29 December 2024
Roadloom, a brand under Specialo Private Limited, and our affiliates ("us," "we," or "our") respect your privacy and are committed to protecting it in accordance with this policy.
This policy outlines the types of information we may collect from you, or that you may provide, when you visit our website at https://www.roadloom.com (the "Website") or use our services, including any web applications (the "Application," together with the Website, the "Services"). It also details our practices for collecting, using, maintaining, protecting, and disclosing that information. We will only use your personal information as described in this policy unless otherwise required by applicable law. We take appropriate measures to ensure that the personal information we collect is adequate, relevant, not excessive, and used for specific, limited purposes.
Please read this policy carefully to understand our practices regarding the collection, processing, and storage of your information. If you do not agree with our policies and practices, your choice is not to use our Services. By accessing or using our Services, you confirm that you understand, accept, and consent to the practices described in this policy. This policy may be updated from time to time, and your continued use of the Services after changes are made indicates your acceptance and consent to those changes. Therefore, we encourage you to review this policy periodically for updates.
Unless otherwise defined in this policy, the terms used have the same meanings as in our Terms and Conditions, accessible at https://www.roadloom.com.
We collect and use several different types of information for various purposes to provide and improve our Services, including.
Personal Data: When using Roadloom Services, we may ask you to provide certain personally identifiable information, including but not limited to, your email address, first and last name, telephone number, username or similar identifier, billing and account information, cookies, Usage Data, and any other identifiers we may use to contact you ("Personal Data").
We may use your Personal Data to send you newsletters, marketing or promotional materials, and other information that may be of interest to you. You can opt out of receiving any or all of these communications by following the unsubscribe link or instructions provided in any email we send, or by contacting us directly.
Non-personal Data: This refers to information that does not directly or indirectly reveal your identity or relate to an identifiable individual, such as demographic information or statistical and aggregated data. Statistical or aggregated data does not directly identify a specific person but may be derived from personal information. For example, we may aggregate personal data to calculate the percentage of users accessing specific services.
Usage Data: We may also collect information on how you access and use our Services ("Usage Data"). This may include information such as your computer's Internet Protocol (IP) address, browser type, browser version, pages you visit on our Service, the time and date of your visit, the time spent on those pages, unique device identifiers, and other diagnostic data.
Non-personal Details of Website Interactions: We may collect non-personal details about your interactions with our Website, including the full Uniform Resource Locators (URLs), clickstream to, through, and from our Website (including date and time), products you viewed or searched for, page response times, download errors, length of visits to specific pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to navigate away from the page, or any phone number used to contact our customer service.
Direct Interactions: You may provide us with information directly, such as when you fill in forms or correspond with us by phone, email, or other means.
Automated Technologies or Interactions: As you use our Services, we may automatically collect certain information, including usage details, IP addresses, and data collected through cookies and other tracking technologies.
The information we collect directly from you through our Services may include:
Information We Collect Through Cookies and Other Automatic Data Collection Technologies: As you navigate through our Website or interact with our Application, we may use cookies or other automatic data collection technologies to collect specific details about your device, browsing actions, and usage patterns. This may include:
We may also use these technologies to collect information about your online activities over time and across third-party websites or other online services (behavioral tracking). The information we collect automatically is typically statistical but may include personal data. This helps us improve our Services and offer a better and more personalized experience, such as by enabling us to:
The following technologies may be used to collect automatic data:
You can instruct your browser to refuse all cookies or to alert you when a cookie is being sent. However, if you decline cookies, some features of our Service may not be accessible.
We use the information we collect about you, including any Personal Data, for the following purposes:
We will retain your Personal Data for as long as is necessary for the purposes set out in this Privacy Policy. This includes retaining and using your Personal Data to comply with legal obligations, resolve disputes, and enforce our legal agreements and policies.
In some cases, we may anonymize your personal information so that it can no longer be linked to you. We reserve the right to use this anonymized and de-identified data for legitimate business purposes without further notice or consent.
Your information, including Personal Data, may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdictions where data protection laws may differ from those in your jurisdiction.
If you are located outside of the United States and choose to provide us with information, please note that we transfer your data, including Personal Data, to the United States for processing.
By consenting to this Privacy Policy and submitting your information, you agree to such transfer.
Roadloom will take all reasonable steps to ensure that your data is treated securely and in accordance with this policy. No transfer of your Personal Data will take place to an organization or country unless there are adequate controls in place, including the security of your Personal Data and other information.
When necessary, we utilize approved transfer mechanisms (such as adequacy decisions or Standard Contractual Clauses in the EU) to ensure the protection of your personal data. Please contact us for more information regarding our Data Protection Agreement, protocols, and policies for transferring information.
It is important that the information we hold about you is accurate and up-to-date. Please notify us if your Personal Data changes. By law, you have the right to request access to and correction of the personal information we hold about you.
You can access, update, or request the deletion of your Personal Data through your account settings. Please note that we cannot delete your Personal Data without deleting your user account. Requests to change information may not be accommodated if the changes violate any law or legal requirement, or if the information becomes incorrect. We may charge a fee for accessing your personal data, and will notify you of any fees in advance.
