Privacy Policy

Last Updated: Oct 31st, 2024

Your data and privacy are important to us, and we are committed to transparency regarding how
we collect, use, and share information about you and your data. Here, “we”, “us” or “our” refers
to Streamline Climate, Inc.

This Privacy Policy covers the information we collect from you and about you when you use our products or services, or otherwise interact with us (for example, by attending our events), unless a different policy is displayed. We offer a range of products and refer to all of these products, together with our other services and websites as “Services” in this policy. Users of our Services may referred to as “Customers” below.

This policy also explains your choices about how we use information about you, which could be used to identify you directly or indirectly (“Personal Data”). Your choices include how you can object to certain uses of Personal Data about you and how you can access and update certain Personal Data about you. If you do not agree with this policy, do not access or use our Services or interact with any other aspect of our business.

Where we provide the Services under contract with an organization (an “Organization”), that Organization controls the information processed by the Services, including any Customer Data (defined below). For more information, please see Notice to End Users below. If you have questions about specific Organization settings and privacy practices, please contact the individual at your Organization that is designated as the account owner (the “Organization Owner”).

This Privacy Policy applies to Streamline Climate, Inc.’s AI-enabled writing assistance platform, including the associated web application, the Microsoft Word add-in titled “Streamline Climate for Word” (collectively, the “Services”) and other Streamline Climate, Inc. websites (collectively, the “Websites”) and other interactions (e.g., customer service inquiries, user conferences, etc.) you may have with us. This Privacy Policy does not apply to any third party applications or software that integrate with the Services through the Streamline platform (“Third Party Services”), or any other third party products, services, or businesses. In addition, a separate agreement may govern delivery, access, and use of the Services (including the Terms and Conditions or a separately negotiated master services agreement, each a “Services Agreement”), including the processing of any messages, files, or other content submitted through Services accounts (collectively, “Customer Data,” which may include Personal Data). The organization (e.g., your employer or another entity or person) that entered into the Services Agreement (“Customer”) controls their instance of the Services (their “Organization”) and any associated Customer Data.

Other Information

In addition to Customer Data, we also collect, generate and/or receive Other Information, which may include Personal Data:

  • Organization and Account Information. To create your account, you or the Organization Owner supply us with a name, email address, phone number (optional), password, role in the Organization (optional), timezone and/or similar account details. To update your account, you or the Organization Owner can log in using Google or Azure login, and change settings to which you have access. If your Organization Owner chooses to invite you to a Workspace (add you to the Account), they can do so via email.

  • Your use of the Services. We keep track of certain information about you when you visit and interact with any of our Services. This information includes:

    • the features you use

    • the links you click on

    • the type, size, and file names of attachments you upload to the Services

    • frequently used search terms

    • how you interact with others on the Services. We also collect information about the teams and people you work with and

    • how you work with them, such as who you collaborate with and communicate with most frequently.

  • Device and Connection Information. We collect information about your computer, phone, tablet, or other devices you use to access the Services. This device information includes your connection type and settings when you install, access, update, or use our Services. We also collect information through your device about your operating system, browser type, IP address, URLs of referring/exit pages, device identifiers, and crash data. We use your IP address and/or country preference in order to approximate your location to provide you with a better Service experience. How much of this information we collect depends on the type and settings of the device you use to access the Services.

  • Cookies and Other Tracking Technologies. We and our third-party partners, such as our advertising and analytics partners, use cookies and other tracking technologies (e.g., web beacons, device identifiers and pixels) to provide functionality and to recognize you across different Services and devices.

  • Third Party Services. Organization Owners (or tool administrators) can choose to permit or restrict Third Party Services for their Organization. Typically, Third Party Services are software that integrate with our Services. Team Members should check the privacy settings and notices in these Third Party Services to understand what data may be disclosed to us. When a Third Party Service is enabled, we are authorized to connect and access Other Information made available to us in accordance with our agreement with the Third Party Provider.

  • Third Party Data. We may receive data about organizations, industries, Website visitors, marketing campaigns and other matters related to our business from our partners or others that we use to make our own information better or more useful. This data may be combined with Other Information that we collect and might include aggregate-level data, such as which IP addresses correspond to zip codes or countries. Or it might be more specific: for example, how well an online marketing or email campaign performed.

