RabbitLoader belongs to Yogi Network, hereinafter referred to as the "Company" or "we". The Company respects your privacy rights and recognizes the importance of protecting the Personal Data (as defined below) provided by you.
The data controller for the processing of personal data through the website RabbitLoader.com (the "Website") is Yogi Network and can be contacted at:
Address: 418 Jawpur Road, Dum Dum, Kolkata, West Bengal, INDIA 700074
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC - the GDPR - is the European law that regulates the data protection processing operations performed through the Website.
Terms used in this document:
We Process all personal data in accordance with GDPR principles, as follows:
If you are located in California, and/or (as applicable) to the extent you are a "consumer" as defined under the California Consumer Privacy Act as amended (CCPA) and RabbitLoader is a "business" as defined under CCPA, following would be applicable for you. Subject to the provisions of the CCPA, you have the right to request in the manner provided herein:
For any other questions please email to firstname.lastname@example.org
We respond to all such requests within a reasonable timeframe in accordance with applicable data protection laws. Also by writing to us, you agree to receive communication from us, which may include, seeking information from you in order to verify you to be the consumer from whom we have collected the Personal Data and any other information as reasonably required to enable us to honor your request.
The type of data and information we collect and use about you are explained in the following sections.
When the Visitors of our Website sign-up for a RabbitLoader account, we collect their email, their IP address.
The legal ground for this Processing is the performance of a contract, in accordance with Art. 6 (1) b GDPR.
We Process the Personal Data for taking the necessary actions to offer our Customers the Company's products (e.g. for the proper running of our Web services and of our performance optimization service, to connect our servers to our users/customers servers, where the users website needing optimization are hosted, for maintenance and for building appropriate tools for our clients, etc.), pursuant to Art. 6 (1) b GDPR, for the performance of a contract and Art. 6 (1) f GDPR, on the basis of our legitimate interest.
From the Users of our WordPress plugins and from those who use our API tools, we process the following Personal Data: name and surname, identification data, email, processed images and CDN traffic data, CSS, JS, HTML codes, plugins, themes & tools being used by the website.
From the Customers of web-optimization service, we process the following Personal Data: name and surname, identification data, email, domain name.
We also process data regarding the browser, IP address, timestamp, IP location and also operating system when you access RabbitLoader or any web site that is owned by RabbitLoader.
All the information that is so collected is used for secure logging & website data analytics and preventing fraud.
The Personal Data is also processed for offering support to Customers, at their request, pursuant to Art. 6 (1) (b) GDPR for the performance of a contract and to Art. 6 (1) (f) GDPR, on the basis of our legitimate interest. In order to help our Customers, we need to use their Personal Data for user identification, for debugging reasons and in order to communicate with the Customers that need assistance. For this purpose, we use a helpdesk & live chat software for helping the Users of our RabbitLoader services. This feature is made by a Third Party service provider we use for customer support. Through this feature we gather the following Personal Data: name, e-mail address, other information provided by clients during the support operations.
The Personal Data Processed for the above scopes consists of: name, e-mail address, domain name and other information provided by the Customer.
We send emails to inform our Users about new features, service changes, and interruptions of our service, possible errors or bugs. These messages are an important part of our communication with our Users.
The Company may, but is not obliged, to send you strictly service-related announcements on rare occasions, when it is necessary to do so. For example, if our service is temporarily suspended for maintenance, we might send you an e-mail.
The legal basis for this Processing is the performance of the contract (consisting of the Website and Services Terms & Conditions) according to Art. 6 (1) (b) GDPR and our legitimate interest to organize the requests (Art. 6 (1) (f) GDPR).
Generally, you may not opt-out of these communications since they are not promotional in nature. If you do not wish to receive them, you may have the option to deactivate your account.
We also Process Personal Data when we communicate with our blog readers and give them the opportunity to express certain points of view/ questions. In this regard, we are using the services of Third-party for hosting our blog.
For this scope, the following data may be Processed: name and surname (if available), profile picture (if available), comment content. The legal basis for this Processing lays in the performance of our Website's Terms and Conditions (Art. 6 (1) letter (b) GDPR), and in our legitimate interest to communicate, interact and receive feedback from you (Art. 6 (1) letter (f) GDPR).
For keeping our accounting records and complying with accountability and fiscal legislation, we collect your name, address, purchased services and payment data. The legal basis for this Processing is the performance of the contract (consisting of the Website and Services Terms & Conditions) according to Art. 6 (1) (b) GDPR and our legitimate interest to organize our accounting records (Art. 6 (1) (f) GDPR).
We will never sell your data and share your data for marketing purposes or for any purpose.
The data that we collect from you is stored in Singapore and USA and will be processed by staff operating inside India who work for us or for one of our suppliers. Our staff may be engaged in, among other things, the fulfillment of your order and the provision of support services. Your website data will be kept until it is no longer required for the purpose of its collection.
