Throughout this policy, we use the term “personal information” to describe information that can be associated with a specific person and can be used to identify that person. We do not consider personal information to include information that has been anonymized so that it does not identify a specific user.
When you visit the website or use one of our mobile applications, we collect your IP address, and standard web log information, such as your browser type and the pages you accessed on our website. We also may collect certain geo-location information. If you do not agree to our collection of this information, you may not be able to use our Service.
If you open an account, we collect the following information from you:
We are committed to providing a safe, secure and all around great service. Therefore, before permitting you to use our Service, we may require additional information from you we can use to verify your identity, address or other information or to manage risk and compliance throughout our relationship. We may also obtain information about you from third parties such as identity verification, fraud prevention and similar services.
When you are using the Due Service, we collect information about your account transactions and trust relationships and we may collect information about your computer or other access device for fraud prevention and other similar purposes.
Finally, we may collect additional information from or about you in other ways not specifically described here. For example, we may collect information related to your contact with our customer support team or store results when you respond to a survey.
We do not knowingly solicit or collect information from any individuals under the age of 18.
When you access the website, we, or companies we hire to track how our website is used, may place small data files called “cookies” on your computer.
For example, we send a “session cookie” to your computer any time you log in to your Due account. This type of cookie helps us to recognize you if you visit multiple pages on our site during the same session, so that we don’t need to ask you for your password on each page.
You are free to decline Due cookies if your browser permits, but doing so may interfere with your use of the website.
We store and process your personal information using third party servers located in secure data centers in the United States, This information is protected by physical, electronic and procedural safeguards in compliance with applicable US federal and state regulations. We also use computer safeguards such as firewalls and data encryption, we enforce physical access controls to our office and files, and we authorize access to personal information only for those employees who require it to fulfill their job responsibilities.
We make reasonable efforts to ensure security on our systems. Despite our efforts, we cannot guarantee that personal information may not be accessed, disclosed, altered or destroyed by breach of our administrative, managerial and technical safeguards. Therefore, we urge you to take adequate precautions to protect your personal data as well, including never sharing your Due password with anyone.
If Due learns of a systems security breach, we may attempt to notify you electronically so that you can take appropriate protective steps. By using the Due Service, you agree that Due may communicate with you electronically. Due may post a notice on the website if a security breach occurs. We may also send an email to you at the email address you have provided to us. Depending on where you live, you may have a legal right to receive notice of a security breach in writing. To receive free written notice of a security breach (or to withdraw your consent from receiving electronic notice of a security breach) you should notify us.
Our primary purpose in collecting personal information is to provide you with a safe, smooth, efficient, fun and customized experience. We may use your personal information to:
To process payments on Due, we need to share some of your personal information with the person or company that you are paying or is paying you. Your contact information, date of sign-up, the number of payments you have received and other verification metrics like social graph activity may be provided to users or companies when you transact with, on, or through Due.
We work with vendors to enable them to accept payments from you using Due. In doing so, a vendor may share information about you with us, such as your mobile phone number or Due username, when you attempt to pay that vendor. We use this information to confirm to that vendor that you are a Due customer and that the vendor should enable Due as a form of payment for your purchase.
Regardless, we will not disclose your credit card number or bank account number to anyone you have paid or who has paid you through Due, except with your express permission or if we are required to do so to comply with a subpoena or other legal process.
Due does not share your personal information with third parties for promotional or marketing purposes.
We may share your personal information with:
You can review and update your personal information in your account settings at any time by logging in to your account.
The website may contain links to other sites. Due does not control the information collection of sites that can be reached through links from the website. We encourage our users to be aware when they are leaving the website and to read the privacy statements of any site that collects personally identifiable information.
Like many other websites, we may place small data files on your computer or other device. These data files may be cookies, pixel tags, or other local storage provided by your browser or associated applications. We use these technologies to:
We may use both session and persistent cookies. Session cookies expire and no longer have any effect when you log out of your account or close your browser. Persistent cookies remain on your device until you erase them or they expire. We may tie the information gathered to our users’ personally identifiable information.
Some browsers make it possible for you to signal that you don’t want your internet browsing activity to be tracked. There is currently no consensus on how to best honor these signals, so we don’t respond to “do not track” requests at this time. Declining our cookies may interfere with your use of our Services.
We and our cloud provider protect your information using physical, technical, and administrative security measures to reduce the risks of loss, misuse, unauthorized access, disclosure, and alteration. Safeguards include firewalls and data encryption, physical access controls to the data centers, and information access authorization controls.
When you enter financial information (such as a payment card number or your bank account information) on our Services, we encrypt the transmission of that information using secure socket layer technology (SSL).
To the extent we transmit and store your credit cardholder data, we do so under the most stringent credit card security standard: PCI Compliance Level 1. A PCI-certified auditor verified and awarded us this level of security and compliance.
We work hard to secure your data, but nobody is perfect. If you discover a vulnerability in our Services, we would be grateful for your report and encourage you to let us know immediately. To report a bug, please email firstname.lastname@example.org.