1. Objective:

This Privacy Statement articulates the privacy and data protection principles followed by Timidlly under Timidlly India Private Limited (“Timidlly”, “we”, “us”, or “our”) with respect to the personal information of its customers, business partners, contractors, prospects, and vendors whose personal information are processed by us. (“Data Subjects”). This Privacy Statement explains how we collect, store, share and use (together, "process") your personal information, your rights and how to contact us. This Privacy Policy includes Timidlly’s Privacy Policy Statement and the Privacy Shield Notice.

2. Scope of this Privacy Statement:

This Privacy Statement applies to personal information processed by us on our websites (including www.timidlly.com & timidlly.in owned and monitored by Timidlly). By accessing our websites, purchasing our products or services, or sharing any personal information in the course of business, you agree to this Privacy Policy in addition to any other agreements that you might have entered with us. In the event that such agreements contain terms that are in conflict with this Privacy Policy, the terms of those agreements shall prevail. If you access our website and avail of our services on behalf of a company (such as your employer) or other legal entity, you represent and warrant that you have the authority to bind that company or other legal entity to this Privacy Policy.

Timidlly may provide links to third-party websites and applications for advertisements. This Privacy Policy does not apply to any third-party websites, services or applications, even if they are accessible through our websites. Timidlly does not control those sites or their privacy practices, which may differ from our privacy practices. We do not endorse or make any representations about third-party websites and applications. The personal information you choose to provide to or that is collected by these third parties is not covered by our Privacy Statement. We encourage you to review the privacy statement or policy of any website before submitting your personal information.

Our websites are not directed at nor targeted at children. Because of the nature of our business, our services are not designed to appeal to minors. We do not knowingly attempt to solicit or receive any information from anyone under the age of 13. No one who has not reached the age of 13 may use the websites unless supervised by an adult. By accessing this website you represent and warrant that you are 13 years of age or older. If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us immediately.

Timidlly will not be liable for any unsolicited information provided by you. You consent to Timidlly using such information as per Timidlly’s Privacy Statement.

3. Personal information collected by Timidlly:

We may collect personal information such as your First Name, Last Name, E-mail Address, Job Title, Organization Name, Country, City, Phone Number, IP addresses, any other contact information, details of financial transactions and payment, product and service selections, and other things that identify you.

We collect personal information from you at several different points, including but not limited to the following:

when we correspond with you as a customer or prospective customer;

when we correspond with you as a business partner or prospective business partner;

when you visit our website or use the Platform;

when you register as an end-user of our services and an account is created for you;

when you contact us for help;

when you sign-up for our newsletter;

when you attend our customer conferences or webinars; and

When the site sends us error reports or application analytics data.

When you provide information that enables us to respond to your request for products or services, we will, wherever permissible by relevant laws, collect, use and disclose this information to third parties for the purposes described in this Privacy Statement.

When you provide us your mobile phone number, you consent to the use of your mobile phone number for the purposes identified in this Privacy Statement. If you choose to refrain from receiving any text notifications from us on your mobile, we will not be using your mobile number for such purposes unless required to meet legal requirements or legitimate business purposes.

4. How Timidlly uses your Personal Information:

The personal information we collect may be used to:

provide information and deliver products and services as requested by you;

provide you with customer support to address your queries and requirements, and process requests for products and services;

perform research and analysis about your use of, or interest in, our products, services, or content, or products, services or content offered by other third parties;

communicate with you via e-mail, postal mail, telephone or mobile devices about products or services that may be of interest to you either from us, or other third parties;

develop and display content and advertisements tailored to your interests on our site and other third party websites;

provide subscription related services and information;

perform client communication, service, billing and administration;

conduct data analysis;

assess web site performance and usage analysis;

maintain leads;

run marketing or promotional campaigns and create brand awareness;

provide better services and generate demand;

post testimonials from clients;

request feedback from you regarding our services;

market products and services based on legitimate business interest under the applicable law;

conduct processing necessary to fulfil other contractual obligations for the individual;

verify your eligibility and deliver prizes in connection with promotions, contests, and sweepstakes;

Enforce our terms, conditions and policies for business purposes, legal, and contractual reasons.

