Legal

Privacy Policy

PRIVACY POLICY

Last Revised: October 12th 2024

Your privacy is important to us. This Privacy Policy (“Privacy Policy”) describes how GoCo.io, Inc. (“GoCo.io”, “we”, “us”, or “our”) may collect, use, store, disclose, process, and transfer your personal information through your access to or use of GoCo.io products and services, including those at https://www.goco.io/ as well as any subdomains, website of ours that links to this Privacy Policy, related websites, mobile applications, and other offerings (collectively, the “Services”). By using the Services or, if required by laws applicable to you, opting into this Privacy Policy, you signify your acceptance of this Privacy Policy. If you do not agree to this Privacy Policy, please do not use the Services. GoCo.io may change this Privacy Policy from time to time by posting changes at https://www.goco.io/legal-stuff/privacy-policy and may send notification emails regarding such changes. Your continued use of the Services following the posting of such changes will be deemed your acceptance of those changes, unless additional consent is required.

GoCo.io encourages you to read this Privacy Policy in its entirety, but here are a few key points:

Privacy Policy Applicability

This Privacy Policy applies when you access the Services or share information with GoCo.io. GoCo.io may revise this Privacy Policy at any time. More

Information We Collect from You

We collect all information that you provide, information you provide via the Services, your devices (e.g., computers, smartphones, and tablets), telephone, and email as well as information we receive from partners. We also use cookies and other such technologies to collect information about you and how you engage with the Services. More

How We Use Your Information

We process your personal information only with your consent or as needed to provide you the Services. We may also use your personal information to comply with legal obligations, operate our business, protect the vital interests of you, our customers, or the public, or for other legitimate interests of GoCo.io. More

How We Share Your Information

We may share your information with our partners, service providers, contractors, agents, and third-party vendors as they need it to help us provide the Services, for other requests you make of GoCo.io, or in furtherance of our other reasons discussed in this Privacy Policy. We may also share your information to comply with law or for other legitimate interests. More

How We Store and Secure Your Information

We will retain your information as long as necessary for the purposes outlined in this Privacy Policy or for so long as permitted by law, whichever is shorter. GoCo.io takes technological and organizational measures designed to protect your personal information against loss, theft, and unauthorized access, use, disclosure, or modification. More

Accessing and Updating Your Information

You can access, get copies of, request deletion of, change, or correct your personal information, or request changes to our use of your personal information by using the contact information below. More

Additional Privacy Information

GoCo.io’s databases are located in the United States, and you consent to the transfer of your personal information from your location to the United States. The Services are not for use by children under the age of 16 or the lowest age permitted by applicable law, and we do not collect or process the personal information of any children under the age of 16 or the lowest age permitted by applicable law. You may have additional rights under applicable law where you reside. If you have any questions about this Privacy Policy, please contact us via the contact information below. More

Rights under State Law

If you are a California resident, you may have additional rights under the applicable privacy laws and regulations. More

European Union and United Kingdom Data Subject Rights

If you are an EU or UK resident, you may have additional rights under applicable privacy laws and regulations. More

Privacy Policy Applicability

This Privacy Policy applies when you use or access the Services or share information with GoCo.io. By accessing or using the Services and/or opting into this Privacy Policy (as applicable in your jurisdiction), you consent to this Privacy Policy. GoCo.io may update this Privacy Policy at any time. If you do not consent to this Privacy Policy for any reason, please do not access or use the Services or share your information with us. Please note that this Privacy Policy applies only to the Services and not to any other third-party website linked to or from it, or any third-party website in which GoCo.io’s content or functionality is embedded. We do not control the privacy policies or practices of others.

Information We Collect from You

In general, we receive and collect all information you provide via the Services, including through website input fields, phone, email (including email campaigns), or other such ways. This includes personal information that can identify or relates to you, including, but not limited to:

Category of Personal Information

Examples of Personal Information We Collect

Categories of Sources from which such Personal Information is Collected

Categories of Third Parties or Services Providers with whom we share such Personal Information

Profile or Contact Data

Examples may include:

  • First and last name

  • Postal address

  • Telephone number

  • Email address

  • Unique record identifiers

  • You

  • GoCo.io’s affiliated entities, partners, etc.

