І. GENERAL INFORMATION

This “Docstreams.ai Privacy Policy” describes how the “Docstreams.ai” (hereinafter – the “Docstreams”, “Team”, “We”, “Our” and “Us”) may use your personal data, and provides information about your rights in relation to personal data (hereinafter – the “Privacy Policy”) in a situation when you provide it to Us, by:

  1. (i.) Visit Our Website at https://docstreams.ai/ (the “Website”), and/or
  2. (ii.) Successfully completed the Registration process (as described in Our “Docstreams Terms of Use” available at https://docstreams.ai/terms-of-use/) and created your personal account to use Our Services on Our website – Web application, or Our API, and/or
  3. (iii.) Contact Us through Our Website or official social media profiles, which are accessible via links on Our Website or are otherwise publicly available online, and/or
  4. (iv.) Have consented to the processing of your personal data by a third party (including Our service provider, customer, partner) and such data is subsequently shared with Us by that third party in order for you to receive Our services, and/or
  5. (v.) Making any payment for Our Services, and/or
  6. (vi.) Directly using Our Services —

Hereinafter, such each person is collectively referred to as “User”.

Note: Docstreams is the sole owner and operator of the Our Website, and act as either the “Data Controller” of Docstreams’s own personal data; and the “Data Processor” of Users’ personal data in such circumstances:

  1. (i.) when We provide User access to Our product located on Our Website, namely “Docstreams.ai” – is a platform, which offers User to structure (either manually or through the use of an AI LLM model) uploaded documentation according to User-defined parameters (hereinafter – the “Services”), designed to simplify Your everyday documentation tasks – detailed information is available on the Website.
  2. (ii.) when contacting potential Our User(s) who are interested in Our Services.
  3. (iii.) when We receive personal data from third parties pursuant to the procedures described above.
  4. (iv.) when the User(s) interact(s) with Our Website, including by providing personal consent through a pop-up questionnaire (by clicking the “Accept” button) on Our Website upon User’s initial visit, or on any repeat visit if User has made appropriate settings in User’s web browser regarding the setting of “Cookie Files” and visiting Our Website repeatedly.

Furthermore, We are required under data protection legislation to notify Our User(s) of the information contained in this Privacy Policy. This Privacy Policy does not in any way imply the conclusion of a principal cooperative agreement or any other contractual relationship between Us and the User(s). Thus, by using the Website, Services or providing any personal data, You acknowledge and agree that:

  1. (i.) You voluntarily provide all personal data and other data to Docstreams;
  2. (ii.) You are solely responsible for the accuracy, lawfulness, and completeness of all personal data or other data submitted or shared through the Website and Services;
  3. (iii.) Docstreams does not verify, monitor, endorse, or control the personal data, content, or materials You provide, and is not liable for any consequences (including legal or financial) arising from the use, submission, or disclosure of such data.

Note: Our Website may contain links to other websites that are not operated by Us. If a User(s) clicks on a third-party link on Our Website, such User(s) will be directed to that third party’s website. We strongly recommend that the User(s) review the privacy policy of each website that the User(s) visit. We have NO control over, and assume NO responsibility for, the content, privacy policies, or practices of any third-party websites and/or services located outside Our Website.

ІІ. DEFINITIONS

The terms used, such as “controller”, “processor”, “third-party”, “personal data breach”, “personal data” or their “processing”, etc. refer to the definitions in Article 4 of the GDPR.

The term “User(s)” covers all categories of persons affected by data processing. These include our business partners, customers, potential customers, employees, contractors, subcontractors, service providers, etc., and other visitors to Our Website. The terms used, such as “User(s)” are to be understood gender-neutral.

ІІІ. GROUNDS FOR COLLECTION OF PERSONAL DATA

Any processing of Users’ personal data is performed strictly in accordance with this Privacy Policy and applicable data protection laws of the User’s country of residence, including but not limited to:

  1. (i.) EU, including, but not limited of this: the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (OJEU No L 119 of 4 May 2016) (hereinafter — the “General Data Protection Regulation” and the “GDPR”), and other relevant legislation.
  2. (іі.) UK, including, but not limited of this: the UK Data Protection Act of 2018 (hereinafter — the “UK DPA”).
  3. (ііі.) UA, including, but not limited of this: the Law of Ukraine of 01.06.2010 №2297-VI on Personal Data Protection (hereinafter — the “UPDP”).
  4. (iv.) US: the User(s) has rights under the following state-specific law, where the User actually resides at the time of acquiring User status (the name of the document refers to the state) including but not limited to: (i.) the California Consumer Privacy Act of 2018 (hereinafter — the “CCPA”), (ii.) the Colorado Consumer Privacy Act (hereinafter — the “CPA”), (iii.) the Connecticut Data Privacy Act of 2023 (hereinafter — the “CTDPA”), (iv.) the Delaware Personal Data Privacy Act (hereinafter — the “DPDPA”), (v.) the Florida Digital Bill of Rights (hereinafter — the “FDBR”), (vi.) the Biometric Information Privacy Act (hereinafter — the “BIPA”), (vii.) the Consumer Data Protection Act (hereinafter — the “CDPA”), (viii.) the Iowa Consumer Data Protection Act (hereinafter — the “ICDPA”), (ix.) the Montana Consumer Data Privacy Act (hereinafter — the “MCDPA”), (x.) the Oregon Consumer Privacy Act (hereinafter — the “OCPA”), (xi.) the Nevada Privacy of Information (hereinafter — the “Senate Bill 220” or the “SB 220”), (xii.) the Utah Consumer Privacy Act (hereinafter — the “UTCPA”), (xiii.) the Tennessee Information Protection Act (hereinafter — the “TIPA”), (xiv.) the Texas Data Privacy and Security Act (hereinafter — the “TDPSA”), (xv.) the Virginia Consumer Data Protection Act (hereinafter — the “VCDPA”), etc. If You are a U.S. federal government end User, Our Service is a “Commercial Item” as that term is defined at 48 C.F.R. §2.101.

Note: We process personal data of User(s) only in compliance with the relevant data protection regulations. This means that Users’ data will only be processed if we have the appropriate legal permit. That is, (і) the legal basis for the consent is Art. 6 para. 1 lit. a. and Art. 7 GDPR; (іі) the legal basis for processing for the purpose of fulfilling our services and implementing contractual measures is Art. 6 para. 1 lit. b. GDPR; (ііі) the legal basis for processing for the purpose of fulfilling our legal obligations is Art. 6 para. 1 lit. c. GDPR; (iv) the legal basis for the processing to safeguard our legitimate interests is Art. 6 para. 1 lit. f. GDPR, etc.

IV. DATA RECEIVED FROM USERS

Voluntary Provision of Data. Users acknowledge and agree that all data, information, content, or materials provided to Docstreams through the Website or Services (collectively, “User Data”) are submitted voluntarily and at the sole discretion of the User for the purpose of using the Services. Such User Data may include, without limitation: answers to surveys, forms, questionnaires, content contributions, publicly available information, contact details, and any other information that the User chooses to provide (i.e., User Data – both their own and that of other User(s) that this User possesses – may include, without limitation: last name, first name, date of birth, passport number and series, individual tax number, address of actual location, personal email address, mobile phone number, company data (such as name, legal address, tax number, email address, etc.) and your position in the company, curriculum vitae and personal documents for screening purposes (in the case of employment), etc. (i.e., other personal data in the requested questionnaire survey (form)), when the User(s) visits our Website, etc.). By submitting User Data, Users confirm and accept that:

  1. (i.) They have the legal right and authority to provide such data;
  2. (ii.) They are solely responsible for the accuracy, legality, and completeness of the data;
  3. (iii.) Docstreams assumes no responsibility, of any kind (including financial, legal, or operational), for the use, storage, processing, protection, or publication (sharing) of such data;
  4. (iv.) Any risks associated with submitting or making User Data available are fully borne by the User.

Note: Users understand that the majority of the Services repository consists of data provided by Users themselves, which Docstreams may collect, organize, process, and present solely to deliver and improve the Services. Docstreams: (i.) Does not verify, control, or guarantee the accuracy, legality, or completeness of User Data; (ii.) Shall not be liable for any claims, damages, losses, or consequences arising from the submission, processing, or use of User Data; (iii.) Uses User Data exclusively for the provision, maintenance, and improvement of the Services.

Non-Personally Identifiable Data. In addition to User-provided data, Docstreams may collect technical, non-personally identifiable information, including but not limited to: browser type, device type, IP address, referring website, date, and time of access, and usage logs (“Non-Personally Identifiable Data”). Such data is collected automatically and is used solely to: (i.) Improve the functionality, performance, and security of the Services; (ii.) Analyze trends and User behavior; (iii.) Ensure proper operation of the Platform. Docstreams shall not be liable for any consequences arising from the use, storage, or analysis of Non-Personally Identifiable Data.

