2.1. Personlige data

Personlige data er enhver information, der vedrører et "dataemne" og kan bruges til dette formål

identificere dataemnet direkte eller indirekte.

2.2. Personal data processed by Unbabel

Community (Editors, Evaluators and Annotators): Unbabel uses Personal Data to connect each editor, evaluator and annotator (“Community”) with the tasks they are more likely to achieve a better end result, including to monitor the usability of our platform during the provision of such tasks. Unbabel may use their Personal Data to communicate with its Community if there is an inaccuracy or complaint related to an assigned translated work. Unbabel may also require our Community’s payment details to perform and register payment over work provided on the platform. The following Community Personal Data is collected by Unbabel: – Email address – First name – Last name – Country – Birthdate – Language skills – Clickstream and access times

Clickstream og adgangstider bruges af Unbabel til at udarbejde generelle statistikker om brugen af platformen og overholdelse af Servicevilkår. Til dette formål sammenkæder vi disse automatisk indsamlede data med andre personlige data, såsom for- og efternavn og e-mailadresse.

Prospects: Unbabel uses Personal Data to provide information or demos about our products and services to potential clients (“Prospects”), to communicate with them and answer to their requests as well as to keep them updated about such products and services,  by means of periodical emails or messages. For the above purpose, Unbabel collects the following Personal Data from the Prospects (related to individuals):

• Efternavn
• Stillingsbetegnelse og afdeling
• Firmanavn
• Selskabets postadresse
• Professionel e-mailadresse
• Professionelt telefonnummer
• URL'er til virksomhedens websted

Clients: In order to provide reporting, e-mail communications and billing to its
clients, Unbabel collects the following Personal Data from its Clients’ accounts
(related to individuals):

• E-mailadresse
• Fornavn
• Efternavn
• IP-adresse
• Land/by
• Faktureringsoplysninger (i tilfælde af individuelle kunder)
• Skatteydernummer (for individuelle kunder)

Clickstream, URL-henvisning og adgangstidspunkter for kundernes agenter bruges af Unbabel til at udarbejde generelle statistikker om brugen af platformen. Disse oplysninger vil ikke blive brugt til at identificere nogen enkeltperson, da de gemmes og visualiseres i et samlet, af-identificeret format.

Unbabel fortsætter med pseudonymiseringen via et softwareværktøj kaldet "Eraser" af personlige data, som måtte være indeholdt i de originale værker, der skal oversættes. Denne pseudonymisering finder sted før videregivelse af data til vores fællesskab. Når de oversatte værker er modtaget tilbage fra Fællesskabet, genindsættes personlige data af Unbabel med henblik på sikker overførsel til kunden. Herefter slettes personlige data permanent fra Unbabels systemer. Når en oversættelse anvendes til omskoling af maskinlæringsmaskiner, omskoles dataene i et anonymiseret format.

Sources: All Personal Data processed by Unbabel regarding its Community, Prospects or  Clients is either contributed/uploaded by them or, regarding Prospects, collected by our  search technology while scanning the web or through market research surveys.

Purposes: Unbabel will collect and use Personal Data solely for fulfilling the above specified purposes and for ancillary purposes of the same.Personal Data should not be  further processed in a manner that is incompatible with the purposes that governed the  processing, and, to the extent necessary for those purposes, it should be accurate, complete,  and up-to-date. Unbabel does not sell any Personal Data.

Legal basis for the processing: Unbabel processes the Personal Data of its Community  either to perform their contractual relationship (or taking steps before entering into a  contract) or to pursue its legitimate interest of ensuring the quality of assigned translated  work.Unbabel processes the Personal Data concerning its Prospects either based upon their  consent or relying in its legitimate interest to communicate news or updates on its products  and services, without prejudice to their right to object at any time to processing of Personal  Data for marketing purposes. We promptly honor such opt-out requests.

Endelig behandler Unbabel de personoplysninger, der er relateret til sine kunder i henhold til deres kontraktlige forhold (eller tager skridt før indgåelse af en kontrakt) eller for at opnå sin legitime interesse i at levere en førsteklasses service, nemlig at besvare forespørgsler, sende administrative oplysninger eller for at yde kundeservice.

Hvis du ikke giver os alle de personlige data nævnt ovenfor, vil vi muligvis ikke være i stand til at indgå eller udføre en kontrakt med dig.

For at understøtte leveringen af ​​vores tjenester er Unbabel afhængig af tjenesteudbydere. Enhver tjenesteudbyder, der er engageret af Unbabel, og som kan have adgang til eller behandle data, der kan indeholde personoplysninger, betragtes som en databehandler. Selv om Unbabels oversættelsespipelinen er designet under hensyntagen til privatlivets fred og sikkerhedsforanstaltninger, foretager Unbabel stadig en sikkerheds- og privatlivskontrol af behandleres praksis, før der indgås en aftale med dem.