  • Service Providers & Third Party Vendors in connection with providing you with the Services

  • Partners you authorize, access, or authenticate

  • Advertising networks (Limited to GoCo’s own targeted ad campaigns)

Demographic Data

Examples may include:

  • Age

  • Birthday

  • Zip code

  • Gender

  • National origin

  • Marital status

  • You

  • Service Providers & Third Party Vendors in connection with providing you with the Services

  • Partners you authorize, access, or authenticate

Personal Identifiers

Examples may include:

  • Social security number

  • Passport number

  • Driver’s license

  • You

  • Service Providers & Third Party Vendors in connection with providing you with the Services

  • Partners you authorize, access, or authenticate

Commercial Data

Examples may include:

  • Consumer profiles

  • Records of products or services sold, used, or purchased

  • You

  • Service Providers & Third Party Vendors in connection with providing you with the Services

  • Partners you authorize, access, or authenticate

Device/IP Data

Examples may include:

  • IP address

  • Device ID

  • Domain server

  • Browser type

  • Search history

  • Type of device

  • Information regarding your interaction with website pages and content assets

  • Information collected automatically through cookies and similar technology, device type, domain names, and access time/logs

  • You

  • Service providers

  • Data analytics providers

  • Advertising networks (Limited to GoCo’s own targeted ad campaigns)

Geolocation Data

Examples may include:

  • General physical location

  • Precise physical location

  • IP-address-based location information

  • Cookie ID

  • You

  • Service providers

  • Service Providers & Third Party Vendors in connection with providing you with the Services

  • Partners you authorize, access, or authenticate

Web Analytics

Examples may include:

  • Web page interactions

  • Referring webpage/source through which you accessed the Services

  • Browsing activity, including the addresses of websites that you visit

  • Non-identifiable request IDs

  • You

  • Service providers

  • Data analytics providers

  • Service Providers & Third Party Vendors in connection with providing you with the Services

  • Partners you authorize, access, or authenticate

  • Advertising networks (Limited to GoCo’s own targeted ad campaigns)

Professional or Employment-Related Data

Examples may include:

  • Employer

  • Job title

  • Job history

  • Resume

  • Education history

  • You

  • Service providers

  • GoCo.io’s affiliated entities, partners, etc.

  • Service Providers & Third Party Vendors in connection with providing you with the Services

  • Partners you authorize, access, or authenticate

Personal Health Information

Examples may include (whether written, oral, or electronic):

  • Health information

  • Insurance information

  • You

  • Service providers

  • GoCo.io’s affiliated entities, partners, etc.

  • Service Providers & Third Party Vendors in connection with providing you with the Services

  • Partners you authorize, access, or authenticate

Sensory Data

Examples may include:

  • Photos

  • You

  • Service Providers & Third Party Vendors in connection with providing you with the Services

  • Partners you authorize, access, or authenticate

Inferences Drawn from Other Personal Data Collected

Examples may include:

  • Profiles reflecting user attributes

  • Profiles reflecting user behavior

  • You

  • Service providers

  • Service Providers & Third Party Vendors in connection with providing you with the Services

  • Partners you authorize, access, or authenticate

Other Identifying Information that You Voluntarily Decide to Provide

Examples may include:

  • Identifying information in emails, texts, letters, or other communications you send us

  • You

  • Service Providers & Third Party Vendors in connection with providing you with the Services

  • Partners you authorize, access, or authenticate

For clarity, GoCo.io does not and will not share the personal information of any end user of the Services, including any employee of our customers, to (i) any advertising partner or (ii) any other third party except in connection with providing the Services or with any third party which our customers requested GoCo.io integrate with.

You have the choice regarding what information to share and the Services you want to engage. You can choose not to provide information to us, but in general, some information about you is required in order for you to access certain functionalities of the Services.

We may also periodically obtain information about you from vendors, partners and other independent third-party sources and will add it to our database of information, including any information that you provide to third parties that are associated or whose products or services are integrated with the Services. For one example, we may obtain information from your employer in order to create and verify your account.

