Effective Date: September 18, 2017
Please note: you are not obligated by law to provide us with any information. You hereby acknowledge, warrant and agree that any information you do provide us is provided of your own free will and consent, for the purposes and uses described herein.
We collect two general types of information regarding our Users:
Specifically, such information may include, depending on configuration done by or on behalf of the relevant Customer or otherwise at the choice of the Team Member, the Team Member’s name, username, physical address, profile picture, phone number, profile information, organizational and/or private e-mail address and title; their session IP, Geo-location and/or device unique identifier; their interactions and correspondences through the Services (such as their answers, messages and associated content), and additional information pertaining to Team Members as required by the respective Customer, that may contain Personal Information, and any other Personal Information provided to us by either Customers or Team Members. For more regarding Team Member Information and how we treat it, please see Section 6 below.
There are two main methods that we use:
We collect such Non-personal and Personal Information for the following purposes:
Information regarding our Users may be maintained, processed and stored by Tonkean and our authorized affiliates and Service Providers (including our secured cloud storage providers, currently Microsoft Azure) in the United States of America, and might be accessed from other jurisdictions as necessary for the proper delivery of our Services and/or as may be required by law (as further explained in Section 8 below).
Information regarding our job Candidates will be maintained, processed and stored by Tonkean and our authorized affiliates and service providers in the United States of America, in Israel, in the applied position’s location(s), and as necessary, in secured cloud storage provided by our Third Party Services.
Tonkean is based in the United States with offices in San Francisco, California and in Israel with offices in Tel Aviv. Israel is considered by the European Commission to be offering an adequate level of protection for the personal information of EU Member State residents.
Tonkean may collect, store and process certain Non-personal and Personal Information of the Team Members of our Customers, on our Customers’ behalf and at their direction. For example, our Customers are able to upload certain Team Member information to our Services, as well as require their Team Members to upload certain Personal Information during or following their registration and on-boarding to the Services. Such Personal Information is then stored with Tonkean (and its third party service providers), on the customer’s behalf.
For such purposes, Tonkean serves and shall be considered as a “Data Processor” and not as the “Controller” (as both such capitalized terms are defined in the European Data Protection Directive and the upcoming General Data Protection Regulation) of such Team Member Information. The Customers shall be considered as the “Controllers” of their Team Members’ information, and are responsible for complying with all laws and regulations that may apply to the collection and control of such information, including all data protection laws of any relevant jurisdiction.
Our Customers are responsible for the security, integrity and authorized use of their Team Members’ information, and for obtaining any consents and permissions required for the collection, processing, and use of such information.
If you are an employee, representative, service provider or team member of any of our Customers and have had your Personal Information collected on such Customer’s behalf, we recommend that you contact them directly with any privacy or data-related concern you might have. For example, if you wish to access, correct, amend or delete inaccurate information processed by Tonkean on behalf of its customers, please correct the information on the same website where it was originally entered by you, or contact the relevant customer directly (as they are the “Controller” of such data). If requested to remove any Team Member Personal Information, we will respond to such request within thirty (30) days. Unless otherwise instructed by our Customers, we will retain their Team Members’ Personal Information for the period set forth in Section 12 below.
If a Team Member User has entered a direct agreement and relationship with Tonkean, under which such User’s Personal Information is provided by the User to Tonkean or otherwise collected for any services provided by Tonkean directly to such User, Tonkean shall be deemed as the “Controller” of such information, and the User may contact it directly, through the means described in Section 15 below.
Tonkean welcomes all qualified Candidates to apply to any of the open positions posted at https://Tonkean.com/careers/ or LinkedIn, by sending us their contact details and CV (“Candidates Information“). We understand that privacy and discreetness are crucial to our Candidates, and are committed to keep Candidates Information private and use it solely for our internal recruitment purposes (including for identifying Candidates, evaluating their applications, making hiring and employment decisions, and contacting Candidates by phone or in writing).
Please note that Tonkean may retain Candidates Information submitted to it even after the applied position has been filled or closed. This is done so we could re-consider Candidates for other positions and opportunities at Tonkean; so we could use their Candidates Information as a reference for future applications submitted by them; and in case the Candidate is hired, for additional employment and business purposes related to their work.