Nedenfor følger en liste over vores nuværende processorer:

• Amazon Web Services – Cloud service provider – United States
• ChurnZero – Customer success management – United States
• Cloudflare – Content distribution, security services and DNS services – United States
• Databricks – Store data from several Unbabel microservices – United States
• DeepL – Neural Machine Translation Service – Germany
• DocuSign – Contract manager – United States
• Fullstory – Support services – United States
• Google Cloud – Cloud service provider – United States
• Gong – Call recording software – United States
• Hubspot – Marketing and analytics services – United States
• Hotjar – Survey – Behavioural Analytics and Feedback – Malta
• Intercom – Editor’s contact manager – United States
• Logz.io – Infrastructure and security monitoring – United States
• Microsoft Azure – Cloud computing services provider / machine translation – United States
• Mine Privacy Ops – Data inventory and mapping, Record of Processing Activities (ROPA) – Israel
• MongoDB – Cloud management services – United States
• Open AI – Machine translation and other AI applications – United States
• Payoneer – Cloud-based payment services – United States
• Paypal – Cloud-based payment services – United States
• Pusher – Notification manager – United Kingdom
• Salesforce – Client relationship manager – United States
• Stripe – Cloud-based payment services – United States
• Unbabel, Lda – Service provider – United States
• Zendesk – Integration manager – United States

Contractual safeguards & due diligence for our Processors: Any processor and subprocessor used by Unbabel are put under a rigorous scrutiny to assess their security, confidentiality and privacy policies, as well as the adoption of adequate safeguards. We require all our Processors to have signed a DPA with us, similar to the DPA that our Clients sign with us, including but not limited to the requirements to:

• behandle personlige data som defineret på deres DPA
• begrænse dataadgang til kun betroede og kontraktligt forpligtede medarbejdere for at sikre databeskyttelse og datasikkerhed
• at uddanne det personale, der har adgang til personlige data, i sager vedrørende databeskyttelse og privatlivets fred
• at implementere processer, der tager hensyn til privatlivets fred i alle deres data behandlingsaktiviteter
• at informere Unbabel om ethvert faktisk eller potentielt brud på datasikkerheden
• at samarbejde med databeskyttelsesmyndigheder eller registeransvarlige, når de bliver spurgt

Unbabel videregiver kun personlige data til serviceudbydere, når videregivelsen er absolut nødvendig for at levere de tjenester, som vores kunder anmoder om. Unbabel vil ikke sælge nogen form for personlige data.

Ikke desto mindre kan vi under begrænsede og signalerede omstændigheder videregive personlige data til serviceudbydere til markedsføringsformål. Vi underkaster overførslen af et forudgående samtykke fra den registrereder, eller anerkender i det mindste, at den registrerede til enhver tid har ret til at gøre indsigelse mod behandling af personlige data til markedsføringsformål.

Legal reasons: Unbabel may disclose Personal Data to comply with lawful requests, subpoenas, search warrants or orders by public authorities, including to meet national  security or law enforcement requirements. Unbabel may also disclose Personal Data in order  to address a violation of the law or to exercise its legal rights or respond to a legal claim.

Unbabel giver de registrerede mulighed for at få adgang til og berigtige deres personlige data og også for at gøre indsigelse mod og begrænse behandlingen af deres personlige data i deres brugerprofil. Hvis du ønsker at anmode om oplysninger om de personlige data, som Unbabel har om dig, uden at du har adgang til vores platform, skal du følge nedenstående procedure:

• Request data access, rectification, objection or restriction Send us an email from the email upon which you created your Unbabel account to data-requests@stagingunbabel.wpengine.com with subject ‘Data access/rectification/objection/restriction request’, specifying your request. Please note that if you object to or restrict the processing of data that we absolutely need to manage your account, we may have to suspend/block your account. Also note that, according to applicable data protection regulations, the right of objection or restriction are subject to certain limitations, which we will take into account to assess the legitimacy of your request.
• Verify your identity We will send you an email to the address you used to register your account with some steps to verify your identity.
• Data access/rectification/objection/restriction Once we confirm your identity we will proceed with the access/rectification/objection/restriction to/of your Personal Data.
• Opt-out If you no longer wish to receive our newsletter and/or promotional communications, you may opt-out of receiving them by following the instructions included in each newsletter or communication or by visiting “unsubscribe”. After we receive your request, we will send you an email message to confirm that you have been unsubscribed.