Manage our business, and perform functions as otherwise described to you at the time of collection.

The legal basis may differ depending on applicable local laws, but generally we consider that our legitimate interests justify the processing; we find such interests to be justified considering that the data is limited to browsing activities related to what is considered business or professional related (our website does not offer any content directed to individual consumers as well as any content which might be used for any inferences about your private life habits or interests), we provide easy opt-out and limit the retention of data. The data that we may receive directly from you is completely voluntary and at your option. Where consent is required specifically, we will obtain consent before processing.

5. Sharing of personal information with the third parties:

We only share information with your consent, to comply with laws, to provide you with services, to protect your rights, or to fulfil business and contractual obligations. Timidlly does not share personal information about you with affiliates, partners, service providers, group entities and non-affiliated companies except: (a) to provide products or services you’ve requested; (b) when we have your permission: or (c) under the following circumstances:

We may share your data with third party vendors, service providers, contractors or agents who perform services for us or on our behalf and require access to such information to do that work. Such parties provide hosting and maintenance services, virtual infrastructure, payment processing, data analysis, customer service, marketing services, and other services to us.

We may provide the information to trusted entities who work on behalf of or with Timidlly under strict confidentiality agreements. These entities may use your personal information to help us communicate with you for legitimate business purposes. However, these companies do not have any independent right to further share or disseminate this information.

We may share information with statutory authorities, government institutions, law enforcement agencies or other bodies where required for compliance with legal requirements.

We may use the information to respond to subpoenas, court orders, or legal process, or to establish or exercise our legal rights or defend against legal claims.

We may share information where we believe it is necessary in order to investigate, prevent, or take action against any illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, or as otherwise required by law.

We may share information where we believe it is necessary in order to protect or enforce Timidlly’s rights, usage terms, and protect the security or integrity of our products and services.

We may share your data with any parent company, subsidiaries, joint ventures, other entities under common control, or third-party acquirers.

We may share information about you with a potential acquirer or merger after ensuring such entity offers equivalent level of protection for personal data.

We may share your information with our business partners to offer you certain products, services or promotions.

Please note that these third parties may be in other countries where the laws on processing personal information may be less stringent than in your country. Unless described in this Policy, we do not share, sell, rent or trade any of your information with third parties for their promotional purposes.

6. Authenticity:

Timidlly shall not be responsible for the authenticity of the personal information supplied to it by its service providers, whose duty it is to ensure that the information provided by it or its employees is authentic.

7. Potential for Other Users to Contact You

To the extent that a given application supports personal messaging functionality between and among end-users, you may receive personal messages from other end users. You can disable this functionality by using the unsubscribe and other disabling instructions in the given application.

8. Data Protection and Confidentiality:

Timidlly has implemented reasonable and adequate physical, technical and administrative security measures to protect personal information from loss, misuse, alteration or destruction.

Timidlly discloses information to third parties only for legitimate purposes such as our service providers and agents who are bound by strict confidentiality agreements to maintain the confidentiality of personal information and may not use the information for any unauthorized purpose. Also, if our websites contains links to other sites, Timidlly is not responsible for the security practices or the content of such sites.

Timidlly will take reasonable steps to ensure that all dealings in Personal Information, shall:

Be processed fairly & lawfully.

Be obtained only with the consent of the information provider.

Be collected, only when the information is collected for a lawful purpose connected with a function or activity of Timidlly; and the collection of the sensitive personal data or information is considered necessary for that purpose.

Be available for review by the information provider, as and when requested.

Be kept secure against unauthorized or unlawful processing and against accidental loss, destruction or damage, as per the prescribed standards to protect the quality and integrity of your personal information.

Unfortunately, the transmission of information via the internet is not completely secure and, although we will take steps to protect your Personal Information, we cannot guarantee the security of your Personal Information transmitted via the Website; any transmission is therefore at your own risk.

