This privacy and cookie statement was most recently revised on the September 19 2024.
eHour is a product of TE-CON B.V., located at Herengracht 551, 1017 BW Amsterdam, The Netherlands (hereinafter: eHour).
Your privacy and the protection of your personal data are of great importance to us. When processing your personal data, we work per the requirements for the processing of personal data laid down in the General Data Protection Regulation. This means we:
- Clearly specify our purposes before we process your personal data, as set out in this Privacy and cookie statement.
- Store as little personal data as possible and only the data necessary for our purposes.
- Ask for explicit consent for the processing of your personal data, should consent be required.
- Take appropriate security measures to protect your personal data. We also impose these obligations on parties who process personal data on our behalf.
- Respect your rights, such as the right of access, rectification or erasure of your personal data processed by us.
Why we collect information
By using our services (www.ehourapp.com), we obtain various personal data from you. We do this to deliver our services, send you important operational information, contractual reasons, process financial transactions, and legal and regulatory reasons.
Below, for each purpose, it is indicated what information we obtain from you, for what purpose we process this information and how long it will be stored. If you have any questions or want to know exactly what information we store of you, please contact us. Our contact details are mentioned below.
Contact
You can contact us by sending us an email or by using the support button in the application.
For this purpose, we process the following personal data:
- Name
- Email address
- Any information you enter yourself as the content of your message
We use this information in order to be able to handle your request to contact you properly and to perform the contract with you to this end. If you contact us, your personal data will be retained until we are sure that we fully answered and correctly handled your request.
Sending our newsletter
In our newsletter, we will inform you by email about updates in the system, new features and planned maintenance.
For this purpose, we process the following personal data:
- Email address
With your prior consent, your email address will be added to the list of subscribers. We will retain your personal data for as long as you wish to receive the newsletter or until you unsubscribe. Each newsletter contains a link that allows you to unsubscribe at any time.
Providing our services
eHour requires you to register beforehand. After your registration, you can log in to your account via www.ehourapp.com with your email address and password of your choice. You can also choose to log in using your Microsoft or Google account. If you want to know how these parties process your personal data, please read the privacy statement of the platform in question.
For this purpose, we process the following personal data:
- First name and last name
- Email address
- Company name
- Billing address
- Payment details
- Invoice details
- Credit card number or IBAN account
- VAT number when applicable
We need this information because of our agreement with you and to maintain the relationships resulting from this agreement or based on our legitimate interest.
We will retain your username and the personal data you provided. We will retain this data so that you do not have to re-enter it every time you visit our website, to contact you in connection with the execution of the agreement, invoicing and payment, and to provide an overview of the services you have purchased from us.
Data collected by eHour is retained for a maximum period of 1 month after the termination of the contractual relationship. For certain data, there is a legal obligation to retain your data for a longer period (for example because of the legal tax retention period of seven years).
Providing data to third parties
eHour only shares your data with third parties when this is allowed by current legislation. It may happen that we provide your personal information to third parties, because:
- We have engaged them to process certain data on our behalf.
- It is necessary to carry out the agreement with you (e.g., service providers like AWS, Stripe).
- You have given explicit consent for this.
- We have a legitimate interest in this (e.g., improving our services through analytical tools).
- We are legally obliged to do so (e.g., if authorities request data in case of suspected criminal activity).
The parties that process personal data in our or your assignment:
- IT suppliers and service providers
- Cookie service providers (please see the cookie table below)
- Payment service providers
In order to provide this service, eHour may provide your personal data to parties established outside the European Economic Area (EEA). eHour will only do this if there is an adequate level of protection for the processing of personal data. This means, for example, that we use a model agreement from the European Commission or make agreements about the handling of personal data.
With whom do we share your information (data processors)
The following third parties will receive personal information for the purposes described:
Amazon Web Services (AWS)
We use Amazon Web Services to store your data in Ireland. Amazon Web Services does not access or use your content for any purpose. The AWS GDPR Data Processing Addendum with Standard Contractual Clauses (SCC) is part of the Amazon Web Services Service Terms and is available automatically for all customers transferring personal data from the EU to any of the Amazon Web Services regions around the world, including in the US.
Help Scout
We use Help Scout for hosting our knowledge base and managing support tickets. We signed a data processing agreement with Help Scout. When creating a ticket through the widget we share the full name, email address and roles that the user has in eHour with Help Scout. If you want to know how Help Scout process your personal data, please read their privacy statement.
Stripe
We use Stripe as our payment gateway for subscriptions that are paid by credit card or SEPA-transfer. Stripe’s services in Europe are provided by a Stripe affiliate—Stripe Payments Europe Limited (“Stripe Payments Europe”)—an entity located in Ireland and subject to European law. In providing Stripe Services, Stripe Payments Europe transfers personal data to Stripe, Inc. in the US. To ensure the adequate protection of personal data, Stripe uses the European Commission’s Standard Contractual Clauses (“Model Clauses”) to allow for the lawful transfer of such data under the EU Data Directive. These Model Clauses cover all transfers of EU personal data between Stripe Payments Europe and Stripe, Inc., including user data and end-customer cardholder data. To learn more about the Stripe data transfers or to request a copy of their Model Clauses, please contact them at eudatatransfers@stripe.com or read the privacy statement.