Additionally, you may provide personal information to us to facilitate your access to and interaction with a third-party provider, such as payroll processors, your insurance broker, your insurance carrier, background check partners, and other human-resource-related service providers (each, a “GoCo.io Provider”). If you direct us to provide personal information to such GoCo.io Provider, any usage of that information will be subject to the agreement(s) in place between you and such GoCo.io Customer.

We may use cookies, heat mapping, log files, session replay technologies, and similar tracking technologies, including those from third-party service providers like Google Analytics, Google Tag Manager, Google AdWords, Google AdSense, Amazon Web Services, 6Sense, HubSpot, and other cloud-based tools, to automatically collect your preferences, performance data, and information about your web usage when you visit the Services. For example, we may collect your IP address, device and Internet service provider information, Web browser details and the address of any referring website. We may also collect information about your online activity, such as pages viewed and interactions with certain parts of the Services. This may include collecting geolocation signals from your IP address or device settings to determine your general location. By collecting and using this information, we may operate and personalize the Services for you. For more information on how we use cookies, please see the “Cookies” section below.

The Services are not designed to recognize or respond to “do not track” signals received from browsers. You can control the information collected by such tracking technologies or be alerted when cookies are sent by adjusting the settings on your Internet browser or devices, but such adjustments may affect or disable certain functionality of the Services. You can learn more about Google Analytics and your options for opting out of interest-based Google ads at https://adssettings.google.com. You can learn more about targeted ads and your ability to opt out of receiving interest-based ads at optout.aboutads.info and www.networkadvertising.org/choices.

Cookies

Cookies, also known as tracking cookies or browser cookies, and similar technologies such as web beacons, clear GIFs, pixel tags, and JavaScript (collectively, “Cookies”) are small pieces of data, usually text files, placed on a computer, tablet, phone, or similar device when you use that device to access the Services. We use the following types of Cookies:

  • Essential Cookies. Essential Cookies are necessary for providing you with the Services and features that you requested. For example, these Cookies allow you to log into and stay logged into secure areas of the Services, save language preferences, and more. These Cookies are required to make the Services available to you, so they cannot be disabled.
  • Functional Cookies. Functional Cookies are utilized to record your choices and settings, maintain your preferences over time, and recognize you when you return to our Services. These Cookies help us personalize our content for you, greet you by name, and remember your preferences. Some examples include the ability to track if you dismissed a webpage banner, gate content based on your preferences, and more.
  • Performance/Analytical Cookies. Performance/Analytical Cookies allow us to understand how users (like you) use the Services. These Cookies accomplish this by collecting information about the number of users to the Services, what pages users view the most, and how long users view specific pages. When applicable, these Cookies also help us measure and manage the performance of our advertising campaigns in order to help us improve the campaigns and the Services’ content. For example, Google LLC (“Google”) uses cookies in connection with its Google Analytics services. Google’s ability to use and share information collected by Google Analytics about your visits to the Services is subject to the Google Analytics Terms of Use and the Google Privacy Policy. You have the option to opt-out of Google’s use of Cookies by visiting the Google advertising opt-out page at http://www.google.com/privacy_ads.html or the Google Analytics Opt-out Browser Add-on at https://tools.google.com/dlpage/gaoptout/.

You have the option to decide through your internet browser’s settings whether or not to accept Cookies. Most browsers allow users to choose whether to turn off the Cookie feature, which will prevent your browser from accepting new Cookies, as well as (depending on the browser) allow you to toggle whether to accept each new Cookie. You can also clear all Cookies that are already on your device. If you do this, however, you may have to manually adjust some preferences every time you visit the Services, and some functionalities may not work. To explore what Cookie settings are available to you, look in the “settings”, “preferences” or “options” section of your browser’s menu.

To find out more information about Cookies, including information about how to manage and delete Cookies generally, please visit http://www.allaboutcookies.org/.

How We Use Your Information

We process your personal information with your consent or as needed to provide you the Services. We may also use your personal information to comply with legal obligations, operate our business, protect the vital interests of you, our customers, or the public, or for other legitimate interests of GoCo.io as described in this Privacy Policy.