9. Cookies and other technologies

A cookie is a small file, typically of letters and numbers, downloaded to a user's computer or mobile device when the user accesses certain websites. Cookies are then sent back to originating website on each subsequent visit. Cookies are useful because they allow a website to recognise a user’s device. They are used for a wide variety of purposes such as website analytics – counting visitors and their behaviour, targeted advertising, recording user preferences or for authentication. We use cookies to understand site usage and to improve the content and offerings on our websites. You can choose to accept or decline cookies, either by selecting accept or decline in the banner on your first visit (in the latter case we will try to set a cookie to record your preference for future visits), or by changing the settings in your web browser. Most web browsers are set by accept cookies by default, but you can usually modify your browser settings to decline cookies if you prefer. These settings are usually found within the ‘privacy’ section. For mobile devices these may be within the browser app settings.

We use Google Analytics, a service for the marketing analysis of the site provided by Google Inc. Google Analytics uses cookies to allow us to see how you use our site, so we can improve your experience. Google’s ability to use and share information collected by Google Analytics about your visits to the site is restricted by the Google Analytics Terms and the Google Privacy Policy. You can prevent Google Analytics from recognizing you on return visits to the site by disabling cookies in your browser. If you prefer to not have data reported by Google Analytics, you can install the Google Analytics Opt-out Browser Add-on available at https://tools.google.com/dlpage/gaoptout.

We also use “web beacons” or “clear gifs” in our emails and web pages which help us to monitor whether you have opened any newsletters we may have sent to you. A web beacon is one of various techniques used on web pages or email, to unobtrusively (usually invisibly) allow checking that a user has accessed some content. Common uses are email tracking and page tagging for web analytics. We use this information to deliver you a personalized service by ensuring that we send you information that we believe you will find interesting based on the content we know you have engaged with previously.

Our websites may provide advertising links to other, third-party sites and applications. Such third-party sites will have their own data collection practices and policies. Please review the privacy policy for such sites and exercise caution in providing information that personally identifies you. We have no responsibility, access, or control over the data collection practices and policies of such third-party sites and applications. You will use such sites and applications at your own risk and outside of the scope of this Privacy Policy.

10. Your (“Data Subjects”) rights with respect to your personal information:

Your rights may differ depending on applicable data protection local laws. We respect your right to be informed, access, correct, request deletion or request restriction, portability, objection, and rights in relation to automated decision making and profiling, in our usage of your personal information as may be required under applicable law. We also take steps to ensure that the personal information we collect is accurate and up to date. Subject to such laws, you may have the following rights:

You can ask us what personal information we maintain about you.

If your personal information is incorrect or incomplete, you have the right to ask us to update it.

You can also ask us to delete or restrict how we use your personal information, but this right is determined by applicable law and may impact your access to some of our services.

You can have the right to access your personal information.

You may manage your receipt of marketing and non- transactional communications by clicking on the “unsubscribe” link located on the bottom of our marketing emails.

11. Limitations to your rights

Your rights to your Personal Information are not without limits. Access may be denied when:

Denial of access is required or authorized by law Granting access would have a negative impact on other's privacy Doing so protects our rights and properties, or Where the request is frivolous or vexatious

12. Access and rectification

You have a right to request access to your personal information. You may send us a request for access. You also have the right to correct any inaccuracies in your personal information. All of the above relevant rights (including ones as applicable under GDPR, PIPEDA, ARCO Rights, etc. but not limited to) can be exercised by writing to the email listed in the “Contact Us” section of the website.

13. Use and Retention of personal information:

The collection of your personal data will be limited to that which is needed for the purposes as identified in this privacy statement. Unless you consent, or we are required by law, we will only use the personal data for such purposes for which it was collected. If Timidlly will be processing your personal data for another purpose later on, Timidlly will further seek your legal permission or consent; except where the other purpose is compatible with the original purpose.

We will retain your personal information for as long as necessary to provide the services you have requested, or for other essential purposes such as performance of a contract, complying with our legal obligations, resolving disputes, and enforcing our policies.

