SubCentral Security Policy

SubCentral, Inc. ("SubCentral," "we," "us," "our") respects your right to security and values its customer relationships.  This policy (“Security Policy”) describes certain of SubCentral’s security practices with respect to its website and services.  Your continued use of our website or service (as defined in the Terms of Service) indicates that you have read, understand and agree to our Security Policy.

SSL

Our website uses HTTPS for the login portions of the website and all portions of the website which require a logged in user for access (generally, this means portion of the site where personal user information can be sent or received) and our communications to third party services are also over HTTPS (or comparable equivalents). Public portions of the site (which do not require login) may not use HTTPS.  We regularly audit our implementation, including the certificates we serve and the certificate authorities we use.

Third Party Payment Processor

We currently use Stripe Inc. as a third party payment processor to process payments made to us. In connection with the processing of such payments, we do not retain any personally identifiable financial information such as credit card numbers. Rather, all such information is provided directly to Stripe Inc., whose security and privacy policy is set forth here:

https://stripe.com/gb/privacy

Use of Third Party Connected Services

As set forth in our Terms of Service and on the website, SubCentral allows users to connect, embed and utilize certain third party services to provide information (including Financial Information) to SubCentral for use in our service.  Each third party service has its own terms of use, privacy and security policies and your use of any such services is subject to all such third party terms.  Certain third party services require premium accounts for enhanced security or privacy and it is your responsibility as a use of any third party service with respect to the privacy and security of any information shared by utilizing any of those services.  SUBCENTRAL IS NOT AND SHALL NOT BE RESPONSIBLE FOR ANY OF THE ACTS OR OMISSIONS OF USERS OR THIRD PARTIES CONCERNING THE THIRD PARTY CONNECTED SERVICES OR FOR THE AVAILABLIITY OR NON-AVAILABILITY OF ANY THIRD PARTY CONNECTED SERVICES.

To access such third party services, you may need to authenticate, register for or log into such services through the providers directly and/or enable linking between the third party service and SubCentral.  We will collect and use relevant information necessary to enable such access and linking.

SubCentral will generally have information concerning your use of third party services (such as which services are linked and which you are accessing), but will not have direct access to the content in your third party services unless you specifically grant that access.  We may retain, use (including in our Aggregated Information) certain personally non-identifiable information related to the data, content, or links involving such third party services for the purpose of improving the website or our services.

Additional Disclaimer

We use commercially reasonable security technology to comply with the provisions of this security policy.  Although we make reasonable efforts to protect information from unauthorized use or alteration, we cannot and do not guarantee the security of all information and there is always a risk inherent in the electronic communication of information, (including without limitation from use of third party services, unauthorized entry or use, telecommunication issues, hardware or software failure, and other factors).

Your Consent (including Data Processing in United States)

By sharing information with us, you consent that we can use the information collected or submitted as described in this Security Policy.  Our website and services are operated and managed on servers located and operated within the United States. By using and accessing our website and services, residents and citizens of countries and jurisdictions outside of the United States agree and consent to the transfer to and processing of personal information on servers located in the United States, and that the protection of such information may be different than required under the laws of your residence or location.

Changes to Security Policy

We may change or add to this Security Policy so we encourage you to review it periodically.  If we believe any of our Security Policy changes are significant, we may (but are not required to) provide a more prominent notice as we deem appropriate.

Questions and How to Contact Us

If you have any questions, concerns, complaints or suggestions regarding our Security Policy or otherwise need to contact us, please email us at support@subcentral.io.

Last updated: January 15, 2018