Last Updated: 12/8/2017
Please read the following carefully to understand how we will collect, use, and maintain your personal information. It also describes your choices regarding the use, access, and correction of your personal information.
Changing our Policy
We may collect certain user information (including personal information and/or sensitive personal information) in the following ways:
Information You Provide To Us. We collect information you provide directly to us including when you visit our websites and/or use the Everlaw Product.
- For example, we collect information when you enter into an agreement with Everlaw for a Product account, create or modify your profile and account, access and use the Everlaw Service (including but not limited to when you upload, download, collaborate on, or share files or other information), participate in any interactive features of the Everlaw Service, submit a contact form, participate in a survey, activity or event, apply for a job, request customer support, or communicate with us via third-party social media sites. You may, however, visit our website anonymously.
- The types of information we may collect directly from you include your name, username, email address, postal address, phone number, information about your Product account preferences, employer’s name, job title, transactional information (including services purchased or subscribed to and billing address), as well as any contact or other information you choose to provide. Please be aware that the information you choose to provide in your Everlaw Product account profile may reveal or identify information that is not expressly stated (for example, information you provide may reveal your gender). We also store the files or other information that you upload or provide to the Everlaw Services ("Content") in order to provide you with the features and functionality of the Everlaw Service.
Information We Collect Automatically When You Use the Everlaw Service. When you access or use the Everlaw Service, we may automatically collect information about you, including:
- Usage, Log, and Device Information: We collect information from your use of the Everlaw Service such as system activity, hardware settings, browser type, browser language, the date and time of your visit, and the referral URL. We monitor user activity in connection with the Everlaw Service and may collect information about the features you use, the Content you upload, download, share, or access while using the Everlaw Service, the Content you access, and any actions taken in connection with the access and use of your Content in the Everlaw Service.
Use of Information
We may use the information collected through the Everlaw Service for the limited purpose of providing the Everlaw Service and related functionality and services for which Everlaw has been engaged. The information may be used for a variety of purposes, including:
- Provide, operate, maintain, and improve the Everlaw Service;
- Enable you to access and use the Everlaw Service;
- Send you technical notices, updates, security alerts, and support and administrative messages;
- Provide and deliver the services and features you request, process, and complete transactions, and send you related information, including purchase confirmations and invoices;
- Respond to your comments, questions, and requests, and provide customer service and support;
- Communicate with you about services, features, surveys, newsletters, offers, promotions, events, and provide other news or information about Everlaw and our select partners;
- Process and deliver survey entries and rewards;
- Monitor and analyze trends, usage, and activities in connection with the Everlaw Service and for marketing or advertising purposes;
- Investigate and prevent fraudulent transactions, unauthorized access to the Everlaw Service, and other illegal activities;
- Personalize and improve the Everlaw Service, and provide content and/or features that match your interests and preferences or otherwise customize your experience on the Everlaw Service; and
- For other purposes about which we notify you.
Do Not Track. Some browsers offer a “do not track” (“DNT”) option. Because no common industry or legal standard for DNT has been adopted by industry groups, technology companies, or regulators, we do not respond to DNT signals. We will make efforts to continue to monitor developments around DNT browser technology and the implementation of a standard.
Sharing and Disclosure of Information
- To Vendors, Consultants, and Other Service Providers: We may share your information with third-party vendors, consultants, and other service providers who are working on our behalf and require access to your information to carry out that work, such as to process billing or as it relates to a Product feature. These service providers are authorized to use your personal information only as necessary to provide services to Everlaw. Certain Everlaw Product features require providing information to third parties, such as Google API services, Dropbox, Box, and OneDrive.
- Google API Services: Everlaw Product features include use of Google Translate (machine translation) and Google Drive (cloud uploading). The Translation API lets websites and programs integrate with the translation service programmatically. Product users can choose to opt-out of translation services by informing Everlaw of your preference within the platform or at email@example.com. The Drive API allows Product users to upload directly from cloud storage. If you opt to use this feature, Everlaw will request download access to the files in your Google Drive storage. We only view and download the files specified by you during the file selection process.
- In Compliance with Laws: We may disclose your information to a third party: (a) if we believe that disclosure is reasonably necessary to comply with any applicable law, regulation, legal process, or governmental request; (b) to enforce our agreements, policies, and Terms of Service; (c) to protect the security or integrity of the Everlaw Service; (d) to protect Everlaw, our customers, or the public from harm or illegal activities; (e) to respond to an emergency which we believe in the good faith requires us to disclose information to assist in preventing the death or serious bodily injury of any person; or (f) as otherwise directed by you.
