• Conditions of Use
• Dispute resolution process

• PGP Public Key Block

• Fee Agreement

• Terminations

• Anti-spam Policy

• Warranties

• Privacy Policy

• Copyright

• Partnership Agreements

• Affiliate PPC Rules

• GDPR

• Privacy Shield
• Integrations

• Sandbox & Nonprofit Accounts

• You must be 13 years or older to use this Service.

• You must be a human. Accounts registered by “bots” or other automated methods are not permitted.

• You must provide your legal full name, a valid email address, and any other information requested in order to complete the signup process.

• Your login may only be used by one person – a single login shared by multiple people is not permitted.

• You are responsible for maintaining the security of your account and password. We cannot and will not be liable for any loss or damage from your failure to comply with this security obligation.

• You are responsible for all Content posted and activity that occurs under your account (even when Content is posted by others who have access to your account).

• You may not assign your rights under this Agreement without our prior written consent.

• You may not use the Service for any illegal or unauthorized purpose. You must not, in the use of the Service, violate any laws in your jurisdiction (including but not limited to copyright laws).

• We may, but have no obligation to, remove Content and Accounts containing Content that we determine in our sole discretion are unlawful, offensive, threatening, libelous, defamatory, pornographic, obscene or otherwise objectionable or violates any party’s intellectual property. You may not post sexual graphic content on the Service. While we prohibit such conduct and content on the Service, you understand and agree that we cannot be responsible for the content posted on the Service and you nonetheless may be exposed to such materials.

• You must use our system in a manner that is ethical and in conformity with community standards.

• You will respect the privacy of other users (you shall neither intentionally seek data or passwords belonging to other users, nor will you modify files or represent yourself as another user unless explicitly authorized to do so by that user).

• You will respect the legal protection provided by copyright law, trade secret law, or other laws protecting intellectual property.

• You will accept notifications of service changes, commercial email and similar offers presented through the Ontraport system or via email.

• You must not upload, post, host, or transmit unsolicited email, SMSs, or “spam” messages (See Anti-spam Policy).

• You must not modify, adapt or hack the Service or modify another website so as to falsely imply that it is associated with the Service, us, or any other service.

• You must not use any API credentials in any publicly available software or phone application. This specifically refers to, but is not limited to, embedding API usage in a phone App.

• You must not transmit any worms or viruses or any code of a destructive nature.

• This agreement is ‘at-will’, meaning that you can cancel your account at any time and so can we (which we exercise typically only in the case of violations of our spam rules but which we reserve for any reason whatsoever).

• GDPR Authorization to use sub-processors: Ontraport uses sub-processors as a routine part of offering our service. As a Data Controller, you agree to our use of GDPR compliant sub-processors. We maintain a list of sub-processors below for your review.

• GDPR Indemnification: By using Ontraport's software, you agree to indemnify Ontraport for any legal responsibility and against any claims regarding your GDPR compliance. Ontraport attests that we comply with GDPR as a Data Processor but does not and can not ensure your compliance as a Data Controller.

• Learn more about Ontraport’s compliance with GDPR here.

• A valid credit card is required for all accounts.

• The Service is billed in advance on a monthly or annual basis and is non-refundable. There will be no refunds or credits for partial months of service, SMS credits, AI credits, rollover credits, email sends, or email or contact overages. We will not issue upgrade/downgrade refunds or refunds for months unused with an open account. In order to treat everyone equally, no exceptions will be made.

• All fees are exclusive of all taxes, levies or duties imposed by taxing authorities, and you shall be responsible for payment of all such taxes, levies, or duties. Local Sales and/or Use taxes may apply.

• All fees will be collected in United States dollars regardless of your country of origin's currency exchange rate.

• For any upgrade or downgrade in your monthly plan level, the credit card you provided will automatically be charged the new rate on your next billing cycle.

• If you upgrade your annual account during the contract period, the change in annual price will be prorated and charged at that time.

• Downgrading your service may cause the loss of the content, features or capacity of your account. We do not accept any liability for such loss.

