Get a DemoLet us present you the full experience of using Sertifier as your badging and certification solution. Schedule a call with one of our professionals.Get a Demo
Sertifier INC. (“Sertifier”, “us”, “we”, or “our”) is committed to protecting the privacy of its customers and end-users.
This page summarizes the data we collect from the Sertifier website (“Site”) or software application, including API (“app”), and how we help ensure excellent privacy standards. When you use our site or app you agree to the data practices as per this policy.
Overview
Our approach to data security and privacy includes but is not limited to:
Fully complies with the EU General Data Protection Regulation (“GDPR”).
State-of-the-art platform security.
Encrypts all customer and end-user data.
Uses best-in-class cloud vendors with excellent security standards.
Kinds of Data We Collect
Sertifier collects data about customers and processes data on behalf of customers, about their end-users. Sertifier does not sell any data to third parties and makes clear its responsibilities as a Data Controller and Data Processor under the GDPR.
Customer Data
Since Sertifier is a B2B SaaS, we never target end-users or customers as a potential subscriber. When we say “customer” or “user”, we mean someone working for a startup, corporate company, or any kind of organization looking for a business solution like Sertifier. While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you (“Personal Data”).
Personally, identifiable information may include, but is not limited to:
Name
Company Name
E-mail Address
Company Website URL
We may use your Personal Data to contact you with newsletters, marketing or promotional materials, and other information that may be of interest to you. You may opt-out of receiving any, or all, of these communications from us by following the unsubscribe link or instructions provided in any email we send or by contacting us via email at support@sertifier.com.
Sertifier may also collect email addresses when someone subscribes to our blog and newsletter, and we fulfill this request by sending product updates and relevant content.
Sertifier does not store financial data about customers (e.g., credit card information), choosing instead to employ a dedicated payment processor.
Sertifier is GDPR compliant and offers customers their individual rights to access, delete, and modify their data, etc.
Usage Data
We may also collect information about how the Service is accessed and used (“Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
We may also collect customer-wide statistics such as the number of times certificates and badges are opened/clicked, the number of certificate and badge verification, how many certificates and badges are shared on social media platforms, etc.
Location Data
We may use and store information about your location if you give us permission to do so (“Location Data”). We use this data to provide features of our Service, to improve and customize our Service.
You can enable or disable location services when you use our Service at any time, through your device settings.
End-User Data
Customers can share data about their receivers of the certificates or the badges, to help deliver the related assets, and to assess which users engaged with the certificates and badges. The legal basis for Sertifier processing this data is a legitimate interest (to help provide Sertifier’s service).
Data in this category is used to help and support the aims of customers through their educational pathways. The aforementioned data is displayed only in the Sertifier customer dashboard.
We accept that our customers/users collect their end user’s data in a way that complied with GDPR. We do not take any responsibility for how our own customers/users collect or process their end user’s data. We also provide a range of methods to support customers in providing their end-users with their individual rights under GDPR, including erasure, restriction, etc.
Tracking & Cookies Data
We use cookies and similar tracking technologies to track the activity on our Service and hold certain information.
Cookies are files with a small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyze our Service.
You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.
Use of Data
Sertifier uses the collected data for various purposes:
To provide, maintain and improve our Service
To notify you about changes to our Service
To allow you to participate in interactive features of our Service when you choose to do so
To provide customer support
To gather analysis or valuable information so that we can improve our Service
To monitor the usage of our Service
To detect, prevent and address technical issues
To provide you with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless you have opted not to receive such information
Data Retention
Sertifier will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.
Sertifier will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Service, or we are legally obligated to retain this data for longer time periods.
In the case that customers or individuals request the deletion of their data, Sertifier will perform this deletion within seven working days.
Requests for data deletion may be addressed to support@sertifier.com
Data Security
Sertifier leverages best-in-class practices around data security including serving over 256 bit SSL and controls to prevent data access between customers. We backup data daily and all backups are encrypted.
Sertifier is committed to the privacy of the information as it passes over the network, as well as to preventing unauthorized access to customer or end-user data. We use industry-leading encryption to protect all external traffic in transit (via HTTPS/TLS) and at rest (using AES-256 and an automated key rotation system).
Sertifier does not handle customer payment data directly, instead using a fully PCI DSS compliant payments processor. Sertifier is not intended for the handling of end-user payment information.
Your Data Protection Rights Under GDPR
If you are a resident of the European Economic Area (EEA), you have certain data protection rights. Sertifier aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.
If you wish to be informed of what Personal Data we hold about you and if you want it to be removed from our systems, please contact us.