More specifically, we may use your personal information to:

  • Optimize and improve the Services. We continually try to improve the Services based on the information and feedback we receive from you and our other users, including by optimizing the content on or functionalities of the Services.
  • Personalize the user experience. We may use your information to measure engagement with the Services and to understand how you and our other users interact with and use the Services and other resources we provide.
  • Improve customer service. Your information helps us to more effectively develop the Services and respond to your support needs.
  • Process transactions. We may use the information you provide to fulfill your requests. We do not share this information with outside parties except to the extent necessary to provide the Services and related activities.
  • To send periodic communications. The communication methods you provide through our contact forms will be used to send information and updates pertaining to the Services. It may also be used to respond to your inquiries or other requests. If you opt into our mailing list, you may receive emails that include GoCo.io news, updates, product offerings and service information, and marketing material. If at any time you would like to unsubscribe from receiving future emails, we include detailed unsubscribe instructions at the bottom of each email or you may contact us via the contact information below. Please note that if you unsubscribe from promotional emails, you may still receive communications related to your subscription, your purchase, or other necessary functionalities of the Services.
  • To send periodic SMS messages. We may occasionally send you SMS messages through the number you provided to us. The messages will be sent based on GoCo.io’s legitimate business needs, and in furtherance of us providing the Services, and for promotional reasons. If at any time you would like to unsubscribe from receiving future SMS messages, we include detailed unsubscribe instructions for how to do so or you may contact us via the contact information below.
  • Carry out other legitimate business interests. We may use the information you provide to carry out other legitimate business purposes, as well as other lawful purposes.

We may use any aggregated information (as described below) for any purpose.

How We Share Your Information

We share your information with our partners, service providers, contractors, agents, and third-party vendors as needed to fulfill Services. Please note that our partners may contact you as necessary to obtain additional information about you, facilitate any use of the Services, or respond to a request you submit.

Third-party vendors who provide products, services or functions on our behalf may include business analytics companies, communications service vendors, marketing vendors, and security vendors. We may also authorize third-party vendors to collect information on our behalf, including as necessary to operate features of the Services or serve content. Third-party vendors have access to and may collect personal information only as needed to perform their functions, may only use personal information consistent with this Privacy Policy and other appropriate confidentiality and security measures, and are not permitted to share or use the information for any other purpose.

We also may share your information:

  • In response to subpoenas, court orders, or other legal process; to establish or exercise our legal rights; to defend against legal claims; or as otherwise required by law. In such cases we reserve the right to raise or waive any legal objection or right available to us.
  • When we believe it is appropriate to investigate, prevent, or take action regarding illegal or suspected illegal activities; to protect and defend the rights, interests, or safety of our company or the Services, our customers, or others; or in connection with our GoCo Service Agreement, available at https://www.goco.io/legal-stuff/gsa, (the “GSA”) and other agreements with customers of which you may be affiliated.
  • In connection with a corporate transaction, such as a divestiture, merger, consolidation, or asset sale, or in the unlikely event of bankruptcy.

Other than as set out above, we will attempt to notify you when your personal information will be shared with third parties.

Personal Information You Post in Public Areas. When you post a message in a GoCo.io review or customer feedback, the information you post may be accessible to other users of the Services and the public. If you post personal information anywhere on the Services that is accessible to other users or the public, you are advised that such personal information can be read, collected, used, or disseminated by others and could be used to send you unsolicited information or for other purposes. Accordingly, you assume full risk and responsibility for posting such information and agree that GoCo.io is not responsible in any way for personal information you choose to post in these public areas.

Aggregated Information. We may use, publish, share, distribute, or disclose personal information that has been aggregated with information from other users and otherwise anonymized and de-identified in a manner that does not allow third parties, including GoCo.io partners, sponsors, and advisers, to de-identify the data or identify it as originating from you. Such information may help GoCo.io identify and analyze training, demographic, and psychographic trends and information and report to third parties how many people saw, visited, or clicked on certain content, areas of the Services, or other materials. We may also use such data for research purposes and optimizing the Services’ functionality.