• Should your account exceed your current account limit of contacts plus object records with email address fields, user seats or emails, your service plan will either be upgraded automatically to the next most affordable account level or service package, or it will be billed for overages.

• If you send SMS messages through Ontraport, the credit card you provided will automatically be charged a minimum of $10 for that billing cycle. Fees vary based on carrier and location, and you are solely responsible for all SMS usage and the associated fees. Carrier fees can change without notice, and additional carrier fees may apply.
• If you use Ontraport’s Dynamic CMS add-on, the credit card you provided will automatically be charged. Fees vary based on Dynamic CMS levels. If your usage exceeds the total dynamic records displayed/month limits designated for your Dynamic CMS level, you will be automatically upgraded to the next level. If you incur overages on the architect level (our highest plan), we automatically add high performance caching which can be turned off in your account.
  

• We reserve the right at any time to modify or discontinue, temporarily or permanently, the Service (or any part thereof) with or without notice.  Should this occur, no changes, refunds or credits will be made to your service plan.

• Prices of all Services, including but not limited to monthly subscription plan fees to the Service, are subject to change upon 30 days notice from us.

• The service provider may suspend or terminate use of your account if you fail to provide a valid credit card.
• Failure to make timely payments on your account will result in account suspension. While your account and all of its assets will remain operational, the mailer feature will be disabled after 30 days of non-payment. Monthly billing will continue during this period, and any outstanding balance must be settled without the option to dispute associated fees.
  

• Any billing problems or discrepancies must be brought to our attention within thirty (30) days from the date the client is billed. If you do not bring them to our attention within thirty (30) days, you agree that you waive your right to dispute such problems or discrepancies.

• All of your Content will be immediately deleted from the Service upon cancellation. This information can not be recovered once your account is cancelled.

• If you cancel the Service before the end of your current paid up month, your cancellation will take effect immediately and you will not be charged again.

• We have the right to suspend or terminate your account and refuse any and all current or future use of the Service, for any reason at any time. Such termination of the Service will result in the deactivation or deletion of your Account or your access to your Account and the forfeiture and relinquishment of all Content in your Account. We reserve the right to refuse service to anyone for any reason at any time.

• Certain offers allow for a refund of the base account fee if you cancel your account during your refund period (30 days from your sign-up date). If this offer was made available to you, you must first cancel your account, then submit a request for a refund via email to support@ontraport.com. Note that usage fees, including but not limited to email, contact and object record volume charges, user seats, SMS, set-up fees, custom programming, services and consulting fees, are not refundable. Additionally, annual subscriptions are non-refundable regardless of the effective date and are exempt from refund offers.

• You will abide by the U.S. CAN-SPAM Act of 2003 and standards set by the email industry, which state: If it’s unsolicited, it’s spam.
  
• You are only permitted to send email and SMS messages to contacts who have specifically requested to receive content from you.
  
• You may not send SMS messages with content involving topics such as sex, hate, alcohol, firearms or tobacco — also known collectively as SHAFT.
  
• You must obtain explicit consent before sending SMS messages and comply with the TCPA guidelines, Twilio’s Messaging Policy, CTIA Messaging Principles and Best Practices, wireless carrier policies and any guidelines specific to your country of residence.
  
• You may not add email addresses to our service that you rented, purchased, or “scraped.”  This includes a list of opt-in leads or a list of names and emails received from your Chamber of Commerce, etc.
  
• We in no way participate in mass unsolicited emailing or SMS messaging (i.e., spamming), and all Partners are expected to adhere to this policy as well. Violation of this policy will result in the termination of your contract and immediate dismissal from the Partner Program.
  
• We reserve the right to shut down SMS sending, emailing capabilities or your account at will at our discretion or Twilio’s.
  
• No refunds or pending commissions will be provided to anyone whose account is terminated for violating this policy.
  
  

In the context of the ‘Uptime Guarantee,’ we define "Downtime" as a significant, severe failure that results in a total loss of ability to use the Subscription Service, specifically excluding Free Services. This encompasses complete system failures or crashes affecting a major part of the production environment, with no temporary fixes or solutions available.