14. Disclosure of information:

Timidlly may share your personal information with your consent, or where the disclosure is necessary for compliance of a legal obligation or where required by government agencies mandated under law to procure such disclosure. It shall also take steps to ensure that the information transferred to a third party is not further disclosed by it except where permissible under law.

15. International transfer of Personal Information:

Timidlly may transfer your personal information across geographical borders to associated entities or service providers working on our behalf in other countries with different data protection laws that may not be on par with that of the origin country, and by accessing our sites and using our services, you consent to any such transfer of information outside of your country.

16. Additional Rights available in EEA and Switzerland

If you reside in the European Economic Area or Switzerland, you may have the right to exercise additional rights available to you under applicable laws, including:

Right to withdraw consent - When we rely on your consent for processing of your Personal Information, you have the right to withdraw your consent at any time. However, the withdrawal of your consent will not affect the lawfulness of Timidlly’s processing based on consent before your withdrawal.

Right of erasure - You have the right to request erasure of your Personal Information that: (a) is no longer necessary in relation to the purposes for which it was collected or otherwise processed; (b) was collected in relation to processing that you previously consented to, but no longer consent to; or (c) was collected in relation to processing activities to which you object, and there are no overriding legitimate grounds for our processing. Your right to erasure is subject to limitations by relevant Data Protection Laws. Please note, however, that we may need to retain certain information for record keeping purposes, to complete transactions or to comply with our legal obligations, among other things.

Right of access to and rectification of your Personal Information - You have a right to request a copy of your Personal Information stored with us. We will provide a copy to you without undue delay subject to some fee associated with gathering of the information (as permitted by law). We may limit or deny your request if providing you with a copy could adversely affects the rights and freedoms of others. You may also request us to correct or update any inaccurate Personal Information stored by us.

Right to data portability - If we process your Personal Information based on a contract with you or based on your consent, or the processing is carried out by automated means, you may request to receive your Personal Information in a structured, commonly used, and machine-readable format, and to have us transfer your Personal Information directly to another data controller, where technically feasible, unless exercise of this right adversely affects the rights and freedoms of others.

Right to restriction of processing - You have the right to restrict our processing of your Personal Information where one of the following applies:

You contest the accuracy of your Personal Information that we processed. In such instances, we will restrict processing during the period necessary for us to verify the accuracy of your Personal Information. The processing is unlawful and you oppose the erasure of your Personal Information and request the restriction of its use instead. We no longer need your Personal Information for the purposes of the processing, but it is required by you to establish, exercise, or defend legal claims. You have objected to processing, pending the verification of whether the legitimate grounds of Timidlly’s processing override your rights. Restricted Personal Information shall only be processed with your consent or for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest. We will inform you if the restriction is lifted.

Notification of erasure, rectification, and restriction - We will communicate any rectification or erasure of your Personal Information or restriction of processing to each recipient to whom your Personal Information has been disclosed, unless this proves impossible or involves disproportionate effort. We will inform you about those recipients if you request this information. If we have made your Personal Information public and we are required to erase the Personal Information, we will, taking account of available technology and the cost of implementation, take reasonable steps, including technical measures, to inform other parties that are processing your Personal Information that you have requested the erasure of any links to, or copy or replication of your Personal Information.

Right to object to processing - Where the processing of your Personal Information is based on consent, contract, or legitimate interests, you may restrict or object, at any time, to the processing of your Personal Information as permitted by applicable law. We can continue to process your Personal Information if it is necessary for the defense of legal claims, or for any other exceptions permitted by applicable law.

Automated individual decision-making, including profiling - You have the right not to be subject to a decision based solely on automated processing of your Personal Information, including profiling, which produces legal or similarly significant effects on you. There may be exceptions or limitations to this right as defined under relevant Data Protection Laws.

You may also have the right to make a GDPR complaint to the relevant Supervisory Authority. A list of Supervisory Authorities is available here: http://ec.europa.eu/justice/data protection/bodies/authorities/index_en.htm. If you need further assistance regarding your rights, please contact us using the contact information provided below and we will consider your request in accordance with applicable law. In some cases our ability to uphold these rights for you may depend upon our obligations to process personal information for security, safety, fraud prevention reasons, compliance with regulatory or legal requirements, or because processing is necessary to deliver the services you have requested. Where this is the case, we will inform you of specific details in response to your request.