How We Store and Secure Your Information

Personal information collected by GoCo.io may be stored and processed in your region, in the United States, and in any other country where GoCo.io or its affiliates, subsidiaries, or service providers operate facilities. These countries may have data protection laws that are different to the laws of your country (and, in some cases, may not be as protective). However, we have taken appropriate safeguards to require that your personal information will remain protected in accordance with this Privacy Policy.

GoCo.io takes technological and organizational measures designed to protect your personal information against loss, theft, and unauthorized access, use, disclosure, or modification. You can read more about our security policy here: https://www.goco.io/security.

GoCo.io complies with applicable data protection laws, including applicable security breach notification requirements.

Data Retention

GoCo.io will retain your information as long as necessary for the purposes outlined in this Privacy Policy (including as set forth in the GSA), in a manner consistent with our data retention policy discussed below, and for a commercially reasonable time thereafter for backup, archival, fraud prevention or detection or audit purposes or as permitted by applicable law. GoCo.io will retain your personal information consistent with the original purpose of collection or as long as necessary to comply with our legal obligations; maintain accurate accounting, financial and other operational records; resolve disputes; and enforce our agreements. We will never retain your information for a period longer than permitted by law.

We determine the appropriate retention period for personal information on the basis of the amount, nature, and sensitivity of the personal information being processed; the potential risk of harm from unauthorized use or disclosure of the personal information; whether we can achieve the purposes of the processing through other means; and applicable legal requirements.

After expiration of the applicable retention periods, your personal information will be deleted.

Accessing and Updating Your Information

To the extent provided by the law of your jurisdiction, you may:

  1. Have the right to access certain personal information we maintain about you and request details about how we process it;
  2. Request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes;
  3. Request that we update or correct inaccuracies regarding your personal information;
  4. Object to our use of your personal information;
  5. Ask us to block or delete your personal information from our database;
  6. Request to download the information you have shared on the Services; and
  7. Confirm whether GoCo.io stores your data in the United States.

You may make these requests and any other inquiries about this Privacy Policy by emailing [email protected] or calling us at 888-284-2894. Any such requests are subject to the protection of other individuals’ rights and applicable law. Additionally, to help protect your privacy and maintain security, we may take steps to verify your identity before granting you access to the requested information.

Additional Privacy Information

Data Transfer. Our databases are currently located in the United States. GoCo.io makes no claim that its Services are appropriate or lawful for use or access outside the United States. If you access the Services from outside the United States, you are consenting to the transfer of your personal information from your location to the United States. You are solely responsible for complying with all local laws, rules and regulations regarding online conduct and access to the Services. By providing us your information, you further consent to its storage within the United States.

Collection of Data from Children. The Services are not directed to children, and you may not use the Services or provide any personal information to GoCo.io if you are under the age of 16 (or the lowest age permitted by applicable law) or if you are not old enough to consent to the processing of your personal information in your country. We do not collect or process personal information of individuals under the age of 16 or the lowest age permitted by applicable law unless we receive all necessary consents from the individual’s parent or guardian.

California Resident Privacy Rights. California Civil Code Section 1798.83 permits our customers who are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please e-mail us or contact us through the methods stated above. For more information regarding your rights under California law, please see the “California Resident Rights” section below.

Your Rights under State Law

California Resident Rights

If you are a California resident, you have certain rights under the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020 (“CCPA”), to request us to explain how we collect, use, and share your personal information, and the rights and choices we offer California residents regarding our handling of your personal information. The CCPA currently defines “personal information” as “information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.”

Personal Information Collection, Use, and Disclosure

  • We describe the sources through which we collect personal information and the types of personal information collected in the “Information We Collect from You” section in this Privacy Policy and in the table below.
  • We describe the third-party sources from which we may collect certain of your personal information and the types of personal information collected in the “Information We Collect from You” section of this Privacy Policy.
  • We describe the purposes for which we use and share this information in the “How We Use Your Information” section of this Privacy Policy.
  • Information about how long we retain your personal information can be found in the “Data Retention” section of this Privacy Policy.

