Privacy Policy

Updated at 2021-02-09

Markable ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how your personal information is collected, used, and disclosed by Markable.
This Privacy Policy applies to our website, and its associated subdomains (collectively, our "Service") alongside our application, Markable. By accessing or using our Service, you signify that you have read, understood, and agree to our collection, storage, use, and disclosure of your personal information as described in this Privacy Policy and our Terms of Service.

Definitions and key terms

To help explain things as clearly as possible in this Privacy Policy, every time any of these terms are referenced, are strictly defined as:

What Information Do We Collect?

We collect information from you when you visit our website, register on our site, place an order, subscribe to our newsletter, respond to a survey or fill out a form.

How Do We Use The Information We Collect?

Any of the information we collect from you may be used in one of the following ways:

When does Markable use end-user information from third parties?

Markable will collect End User Data necessary to provide the Markable services to our customers.

End-users may voluntarily provide us with the information they have made available on social media websites. If you provide us with any such information, we may collect publicly available information from the social media websites you have indicated. You can control how much of your information social media websites make public by visiting these websites and changing your privacy settings.

When does Markable use customer information from third parties?

We receive some information from the third parties when you contact us. For example, when you submit your email address to us to show interest in becoming a Markable customer, we receive information from a third party that provides automated fraud detection services to Markable. We also occasionally collect information that is made publicly available on social media websites. You can control how much of your information social media websites make public by visiting these websites and changing your privacy settings.

Do we share the information we collect with third parties?

We may share the information that we collect, both personal and non-personal, with third parties such as advertisers, contest sponsors, promotional and marketing partners, and others who provide our content or whose products or services we think may interest you. We may also share it with our current and future affiliated companies and business partners, and if we are involved in a merger, asset sale or other business reorganization, we may also share or transfer your personal and non-personal information to our successors-in-interest.

We may engage trusted third-party service providers to perform functions and provide services to us, such as hosting and maintaining our servers and the website, database storage and management, e-mail management, storage marketing, credit card processing, customer service and fulfilling orders for products and services you may purchase through the website. We will likely share your personal information, and possibly some non-personal information, with these third parties to enable them to perform these services for us and for you.
We may share portions of our log file data, including IP addresses, for analytics purposes with third parties such as web analytics partners, application developers, and ad networks. If your IP address is shared, it may be used to estimate general location and other technographics such as connection speed, whether you have visited the website in a shared location, and type of the device used to visit the website. They may aggregate information about our advertising and what you see on the website and then provide auditing, research and reporting for us and our advertisers. We may also disclose personal and non-personal information about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate in order to respond to claims, legal process (including subpoenas), to protect our rights and interests or those of a third party, the safety of the public or any person, to prevent or stop any illegal, unethical, or legally actionable activity, or to otherwise comply with applicable court orders, laws, rules and regulations.

Where and when is information collected from customers and end-users?

Markable will collect personal information that you submit to us. We may also receive personal information about you from third parties as described above.

How Do We Use Your Email Address?

By submitting your email address on this website, you agree to receive emails from us. You can cancel your participation in any of these email lists at any time by clicking on the opt-out link or other unsubscribe option that is included in the respective email. We only send emails to people who have authorized us to contact them, either directly, or through a third party. We do not send unsolicited commercial emails, because we hate spam as much as you do. By submitting your email address, you also agree to allow us to use your email address for customer audience targeting on sites like Facebook, where we display custom advertising to specific people who have opted-in to receive communications from us. Email addresses submitted only through the order processing page will be used for the sole purpose of sending you information and updates pertaining to your order. If, however, you have provided the same email to us through another method, we may use it for any of the purposes stated in this Policy.
Note: If at any time you would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email.

How Long Do We Keep Your Information?

We keep your information only so long as we need it to provide Markable to you and fulfill the purposes described in this policy. This is also the case for anyone that we share your information with and who carries out services on our behalf. When we no longer need to use your information and there is no need for us to keep it to comply with our legal or regulatory obligations, we'll either remove it from our systems or depersonalize it so that we can't identify you.