In certain circumstances, you have the following data protection rights:
The right to access, update, or delete the information we have on you. Whenever made possible, you can access, update, or request the deletion of your Personal Data directly within your account settings section. If you are unable to perform these actions yourself, please contact us to assist you.
The right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete.
The right to object. You have the right to object to our processing of your Personal Data.
The right of restriction. You have the right to request that we restrict the processing of your personal information.
The right to data portability. You have the right to be provided with a copy of the information we have on you in a structured, machine-readable, and commonly used format.
The right to withdraw consent. You also have the right to withdraw your consent at any time where Sertifier relied on your consent to process your personal information.
Please note that we may ask you to verify your identity before responding to such requests.
You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).
Our Privacy Approach
We use the information you provide about yourself when placing an order only to complete that order and to provide excellent customer service during the term of your service.
Although Sertifier owns the data storage, databases, and the Sertifier site, you retain all rights to your content. We will also not utilize your content in our databases to compete with you, to advertise, or to market to your clients.
Under the following circumstances, we may have to share your personally identifiable information provided to us online.
If it becomes necessary to share information to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of the Terms of Service, or as otherwise required by law.
If Sertifier is acquired by or merged with another company. In this event, Sertifier will notify you before information about you is transferred and becomes subject to a different privacy policy.
End-User Customer Data
Sertifier will collect End-User Customer Data necessary to provide the service to you. “End User Customer Data” means information about your customers, which includes any information you elect to send to Sertifier in your implementation as well as general information including but not limited to browser and device information.
We do not sell, share, or disclose any End User Customer Data with any third party, except if Sertifier is acquired by or merged with another company.
Children’s Privacy and Data
Services offered by Sertifier are not directed at children under the age of 13. Sertifier does not allow anyone to register and use the tools under the age of 13 as a user.
Sertifier’s collection of personal data on Services and contents that are directed to children under 13 is intended to follow the principles of the Children's Online Privacy Protection Act ("COPPA"), a U.S. law designed to protect the online privacy of children under the age of 13.
In matters and cases as being a direct Service provided via Sertifier to a customer which allows the data infrastructure to reach and collect end-user customer data that belongs to children under the age of 13, Sertifier knowingly approves that:
Children data cannot be collected without approval and legit consent of the child’s parents,
Data can be directly removed upon the request of the parent and/or legal data owner,
Only aforementioned kinds of data are collected, and the same security policy applies,
Any infringement can and should be reported to Sertifier via support@sertifier.com,
Data belongs to children cannot be retargeted, remarketed, shared, or altered,
This Policy can be updated from time to time by posting the updated Privacy Policy online. Sertifier will not change how we handle previously collected information without providing notice and obtaining parental consent where necessary.
Remarketing and Behavioral Targeting
Sertifier uses remarketing and behavioral targeting services to advertise on third party websites to you after you visited our Service. We and our third-party vendors use cookies to inform, optimize, and serve ads based on your past visits to our Service.
LinkedIn Website Retargeting is a remarketing and behavioral targeting service provided by LinkedIn Corporation that connects the activity of this Site with the LinkedIn advertising network. Place of processing: United States – Privacy Policy - Opt-Out
Facebook Custom Audience (Facebook, Inc.)
Facebook Custom Audience is a remarketing and behavioral targeting service provided by Facebook, Inc. that connects the activity of this Site with the Facebook advertising network. Place of processing: United States – Privacy Policy - Opt Out Privacy Shield participant.
Facebook Remarketing (Facebook, Inc.)
Facebook Remarketing is a remarketing and behavioral targeting service provided by Facebook, Inc. that connects the activity of this Site with the Facebook advertising network. Place of processing: United States – Privacy Policy - Opt Out Privacy Shield participant.
Twitter Remarketing (Twitter, Inc.)
Twitter Remarketing is a remarketing and behavioral targeting service provided by Twitter, Inc. that connects the activity of this Site with the Twitter advertising network. Place of processing: United States – Privacy Policy - Opt Out Privacy Shield participant.
Google Ads Remarketing (Google LLC)
Google Ads Remarketing is a remarketing and behavioral targeting service provided by Google LLC that connects the activity of this Site with the Google Ads advertising network and the DoubleClick Cookie. Users can opt-out of Google's use of cookies for ads personalization by visiting Google's Ads Settings. Place of processing: United States – Privacy Policy - Opt Out Privacy Shield participant.
Our GDPR Compliant Vendors
We use vendors to help us deliver the best functionality and user experience for our customers. This part gives an overview of what we use and where you can find more information about the GDPR compliance of these vendors.