"Excluded" refers to downtime attributable to factors beyond our reasonable control, such as natural disasters, government actions, or other major unforeseen events. It also includes issues caused by integrating or using the Subscription Service with incompatible hardware or software, disruptions stemming from external telecommunication or internet failures, misuse or damage of the Subscription Service, and periods of maintenance decided by Ontraport.

"Service Uptime" is calculated by subtracting both Excluded and Downtime durations from the total hours in the month, divided by the total operational hours minus Excluded time, then multiplied by 100%.

This Service Uptime Commitment is available for customers on the Enterprise account level. Only the complete months during which the customer has maintained an Enterprise account status will be considered for the Service Level Agreement (SLA) calculations.

Our goal is to achieve a Service Uptime of 99.95% for our Subscription Service each month. Availability will be measured based on our system monitoring software. If Service Uptime falls below 99.95% for two consecutive months, Enterprise account customers are entitled to a credit. This credit is based on the pro-rated fees during the downtime, in excess of the 99.95% goal, over the months where Service Uptime was below the threshold.

To claim this credit, Enterprise customers must formally request it within twenty (20) days after the end of the month in which the 99.95% Service Uptime was not achieved. This request is essential for receiving the SLA credit, which will be applied to the subsequent renewal term's invoice or charge for the Subscription. This uptime commitment does not apply to Free Services.

• We collect the email addresses of those who communicate with us via email, aggregate information on what pages consumers access or visit, approximate location, IP address, and information volunteered by the consumer (such as survey information and/or site registrations).The information we collect is used to improve the content of our web pages and the quality of our service.

• We ask for information such as your name, company name, email address, billing address and credit card information for users of our services.  We use collected information for the following general purposes: products and services provision, billing, identification and authentication, services improvement, contact, and research.
  
• A cookie is a small amount of data, which often includes an anonymous unique identifier, that is sent to your browser from a website’s computer and stored on your computer’s hard drive. Cookies are required to use our service.  We use cookies to record current session information but do not use permanent cookies.
• We use third party vendors and hosting partners to provide the necessary hardware, software, networking, storage and related technology required to run the services provided. Although we own the code, databases and all rights to the application, you retain all rights to your data.

• We may disclose personally identifiable information under special circumstances, such as complying with subpoenas or when your actions violate the Terms of Service.
• Ontraport uses the IP2Location LITE database for IP geolocation.
  

• Ontraport’s use and transfer to any other app of information received from Google APIs will adhere to Google API Services User Data Policy including the Limited Use requirements.

• The Ontraport Calendar system uses Google's APIs to:
  • Read your Google login email address so we can display the account your calendars are synced to.
  • Read the first name and last name of your Google contacts and other contact information that is synced from Google to Ontraport so Ontraport can properly display event guest information and fully populate contact information (if you decide to import Google event attendees as Ontraport contacts).
  • Read your list of Google calendars so you can select individual calendars in Ontraport and so we can track calendar list changes (e.g., deleting a synced Google calendar).
  • Allow you to create, view, update and delete your Google calendar event details, including event guests and RSVP statuses, and keep this information synced between Ontraport and Google.
    

• We may periodically update this policy and will notify you about significant changes in how we treat personal information by sending a notice to the primary email address specified for your account or by placing a prominent notice on our site. This includes the transfer of data in the event Ontraport is acquired by or merged with another company.

• As a general rule, third parties may not use the Ontraport logo unless approved logo artwork is provided by us.
  
• The logo may not be used in any manner that might imply that any non-Ontraport materials, including but not limited to goods, services, websites, or publications, are sponsored, endorsed, licensed by, or affiliated with Ontraport.
• The logo may not be displayed as a primary or prominent feature on any non-Ontraport materials. Companies using the logo pursuant to these guidelines must also display, in the primary and more prominent position, their own logo(s), business name, product names, or other branding.
• The logo may not be imitated or used as a design feature in any manner.

• The logo may not be used in a manner that would disparage Ontraport or its products or services.

• Neither the logo nor any part of the Ontraport name (e.g., Ontra) may be used in any other company name, product name, service name, domain name, website title, publication title, or the like.

