Privacy Policy

Last updated: 18th January 2022

Sprintbase Ltd operates https://sprintbase.online (the “Site”). This page informs you of our policies regarding the collection, use and disclosure of Personal Information we receive from users of the Site.

We use your Personal Information only for providing and improving the Site. We do not distribute, sell or share with any 3rd party any personally identifiable information we hold about you. By using the Site, you agree to the collection and use of information in accordance with this policy.

Information Collection And Use

While using our Site, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you. Personally identifiable information may include, but is not limited to your name, email address and avatar picture (“Personal Information”).

Marketing

We use SendInBlue as our marketing platform. If you choose to subscribe to our newsletter, you acknowledge that your information will be transferred to SendInBlue for processing. Learn more about SendInBlue’s privacy practices here.

Opting Out

You have the right, at any time, to ask us to remove all personally identifiable information that we hold about you on the system. If you do this, we will remove your user account and associated personal data, but be aware that this information is required to access the system, so removing it will prevent you from accessing any data or services provided.

You also have the right, at any time, to opt in or out of any or all of the following via your profile page:

1. Marketing emails - unsubscribing from marketing emails will not affect in any way your access to the Site;
2. Sprint analytics - these are performance metrics displayed for the team and individual members within a sprint;
3. Comment notification emails - whether the system should send you an email notification when another user comments on one of your sprint notes;
4. Feedback notification emails - whether the system should send you an email notification when anyone provides feedback on one of your sprint notes.

Log Data

Like many site operators, we collect information that your browser sends whenever you visit our Site (“Log Data”).

Log Data may include information such as your computer’s Internet Protocol (“IP”) address, browser type, browser version, the pages of our Site that you visit, the time and date of your visit, the time spent on those pages and other statistics.

In addition, we use the following third party services to collect, monitor and analyze this data in order to assist us to identify application issues:

1. Sentry
2. Application Insights

Data Retention

We guarantee to retain your sprint data for at least one year after the completion of your subscription. In the case where multiple people are subscribed, the retention period will be based on the subscription date for the owning account.

After one year of inactivity, we reserve the right to remove your sprint data from the system. If we receive an authorized request to remove sprint data at any point either during or after the retention period has elapsed, we will remove all the data requested.

Your login will not be removed from the system at any point unless either:

1. an explicit request is sent to the support team; or
2. you chose to decline the data protection policy which is accessible from the profile page

Google & Facebook

We provide the option for you to use either your Google or Facebook profile photo as your personal avatar with the site. We do not store, use or share any personal information from these providers and only access your profile photo if you choose to authenticate with either 3rd party provider. You do not have to use these services and can change your Sprintbase avatar at any time within the site.

Cookies

Cookies are files with small amounts of data, which may include an anonymous unique identifier. Cookies are sent to your browser from a web site and stored on your computer’s hard drive.

Like many sites, we use “cookies” to collect information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Site.

Security

1. Authentication and Encryption:
   1. All users of the service are authenticated using an industry-standard mechanism which uses AES 256 hashing algorithms;
   2. All transactional requests to retrieve, add, remove or change data within a sprint are validated using a secure token using AES 256 hashing algorithms which prevents spoofing or unauthorized access;
   3. The service requires strong passwords, and validates the strength of every password before it can be used.
2. Data Transmission:
   1. All data passed between the user’s web browser and the Sprintbase servers is encrypted using SSL (Secure Socket Layer) and HTTPS (TLS 1.2 and AES 256);
   2. All uploaded images and documents are scanned for viruses and if any are found, the file is rejected;
   3. The service implements best-practice Anti-Xss (Cross-Site-Scripting) validation ensuring that none of the input fields are vulnerable to script injections.
3. Data Storage:
   1. All documents and images uploaded to the service are retained in geographically redundant storage which is AES 256 encrypted at rest;
   2. Each customer’s data is held in a dedicated area of storage with access restricted to authenticated and authorized users only.
4. Database:
   1. No user text is ever part of any Database query. All data access happens through proven industry standard ORM (Object Relational Mapping) model abstractions which prevents the use of SQL Injection techniques;
   2. Access to the database is secured so that only connections from the service are valid and all connections are authenticated and encrypted. No external connections can be made to the database;

The security of your Personal Information is important to us, but please remember that no method of transmission over the Internet, or method of electronic storage, is 100% secure. While we strive to use best-practice to protect your Personal Information, we cannot guarantee its absolute security.

Changes To This Privacy Policy

This Privacy Policy is effective as of 1st May 2018 and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.

We reserve the right to update or change our Privacy Policy at any time and you should check this Privacy Policy periodically. Your continued use of the Service after we post any modifications to the Privacy Policy on this page will constitute your acknowledgment of the modifications and your consent to abide and be bound by the modified Privacy Policy.

If we make any material changes to this Privacy Policy, we will notify you either through the email address you have provided us, or by placing a prominent notice on our website.

Contact Us

If you have any questions about this Privacy Policy, please contact us.

Terms of Service

Last updated: 18th January 2022

Please read these Terms of Service (“Terms”, “Terms and Conditions”, “Terms of Service”) carefully before using the https://sprintbase.online website (the “Service”) operated by Sprintbase Ltd (“us”, “we”, or “our”).

