Privacy Policy for End Users
Last updated: May 27, 2023
CaptchaFox is a privacy friendly Service provided by Scoria Labs GmbH ("us", "we", or "our") to help our customers (website and service operators) detect and safeguard their websites and services against undesired automation access and attacks.
This Privacy Policy applies to end users interacting with the CaptchaFox widget that is integrated on websites and services of our customers.
By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.
Information We Collect
Personal Data
We do NOT collect any information that may directly or indirectly identify you personally ("Personal Data"). Any data generated by the system that may indirectly identify you (such as network IP addresses) are anonymized so it can no longer be personally identifiable.
Usage Data
When you visit a site that includes the CaptchaFox widget and send a verification request, we collect information such as the IP address, browser type, platform type, device type, operating system, time stamp of access and other similar information required to determine whether you are human.
Tracking & Cookies Data
Cookies are small text files that are stored on a user's device and contain data related to website interactions, serving various purposes such as enhancing functionality, personalizing content, and tracking user behavior.
We do NOT use any cookies for our Service.
How We Use Your Information
We use the collected data for various purposes:
- To provide and maintain our Service
- To monitor the usage of our Service
- To detect, prevent and address technical issues
- To provide usage audits to website and service operators that integrate our Service
Legal Basis for Processing Personal Data under the GDPR
If you are from the European Economic Area (EEA), our legal basis for collecting and using the Personal Data described in this Privacy Policy depends on the Personal Data we collect and the specific context in which we collect it.
We do NOT record any Personal Data and therefore will not process your Personal Data.
Your Rights under the GDPR
We are committed to maintaining the confidentiality of your personal data and ensuring that you can exercise your rights.
You have the right under this Privacy Policy, and by law if You are within the EU, to:
- Request access to Your Personal Data.The right to access, update or delete the information We have on You. You may request a copy of the personal information we hold about you. Where possible, we will provide this information in CSV format or other easily readable machine format. You may request that we erase the personal information we hold about you at any time. You may also request that we transfer this personal information to another third party.
- Request correction of the Personal Data that We hold about You.You have the right to have any incomplete or inaccurate information We hold about You corrected.
- Object to processing of Your Personal Data.This right exists where We are relying on a legitimate interest as the legal basis for Our processing and there is something about Your particular situation, which makes You want to object to our processing of Your Personal Data on this ground. You also have the right to object where We are processing Your Personal Data for direct marketing purposes.
- Request erasure of Your Personal Data.You have the right to ask Us to delete or remove Personal Data when there is no good reason for Us to continue processing it.
- Request the transfer of Your Personal Data.We will provide to You, or to a third-party You have chosen, Your Personal Data in a structured, commonly used, machine-readable format. Please note that this right only applies to automated information which You initially provided consent for Us to use or where We used the information to perform a contract with You.
- Withdraw Your consent.You have the right to withdraw Your consent on using your Personal Data. If You withdraw Your consent, We may not be able to provide You with access to certain specific functionalities of the Service.
Exercising of Your GDPR Data Protection Rights
You may exercise Your rights of access, rectification, cancellation and opposition by contacting Us. Please note that we may ask You to verify Your identity before responding to such requests. If You make a request, We will try our best to respond to You as soon as possible.
You have the right to complain to a Data Protection Authority about Our collection and use of Your Personal Data. For more information, if You are in the European Economic Area (EEA), please contact Your local data protection authority in the EEA.
Data Retention
We retain only data derived from usage data for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use this data to the extent necessary to comply with our legal obligations (for example, if we are required to retain data to comply with applicable laws), resolve disputes and enforce our legal agreements and policies.
Transfer of Data
We may share your usage data with third-party service providers who assist us in providing and improving our Services. These include hosting and service providers. We have contracts with these providers that require them to comply with the GDPR. We may also disclose any retained data if required by law or to protect our rights and property.
We will take all the steps reasonably necessary to ensure that any retained data is treated securely and in accordance with the GDPR and this Privacy Policy and no transfer of usage data will take place to an organisation or a country unless there are adequate controls in place including the security of such data.
Subprocessors
| Entity Name | Purpose | Address | Privacy Policy |
|---|---|---|---|
| Hetzner Online GmbH | Infrastructure hosting | Industriestr. 25, 91710 Gunzenhausen, Germany | Link↗ |
| BunnyWay d.o.o. | Content Delivery Network | Dunajska cesta 165, 1000 Ljubljana, Slovenia | Link↗ |
Security
We take appropriate technical and organizational measures to protect your data from unauthorized access, disclosure, or misuse. We regularly review and update our security measures to ensure the ongoing confidentiality, integrity, availability, and resilience of our systems and services. Remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While We strive to use commercially acceptable means to protect your data, We cannot guarantee its absolute security.
Children's Privacy
Our Service does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from anyone under the age of 13 without verification of parental consent, We take steps to remove that information from Our servers.
Links to Other Websites
Our Service does NOT contain links to third party websites.
Changes to this Privacy Policy
We reserve the right to modify this Privacy Policy at any time. If we make significant changes, we will notify you by email or through our website.
You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
Responsible for data processing: Scoria Labs GmbH
Address: Agnes-Bernauer-Str. 151, 80687 München, Germany
Email: privacy@captchafox.com