For at opretholde og forbedre servicekontinuiteten og -kvaliteten slettes data ved opsigelse af kontoen eller efter udtrykkelig anmodning enten på vores platform eller via e-mail, forudsat at og i det omfang en sådan sletning ikke forhindrer Unbabel eller den registrerede i at overholde deres juridiske eller kontraktmæssige forpligtelser. Hvis du vil have os til at slette dine data uden at få adgang til vores platform, skal du følge nedenstående procedure:

• Request data deletion Send us an email from the email you shared with us to data-requests@stagingunbabel.wpengine.com with subject ‘Data deletion request’.
• Verify your identity We will send you an email to the address you used to register your account with some steps to verify your identity.
• Data deletion Once we confirm your identity and we confirm that the requested deletion is not subject to any legal or contractual limitation or exception, we will proceed insofar with the deletion of your Personal Data.

I overensstemmelse med gældende databeskyttelsesregler giver Unbabel de registrerede personer mulighed for at eksportere deres data via vores platform eller efter udtrykkelig anmodning. Hvis du ønsker at eksportere alle de personlig data, som Unbabel har fra dig, skal du følge nedenstående procedure:

• Request data export Send us an email from the email upon which you created your Unbabel account to data-requests@stagingunbabel.wpengine.com with subject ‘Data export request’.
• Verify your identity We will send you an email to the address you used to register your account with some steps to verify your identity.
• Data export Once we confirm your identity, we will export all the Personal Data we have from you and send it by email, in a structured, commonly used and machine-readable format.

I afsnittet nedenfor kan du finde en oversigt over, hvordan vi håndhæver datasikkerheden på Unbabel.

• Pseudonymization All content passing through Unbabel’s Translation Pipeline from its Clients goes through an automated pseudonymization process which removes Personal Data and restores it before delivery. No Personal Data is shared with Community. Where a translation is used for the retraining of machine learning engines, data is retrained in an anonymized format.
• Access control All access to Unbabel’s products and services is encrypted and protected by firewall. All access credentials are segregated by work-group areas, provided to staff on a need-to-know basis, and audited based on internal security heuristics.
• Two factor authentication Access to administration applications are secured by 2FA on top of standard user account authentication.
• Audits and external validation Unbabel applies internal security policies to increase penetration barriers, from digital to physical, and regularly performs information security audits by third-party vendors to validate their compliance with best practices procedures and performance.
• Encryption Data are encrypted in transit and at rest. More details on this process can be provided on request.
• NDA and security training Both all our employees and Community members are bound by NDA’s and subject to a continuous security awareness training.

Ved databrud forstås et brud på Unbabels sikkerhed, der fører til utilsigtet eller ulovlig ødelæggelse, tab, ændring, uautoriseret videregivelse af eller adgang til personlige data, der overføres, lagres eller på anden måde behandles på Unbabels systemer. Vi betragter ikke brud på personlige data som et ethvert mislykket forsøg eller aktivitet, der ikke kompromitterer datasikkerheden, som mislykkede log-in-forsøg, pings, portscanninger, denial of service-angreb eller andre angreb på vores systemer.

I tilfælde af et brud på personlige data, der sandsynligvis vil medføre en høj risiko for fysiske personers rettigheder og frihedsrettigheder, forpligter Unbabel sig til at underrette alle registrerede uden unødig forsinkelse efter opdagelsen af hændelsen. Unbabel forpligter sig også til at underrette Databeskyttelsesautoritet uden unødig forsinkelse og, hvis det er muligt, senest 72 timer efter at have fået kendskab til en overtrædelse, hvis en overtrædelse kan medføre en risiko for fysiske personers rettigheder og frihedsrettigheder. Endelig skal Unbabel omgående yde Controlleren rimeligt samarbejde og bistand i forbindelse med brud på datasikkerheden i overensstemmelse med juridiske og kontraktmæssige forpligtelser.

Når din personlige data overføres uden for EØS, sikrer vi en tilsvarende grad af beskyttelse ved at sikre, at mindst en af følgende sikkerhedsforanstaltninger er implementeret:

• We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission. For further details, see European Commission: Adequacy of the protection of personal data in non-EU countries.
• Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe. For further details, see European Commission: Model contracts for the transfer of personal data to third countries.

Unbabel har en Databeskyttelsesleder (DPO), som (i) overvåger databehandlingens overensstemmelse med gældende standarder, (ii) er kontaktpunkt for de registrerede for at få afklaret spørgsmål vedrørende Unbabels behandling af dine data, (iii) samarbejder med Databeskyttelsesautoritet, (iv) yder rådgivning om Unbabels forpligtelser vedrørende privatlivets fred og databeskyttelse.

If you have any inquiries or complaints about our handling of your personal data or about  our privacy practices generally, please contact us at: dpo@unbabel.com

I overensstemmelse med EU-U.S. DPF, forpligter Unbabel sig til at løse DPF-principrelaterede  klager over vores indsamling og brug af dine personlige oplysninger. EU-personer med  forespørgsler eller klager vedrørende vores håndtering af personlige data modtaget i henhold til  EU-U.S. DPF skal først kontakte Unbabels Databeskyttelsesleder.