  • Additional Information Provided to Us. We receive Other Information when you submit information through a form on our Website or if you participate in a focus group, contest, webinar, activity or event, apply for a job, request support, visit our office, interact with our social media accounts, or otherwise communicate with us.

  • Generally, no one is under a statutory or contractual obligation to provide any Customer Data or Other Information (collectively, “Information”). However, certain Information is collected automatically and, if some Information, such as Organization setup details, is not provided, we may be unable to provide the Services.

Notice to End Users

Many of our products are intended for use by organizations. Where the Services are made available to you through an organization (e.g., your employer), that organization is the administrator of the Services and is responsible for the accounts and/or Service sites over which it has control. If this is the case, please direct your data privacy questions to your Organization Owner, as your use of the Services is subject to that Organization’s policies. We are not responsible for the privacy or security practices of an Organization, which may be different than this policy.

Organization Owners are able to:

  • restrict, suspend, or terminate your access to the Services

  • access information in and about your account

  • access or retain information stored as part of your account

In some cases, Organization Owners can also:

  • restrict, suspend, or terminate your account access

  • change the email address associated with your account

  • change your information, including profile information

  • restrict your ability to edit, restrict, modify, or delete information

  • enable or disable Third Party Services or other integrations

Even if the Services you use are not currently administered to you by an Organization, if you use an email address provided by an Organization to access the Services, then the owner of the domain associated with your email address (e.g., your employer) may assert administrative control over your account and use of the Services at a later date. You will be notified if this happens.

Please contact your Organization Owner or refer to your Organization’s policies for more information.

How We Use Information

Customer Data will be used by us in accordance with Customers’ instructions, including any applicable terms in the Services Agreement and as required by applicable law. Streamline Climate, Inc. is a processor of Customer Data and Customer is the controller. Customer may, for example, use the Services to grant and remove access to End Users, assign roles and configure settings, access, modify, export, share and remove Customer Data and otherwise apply its policies to the Services.

We use Other Information in furtherance of our legitimate interests in operating our Services, Websites, and business. More specifically, we use Other Information:

  • To provide, update, maintain, and protect our Services, Websites, and business.

    • This includes use of Other Information to support delivery of the Services under a Services Agreement, prevent or address service errors, security or technical issues, analyze and monitor usage, trends and other activities or at a Team Member’s request.

  • As required by applicable law, legal process, or regulation.

  • To communicate with you by responding to your requests, comments and questions.

    • If you contact us, we may use your Other Information to respond.

  • To develop and provide additional features.

  • To send emails and other communications.

    • We may send you service, technical, and other administrative emails, workflow notifications, messages, and other types of communications. We may also contact you to inform you about changes in our Services, our Services offerings, and important Services-related notices, such as security and fraud notices. We will also contact you if you request information or to meet with a company representative. These communications are considered part of the Services and you may not opt out of them. In addition, we sometimes send emails about new product features, promotional communications, or other news about Streamline. These are marketing messages, and you can control whether you receive them by clicking the “Unsubscribe” link in our email footers.

  • For billing, account management, and other administrative matters.

    • We may need to contact you for invoicing, organization management, and similar reasons and we use organization data to administer accounts and keep track of billing and payments.

  • To investigate and help prevent security issues and abuse.

  • If Other Information is aggregated or de-identified so it is no longer reasonably associated with an identified or identifiable natural person, we may use it for any business purpose.

Data Retention

We will retain Customer Data in accordance with a Customer’s instructions, including any applicable terms in the Services Agreement and as required by applicable law. We will retain your information for as long as your account is active, as needed to provide you Services, and for a reasonable period thereafter in case you decide to re-activate the Services. If you wish to cancel your account or request that we no longer use your information to provide you Services, you may delete your account by sending a request to delete your account to security@streamlineclimate.com or by requesting that your Organization Owner remove you.

We may retain and use your information as necessary to comply with our legal obligations, resolve disputes, enforce our agreements, and to support business operations. Consistent with these requirements, we will try to delete your information promptly upon request. Please note, however, that there might be latency in deleting information from our servers and backed-up versions might exist after deletion. In addition, we do not delete from our servers files that you have in common with other users.

How We Share And Disclose Information

This section describes how we may share and disclose Information. Customers determine their own policies and practices for the sharing and disclosure of Information, and we do not control how they or any other third parties choose to share or disclose Information.

