Relaybox Privacy Policy

Effective Date: 29th July 2024

Introduction

Welcome to the Relaybox Ltd privacy policy. As an innovative software company specializing in providing infrastructure and the related software packages, such as NPM modules, for a real-time platform service, we prioritize your privacy and the security of your personal information. This document details our policies regarding the collection, use, disclosure, and protection of your information when you use our services.

Contact Information

If you have any questions about this policy or our privacy practices, please contact us:

  • Email: admin@relaybox.net
  • Physical Address: Relaybox Ltd, 4D Madeley Road, London, W5 2LH

Information We Collect

Personal Information

At Relaybox Ltd, we recognize the importance of protecting your personal information. This section outlines the types of personal data we collect, which are necessary for providing you with a secure and efficient service. Please note that while we collect some information directly, sensitive data such as passwords are managed by third-party authentication providers to enhance security.

  • Account Details: We collect usernames and use third-party services to handle encrypted passwords necessary for authentication and account management.
  • Communication Data: Includes emails and other communications sent to us, which may contain your email address and the content of your communications. This information is used for addressing service issues or feedback.

Non-Personal Information

In addition to personal information, Relaybox Ltd also collects non-personal data to help us understand how our services are used and to improve their functionality. This section describes the types of non-personal information we gather and how they contribute to the optimization and maintenance of our platform.

  • Session Data: Records of your activity on our platform, including the date, time, and duration of your connections, essential for maintaining service integrity and session management.
  • Metadata: Includes technical data related to messages and connections made via the WebSocket protocol, such as timestamps and network protocol details, used for diagnostics and system optimization.

How We Collect Information

Relaybox Ltd employs various methods to collect information to ensure the effective delivery and enhancement of our services. This section outlines the different ways we gather data, both directly from you and indirectly through technology and third-party sources.

  • Direct Collection: We gather information you provide directly when you set up an account, use our services, or communicate with us.
  • Indirect Collection: We Utilize technologies such as cookies and web beacons to monitor your engagement with our platform, enhancing user experience and service functionality.

Use of Information

The information we collect serves to:

  • Operate our Services: Facilitate the creation and security of your account, provide customer support, and ensure overall operational stability.
  • Enhance Service Experience: Analyze usage trends and preferences to improve interface design and feature offerings.
  • Marketing Efforts: Communicate updates, offers, and promotional content tailored to your interests, subject to your consent where required by law.

Sharing of Information

At Relaybox Ltd, we are committed to safeguarding your information. There are instances where sharing your data with third parties is necessary to provide and improve our services. This section details the circumstances under which your information may be shared and the measures taken to ensure its protection.

  • Service Providers: We engage third parties, including Amazon Web Services (AWS), to perform tasks on our behalf such as hosting services, infrastructure management, and database management. These providers have limited access to your information and are contractually bound to protect and use it only for the purposes for which it was disclosed. AWS, as a leading cloud service provider, adheres to stringent security standards and compliance requirements, ensuring that your data is stored and managed securely.
  • Payment Processing: We use third-party service providers to handle payment transactions. These providers are responsible for the collection, use, and processing of your payment information, including credit card details and billing addresses. They are contractually obligated to protect your information and are compliant with industry standards such as PCI-DSS (Payment Card Industry Data Security Standard). Relaybox Ltd does not store or process your payment information directly.
  • Compliance and Safety: We may share your information when legally required and when needed to protect our rights, users' safety, or the integrity of our platform.

Data Security

We implement a variety of security measures to maintain the safety of your personal information:

  • Encryption Technologies: Advanced encryption techniques are applied to your data during transmission and while stored on our servers.
  • Access Controls: Access to your personal information is strictly limited to personnel who need it to perform their job functions.

User Rights

You have various rights regarding the management of your personal data, including:

  • Access and Rectification: You can review, update, or correct your data.
  • Deletion: You may request the deletion of your personal information, except where retention is legally required or permissible.
  • Objections and Restrictions: You have the right to object to processing and to request restrictions on the use of your personal information.

Children's Privacy

Relaybox Ltd does not directly collect or solicit personal information from children under the age of 13. Our services are intended for use by businesses and are not designed to attract children. However, we acknowledge that our client applications, which utilize our platform, may interact with end-users under the age of 13. It is the responsibility of our clients to ensure that their collection and use of personal information comply with all applicable laws, including the Children's Online Privacy Protection Act (COPPA) and other relevant children's privacy laws. Clients are expected to implement their own appropriate policies and obtain verifiable parental consent when collecting personal data from children under the age of 13. Relaybox Ltd disclaims any responsibility for our clients' collection, use, or disclosure of children's data through our services. Clients should review their data collection practices and privacy policies to ensure compliance with legal obligations regarding children's privacy.

International Considerations

Relaybox Ltd is committed to protecting the privacy of all our users, including those in the European Union (EU) and the United Kingdom (UK). We comply with the General Data Protection Regulation (GDPR) and other relevant privacy laws.

International Considerations

Relaybox Ltd is committed to protecting the privacy of all our users, including those in the European Union (EU) and the United Kingdom (UK). We comply with the General Data Protection Regulation (GDPR) and other relevant privacy laws.

GDPR Compliance

  • Lawful Basis for Processing: We process personal data based on one or more lawful bases provided under GDPR, such as the necessity of processing for the performance of a contract, compliance with a legal obligation, or our legitimate interests.

  • User Rights: Under GDPR, users have the following rights regarding their personal data:

    • Right to Access: You can request a copy of the personal data we hold about you.
    • Right to Rectification: You can request correction of any inaccurate or incomplete personal data.
    • Right to Erasure: You can request deletion of your personal data under certain circumstances.
    • Right to Restrict Processing: You can request that we limit the processing of your personal data under certain conditions.
    • Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format and have the right to transmit those data to another controller.
    • Right to Object: You can object to the processing of your personal data based on our legitimate interests or for direct marketing purposes.
    • Right to Withdraw Consent: Where processing is based on your consent, you have the right to withdraw that consent at any time.
  • Data Transfers: We may transfer your personal data to countries outside the EU or UK. When we do so, we ensure appropriate safeguards are in place to protect your data in accordance with GDPR requirements.

  • Data Protection Officer (DPO): We are currently in the process of appointing an external Data Protection Officer to oversee our GDPR compliance. In the interim, please contact Simon Harper at admin@relaybox.net for any queries or concerns related to your personal data.

  • Filing a Complaint: If you believe that we have not complied with GDPR, you have the right to file a complaint with the supervisory authority in your country.

We continuously review and update our privacy practices to ensure compliance with GDPR and other applicable data protection laws. If you have any questions about our GDPR compliance, please contact us at admin@relaybox.net.

Changes to This Privacy Policy

We may update this policy to reflect changes to our information practices. If we make any material changes, we will notify you by email or through a notice on our website prior to the change becoming effective.

Consent

By using our services, you acknowledge that you have read and understand this Privacy Policy and agree to its terms.