By accessing or using the Service you agree to be bound by these Terms. If you disagree with any part of the terms then you may not access the Service.

Accounts

When you create an account with us, you must provide us information that is accurate, complete, and current at all times. Failure to do so constitutes a breach of the Terms, which may result in immediate termination of your account on our Service.

You are responsible for safeguarding the password that you use to access the Service and for any activities or actions under your password, whether your password is with our Service or a third-party service.

You agree not to disclose your password to any third party. You must notify us immediately upon becoming aware of any breach of security or unauthorized use of your account.

You may not use as a username the name of another person or entity or that is not lawfully available for use, a name or trademark that is subject to any rights of another person or entity other than you without appropriate authorization, or a name that is otherwise offensive, vulgar or obscene. You expressly agree that we cannot be held liable for any loss or damage arising out of any misrepresentations you make in this regard.

In the case where access to our Service is being provided by or paid for by a third party, we reserve the right, at their request, to terminate your account.

Links To Other Websites

Our Service may contain links to third-party websites or services that are not owned or controlled by Sprintbase Ltd.

Sprintbase Ltd has no control over, and assumes no responsibility for, the content, privacy policies, or practices of any third party websites or services. You further acknowledge and agree that Sprintbase Ltd shall not be responsible or liable, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with use of or reliance on any such content, goods or services available on or through any such websites or services.

We strongly advise you to read the terms of service and privacy policies of any third-party websites or services that you visit.

The Customer shall not:

1. except as may be allowed by any applicable law which is incapable of exclusion by agreement between the parties and except to the extent expressly permitted under this agreement:
   1. attempt to copy, modify, duplicate, create derivative works from, frame, mirror, republish, download, display, transmit, or distribute all or any portion of the Software and/or Documentation (as applicable) in any form or media or by any means; or
   2. attempt to de-compile, reverse compile, disassemble, reverse engineer or otherwise reduce to human-perceivable form all or any part of the Software; or
2. access all or any part of the Services and Documentation in order to build a product or service which competes with the Services and/or the Documentation; or
3. use the Services and/or Documentation to provide services to third parties except the Authorized Users; or
4. license, sell, rent, lease, transfer, assign, distribute, display, disclose, or otherwise commercially exploit, or otherwise make the Services and/or Documentation available to any third party except the Authorized Users, or
5. attempt to obtain, or assist third parties in obtaining, unauthorized access to the Services and/or Documentation; and
   1. the Customer shall use all reasonable endeavours to prevent any unauthorized access to, or use of, the Services and/or the Documentation and, in the event of any such unauthorized access or use, promptly notify the Supplier; and
   2. the rights provided are granted to the Customer only, and shall not be considered granted to any subsidiary or holding company of the Customer.

Renewals

There are no automatic renewals within Sprintbase. If you have purchased either an individual or group license, your access to the system will be removed when the expiry date of that license passes. We will not automatically extend or renew licenses - if you wish to extend your access, please contact Sprintbase support.

Payment

You will pay all fees in accordance with each Order, by the due dates and in the currency specified in the Order. If a PO number is required in order for an invoice to be paid, then you must provide such PO number to Sprintbase Ltd by email accounts@sprintbase.io. Other than as expressly set forth in our return policy, all amounts are non-refundable, non-cancelable and non-creditable. You agree that we may bill your credit card or other payment method for renewals, additional users, overages to set limits or scopes of use, expenses, and unpaid fees, as applicable.

Termination

We reserve the right to terminate or suspend your account immediately, without prior notice or liability, for any reason whatsoever, including without limitation if you breach the Terms.

Upon termination, your right to use the Service will immediately cease. If you wish to terminate your account, you may simply discontinue using the Service.

All provisions of the Terms which by their nature should survive termination shall survive termination, including, without limitation, ownership provisions, warranty disclaimers, indemnity and limitations of liability.

Return policy

As part of our commitment to customer satisfaction you may terminate your order under these Terms, for no reason or any reason, by providing notice of termination to us no later than fourteen (14) days after the order has been placed. In the event you terminate your initial Order, at your request (which may be made through your account with us), we will refund you the amount paid under such Order. This termination and refund right applies only to your initial Order and only if you exercise your termination right within the period specified above.

Governing Law

These Terms shall be governed and construed in accordance with the laws of England and Wales, without regard to its conflict of law provisions.

Our failure to enforce any right or provision of these Terms will not be considered a waiver of those rights. If any provision of these Terms is held to be invalid or unenforceable by a court, the remaining provisions of these Terms will remain in effect. These Terms constitute the entire agreement between us regarding our Service, and supersede and replace any prior agreements we might have between us regarding the Service.

Changes

We reserve the right, at our sole discretion, to modify or replace these Terms at any time. If a revision is material we will try to provide at least 15 days notice prior to any new terms taking effect. What constitutes a material change will be determined at our sole discretion.

By continuing to access or use our Service after those revisions become effective, you agree to be bound by the revised terms. If you do not agree to the new terms, you must stop using the service.

Privacy Policy and Cookie Policy

Please refer to our Privacy Policy and Cookies Policy. You agree that they constitute part of these terms. You must read our Privacy Policy and Cookies Policy before you use the Service.

Contact Us

If you have any questions about these Terms, please contact us.