Privacy Policy

This privacy notice for Enruto ('we', 'us', or 'our'), describes how and why we might collect, store, use, and/or share your information when you use our services, such as when you visit our website at {{app_url}} or engage with us in other related ways.

1. WHAT INFORMATION DO WE COLLECT?

In Short: We collect personal information that you provide to us.

We collect personal information that you voluntarily provide when you register, express interest in our services, or contact us. This includes:

  • Names
  • Phone numbers
  • Email addresses
  • IP addresses
  • Device and browser information

Payment Data: Payment information is processed by Stripe. See their privacy policy at https://stripe.com/en-gb/privacy.

2. HOW DO WE PROCESS YOUR INFORMATION?

In Short: We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law.

We process your personal information for various reasons including:

  • To facilitate account creation and management
  • To deliver services to users
  • To respond to user inquiries and provide support
  • To send administrative information
  • To fulfill and manage orders
  • To request feedback
  • For marketing and promotional communications
  • To deliver targeted advertising
  • To protect our Services
  • To identify usage trends
  • To determine marketing campaign effectiveness
  • To save or protect vital interests

3. WHAT LEGAL BASES DO WE RELY ON TO PROCESS YOUR PERSONAL INFORMATION?

In Short: We only process your personal information when we have a valid legal reason to do so.

For EU/UK residents: We rely on:

  • Consent: When you give us permission
  • Contract Performance: To fulfill our contractual obligations
  • Legitimate Interests: For business purposes that don't override your rights
  • Legal Obligations: To comply with laws
  • Vital Interests: To protect safety

For Canadian residents: We process information with your express or implied consent, or as legally permitted without consent in specific circumstances.

4. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

In Short: We may share information in specific situations and with specific third parties.

We may share your data with third-party service providers including:

  • Advertising: Bing Ads, Google Ads
  • Cloud Computing: Google Cloud Platform
  • Communications: Help Scout, Postmark, Plivo
  • Analytics: Google Analytics, Google Tag Manager
  • Payment Processing: Stripe
  • Performance Monitoring: Uptime Robot, Grafana
  • Security: Cloudflare

5. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?

In Short: We may use cookies and other tracking technologies to collect and store your information.

We use cookies and similar technologies like web beacons and pixels to access or store information. Details about our cookie usage are provided in our Cookie Notice.

6. IS YOUR INFORMATION TRANSFERRED INTERNATIONALLY?

In Short: We may transfer, store, and process your information in countries other than your own.

Our servers are located in Germany. For EEA, UK, and Swiss residents, we use European Commission's Standard Contractual Clauses to protect your data during international transfers. Our Data Processing Agreements are available at {{app_url}}/page/dpa.

7. HOW LONG DO WE KEEP YOUR INFORMATION?

In Short: We keep your information for as long as necessary to fulfill the purposes outlined in this privacy notice unless otherwise required by law.

We retain personal information only as long as necessary for the purposes set out in this notice, or as required by law. Generally, we keep information for the period you have an account with us. When no longer needed, we delete or anonymize your information.

8. HOW DO WE KEEP YOUR INFORMATION SAFE?

In Short: We aim to protect your personal information through organizational and technical security measures.

We implement appropriate technical and organizational security measures to protect your personal information. However, no electronic transmission or storage can be guaranteed 100% secure. You should only access our Services within a secure environment.

9. DO WE COLLECT INFORMATION FROM MINORS?

In Short: We do not knowingly collect data from or market to children under 18 years of age.

We do not knowingly solicit data from or market to children under 18. By using our Services, you represent that you are at least 18 or have parental consent. If we learn we have collected information from someone under 18, we will deactivate the account and delete the data. Contact us at [email protected] if you become aware of such data collection.

10. WHAT ARE YOUR PRIVACY RIGHTS?

In Short: In some regions, you have rights that allow you greater access to and control over your personal information.

In certain regions (like the EEA, UK, Switzerland, and Canada), you have rights including:

  • Request access to and obtain a copy of your personal information
  • Request rectification or erasure
  • Restrict processing of your personal information
  • Data portability (if applicable)
  • Not to be subject to automated decision-making
  • Object to processing of your personal information

Withdrawing consent: If we rely on your consent, you can withdraw it at any time by contacting us.

Marketing communications: You can unsubscribe from marketing emails using the unsubscribe link or by contacting us.

Account Information: You can review, change, or terminate your account by contacting us.

11. CONTROLS FOR DO-NOT-TRACK FEATURES

Most web browsers include a Do-Not-Track (DNT) feature. Currently, no uniform technology standard for recognizing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals.

12. DO UNITED STATES RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?

In Short: If you are a resident of California, you are granted specific rights regarding access to your personal information.

California Residents

Under the California Consumer Privacy Act (CCPA), California residents have specific rights including:

Categories of Personal Information We Collect:

Category Examples Collected
A. Identifiers Contact details, IP address, email address, account name YES
B. Personal information (CA Customer Records) Name, contact information, financial information YES
C. Protected classification characteristics Gender and date of birth YES
D. Commercial information Transaction information, purchase history NO
E. Biometric information Fingerprints and voiceprints NO
F. Internet or network activity Browsing history, search history, online behavior NO
G. Geolocation data Device location YES
H. Audio, electronic, visual information Images and audio, video or call recordings NO
I. Professional or employment information Business contact details, work history NO
J. Education Information Student records and directory information NO
K. Inferences Inferences drawn from personal information NO

Your CCPA Rights:

  • Right to Know: Information about our data collection and use practices
  • Right to Delete: Request deletion of your personal information
  • Right to Non-Discrimination: We will not discriminate against you for exercising your rights

To exercise these rights, you can submit a data subject access request or visit {{app_url}}/help.

13. DO OTHER REGIONS HAVE SPECIFIC PRIVACY RIGHTS?

In Short: You may have additional rights based on the country you reside in.

Australia and New Zealand

We collect and process your personal information under Australia's Privacy Act 1988 and New Zealand's Privacy Act 2020. This privacy notice satisfies the notice requirements defined in both Privacy Acts.

If you do not provide necessary personal information, it may affect our ability to:

  • Offer you the products or services that you want
  • Respond to or help with your requests
  • Manage your account with us
  • Confirm your identity and protect your account

You have the right to request access to or correction of your personal information. You can complain to the Office of the Australian Information Commissioner or the Office of New Zealand Privacy Commissioner.

Republic of South Africa

You have the right to request access to or correction of your personal information. If unsatisfied with how we address complaints, you can contact:

The Information Regulator (South Africa)
General enquiries: [email protected]
Complaints: [email protected] & [email protected]

14. DO WE MAKE UPDATES TO THIS NOTICE?

In Short: Yes, we will update this notice as necessary to stay compliant with relevant laws.

We may update this privacy notice from time to time. The updated version will be indicated by an updated 'Revised' date and will be effective as soon as accessible. If we make material changes, we may notify you either by prominently posting a notice or by directly sending you a notification. We encourage you to review this privacy notice frequently.

15. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

If you have questions or comments about this notice, you may email us at [email protected] or contact us by post at:

Enruto
115 The Beaux Arts Building, 10-18 Manor Gardens
London, England N7 6JT
United Kingdom

16. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?

Based on the applicable laws of your country, you may have the right to request access to the personal information we collect from you, change that information, or delete it. To request to review, update, or delete your personal information, please fill out and submit a data subject access request.