Owner of the Site
The Site is owned and operated by Outperform Studio LTD having a registered business address at Vera Mutafchieva 3 apt 4, 1407 Sofia (Bulgaria) (“we,” “us,” and “our”). We act as a data controller with regard to the personal data processed through Outperform Studio.
Personal data we collect and purposes for which we use it
Automatically collected information
When you visit the Site, we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site. We refer to this automatically-meta information as “Device Information”. The majority of the Device Information is not considered to be personal data.
We collect the Device Information using the following technologies:
- “Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.
- “Web beacons,” “tags,” and “pixels” are electronic files used to record information about how you browse the Site.
We use the Device Information for the following purposes:
- To analyze what kind of users visit and use Outperform Studio;
- To examine the relevance, popularity, and engagement rate of the content available on the Site;To conduct our marketing campaigns;
- To investigate and help prevent security issues and abuse; and
- To develop and provide additional features to the Site and new services.
In case your Device Information is combined with certain elements of your personal data in a way that allows us to identify you, we will handle such aggregated data as personal data. If your personal data is aggregated or de-identified in a way that it can no longer be associated with an identified or identifiable natural person, it will not be considered personal data and we may use it for any business purpose.
Your Device Information may be disclosed to third parties for any purpose. For example, we may share it with prospects or partners for business or research purposes, for improving Outperform Studio, responding to lawful requests from public authorities, or developing new products and services.
Personal data that you submit to us
Book a call
When you book a call with us on the Site, we collect your name, email address, guest email address, phone number, and any other information that you decide to provide us in your message. We use such information to schedule and make the call. The legal bases on which we rely are ‘performing a contract’ and ‘pursuing our legitimate business interests’ (to promote the Services). We store such data until the call ends.
When you sign up on the Site, we collect your first name, last name, email address, VAT number, and password. Later, you can add your address. We use such information to register your account, provide you with the Services, contact you (if necessary), and maintain our business records. The legal bases on which we rely are ‘performing a contract’ and ‘pursuing our legitimate business interests’ (to administer Outperform Studio). We store such data until you delete your user account.
When you subscribe to our newsletter, we collect your email address. It is used to deliver our newsletter. The legal basis on which we rely is ‘your consent.’ We keep your email address until you unsubscribe from our newsletter.
When you contact us by email or via chat, we collect your full name, email address, phone number, and any information that you decide to include in your message. We use such data to respond to your inquiries. The legal bases on which we rely are ‘pursuing our legitimate business interests’ (grow and promote Outperform Studio) and ‘your consent’ (for optional personal data). We store such data until you stop communicating with us.
Purchase of the Services
When you purchase the Services through the Site, we collect your product name, product URL, information about your products and target audience, full name, billing address, phone number, and payment information (name on your card, card number, and expiration date). We use such data to process your payment, provide you with the requested Services, contact you (if necessary), and keep our business records. The legal bases on which we rely are ‘performing a contract with you’ and ‘pursuing our legitimate business interests' (i.e., to administer our business and comply with the applicable laws). We retain such data for as long as necessary for accounting purposes.
We do not collect or have access to any special categories of personal data from you, unless you decide, at your own discretion, to provide such data to us. Sensitive data is information that relates to your health, genetics, biometrics, religious and political beliefs, racial origins, membership of a professional or trade association, sex life, or sexual orientation.
Refusal to provide personal data
If you refuse to provide us with your personal data when we ask to, we may not be able to perform the requested operation and you may not be able to use the full functionality of the Site, or our Services, or get our response. Please contact us immediately if you think that any personal data that we collect is excessive or not necessary for the intended purpose.
Marketing communication and service notices
If we have your email address, we may, from time to time, send you information about our Services. You will receive our newsletters in the following instances:
If we receive your express (“opt-in”) consent to receive marketing messages; or
If you ask us to send you information about our Services by subscribing to our newsletter; or
If we decide to send you information closely related to the Services already used by you.
Opting out of our newsletters
You can opt out from receiving our commercial communication at any time free of charge by clicking on the “unsubscribe” link included in our emails or by contacting us directly.
We send you important transactional emails, such as confirmation receipts, invoices, updates about the Services, technical notices, and other administrative updates. Please note that such messages are sent on an “if-needed” basis and they do not fall within the scope of commercial communication that may require your prior consent. You cannot opt out of service-related notices.
Sharing your personal data
Our data processors
We share your personal data with third parties (our data processors) to help us use your personal data for its intended purposes, as described above. For example, we use:
Shopify located in Canada to power our online store. You can read more about how Shopify uses your personal data here: https://www.shopify.com/legal/privacy.
