Social Stack and its
affiliates (collectively, “Social Stack”) are committed to protecting your
outlines how Social Stack collects, uses, discloses, and safeguards information
about you. We also describe the choices you have about your information.
was updated and is effective on August 6, 2019. These updates are designed
to make it easier to understand how we use your information, whether you are
browsing our websites or using our Services.
We have made some
information relating to our privacy practices and we have simplified some of
the language. However, we have made no substantive
updates to the manner in which we handle your information. The previous privacy
policy is available here.
1. Our Services
Stack offers a suite of social media management tools (available in Team,
Professional, Enterprise, and other plans) that are accessible via our websites
and mobile applications. These tools allow you to bring together all of your
social media accounts for easy access and management through a single online
portal. Through this portal, you can manage your social media, marketing, and
advertising campaigns; engage with your audiences; schedule and publish
messages; and analyze the results of these activities. Collectively, we refer
to these tools as our “Services”.
collection, use, and management of personal information by the social networks,
including Facebook, Instagram, Twitter, and LinkedIn (collectively, the “Social
Networks”) are governed by their respective privacy policies and terms. When
using Social Networks, you are required to comply with their privacy policies
and terms. We recommend you carefully review their privacy policies and
terms, as Social Stack is not responsible for the Social Networks.
Services also enable you to customize and connect your Social Stack account to
third-party services (“Third-Party Services”), including through apps you can
access in the App Directory or
which may be available to you via our portal/dashboard. The collection of your
information by these third parties is governed by the Third-Party Services’
privacy policies and terms. We recommend you carefully review their privacy
policies and terms, as Social Stack is not responsible for Third-Party
Policy does not apply to AdEspresso Services.
Services are not intended for use by children and should only be accessed by
individuals who are at least 18 years old and are using the Services for
2. What information do we collect?
collect information about you as reasonably necessary for the following
Using our Services
collect the following information when you use our Services:
usage, and support data:
Surveys, events, and marketing information
you choose to participate in our surveys, contests, events (such as webinars
and in-person events), or those in which we are affiliated, or request
information from us about our Services, we may collect information about you
related to the survey, contest, or event; your contact information, such as
your name, email address, telephone number, organization name and address; and
general information about your organization that you choose to provide, such as
annual company revenue, number of employees, and industry.
addition, we may collect information on email open and click rates, including
whether individuals clicked on links, and which web pages are visited after
opening the email.
Social Stack Academy training
you choose to enroll in training offered via Social Stack Academy, we collect
the same information that is required to sign up for the Services (see “Account
information” above), as you will need a Social Stack account to
enroll. Where you undertake training courses with fees or apply for any of our
certifications, we also collect billing and payment information.
Applying for employment
Our careers site collects information you choose
to provide to us when applying for employment, which may include contact
information, education and employment history, credentials, and LinkedIn
Browsing our websites
you browse our websites, we collect information about you as described below,
some of which is collected automatically:
3. How do we use your information?
use your information for the purposes described below:
Providing and securing our Services
Communicating with you
use your contact information where appropriate to send you information about
our Services, events, marketing communications (consistent with your
emails, advertising and website browsing” below), and job
opportunities. We also use email statistics, such as open rates, to assess the
effectiveness of, and to make improvements to our communications.
Improving our websites and applications
use information about you to help us understand usage patterns and other
activities on our websites and applications so that we can diagnose problems
and make improvements, including enhancing usability and security.
4. What are your rights regarding the information about you?
using our Services, you may access, update, or correct most of your Account
information by logging in to your account to edit your profile or organization
you have requests that cannot be carried out by logging in to your account,
such as accessing additional information or deleting information about you,
please email our privacy team.
Please note that we may need to retain certain information about you for as
long as you maintain an account for our Services, to provide you with our
Services, for record keeping purposes, for payment processing, to comply with
our legal and regulatory obligations, to resolve disputes, or to enforce
the applicable terms of service or
other agreement in place between you (or your organization) and Social Stack
(the “Terms of Service”).
to access, correct, or delete your information will be handled within thirty
(30) days unless they are unusually extensive or complex, in which case we will
advise you of the expected timeline for handling your request.
can contact our Support team for other general requests about your account by
your preferred method listed here.
