Privacy Notice for Moveo Boost Applications
About this Privacy Notice
This Privacy Notice is meant to give you information about what personal data we collect
about you, how we use it, why we use it, and how you control the data processing. In
general, we recommend that you routinely review this privacy notice and your preferences
on our app.
1.1.
1.2. Table of Contents
2. The Basics: Who We Are, Our Role, and Definitions
3. Personal Data We Collect, How We Use it, and Why
4. Sharing the Personal Data We Collect
5. International Transfers
6. Security
7. Your Rights - How to Control Our Use of Your Personal Data
8. Data Retention
9. Third-Party Services
10. Children
11. Changes to the Privacy Notice
1. The Basics
1.1. Who We Are
1.1.1. Boost Moveo Ltd. offers a variety of mobile applications through various
online marketplaces. This Privacy Notice describes the personal data we
collect from you when you use our Gmail for monday.com app that
integrates monday.com with Gmail. Our offices are located at 31 Lilenblum
St., Tel Aviv, Israel, and our registration number is 516422946.
1.1.2. If you have questions about our company or your privacy, or want to
exercise your rights, you can contact us at contact@moveoboost.com.
1.2. Our Role: Controller and Processor. Certain data protection laws, including the
laws in the EU, differentiate between a party that determines why and how
personal data is processed (called a "controller") and a party that processes
personal data solely on the controller's behalf and according to the controller's
instructions (called a "processor"). We are the controller in respect of the
processing described in this Privacy Notice.
1.1. Definitions and Recommendations
1.1.1. When we refer to "services", we mean the services provided through our
Gmail for monday.com app, including the ability to create new items or
modify existing items on monday.com using email content from your Gmail account.
1.1.2. When we refer to "personal data", we mean information that is defined as
personal data under law. This includes information that identifies you
directly or indirectly, including unique identifiers like IP addresses or cookie IDs.
1.1.3. When we refer to "you", we mean any user of our app.
1.2. A Note on Legal Bases. Certain jurisdictions only allow the processing of personal
data where a legal basis has been established. Under the EU's General Data
Protection Regulation ("GDPR"), the possible legal bases include (but are not
limited): your consent, the processing is necessary to perform a contract with
you, the processing is necessary to fulfill our legal obligations, or a company has a
legitimate business interest to process your personal data. Where we are a
controller, we only collect and process data where we have established a legal
basis. Below you can find more details about specific legal bases.
Back to top
2. Personal Data We Collect, How We Use It, and Why. Below is a description of the types
of personal data we collect, how we use it, and the reason why we consider each use
lawful. You have no legal obligation to provide us with personal data, but if you don't
provide us with certain information, we may not be able to provide you with the
associated services.
2.1. Gmail Information– When you use our app, we collect certain personal data from
your Gmail account, including your email address, the content of the email you wish
to integrate with monday.com, the recipients of the email, and the email subject.
How We Use this Data: We process this personal data to provide you with the
services, specifically to authenticate your Gmail and monday.com accounts and to
use the content of your emails for items on monday.com. Any information received
from Google APIs and transferred to monday.com will adhere to Google's API
Services User Data Policy, including the Limited Use requirements.
Legal Basis: We process this personal data based on the performance of a contract with you.
2.2. monday.com Information– When you use our app, we collect certain personal data
from your monday.com account, such as your account and profile information,
including your boards, columns, labels, people, and items.
How We Use this Data: We process this personal data to provide you with the
services, specifically to authenticate your Gmail and monday.com accounts and to
create or modify items in your monday.com with the content of your email.
Legal Basis: We process this personal data based on the performance of a contract with you.
3. Sharing the Personal Data We Collect. We share your personal data as follows:
3.1. Affiliates. We share your personal data, with our affiliated companies, including
but not limited to Moveo Software Ltd., where this is necessary to provide you
with our products and services and so that we can manage our business, such as
to keep updated records of our users.
3.2. Service Providers. We use service providers that offer cloud computing services.
They offer us space on their servers for us to store our files and programs,
including your personal data. All personal data that we collect from you is stored
on third party servers. All service providers have agreed to confidentiality
restrictions and have undertaken to use your personal data solely as we direct.
3.3. Data Controllers. We also share your personal data with monday.com, located at
6 Yitzchak Sadeh, Tel Aviv, Israel, which acts as a joint controller of your personal
data. For further details regarding our arrangement with such controllers, please
contact us at contact@moveoboost.com. For more information about how
monday.com processes your data, please contact them at privacy@monday.com.
3.4. Change of Ownership. If we are looking to sell our company, liquidate assets, or
merge with another, we may share your personal data with other interested
parties as part of negotiations toward that transaction. In such case, or where we
do sell our company, your personal data shall continue to be subject to the
provisions of this Privacy Notice.
3.5. Law Enforcement Related Disclosure. We may share your personal data with
government agencies or other relevant parties, such as a law office or
independent auditor: (i) if we believe that such disclosure is appropriate to
protect our rights, property or safety (including the enforcement of this Privacy
Notice) or those of a third party; (ii) if required by law or court order; or (iii) as is
necessary to comply with any legal and/or regulatory obligations, such as audit
requirements.
Back to top
4. International Transfers. Some of our service providers and affiliates are located in
countries other than your own. When we transfer your personal data internationally, we
will do so safely and securely and in accordance with applicable law.
4.1. If you are located in the EU, when we share your personal data with third parties
based outside of the European Economic Area ("EEA"), we will ensure that they
sign on agreements that require them to comply with applicable law, keep your
data secure at similar levels to the level described in this Privacy Notice, and
make sure that your data protection rights are protected. We will also implement
the following safeguards:
4.1.1. When we transfer your personal data to Israel or the UK, we rely on the
decision by the European Commission that says that those countries are
considered to provide an adequate level of data protection.