We will keep your website data saved during using of RabbitLoader services for maximum 90 days after you have cancelled your account as a backup measure in case you want to come back. There are cases when we remove this data much faster if we do usual maintenance work to save disk space. Your account is created once you sign up for our services and add your domain on the Console page afterwards. However, we keep the name & email of the user on our email list until the user is unsubscribed from the list.
Data added by you, such as domains you have added under your account can be deleted whenever you like. If you wish to remove your personally identifiable information stored with us, you can do it yourself either by visiting the profile page under My Account or by sending an email to us at email@example.com. A details instructions is available here to follow if you wish to delete your data stored with us - https://rabbitloader.com/kb/deleting-profile-and-data/
Please note that when we receive such request either upon your action, or via other channels such as support email, your personally identifiable information is either deleted or anonymized. If not deleted, data is anonymized when necessary for legitimate business or legal purposes, such as security, fraud and abuse prevention, or financial record-keeping.
Services providers: We may employ third party companies and individuals to perform service-related activities. These Third Parties may access your Personal Data only to perform these tasks on our behalf and are compelled not to disclose or use it for any other purpose.
Also, where these recipients qualify as data processors, they will be contractually bound to respect the same obligations in what regards the protection of Personal Data as that incumbent to us and shall implement adequate technical and organizational measures for the protection of Personal Data, at least at the same level as those implemented by the data controller.
Third parties: Your Personal Data may be provided to governmental and regulatory agencies (e.g. tax authorities), courts or other governmental authorities, in accordance with the provisions of the applicable legislation and in line with art. 6 (1) (c) GDPR, as well as to external consultants acting as data controllers (e.g. lawyers, accountants, auditors, etc.), based on art. 6 (1) (f) GDPR.
We may transfer your Personal Data abroad, both to countries located within the EU/EEA and to countries outside EU/EEA.
For some of these countries located outside EU/EEA, the transfer of data is recognized by the European Commission as ensuring an adequate level of protection for the Personal Data, in accordance with art. 45 GDPR.
In what regards the recipients located in other countries, by executing Data Transfer Agreements based on Model Contractual Clauses (Commission Implementing Decision (EU) 2021/914 of 4 June 2021 on standard contractual clauses for the transfer of personal data to third countries), in accordance with art. 46 (5) GDPR or by using other adequate means for the transfer of Personal Data, we ensured that all such recipients offer an adequate level of protection for the Personal Data and that adequate technical and organizational measures have been implemented for the protection of Personal Data against unlawful destruction, loss, alteration or unauthorized disclosure.
The Personal Data provided by you to us is only stored for as long as it is required to perform the respective purpose for which you have transmitted your data, or inasmuch as it is required for conformity with statutory or official requirements.
Your Personal Data for taking the necessary actions to offer Customers the Company's products are kept by us for additional 3 years as of the termination of our contractual relation.
As regards your website data saved during using of RabbitLoader services, we will keep this data for maximum 90 days after you have cancelled your account as a backup measure in case you want to come back. There are cases when we remove this data much faster if we do usual maintenance work to save disk space.
We also keep your Personal Data for the duration of our contractual relation for providing you support services and for the purpose of offering you the possibility to formulate your requests to the Company or regarding the Company's products.
For commercial communications transmitted by electronic means, we keep your Personal Data until the moment of transmission of the communication or until you withdraw your consent, in case the request for transmission of commercial communications concerned recurrent communications.
We keep your Personal Data in relation to blogging activities during the existence of the blog or until the deletion of the comment by you.
We have taken appropriate technical and organizational measures to guarantee data security, in particular to protect your Personal Data against access by Third parties, as well as accidental or intentional modification, loss or destruction.
The Personal Data are kept in safe conditions in accessible electronic format, using the authentication systems of the internal domain, access rights for each User for the allocated resources and in printed format.
The Company protects the privacy and integrity of the information it collects by employing appropriate administrative protocols, technical safeguards, and physical security controls, designed to limit access, detect and prevent the unauthorized access, improper disclosure, alteration, or destruction of the information under its control. The Company transmits the information used by its external service providers for the specific outsourced operations listed above, across public and private networks via recognized encryption technologies, such as by using Secure Sockets Layer (SSL) software, which encrypts the information you input.
Pursuant to the legal requirements established by GDPR, Data Subjects have specific legal rights relating to the personal data we collect from them, as follows:
The Company has a ZERO TOLERANCE policy for Internet fraud or any attempt to access or acquire Customer or other information on its Website via illegal or surreptitious means. The Company works with local, national, and international fraud investigation agencies and employs a variety of electronic and other means to discourage, detect, and intercept fraudulent activities.
The Company's Website is not intended for or directed to persons under the age of 16. The Company does not buy or sell products or services from or to children. Any person who provides their information to the Company through the Company's Website attests that they are 18 years of age or older.
