We value your privacy of confidential data and strictly comply with the security guidelines.

We log all access to all accounts by IP address, so we can always verify that no unauthorized access occurs for as long as the logs are kept. Only in case you ask us to, we’ll access your account to help you troubleshoot a software bug.
This policy applies to data that is collected, used, and retained by us in the United Kingdom.

Identity & access

We ask for your name, company name, phone and email address when you sign up for Workspee. This is done to setup and personalize your new account and send you invoices, updates, newsletter or other important information. Your personal information will never be sold to third parties, and we won’t use your name/phone or company in marketing statements without your consent.
When you contact Workspee with an inquiry or to ask for help, we keep the email address and correspondence for future reference. When you browse our social media pages, we’ll track them for statistical purposes (like tracking the sources of signups, market research, conversion rates and to test new designs) and to improve the content of our web pages and the quality of our service.
You always have the right to access the personal information we store about you. And, if you wish to further limit our use of your personal information, please contact at [email protected]

Users of Workspee can store any type of information in Workspee, but Workspee does not access or share that data, and does not know what type of data you or other users are storing. The data is only used by the account owner and invited users as they intend to use it.
The only times we’ll ever share your info is to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, group, place, region, nation, violations of our Terms of Service, or as otherwise required by law.

Law enforcement

While we may be required to disclose your personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements, Workspee won’t submit your data over to law enforcement unless a court order says we have to. We flat-out reject requests from local and federal law enforcement when they seek data without a court order. And unless we’re legally prevented from it, we’ll always inform you when such requests are made.

Encryption

All data is encrypted via SSL/TLS when transmitted from our servers to your browser. The database backups are also encrypted. The data isn’t encrypted while it’s live in our database (since it needs to be ready to send to you when you need it), but we have checks in place to secure your data at rest. You can read more about it on our security page.

Cookies

In order to improve our services and the website, and provide more convenient, relevant experiences to you, we and our vendors may use “cookies”, “web beacons”, and similar devices to track your activities.

Third Parties and data storage

Workspee uses third party vendors and hosting partners to provide the necessary hardware, software, networking, storage, and related technology required to run Workspee. The current list of vendors is available upon request.
Although Workspee owns the code, databases, and all rights to the Workspee application, you retain all rights to your data.

Deleted data

When you cancel your account, we’ll ensure that nothing is stored on our servers past 15 days. Anything you delete on your account while it’s active will also be purged within 15 days (deleted data stays in the trash can for 15 days, unless the trash can is emptied manually and data gets purged immediately).

EU-US and Swiss-US Privacy Shield Framework

Workspee complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States, respectively. To learn more about the Privacy Shield program, please visit https://www.privacyshield.gov/.

EU-US and Swiss-US Privacy Complaints

In compliance with the US-EU and Swiss-US Privacy Shield Principles, Workspee commits to resolve complaints about your privacy and our collection or use of your personal information. European Union or Swiss individuals with inquiries or complaints regarding this privacy policy should first contact Workspee at [email protected] or by mail at the given address, London Road, Sayers Common, West Sussex BN6 9HS, UK.

Workspee GDPR Commitment

We welcome the arrival of GDPR and view the regulations as raising the bar for data protection, security, and compliance. We will continue to be committed to our customers and users to help them comply with the GDPR while using Workspee as their data processor.

We worked with our engineering, product, security and legal teams to make both our product and our legal terms in line with the GDPR and will continue to ensure they keep in line continuously. As part of Workspee GDPR readiness project we’ve taken the following steps:

  • Reviewed and strength our security infrastructure and practices, data encryption in transit and at rest, backup, logs and security alerts.
  • A risk assessment and data mapping process were made to make sure any data that may be stored or processed is processed and managed according to the GDPR instructions.
  • We delete analytics data of users after user’s deletion
  • Had an external audit made by E&Y to receive a SOC 2 Type II security certification from the American Institute of Certified Public Accountants (AICPA)
  • Received an internationally recognized security certification for ISO 27001 ISMS (information security management system) and ISO 27018 (for protecting personal data in the cloud).
  • We’ve self-certified under the E.U.-U.S. Privacy Shield frameworks to comply with data protection requirements when transferring personal data to Workspee US subsidiary.
  • We’ve made sure we have the appropriate contractual terms in place, to perform our role as a data processor for our customers while complying with the GDPR.
  • We’ve put on place all the internal procedures, processes and controls and recurring training sessions for the team, to ensure our on-going compliance with the GDPR
  • We’ve revised our Terms of Use and Privacy Policy to support the GDPR requirements.
  • Performed security and privacy assessment to our sub-processors to ensure they are all complying with the GDPR requirements.
  • We’ve appoint a Data Protection Office (DPO) and a representative in the EU.
  • We’ve developed and we’re making available these days product features that allows organization to deal with data deletion:
    • Delete users profile: Admin can now delete users’ personal data from the system (in their own initiative or as per user’s request), this will allow the organization to meet the GDPR requirements. This will delete the user name, phone, email, picture, address, title, social networks references, and other customer fields if provided.
    • Deleting user will not delete the user posts or uploaded files – which will remain available for the organization, under an anonymous name, as defined by the organization
    • Delete account: While canceling an account, admin can decide if they want to keep the organization information (including personal data) for future use or delete it permanently.

We’ll continue to monitor the guidance around GDPR compliance and will ensure that our product and processes are complying with those guidance when they become effective.

We’ll continue to monitor the guidance around GDPR compliance and will ensure that our product and processes are complying with those guidance when they become effective.

Changes and questions

Workspee may periodically update this policy. We’ll notify you about significant changes in the way we treat personal information by sending a notice to the primary email address specified in your Workspee primary holder account or by placing a prominent notice on our site.

If you’d like to access, change, delete your personal information or have any questions about this privacy policy, contact at Workspee at [email protected].