Privacy Policy

The following Privacy Policy is valid from and last updated:

  • for Dokobit Portal users on 05/28/2023,
  • for Dokobit API users on 06/18/2023.

This Privacy Policy constitutes an agreement between the Service Provider and the Customer and is incorporated into and governed by the Terms of Service. Privacy Policy describes what information we collect and use about you and what information is shared with third parties. Protecting the privacy and integrity of your personal data is our top priority.

1. Information we may collect about you

1.1. We collect different types of information to provide you with the Services reliably and securely.

2. Disclosure of your information

2.1. We do not share any personal information with third parties unless one of the following circumstances applies:

3. Information security

3.1. All our Services have been designed from the ground up to be secure.

3.2. We have implemented an Information Security Management System (ISMS) according to ISO/IEC 27001 which covers a variety of privacy and security policies, processes and procedures, including administrative, physical and technical safeguards that reasonably and appropriately protect the confidentiality, integrity and availability of your Personal and Customer Data.

3.3. Our ISMS is audited every year and is certified by accredited auditors with the certification scope of “cloud-based services for e-signing, e-sealing, e-identification, validation of e-signature and e-seal, and related software development, delivery and support”.

3.4. Services are provided through 256-bit encryption TLS connection. All data is stored in data centres that comply with ISO 27001, ISO 27017, ISO 27018 and PCI DSS Level 1 standards. All Customer Data is encrypted using the AES-256 encryption algorithm.

4. Retention policy

4.1. Once you delete your User Account from the Services, the content (Customer Data) is deleted within 7 days of the date of closure. Your account information and billing information are retained for a period of 10 years in accordance with Lithuanian accounting and taxation laws. 

4.2. We retain information about your activity (the actions you take when using our Services) in system logs to ensure our Services are provided reliably and securely. Such information related to your activity may contain Customer Data and/or Personal Data. This information is stored in our backups for 90 days.

4.3. The abovementioned information will be removed from our data backups within one week after the end of the retention period.

4.4. Free user accounts are deleted after two years of inactivity in accordance with our Terms of Service.

5. Data Controller

5.1. You’re acting as a Data Controller for your uploaded data (Customer Data) that contains Personal Data. We are not responsible for any Personal Data stored at the discretion of our Customers, including but not limited to Address Book entries, Invitations or Documents.

5.2. We are neither responsible for the manner in which our Customers collect, handle, disclose, distribute nor otherwise process such data.

5.3. The terms for such data processing are defined in the Data Processing Agreement.

6. Cookies, analytics, marketing and interest-based advertising

6.1. We use cookies in all our services and on our website. Detailed information about our use of cookies is available at Cookie policy.

6.2. We may use third-party analytical technology services to monitor the availability and quality of our services or individual features, as well as to better understand our users’ needs and to optimise our service and your experience with us (e.g. which features they tend to use, how much time they spend on which pages, which links they choose to click, what users do and don’t like, etc.) and provide tools for targeted communication based on user behaviour. The data collected is used to create custom reports and measure user engagement and retention, also to define service-related communication based on factors like your engagement with our website, location, or account information, so we could tailor our service suggestions for you to ensure the optimal and user-oriented service experience and to better respond to the needs of our users.

6.3. Analytical technology uses cookies, backend event listeners, and other methods to collect data on service usage and our users’ behaviour and their devices. We will ask for your consent if an analytical or performance cookie is to be placed in the storage of your device. 

6.4. Analytical technology allows us to collect and evaluate personal data, for example, user activity (including account type, preferred authentication method, pages which have been visited and elements which have been clicked on; time the user spends on pages; the preferred language used to display our website etc.) and device and browser information (in particular, the IP address, device ID and operating system, device screen size, device type, unique device identifiers, browser information, geographic location).

6.5. We use third-party services to deliver personalised ads and content, measure ad and content engagement, and get insights about the audience and product development.

In order to show ads more relevant to you based on your interests, our ad partners use various cookies and mobile trackers. We will ask for your consent if a targeting cookie is to be placed in the storage of your device. Upon receiving your consent, we allow them to show personalised ads as well as to use cookies associated with personalised ads. Third-party advertising cookies and mobile trackers may be used for the purposes of the activation of contextual advertising or targeting campaigns. 

Based on your permission to place cookies on your device, we also evaluate user profiles under a pseudonym. In this case, no personal identification is possible. These third-party tracking technologies and their use are not controlled by us. Our ad partners are subject to confidentiality agreements with us and/or other legal restrictions. Third-party cookies are covered by the third parties’ privacy policies. We transfer information about your consent or refusal regarding the use of cookies and the associated processing of personal data for the purpose of ad personalisation to our ad partners.

7. Data location

7.1. We process your personal data within the EU/EEA. When selecting our partners, we make sure they provide us with the possibility to limit data processing to the EU/EEA, if possible. In the event that your data is transferred outside of the EU/EEA by one of our partners, we ensure in our agreements that this happens in accordance with applicable data protection law. Under no circumstances will we transfer your Customer Data outside of the EU/EEA.

8. Your rights

8.1. Under the GDPR, data subjects have the following rights (that might be subject to conditions, limitations, and exceptions established by statutory data protection provisions):

8.2. You may exercise any of your rights in relation to your personal data by submitting a request to our Data Protection Officer by email at dpo@dokobit.com.

8.3. Your request must provide sufficient information that allows us to reasonably verify you are the person or an authorised representative of a person whose personal data we have collected (name, surname, your e-mail, other information we may request for verification purposes), describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it, provide a confirmation under a penalty that you are the individual whose personal data is the subject of the request.

If your request is submitted by an authorised agent, written permission and information that verifies the identity of the agent must be enclosed with the request.

We cannot provide you with the information or exercise your other right if we cannot verify your identity or authority to make the request and confirm the information relating to you. 

9. Changes and updates

9.1. We may revise this Privacy Policy from time to time and will post the most current version on our website. If a revision results in meaningful changes, we will notify you. 

10. Contact us

10.1. If you have any questions, concerns or complaints about this Privacy Policy, you may contact our Data Protection Officer by email at dpo@dokobit.com.


Versions

Valid from June 18, 2023

Download
Older Versions

01.01.2022-17.06.2023

25.02.2021-31.12.2021