Other User-Provided Data. Users may voluntarily provide other types of data not explicitly mentioned above (“Other Data”) when completing surveys, forms, questionnaires, or participating in promotional, marketing, or research activities. Docstreams may collect and process Other Data solely to: (i.) Enable proper use of the Services; (ii.) Improve the quality and relevance of Services; (iii.) Respond to User inquiries or requests. All Other Data is provided voluntarily and at the User’s sole discretion. Users bear full responsibility for the accuracy, legality, and consequences of providing such data. Docstreams assumes no liability, direct or indirect, for any claims or losses arising from Other Data.

Publicly Available Data. Any data contributed by Users that is publicly accessible or publicly available (“Publicly Available Data”) is also submitted voluntarily, at the sole discretion of the User. Users represent that they:

  1. (i.) Have the right to share such data with Docstreams within the Services;
  2. (ii.) Accept full responsibility for its accuracy, legality, and any consequences of its submission;
  3. (iii.) Release Docstreams from all liability, including financial, legal, or operational, arising from the inclusion or use of such data.
  4. (iv.) Agree that their voluntary contribution constitutes acknowledgment and acceptance of Docstreams’s non-liability and the assumption of all risks by the User.

Control and Sole Responsibility of Users. Users retain exclusive control over any and all data they choose to submit, provide, or make accessible through the Platform, including but not limited to User Data, Non-Personally Identifiable Data, Other Data, and Publicly Available Data. Docstreams:

  1. (i.) Provides only the technical means for submission and processing of data, without directing, recommending, or requiring any specific data;
  2. (ii.) Shall not be responsible for the accuracy, legality, validity, or completeness of any data submitted by Users;
  3. (iii.) Does not review, monitor, or verify the User Data for correctness, and any reliance on such data is at the User’s own risk;
  4. (iv.) Shall not be liable for any consequences arising from the User’s choice to provide, modify, share, or withdraw data.

Note: By using the Services and submitting any data, Users acknowledge and agree that they: (i.) Assume full and exclusive responsibility for the legal basis, authenticity, accuracy, and consequences of providing any data; (ii.) Accept sole responsibility for any risk, liability, or claim arising directly or indirectly from their actions, omissions, or decisions related to data; (iii.) Release Docstreams from any obligation to monitor, control, or verify submitted data or any subsequent use thereof.

Limitation of Liability and Indemnification. To the maximum extent permitted by applicable law, Users agree that Docstreams:

  1. (i.) Shall have no liability whatsoever, whether direct, indirect, incidental, special, consequential, punitive, or otherwise, including financial, operational, or reputational damages, arising from the submission, use, processing, storage, or sharing of any data by Users
  2. (ii.) Shall have no liability for any claims, actions, investigations, penalties, or disputes initiated by third parties relating to User-submitted data;
  3. (iii.) Shall have no liability for any error, omission, corruption, or loss of data, including any data incorporated into the Services’ repository;
  4. (iv.) Shall have no responsibility for Users’ use of, reliance upon, or decisions made based on any data obtained through the Platform or Services.

Note: Users agree to indemnify, defend, and hold harmless Docstreams, its affiliates, licensors, contractors, employees, agents, and service providers from and against any and all claims, demands, liabilities, damages, losses, costs, and expenses (including reasonable attorneys’ fees) arising out of or relating to: (i.) The User’s submission, provision, or sharing of any data; (ii.) Any unauthorized or unlawful use of the Platform or Services; (iii.) Any breach by the User of their obligations under this Privacy Policy or “Docstreams Terms of Use”; (iv.) Any claims by third parties relating to any data.

Disclaimer and Voluntary Acceptance. By submitting data and using the Services, Users expressly agree and acknowledge that:

  1. (i.) All types of data submitted to Docstreams for the purpose of using the Services are voluntary, at the User’s sole discretion, does not require any additional documentation, and is processed on the basis of this Privacy Policy.
  2. (ii.) Docstreams does not and will not verify, monitor, control, or validate any data, and any reliance on such data is at the User’s own risk;
  3. (iii.) Users bear full and exclusive responsibility for ensuring the legality, accuracy, and consequences of any data they submit or access via the Services;
  4. (iv.) Docstreams is fully released, waived, and exempted from all liability, including financial, legal, operational, or reputational, arising directly or indirectly from:- Submission or sharing of any data;- Use or reliance on any data accessed through the Platform;- Any decisions or actions based on such data;
  5. (v.) Users explicitly accept that their voluntary submission of data constitutes a binding acknowledgment that Docstreams has no obligation, duty, or liability regarding the User Data or its use in any manner;
  6. (vi.) Docstreams does not collect, store, or otherwise process any banking or financial information of the User used for payment of Our Services through third-party payment processors, including but not limited to the Stripe payment platform. All payment-related data are processed directly by such third-party providers in accordance with their own privacy policies and applicable data protection laws. Users are strongly advised to review the respective provider’s terms and privacy documentation to understand the legal basis and safeguards applied to such processing. Docstreams disclaims any responsibility or liability for the collection, processing, storage, or transfer of User data performed by such third-party payment processors.
  7. (vii.) Docstreams’s provision of the Platform and Services on an “AS IS” and “AS AVAILABLE” basis constitutes the full extent of the Services, and Users waive any claims or rights to demand further guarantees, validation, or supervision of User-submitted data.

V. COOKIE FILES

When the User uses Our Website, browses Our Services, and uses the available systems (in particular, to create contact requests sent via the contact form), so-called “cookies”* are created when the User browses these web pages.

*These are text files of small size that are stored in the User’s device, through which the User browses the websites. They are commonly used to ensure the operation of websites and other services provided over the Internet, and to improve and develop these websites, which is done by reading the contents of these files.

We collect information contained in “cookies”, such as the IP-address of the device from which the User connects to the Website, which is data that shows how the User(s) use Our Websites. This information is used for administrative and statistical purposes and aimed at improving Our Website and enhancing User’s user experience. In addition, this automatically processed data may be used to analyse the behaviour of the content User(s) on Our Website (e.g., time spent on the Website) or to personalise the content of the Website’s web pages, in particular by providing online advertising.

The User(s) are not obliged to accept cookies (the User(s) may agree to the use of cookies by clicking the appropriate button on our Website or by making the appropriate settings in your Web browser), but this may result in Our Website not functioning fully properly.

We use “Persistent Cookies” that are designed to store data over a long period of time and are activated each time the User visits Our Website that created that particular cookie. Each persistent Cookie is created with an expiry date that can be anywhere from a few days to several years in the future. When the Cookie expires, it is automatically deleted. Moreover, Persistent Cookies allow Our Website to “remember the User”.

First and Third Party Cookies on Our Website:

  • Cookies placed on your device include “first party Cookies”, which are Cookies that are placed by Us or by third party service providers acting on Our behalf. If such Cookies are managed by third parties, We only allow the third parties to use the Cookies for Our purposes as described in this Cookie Policy and not for their own purposes.
  • The Cookies placed on your device may also include “third party Cookies”, which are Cookies placed there by third parties. These Cookies may include third-party advertisers who display advertisements on Our Website and/or social media providers, etc. They may also include third parties who provide video content embedded on Our Website (e.g., YouTube, etc.). We have no control over the settings of these third-party cookies, so we encourage you to check the third-party websites to learn more about their use of cookies and how to manage them.

We also use social media buttons and/or plugins on the Website that allow you to connect with Our social network. In order for them to work, they set Cookies on Our Website that can be used to improve your profile on their website or to supplement the data they store for various purposes specified in their respective privacy policies and cookies policies.

VI. CHILDREN’S PRIVACY

The Website and Services are not intended for use by anyone under the age of 18 (hereinafter, “Children”). Docstreams does not knowingly solicit or collect personal data from Children.

  1. (i.) If a User is a parent or guardian and becomes aware that their Child has voluntarily submitted personal data to Docstreams, the parent or guardian must immediately contact Docstreams (see the “Contact Us” section).
  2. (ii.) Docstreams shall not be responsible or liable for any data submitted by Children. All responsibility for ensuring that Children do not submit personal data rests solely with the parent or guardian.
  3. (iii.) If Docstreams becomes aware that personal data of Children has been submitted without parental or guardian consent, Docstreams will take commercially reasonable steps to delete such data from its servers, in accordance with the “Docstreams Terms of Use”.
  4. (iv.) Users (including parents or guardians) acknowledge and agree that Docstreams bears no liability for any consequences arising from Children’s submission of personal data, and that all such risks are assumed solely by the parent or guardian.

Note: Docstreams relies entirely on Users’ representations regarding age and parental or guardian consent, and does not independently verify the age of Children. Submission of any data by Children is considered voluntary and at the sole risk of the parent or guardian.