If you previously submitted your Candidates Information to Tonkean, and now wish to access it, update it or have it deleted from our systems, please contact us at jobs@Tonkean.com.
Tonkean may share your Personal Information with third parties (or otherwise allow them access to it) only in the following manners and instances:
Sharing Personal Information your organization (our Customer): If you are a Team Member, we may share your Personal Information with your organization, and also allow limited access (such as only to your profile picture, username and messages) to other Team Members of your organization and other Users permitted to access such Information. For further information, please see Section 6 above.
In certain cases, your organization will control your account and will be entitled to monitor, process and analyze your information, messages and associated content, including (i) view any content you submit and your interaction with other users, even if submitted anonymously; (ii) view statistics regarding your account; (iii) change your account password; (iv) suspend or terminate your account access; (v) access or retain information stored as part of your account; and (vi) restrict your ability to delete or edit information. Please note that we are not responsible or liable for any disclosure, use or monitoring by your organization.
Third Party Services: Tonkean has partnered with a number of selected service providers, whose services and solutions complement, facilitate and enhance our own. These include hosting and server co-location services, data and cyber security services, banks, payment processors and correspondents, fraud detection and prevention services, web analytics, e-mail distribution and monitoring services, session recording, remote access services, and our business, legal and financial advisors (collectively, “Third Party Services“). Such Third Party Services may receive or otherwise have access to our Users’ Personal Information, depending on each of their particular roles and purposes in facilitating and enhancing our Services and business, and may only use it for such purposes. Such disclosure or access is normally subject to the recipient’s undertaking of confidentiality obligations, and the prevention of any independent right to use this information by the recipients, except as required to help us provide our Services. Tonkean remains responsible and liable for any Personal Information processing done by Third Party Services on its behalf, except for events outside of its reasonable control.
Governmental/Law Enforcement Agencies and Legal Requests or Duties: We may disclose or otherwise allow access to your Personal Information pursuant to a legal request, such as a subpoena, search warrant or court order, or in compliance with applicable laws, with or without notice to you, if we have a good faith belief that we are legally required to do so, or that disclosure is appropriate in connection with efforts to investigate, prevent, or take action regarding actual or suspected illegal activity, counter terrorist financing verification requirements, fraud, or other wrongdoing.
Protecting Rights and Safety: We may share your Personal Information with others, with or without notice to you, if we believe in good faith that this will help protect the rights, property or personal safety of Tonkean, any of our Users, or any members of the general public.
For the avoidance of doubt, Tonkean may share your Personal Information in additional manners, pursuant to your explicit approval, or if we are legally obligated to do so. Additionally, we may transfer, share or otherwise use Non-personal Information in our sole discretion and without the need for further approval.
Tonkean uses certain monitoring and tracking technologies, including ones offered by Third Party Services. These technologies, such as cookies, web beacons, pixels and log files, are used in order to maintain, provide and improve our Services on an ongoing basis, and in order to provide a better experience to our visitors and Users. For example, these technologies enable us to keep track of our Users’ preferences and authenticated sessions, to better secure our Services and detect abnormal behaviors, to identify technical issues, and to monitor and improve the overall performance of our Services.
In order for some of these technologies to work properly, a small data file (“cookie”) must be downloaded and stored on your device, for purposes of session and user authentication, security, keeping the User’s preferences, connection stability, monitoring performance and generally providing and improving our Services.
In order to delete or block any cookies, please refer to the “Help” area on your internet browser for further instructions, or look for optional third party add-ons offering cookie management assistance. For example, you can instruct your browser, by changing its options, to stop accepting cookies or to prompt you before accepting a cookie from the website you visit. Click “Help” in the toolbar of your browser for instructions, or review the cookie management guide produced by the Interactive Advertising Bureau – www.allaboutcookies.org. Please note however that deleting any of Tonkean’s cookies or disabling future cookies or tracking technologies may prevent you from accessing certain areas or features of our Services, or may otherwise adversely affect your user experience.
Google Analytics, Mixpanel, Crazy Egg, Full Story: Our Services use Google Analytics (by Google, Inc.), Mixpanel (by Mixpanel, Inc.), Hotjar (by Hotjar Ltd.) and Full Story (by FullStory, Inc.), for web analytics, heatmaps and session recording. Non-personal and Personal Information might be transmitted to and stored by such services on their servers. Please visit their respective websites to find out how such services uses such information or how you can opt out of being tracked.