To request access to your Personal Data or have it removed from our systems, please contact us at hello@roadloom.com.
We may require additional information from you to confirm your identity and verify your right to access your personal information or make requested changes. Applicable law may allow or require us to deny access to some or all of your personal information, or we may have erased or anonymized it in accordance with our record retention practices. If we cannot provide you with access to your information, we will inform you of the reasons why, subject to legal or regulatory restrictions.
We may disclose Personal Data that we collect or you provide as described in this Privacy Policy:
Additionally, we may disclose your personal information:
The security of your Personal Data is very important to us. We implement physical, electronic, and administrative measures designed to protect your personal information from accidental loss, unauthorized access, use, alteration, and disclosure.
However, the safety of your information also depends on you. If we have provided you with a password (or you have chosen one) for accessing certain parts of our Services, you are responsible for keeping this password confidential. Please do not share your password with anyone.
Despite our efforts to protect your Personal Data, we cannot guarantee its absolute security. Transmission of information via the internet is not fully secure, and any personal information transmitted is done so at your own risk. We are not responsible for circumvention of any privacy settings or security measures in place on our Services.
We may employ third-party companies and individuals (Service Providers) to facilitate our Services, provide them on our behalf, perform services related to our Services, or help us analyze how our Services are used.
These third parties only have access to your Personal Data to perform these tasks and are obligated not to disclose or use it for any other purpose.
We may use third-party Service Providers to monitor and analyze the use of our Services. One such Service Provider is Google Analytics, which is a web analytics service offered by Google. Google uses the data collected to track and monitor how our Service is used. This data is shared with other Google services. Google may use the collected data to contextualize and personalize ads within its advertising network.
You can opt-out of having your activity on our Service shared with Google Analytics by installing the Google Analytics opt-out browser add-on, which prevents the Google Analytics JavaScript from sharing your information.
For more information on Google's privacy practices, please visit: Google Privacy & Terms.
Roadloom uses remarketing services to advertise on third-party websites to you after you have visited our Service. Along with our third-party vendors, we use cookies to inform, optimize, and serve ads based on your past visits to our Service.
Facebook: The Facebook remarketing service is provided by Facebook Inc. You can learn more about interest-based advertising from Facebook by visiting this page: Facebook Help - Interest-Based Ads. To opt-out of Facebook's interest-based ads, follow these instructions from Facebook: Facebook Ad Preferences.
Facebook adheres to the Self-Regulatory Principles for Online Behavioral Advertising established by the Digital Advertising Alliance. You can also opt-out from Facebook and other participating companies through the Digital Advertising Alliance in the USA: http://www.aboutads.info/choices/, the Digital Advertising Alliance of Canada in Canada: http://youradchoices.ca/, or the European Interactive Digital Advertising Alliance in Europe: http://www.youronlinechoices.eu/. Additionally, you can opt-out using your mobile device settings.
For more information on Facebook's privacy practices, please visit: Facebook Privacy Policy.
Roadloom relies on a number of third-party software services to help us deliver our Service. Below are some of the providers we integrate with, along with what data is stored by these providers and how that data is used. This list is not exhaustive and is provided for illustrative purposes. As our Service improves and technologies change, we may integrate with different or additional providers. If you have questions or would like more details about how your data is stored and shared, please contact us.
Intercom: We use Intercom to provide support and communicate with users about their account via in-app chat and email. We send Intercom your full name, email address, and account information to help facilitate communication and customer support.
AWS: We use Amazon Web Services (AWS) to host our servers, ensuring high availability and scalability for our Service. AWS provides the infrastructure needed to support the performance and reliability of our platform.
MongoDB: We use MongoDB as our database solution to store and manage data for our Service. MongoDB is a NoSQL database that allows us to handle large volumes of data in a flexible and scalable manner.
Our Services may contain links to other sites that are not operated by us. If you click a third party link, you will be directed to that third party's site. We strongly advise you to review the privacy policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
To learn more about how we comply with the General Data Protection Regulation (GDPR) and your rights under it, please visit our GDPR page.
This Cookie Policy explains what Cookies are and how We use them. You should read this policy so You can understand what type of cookies We use, or the information We collect using Cookies and how that information is used. Cookies do not typically contain any information that personally identifies a user, but personal information that we store about You may be linked to the information stored in and obtained from Cookies. For further information on how We use, store and keep your personal data secure, see our privacy policy.
We do not store sensitive personal information, such as account passwords, etc. in the Cookies We use.
Under the CCPA, businesses are required to update their privacy notices to include details such as the types of data collected, the categories of data, the purpose of data collection, third parties with whom the data is shared, and the rights available to individuals.
The lawful disclosure and consent requirements are fundamental to Roadloom’s Terms of Service:
We recommend conducting a comprehensive review of your company’s Terms of Service and Privacy Policy to ensure compliance with CCPA guidelines. If applicable, disclose the use of Roadloom within your policies.
The CCPA, much like Europe’s General Data Protection Regulation (GDPR), grants California residents specific rights regarding their personal information. The CCPA applies to for-profit entities operating in California that collect consumer data, provided they meet certain thresholds. Unlike GDPR, the CCPA establishes a unique framework for penalties on businesses that fail to comply. Although there are similarities, the GDPR and CCPA differ enough that businesses serving customers in both California and Europe must align their data practices with both regulations.