Services retrieve and display Content from Social Networks. Beyond temporary
storage for performance reasons, we do not store Content unless you take
specific action in relation to such Content (such as using our Services to
prepare draft Content for publication on Social Networks). In some cases,
Content may continue to exist on the Social Networks even after you or we
delete it from our Services, and you will need to contact the relevant Social
Network directly if you want it to delete this Content.
Marketing emails, advertising and website browsing
marketing communications, you may opt out of marketing communications sent by Social
Stack by accessing our Preferences
Management page, or by clicking on the unsubscribe link in the
marketing email you receive.
Stack participates in interest-based advertising (where you may have visited
our websites or another website which allows us to display advertising relating
to our Services). The Network Advertising Initiative has developed a tool that
may help you understand which third parties have currently enabled cookies for
your browser and how to opt out of those cookies. For more information and to
opt out of interest-based advertising, you can visit this page.
may also opt out of the collection of aggregated usage data as described above
in “Browsing our websites” by following the steps outlined here.
5. Who has access to your information?
Stack does not rent or sell your information. We restrict access to your
information to authorized employees and we do not share your information with
third parties except in the circumstances explained below.
Employees and Authorized Contractors
employees and authorized contractors may need to access information about you
when they require this to perform their job. For example, a customer support
representative would need access to your account to validate your identity and
respond to your question or request; our email communications team would need
access to your contact information to ensure this information is sent correctly
and any unsubscribe requests are properly managed; and our security staff would
need to review information to investigate attempted denial of service attacks,
fraudulent account activity, or other attempts to compromise the Services.
our employees and contractors are required to agree to maintain the
confidentiality and protect the privacy of your information.
Service Providers, Authorized Resellers, and Partners
will share limited information about you to authorized service providers we use
for marketing services, communicating with you, managing our customer database,
the provision of professional services, and providing and managing the Services
(including hosting data centers, securing our Services, and payment
processing). The third-party service providers we use to help us deliver the
Services are referred to as “sub-processors” and are listed on this page.
you have purchased a service from an authorized reseller or partner, we may
provide information about you to (and may receive information about you from)
the reseller or partner as necessary to support your use of the service you
sharing your information with any of these service providers, resellers and
partners, we ensure they agree to obligations consistent with this Privacy
Policy and any other appropriate confidentiality and security measures, and
only use your information to carry out the Services and your requests.
Social Networks and Third-Party Services
you are using our Services and have chosen to connect your Social Networks to
the Services, or if you authorize a Third-Party Service to access your account,
you are agreeing to provide information about you to the Social Networks and
the Third-Party Services under their respective terms and privacy policies.
your employer or an entity has purchased Services on your behalf, we may
disclose information about you such as your name and email address, and some
usage information including whether a user has logged in to the Service,
frequency of login, time spent using the Services, and enrollment and
completion of Social Stack Academy courses to assist your employer or the
entity in managing its use and maximizing the value of the Services.
we are acquired by or merge with another entity (in which case we will require
involved in a bankruptcy, or if the ownership or control of all or part of our
Services or their assets changes, information about you will be transferred to
Law Enforcement, Government Agencies, and Professional
may need to disclose information about you where we believe that it is
reasonably necessary to comply with a law or regulation, or if we are otherwise
legally required to do so, such as in response to a court order or legal
process, or to establish, protect, or exercise our legal rights or to defend
against legal claims or demands.
addition, we may be required to disclose information about you if we believe it
is necessary to investigate, prevent, or take action: (a) against illegal
activities, fraud, situations involving potential threats to our rights or
property (or to the rights or property of those who use our Services), or to
protect the personal safety of any person; or (b) regarding situations that
involve the security of our Services, abuse of the Services infrastructure, or
the Internet in general (such as voluminous spamming, or denial of service
6. What international data transfers occur at Social Stack?
the General Data Protection Regulation (GDPR) and other data protection laws,
information about you may only be transferred from your region to other regions
if certain requirements are met. For instance, under the GDPR, information
about you may be transferred from the European Economic Area (EEA) to outside
the EEA if adequate data protections are in place. Our Services are managed by Social
Stack’s headquarters in Canada. As the European Commission considers Canada to
be a country which provides adequate data protection, information about you may
be transferred from the EEA to Canada.