If we become aware that a child under the age of 18 has provided us with personally identifiable data, we will delete such information from our servers/databases.
Data subject's use of the Website after such changes have been made constitutes his agreement to such changes.
Last Updated: This document was last updated on Fri Dec 01 2023.
This Data Processing Addendum ("DPA") is concluded between you ("Customer") and RabbitLoader ("Company") and it regulates the data processing activities performed within your use of RabbitLoader Services. Unless otherwise defined in this DPA or in other applicable agreements (i.e. Terms & Conditions - the "Agreement"), all capitalized terms used in this DPA will have the meaning given to them in Section 2 of this DPA.
This DPA applies to the processing operations performed on Customer data for the provision of RabbitLoader Services, as detailed in Appendix 2 below. In this context, RabbitLoader will act as a data processor to Customer.
This DPA serves as an amendment to the Terms and Conditions - the Agreement.
In this DPA the bolded terms which are not otherwise defined shall have the meaning described to them below:
comply with all obligations incumbent upon the data processors, as provided by the GDPR and the Relevant Data Protection Legislation;
comply with the documented Customer's instructions, in particular without limitation those instructions which are necessary to ensure the Customer is in compliance with the GDPR and the Relevant Data Protection Legislation;
process the Personal Data solely in order to perform its obligations under the T&C for provision of the Services, only pursuant to the terms and conditions of this Agreement and/or in accordance with the instructions of the Customer, except where RabbitLoader is required to have a specific conduct pursuant to GDPR or the Relevant Data Protection Legislation. In such a case, RabbitLoader shall inform the Customer of the relevant legal requirement before Processing unless the relevant law prohibits such notification on important grounds of public interest;
promptly inform the Customer i) of its inability to comply with the provisions of this DPA and/or ii) if, in its opinion, an instruction of the Customer infringes the GDPR or any other Relevant Data Protection Legislation; and
Any notification related to protection of Personal Data under this DPA shall be send to: firstname.lastname@example.org
RabbitLoader shall preserve the security and confidentiality of the Personal Data and implement all adequate measures to ensure the level of security of the Customer's Personal Data are appropriate.
The Company undertakes to implement all reasonably necessary and appropriate technical and organizational measures using generally accepted technology to protect the Personal Data it processes under the T&C for providing the Services and this DPA against unauthorized or accidental access, alteration, transmission, disclosure, deletion or destruction.
RabbitLoader shall review and adapt such measures regularly to comply with the state of the art and applicable regulations, namely security measures necessary to ensure the conservation and integrity of the Personal Data processed during the performance of the Agreement (for instance to secure the access to computers, to install antivirus, to perform regular backups on removable media and to increase the employees and suppliers' awareness to security measures);
Without limiting the generality of the foregoing, the Company shall comply with the following obligations and shall ensure that its employees and/or its suppliers / Partners will also comply with them:
RabbitLoader shall process the Personal Data only in accordance with the Customer's instructions and to the extent such processing is necessary to carry out the Company's obligations in connection with the performance of the Services;
RabbitLoader will not use the Personal Data for any other purposes, nor will retain this data for any longer than required by the Customer;
RabbitLoader will use personnel who: (i) has a need to process the Personal Data in order to fulfill the Company's obligations in relation to the Services, (ii) has entered into confidentiality agreement; (iii) has received adequate training regarding the protection of Personal Data and (iv) has been informed of any special data protection requirements arising from this DPA and of the limitation of the use of the Personal Data for specific purposes as instructed;
The Personal Data shall not be disclosed to any third party, whether individual or legal person, public or private entity without prior approval of the Customer;
RabbitLoader shall not sell, assign, rent and more generally transfer the Personal Data for any reason without the prior written approval of the Customer;
RabbitLoader shall not make copies or duplicate of the Personal Data without the prior written consent of the Customer, unless such copies or duplicates are necessary for the fulfillment of its obligations in relation to the Services.
The Company shall notify the Customer of any Personal Data Breach without undue delay and in writing after it becomes aware of such Personal Data Breach. Such notification shall at least contain the following information:
the nature of the Personal Data Breach including where possible, the data categories and approximate number of Data Subjects concerned and the categories and approximate number of personal data records concerned;
the name and contact details of the contact point where additional information can be obtained;
a description of the likely consequences of the Personal Data Breach;
a description of the measures taken or proposed to be taken to address the Personal Data Breach, including, where appropriate, measures to mitigate its possible adverse effects.
Where, and in so far as, it is not possible to provide the relevant information at the same time, the information may be provided in phases as soon as possible.
The Company also undertakes to provide the Customer with reasonable assistance and co-operation to notify the Personal Data Breach to the competent Data Protection Authority and to communicate such Personal Data Breach to the Data Subjects, in compliance with Articles 33 and 34 of the GDPR and any Relevant Data Protection Legislation.