Google Analytics located in the US to help us understand how you use the Site. You can read more about how Google uses your personal data here: https://www.google.com/intl/en/policies/privacy/. You can also opt out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.
GHL located in the United States for email services. You can read more about their privacy practices here: https://www.klaviyo.com/legal/privacy-policy.
The disclosure of your personal data is limited to the situations when your personal data is required for the following purposes:
- Ensuring the proper operation of the Site;
- Ensuring the delivery of the Services ordered by you;
- Providing you with the requested information;
- Enforcing our rights, preventing fraud, and security purposes; or
- If you provide your prior consent to such disclosure.
We may also share your personal data to comply with applicable laws and regulations, to respond to a subpoena, search warrant, or another lawful request for information we receive, or to otherwise protect our rights.
Some of our data processors listed above are located outside the country in which you reside. For example, if you reside in the European Economic Area (EEA), we may need to transfer your personal data to jurisdictions outside the EEA. In case it is necessary to make such a transfer, we will make sure that the jurisdiction in which the recipient third party is located guarantees an adequate level of protection for your personal data or we conclude a data processing agreement with the respective third party that ensures such protection. We will not transfer your personal data internationally if no appropriate level of protection can be granted.
If we have a legal basis to do so (e.g., your consent), we may provide you with targeted advertisements or marketing communications that we believe may be of interest to you. For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.
You can opt out of targeted advertising by using the links below:
- Facebook: https://www.facebook.com/settings/?tab=ads
- Google: https://www.google.com/settings/ads/anonymous
- Bing: https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads
Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: http://optout.aboutads.info/.
Do not track
Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.
If you are a European resident, you have the right to access the personal data that we hold about you and to ask that your personal data be corrected, updated, deleted, or transferred to another processor. In more detail, you have the following rights:
You have the right to control how your personal data is processed by us by exercising the rights listed below (unless, in very limited cases, the applicable law provides otherwise):
- Right of access: you can get a copy of your personal data that we store in our systems and a list of purposes for which your personal data is processed;
- Right to rectification: you can rectify inaccurate personal data that we hold about you;
- Right to erasure (‘right to be forgotten): you can ask us to erase your personal data from our systems;
- Right to restriction: you can ask us to restrict the processing of your personal data;
- Right to data portability: you can ask us to provide you with a copy of your personal data in a structured, commonly used, and machine-readable format and move that personal data to another processor;
- Right to object: you can ask us to stop processing your personal data;
- Right to withdraw consent: you have the right to withdraw your consent if you have provided one; or
- Right to complaint: you can submit your complaint regarding our processing of your personal data.
Exercising your rights
If you would like to exercise your rights, please contact us through the contact information below and explain your request in detail. In order to verify the legitimacy of your request, we may ask you to provide us with an identifying piece of information that allows us to correctly identify you in our system. We will answer your request within a reasonable time frame but no later than 30 days.
Launching a complaint
If you would like to launch a complaint about the way in which we process your personal data, we kindly ask you to contact us first and express your concerns. If we receive your complaint, we will investigate it and provide you with our response as soon as possible. If you are not satisfied with the outcome of your complaint, you have the right to lodge a complaint with your local data protection authority.
We do not discriminate against you if you decide to exercise your rights. It means that we do not (i) deny any goods and services, (ii) charge you different prices, (iii) deny any discounts or benefits, (iv) impose penalties, or (v) provide you with lower-quality services.
In certain cases, we are required by law to store your personal data for a certain period of time (for example, for accounting or business records purposes). Thus, we may keep your personal data for the time period stipulated by the applicable law and securely delete it as soon as the required storage period expires.
We implement organizational and technical information security measures to protect your personal data from loss, misuse, unauthorized access, and disclosure. The security measures taken by us include:
Firewalls; Anti-virus scanning; Internal vulnerability scanning; Anonymization;
Access control; Secured networks; and Carefully selected data processors.
Although we put our best efforts to protect your personal data, given the nature of communications and information processing technology and the Internet, we cannot be liable for any unlawful destruction, loss, use, copying, modification, leakage, and falsification of your personal data that was caused by circumstances that are beyond our reasonable control. In case a serious breach occurs, we will take reasonable measures to mitigate the breach, as required by the applicable law. Our liability for any security breach will be limited to the highest extent permitted by the applicable law.
The Site is not intended for individuals under the age of 18.
For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us by e‑mail at firstname.lastname@example.org or by mail using the details provided below:
[Re: Privacy Compliance Officer]
Vera Mutafchieva 3 apt 4, 1407 Sofia (Bulgaria)