Does GoCo.io Collect This Information?

Category of Personal Information

Examples

YES

A. Identifiers, such as name and location

Identifiers such as real name, alias, postal address, unique personal identifier, online identifier, IP address, email address, account name, SSN, driver’s license number, passport number or other similar identifiers.

YES

B. Personal information, as defined in the California customer records law, such as contact (including email and telephone number) and financial information

A name, signature, physical characteristics or description, address, telephone number, education, employment, and employment history. Some personal information included in this category may overlap with other categories.

YES

C. Characteristics of protected classifications under California or federal law (if you choose to provide them), such as age, gender identity, marital status, sexual orientation, race, ancestry, national origin, religion, and medical conditions

Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).

YES

D. Commercial information, such as transaction information and purchase history

Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.

NO

E. Biometric information

Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.

YES

F. Internet or network activity information, such as browsing history and interactions with our Sites and App

Browsing history, search history, information on a consumer's interaction with a website, application, or advertisement.

YES

G. Geolocation data, such as mobile device location

Physical location or movements.

YES

H. Audio, electronic, visual, and similar information, such as photos and videos

Audio and video information.

YES

I. Professional or employment-related information, such as work history and prior employer

Current or past job history.

NO

J. Non-public education information

Education records directly related to a student maintained by an educational institution or party acting on its behalf.

NO

K. Inferences drawn from any of the personal information listed above to create a profile or summary about, for example, an individual’s preferences and characteristics

Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.

California Privacy Rights Under the CCPA

To the extent provided for by law and subject to applicable exceptions, California residents have the following privacy rights in relation to the personal information we collect:

  1. Right to request access to information about categories of personal information GoCo.io has collected about you, specific pieces of personal information GoCo.io has collected about you, categories of sources from which the personal information is collected, the business or commercial purpose for collecting personal information, and categories of third parties with whom the business shares personal information.
  2. Right to request deletion of any personal information collected about you by us.
  3. Right to opt-out of the sale of personal information or the sharing or personal information for cross-context behavioral advertising purposes.
  4. Right against discrimination because you exercised the rights available to you.
  5. Right to protection against waiver of rights.
  6. Right to correct any inaccurate personal information.
  7. Right to restrict sensitive personal information processing.

You can exercise these rights as further described in the “Exercising Your Rights under State Law” section below.

You can request to exercise the rights described above through contacting us as set forth in the “How to Contact Us” section below. You may request to exercise these rights by yourself or via an authorized agent who meets the agency requirements of CCPA. Once you request to exercise your rights, you agree to receive communication from us seeking information from you in order to verify your identity as the consumer from whom we have collected the personal information and other information as reasonably required to enable us to fulfill your request in our discretion. We will not fulfill any request unless you have provided sufficient information for us to reasonably verify that you are the consumer from whom we collected personal information as well as sufficient details necessary to help us handle the request.

How to Contact Us. You can call us at 888-284-2894, e-mail us at [email protected] or write to us at GoCo.io, Inc., Attn: Privacy Dept., 4747 Research Forest Dr., Ste. #180-246, The Woodlands, TX 77381. Depending on where you are located, you may also have a right to submit a complaint to your local data protection regulator.

European Union and United Kingdom Data Subject Rights

If you are a resident of the European Union (“EU”) or United Kingdom (“UK”), you may have additional rights under the EU or UK General Data Protection Regulation (the “GDPR”), as applicable, with respect to your Personal Data. The following discusses these rights.

For this section, the GDPR definition of “Personal Data” and “processing” are used. Generally, “Personal Data” means information that can be used to individually identify a person, and “processing” relates to actions that can be performed in connection with collecting, using, storing, and disclosing such data. GoCo.io is the controller of your Personal Data processed in connection with the Services.

If a conflict exists between this this section and any other provision of this Privacy Policy, the more protective policy or portion shall govern to resolve such conflict. If you have any questions about this section or whether any of the following applies to you, please contact us at [email protected].

We may also process Personal Data of our customers’ end users in connection with our provision of services to our customers. In this case, we are the processor of Personal Data. If you have any questions regarding Personal Data when GoCo.io is the data processor, please contact the controller party in the first instance to address your rights with respect to such data.

