Privacy Policy

Note: You’re reading the plain English version, which is not legally binding. Scroll up and click “the legal, jargon-filled version” to read wording we apply legally.

This policy is about how Typeform uses and processes your data (emails, respondent answers, etc.) when shared through our website or service. It was last updated on June 15th, 2019.

Summary

Typeform is a provider of a service, and not the owner of the collected data. So ultimately it’s the person who sends out a typeform who’s responsible for how collected data is handled. However, as a service provider we do process all kinds of data and have lots of responsibilities too. Intrigued? Read on.

What personal data do I have to give Typeform?

The only personal data required for using Typeform are the basics you need when you sign up. In other cases where you give out more info, it’ll be obvious what data you’re providing. For example, entering your email to sign up to a newsletter.

How do I contact Typeform with questions about this?

TYPEFORM SL
C/Bac de Roda, 163 (Local), 08018 – Barcelona (Spain)
Contact email: [email protected]
Contact email for our Data Protection Officer: [email protected]

What do you do with all the data, and why do you do it?

*Fulfilling our end of the deal, so you can use our service
*Sending you emails or other comms
*Using your browsing behavior on our sites (see cookie policy) for profiling purposes. This lets us send you better ads or personalized content.
*Signing you in from third-parties (social media platforms etc.)
*Complementing data we have from third parties (requires individual opt-ins), to send you better ads or personalized content
*Investigating things to prevent fraud, spam, phishing, and other no-no activities
*Dissociating you (the person) from you (the profile), to analyze user trends and get better at what we do

Does anyone else have access to my data?

They wouldn’t have “access” to it, like seeing it in a list. But sometimes we use other services to complement our services to you. In those cases, the other provider may need to process your data. If so, they’ll have the same obligations as we do. You can oppose our collaboration with other service providers. However, Typeform might choose to close your Typeform account instead.

Here’s how we could use your data with other service providers:

*Passing data through “browser cookies” so that other service providers can process it. This always needs your consent when it happens.
*Sharing data with courts and authorities to take action against illegal activities, when that’s applicable. If you’re planning on doing that, I doubt you’d be reading this policy.
*If you share typeform responses with third parties, you may have to inform the respondents, or comply with further legal requirements.

Where is my data/information processed?

Your information (not your respondents’ answers) might be processed in countries that don’t have the same data protection laws as those in your jurisdiction. You agree to this by agreeing to our privacy policy.

I’m moving to a cabin in Alaska and want all my data removed from everywhere. Can I?

Yes. You can wipe everything we have by withdrawing consent or deleting your account. You can also ask to see all the data we have, and object to some of the ways we use it. To do this, visit the Help Center and open a ticket. Click the link at the bottom of any article.

Or send post to:
c/ Bac de Roda, 163 (local), 08018 – Barcelona (Spain).
We love a nice letter.

Can I update my personal information?

Sure. Update your contact info in your account settings, or write to our Help Center. If you want to unsubscribe to commercial or subscription emails, hit “unsubscribe” in the email (doesn’t apply to essential account-related emails).

Who processes my respondents’ data?

We process their data on your behalf.

Do I have control over what’s done with my personal or collected data? What happens if I’m up to no good?

We’ll handle data according to your instructions. If we suspect these instructions break laws, we’ll ask you to confirm the instruction. If you still want to do it, you’ll be responsible for any and all legal and financial outcomes.

What about confidentiality?

Anyone at Typeform who handles data does so with confidentiality.

Can you help me out with GDPR procedures?

Yes. As a service provider we could help you with things like responding to, and handling, others’ request for transparency on how you use their data. However, you’d have to pay for it.

What happens if Typeform is hacked?

If we’re hacked or breached in a way that affects you, we’ll give you what you need to follow legal obligations. Just keep in mind that you’re responsible for filing reports under the law, and for notifying affected people. You’re also responsible for the costs or sanctions that come from inaction on your side.

If I deleted my account would you positively, absolutely delete all my data?

Yes, but the authorities could tell us to do otherwise. So unless you’re up to no good, don’t worry.

How do I know Typeform sticks to their side of the deal?

We can give you what you need to feel confident about it. You also have the right to audit us once a year, but you’d have to pay for it (unless it turns out we’ve broken our agreement).

Can I send collected data outside of European protection laws?

You can process or send collected data outside the European Economic Area—as long as the data transfer follows European regulations. If that’s not possible, you and Typeform will default to the binding contract (no simplified version exists, sorry).

What if these terms change?

If we change anything, there’s a chance you’ll have to accept the changes before continuing to use our Typeform. If you don’t agree to the changes, you’ll have 30 days to change your mind or stop using Typeform.