  • Customer’s Instructions. We will solely share and disclose Customer Data in accordance with a Customer’s instructions, including any applicable terms in the Customer Agreement and Customer’s use of Services functionality, and in compliance with applicable law and legal process.

  • Displaying the Services. When a Team Member submits Other Information, it may be displayed to other Team Members in the same or connected Workspaces. For example, a Team Member’s email address may be displayed with their Workspace profile.

  • Collaborating with Others. The Services provide different ways for Team Members working in independent Workspaces to collaborate, such as shared channels. Other Information, such as a Team Member’s profile Information, may be shared, subject to the policies and practices of the other Workspace(s).

  • Customer Access. Organization Owners, administrators, Team Members, and other Customer representatives and personnel may be able to access, modify, or restrict access to Other Information. This may include, for example, your employer using Service features to export logs of Workspace activity, or accessing or modifying your profile details.

  • Third Party Service Providers and Partners. We may engage third party companies or individuals as service providers or business partners to process Other Information and support our business. These third parties may, for example, provide virtual computing and storage services.

  • Third Party Services. Organization Owners may enable or permit Team Members of their Organization to enable Third Party Services (typically, software that integrates with our Services.) When enabled, we may share Other Information with Third Party Services. Third Party Services are not owned or controlled by us and third parties that have been granted access to Other Information may have their own policies and practices for its collection and use. Please check the privacy settings and notices in these Third Party Services or contact the provider for any questions.

  • Corporate Affiliates. We may share Other Information with our corporate affiliates with your consent.

  • During a Change to Our Business. If Streamline Inc. engages in a merger, acquisition, bankruptcy, dissolution, reorganization, sale of some or all of our assets or stock, financing, public offering of securities, acquisition of all or a portion of our business, a similar transaction or proceeding, or steps in contemplation of such activities (e.g. due diligence), some or all Other Information may be shared or transferred, subject to standard confidentiality arrangements.

  • Aggregated or De-identified Data. We may disclose or use aggregated or de-identified Other Information for any purpose. For example, we may share aggregated or de-identified Other Information with prospects or partners for business or research purposes, such as telling a prospective Streamline customer the average amount of time or money saved for an average team.

  • To Comply with Laws. If we receive a request for information, we may disclose Other Information if we reasonably believe disclosure is in accordance with or required by any applicable law, regulation or legal process.

  • To enforce our rights, prevent fraud, and for safety. To protect and defend the rights, property or safety of Streamline Climate, Inc. or third parties, including enforcing contracts or policies, or in connection with investigating and preventing fraud or security issues.

  • With Consent. We may share Other Information with third parties when we have consent to do so.

Security

We take security of data very seriously. We work hard to protect Other Information you provide from loss, misuse, and unauthorized access or disclosure. These steps take into account the sensitivity of the Other Information we collect, process and store, and the current state of technology.

  • Information storage and security. We use data hosting service providers in the United States to host the information we collect, and we use technical measures to secure your data. For more information on where we store your information, please see Amazon Web Services’ hosting infrastructure page. While we implement safeguards designed to protect your information, no security system is impenetrable and due to the inherent nature of the Internet, we cannot guarantee that data, during transmission through the Internet or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others. If you use our server or data center Services, responsibility for securing storage and access to the information you put into the Services rests with you and not us.

  • How long we keep information. How long we keep information we collect about you depends on the type of information, as described in further detail in the Data Retention section. After such time, we will either delete or anonymize your information or, if this is not possible (for example, because the information has been stored in backup archives), then we will securely store your information and isolate it from any further use until deletion is possible.

  • Information you share on the Services. If your account is deactivated or disabled, some of your information and the content you have provided will remain in order to allow your team members or other users to make full use of the Services. For example, we continue to display messages you sent to the users that received them and continue to display content you provided.

  • Managed accounts. If the Services are made available to you through an Organization, we retain your information as long as required by the Organization Owner. For more information, see “Notice to End Users” above.

Our Policy Toward Children

Our Services are not directed to persons under 18. We do not knowingly collect personally identifiable information from children under 18. If a parent or guardian becomes aware that their child has provided us with Personal Data without their consent, they should contact us at security@streamlineclimate.com. If we become aware that a child under 18 has provided us with Personal Data, we will take steps to delete this information from our files.