VII. PROTECTION AND USE OF PERSONAL DATA OF THE USER(S)

Docstreams uses commercially reasonable technical, organizational, and administrative measures to collect, store, process, and protect personal data of Users against unauthorized access, alteration, disclosure, or destruction. Docstreams does not assume any responsibility or liability for any loss, misuse, or unauthorized disclosure of personal data provided by Users. All data submitted to Docstreams is provided voluntarily and at the sole discretion of the User(s), and Users acknowledge and accept full responsibility for the legal basis and accuracy of such data.

  1. (i.) Docstreams does not share Users’ personal data with third parties, except:

    – With Docstreams’s affiliates, employees, contractors, subcontractors, or recruitment service providers, subject to written agreements prohibiting any further transfer, collection, or processing of Users’ personal data without Docstreams’s explicit written consent.

    – With third parties described in the “APPLICABLE TERMS” section, provided that Docstreams has executed the relevant agreements, terms of use, or privacy policies ensuring adequate data protection.

    – As required by applicable law, court order, or governmental/regulatory request, or when Docstreams reasonably believes in good faith that disclosure is necessary to: Comply with legal or regulatory requirements or legal process; Prevent criminal activity, fraud, or misuse of the Services; Protect national security or prevent terrorist activities; Protect Docstreams’s property rights; Protect the safety, health, or welfare of Users or third parties; etc.

  2. (ii.) Docstreams uses Users’ personal data solely for purposes including, but not limited to: Responding to Users’ inquiries efficiently; Improving the quality, reliability, and functionality of Our Services; Facilitating use of the Website and Platform; Managing risk, fraud prevention, and misuse of Our Services; Notifying Users of updates, new features, or service changes; Sharing with marketing or advertising partners to improve Docstreams’s marketing strategies, subject to compliance with applicable law; Ensuring compliance with local, national, and international laws to enable lawful provision of Services.
  3. (iii.) Docstreams may use personal data to send newsletters, marketing, or promotional materials, and Users may choose to opt-out of such communications at any time. Docstreams does not currently sell Users’ personal data to third parties. If this practice changes, Docstreams will update the Privacy Policy and provide Users with a clear opportunity to opt-in or opt-out.

Note: Users are solely responsible for the accuracy, legality, and appropriateness of any personal data they submit, including Publicly Available Data. Docstreams relies entirely on the representations of Users and shall not be liable under any circumstances for consequences arising from Users’ submission, sharing, or processing of their personal data.

VIII. STORAGE OF OUR USER(S) PERSONAL DATA

We securely store your data in Our internal Customer Relationship Management system (hereinafter — the “CRM”) and/or HubSpot CRM.

The data retention period that we receive from the User(s) is calculated for each moment of cooperation individually in compliance with all relevant regulations, which are confirmed by this Privacy Policy. However, in general, the period is from 6 (six) months from the first collection/receipt of such data to the maximum period allowed by applicable law, taking into account such circumstances as whether the User continues to use Our Services or whether We cooperate with the User, etc. Retention periods from other recipients (owners of other websites outside of Our Website) are set exclusively by them in their privacy policies.

Notice: In case the User(s) requests that We DON’T store personal data by sending Us a request to [email protected], We will take all reasonable measures to delete all personal data about such User(s). However, with the explicit consent of the User, we may retain a streamlined version of their profile, including their email address, for future purposes, enabling us to keep the User informed about our recruitment campaigns or marketing offers.

IX. GENERAL USER RIGHTS

The User(s) have certain rights in connection with the processing of personal data by Docstreams. All provision of these rights is voluntary and exercised at the sole discretion and responsibility of the User(s). Docstreams acts (provides Services) only upon request from the User(s) and assumes no responsibility for the accuracy, legality, completeness, or consequences of any data submitted by the User(s).

  1. (і.) Right of Access (e.g., Art. 15 GDPR) – You can request confirmation of whether Docstreams holds personal data about you and ask to receive a copy of that data. This right allows you to understand what data is collected, why it is processed, and who it may be shared with.
  2. (іі.) Right to Rectification (e.g., Art. 16 GDPR) – You can request correction of inaccurate or incomplete personal data. Docstreams may update your data upon verification of your request.
  3. (ііі.) Right to Erasure / Right to be Forgotten (e.g., Art. 17 GDPR) – You can request deletion of your personal data if there is no legal or operational requirement to retain it. Docstreams may retain certain data as required by law or necessary to protect legitimate interests.
  4. (iv.) Right to Restrict Processing (e.g., Art. 18 GDPR) – You can request temporary suspension of the processing of your personal data. Docstreams may approve or partially approve such requests, based on applicable law and operational feasibility.
  5. (v.) Right to Data Portability (e.g., Art. 20 GDPR) – You can request a copy of your personal data in a structured, commonly used, machine-readable format, and, where feasible, request its transfer to another service provider.
  6. (vi.) Right to Object (e.g., Art. 21 GDPR) – You can object to the processing of your personal data based on legitimate interests or direct marketing purposes. Docstreams will review and act on such objections where permissible by law.
  7. (vii.) Right to Withdraw Consent – You can withdraw consent for data processing at any time, without affecting processing that occurred prior to withdrawal.

