ESL’s Update to Columns- Privacy Policy

ESL’s Update to Columns- Privacy Policy

ESL Ltd.

ESL’s Update to Columns (“U2C”) – Privacy Policy*

Privacy Policy

[last update 5 August 2024*]

*The U2C was modified by adding a new optional feature — the ability to create instructions using an AI tool (provided by a third party, as detailed in the license terms). Accordingly, we updated the license terms and the privacy policy, to reflect the modification and the term for its use (by users who choose to use it).

 

This privacy policy explains what personal information Publisher (or “We”) receives and collects when using the U2C, how and for what purposes Publisher uses or transfers such information to third parties.

The U2C includes a plugin to ChatGPT 4o for business, a SAAS (Software As A Service) provided by Open AI LLC. (“Open AI”), as more detailed at: https://openai.com/business/ (“AI Services”). The use of the AI Services is subject to Open AI’s ‘Business Terms’ published at: https://openai.com/policies/business-terms/, and to Open AI’s ‘Enterprises Policy’ published at: https://openai.com/enterprise-privacy/)

Information Received and Collected

Customer’s Administrative Contact Information. To enable us set accounts Administrative Contact of Customer will be asked to provide us with: name, role, e-mail address (for invoices and administrative contacts), phone number and name of Customer.

Customer’s and Customer’s End User Information.

We collect (through API) –

Customers’ data: ‘Company’, ‘account ID’, ‘Monday Domain’, Monday Num Of Users (i.e. number of Customer’s users using the U2C), total number of usages, monthly number of usage, license tier, subscription period (provided by Monday).

In relation to AI Services BoardID, Columns array – columnId, columnTitle, columnType, instructions (‘prompts’), instructions’ outputs and data processed/generated by instructions’  outputs.

Customer’s end users’ data – Installation Date,  User Name, User e-mail.

Data Used by End Users through the U2C-API. We do not collect any values and/or information (save instructions/’prompts’) entered by users into the U2C.
If files (DOC. or PDF) are chosen as values sources, the files will be temporarily stored for automatic values search and extraction and immediately thereafter deleted (i.e. once values are searched and/or extracted from a file the file is deleted and will not be stored or otherwise processed).

Financial Data. All payment will be conducted through a qualified third-party payments service provider (and subject to such third-party payments service provider’s privacy policy and service terms) therefore we do not collet any financial data from customers including personal financial data.

Storage and Security

All information received and collected will be stored on servers protected by security measures.

In addition, we store the following data encrypted (in rest and in transit):

End users’: username, user e-mail.

Customers’: Monday Domain, Company.

We examine the information held by us periodically and whenever We find excess information, We destroy it.

How We Use and With Whom We May Share Your Information

We use or may use all the information We receive and collect: (a) to operate, support and improve the U2C; (b) for technical issues; (c) to assure security (including for investigating suspicious activity); (d) in connection with receiving payments and collecting them; and (e) to create aggregated, statistical or other anonymized data for product betterment and development, and publications in relation to the U2C.

We do not share the information with third parties, other than with our Affiliates and with our service providers solely for the provision of their services to us and subject to their undertaking to keep such information confidential. When using the AI Services, the following data is shared with the AI Services (in addition to Customer Data – instructions, instructions outputs and data processed or generated from instructions outputs): BoardID, Columns array – columnId, columnTitle, columnType.

The use of the AI Services is subject to Open AI’s ‘Business Terms’ published at: https://openai.com/policies/business-terms/, and to Open AI’s ‘Enterprises Policy’ published at: https://openai.com/enterprise-privacy/)

 

We may collect, use, and share your information if We have a good-faith belief that it is necessary to: (i) comply with applicable law, regulations, legal proceedings, debt collection, orders or instructions of competent authorities (ii) detect, investigate, prevent, and address fraud and other illegal activity, security, or technical issues; (iii) protect the rights, property, and safety of Publisher, other users or others; (iv) investigate, prevent, address and dealing with security and cyber incidents; (v) legal disputes or proceedings that We (or any of our affiliates) are involved with; or (vi) use it as part of a reorganization, sale of shares or investment activity in US and close to entering into any of the aforementioned needs.

Right of Access

Under the Protection of Privacy Act (1981), the Protection of Privacy Regulations (Conditions for Access to Data and Procedures for Appeal on a Denial of an Access Request) 1981 and other related regulation, any individual is entitled, by himself or through an authorized proxy acting on his behalf, to access information pertaining to him that is contained in a data base, and may ask the owner of the database to amend update or delete (subject to various exceptions) any information that he finds to be inaccurate, incomplete, unclear or non-updated. Refusal from the database owner to such request may be appealed to court in accordance with the above regulations.

Changes to This Privacy Policy

We may change this policy from time to time, and if We do, We will provide a prior notice (unless mandatory law or regulation requires otherwise, or unless such change is in your favor). If you continue to use the Service after those changes are in effect, you agree to the revised policy.