Under the CCPA, California consumers may have the right to request and receive a list of personal information and additional details a business collects (or has collected), as well as the intended business purpose for collecting this data.
Consumers may also request the deletion of specific personal information. While certain types of data—such as billing or other legally required records—may be exempt, businesses must comply with deletion requests for all other categories of data.
The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural. Company (referred to as either “the Company”, “We”, “Us” or “Our” in this Cookie Policy) refers to Roadloom. Cookies means small files that are placed on Your computer, mobile device or any other device by a website, containing details of your browsing history on that website among its many uses. Website refers to Roadloom, accessible from Roadloom.com. You means the individual accessing or using the Website, or a company, or any legal entity on behalf of which such individual is accessing or using the Website, as applicable.
Cookies can be “Persistent” or “Session” Cookies. Persistent Cookies remain on your personal computer or mobile device when You go offline, while Session Cookies are deleted as soon as You close your web browser.
These Cookies are essential to provide You with services available through the Website and to enable You to use some of its features. They help to authenticate users and prevent fraudulent use of user accounts. Without these Cookies, the services that You have asked for cannot be provided, and We only use these Cookies to provide You with those services.
If You prefer to avoid the use of Cookies on the Website, first You must disable the use of Cookies in your browser and then delete the Cookies saved in your browser associated with this website. You may use this option for preventing the use of Cookies at any time.
If You do not accept Our Cookies, You may experience some inconvenience in your use of the Website and some features may not function properly.
If You’d like to delete Cookies or instruct your web browser to delete or refuse Cookies, please visit the help pages of your web browser.
For the Chrome web browser, please visit this page from Google: Chrome Help
For the Internet Explorer web browser, please visit this page from Microsoft: Microsoft Support
For the Firefox web browser, please visit this page from Mozilla: Mozilla Support
For the Safari web browser, please visit this page from Apple: Apple Support
For any other web browser, please visit your web browser’s official web pages.
We take payment security seriously and ensure that we adhere to the highest industry standards. To learn more about how we comply with PCI-DSS (Payment Card Industry Data Security Standard) and safeguard your payment information, please visit our PCI Compliance page.
Our Services are not intended for anyone under the age of 18. We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that a childhas provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.15.
Roadloom supports the standard CORS mechanism, enabling customers to share their bucket content with web pages hosted outside of Roadloom. CORS involves a "preflight" request to the server before making a non-simple cross-origin request. By default, Roadloom servers deny preflight requests, but adding CORS rules to your bucket informs Roadloom about approved preflight requests.
The foundation of the information security framework will adhere to the ISO 27001 Information Security Management System. It will encompass a spectrum of areas, including security risk management, policies and procedures, security incident management, access controls, vulnerability management, physical security, operational security, corporate security, infrastructure security, product security, business continuity disaster recovery, personnel security, security compliance, and vendor security.
As part of its commitment to business continuity, Roadloom will establish and uphold a comprehensive set of documented disaster recovery policies and procedures. These measures are designed to facilitate the swift recovery or seamless continuation of essential technology infrastructure and systems in the aftermath of a disaster. Furthermore, Roadloom will conduct annual tests of its disaster recovery plan and share a summary of the results with its customers.
Ensuring the security of Customer Data is a priority for Roadloom. The company will conduct regular backups of Customer Data, implementing the same protective measures as those in place for production databases.
Device Security: Roadloommandates that devices accessing Customer Data be centrally managed and adhere to specific security settings, including hard drive encryption, enabled local passwords, and the installation of anti-virus and/or anti-malware software. These settings must be continuously enabled and automatically updated.
Roadloomhas established a formal vendor risk management program, ensuring that all third-party vendors with access to Customer Data undergo a comprehensive risk assessment before onboarding. Vendors with such access are required to enter into a vendor data processing agreement with Roadloom, outlining contractual obligations to protect information and meet specified information security and privacy requirements, including reporting security incidents and breaches.
Roadloom maintains a robust risk management program to identify, monitor, and manage risks that could impact the confidentiality, integrity, and availability of Customer Data.
Roadloom is committed to equipping its personnel with the necessary knowledge and skills in information security and privacy. Training is provided upon hiring and at least annually thereafter. Additionally, all employees are obligated to sign and acknowledge Roadloom Information Security and Data Protection policy upon joining the company.
As part of its stringent personnel security measures, Roadloom conducts background verification checks on employees with access to Customer Data. These checks, including identity verification and criminal history, are performed at least upon initial hire, in compliance with relevant laws, regulations, ethical requirements, and accepted local practices. The level of verification is tailored to the role, sensitivity of accessed information, potential risks, and local practices in non-US jurisdictions.
We may update this policy from time to time. We will notify you of any changes by posting the new policy on this page. We include the date the privacy policy was last revised at the top of the page. You are responsible for ensuring we have an up-to-date, active, and deliverable email address for you. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
If you have any questions about this policy, please contact us hello@roadloom.com