Version 1.0 - February 29, 2020
The React Bricks CMS service may collect personal data from its users (from now on referred as "you").
We are committed to protecting your personal data and to be very transparent about personal data collecting and processing.
This Privacy Notice, in compliance with the General Data Protection Regulation EU 2016/679 (GDPR), explains clearly what data we process, why we need them and how we collect and process them.
F2 .net engineering s.r.l.
Via Tasso, 50 - 24121 Bergamo (BG) - Italy
Upon registration we collect your first name, last name, company name and e-mail address. The same data is collected for the invited Content editor users.
When you contact us for support or other customer service requests, we collect any information provided by you related to such support or service requests.
We don't collect financial information from you (such as your payment card number, expiration date or security code). All payments to us are handled via a third party, Paddle Ltd (https://paddle.com). You may find their Privacy notice at https://paddle.com/gdpr.
When you access or use our Services we automatically collect information about your use of the Services, including the type and version of browser, machine and device you use, access times, usage times, launches, pages viewed, debug, your IP address, the page you visited before navigating to our Services and other statistics.
We collect your Personal Information to:
For individuals in the European Economic Area, our processing of your Personal Information is justified on the following legal basis:
Your personal data is processed at our offices in Italy and on the database servers where we store data. The database servers are currently located in Italy, but in the future, for performance and redundancy reasons, we could have database servers in other countries of Europe or United States of America.
In addition to all of our company's personnel, your data may be disclosed to third parties in order to correctly fulfil the mentioned processing purposes, to offer you support, to improve our services, to comply with local laws and regulations. Third parties include Paddle Inc. (see Paddle privacy notice) for payment/invoicing processing and Mailchimp to send newsletters (see Mailchimp GDPR compliance notice).
Our Services are not for use by children under the age of 16 years and we do not knowingly collect, store, share or use Personal data of children under 16 years. If you are under the age of 16 years, please do not provide any Personal data, even if prompted by the Services to do so. If you are under the age of 16 years and you have provided Personal data, please ask your parent(s) or guardian(s) to notify us and we will delete all such Personal data.
Personal data shall be processed and stored for as long as required by the purpose they have been collected for. We may be obliged to retain Personal data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an authority. Once the retention period expires, Personal Data shall be deleted. Therefore, the right to access, the right to erasure, the right to rectification and the right to data portability cannot be enforced after expiration of the retention period. Sometimes it could be an unbearable effort to delete only your data from a compressed backup, so they will be permanently deleted as soon as a new backup replaces the preceding one. Your personal data will not be restored to production systems except in certain rare instances, for example the need to recover from a natural disaster, serious technical or security problem. In such cases, your personal data may be restored from backups, but we will take the necessary steps to erase your data again as soon as possible.
We like to make sure that you are fully aware of all of your data protection rights in accordance to GDPR, which are the following: