Request a demo
Contact us through Whatsapp or schedule a meeting through Calendly directly with our team to request a free full Dupin demo.
Privacy policy
PRIVACY AND DATA PROTECTION POLICY
This document is an integral part of the PRIVACY AND DATA PROTECTION POLICY.
By using:
- the Website, https://dupin.app or https://www.dupin.app, (hereinafter, "the Website"),
- the Dupin Application, https://app.dupin.app or https://www.app.dupin.app, (hereinafter, "the App"),
- and using all mobile applications that contain a link to this Privacy Policy (the "Dupin Apps");
We are aware that the trust you place in us is the greatest capital of Dupin LLC (hereinafter "Dupin" or "we" or "us"). Privacy protection is of essential importance to us. This privacy statement (hereinafter "Privacy Statement") also applies to (i) our website https://dupin.app and all its subdomains (hereinafter the "Website"), (ii) visits to our offices and (iii) all (commercial) relationships between Dupin and its actual and potential customers, and its business partners.
This Privacy Statement includes information about the personal data that Dupin collects, as well as how Dupin uses and processes such personal data.
We would like to note that this Privacy Statement does not apply to third party websites (hereinafter "third party" or "third parties") linked to us. Since Dupin has no influence over the use of data by third parties, we advise you to consult the privacy statements of these third parties.
Dupin uses Amazon Web Services (AWS) to store user data. These servers are subjected to frequent checks to ensure compliance with the latest industry standards, and undergo constant risk management. By using AWS as a data center, our software infrastructure is accredited by
ISO 27001
SOC 1 and SOC 2 / SSAE 16 / ISAE 3402 (formerly SAS 70 Type II)
ENS High
For more information on AWS Security Services, click here: https://aws.amazon.com/es/compliance/programs
Visiting the Website, creating an account for the purpose of using Dupin's demo, creating an account to use Dupin's services, subscribing to the newsletter and/or a seminar, webinar or event, imply your explicit consent (by communicating your personal data or opt-in) to the Privacy Statement and, therefore, to the way in which we collect, use and process your personal data.
Please review this Privacy Statement along with Dupin's Cookie policy in Article G.
A. Awareness
All employees responsible for software development and maintenance of Dupin LLC's infrastructure are fully aware of the privacy and security requirements implemented.
To learn more about how Dupin manages security, you can consult this link: https://dupin.app/security/
B. Type of Data we possess
Dupin holds the data of 2 types of subjects:
Our clients (meaning all those who have registered on Dupin and who use Dupin to manage communications with their users)
The end-users (meaning our client's users)
Dupin does not sell any type of user data whatsoever (the data aforementioned in point 1 or 2). Our business model is based exclusively on paid subscriptions at our customers' expense.
B.1.Client Data we holdDupin collects account information for each client (we refer to all those who have registered on Dupin, who are using Dupin to manage communications with their users or who have contacted Dupin via email, phone, or through a message via Facebook, Instagram, SMS, or WhatsApp, or by filling out a contact form, or in any other way).
For this purpose, we may process the following personal data, including:- Name and Last name
- Company job and role
- Profile picture
- Permanent address
- Registered office address
- Billing address
- Client payment details (includes billing information, such as company address and country - the credit card number and all its data are stored exclusively by Stripe)
- Email address
- Telephone number (landline and / or mobile)
- Username
- Password
- Company name
Information regarding the use of Dupin's Website. Such as, by way of example but not limited to: type and version of browser used, the operating system used by the access system, the website from which an access system reaches our website, the date and time of access to the website, the Internet Protocol address (IP address), and any other similar data and information that can be used in the event of attacks to our computer systems.
Information regarding the use of Dupin's platform (hereinafter "Platform") and/or Dupin's mobile app (hereinafter "App") (such as, but not limited to, heat maps, browsing recordings, IP address, browser type, the web page visited when the Website was accessed)
The access data of the mobile device used, as well as data on the geographical location (if necessary All personal data freely provided to Dupin (for example those shared during a correspondence with Dupin).
B.2.Our support via WhatsApp
If you create an account on Dupin or If you contact Dupin via the WhatsApp messaging service, we will use your phone number to communicate with you via WhatsApp. Moreover, we process other personal data stored by WhatsApp, in particular name and last name, nickname used to register on WhatsApp, your profile picture as well as the messages and files you send us through the app.
We process your mobile number to identify you. Your nickname and profile picture, provided via WhatsApp, are used for visualization purposes. Your communication with us is stored as a chat transcript. This serves the purpose of using previous communication with you as context for future communication. The transcript also contains proof of receipt and reading.
WhatsApp collects data independently. For more information regarding the purpose and scope of WhatsApp's data collection, WhatsApp's further processing of your data, and your rights and setting options for protecting your privacy, please read WhatsApp's Privacy Policy. You can find them here or directly within WhatsApp's app.
B.3.User activity
We do not log user activity, except for system logs which include the IP, user agents and connection time. They are stored for a maximum of 1 year, and exclusively for debugging and legal purposes.
B.4.Our client's end users data we hold
End user's phone number (if provided by the end user, implying consent)
End user username
Message exchange between our client and the end user
Date and time of the end user's last activity
End user profile information (from public data shared by the end user) Dupin gathers information on the identity of the end user (username, telephone number, user profile information) from external APIs. These external APIs collect such data from public information that the end user has consented to share on a third party service (by way of example but not limited to, Whatsapp or Facebook). This end user's identity information is stored within Dupin's services for as long as Dupin's customer wishes it to be stored in his/her Dupin account.
It is the responsibility of our clients to manage the data stored in their Dupin account in compliance with the regulations in force in the country in which they operate.
C. Personal data collection methods
Such personal data are collected during, or as part of:
- An account creation (both for the demo and for subscription usage)
- A collaboration with Dupin
- The Website visit
- A visit to Dupin's offices
- The use of Dupin's services either through the Platform and/or the App, and/or by means of a mobile device, or without the aid of such tools
- Newsletter and/or blog subscription (through the Website or not)
- A webinar, seminar and/or event registration
- An identity verification process (e.g. when seeking customer service)
- Correspondence with and from Dupin
- Sharing with Dupin ideas on how to improve the services, the Platform and/or the App
- Quote request and its related negotiation
- Business cards exchange
- A link created between the Platform and the social network platforms
D. Use of personal data
Dupin may use your personal data for the following purposes:
- Creation of an account (demo) and its confirmation
- Execution of an agreement with Dupin (including a follow-up)
- Provision of Dupin's services either through the Platform and/or the App, and/or by means of a mobile device or even without the aid of such tools
- Provision of support/assistance (e.g. in case of problems)
- Sending of targeted marketing and advertising actions, updates and promotional offers based on your preferred means of communication and, where applicable, with your prior express consent
- Sending of invoices and payment collection requests
- Sending of newsletters and/or blogs
- ending of a registration confirmation for a webinar, seminar, event
- Optimization of the quality, management and content of the Website, the Platform and/or the App
- Creation of statistics
- Drafting of a quote
- Conducting customer satisfaction studies, surveys and other market researches
- Registration of visitors visiting Dupin's offices
- Dupin office security
The processing takes place, depending on the case, for the following legal reasons:
- The client has given consent to the processing of their personal data for one or more specific purposes
- The processing is necessary for the execution of the contract with Dupin or to take measures at your request before entering into a contract
- The processing is necessary for the fullfilment of a legal obligation which Dupin is subject t
- The processing is necessary to protect your vital interests or those of another natural person
- The processing is necessary to carry out a task of public interest
- The processing is necessary for the purposes of the legitimate interest pursued by Dupin, except when such interest prevails over the interest or fundamental rights and freedoms of the subject, which require the protection of personal data (in particular when you are a minor).
E. Disclosure of personal data to third parties
Dupin will not disclose any personal client data to third parties, unless necessary for the provision of Dupin's services and their optimisation (such as, by way of example but not limited to, maintenance work, payment processing, the provision of services to Dupin (for example, subcontracts) and database management). In this regard, personal data may be disclosed to payment gateway providers, software providers, cloud partners, datacenters, external IT consultants, service providers.
Notwithstanding the above, it is also possible for Dupin to disclose your personal data:
To the competent authorities (i) when Dupin is required to do so by law or as part of an ongoing or future legal proceeding and (ii) to safeguard and protect our rights; If in any case Dupin, or most of its assets, are taken over by a third party, your personal data collected by Dupin will be one of the transferred assets. In order to detect profiles similar to yours, unless you expressly oppose to it.
In any other case, Dupin will not sell, lease, or transfer your personal data to third parties, unless (i) it has obtained your consent for this purpose and (ii) a data processing agreement has been finalised with the third party concerned, which must include the necessary guarantees relating to the confidentiality and privacy compliance of your personal data.
F. Storage of personal data
Notwithstanding the cases where a longer retention period is required or justified (i) by law or (ii) by virtue of the fulfilment of another legislative obligation, Dupin will store your personal data only for the period necessary to comply and to fulfil the purposes described in this Privacy Statement under the paragraph 'use of personal data'.
G. Cookies
When you use the Service, we may send one or more "cookies", a small data file, to your computer to uniquely identify your browser and allow Dupin to help you log in faster and improve your navigation through the site. A cookie can transmit anonymous information to us about how you navigate the Services. A persistent cookie remains on your hard drive after you close your browser so that your browser can use it on subsequent visits to the Services. Persistent cookies can be removed by following your web browser's instructions. A session cookie is temporary and disappears after you close your browser. You can set your browser to refuse all cookies or to indicate when a cookie is being sent. However, some features of the Services may not function properly if the ability to accept cookies is disabled.
H. Right to privacy
In light of the processing of your personal data, you benefit from the following privacy rights
- Right to access the personal data that Dupin may have about you;
- Right to rectify, complete or update your personal data;
- Right to delete your personal data (‘right to be forgotten') (Dupin wishes to point out that in this case some services will no longer be accessible and/or will no longer be provided in the event of cancellation or request for cancellation of some personal data);
- Right to a restriction of the processing of your personal data;
- Right to the transferal of your personal data;
- Right to object/oppose to your personal data processing.
You can exercise these rights free of charge using the aforementioned form. Moreover, through your account, you can update, delete, modify and/or verify - at any time - which personal data you communicated when you created your account (demo).
If you no longer wish to receive newsletters or information about our services, you can unsubscribe at any time by clicking on the "unsubscribe" button at the bottom of each e-mail by Dupin.
I. Personal data protection
Dupin undertakes to adopt any reasonable physical, technological and organizational precautionary measure to prevent (i) unauthorized access to your personal data, as well as (ii) the loss, misuse, or modification of your personal data.
Dupin will store all personal data collected in the cloud (by means of datacenters located throughout the US territory).
Despite Dupin's security policy and the actions and verifications it carries out in this field, an infallible level of security cannot be guaranteed. Since no method of transfer or transmission via the Internet nor electronic storage is 100% secure, Dupin cannot guarantee absolute data protection.
Finally, the security of your (demo) account will also depend on the confidentiality of your password for accessing the Platform and/or the App. Dupin will never ask you for any private password, which is why you will not be required to share it with us. However, in the event that you have communicated your password to a third party, for example because that party has expressed its willingness to offer you additional services, said third party will be able to access your account (demo) and your personal data, through your password. In this case, you will be responsible for the actions that will be carried out following the use of your account (demo). In case you encounter unauthorized access to your account (demo), Dupin strongly recommends that you change your password immediately, and get in touch with us.
J. Data breaches
Our team closely monitors any unauthorized access to the system, and has put in place multiple preventative measures to reduce the chances of attack on our systems and services. To date, Dupin has not reported any major security issues and related data breaches.
Dupin will notify its users of any data breach - at the latest - 24 hours after becoming aware of it, and correcting the security flaw. It will then be our users' responsibility to report this data breach to their end users in due course.
To learn more about how Dupin manages security, you can consult this link: https://dupin.app/security/
K. Provider for Messaging Services
The possible providers of messaging services that can be integrated with Dupin are:
WhatsApp: Provided by WhatsApp, Inc., 1601 Willow Road, Menlo Park, California 94025, USA. You can review their privacy policy at the following link: https://www.whatsapp.com/legal/business-policy
Facebook Messenger: Offered by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. For more information about their privacy policy, visit: https://www.facebook.com/about/privacy
Instagram: Owned by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. To access their privacy policy, visit: https://www.facebook.com/help/instagram/155833707900388
Gupshup: Operated by 415 Jackson Street, Suite B, San Francisco, CA 9411, USA. You can review their privacy policy here: https://www.gupshup.io/developer/privacy
Twilio: Provided by Twilio Inc., 375 Beale Street, Suite 300, San Francisco, CA 94105, USA. Check out their privacy policy at: https://www.twilio.com/legal/privacy
These providers are integrated to enhance the communication experience on our platform. We recommend reviewing the privacy policies of each provider before using their services through our platform.