Chargebee
We use Chargebee for managing monthly subscriptions. We signed a data processing agreement with Chargebee. When adding billing information to eHour we share the full name, email address, billing details, IBAN, credit card number and VAT number if applicable with Chargebee. If you want to know how Chargebee processes your personal data, please read the privacy statement.
ChartMogul
We use ChartMogul to analyze subscription and billing data, including customer growth and revenue. We have signed a data processing agreement with ChartMogul to ensure GDPR compliance. When analyzing subscription data, we may share the following personal data with ChartMogul:
- Email address
- Subscription details
- Company name
- Billing details (e.g., revenue amounts, currency, and subscription term)
ChartMogul stores data within the European Economic Area (EEA) and ensures compliance with GDPR. For more details, please refer to the ChartMogul privacy policy.
Hotjar
We use Hotjar to better understand how users interact with eHour and to improve the user experience. Hotjar collects data on user behavior, such as clicks, scrolls, and session duration, which helps us identify areas for improvement. Hotjar’s Data Processing Agreement (DPA) is included in their Terms of Service and forms part of our agreement when using their services. The following data may be processed by Hotjar:
- IP address (collected and stored in an anonymized form)
- Device and browser information
- Website usage data (mouse movements, clicks, and scroll behavior)
- Referrer URL NBt Hotjar processes data in the European Economic Area (EEA). For more information, please refer to the Hotjar privacy policy.
MailChimp
We use MailChimp for sending our newsletter, the initial welcoming mails and all (transactional) application-related messages such as forgot password email, reminders, etc. We accepted the data processing agreement from MailChimp. We share the full name and email address of the person who started the initial trial with MailChimp. If you want to know how MailChimp process your personal data, please read the privacy statement.
Where and how do we keep your information
All your data is kept at Amazon Web Services in Ireland. We take appropriate technical and organizational security measures with regard to the processing of personal data to be carried out, against loss or against any form of unlawful processing (such as unauthorized access, corruption, alteration or disclosure of personal data). These measures include the following:
- Encryption of data at rest
- Encrypted data transmission using TLS 1.2 and TLS 1.3
- Encrypted data backups
- Anonymized log files
Cookies
We and third parties use cookies on our application which are saved on your computer. Cookies are small information files that can be automatically stored on or read out from the device (including a PC, tablet or smartphone) of the website’s visitor, while visiting a website. This is done through the web browser on the device. eHour uses cookies for the following purposes:
- To enable the functionality of our website (functional cookies)
- To generate overall statistics and gain insights into the use of our website in order to improve and optimize our website and services (analytical cookies)
These cookies collect the following data from you:
- IP-address
- Cookie-ID
- Website and click behaviour
- Referrer-URL
We use the following cookies:
Type | Name | Cookie; entity | Purpose | Retention period |
---|---|---|---|---|
Functional | remember-me | eHour, The Netherlands | The functional cookie is used to remember your login and is not shared with any third party. | 14 days |
Functional | SESSION | eHour, The Netherlands | The functional cookie is used to identify your session. | Deleted after you quit your browser |
Functional | XSRF-TOKEN | eHour, The Netherlands | Maintain a secure session for you, during your visit. | Deleted after you quit your browser |
Disabling of cookies
You can set your web browser to only accept cookies with your consent. For more information, please consult your browser’s manual. Be aware that disabling cookies will affect the functionality of this and many other websites that you visit.
Removal of cookies
Most cookies have an expiration date. This means that they will automatically expire after a certain period and no longer register any data concerning your visit of the website. Another option is to remove the cookies manually before the expiration date. In order to do this, consult your browser’s manual.
Your rights
You can always contact us if you have any questions regarding our privacy and cookie statement. Besides that, you have the following rights regarding your personal data:
- Right of access: you have the right to see what kind of personal data we processed about you;
- Right of rectification: you have the right to rectify any personal data we have processed about you, if this information is (partially) wrong;
- Right to object: you have the right to object against the processing of your personal data by us, or against direct marketing;
- Right to be forgotten: you can file a request with us to remove any personal data we have processed of you;
- Right to data portability: if technically possible, you have the right to ask us to transfer your processed personal data to a third party;
- Right to restriction of processing: you can file a request with us to (temporarily) restrict the processing of your personal data.
- Right to revoke your consent, when we process your data based on your consent.
You may send a request by sending an email to help@getehour.com. To prevent abuse, we may ask you to provide proper proof of your identity.
We will usually respond to your request within one month. This term can be extended if the request is proven to be complex or tied to a specific right. You will be notified about a possible extension of this term within one month.
Changes to this Privacy Statement
We reserve the right to modify this statement. We recommend that you review this statement regularly so that you remain informed of any changes. Any changes to this privacy statement will be announced via our newsletter.
Complaints
If you would like to file a complaint about our use of your personal data, please send an email with the details of your complaint to help@getehour.com. We will look into it and respond to any complaint we receive.
If you think that we are not helping you correctly, you have the right to file a complaint with the national supervisory authority responsible for the protection of personal data against our processing of your personal data. For the Netherlands, this is the Autoriteit Persoonsgegevens.
Contact Details
eHour (product of TE-CON B.V.)
Herengracht 551
1017 BW AMSTERDAM
The Netherlands
Chamber of Commerce: 54816696