The Company shall design and implement procedures for managing and reporting such Personal Data Breach to the Controller.
RabbitLoader shall provide the Controller, taking into account the nature of the Processing, with reasonable assistance and co-operation, to allow the Customer to respond (i) to requests presented by Data Subjects for exercising their rights, or (ii) to requests of the competent Data Protection Authorities in relation with the Processing of Personal Data. In particular, the Company shall implement appropriate technical and organizational measures in order to promptly satisfy, within 5 working days, any request for information from the Customer.
RabbitLoader may only grant access to, correct, delete, block, restrict the Processing of, or communicate to the Data Subject the Personal Data processed on behalf of the Customer in a structured, commonly used and machine-readable format, when instructed to do so by the Controller.
If a Data Subject would apply directly a request or a complaint to the Company, RabbitLoader shall forward this request or complaint to the Customer without undue delay, at the contact email provided by the Customer.
RabbitLoader may disclose, assign, or otherwise communicate Personal Data to any subcontractor (whether located within the EU or outside the EU) when necessary for providing the Services for the Customer.
The Customer gives its consent for RabbitLoader to disclose, assign, or otherwise communicate Personal Data to its subcontractors.
The Company shall impose on its subcontractor by way of a contract or other legal act, the same legal requirements as the Company itself undertakes under the DPA, in particular the obligation to provide sufficient guarantees in relation with the Processing by implementing appropriate technical and organizational measures. Where the subcontractor fails to fulfil its data protection obligations, the Company shall remain fully liable towards the Controller for the performance of that subcontractor's obligations.
RabbitLoader may transfer Personal Data abroad, both to countries located within the EU/EEA and to countries outside EU/EEA.
In what regards the recipients located in other countries, by executing Data Transfer Agreements based on Model Contractual Clauses (Commission Implementing Decision (EU) 2021/914 of 4 June 2021 on standard contractual clauses for the transfer of personal data to third countries), in accordance with art. 46 (5) GDPR or by using other adequate means for the transfer of Personal Data, the Company ensures that all such recipients offer an adequate level of protection for the Personal Data and that adequate technical and organizational measures have been implemented for the protection of Personal Data against unlawful destruction, loss, alteration or unauthorized disclosure.
The Customer undertakes to comply to its obligations as Controller under GDPR. The Customer shall ensure that the Data Subjects have consented to any disclosure of Personal Data to the Company. Also, the Customer shall provide on request all justification for each transmission of such Personal Data and its decisions regarding Processing of such Personal Data on its behalf.
Under a prior written notice sent to the Company, the Customer may request to perform an audit of the technical and organizational measures implemented by the Customer in order to verify whether the Company complies with the provisions of this Agreement.
Any issues, errors or irregularities that are identified, and brought to the Company's attention, will be promptly remedied by the Company without delay. The Customer undertakes to comply with any confidentiality provisions, policies and/or rules the Company may notify to the Customer in the context of the audit. The Company will assist the Controller with any data protection audits or controls enforced by a Data Protection Authority or other competent public authority if these audits or controls concern data Processing within the scope of the DPA.
During the execution of the Agreement, the Company shall implement adequate technical and organizational measures to comply with data retention periods applicable to Customer's Personal Data processed under the Agreement where requested by the Customer.
This Agreement shall automatically terminate upon the termination of the Services. The Company shall continue to process the Personal Data for an additional period of 90 days after termination. During this period, the Company shall keep a copy of the Customer's data for security purposes as back up.
Processing of these data by the Company is considered to be compliant to Customer's instructions.
The Company shall erase all Personal Data processed on behalf of the Customer for providing RabbitLoader not later than 90 days following expiry or termination, subject however to any regulatory obligations concerning the retention of the Personal Data applicable to the Company. In such a case the Company shall inform the Customer about such obligations.
BY ADHERING TO THE PROVISIONS OF THE AGREEMENT, the terms of this DPA are also deemed accepted by the Controller and will regulate the data processing activities performed for the scope of the Agreement.
Category/ies of Personal Data:- Name and surname, e-mail address, domain name, IP, chat logs, support requests, server logs: connections, authentications, access, errors, timestamp, IP location and also operating system when you access RabbitLoader services or any web site that is owned by RabbitLoader, address, purchased services and payment data. - Data stored and processed by the Customer as: source code, WordPress database, site backups, and folders and files in server directories, CDN etc.
Category/ies of Data Subjects:- Customers and users of the Customer services.
Category/ies of Personal Data:- Name and surname, e-mail address, images to be processed, IP, timestamp, IP location and also operating system when you access RabbitLoader Image Optimizer or any web site that is owned by RabbitLoader, address, purchased services and payment data.
Category/ies of Data Subjects:- Customers
Last Updated: This document was last updated on Fri Dec 01 2023.