Latest update: June 2020
We want to clarify that Microblink mobile software development kits (SDK) integrated within our customers' mobile applications do not store images scanned using Microblink technology.
Microblink processes the personal data in accordance with the provisions of the EU General Data Protection Regulation (GDPR).
We process your personal data on the basis of our prevailing legitimate interest according to Article 6(1)(f) GDPR to achieve the purposes of giving you services through our website, or communicating with you. If not expressly mentioned otherwise, collecting and processing of data is based on Microblink’s legitimate interest considering always that your fundamental rights and freedoms are not overridden by the interests of our communication with you.
In some specific situations (as designated below), we may ask you for your consent to process your personal data. In case you provide your consent, we will be processing your data on the basis of such consent (Article 6(1)(a) GDPR). You may withdraw such consent previously granted at any time. However, withdrawing your consent does not affect the lawfulness of any processing based on your consent before your withdrawal.
COLLECTING THE DATA
1. Use of the website and online services
1.2. WebAPI SaaS trial and Secure Image Upload
By trying out our Web API SaaS trial or uploading images using the Secure Image Upload, you might be sharing images of scanned documents with Microblink which may include, depending on the specific document in question, some of the following data (a non-exhaustive list):
Name and last name, address (including billing and shipping addresses), telephone number (including home and mobile phone numbers), e-mail address, academic title, place of work and its address, credit and debit card number, profile picture, date and place of birth, gender, nationality, company registration number, country of residence, passport number, signature, body height, social security number, eye colour, driver’s license number, state or national ID card number, other ID card number, CVV, expiration date, vehicle identification number and license plates. Additionally, if you scanned a particular type of card (e.g. an ID card), such an image may include your photograph and other information from the imaged document, such as your eye colour, weight, height, and organ donor status. This data is collected on the basis of your consent actively and expressly given to Microblink before accessing any of the above services.
This collection is based on your consent(s) given to Microblink and used for the purposes as described therein as well as mentioned below under Section 7. It is clearly stated with each trial Web API product if the images are stored or not.
1.3. Dashboard registration
If you want to try out our products, in order to generate trial license keys or use other trial licenses of our products, we ask you to register on our dashboard by giving us the name and last name, e-mail (optionally the phone number). This collection is based on the above mentioned legitimate interest of Microblink to protect its intellectual property as well as to communicate with you in relation to the use of Microblink products.
2. Use of Microblink demo mobile applications
2.1. Registering before the use
Some of our demo mobile applications may ask you to register before using the app. This way, we might have collected personal data contained within such email address. Since the demo applications showcase our technology, it is our legitimate interest to contact you at the given email address with our product offering.
2.2. Sharing of images
If you are trying out our technology by using demo mobile applications available on public app stores, depending on the document you are scanning, you may be sharing with Microblink the same data as described above in section 1.2. Please note that not all demo mobile applications store scanned images. It is clearly stated in each mobile application if the images are stored or not.
This data is collected on the basis of your consent actively and expressly given to Microblink before accessing the particular demo mobile application that shares images with Microblink.
2.3. Analytics tools within the demo mobile applications
You can object to the future collection and storage of your data by AppsFlyer at any time by following the corresponding instructions at https://www.appsflyer.com/optout.
Firebase Analytics and Crashlytics
Our demo mobile apps use Firebase Analytics and Crashlytics, an analysis services offered by Google Inc. domiciled in 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Firebase helps us to determine your interactions with the particular mobile app by recording, for instance, the first time the app is opened, if it was uninstalled, updated, if it crashed and how often the app is used. The service also records and analyses certain user interests. The information processed via Google Firebase may also be used together with other Google services, such as Google Analytics and Google marketing services. The tool uses identifiers like the Android Advertising ID or the Advertising Identifier for iOS and cookie-like technologies to identify the users’ mobile devices.
Crashlytics provides information on unforeseen system crashes and other malfunctions, thus helping us to constantly improve our demo mobile apps. When a fault occurs, the analysis programme records and transmits information on the device in use, the operating system, the version and functionality of a particular application, time of the crash and the anonymised IP address of the requesting device.
3. Receiving Microblink newsletters
If you gave your email to receive a Microblink newsletter, we might have collected personal data contained within such email addresses. Please note that we regularly send out our newsletters to inform our users of the new products we are working on. Registering to our newsletter is voluntary (based on the consent you have given us) and conducted via the so-called double opt-in process. Following registration, you receive an email asking you to confirm your registration. This is required to prevent unauthorised third parties from using your email address to subscribe to our newsletter.