Stack also uses third-party service providers, such as managed hosting providers,
credit card processors, and technology partners to provide the software,
networking, infrastructure and other services required to operate the Services.
These third-party providers may process or store personal data on servers
outside of the EEA and Switzerland, including in Canada or the US. We rely on
adequacy (if sent to Canada), the service provider’s registration in the EU-US
Privacy Shield and Swiss-US Privacy Shield (if sent to the US), and/or standard
contractual clauses (if sent to the US or onward to other countries) to ensure
that information about you is lawfully transferred under EU law.
third-party service providers we use to help us deliver the Services are
referred to as “sub-processors” and are listed on this page.
its nature, social media data can be shared with people around the globe. The
Social Networks and Third-Party Services that you choose to integrate with our
Services may collect, store, and process your information from various
locations around the world according to their own terms and privacy policies.
7. How do we safeguard your information?
Stack maintains industry standard security safeguards to protect your
information. This includes ensuring our employees receive appropriate security
and privacy training and guidance so they are aware of the measures they need
to implement to protect your information.
controls are in place to limit access to your information to those who need it
to perform their jobs. For example, information about you may be provided to
our customer support specialists to help you with your requests. Individuals
who are permitted to handle your information must adhere to confidentiality
encrypt data where appropriate to ensure that your information is kept private.
We undertake vendor security and privacy reviews to ensure that vendors follow
our stringent requirements to safeguard your information, and we also enter
into data protection agreements with our vendors. All payment information is
fully encrypted and handled only by PCI certified organizations.
detailed information on our security practices is available in our Trust Center.
8. How long do we retain your information?
retain your information only as long as required to provide the Services
requested by you, for record keeping purposes, to comply with our legal
obligations, resolve disputes, and enforce the terms for the Services.
it is no longer necessary for us to retain information about you, we will
dispose of it in a secure manner or anonymize the information.
9. Social Stack’s roles under the GDPR and UK data
on the situation and the type of data involved, Social Stack may act as a data
controller or a data processor.
Social Stack as a data controller
Stack acts as a data controller when we are:
Legal bases for processing when Social Stack is a data
legal bases for processing information about you include:
Your rights when Social Stack is a data controller
Social Stack is acting as a data controller, we have outlined certain rights in
the section “What are your
rights regarding the information about you?”.
addition, you may have the following rights:
you would like assistance on any of the above requests, please email our privacy team with details of your
request so that we may consider how we can help you.
Social Stack as a data processor
you are using our Services and making decisions about the personal data that is
being processed in the Services (including selecting the Social Network
accounts you wish to connect to the Services, or uploading and using Content),
you are acting as a data controller and Social Stack is acting as a data
are certain obligations under the GDPR that you have as a data controller,
including being responsible for managing Content on the Services. As a data
processor, Social Stack will only access and process Content to provide you
with the Services in accordance with your instructions (which you provide
through the Services), the Terms of Service, the Social Networks’ terms, and
applicable laws. As part of delivering the Services, we may process Content to
further improve the Services, such as enhancing usability and developing new
you, as a data controller, require Social Stack to agree to data protection
requirements under Article 28, GDPR, or under UK data protection laws, Social
Stack makes available a data processing addendum that meets these requirements.
Please email our Privacy team here to
request this document.
you are using the Services as an authorized user of a Social Stack customer
(whether that customer is your employer, another organization, or an
individual), that customer determines its own policies (if any) regarding
storage, access, modification, deletion, sharing, and retention of personal
information and Content, which may apply to your use of the Services. Please check
with that customer about the policies and settings it has in place.
Services, applicable laws, and other factors. We will include a prominent
notice on this website and/or our Services if we make any material changes, but
we encourage you to stay informed by reviewing this policy periodically.
11. How to contact us
you have any questions, concerns or feedback, please email our Privacy team and Privacy
Officer/Data Protection Officer; or send a letter to:
42 Throstle Lane, Middleton
Leeds, LS10 4HE
Attn: Social Stack Privacy Team
we are unable to resolve your concerns, you also have the right to contact your
local data protection authority.