We are committed to notifying our users of any attack, breach of confidentiality, leak or data theft.
  • Right of access. We are transparent about our use and collection of data as explained in this Privacy Policy. Feel free to contact our DPO (see the “Contact us” section below) to access any of your data.
  • Right to rectification. Sign in to mailclark.ai/settings to rectify your information (User, Workspace and Billing sections). Alternatively, you can send a rectification request to our DPO.
  • Right to erasure. We delete your data within 14 days after you uninstall MailClark from Slack or MS Teams. We only keep invoices as required by law.
  • Right to portability. We will provide you with an export of your data upon request to our DPO.
  • Right to object. All our communications (e.g. newsletter, product announcement) come with a link to unsubscribe.

Security

We take all necessary precautions, as well as the appropriate organizational and technical measures, to maintain the security, integrity and confidentiality of your personal data, and in particular to prevent it from being deformed or damaged and to prevent any unauthorized third party from accessing it. We also use secured payment systems consistent with the state of the art and the applicable regulation.

Nevertheless, the security of your information is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.

Links to other sites

Our Service may contain links to other sites that are not operated by us. We have no control over, and assume no responsibility for the content, privacy policies or practices of any third-party sites or services.

Children’s privacy

Our Service does not address anyone under the age of 13 (“Children”).

We do not knowingly collect personally identifiable information from children under 13. If you are a parent or guardian and you are aware that your children has provided us with information, please contact us. If we become aware that we have collected information from a children under age 13 without verification of parental consent, we take steps to remove that information from our servers.

Changes to this Privacy Policy

We may update our Privacy Policy from time to time. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Contact us

If you have any questions or concerns about MailClark and privacy Policy, contact our DPO by email email us or by post:
MailClark
WeReso, 18-20 rue Tronchet
69006 Lyon, France