Last Updated: March 03, 2022
Thanks for entrusting Tarjim with your localization projects and your personal information. Tarjim, Inc. and its affiliates (collectively, “Tarjim”, “we” and “us”) respect your privacy.
This policy describes how we use Personal Data (as defined below), with whom we share it, your rights and choices and how you can contact us about our privacy practices.
If you’re visiting us from the European Union (EU), European Economic Area (EEA), Switzerland, or the United Kingdom (UK), please see our global privacy practices: we comply with the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks (the “Privacy Shield”), and we are compliant with the EU General Data Protection Regulation (the “GDPR”).
If you are visiting us from California, the USA, please note that you may have specific rights under the California Online Privacy Protection Act, the California Consumer Privacy Act of 2018 and certain other privacy and data protection laws.
No matter where you are, where you live, or what your citizenship is, we provide a high standard of privacy protection to all our users around the world, regardless of their country of origin or location.
Of course, the short version doesn’t tell you everything, so please read on for more details!
1. What information do we collect
A. Personal Data Subjects. We collect information from visitors to our Platform, our potential and our existing customers, usually companies (the “Customers”) represented by the authorized individuals who are registered or permitted by a Customer to access a Team’s Workspace and/or use the Services (the “Authorized Users”). For example, localization managers, CTOs, CPOs or external translators working on a translation project in the Team’s Workspace.
2. How do we collect your Personal Data
The Information that you provide directly to us will be apparent from the context in which you provide the data. In particular, we collect the following Customer Data :
A. Contact Information. When you create or update your Team’s Workspace we collect your full name, email address, phone number, company’s name, role in your team and account login credentials (audit logs).
When you fill in our online form to contact our sales team (e.g., schedule a call), we collect your full name, email, country, your guests’ emails, phone number and anything else you tell us about your project, needs and timeline.
When you respond to Tarjim emails, newsletters or surveys, we collect your email address, name and any other information you choose to include in the body of your email or responses.
B. Billing Details. When you subscribe to a paid plan version of the Services, our payment processor or bank collects your billing details. Different payment methods may require the collection of different types of information, such as your payment card number, CVC, expiration date and/or bank account number and/or a billing address.
Please note that payment information submitted by you will be processed by our payment processor or bank. We do not intentionally receive or process your billing information. However, we have access to some of our Customers’ billing details via our account with the payment processor or bank. Please review our Data Processing Addendum for details.
C. Information we collect automatically. Even if you do not provide information to us, we automatically collect Aggregated Information about your use of and interaction with our Platform and/or Services as described in Section 1 above. We use your Aggregated Information to troubleshoot problems, gather demographic information, customize your experience when accessing our Platform, Services and for other business purposes.
D. Data from Third-Party Services. Our Customers can choose to permit or restrict Third-Party Services needed for better collaboration in their Team’s Workspace. Typically, Third-Party Services refer to software that integrates into our Platform (e.g., Jira, Asana, GitHub) and the Customer can enable and disable these integrations. For more information on Third-Party Services (available integrations, plugins and libraries), click here.
Once enabled, the provider of a Third-Party Service may share certain information with Tarjim and vice versa. For example, if a cloud storage application is enabled to permit the import of files to your Team’s Workspace, we may receive a user’s name and email address, along with additional information that the application has elected to make available to Tarjim to facilitate the integration.
Authorized Users should check the privacy settings and notices in these Third-Party Services to understand what data may be disclosed to Tarjim. We do not, however, receive or store passwords for any of these Third-Party Services when connecting them to the Platform.
E. Third-Party Data. We may receive Information about you from outside sources, such as commercially available demographic or marketing information, and add or combine it with your information to provide better service to you and inform you of Services or other information that may be of interest to you. This data may be combined with the Customer Data we collect and might include aggregate level data, such as which IP addresses correspond to which zip codes or countries, or it might be more specific: for example, how well an online marketing or email campaign performed.
We also offer you the functionality of using your social media credentials (e.g., Google, GitHub, Microsoft) for single sign-on to enter our Platform, and in that manner, we may also collect certain information from you as you log on. We will not collect more information from you when using your social media credentials beyond the information that third parties disclose to us.
F. Additional Information. We receive your Personal Data when you submit it to our Platform, if you participate in an offer, program or promotion, focus group, contest, activity or event, apply for a job, request support, interact with our social media accounts, give us your business card or contact details at conferences or other events, provide feedback or otherwise communicate with our team.