How Do We Protect Your Information?

We implement a variety of security measures to maintain the safety of your personal information when you place an order or enter, submit, or access your personal information. We offer the use of a secure server. All supplied sensitive/credit information is transmitted via Secure Socket Layer (SSL) technology and then encrypted into our Payment gateway providers database only to be accessible by those authorized with special access rights to such systems, and are required to keep the information confidential. After a transaction, your private information (credit cards, social security numbers, financials, etc.) is never kept on file. We cannot, however, ensure or warrant the absolute security of any information you transmit to Markable or guarantee that your information on the Service may not be accessed, disclosed, altered, or destroyed by a breach of any of our physical, technical, or managerial safeguards.

Could my information be transferred to other countries?

Markable is incorporated in United Arab Emirates. Information collected via our website, through direct interactions with you, or from use of our help services may be transferred from time to time to our offices or personnel, or to third parties, located throughout the world, and may be viewed and hosted anywhere in the world, including countries that may not have laws of general applicability regulating the use and transfer of such data. To the fullest extent allowed by applicable law, by using any of the above, you voluntarily consent to the trans-border transfer and hosting of such information.

Is the information collected through the Markable Service secure?

We take precautions to protect the security of your information. We have physical, electronic, and managerial procedures to help safeguard, prevent unauthorized access, maintain data security, and correctly use your information. However, neither people nor security systems are foolproof, including encryption systems. In addition, people can commit intentional crimes, make mistakes or fail to follow policies. Therefore, while we use reasonable efforts to protect your personal information, we cannot guarantee its absolute security. If applicable law imposes any non-disclaimable duty to protect your personal information, you agree that intentional misconduct will be the standards used to measure our compliance with that duty.

Can I update or correct my information?

The rights you have to request updates or corrections to the information Markable collects depend on your relationship with Markable. Personnel may update or correct their information as detailed in our internal company employment policies.
Customers have the right to request the restriction of certain uses and disclosures of personally identifiable information as follows. You can contact us in order to (1) update or correct your personally identifiable information, (2) change your preferences with respect to communications and other information you receive from us, or (3) delete the personally identifiable information maintained about you on our systems (subject to the following paragraph), by cancelling your account. Such updates, corrections, changes and deletions will have no effect on other information that we maintain, or information that we have provided to third parties in accordance with this Privacy Policy prior to such update, correction, change or deletion. To protect your privacy and security, we may take reasonable steps (such as requesting a unique password) to verify your identity before granting you profile access or making corrections. You are responsible for maintaining the secrecy of your unique password and account information at all times.
You should be aware that it is not technologically possible to remove each and every record of the information you have provided to us from our system. The need to back up our systems to protect information from inadvertent loss means that a copy of your information may exist in a non-erasable form that will be difficult or impossible for us to locate. Promptly after receiving your request, all personal information stored in databases we actively use, and other readily searchable media will be updated, corrected, changed or deleted, as appropriate, as soon as and to the extent reasonably and technically practicable.
If you are an end user and wish to update, delete, or receive any information we have about you, you may do so by contacting the organization of which you are a customer.

Personnel

If you are a Markable worker or applicant, we collect information you voluntarily provide to us. We use the information collected for Human Resources purposes in order to administer benefits to workers and screen applicants.
You may contact us in order to (1) update or correct your information, (2) change your preferences with respect to communications and other information you receive from us, or (3) receive a record of the information we have relating to you.
Such updates, corrections, changes and deletions will have no effect on other information that we maintain, or information that we have provided to third parties in accordance with this Privacy Policy prior to such update, correction, change or deletion.

Sale of Business

We reserve the right to transfer information to a third party in the event of a sale, merger or other transfer of all or substantially all of the assets of Markable or any of its Corporate Affiliates (as defined herein), or that portion of Markable or any of its Corporate Affiliates to which the Service relates, or in the event that we discontinue our business or file a petition or have filed against us a petition in bankruptcy, reorganization or similar proceeding, provided that the third party agrees to adhere to the terms of this Privacy Policy.