Personal Data We Collect. The “Information We Collect from You” section above details the Personal Data that we collect from you.

Personal Data Use and Processing Grounds. The “How We Use Your Information” section above explains how we use your Personal Data. We will only process your Personal Data as explained in this Privacy Policy and if we have a lawful basis for doing so. The lawful bases include receiving your consent, having a contractual necessity, and furthering our legitimate interests or the legitimate interest of others. The following sections describe these in greater detail.

Consent

We process Personal Data based on the consent you expressly grant to us at the time we collect the data. When we process Personal Data based on your consent, it will be expressly indicated to you at the point and time of collection.

Contractual Necessity

We may process the Personal Data as a matter of “contractual necessity”. This means that we need to process the data to perform under our agreement with you and enable us to provide you with the Services. When we process data due to contractual necessity, failure to provide such Personal Data will result in your inability to use some or all portions of the Services.

Legitimate Interest

We process the following categories of Personal Data when we believe it furthers the legitimate interest of us or third parties providing products or services in connection with the Services:

  • Profile or Contact Data
  • Demographic Data
  • Personal Identifiers
  • Commercial Data
  • Device/IP Data
  • Geolocation Data
  • Web Analytics
  • Professional or Employment-Related Data
  • Sensory Data
  • Inferences Drawn from Other Personal Data Collected
  • Other Identifying Information that You Choose to Provide

We may also de-identify and anonymize Personal Data to further our legitimate interests.

Examples of these legitimate interests include (as described in more detail above in the “How We Use Your Information” section):

  • Providing, customizing, and improving the Services.
  • Marketing the Services.
  • Corresponding with you.
  • Meeting legal requirements and enforcing legal terms.
  • Completing corporate transactions.

Other Processing Grounds

Occasionally, we may also need to process Personal Data to comply with legal obligations, to protect the vital interests of you or other data subjects, or to carry out a task necessary for the public’s interest.

Sharing Personal Data. The “How We Share Your Information” section above details how we share your Personal Data with third parties.

EU and UK

EU and UK data subjects have certain rights with respect to Personal Data. This is further set forth below. For more information about these rights or to submit a request, please email us at [email protected]. Please note that in some circumstances, GoCo.io may be unable to fully comply with your request, including if the request is frivolous, extremely impractical, jeopardizes other’s rights, or not required by law. In those circumstances, we will still notify you of such a decision. Generally, we may also need you to provide us additional information, which may include Personal Data, if necessary to verify your identity and the nature of your request. Your rights include:

  • Access: You can request information related to the Personal Data we store about you and request a copy of such Personal Data.
  • Rectification: If you believe that any Personal Data we store about you is incorrect or incomplete, you can request we supplement or correct such Personal Data.
  • Erasure: You can request we erase part or all of your Personal Data from our systems.
  • Withdrawal of Consent: If we are processing your Personal Data based upon your consent (as indicated at the time of collection of such data), you have the right to withdraw consent at any time. However, please note that if you change or withdraw consent, you may have to then provide express consent on a case-by-case basis if use or disclosure is necessary to enable you to use the Services.
  • Portability: You can request for a copy of your Personal Data in a machine-readable format. You can also request we transmit the Personal Data to another controller to the extent such transmission is technically feasible.
  • Objection: You can contact us to object to our further use or disclosure of your Personal Data for certain purposes, such as for direct marketing purposes, by contacting us as described above.
  • Restriction of Processing: You can request GoCo.io restrict further processing your Personal Data.
  • Right to File Complaint: You have the right to submit a complaint about GoCo.io's practices with respect to your Personal Data to the supervisory authority of your country or EU Member State. A list of Supervisory Authorities is available here: https://edpb.europa.eu/about-edpb/board/members_en.

Transfers of Personal Data. The “Data Transfer” information in the “Additional Privacy Information” section above details how and where we transfer your data. Most significantly, our databases are currently located in the United States, and you are consenting to GoCo.io transferring your Personal Data to the United States.