Privacy Policy

This Privacy Policy applies to personal information that we collect about you when you use:

• Our website neotalogic.com (the “Website”).
• Our software the Neota Logic System, including all of the online tools accessed or run from the Website (which we refer to as “Workbench”) (collectively, “NLS”).
• An instance of NLS deployed for us or a client (“NLS Site”).
• Applications created with NLS and deployed on an NLS Site by us or our clients (“Applications”).

The Website, NLS, and Applications may be referred to collectively as “Services.”

This Privacy Policy does not apply to any NLS Site or Application that has a separate privacy policy.

We collect personal information in two ways:

• If and when you provide personal information to us.
• Automatically through your use of our Services.

Personal information you provide to us

Website: When you ask that we contact you or request a demo, we collect your name, email address, and organization name, and any personal information you choose to enter as a note.

NLS Site: When you register, or are registered by another person or organization, as a user of an NLS Site, we collect your name, organization name, and email address. We will verify that your email address is active and correct. Unless your account is managed by an organization’s Identity Provider (i.e., via Single Sign On), we will also collect and store the password you create for your account. Your password is stored in an encrypted form. We have no means to unencrypt your password. If you submit Support Requests, we will also collect the personal information you provide about the problem requiring support.

Application: When you use an Application, we collect any personal information that you enter into the Application, as explained below.

Information we collect automatically

Website: We collect information that web browsers, mobile devices, and servers typically make available, such as the browser type, IP address, inferred location, device identifiers, language preference, referring site, the date and time of access, operating system, and mobile network information. We use Google Analytics, Google Adwords, Clearview Social, and Hubspot to track pages visited, time on site, information requested, referrers, and other standard web traffic behaviors. None of this information is capable of identifying you.

NLS Site: In addition to general Website information, we collect information about your usage of NLS Sites—when you log in, which Applications you use or edit, how long your Application Sessions are, and so on.

In addition, Userflow (https://userflow.com/) provides user onboarding and in-context guidance within our platform, as well as general metrics and tracking within our products.

Applications: In addition to general NLS Site information, we collect the information that users enter while using an Application (“Application Data”).

For an Application to function, Application Data must be and is stored temporarily during the Session. For example, stored data is necessary so that: (a) an answer entered on the first page of an Application can appear on or be used to determine the content of subsequent pages; and (b) you can navigate backward and forward through the Application.

Application Data is encrypted at all times. When a Session ends, Application Data is either deleted automatically or, at the direction of the owner of the NLS Site, stored for some period of time.

Information from Cookies & Other Technologies: A cookie is a string of information that a website stores on a visitor’s computer, and that the visitor’s browser provides to the website each time the visitor returns. Pixel tags (also called web beacons) are small blocks of code placed on websites and emails.

On the Website, we use cookies to track visitors’ use of the site in order to improve its effectiveness for marketing our Services. Visitors who have set their browsers to disallow cookies can still use the Website.

On an NLS Site and in Applications, we use cookies only to store error or warning messages to be displayed in the browser, a web session ID/token identifying the user’s session, and success or error messages for OAuth token creation.

Information collected by third parties: If an Application uses a third-party service such as DocuSign for e-signature or Stripe for credit card payments, we collect the information required for those services. In the case of Stripe, we do not store credit card numbers, expiration dates, or CVC codes; that data is passed directly to Stripe.

Location of information

Information from the Website is stored wherever our hosting provider or Google Analytics determines, and may be copied to our internal systems for analysis.

Information from an NLS Site and the Applications run on that NLS Site is stored in the country or region directed by the owner of that NLS Site, except that information provided to third-party services such as DocuSign and Stripe is stored wherever those services determine.

Purposes for which we use information

To provide our Services—to set up, operate, secure, and back up your NLS Site and Applications.

To analyze how users interact with our Services in order improve our Services.

On the Website only—to measure and improve the effectiveness of our marketing.

Legal bases for collecting & using personal information

In accordance with data protection laws, including European and UK data protection laws, we will use your personal information where:

(1) The use is necessary in order to fulfil our commitments to you under our Terms of Service or other agreements with you or is necessary to administer your account.

© Neota Logic Inc. 6 of 9

(2) The use is necessary for compliance with a legal obligation.