Affiliates

We may disclose information (including personal information) about you to our Corporate Affiliates. For purposes of this Privacy Policy, "Corporate Affiliate" means any person or entity which directly or indirectly controls, is controlled by or is under common control with Markable, whether by ownership or otherwise. Any information relating to you that we provide to our Corporate Affiliates will be treated by those Corporate Affiliates in accordance with the terms of this Privacy Policy.

Governing Law

This Privacy Policy is governed by the laws of United Arab Emirates without regard to its conflict of laws provision. You consent to the exclusive jurisdiction of the courts in connection with any action or dispute arising between the parties under or in connection with this Privacy Policy except for those individuals who may have rights to make claims under Privacy Shield, or the Swiss-US framework.
The laws of United Arab Emirates, excluding its conflicts of law rules, shall govern this Agreement and your use of the website. Your use of the website may also be subject to other local, state, national, or international laws.
By using Markable or contacting us directly, you signify your acceptance of this Privacy Policy. If you do not agree to this Privacy Policy, you should not engage with our website, or use our services. Continued use of the website, direct engagement with us, or following the posting of changes to this Privacy Policy that do not significantly affect the use or disclosure of your personal information will mean that you accept those changes.

Your Consent

We've updated our Privacy Policy to provide you with complete transparency into what is being set when you visit our site and how it's being used. By using our website, registering an account, or making a purchase, you hereby consent to our Privacy Policy and agree to its terms.

Links to Other Websites

This Privacy Policy applies only to the Services. The Services may contain links to other websites not operated or controlled by Markable. We are not responsible for the content, accuracy or opinions expressed in such websites, and such websites are not investigated, monitored or checked for accuracy or completeness by us. Please remember that when you use a link to go from the Services to another website, our Privacy Policy is no longer in effect. Your browsing and interaction on any other website,
including those that have a link on our platform, is subject to that website's own rules and policies. Such third parties may use their own cookies or other methods to collect information about you.

Cookies

Markable uses "Cookies" to identify the areas of our website that you have visited. A Cookie is a small piece of data stored on your computer or mobile device by your web browser. We use Cookies to enhance the performance and functionality of our website but are non-essential to their use. However, without these cookies, certain functionality like videos may become unavailable or you would be required to enter your login details every time you visit the website as we would not be able to remember that you had logged in previously. Most web browsers can be set to disable the use of Cookies. However, if you disable Cookies, you may not be able to access functionality on our website correctly or at all. We never place Personally Identifiable Information in Cookies.

Blocking and disabling cookies and similar technologies

Wherever you're located you may also set your browser to block cookies and similar technologies, but this action may block our essential cookies and prevent our website from functioning properly, and you may not be able to fully utilize all of its features and services. You should also be aware that you may also lose some saved information (e.g. saved login details, site preferences) if you block cookies on your browser. Different browsers make different controls available to you. Disabling a cookie or category of cookie does not delete the cookie from your browser, you will need to do this yourself from within your browser, you should visit your browser's help menu for more information.

Remarketing Services

We use remarketing services. What Is Remarketing? In digital marketing, remarketing (or retargeting) is the practice of serving ads across the internet to people who have already visited your website. It allows your company to seem like they're "following" people around the internet by serving ads on the websites and platforms they use most.

Kids' Privacy

We do not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from anyone under the age of 13 without verification of parental consent, We take steps to remove that information from Our servers.

Changes To Our Privacy Policy

We may change our Service and policies, and we may need to make changes to this Privacy Policy so that they accurately reflect our Service and policies. Unless otherwise required by law, we will notify you (for example, through our Service) before we make changes to this Privacy Policy and give you an opportunity to review them before they go into effect. Then, if you continue to use the Service, you will be bound by the updated Privacy Policy. If you do not want to agree to this or any updated Privacy Policy, you can delete your account.

Third-Party Services

We may display, include or make available third-party content (including data, information, applications and other products services) or provide links to third-party websites or services ("Third- Party Services").
You acknowledge and agree that Markable shall not be responsible for any Third-Party Services, including their accuracy, completeness, timeliness, validity, copyright compliance, legality, decency, quality or any other aspect thereof. Markable does not assume and shall not have any liability or responsibility to you or any other person or entity for any Third-Party Services.
Third-Party Services and links thereto are provided solely as a convenience to you and you access and use them entirely at your own risk and subject to such third parties' terms and conditions.

Facebook Pixel

Facebook pixel is an analytics tool that allows you to measure the effectiveness of your advertising by understanding the actions people take on your website. You can use the pixel to: Make sure your ads are shown to the right people. Facebook pixel may collect information from your device when you use the service. Facebook pixel collects information that is held in accordance with its Privacy Policy

Information about General Data Protection Regulation (GDPR)

We may be collecting and using information from you if you are from the European Economic Area (EEA), and in this section of our Privacy Policy we are going to explain exactly how and why is this data collected, and how we maintain this data under protection from being replicated or used in the wrong way.

What is GDPR?

GDPR is an EU-wide privacy and data protection law that regulates how EU residents' data is protected by companies and enhances the control the EU residents have, over their personal data.
The GDPR is relevant to any globally operating company and not just the EU-based businesses and EU residents. Our customers' data is important irrespective of where they are located, which is why we have implemented GDPR controls as our baseline standard for all our operations worldwide.

What is personal data?

Any data that relates to an identifiable or identified individual. GDPR covers a broad spectrum of information that could be used on its own, or in combination with other pieces of information, to identify a person. Personal data extends beyond a person's name or email address. Some examples include financial information, political opinions, genetic data, biometric data, IP addresses, physical address, sexual orientation, and ethnicity.
The Data Protection Principles include requirements such as:

Why is GDPR important?

GDPR adds some new requirements regarding how companies should protect individuals' personal data that they collect and process. It also raises the stakes for compliance by increasing enforcement and imposing greater fines for breach. Beyond these facts it's simply the right thing to do. At Markable we strongly believe that your data privacy is very important and we already have solid security and privacy practices in place that go beyond the requirements of this new regulation.

Individual Data Subject's Rights – Data Access, Portability and Deletion

We are committed to helping our customers meet the data subject rights requirements of GDPR. Markable processes or stores all personal data in fully vetted, DPA compliant vendors. We do store all conversation and personal data for up to 6 years unless your account is deleted. In which case, we dispose of all data in accordance with our Terms of Service and Privacy Policy, but we will not hold it longer than 60 days.
We are aware that if you are working with EU customers, you need to be able to provide them with the ability to access, update, retrieve and remove personal data. We got you! We've been set up as self-service from the start and have always given you access to your data and your customers' data. Our customer support team is here for you to answer any questions you might have about working with the API.

California Residents

The California Consumer Privacy Act (CCPA) requires us to disclose categories of Personal Information we collect and how we use it, the categories of sources from whom we collect Personal Information, and the third parties with whom we share it, which we have explained above.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.
We do not sell the Personal Information of our users.
For more information about these rights, please contact us.

California Online Privacy Protection Act (CalOPPA)

CalOPPA requires us to disclose the categories of Personal Information we collect and how we use it, the categories of sources from whom we collect Personal Information, and the third parties with whom we share it, which we have explained above.
CalOPPA users have the following rights:

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.
We do not sell the Personal Information of our users.
For more information about these rights, please contact us.

DATA PROCESSING AGREEMENT

This Data Processing Agreement ("DPA") forms part of the General Conditions of Use of Sendinblue Services (the "Agreement"). All Capitalized terms not defined in this DPA shall have the same meaning set forth in the Agreement.
The purpose of this DPA is to define the conditions under which Sendinblue undertakes to perform, on behalf of the User, the data processing operations defined below.
In the context of this DPA, the User acts as a Data Controller and Sendinblue as a Data Processor within the meaning of EU Data Protection Law.

1.  Definitions

"User Data" means any Personal Data that Sendinblue processes on behalf of the User as Data Processor in the course of providing the Services.
"Data Controller" means the User.
"Data Processor" means Sendinblue.
"EU Data Protection  Law"  means  Regulation  2016/679  of  the  European  Parliament  and of the Council on the protection of natural persons with regard to the processing of Personal Data and on the free movement of such data  (General  Data  Protection  Regulation) ("GDPR");
"EEA" means the European Economic Area.
"Personal Data" means any information relating to an identified or identifiable natural person.
"Processing" has the meaning given to it in the GDPR and "process", "processes" and
"Processed" shall be interpreted accordingly.
"Sub-processor" means any Data Processor engaged by Sendinblue to assist in fulfilling its obligations with respect to providing the Services pursuant to the Agreement or this DPA. Sub-processors may include third parties or members of the Sendinblue group.

2.  Details of Data Processing

2.1.   Sendinblue shall process User Data only for the purposes described in the DPA and only in accordance with the User's documented lawful instructions. The Parties agree that this DPA and the Agreement set out the User's complete and final instructions to Sendinblue in relation to the processing of User Data.
2.2.   Duration: as between Sendinblue and the User, the duration of the data processing under this DPA is until the termination of the Agreement in accordance with its terms.
2.3.  Purpose: the purpose of the data processing under this DPA is the sending marketing and/or transactional emails and/or SMS messages.

2.4.   The data processing operations carried out by Sendinblue on behalf of the User are defined below:

Storage of contact listings loaded by the User
Sending of messages by email or SMS, whether automated or not (including order tracking, order confirmation, newsletters)
Retention and analysis of email deliverability data Retargeting display
Collection of Unsubscriptions and User Information
Collection of consents (in case the User uses the Sendinblue form to retrieve contact data from their own site)
Analysis of email recipient behaviour (monitoring of opening rates, click rates and bounce rates at the individual level).
2.5.   Categories of data subject: any individual: (i) whose email address is included in the User's distribution list; (ii) whose information is stored or collected via the Services, or (iii) to whom the User sends emails or otherwise engages or communicates with via the Services and more precisely Customers and prospects;Employees.
2.6.   Types of User Data: any type of data determined and controlled by the User in their sole discretion, in the context of its use and set up of the Services, such as Contact Details (such as email and telephone number); Address Details (such as street name, city, postal / zip code and country); Personal Information (such as first and last name, date of birth, gender); IT information (IP addresses, cookies data).

3.  The User's Obligations

3.1.   If the User is established in the European Union, or if its Distribution List contains Personal Data of European Union member citizens, the User agrees that it shall comply with its obligations as Data Controller under EU Data Protection Law, and in particular:
That the personal data contained in the files transmitted have been collected and processed in compliance with the applicable regulations;
That the Users have informed the data subjects in accordance with the applicable rules;
Where appropriate, that the collection and processing have been consented to by the data subjects;
That the data subjects shall be allowed to exercise their rights in accordance with the applicable rules;
That the Users undertake that the information will be rectified, completed, clarified, updated or deleted if it is inaccurate, incomplete, ambiguous or out of date, or if the data subject wishes to prohibit its collection, use, communication or storage.
3.2.  It is specified that the User is solely responsible for managing the retention periods of Personal Data that it uploads onto the Sendinblue platform, and that it is incumbent on him to delete the data as and when its retention period expires. Sendinblue is responsible only for deleting this data at the end of its contractual relationship with the User.
3.3.  The User undertakes not to include in the distribution lists uploaded onto the platform any Personal Data known as "sensitive" within the meaning of Article 9 of the GDPR.