Fees and Timing. Requests are generally free of charge. Docstreams may charge a reasonable fee or refuse requests that are manifestly unfounded, excessive, or repetitive. We will respond to requests within a reasonable timeframe, typically within 30 (thirty) calendar days, unless the law allows an extension for complex requests.

Full User Responsibility / Risk Assumption – The User(s) acknowledge and agree that:

  • All personal data, public or private, voluntarily provided by the User(s) to Docstreams, including any content, files, or information entered into the Platform, is submitted at the sole risk and discretion of the User(s).
  • Docstreams does not review, verify, or control the accuracy, legality, or completeness of any data submitted by the User(s).
  • Docstreams shall have no liability, including financial liability, for any direct, indirect, consequential, or other damages arising from the User(s)’ use, submission, or sharing of personal data.
  • The User(s) fully indemnify and hold harmless Docstreams, its affiliates, employees, contractors, and service providers from any claims, losses, or damages resulting from the User(s)’ data, use of Services, or breach of these Privacy Policy provisions.

Verification and Security Measures: Docstreams may require information to verify the identity and entitlement of the User(s) requesting access or other rights. These measures are solely for Docstreams’s protection and shall not be interpreted as creating any additional liability or obligation.

Important Note:

  • All personal data provided to Docstreams by the User(s) is voluntary, at the sole discretion, and at the full risk of the User(s).
  • Docstreams is not responsible for any direct, indirect, or consequential damages arising from the use, submission, or sharing of any personal data by the User(s).
  • To exercise any of the above rights, please contact Docstreams in writing at [email protected].

X. TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES

The User’s personal data is transferred to (or within) third countries if the Services provided by Us will also be provided in the territory of a third country. The personal data of the User(s) may also be transferred to entities that provide tax, legal, and audit advice to Us if they operate in or outside the territory of a third country. In each of the above cases, We protect the processing of the User’s personal data, in particular, by entering into confidentiality agreements and processing personal data in a manner that complies with the provisions of generally applicable EU and UK data protection laws, as well as on terms designed to ensure the security of the processing of the User’s personal data. We DON’T transfer personal data of the User(s) to international organizations. We also DON’T transfer personal data of the User(s) to third countries, if such transfer is impossible or prohibited by generally accepted legislation.

  • Any transfer of personal data to the United States of America and other countries outside the European Union (hereinafter — the “EU”) and the European Economic Area (hereinafter — the “EEA”) will be carried out on the basis of Standard Contractual Clauses (hereinafter — the “Standard Contractual Clauses” or the “SCC”) together with a Transfer Impact Assessment (hereinafter — the “TIA”) in accordance with Art. 46(2)(c) GDPR and with the consent of the User(s), e.g., if the User consents to the use of cookies, this will also be consent to the possible transfer of the User’s personal data to the United States of America in accordance with Art. 49(1)(a) GDPR in connection with Art. 6(1)(a) GDPR.
  • Any transfer of personal data to the EU and/or the EEA is carried out on the basis of a Data Protection Agreement (hereinafter referred to as “Data Protection Agreement” and/or the “DPA”), if necessary, together with a TIA, in accordance with Art. 28 GDPR, Art. 32 GDPR, etc., and with the consent of the User(s) (e.g., based on Art. 6(1)(a) GDPR).

Note: By accepting this Privacy Policy, the User(s) explicitly acknowledge, agree, and voluntarily consent to the transfer of their data as described herein. The User(s) are solely responsible for the accuracy, legality, and completeness of any data they provide to Docstreams and for any consequences arising from such transfer. The User(s) may withdraw their consent to cross-border data transfers at any time by contacting Docstreams at [email protected]. However, withdrawal may limit the User(s)’ ability to access or use certain Services, and Docstreams shall not be liable for any effects resulting from such withdrawal.