3. What is our legal basis for processing information
Under specific laws (including the GDPR), we are required to notify you about the legal basis on which we process your Personal Data. We will only collect and process personal data about you where we have a lawful basis. Lawful basis includes:
Consent (where you have given explicit consent);
Contract (where processing is necessary to take steps to enter into or perform a contract with you);
Compliance with a legal obligation, e.g. where we need your data for compliance with specific laws;
Vital or public interest, where processing is necessary for the performance of a task carried out in the public interest of a data subject or another person;
“Legitimate interests”, except where such interests are overridden by the interests, rights or freedoms of a data subject.
Where we rely on your consent to process Personal Data, you have the right to withdraw or decline your consent at any time and where we rely on legitimate interests, you have the right to object.
If you have any questions about the lawful basis upon which we collect and use your personal data, please feel free to contact our Data Protection Officer at: email@example.com.
4. How will we use your Personal Data
How we use your Personal Data will depend on which Services you use, how you use the Platform and the choices you make in your settings. Personal Data will be used and processed by us in compliance with the Customer’s instructions, including any applicable contract terms, and as required by applicable law.
We use the Customer Data in furtherance of our legitimate interests in operating our Platform, delivering Services, and doing business. In determining business purposes that we have identified as legitimate; we balance our interests against the legitimate interests and rights of the individuals whose Personal Data we process.
More specifically, we use Customer Data :
To facilitate contractual and pre-contractual business relationships. We use Personal Data to enter into business relationships with prospective customers and to perform the contractual obligations under the contracts that we have with existing Customers. For example, we may collect your Personal Data to schedule calls and meetings for the Platform’s demo, preparing offers to you or setting up and managing a Team’s Workspace on the Platform and performing certain accounting, auditing and billing activities.
To comply with our regulatory and other legal obligations, including Data Processing requirements of the GDPR and U.S.-EU Privacy Shield as well as any “Anti-Money Laundering” (AML) and “Know-Your-Customer” (KYC) obligations,
To personalize the Platform for you by understanding your needs. We use the Customer Data to customize our Services for you, including providing recommendations for translations, personalized content and the Team’s Workspace management. For example, our built-in translation memory saves all the information that you upload or set via API for later, automated use in the course of translating.
To create new features, tools and products. For example, we may improve functionality by using the Customer Data to help determine and rank the relevance of content to you and make Services suggestions based on historical use and predictive models. For example, based on your translation history, thus we may identify organizational trends and insights based on the translation history of projects on the Platform.
For research and analysis. We conduct aggregate analysis, market research and planning, develop business intelligence, generate statistical studies that enable us to operate, protect, make informed decisions and report on the performance of our business;
For customer support. Your emails, calls and other correspondence to and from us may be recorded for various purposes including monitoring customer service quality or compliance, checking the accuracy of the information you provide us or providing training for our personnel or customer service representatives. Any information obtained from you through Customer support will be treated according to the provisions of this Policy.
To protect Tarjim, our Customers and the public. We use your Personal Data to ensure network and information security throughout the Platform, to prevent, investigate or address service errors, security or technical issues and abuses that could harm Tarjim, our Customers or the public.
For marketing and events-related communications. We sometimes send emails about new product features, promotional communications or other news about Tarjim, our products and services, invite you to participate in our events or surveys, or otherwise communicate with you for marketing purposes, provided that we do so per the applicable consent requirements. These are marketing messages (described in more detail below), so you can control whether you receive them.
For interest-based advertising. When you visit our Platform, both we and certain third parties collect information about your online activities over time and across different sites to provide you with advertising about products and services tailored to your specific interests (this type of advertising is called “interest-based advertising”). These third parties may place or recognize a unique cookie or other technology on your browser (including the use of pixel tags). Where required by applicable law, we will obtain your consent before processing your information for interest-based advertising.
5. Personal Data Tarjim does not collect
No Sensitive Data. We do not intentionally collect, store, process or transmit any sensitive personal information, such as social security numbers, genetic data, health information or religious information. If you store any sensitive personal information on our servers, you are responsible for complying with any regulatory controls regarding that data. We might erase the sensitive information that is uploaded to the Platform or otherwise provided to us without our request or consent, if such erasure is necessary for the public interest or compliance with our legal obligations.
Tarjim is not a Business Associate or subcontractor as defined in terms of the United States Health Insurance Portability and Accountability Act of 1996 (the “HIPAA”).
Tarjim will have no liability for any Sensitive Personal Information, notwithstanding anything to the contrary herein.