• Non-Ontraport materials should not mimic any Ontraport advertising, product packaging, or website design.

• The logo must be used as provided by Ontraport with no changes, including but not limited to changes in the color, proportion, or design, or removal of any words or artwork. The logo may not be animated, morphed, or otherwise distorted in perspective or appearance.

• The logo must stand alone and may not be combined with any other object, including but not limited to other logos, words, graphics, photos, slogans, numbers, design features, or symbols. The logo must never be used to represent the word Ontraport in text, including in a headline, product-name logotype, or body copy.

• The logo must not be incorporated or used in any manner as part of, or in close proximity to another company’s name, domain name, product or service name, logo, trade dress, design, slogan, or other trademarks.

• The look and feel of the Service is copyright ©1999-2016 Ontraport, All rights reserved. You may not duplicate, copy, or reuse any portion of the application.

• Ontraport further reserves the right to object to unfair uses or misuses of its trademarks or other violations of applicable law. For real, don’t mess with the logo or our trademarked name.
  

• The referral program
  The referral program is available to current Ontraport clients, active Certified Experts, active Agency Partners and approved applicants to the Partner Program only.

• Commissions are earned at a rate of 25%, of the paid “package” subscription, to the “last referrer” noted on the customers affiliate link at the time of their first purchase unless otherwise stated in your Agency Partner agreement.
  
• Packages consist of the base level plans listed on ontraport.com/pricing and do not include add-ons, user seats, messages or any other Ontraport products.
• Earned commissions will be approved and paid one week after referred accounts pass their refund period. We have the right to change our refund policy at any time, and, if we do, the commissions will be adjusted accordingly.
• Approved commissions over $100 will be paid out each week on Fridays via Paypal.

• NO COMMISSIONS can be earned on your own account.  No self-referring for the sole purpose of getting a discount.

• The Referrer (Partner) and Referee may not be immediate family members, and must reside at different addresses.

• We will monitor, track and audit referrals submitted for accuracy and to prevent fraud. We reserve the right to clawback paid commission, exclude you from earning commissions and forfeit any partner rewards should we find any errors or agreement violations.

• We will manually add you as the referral partner, per your request, if the client doesn’t sign-up with your affiliate link and all of the following requirements are met:
  • You — the referrer — must make the request within 30 days of the first account payment by the referred account.
  • You must be a current client, active Certified Expert or active Agency Partner.
  • The account owner of the referred account must respond to our inquiry to confirm you referred them.
  • The referred account does not currently credit another partner.

• In order to claim approved commissions you must have a valid Paypal account.

• All unclaimed approved commissions older than six months, will be canceled.

• You can download your 1099 from Paypal for United States taxes.

• By posting a change notice, we may modify any of the terms and conditions within this Agreement at any time and at our sole discretion. If any of the modifications are unacceptable to you, your only recourse is to terminate this Agreement. Continued participation in the program 30 days following the posting will be considered as your acceptance of the change.
  
  

• Affiliates may not bid on Ontraport trademark terms on Google and Bing/Yahoo, including international versions.
  
• There are no trademark restrictions with Ontraport trademarks on Ask, Find What, Facebook, and other pay-per-click search engines.
• Affiliates MAY NOT use www.ontraport.com in the display URL at any PPC search engine or various content network sections. Alternative spellings of our domain name are also not permitted, including but not limited to www.entraport.com, www.ontra-port.com, www.ontraport.net, etc. See direct linking policy below for additional information.
• Affiliates are permitted to use Ontraport trademarks in the URL to the right of the domain in the display URL. Example: www.yoursite.com/ontraport.

• Affiliates may not include "Official Site" or make representations that your advertisement is from Ontraport.

• Affiliates may not bid on Ontraport + "term" on Google and Bing/Yahoo. Example: Ontraport reviews, Ontraport discounts, etc.

• You may bid on manufacturer specific terms, although, some manufacturers have blocked the use of their terms on various search engines without prior permission.