The newsletter is sent via Mailchimp, a delivery service offered by The Rocket Science Group LLC d/b/a Mailchimp, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308 USA. You can find more information on their privacy policies on https://mailchimp.com/legal/privacy/.
4. Contacting Microblink
If you are accessing Microblink website and using any of the contact forms, the data expressly stated on the form is stored and processed by Microblink (name and last name, user name, e-mail, phone number, country of residence and company name) in order to reply to your request.
Additionally, in order to improve your website experience and optimize our services, we use the Zendesk customer management system which collects some particular data (user ID, related Microblink product and platform) when you interact with us. This processing is based on our legitimate interest to improve your website experience and optimize our services. Information on their privacy policies may be found on https://www.zendesk.com/company/customers-partners/privacy-policy/.
5. Web analysis and social media plugins
You can find more information about Google Analytics by visiting the following website https://policies.google.com/technologies/partner-sites.
Social media plug-ins
We have placed links and plug-ins from third parties such as Facebook, Instagram, Youtube, Twitter, LinkedIn, Vimeo, Github on our website. Such services can use their own cookies or tracking pixels to collect information about users who interact with their website via the link or plug-in.
When you visit our websites your browser automatically connects with the servers of plug-in providers. The content of the plug-in can be directly generated by your browser and integrated into our website. Therefore, plug-in providers are able to track your visit and activities on our website and link them to your profile on the plug-in provider's website. All information about interactions such as comments or your use of the "Like-Button" can be transferred to the plug-in provider and saved by the plug-in provider. This processing is based on our legitimate interest to improve your experience on our websites and optimize our services. If you wish to prevent such transfer and storage of your data, you can log out of your profile at the plug-in provider before using the plug in.
Further information about the purpose and scope of data use and data processing by plug in providers can be found in the plug in provider's privacy policies:
Additionally, please note that the comment service for our blog posts is provided by Disqus tool. It is an industry-standard tool to enable the comment function on our web. More information may be found here: https://help.disqus.com/en/articles/1717103-disqus-privacy-policy.
6. Other data shared with Microblink
If you are sending us your CV in an open application or for a particular job opening, the data contained therein shall be stored by Microblink. This data is collected on the basis of Microblink’s legitimate interest to answer your inquiry.
When you send personal data of third parties to Microblink, you are responsible for obtaining appropriate consent from such third parties/data subjects. Microblink shall ensure that third parties personal data will be processed, handled and collected in the same manner as your own personal data. However, you are solely responsible for obtaining consent from third parties for use and processing their personal data.
Additionally, it is your obligation to understand and abide by the applicable local data protection laws.
7. Purposes of data collection
Depending on the reason why you contacted Microblink and what data you have shared with Microblink, Microblink determines the purpose of collection and processing of data.
Data shared with Microblink by accessing Microblink website is used for the purposes of managing your relationship with Microblink as well as better personalisation of your experience and interaction with Microblink websites and for the purpose of managing our relationship with you.
Data shared with Microblink by using the Contact or Support form is used for the purposes of establishing communication with you in relation to a particular question you may have for Microblink (the reason why you contacted us), to communicate with you and process and respond to any complaint made by you as well as to answer your inquiries, provide information, support or advice about existing and new products or services, as well as situations related to potential purchasing of Microblink license.
Data shared with Microblink by registering on Developer Dashboard is used for setting up and maintaining your registration on Microblink Dashboard and to provide features available in Microblink technology as well as to update you on the new services, if you are an existing Microblink user. We may keep the data you registered in order to protect Microblink’s rights and/or our intellectual property.
Data shared with Microblink via images scanned by demo mobile apps (those that explicitly inform you that they store the images), uploaded thorough Microblink Web API SaaS trial (those that explicitly inform you that they store the images) or through Secure Image Upload will be used exclusively for the purpose as agreed directly between you and Microblink, mainly to improve our products. We keep scanned images to train our machine learning system to better recognize various documents. We want you to be assured that shared images are used solely for the purposes of developing Microblink technology, meaning for adding support for scanning new types of documents in a faster way and to improve the accuracy of the scanning process.
Data shared with Microblink via email@example.com or sent to our HR team will be used to assess your profile for a particular job opening and to potentially contact you. You can always send a reply stating you want your data and CV to be deleted from Microblink’s portfolio.