No Minorities Data. If you’re a child under the age of 16, you may not have an account on Tarjim. We do not knowingly direct any of our content specifically to or collect information from children under 16. If we learn or have reason to suspect that you are a user who is under the age of 16, we will, unfortunately, have to close your account. Other countries may have different minimum age limits and if you are below the minimum age for providing consent for data collection in your country, you may not use Tarjim. You may not use Tarjim in California if you are a California resident under 16.
No End-User Data. We do not intentionally collect the Personal Data of Customers’ end-users that might be stored in your account. Information and content in a Customer’s accounts belong to the Customer, and the Customer is fully responsible for it, as well as for making sure that your content complies with our Terms of Service. Any Personal Data within a Team’s Workspace is the responsibility of the Customer, namely the account’s owner. The Customer shall be considered as the controller for the purposes of the GDPR. Please see Section 12 below for details.
6. How We Disclose Personal Data
Please note that our Customers determine their policies and practices for the sharing and disclosure of the Personal Data under their control and Tarjim does not control how they or any other third parties choose to share or disclose such Personal Data.
We share your Personal Data with trusted entities with your explicit consent, based on our instructions and in compliance with appropriate confidentiality and security measures, as outlined below:
To Third-Party Services. Our Platform enables integrations with third-party software that our Customers may use (e.g., Jira, Asana, GitHub). Available integrations, plugins and libraries can be found here. The Customer has sole discretion over whether to use these integrations. Once enabled, Tarjim may share certain information with a Third-Party Service provider and vice versa. For example, we will share configuration parameters, including emails linked to the Team’s Workspace to allow software management tools to integrate into said Workspace.
To Corporate Affiliates. We share Customer Data with our corporate affiliates (parents and/or subsidiaries) for internal administrative, operational, and group business purposes.
To Customer’s Representatives. Authorized Customer representatives and personnel designated as ‘owners’ of a Team’s Workspace may be able to access, modify, or restrict access to Personal Data of the Customer’s Authorized Users. It may include, for example, your employer using Service features to export activity logs from a Team’s Workspace or accessing or modifying your profile details.
During a Change to Tarjim’s Business. Some or all Customer Data may be shared or transferred, subject to standard confidentiality arrangements, if Tarjim engages in a merger, acquisition, bankruptcy, dissolution, reorganization, sale of some or all of Tarjim’s assets or stock, financing, public offering of securities, acquisition of all or a portion of our business, a similar transaction or proceeding, or steps in contemplation of such activities (e.g., legal due diligence).
To Share Aggregated Data. We may disclose or use aggregated or de-identified Information with others about how our customers, collectively, use Tarjim, or how our customers respond to our other offerings, such as conferences and events. For instance, we may compile statistics on the proportion of customers by industry and size. However, we do not sell this information to advertisers or marketers.
To Collaborate with Others. When an Authorized User submits Personal Data, it may be displayed to other Authorized Users. For example, your profile information, including email address, may be shared with other Authorized Users working in the same Team’s Workspace.
To Share in Public. When you comment on our blogs or in our community forums, the information you provide on these resources may also be read, collected, used and shared by any visitors to these resources. It would be best if you were cautious when deciding whether to disclose your Personal Data in these areas related to the Platform. To request removal of your Personal Data from our community forums or social media pages, contact us at: firstname.lastname@example.org. We may not be able to remove your Personal Data, in which case we will let you know if we are unable to do so and why.
To Comply with Laws. If we receive a request for information, we may disclose Customer Data if we reasonably believe disclosure is in accordance with or required by any applicable law, regulation, or legal process. Please find more in Section 15 hereof to understand how Tarjim responds to requests to disclose data from government agencies and other sources.
To enforce our rights, prevent fraud and for safety. To protect and defend the rights, property or safety of Tarjim or third parties, including enforcing contracts or policies, or in connection with investigating and preventing fraud or security issues.
We do not share, sell, rent or trade your Personal Data with third parties for their commercial purposes, except where you have specifically told us to (such as by activating an integration with third-party service providers).
We do not host advertising on Tarjim. We may occasionally embed content from third-party sites, such as YouTube and that content may include ads. While we try to minimize the number of ads our embedded content contains, we cannot always control what third parties show. Any advertisements on individual Tarjim web pages are not sponsored or tracked by Tarjim.
We do not disclose your Personal Information outside Tarjim, except in the situations listed in this section.