• Ontraport terms include all of the following and any potential misspellings not shown here:
  • ontraport.com
  • www.ontraport
  • ONTRAPORT
  • ONTRApages
  • ONTRAPORT Pages
  • Ontra port
  • Ontra-port
  • Entreport
  • Entraport

• Affiliates may bid on manufacturer specific terms, although some manufacturers have blocked the use of their terms on various search engines without prior permission.

• Direct-to-merchant linking is not permitted on Google and Yahoo/Bing. Affiliates may not use our URL in the display URL on any PPC advertisement.

• Domain misspellings are not allowed in the display URL on any advertisement including but not limited to www.ontraports.com, www.ontraport.net, www.ontra-port.com, etc.

• Affiliates bidding on Ontraport trademarks may not use a landing page that includes advertisements for competitors.

• Geo-targeting is allowed on all search engines as long as policies regarding display URL, competitor terms and trademarks are followed.
• Dayparting is allowed on all search engines as long as policies regarding display URL, competitor terms and trademarks are followed.
• Using geo-targeting and dayparting to avoid enforcement of the Ontraport PPC Policy is strictly prohibited and grounds for immediate removal and reversal of all commissions up to 30 days prior to the date of the PPC violation.
• International geo-targeting is allowed as long as the advertisement is truthful in the Ontraport international policies.
• International affiliates may not use a Ontraport display URL on any search engine, including but not limited to www.ontraport.com, and any related misspellings.

• Truth in advertising: Affiliates are required to be truthful about any advertisement representing Ontraport.
• Do not represent your advertisement as an official or endorsed Ontraport advertisement or site.

• Ontraport reserves the right to exclude any or all of our PPC policy for individual affiliates at our sole discretion.
• Excluded affiliates are required to agree via signed contract to any exclusion permitted herein. Do not assume exclusion via verbal or written communication.
• Affiliates receive one warning and are given 48 business hours to comply with any PPC violations. A second violation will result in termination of the affiliate relationship and may be cause for reversal of past commissions earned up to 30 days prior to the second violation. See below exceptions to this policy.
• Affiliates found using geo-targeting or dayparting features on search engines to avoid enforcement of the Ontraport PPC Policy will be immediately removed from the Ontraport affiliate program, have all commissions reversed up to 30 days prior to the violation date and be immediately reported to the Affiliate Network for investigation.
• Affiliates found in breach of the PPC Policy and Terms of Service regarding competitor terms will be immediately removed from the program, have all commissions reversed up to 30 days and be subject to a $5,000 penalty.
• From time to time, Ontraport may review the PPC policy for changes in the way search engines operate or changes in Ontraport philosophy. Any changes made to the PPC Policy will be announced via the Ontraport Partner Center and posted on the Ontraport legal website. Affiliates are given no less than seven business days to comply with any new PPC terms before a first violation is cited on the affiliate's account.

Violations of the Ontraport PPC Policy may be reported to support@ontraport.com. Please have all applicable proof in your email, including but not limited to screenshots of the ad, geographical location of the ad, URL/network tracking information and the search engine where the ad was found.

This Agreement will be governed by the laws of the United States and the state of California. Any action relating to this Agreement must be brought in the Federal or State courts located in Santa Barbara, California, and you irrevocably consent to the jurisdiction of such courts. You may not assign this Agreement, by operation of law or otherwise, without our prior written consent. Subject to that restriction, this Agreement will be binding on, inure to the benefit of, and enforceable against the parties and their respective successors and assigns. Our failure to enforce your strict performance of any provision of this Agreement will not constitute a waiver of our right to subsequently enforce such provision or any other provision of this Agreement. By submitting this Partner Agreement form, you acknowledge that you have read this agreement and agree to all its terms and conditions. You have independently evaluated this program and are not relying on any representation, guarantee, or statement other than as set forth in this agreement.

GDPR (General Data Protection Regulation) is a new set of rules - effective beginning May 25, 2018 - imposed by the European Union on all organizations worldwide that collect or process data about EU citizens.

It’s a complicated set of regulations, and we are not attorneys so you’ll want to do your own research on GDPR compliance and handle it appropriately for your organization.

