Escaply Privacy Policy
Our contact details
Escaply
The type of personal data we collect
We currently collect and process the following information:
- Personal identifiers, contacts and characteristics (for example, name, e-mail, contact details, Facebook ID, Google ID)
For administrative users only - IP-address (For a maximum of three months)
For both administrative and student users - Content created in the platform (Games, Rooms, Assets)
For administrative users only - Type of device
For both administrative and student users - Type of browser
For both administrative and student users - Avatar-photo
For administrative users only
Please note that we minimise any personal data collection and processing by design and default (Privacy by design) and that students using our platform do so without any personal data being collected or processed.
How we collect the personal data and why we process it
Most of the personal information we process is provided to us directly by you for one of the following reasons:
To allow you access and use of the platform.
We also receive personal information indirectly, from the following sources in the following scenarios:
From your Facebook or Google account when accessing the platform through Single-Sign-On.
We use the information that you have given us in order to allow you to access and use the platform and for us to support you in doing so.
We will not share or monetize the information with/for any third party.
Under the General Data Protection Regulation (GDPR), the lawful bases we rely on for processing this information are:
(a) Your consent. You are able to remove your consent at any time. You can do this by contacting [email protected]
(b) We have a contractual obligation.
(c) We have a legal obligation.
(d) We have a vital interest.
(e) We need it to perform a public task.
(f) We have a legitimate interest.
How we store your personal information
Your information is securely stored.
We keep the data collected until a user wishes to be deleted and we will then dispose of your information per the request, at the latest within 10 business days of the request.
Your data protection rights
Under data protection law, you have rights including:
Your right of access – You have the right to ask us for copies of your personal information.
Your right to rectification – You have the right to ask us to rectify personal information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete.
Your right to erasure – You have the right to ask us to erase your personal information in certain circumstances.
Your right to restriction of processing – You have the right to ask us to restrict the processing of your personal information in certain circumstances.
Your right to object to processing – You have the right to object to the processing of your personal information in certain circumstances.
Your right to data portability – You have the right to ask that we transfer the personal information you gave us to another organisation, or to you, in certain circumstances.
You are not required to pay any charge for exercising your rights. If you make a request, we have one month to respond to you.
Please contact us at [email protected] if you wish to make a request about either of the rights above or to request that we erase your data.
Escaply sub-processors:
- Amazon Web Services: (https://aws.amazon.com/compliance/gdpr-center)
- Digital Ocean: (https://www.digitalocean.com/legal/gdpr)
- Stripe: (https://stripe.com/sv-us/guides/general-data-protection-regulation)
- Sweetopia AB: (https://sweetopia.se/en/)
How to complain
If you have any concerns about our use of your personal information, you can make a complaint to us at [email protected]
You can also complain to Integritetskyddsmyndigheten if you are unhappy with how we have used your data.
Please visit https://www.imy.se/ to learn more about complaints.