Data protection is a priority at Contentsquare. Thus, as data processor, we are committed to providing our Customers with a user experience analytics solution which complies with the provisions of the GDPR and in particular with the following principles:
- Purpose limitation:
As mentioned above, the sole purpose of our data processing is to analyze visitors' online behavior to improve their journey and the performance of the Customer's websites and mobile applications.
- Data minimization:
We only collect personal data that are strictly necessary for the provision of our services (IP address, cookie ID and online behavioral data). For more information, please click here.
- Limitation of the data retention:
All Contentsquare cookies are first-party cookies with an expiration date not exceeding 13 months, without automatic extension. No personal data (other than the random unique cookie ID) is included in the cookies. For more information, click here.
All data collected is stored for no longer than 13 months. For more information - visit here.
Promptly after using the IP address for GEO Location (city-level), blacklisting unwanted IP address, and troubleshooting immediate data collection malfunctions in the system (no to exceed 3 days), the IP address is permanently deleted. For more information - visit here.
- Data subjects’ rights:
Contentsquare has set up a tool to manage data subjects requests (“DSRs”) to assist our Customers in exercising their rights so that they can respond effectively to the data subjects in compliance with applicable legal timeframes. Click here for more information.
Further, all Contentsquare Customers (as data controllers) are encouraged and contractually bound to inform visitors of their websites/applications about the data processing carried out by them and by Contentsquare. As such, we have a documentation center called "Privacy Center" on our website which allows our Customers to quickly and easily have all the useful information on Contentsquare's data protection practices, in particular with respect to our privacy and cookies policies. You can also access a document detailing how we process data in the Contentsquare solution.
In addition, Contentsquare offers its customers the option of allowing any visitor to their website to object to the processing of data by Contentsquare (click here for more information).
- Security measures:
Contentsquare has put in place appropriate physical, technical and organizational measures to ensure a level of security adapted to the risk presented by the data processing carried out through the Contentsquare solution. For more information, please click here.
Finally, Contentsquare is ISO 27701 certified (both data controller and processor) which is an international standard for data protection aligned with the main international data protection regulations, including the GDPR and CCPA.