Cakemail uses tracking technology (“cookies” and related technology such as tags, pixels and web beacons) on the Website and Services and in emails. Cookies are small text files placed on your computer or device when you visit a website, in order to track use of the site and to improve the user experience by storing certain data on your computer. By visiting or using the Website or Services you agree to their use, but only if you explicitly consent to such use, according to the cookie banner presented to you when you visit the Website.
Please note that deleting or refusing cookies may reduce your user experience on the Website or Services. Furthermore, deleting cookies may prevent certain functions from working at all.
We have implemented strict technical and organisational procedures for ensuring that, by default, only personal data which are necessary for each specific purpose of the processing are processed by us. These procedures prevent your personal data from being lost; or used or accessed in any unauthorised way.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable supervisory authority of a suspected data security breach where the Data Protection Laws requires us to do so, and within the time frame required by the applicable Data Protection Law.
Cakemail uses only industry best practices (physical, electronic and procedural) in keeping any data collected (including personal data) secure. In addition, we use third-party vendors and hosting partners to provide the necessary hardware, software, networking, storage, and related technology required to operate the Website, and these third parties have been selected for their high standards of security, both electronic and physical. For example, Cakemail uses vendors such as Amazon Web Services (AWS), a recognized leader in secure data and other vendors who have very strict security protocols, for hosting of the Website, Services and related data, and collection and storage of data including personal data.
Finally, all information, including personal data, is transferred with encryption using Secure Sockets Layer (“SSL”) or Transport Layer Security (“TLS”), robust security standards for Internet data transfer and transactions. You can use your browser to check Cakemail’s valid SSL security certificates on the Website and in the Services.
In addition to the measures to protect your personal data described in the previous section, we have drafted and implemented certain internal procedures and policies regarding personal data, including the following:
For our European users, we endeavour to keep your personal data inside the EEA or the U.K. (as applicable).
Certain of our data processors (and Cakemail) are in other countries where your personal data may be transferred. However, these countries are limited to countries with particular circumstances that protect your data, specifically:
That’s it! You have the right, however, to refuse to have your data transferred outside the EEA or the U.K. Please contact our Privacy and Data Protection Officer to make that request. Please note that making this request may prevent you from being able to use certain portions of the Website or Services.
For our Quebec Users and visitors, we endeavour to keep your personal data in Quebec. However, certain of our third-party service providers are in other provinces or countries where your personal data may be transferred. When this happens, we do the following to safeguard your personal data:
If you are in the EEA or the U.K., under the GDPR you have the right to make a complaint to the appropriate supervisory authority. If you are not satisfied with the response received or the actions taken by our Privacy and Data Protection Officer, or if you would like to make a complaint directly about Cakemail’s data practices, we invite you to contact the supervisory authority in your country.
If you are in the U.K., you should contact the Information Commissioner’s Office (ICO) who is the supervisory authority. The information to contact the ICO is available on their website, including contact by phone (0303 123 1113 in the UK) and mail (Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF). If you are in France, you should contact the Commission Nationale de l'Informatique et des Libertés (CNIL) which is the supervisory authority there. Their contact information for the CNIL is available on their website.
The full listing of all Data Protection Authorities (the supervisory authorities) across the EEA is available at the website for the Data Protection Authorities contact information.
If you are in Canada and you are not satisfied with the response received or the actions taken by our Privacy and Data Protection Officer, you can make a complaint to the Office of the Privacy Commissioner of Canada. Instructions to file a formal privacy complaint to the Office of the Privacy Commissioner are available online. If you are in Québec, you can make a complaint to the Commission d’accès à l’information, with the instructions for contacting them on the "nous joindre" section of their website.
In California you can make a complaint to the California Privacy Protection Agency, using the complaint form on their website.
Your personal data will only be kept for as long as it is necessary for the purpose needed for that processing. For example, we will retain your Client information for as long as you need to have an account with us to use the Services; if you cease to be a Client, we will delete your Client information.
We may have to keep your data for a longer period of time to satisfy our requirements under any applicable law including anti-spam laws, or to protect our legal interests, notably to curb abuse and prevent clients who have been terminated for violating Cakemail policies from signing up for the Services again .
In some cases, where permitted by the Data Protection Laws, we may keep personal data that has been anonymized, for our legitimate business purposes.
Cakemail does not use any automated decision-making processes with regard to your personal data in providing the Website or Services. To a very limited extent, Cakemail tailors your experience using the Services based on certain analytics and behavioural programs, but these are not related to your personal data.
The Services are only intended for persons who are 18 years old for a resident of a Canadian province or 21 years old for a resident of a state in the U.S., or the age of majority in any other country.
The Data Protection Laws have various age limits as to the minimum age required for us to hold personal data about an individual. We do not knowingly collect any personal data from a child under those minimum ages. If we become aware that we have inadvertently received personal data from a person under the minimum ages through the Website or Services, we will delete such information from our records.
The date at the top of this page indicates when this Policy was last updated. Every now and then, we will have to update this Policy, and we will update it no less than once every 12 months. You can always find the most updated version at this URL, and we will always post a prominent notice on the Website if we make significant changes, and use reasonable efforts to contact you if we have your contact information, for example if you are a Client or User.
Thanks for reading! Please keep your personal data safe; we are committed to do the same.