17. Applicable Rights for California Residents:

Timidlly does not currently respond to browser “Do Not Track” (DNT) signals or other mechanisms. Third parties may collect personal data about your online activities over time and across sites when you visit the Site or use the Service.

The California Consumer Privacy Act (“CCPA”) provides residents of California with the following rights regarding their Personal Information -

Right to Opt-Out of the Sale of Personal Information - You have the right to opt-out of the sale of your personal information and you can request Timidlly to stop selling your personal information to third parties.

Right to Know About Personal Information Collected, Used, Disclosed, or Sold - You have the right to request up to twice in a 12-month period that we disclose certain information to you about our collection, use and disclosure of your Personal Information over the past 12 months. Once we receive your request and verify your identity, we will disclose to you the information you request in the following areas: (1) the categories of Personal Information we collected about you; (2) the categories of sources for the Personal Information; (3) our business or commercial purpose for collecting or selling that Personal Information; (4) the categories of third parties with whom we shared that Personal Information; and (5) the specific pieces of Personal Information we collected about you in the preceding 12 months.

Right to Delete Personal Information Collected or Maintained - You have the right to request that we delete any of your Personal Information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your request and verify your identity, we will delete your Personal Information from our records, unless an exception under the CCPA applies. In our response to your request to delete, we will specify the manner in which we have deleted your Personal Information or, if we must deny your deletion request, the basis for this refusal.

Shine the Light Request - You also may have the right to request that we provide you with (a) a list of certain categories of personal information we have disclosed to third parties for their direct marketing purposes during the immediately preceding calendar year and (b) the identity of those third parties.

Right of Non-Discrimination - You also have a right not to receive discriminatory treatment for exercising these privacy rights.

To exercise any of the rights described above, please submit a verifiable consumer request to us by submitting your request at contact@timidlly.com.

California Civil Code Section 1798.83 permits you to request certain information regarding our disclosure of personal data to third parties for the third parties’ direct marketing purposes. If you are a California resident under the age of 18, and a registered user of our Site or Service, California Business and Professions Code Section 22581 permits you to request and obtain removal of content or information you have publicly posted. To make such a request, please send an e-mail with a detailed description of the specific content or information to contact@timidlly.com. Please be aware that such a request does not ensure complete or comprehensive removal of the content or information you have posted and that there may be circumstances in which the law does not require or allow removal even if requested.

Notice to End Users

Most of our services are intended for use by organizations. Where the services are made available to you through an organization (e.g. your employer), that organization is the administrator of the services and is responsible for the accounts and/or service over which it has control. Please direct your data privacy questions to your administrator, as your use of the services is subject to that organization’s policies. We are not responsible for the privacy or security practices of an administrator’s organization, which may be different than this policy. Administrators may be able to: help you exercise the rights described in Point 16 or Point 17 (if applicable); allow you to reset your account password; restrict, suspend or terminate your access to the services; access information in and about your account; access or retain information stored as part of your account; change your information, including profile information associated with your account; and allow you or restrict your ability to edit, restrict, modify or delete information. Please contact your organization or refer to your administrator’s organizational policies for more information.

Effective Date:

This Privacy Statement is effective from 30 Nov 2021 and it supersedes all existing polices on the subject matter.

Changes to this Privacy Statement:

We may change this Policy at any time and the changes will apply to any Personal Information we already hold and to any new Personal Information collected after the change occurs. If we make any material changes to this Policy, we will endeavour to notify you by posting a prominent notice on the Services prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices. Your continued use of our Services after the effective date of this Policy constitutes an acceptance of the amended terms.

The date the Privacy Notice was last updated is identified at the top of the page.

Contact Us

We have designated a Data Protection Officer who is responsible for monitoring Timidlly’s ongoing compliance of this Privacy Policy. If you have any questions about this Privacy Policy, our information practices or concerns of this site, please contact our Data Protection Officer at contact@timidlly.com