9. How do we store your data
Data Retention Period. We will process and store the Customer Data no longer than necessary. In general, your Personal Data will be stored during the term of our contractual relationships and after that for a maximum of ten (10) years with regard to rules of limitation. In some cases, Personal Data may be saved for longer due to laws applicable to Tarjim.
This may include keeping your Personal Data after you have deactivated your account for the necessary period for us to pursue legitimate business interests, conduct audits, comply with (and demonstrate compliance with) legal obligations, resolve disputes and enforce our agreements.
10. Security of Customer Data
We take the security of data very seriously. We work hard to protect Customer Data from loss, misuse and unauthorized access or disclosure. Tarjim has received internationally recognized SOC 2 Type 2 security certification confirming that Tarjim has system and organization controls to safeguard the processing, integrity, confidentiality and security of the Customer Data. To learn more about current practices and policies regarding the security and confidentiality of the Services, please see our documentation and Contracts.
Please note that no method of transmission, or method of electronic storage, is 100% secure. Therefore, we cannot guarantee its absolute security and safety. In the event of a data breach that affects your Personal Data, we will act promptly to mitigate the impact of a breach and notify any affected users without undue delay.
11. Privacy Policies of other websites
Our Platform provides the ability to connect to the websites of other Third-Party Services providers. Please see Section 6 above for details. These Third-Party Services are not owned or controlled by Tarjim, and third parties that have been granted access to your Personal Data may have their own policies and practices for data collection and use. Please check the privacy settings and notices in these Third-Party Services or contact the relevant provider with any questions you may have.
You may see our ads on other websites or mobile apps because we participate in advertising networks. Ad networks allow us to target our message to users based on a range of factors, including demographic data, users’ inferred interests and browsing context (for example, the time and date of your visit to our Platform, the pages that you viewed and the links that you clicked on). This technology also helps us track the effectiveness of our marketing efforts and understand if you have seen one of our advertisements.
Please see Subsection 7A above to learn more about for various un-subscription options from Third-Party Services you have.
12. Identifying Data Controller and Processor
Data protection law in certain jurisdictions (e.g., the GDPR) differentiates between the “controller” and “processor” of information. In general, the Customer is the controller of the Personal Data. Tarjim is the processor of the Personal Data. However, Tarjim is deemed a controller of the Personal Data that is processed for its legitimate interests as described in Sections 4-6 above.
If you are an Authorized User or end-user of our Customer, you have the right to address your requests on the Personal Data protection directly to the Customer as your data controller.
13. International Data Transfers
We are a global business. Personal Data may be stored and processed in any country where we have operations or where we engage service providers. We may transfer Personal Data that we maintain about you to recipients in countries other than the country in which the Personal Data was originally collected, including to the United States. Those countries may have data protection rules that are different from those of your country.
If you are located in the EEA or Switzerland, we comply with applicable laws to provide an adequate level of data protection for the transfer of your Personal Data to the USA. Tarjim, Inc. is certified under the EU-U.S. and the Swiss-U.S. Privacy Shield Framework and adheres to the Privacy Shield Principles. For more details, see the Tarjim Privacy Shield Policy.
Where applicable law requires us to ensure that an international data transfer is governed by a data transfer mechanism, we use one or more of the following mechanisms: EU Standard Contractual Clauses with a data recipient outside the EEA, verification that the recipient has implemented Binding Corporate Rules, or verification that the recipient adheres to the EU-U.S. and Swiss-U.S. Privacy Shield Framework.
15. How we respond to compelled disclosure
We may disclose personally-identifying information or other information we collect about you to law enforcement in response to a valid subpoena, court order, warrant or similar government order, or when we believe, in good faith, that disclosure is reasonably necessary to protect our property or rights, or those of third parties or the public at large.
In complying with court orders and similar legal processes, Tarjim strives for transparency. When permitted, we will make a reasonable effort to notify Customers and Authorized Users of any disclosure of their information, unless we are prohibited by law or court order from doing so, or in rare, exigent circumstances.
16. How to contact us
If you have concerns about the way Tarjim is handling your Personal Data, please let us know immediately. We want to help.
You may contact us by sending an email to: email@example.com with the subject line “Privacy Concerns”. We will respond promptly — within 30 calendar days, at the latest.
17. How to contact the appropriate authorities
If you are a resident of the EEA and believe we maintain your Personal Data within the scope of the GDPR, you also have the right to (a) restrict Tarjim’s use of the information that constitutes your Personal Data and (b) lodge a complaint with your local data protection authority.
A current list of National Data Protection Authorities, members of the European Data Protection Board can be found here.