Last Revised: Aug 5, 2022
We collect a few kinds of information to provide and improve our Service.
When submitting your contact information or registering on our site, we collect certain personally identifiable information ("Personal Data") that can be used to contact or identify you, including:
You have the choice on what information to share and the services you want to engage. You can choose not to provide information to us, but in general some information about you is required in order for you to access certain functionality of the Services, such as those mentioned above or below or for tracking your preferences, subscribing to a newsletter, or initiating other such actions. We may use your Personal Data to contact you with newsletters, marketing or promotional materials and other information that may be of interest to you. You may opt out of receiving any, or all, of these communications from us by following the unsubscribe link or you may contact us via the contact information below.
When visiting our site, we also collect certain information that your browser or mobile device sends (“Usage Data”) to access the Service, including:
We may use your Usage Data to support analytics that improve our site.
We use persistent first-party cookies to store session information and make our site easier to use.
Cookies are files with a small amount of data stored by your browser to help it remember your login information, site preferences, and more.
You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our service. To learn more about cookies, including how to view which cookies have been set and how to manage and delete them, please visit: http://www.allaboutcookies.org
We do not use any third-party cookies, such as advertising or social media cookies.
Sumatra processes your personal information with your consent or as needed:
We will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period, except when this data is used to strengthen the security or to improve the functionality of our Service, or we are legally obligated to retain this data for longer time periods.
Your information, including Personal Data, may be transferred to – and maintained on – computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.
If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including Personal Data, to the United States and process it there.
We share your information with our partners, service providers, contractors, agents and third party vendors as needed to fulfill Services.
We may disclose personal information that we collect, or you provide:
Under certain circumstances, we may be required to disclose your Personal Data if required to do so by law, subpoenas, court orders, or other legal process; or in response to valid requests by public authorities.
We may disclose your information also:
Other than as set out above, we will attempt to notify you when your personal information will be shared with third parties.
The security of your data is important to us. Sumatra takes technological and organizational measures to protect your personal information against loss, theft, and unauthorized access, use, disclosure or modification. We have implemented a variety of security measures to maintain the safety of your personally identifiable information: For example:
We rely on HubSpot’s and AWS’ security programs to protect personal information while stored in their respective controlled facilities. For more information on AWS’ security practices and processes, please see https://aws.amazon.com/security/. For more information on Hubspot’s security practices and processes, please see https://legal.hubspot.com/security.
Although we have made reasonable efforts to safeguard the confidentiality of your personally identifiable information, we cannot promise, and you should not expect, that your personally identifiable information is 100% secure. There is no guarantee that information may not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or managerial safeguards. We also cannot guarantee that unauthorized third parties will never be able to circumvent our security measures and obtain access to your personally identifiable information and use it for improper purposes.
Sumatra complies with applicable data protection laws, including applicable security breach notification requirements.
We apply the same data rights to all users, regardless of their location. We recognize all of the rights granted in the European Union’s General Data Protection Regulation (“GDPR”) and California Consumer Privacy Act (“CCPA”), except as limited by applicable law.
Your Data Protection Rights Under General Data Protection Regulation (GDPR)
If you are a resident of the European Union (EU) and European Economic Area (EEA), you have certain data protection rights, covered by GDPR. See more at https://eur-lex.europa.eu/eli/reg/2016/679/oj
We aim to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.
If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please email us at: firstname.lastname@example.org
In certain circumstances, you have the following data protection rights:
Please note that we may ask you to verify your identity before responding to such requests. Please note, we may not able to provide Service without some necessary data.
You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).
According to CalOPPA we agree to the following:
We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
Our Services are not intended for use by children under the age of 18 (“Child” or “Children”).
We do not knowingly collect personally identifiable information from Children under 18. If you become aware that a Child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from Children without verification of parental consent, we take steps to remove that information from our servers.