To opt-out of Google Analytics, please visit https://tools.google.com/dlpage/gaoptout
To opt-out of Mixpanel, please visit https://mixpanel.com/optout/
To opt-out of Crazy Egg, please visit https://www.crazyegg.com/opt-out
To opt-out of FullStory, please visit https://www.fullstory.com/optout.
Please note that we do not change our practices in response to a “Do Not Track” signal in the HTTP header from a browser or mobile application.
Promotional Messages: In addition to communications that are an inherent part of our Services, occasionally we may also use your contact information to contact and notify you about important changes to the Services, updates, new services and special opportunities we think you will find valuable. We may contact you through e-mail, the Services, or any other contact information (such as your mobile phone number) you have provided us.
By registering to our Services and/or providing Tonkean with your e-mail address or any other contact information, you expressly agree to receive promotional content, messages or calls from Tonkean or our partners (acting on our behalf) through such means. Accordingly, we shall be entitled to call you or send you promotional content or messages by e-mail, SMS, direct text messages, marketing calls and similar forms of communication.
If you wish not to receive such promotional messages or calls, you may notify Tonkean at any time by e-mailing us at email@example.com or by following the “unsubscribe” or “stop” instructions contained in the promotional communications you receive.
Service Messages: Tonkean may also contact you with important information regarding our Services. For example, we may notify you (through any of the means available to us) of changes or updates to our Services, payment issues, service maintenance, recruitment process updates, etc. You will not be able to opt-out of receiving such service messages.
If you wish to exercise your right to access and/or request us to make corrections to your Personal Information that you have stored with us or to delete it, or would like to receive a summary of what Personal Information (if any) of yours we disclosed to third parties for direct marketing purposes, please send us an e-mail to support@Tonkean.com, or mail your request to Tonkean Inc., 25 Taylor St., San Francisco, CA 94102, USA, Attn: Data Protection Officer, and we will respond within a reasonable timeframe and in accordance with applicable laws. Please note that you may also correct, update or remove certain parts of your Personal Information by yourself, or completely deactivate your account, by logging into your account at Tonkean or by going to the same website where you originally provided the Information.
If you are a Team Member of a certain organization, we recommend that you contact such organization directly if you wish to access, correct, amend or delete inaccurate information processed by Tonkean on behalf of such organization (for more information, please see Section 6 above).
We may retain your Personal Information for as long as your User account is active or as otherwise needed to provide you with our Services. We may retain such Personal Information even after you deactivate your account or cease to use our Services, as may be requested by your organization, and possibly longer as reasonably necessary to comply with our legal obligations, to resolve disputes regarding any of our Users, prevent fraud and abuse, enforce our agreements and/or protect our legitimate interests.
Tonkean has implemented security measures designed to protect the Personal Information of our Users, including physical, procedural and electronic measures. Among other things, we offer HTTPS secure access to our Services; we use industry standard SSL/TLS encrypted connections to protect the transmission of information that we believe in good faith to be of a sensitive nature; we use encryption tools to protect such sensitive information stored with us; we regularly monitor our systems for possible vulnerabilities and attacks, and seek new ways and tools for further enhancing the security of our Services and the integrity of the Personal Information that we hold.
Please note however, that regardless of the measures we take and the efforts we make, we cannot and do not guarantee the absolute protection and security of any Personal Information stored with us and/or with any third parties as described in Section 8 above. Unauthorized entry or use, hardware or software failure, and other factors may compromise information security. You acknowledge and agree to assume this risk when using the Services and when communicating with us, and your use of the Services is at your own risk.
We strongly encourage you to set strong passwords for your User account(s), avoid using the “save password” feature in your browser, and protect your account against unwanted access on your end (for example, do not share your login credentials with others, or allow them free access to your logged-in device).
If you have any questions regarding the security of our Services, please feel free to contact us at support@Tonkean.com.
You may also contact us by mail at: 20 Kibutz Galuyot, Tel Aviv, Israel; or at 650 California Street, San Francisco, CA 94108, USA.