L. Data protection provisions on the application and use of Google Analytics and Google Tag Manager
Google Analytics
Dupin uses Google Analytics. Google Analytics is a web analysis service. Web analysis is the collection, detection and analysis of data regarding the behavior of visitors when browsing websites. A web analysis service collects, among other things, data about the website from which a person comes (the so-called referrer), which sub-pages were visited, or how often and for how long a sub-page was viewed. Web analytics is mainly used for the optimization of a website and to carry out a cost-benefit analysis of Internet advertising.
The operator of the Google Analytics component is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1501, USA
Further information, and the applicable data protection provisions of Google Analytics, can be found in this section https://www.google.com/intl/en/policies/privacy
Google Tag ManagerDupin uses Google Tag Manager. Google Tag Manager is a solution that allows you to manage site tags through an interface. The Tag Manager tool itself (which implements the tags) is a cookie-free domain and does not log any personal data. The tool manages the activation of other tags which, under certain circumstances, can log data. Google Tag Manager does not access this information.
Further information and the applicable data protection provisions of Google Tag Manager can be found in this section https://support.google.com/tagmanager/answer/9323295?hl=en
M. Data protection provisions on the application and use of Google AdWordsDupin uses Google AdWords.
The operator of the Google AdWords component is : Google Inc, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
Within Google AdWords, we use the so-called "conversion tracking". When you click on a Google sponsored ad, a conversion tracking cookie is set up. These cookies expire after 30 days and are not used for a personal identification of the user. If the user visits certain pages of the website and the cookie has not yet expired, Google and the website will know that the user clicked on the ad and went to that page. The information obtained through the conversion cookie is used to create conversion statistics for AdWords advertisers who have opted for conversion tracking. AdWords customers are informed about the total number of users who clicked on their ad and who were redirected to a page in the conversion tracking tag. However, advertisers do not obtain any information that can be used to personally identify those users.
For more information on Google AdWords and Google Conversion Tracking, please read Google's Privacy Policy: https://policies.google.com/privacy
N. Data protection provisions on the application and use of Facebook and Facebook's "Custom Audiences" Retargeting services.
Dupin may use the services of "Custom Audience" by Facebook Inc.
The operator of the Facebook Inc. component is: Facebook Inc. 1601 Willow Road, Menlo Park, CA 94025, USA, or, if you are based in the EU, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2 , Ireland.
Dupin may use the "Custom Audiences" service by Facebook Inc. through a pixel (JavaScript code embedded in all our web pages), to provide personalized ads to our website's visitors. Facebook's "Custom Audiences" service allows us to track user behavior on our website after they have been redirected to our website by clicking on a Facebook ad. This allows us to measure the effectiveness of Facebook ads for statistical and market research purposes. The data collected in this way is anonymous for Dupin.
For more information on Facebook Inc., consult their privacy policy: https://www.facebook.com/about/privacy/
O. Links to other websites
The Website may include hyperlinks to other websites. By clicking on one of these links, the user could be redirected to another website or another Internet source that could collect information about the user through cookies or other technologies. Dupin assumes no responsibility or supervisory authority on these other websites or Internet resources, nor on their collection, use and disclosure of the user's personal data. You should check the Privacy Statements of these other websites and internet sources to be able to judge whether they are in accordance with the privacy legislation in force.
P. Changes to this Privacy Policy
Dupin has the right to update this Privacy Statement by publishing a new version on the Website. For this reason it is strongly recommended that you regularly consult the Website and the related page on which it was published to ensure that you are aware of any changes.
If you are not satisfied with the way in which Dupin has handled your questions and/or your observations, or if you wish to file a complaint about the way in which Dupin collects, uses and/or processes your personal data, you can contact the competent Privacy Commission. in its country.
This Privacy Policy was updated on 09/15/2023.