XI. APPLICABLE TERMS

Docstreams may engage with third-party companies, individual entrepreneurs, or other entities (collectively, “Service Providers”) to facilitate the operation of Our Services, provide Services on Our behalf, analyze and improve Our Services and/or Our Website, or otherwise assist Us in Our business operations. Such Service Providers may receive access to data of the User(s) solely for the purposes explicitly defined by Docstreams and are strictly prohibited from using or disclosing such data for any other purpose, except as explicitly provided in the applicable cooperation agreement, terms of use, or privacy policy governing their services.

All cooperation with third-party Service Providers is formalized through legally binding documentation, including but not limited to master service agreements, non-disclosure agreements, terms of use (offer/user agreements), privacy policies, etc.

By voluntarily providing data and interacting with Our Services, the User(s) explicitly acknowledge, agree, and provide their consent that Docstreams is not responsible, including jointly or severally, for any unlawful or unauthorized use of data by such Service Providers. Users assume full responsibility for any consequences arising from their interaction with Service Providers. Each Service Provider independently manages data in accordance with its own terms of use and privacy policy. Docstreams does not control and assumes no liability for the actions of Service Providers beyond the measures described herein.

For the purposes of improving Our Services, marketing, analytics, and operational efficiency, Docstreams may integrate or cooperate with the following third-party tools. The User(s) acknowledge that their interactions with these tools are governed by the respective third-party privacy policies, and Docstreams disclaims any liability for such third-party practices:

  • Google Analytics (Google LLС) is a web analysis service provided by Google Inc. Google utilizes the data collected to track and examine user behavior, to prepare reports, and share insights with other Google services. Google may use the data collected to contextualize and personalize the advertisements launched via Google’s advertising network. The service is subject to Google’s Privacy Policy (available at the link).
  • Google Tag Manager (Google LLС) is a web service designed to optimize the Google Analytics management process. The service is provided by Google Inc. and is subject to Google’s Privacy Policy (available at the link).
  • Google AdWords Tools (Google AdWords Conversion Tracking/ Dynamic Remarketing / User List / DoubleClick) (Google LLС) Google AdWords conversion tracking and other Google Ads services are analytic instruments, connect data from the Google AdWords advertising network with actions taken on our website. The services are provided by Google Inc. and are subject to Google’s Privacy Policy (available at the link).
  • Google AdWords (Google LLC) DoubleClick (Google Inc.) / DoubleClick Bid Manager / Google DoubleClick Google AdWords and Double Click are advertising services that enable efficient interaction with potential customers by suggesting relevant advertisements across Google Search, as well as Google’s partner networks. The services are provided by Google Inc. and are subject to Google’s Privacy Policy (available at the link).
  • Chrome Web Store (Google LLC) is an online platform that allows users to discover, install, and manage web applications, extensions, and themes for the Google Chrome browser. This service is provided by Google LLC and is governed by Google’s Privacy Policy (available at the link).
  • Hotjar (Hotjar Limited) is an analytical tool that allows website owners and digital marketers to gain deep insights into user behavior on their site. The service is subject to Hotjar’s Privacy Policy (available at the link).
  • HubSpot CRM (HubSpot, Inc.) is a customer relationship management platform that helps businesses organize, track, and manage interactions with leads and customers. This service is provided by HubSpot, Inc. and is governed by HubSpot’s Privacy Policy (available at the link).
  • G2.com (G2, Inc.) is a review platform that enables businesses and users to share, read, and analyze software and service reviews to make informed purchasing decisions. This service is provided by G2, Inc. and is governed by G2’s Privacy Policy (available at the link).
  • Mailgun (Mailgun Technologies, Inc.) is an email service that enables businesses to send, receive, and track emails, as well as integrate email functionality into their applications for effective communication management. This service is provided by Mailgun Technologies, Inc. and is governed by Mailgun’s Privacy Policy (available at the link).
  • Intercom (Intercom, Inc.) is a customer messaging platform that enables businesses to communicate with users through chat, email, and other messaging channels, providing tools for customer support, engagement, and automation. This service is provided by Intercom, Inc. and is governed by Intercom’s Privacy Policy (available at the link).
  • Resend (Resend, Inc.) is an email-delivery platform built for developers that allows businesses to send transactional emails and integrate email services via a modern API and SMTP interface. The service is provided by Resend, Inc. and is governed by Intercom’s Privacy Policy (available at the link).
  • Stripe (Stripe, Inc.) is a payments infrastructure platform that enables businesses to accept online and in-person payments, manage subscriptions, issue payouts, and build end-to-end commerce experiences using a suite of APIs. The service is provided by Stripe, Inc. and is governed by Intercom’s Privacy Policy (available at the link).