- For Business Transfers: We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company. You may be notified thereafter via email of any such change in ownership or control of your personal information.
- As Aggregated and/or Anonymized Data: We may also share aggregated and/or anonymized information with third parties that does not directly identify you.
Collaboration and Sharing Features
The Everlaw Service offers collaboration features which allow you to share your Content through the Everlaw Service. As a function of the collaborative nature of the Everlaw Service, and based on the permissions and settings you choose, the use of such features enables the sharing of Content with people you want to collaborate with. For more information about such collaboration and sharing features, we encourage you to review the information provided on https://support.everlaw.com.
Global Data Privacy Protection
Currently, Everlaw uses model contract clauses as the basis for Everlaw’s approach to global data privacy protection and compliance with the EU Data Protection Directive 95/46/EC. These contractual clauses provide adequate safeguards with respect to the protection of the privacy and fundamental rights and freedoms of individuals and as regards the exercise of the corresponding rights. Everlaw executes Data Processing Amendments where required in connection with the Everlaw Service. We are currently in the process of updating our policies, procedures, and agreements to comply with the EU General Data Protection Regulation (“GDPR”).
Everlaw has a SOC 2 Type II certification in Security, Availability, and Confidentiality, demonstrating that our system is designed and operates effectively to keep our customers’ data secure. We have also been audited for compliance with HIPAA Privacy and Security Rules, providing independent assurance of compliance. At Everlaw, we choose to undergo rigorous security testing by an independent third party auditor.
You may access your Product account information and our service only through the use of an individual user ID and password. To protect the confidentiality of personal information, you must keep your password confidential and not disclose it to any other person. Please advise us immediately if you believe your password has been compromised in any way. In addition, always log out and close your browser when you finish your session. Please note that we will never ask you to disclose your password to us.
If you have any questions about the security of your personal information, you can contact us at firstname.lastname@example.org.
We will retain your information for as long as your Product account is active or as needed to provide you with the Everlaw Service. We will retain and use your information to comply with our legal obligations, resolve disputes, and enforce our agreements.
We will retain personal data we process on behalf of our customers as directed by paying customers. Everlaw will retain this personal information as necessary to comply with legal obligations, resolve disputes, and enforce agreements.
Upon request, Everlaw will provide you with information about whether we hold, or process on behalf of a third party, any of your personal information that we are aware of. To request this information, contact us at email@example.com.
Promotional and Newsletter Communications. You may opt out of receiving promotional and newsletter emails from Everlaw by following the opt-out instructions provided in those emails. You may also opt-out of receiving promotional emails and other promotional communications from us at any time by emailing firstname.lastname@example.org with your specific request. If you opt out, we may still send you non-promotional communications, such as security alerts and notices related to your access to or use of the Everlaw Service or those about your Product account or our ongoing business relations.
Cookies. Most web browsers are set to accept cookies by default. If you prefer, you can usually choose to set your browser to remove or reject browser cookies or to prompt you before accepting such a cookie. Please note that, if you choose to remove or reject browser cookies, this could affect the availability or functionality of the Everlaw Service.
California Residents. Under California law, California Residents who have an established business relationship with Everlaw may choose to opt out of Everlaw’s disclosure of personal information about them to third parties for direct marketing purposes. If you choose to opt out at any time after granting approval, email email@example.com. Because we value your privacy, we have taken the necessary precautions to be in compliance with the California Online Privacy Protection Act. We therefore will not distribute your personal information to outside parties without your consent. In accordance with California Civil Code Section 1789.3, California resident users are entitled to know that they may file grievances and complaints with the California Department of Consumer Affairs, 400 R Street, STE 1080, Sacramento, CA 95814; or by phone at (916) 445-1254 or (800) 952-5210; or by email to firstname.lastname@example.org.
Links to Third-Party Websites
We may place links on the Everlaw Service, including the Everlaw Blog. When you click on a link to a third-party website from our website, your activity and use on the linked website is governed by that website’s policies, not by those of Everlaw. We encourage you to review their privacy and user policies.
Our Policy Toward Children
We are also in compliance with the requirements of COPPA, the Children’s Online Privacy Protection Act. The Everlaw Service is not directed to individuals under 13. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us at email@example.com. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete such information. Please note, if you are under the age of 13, you may not use our website, products, or services.