Privacy Policy

Effective date: 2025-09-07

This Privacy Policy explains how Comonad Limited (Company Number: 15713725) ("Comonad", "we", "us"), as the provider of Notiterms, collects, uses, and protects personal information when you use our website and service (Service). We are committed to privacy by design and limit data collection to what is necessary to provide the Service.

  1. Information We Collect
  • Account Information: name, email address, organization name, and authentication data required to create and manage your account.
  • Configuration Data: vendor names, document URLs, alert preferences, and team member assignments that you set in the dashboard.
  • Usage Data: logs and telemetry about how you use the Service (e.g., feature usage, timestamps, device and browser information, approximate location from IP) to maintain security and improve the Service.
  • Communication Data: messages you send to us (e.g., support requests, newsletter sign‑ups) and our correspondence.

We do not require or intentionally collect special categories of personal data. Do not provide sensitive personal data to the Service.

  1. Sources of Information

We collect information directly from you (account creation and dashboard configuration) and automatically through your use of the Service (cookies, telemetry). We may also receive information from our service providers (e.g., payment processors) necessary to complete transactions.

  1. How We Use Information

We use personal information to:

  • Provide, operate, and secure the Service
  • Create and manage accounts and organizations
  • Deliver alerts and notifications you configure
  • Monitor performance, detect fraud and abuse, and troubleshoot issues
  • Improve and develop features, including analytics on de‑identified and aggregate data
  • Communicate with you about updates, security, and essential service messages; with your consent, send marketing communications
  1. Legal Bases (EEA/UK)

Where applicable, we rely on: (a) performance of a contract (to provide the Service), (b) legitimate interests (e.g., security, product improvement), (c) consent (where required, e.g., non‑essential cookies/marketing), and (d) compliance with legal obligations.

  1. Sharing of Information

We share personal information with:

  • Service providers (e.g., hosting, email delivery, analytics, payments) under contract and subject to confidentiality and security obligations
  • Professional advisors (e.g., legal, accounting) under confidentiality
  • Authorities where required by law or to protect rights, safety, and security
  • In connection with a corporate transaction (e.g., merger, acquisition), subject to appropriate safeguards

We do not sell personal information. We do not share personal information with third parties for their own marketing purposes.

  1. International Transfers

We may process and store information in countries other than your own. Where required, we implement appropriate safeguards for international transfers (e.g., Standard Contractual Clauses) and additional measures as necessary.

  1. Data Retention

We retain personal information for as long as necessary to provide the Service and for legitimate business or legal purposes (e.g., accounting, fraud prevention). We apply criteria such as the duration of your subscription, legal requirements, and dispute resolution needs.

  1. Your Rights

Depending on your location, you may have rights to access, correct, delete, or port your personal data, to object to or restrict certain processing, and to withdraw consent. You also have the right to lodge a complaint with your data protection authority. To exercise rights, contact hello@notiterms.com. We may need to verify your identity and your relationship to the organization account.

  1. Security

We implement reasonable technical and organizational measures to protect personal information, including access controls, encryption in transit, and logging. No method is 100% secure. If you suspect unauthorized access, contact us immediately.

  1. Cookies and Similar Technologies

We use essential cookies for authentication and session management. Where required, we ask for consent for non‑essential cookies (e.g., analytics). You can control cookies through your browser settings.

  1. Children

The Service is not directed to children under 16 and we do not knowingly collect personal data from them. If we learn that we have collected such data, we will take steps to delete it.

  1. Subprocessors

We use third‑party providers to deliver the Service. A current list of subprocessors is available on request. We require subprocessors to implement appropriate security and privacy protections.

  1. Changes to This Policy

We may update this Privacy Policy. We will notify you of material changes (e.g., via the dashboard or email) and indicate the effective date. Your continued use after the effective date constitutes acceptance.

  1. Contact Us

Controller and provider: Comonad Limited (Company Number: 15713725), comonad.co.uk. For questions or requests, contact: hello@notiterms.com

Privacy Policy | Notiterms