Changes To This Privacy Policy

We may change this Privacy Policy from time to time. Laws, regulations, and industry standards evolve, which may make those changes necessary, or we may make changes to our business. We will post the changes to this page and encourage you to review our Privacy Policy to stay informed. If we make changes that materially alter your privacy rights, we will provide additional notice, such as via email or through the Services. If you disagree with the changes to this Privacy Policy, you should deactivate your Services account. Contact your Organization Owner if you wish to request the removal of Personal Data under their control.

Data Protection Personnel

To communicate with our security team about data protection, please email security@streamlineclimate.com.

Your Rights

Individuals located in certain countries, including the European Economic Area, have certain statutory rights in relation to their Personal Data. Subject to any exemptions provided by law, you may have the right to request access to Personal Data, as well as to seek to update, delete or correct this Personal Data. If you cannot use the settings and tools, contact your Organization Owner for additional access and assistance. Please check your profile at app.streamlineclimate.com for your contact information.

To the extent that our processing of your Personal Data is subject to the General Data Protection Regulation, we rely on our legitimate interests, described above, to process your data. We may also process Other Information that constitutes your Personal Data for direct marketing purposes and you have a right to object to our use of your Personal Data for this purpose at any time.

For California Residents

If you are a California resident, California Civil Code Section 1798.83 permits you to request information regarding the disclosure of Personal Data by us to third parties for the third parties’ direct marketing purposes. To make such a request, please send an email to security@streamlineclimate.com or write us:

Streamline Climate, Inc.

531 Page Street,

San Francisco, CA 94117

USA

Furthermore, California residents have the following rights with respect to Personal Data we may have collected about them:

(i) Requests to Know

You have the right to request that we disclose:

  • The categories of Personal Data we have collected about you;

  • The categories of Personal Data about you we have sold or disclosed for a business purpose;

  • The categories of sources from which we have collected Personal Data about you;

  • The business or commercial purposes for selling or collecting Personal Data about you;

  • The categories of Personal Data sold or shared about you, as well as the categories of third parties to whom the Personal Data was sold, by category of Personal Data for each party to whom Personal Data was sold; and

  • The specific pieces of Personal Data collected.

You may submit a request to know by emailing security@streamlineclimate.com. The delivery of our response may take place electronically or by mail. We are not required to respond to requests to know more than twice in a 12-month period.

(ii) Requests to Delete

You have the right to request that we delete any Personal Data about you that we have collected. Upon receiving a verified request to delete Personal Data, we will do so unless otherwise authorized by law. You may submit a request to delete Personal Data by emailing security@streamlineclimate.com.

Upon receipt of a request, we may ask you for additional information to verify your identity. Any additional information you provide will be used only to verify your identity and not for any other purpose.

We will acknowledge the receipt of your request within ten (10) days of receipt. Subject to our ability to verify your identity, we will respond to your request within 45 days of receipt. In order to protect your privacy and the security of Personal Data about you, we typically verify your request by requesting additional identifying information relating to you and/or your mobile device.

(iii) Right to Opt Out of the Sale of Personal Data

We do not sell Personal Data.

(iv) Authorized Agents

You may designate an authorized agent to make requests on your behalf. You must provide an authorized agent written permission to submit a request on your behalf, and we may require that you verify your identity directly with us. Alternatively, an authorized agent that has been provided power of attorney pursuant to Probate Code sections 4000-4465 may submit a request on your behalf.

(v) Categories of Personal Data that We Have Sold in the Last 12 Months

We do not sell Personal Information.

(vi) The Right to Non-Discrimination

You have the right not to be discriminated against for the exercise of your California privacy rights described above.

How We Respond to Do Not Track Signals

California law requires us to let you know how we respond to web browser Do Not Track (DNT) signals. Because there currently isn’t an industry or legal standard for recognizing or honoring DNT signals, we don’t respond to them at this time.

Contacting Streamline Climate, Inc.

Please feel free to contact us if you have any questions about this Privacy Policy or our practices, or if you are seeking to exercise any of your statutory rights. You may contact us at security@streamlineclimate.com or at our mailing address below:

Streamline Climate, Inc.

531 Page Street,

San Francisco, CA 94117

USA