4.1.2. Where we transfer your personal data to other countries, we (i) take
additional security measures to protect the data and (ii) use specific
contracts approved by the European Commission, known as the Standard
Contractual Clauses, to give your personal data the same protection it has
in the EEA.
4.1.3. Please contact us at contact@moveoboost.com if you would like further
information on the specific mechanism used by us when transferring your
Personal Data out of the EEA.
5. Security. The security of your personal data is our highest priority. We work hard to
make sure that your personal data will be held securely and that it will not be shared or
lost accidentally. However, it is impossible to guarantee absolute security. The security
of your data also depends on the security of the devices you use and the way in which
you protect your user IDs and passwords. The measures we take include:
5.1. Technical Measures. The electronic safeguards we employ to protect your
personal data include secure servers, firewalls, and antivirus protections. We
encrypt data in transit and at rest using secure Cryptographic and TLS protocols.
5.2. Access Control. We limit access to your personal data only to authorized
personnel who have a need to know, such as software developers. We review
these permissions regularly and revoke an employee's access immediately after
his/her termination.
5.3. Internal Policies. We maintain and regularly review and update our privacy
related and information security policies.
5.4. Personnel. We require employees to sign non-disclosure agreements according to
applicable law and industry customary practice.
5.5. Standards and Certifications. We have been certified as compliant with ISO 27001
(Information Security Management).
5.6. Database Backup. Our databases are backed up and verified regularly. Backups
are encrypted and stored within the production environment to preserve their
confidentiality and integrity.
Back to top
6. Your Rights - How to Control Our Use of Your Personal Data. Depending on which laws
apply, you have certain legal rights over your data. Below is some general information
about rights that may apply to you but we recommend checking the law or consulting
with a lawyer to understand what applies in your specific case. To exercise your rights,
please contact us at contact@moveoboost.com. If you want to exercise your rights
regarding your personal data held by other controllers you can contact the applicable
controller directly. We may ask for reasonable evidence to verify your identity before we
can comply with any request.
6.1. Right of Access. You may have a right to know what personal data we collect
about you. We may charge you with a fee to provide you with this information, if
permitted by law. If we are unable to provide you with all the information you
request, we will do our best to explain why. See Article 15 of the GDPR for more
details, if your personal data is subject to GDPR.
6.2. Right to Correct Personal Data. You may request that we update, complete,
correct or delete inaccurate, incomplete, or outdated Personal Data. See Article
16 of the GDPR for more details, if your personal data is subject to GDPR.
6.3. Deletion of Personal Data ("Right to Be Forgotten"). If you are located in the EU,
you may have the right to request that we delete your personal data. Note that
we cannot restore information once it has been deleted. Even after you ask us to
delete your personal data, we may be allowed to keep certain data for specific
purposes under applicable law. See Article 17 of the GDPR for more details, if
your personal data is subject to GDPR.
6.4. Right to Restrict Processing. If you are located in the EU, you may have the right
to ask us to stop processing your personal data. See Article 18 of the GDPR for
more details, if your personal data is subject to GDPR.
6.5. Right to Data Portability. If you are located in the EU, you may have the right to
request that we provide you with a copy of the personal data you provided to us
in a structured, commonly-used, and machine-readable format. See Article 20 of
the GDPR for more details, if your personal data is subject to GDPR.
Back to top
6.6. Right to Object. If you are located in the EU, you may have the right object to
certain processing activities. See Article 21 of the GDPR for more details, if your
personal data is subject to GDPR.
6.7. Withdrawal of Consent. If we are processing your data based on your consent,
you are always free to withdraw your consent, however, this won't affect
processing we have done from before you withdrew your consent.
6.8. Right to Lodge a Complaint with Your Local Data Protection Authority. If you are
located in the EU, you have the right to submit a complaint to the relevant data
protection authority if you have any concerns about how we are processing your
personal data, though we ask that as a courtesy you please attempt to resolve
any issues with us first.
7. Data Retention. We are storing the user's id and user's account id, which are
needed for core functionality.
Whenever a user performs an action, we need to check his id to make sure the request
is valid.
We retain the user's data for as long as the app is installed in his account. Once the user
uninstalls the app, we delete all the data related to him.
7.1. We retain your personal data as long as necessary to fulfill each of the purposes
we described above. Once we're done with your data, we delete it .
7.2. When deciding how long to store personal data, we consider the amount, nature,
and sensitivity of the personal data, the potential risk of harm from unauthorized
access, the purposes for which the personal data was collected, as well as
applicable legal requirements. Please note that we may delete information from
our systems without notifying you first. Retention by any of our service providers
or subcontractors may vary in accordance with each business's retention policy.
7.3. Please contact us at contact@moveoboost.com if you would like details about
the retention periods for each type of personal data we process.
Back to top
8. Third-Party Services. You may have access to third-party services through our services.
Please note that all use of third-party services is at your own risk and subject to such
third party's terms and privacy policies. We do not take any responsibility for the
performance of other services.
9. Children. We do not knowingly collect personal data from children under the age of
sixteen (16). In the event that you become aware that an individual under the age of
sixteen (16) is using the app without parental permission, please advise us immediately.
10. Changes to the Privacy Notice. We may update this Privacy Notice from time to time to
keep it up to date with legal requirements and the way we operate our business. We will
place any updates on this webpage. Please come back to this page every now and then
to make sure you are familiar with the latest version.
Last updated: June 2023