Infrastructure
AWS
We use AWS as our static file storage (S3) and infrastructure provider.
Mailgun
Mailgun is an email distribution service that we use to distribute certificates and badges to the receivers of our customers.
Data Analytics
Google Analytics, Amplitude, Woopra
Google Analytics is an analytics platform that helps us understand what parts of our product users are engaging with. We also track overall tour data by account (e.g. how many tours were started on a certain domain). We don't collect or see any user attribute data you are sending to Sertifier here.
Google Tag Manager
Google Tag Manager is a tag management platform that helps us to manage the tags or scripts needed on this site in a centralized fashion.
Communications
Intercom
Intercom helps us manage our communication (emails and in-app messages) and support (tickets and help articles) with our customers. Intercom also supplements our customer data from other sources, and you can read more about this here.
Slack
Slack is our internal communications platform (instead of email) and also contains a stream of events that our customers are taking, such as payments, errors, usage, and tickets.
Billing
Iyzico and Stripe
İyzico and Stripe are our credit card and payment processing platforms. Stripe handles all sensitive credit card and account information on our behalf so we can rely on their super-secure system and keep your data safe.
Supplementary Tools
Zoom
Zoom is our video conferencing platform. We also use it for hosting webinars or group calls, and this sometimes requires registration.
We may update and improve this Privacy Policy and will attempt to notify you. Regardless, if you continue to use our services, you accept our current Privacy Policy.
Contact Us
If you have any questions about this Privacy Policy, please contact us via support@sertifier.com
Getting started is easy.Start issuing credentials with Sertifier.
This website uses cookies
We use cookies to personalize content and ads, to provide social media features and to analyze our traffic. We also share information about your use of our site with our social media, advertising and analytics partners who may combine it with other information that you’ve provided to them or that they’ve collected from your use of their services.
Necessary
Always Active
Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
Cookie__hssrc
Durationsession
DescriptionThis cookie is set by Hubspot whenever it changes the session cookie. The __hssrc cookie set to 1 indicates that the user has restarted the browser, and if the cookie does not exist, it is assumed to be a new session.
Functional
Preference cookies enable a website to remember information that changes the way the website behaves or looks, like your preferred language or the region that you are in.
Cookie__cf_bm
Duration30 minutes
DescriptionThis cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
CookieUserMatchHistory
Duration1 month
DescriptionLinkedIn sets this cookie for LinkedIn Ads ID syncing.
Cookielang
Durationsession
DescriptionLinkedIn sets this cookie to remember a user’s language setting.
Cookiebcookie
Duration1 year
DescriptionLinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
Cookiebscookie
Duration1 year
DescriptionLinkedIn sets this cookie to store performed actions on the website
Cookielidc
Duration1 day
DescriptionLinkedIn sets the lidc cookie to facilitate data center selection.
Cookie__hssc
Duration30 minutes
DescriptionHubSpot sets this cookie to keep track of sessions and to determine if HubSpot should increment the session number and timestamps in the __hstc cookie.
CookiemessagesUtk
Duration5 months 27 days
DescriptionHubSpot sets this cookie to recognize visitors who chat via the chatflows tool.
Statistics
Statistic cookies help website owners to understand how visitors interact with websites by collecting and reporting information anonymously.
Cookie_gcl_au
Duration3 months
DescriptionProvided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
Cookie_ga
Duration2 years
DescriptionThe _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site’s analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
Cookie_gid
Duration1 day
DescriptionInstalled by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website’s performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
Cookie_gat_gtag_UA_121888165_1
Duration1 minute
DescriptionSet by Google to distinguish users.
Cookie_ga_X4J9LFPQ87
Duration2 years
DescriptionThis cookie is installed by Google Analytics.
Cookiehubspotutk
Duration5 months 27 days
DescriptionHubSpot sets this cookie to keep track of the visitors to the website. This cookie is passed to HubSpot on form submission and used when deduplicating contacts.
Cookie__hstc
Duration5 months 27 days
DescriptionThis is the main cookie set by Hubspot, for tracking visitors. It contains the domain, initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session).
Marketing
Marketing cookies are used to track visitors across websites. The intention is to display ads that are relevant and engaging for the individual user and thereby more valuable for publishers and third party advertisers.
Cookie_fbp
Duration3 months
DescriptionThis cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
Cookiepersonalization_id
Duration2 years
DescriptionTwitter sets this cookie to integrate and share features for social media and also store information about how the user uses the website, for tracking and targeting.
Cookietest_cookie
Duration15 minutes
DescriptionThe test_cookie is set by doubleclick.net and is used to determine if the user’s browser supports cookies.
VC Backed