(3) The use is necessary in order to protect your vital interests or those of another person.

(4) We have a legitimate interest in using your personal information–for example, to provide and update our Services, to improve our Services, and to safeguard our Services.

(5) You have given us your consent, which consent may be given by you to us or to the owner of an NLS Site that is running an Application into which your personal information is input.

Sharing personal information

We share your personal information only in these circumstances:

Subsidiaries, employees, and independent contractors: We may disclose personal information about you to our subsidiaries, our employees, and individuals who are our independent contractors that need to know the personal information in order to help us provide our Services or to process the personal information on our behalf. We require our subsidiaries, employees, and independent contractors to follow this Privacy Policy for all personal information that we share with them.

Third-Party Vendors: We may share personal information about you with third-party vendors who need to know personal information about you in order to provide their services to us, or to provide their services to you. This group includes vendors that help us provide our Services to you (like payment providers that process your credit and debit card information. We require vendors to agree to privacy commitments in order to share personal information with them.

Legal Requests: We may disclose personal information about you in response to a subpoena, court order, or other governmental request.

To Protect Rights, Property, and Others: We may disclose personal information about you when we believe in good faith that disclosure is reasonably necessary to protect the property or rights of Neota Logic, third parties, or the public at large. For example, if we have a good faith belief that there is an imminent danger of death or serious physical injury, we may disclose personal information related to the emergency without delay.

Business Transfers: In connection with any merger, sale of company assets, or acquisition of all or a portion of our business by another company, or in the event that Neota Logic goes out of business or enters bankruptcy, user information would likely be one of the assets that is transferred or acquired by a third-party. If any of these events were to happen, this Privacy Policy would continue to apply to your information and the party receiving your information may continue to use your information, but only consistent with this Privacy Policy.

With Your Consent: We may share and disclose personal information with your consent or at your request, which request may be given by you to us or to the owner of an NLS Site that is running an Application into which your personal information is input.

How long we keep personal information

We generally discard personal information about you when we no longer need the personal information for the purposes for which we collect and use it—which are described in the section above on How and Why We Use Personal information—and we are not legally required to continue to keep it.

Controllers and responsible companies

Neota Logic’s Services are available for use worldwide. Different Neota Logic companies provide these Services. The Neota Logic company providing the Services is the company responsible for processing that personal information, based on the particular service and the location of the individual using our Services.

Depending on the Services you use, more than one company may be the controller of your personal information. Generally, the “controller” is the Neota Logic company that entered into the contract with you for Services. In addition, Neota Logic Inc., our US-based company, is the controller for some of the processing activities across all of our Services worldwide.

If you are located in certain countries, including those that fall under the scope of the European General Data Protection Regulation (the “GDPR”), data protection laws give you rights with respect to your personal information, subject to any exemptions provided by the law. Such rights may include the right to:

• Request access to your personal information.
• Request correction or deletion of your personal information.
• Object to our use and processing of your personal information.
• Request that we limit our use and processing of your personal information.
• Request portability of your personal information.
• To make a complaint to a government supervisory authority.

For the exercise of any rights relating to your personal information, please send an email to support@neotalogic.com.

If you have a question about this Privacy Policy, or you would like to contact us about any of the rights mentioned in the Your rights section above, please send email to support@neotalogic.com.

Because Neota Logic’s Services are offered worldwide, the personal information about you that we process when you use the Services in may be used, stored, and/or accessed by individuals in another jurisdiction who work for us, other members of our group of companies, or third-party data processors. This is required for the purposes listed in the How and Why We Use Personal information section above. When providing personal information about you to entities outside the jurisdiction in which you reside, we will take appropriate measures to ensure that your personal information continues to be adequately protected in accordance with this Privacy Policy and as required by applicable law.

You can ask us for more information about the steps we take to protect your personal information when transferring it from one jurisdiction to another.

Neota Logic may change its Privacy Policy from time to time. If we make changes, we will notify you by revising the change log below, and, in some cases, we may provide additional notice (such as adding a statement to our Website or an NLS site. Your further use of the Services after a change to our Privacy Policy will be subject to the updated policy

Revised May 30, 2018

Revised February 16, 2021

Revised February 17, 2022

Note: We appreciate Automattic Inc.’s decision to make its privacy policy available under a Creative Commons license.