Note: Users are encouraged to review the privacy policies of each Service Provider independently. By using Our Services, the User(s) acknowledge and accept that all data sharing with Service Providers occurs at the sole discretion on an “as needed” basis, and Docstreams assumes no liability for any consequences arising from such sharing.

XII. REPORTING A VULNERABILITY

Docstreams is committed to maintaining the security and integrity of Our Services. If You believe that You have discovered a potential security issue or vulnerability within Our Website, or Services that is within the scope of Our systems, You may report it to Docstreams by emailing [email protected].

To ensure that We can address the report effectively, please provide, where applicable:

  1. (і.) A detailed description of the suspected vulnerability.
  2. (іі.) Full URLs or locations associated with the vulnerability.
  3. (ііі.) A Proof of Concept (POC) or detailed instructions, including screenshots, video, or other supporting materials, demonstrating how the vulnerability can be reproduced or exploited.
  4. (iv.) Entry fields, filters, or other input mechanisms involved in the vulnerability.
  5. (v.) Your assessment of the potential risk or exploitability.
  6. (vi.) Instructions for how We can reach You for follow-up questions or clarification.
  • Offering potential solutions is encouraged, but not required. Lack of complete or detailed information may delay Our ability to investigate or remediate the reported vulnerability.

By submitting a report, You acknowledge and agree that:

  1. (i.) Docstreams retains sole discretion over any investigation, response, or remediation measures, including whether any reported vulnerability constitutes a legitimate issue or security risk.
  2. (ii.) Docstreams is not liable for any consequences, claims, or damages arising from the reporting process, including but not limited to delays, partial reports, incorrect reproductions, or misuse of reported information.
  3. (iii.) You shall not exploit or publicly disclose any security vulnerability without Docstreams’s explicit written consent. Unauthorized access, testing, or use of Our systems beyond reporting a potential vulnerability may be considered a violation of applicable law and the “Docstreams Terms of Use”, and Docstreams reserves all rights to pursue legal or other actions in such cases.

Note: Reports are reviewed promptly, but submission of a report does not create any contractual relationship between You and Docstreams, nor does it guarantee any compensation, recognition, or bounty. Docstreams reserves the right to implement, modify, or decline any actions based on a submitted report.

XIII. UPDATES TO THIS PRIVACY POLICY

Docstreams reserves the exclusive right to modify, update, amend, or supplement this Privacy Policy at any time in order. In the event of material changes to this Privacy Policy, We will make reasonable efforts to notify Users by posting a notice on Our Website prior to the effective date and updating the “Last Update” date at the top of the Privacy Policy. Notification may also be made via e-mail newsletter if the User has consented to receiving such communications. Users are solely responsible for reviewing and familiarizing themselves with any updates to this Privacy Policy, including in cases where Users have opted out of receiving email notifications.

Docstreams may require Users to provide renewed consent to continue using Our Services following updates to the Privacy Policy. Unless otherwise stated, all changes shall become effective 30 (thirty) calendar days after publication of the revised Privacy Policy on the Website.

Electronic or other stored copies of this Privacy Policy maintained by Docstreams shall be deemed the authentic, complete, valid, and enforceable version in effect at the time of any User’s interaction with Our Website.

By continuing to use or interact with Our Website or Services following any updates, Users explicitly acknowledge and accept the updated Privacy Policy. Docstreams shall not be liable for any consequences arising from a User’s failure to review or comply with changes to the Privacy Policy.

XIV. LANGUAGE OF THIS PRIVACY POLICY

This Privacy Policy is written in English. In the event that We provide any translation of this Privacy Policy for convenience, such translation is provided solely for the convenience of Users and has no legal effect; in the event of any inconsistency or conflict between the English version and any translated version, the English version shall prevail.

If You use any automated or third-party translation tool (including browser translation tools) to view this Privacy Policy, You acknowledge and agree that Docstreams is not responsible for the accuracy, completeness, or quality of such translation. To the extent You do not understand the English language, You should seek an independent, certified translation or legal advice prior to accepting this Privacy Policy.

XV. CONTACT US

For any questions regarding this Privacy Policy – User(s) may contact Docstreams by sending an email to: [email protected].

All inquiries will be handled in accordance with applicable laws, but Docstreams reserves the sole discretion regarding the manner, scope, and timing of any response. Users are solely responsible for providing accurate and sufficient information to allow Docstreams to identify and address the inquiry.