Data shared with Microblink at newsletter registration is used to send you our newsletter with promotional communications, including emails about the products and services offered by Microblink or our partners.
8. Children's data
Microblink does not knowingly collect information from persons who are considered children by their local law. We encourage parents and guardians to take an active role in their children’s online and mobile activities and interests.
Children below the age of 16 may provide its information only if a parent or guardian has given its consent to do so, in accordance with applicable law. If you have reason to believe that a child below the minimum age has provided personal data to us through using any of the above-stated services without the necessary consent, please contact us at firstname.lastname@example.org, and we will use commercially reasonable efforts to delete that data.
9. Possible disclosures
Your privacy is important to us. We do not sell, lease or rent personal data relating to any of our users to third parties. We may disclose such personal data solely with the following categories of third parties:
Service providers we've hired to provide customer service support or assist us in protecting and securing our systems and providing our services;
Third-party analytics service providers to analyse the use of Microblink’ Services;
Public authorities, such as law enforcement, if we are legally required to do so or if we need to protect our rights or the rights of third parties;
Storage providers such as Amazon and/or Google for storing data.
Microblink service providers undergo a strict compliance process and we make sure their handling of any Microblink confidential data is based on relevant data processing agreements and policies.
Microblink may disclose information to third parties in an aggregate format that does not constitute personal information and does not allow the identification of individual users.
In order to give you better service and complete support, please note that if you contacted Microblink in relation to a production license of Microblink product(s), we may share your contact details with our partner representing us in your respective territory.
10. Security measures
To prevent unauthorized access or disclosure and to maintain data accuracy, as well as to ensure the appropriate use of such data, Microblink utilizes all reasonable technical and organizational measures to protect your personal data, including but not limited to minimising the processing of personal data, pseudonymisation and anonymisation of personal data as soon as possible, transparency with regard to the functions and processing of personal data, enabling each individual to have knowledge of the ways and reasons for data processing. All personal data is encrypted while in transit and in storage. Additionally, Microblink continuously undertakes and upgrades different measures to ensure the highest standards for data privacy. We design all our processes with special emphasis on protecting personal and confidential data.
Although Microblink takes best industry practice in keeping the data safely stored, Microblink does not warrant that the undertaken safety, technical and organizational measures will be sufficient to fully protect your personal data against potential unauthorized access and use of your personal data. Moreover, we cannot guarantee the safety of your information when in the possession of other parties, such as the third-party data controllers. However, if such an attempt is detected, we will notify you as soon as reasonably possible of a potential breach of the security measures either directly to your contact address, if available, or via an alert notification on our website and other appropriate channels.
11. Your rights related to the collected data
Each individual has a right to know what data Microblink holds about him/her. The rights every individual has in relation to personal data shared with Microblink are:
the right to be informed,
the right of access,
the right to rectification,
the right to erasure,
the right to restrict processing,
the right to data portability,
the right to object to processing,
the right to withdraw consent, and
the right not to receive discriminatory treatment by Microblink for the exercise of individual’s rights conferred by the applicable data protection laws.
For any questions and requests for access, please email Microblink at email@example.com. It is necessary to clearly state on which basis and through which channel you shared your personal data with Microblink so we could easily fulfill your request. Please note that Microblink may ask for additional info in order to determine if you are authorized to submit a particular request. If you have a complaint about Microblink’s handling of your data, you can contact the supervisory authority (Croatian Personal Data Protection Agency) to find out more information.
12. Data retention period
Microblink may retain your personal data as long as it is required to complete the purpose of collection or for as long as the applicable law requires.
The data that is not required to be kept by applicable law, shall be kept up to ten years from receipt.
If Microblink collects the personal data on the basis of a consent, the data shall be stored for as long as such consent is not withdrawn.
Images of documents shared with Microblink will be retained until the initial purpose of collection has been satisfied or within three years from the individual's last usage of Services, whichever event occurs first. Therefore, please contact Microblink immediately upon such an event to request deletion of such images.
A CV shared with Microblink shall be stored for up to two years unless you request us otherwise.
13. Transfer of data
The Internet is a global environment. Using the Internet to collect and process personal data necessarily involves the transmission of data on an international basis. Any such transfer is made in accordance with regulatory requirements that ensure such transfer and/or country maintains the same level of personal data protection.
Microblink opted for industry-approved storage providers with highest privacy and data security standards.
14. Automated decision making and profiling
Microblink does not automatically process, nor use techniques for profiling of its users.
15. User content
17. Questions or concerns