4.  Sendinblue's Obligations

4.1.  Compliance with the User's instructions and regulations.

Sendinblue undertakes to:

4.2.   Security: Sendinblue undertakes to take all necessary precautions, in respect of the nature of Personal Data and the risks presented by the processing, to preserve the security of Personal Data and in particular, to prevent it from being distorted, damaged or accessed by unauthorized third parties. Sendinblue undertakes in this context to implement appropriate technical and organizational security et and confidentiality measures.
4.3.   Data Breach: Upon becoming aware of any violation of  Personal  Data,  Sendinblue shall notify the User within 72 hours after becoming aware of it, by notification through the User's customer account or by e-mail to the address monja@markableuae.com,  in particular, to enable the User, to comply with the obligation provided for in Article 33 of the GDPR.
4.4.   Destruction: at any time during the performance of the Agreement, the User may access or delete Personal Data processed by Sendinblue directly from their customer account by clicking on the "export button" in its customer account. At the end of the contractual relationship, Sendinblue undertakes, at the User's request, to destroy all personal data, or to return it to the User or another data processor designated by them if technically feasible and within a maximum period of 3 months. The return must be accompanied by the destruction of existing copies in Sendinblue's information systems unless any applicable law requires their retention. Sendinblue undertakes to provide the User, on request, with proof of such destruction.

5.  Assistance and audit

5.1.   Assistance: to the extent the User is unable to independently access the relevant User Data within the Services, Sendinblue shall (at the User's expense) provide reasonable cooperation to assist the User to respond to any request from individuals or applicable data protection authorities relating to the processing of Personal Data under the Agreement. In the event that any such request is made directly to  Sendinblue,  Sendinblue shall not respond to such communication directly without the  User's prior authorization,  unless legally compelled to do so. If Sendinblue is required to respond to such a  request, Sendinblue shall promptly notify the User and provide it with a copy of the request unless legally prohibited from doing so.
5.2.    Audit: Sendinblue undertakes to provide the User with all the information and documents necessary to demonstrate compliance with the obligations set out in this DPA. Sendinblue authorizes the User or any other external auditor not competing with Sendinblue and mandated by the User, at the User's expense, to inspect and audit its personal data processing activities and undertakes to accede to all reasonable requests made by the User to verify that Sendinblue complied with the contractual obligations imposed by this DPA.
Such audits may take place no more than once (1) per contract year. In all cases, the User must give Sendinblue a minimum notice of thirty (30) days, and the audit must in no case disrupt the ongoing activities of Sendinblue. The audit will be limited to the Personal Data processing activities performed by Sendinblue on behalf of the User, and the User will not be able to access data concerning other Sendinblue customers.
A copy of the audit report shall be provided to Sendinblue free of charge.

6.  Data transfers and Sub-processing

6.1.   Authorized sub-processors: the User is informed, and expressly accepts, that in connection with the performance of the Service under the Agreement, Sendinblue may have recourse to sub-processors, who will have access/process the Personal Data entrusted by the User on their behalf. The list of the relevant processors is available https://bit.ly/subcontactors-SIB-EN-int

6.2.   Sub-processors Obligations: Sendinblue shall: (i) enter into a written agreement with sub-processors imposing data protection terms that require the sub-processor to protect the User Data to the standard required by EU Data Protection Law; and (ii) remain responsible for its compliance with the obligations of this DPA and for any acts or omissions of the sub-processor that cause Sendinblue to breach any of its obligations under this DPA.
6.3.   Changes to sub-processors: in the event of a modification of the list of its sub- processors, Sendinblue will notify the User by email or by notification through the customer account, and the User will have the possibility to terminate the Agreement in the event of an objection.
It is specified that this notification will include any information relating to possible transfers of Personal Data the EEA.

7.  Miscellaneous

7.1.   This DPA may be amended at any time. All changes are published on Sendinblue's website and brought to the User's attention through the website.
Unless the User terminates the Services by sending a registered letter with acknowledgment of receipt by Sendinblue within thirty (30) days of these changes, the User will be deemed to have accepted the changes.
7.2.  This DPA has been drafted in several languages. For the purposes of interpreting this DPA, the French version shall prevail.

8.  Governing Law and Jurisdiction

The applicable law and the competent jurisdiction remain those stipulated in the Agreement.

Contact Us

 Don't hesitate to contact us if you have any questions.
Via Email: info@markableuae.com Via Phone Number: +971 4 220 1771
Via this Link: https://markeableintl.com
Via this Address: Al Ameri Tower

Need Help? Chat with us