This section outlines Ontraport’s compliance with our part of GDPR, and the ways in which we help you comply with your part.

GDPR imbues EU citizens with several new rights regarding their personal data and privacy. Some of them relate to how you manage the data you store in your Ontraport account. These include:

• Right of access: Individuals can ask to see the information you have stored about them. You can honor those requests by exporting their contact data on request and sending it to them.

• Right to recertification: Individuals can ask to have the data you store about them updated. You can honor those requests with forms or by manually updating their data in Ontraport.

• Right to erasure: Individuals can ask to have their data erased. You can honor those requests by deleting their records in Ontraport.

• Right to restrict processing: Individuals can ask you to stop processing their data. When they do, all you’ll be allowed to do with that data is to store it. For simplicity's sake, we’d recommend deleting the data of contacts who exercise this right.

• Right to data portability: Individuals can ask to have their data sent to another Data Controller. You can honor those requests by sending the data via CSV after export from Ontraport.

As a technical services provider who stores the personal information of EU citizens on behalf of Data Controllers, we have certain responsibilities under GDPR which we comply with, including:

• Managing Data Processing - Ontraport has clear documentation on where our data comes from, how it is stored, and where it goes after we get it. Ontraport will only process personal data on instructions from the controller, and inform the controller if it believes said instruction infringes on the GDPR (28.3)

• Accountability and Governance - Ontraport will maintain all applicable PCI-DSS requirements to the extent that we possess, store, process, or transmit cardholder data on behalf of the customer, or to the extent that we could impact the security of the customer's cardholder data environment. As a PCI-compliant handler of sensitive consumer data, Ontraport is subject to — and adheres to — incredibly strict and detailed physical, technical and organizational data management and security policies. Ontraport takes extraordinary steps to secure your data, ensure stability and uptime, manage data backup and disaster recovery, and regularly test security (32.1)

• Authorized Use of Sub-processors - Ontraport uses sub-processors as a routine part of offering our service. It is our responsibility to ensure our subcontractors comply with GDPR, and we will comply with those rules. As a Data Controller, your agreement to our use of sub-processors is part of our legal Terms of Service and required to be an Ontraport user. We maintain a list of sub-processors here for your review: Amazon Web Services, Google, Pendo, UnitedLayer, FullStory, Segmetrics, Nylas, Cloudflare, Atlassian, Zendesk, OpenAI (if you use AI Assistant or Copywriter) and any payment gateway that you connect to your account. (28.2)

• Maintain Records of Processing Activities - Ontraport is unique in the level of detail we record and display to you about data processing activity in your account. Learn more about the automation log here. (30)

• Notification of Breach - Ontraport will comply with the GDPR with respect to any data breach.  (33.2)

If you have any questions regarding Ontraport’s compliance with GDPR, feel free to contact us at gdpr@ontraport.com

Despite the EU Court decision of 2020,  Ontraport continues to comply with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework(s) as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and/or Switzerland to the United States. Ontraport has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern.  To learn more about the Privacy Shield program, and to view our certification, please visit https://privacyshield.gov.

Authorized Use of Sub-processors - Ontraport uses sub-processors as a routine part of offering our service. It is our responsibility to ensure our subcontractors comply with GDPR, and we will comply with those rules. As a Data Controller, your agreement to our use of sub-processors is part of our legal Terms of Service and required to be an Ontraport user. We maintain a list of sub-processors here for your review: We maintain a list of sub-processors here for your review: Amazon Web Services, Google, Pendo, UnitedLayer, FullStory, Segmetrics, Nylas, Cloudflare, Atlassian, Zendesk, OpenAI (if you use AI Assistant or Copywriter) and any payment gateway that you connect to your account. (28.2)

In response to the EU Court decision of 2020 which invalidated Privacy Shield as an acceptable basis for the transfer of customer data outside the EU, Ontraport has adopted and integrated the following Data Processing Agreement and Standard Contractual Clauses into our legal Terms of Service.

By continuing to use Ontraport services, both the client and Ontraport agree to the terms outlined in that document which can be found here.

Ontraport has designated our legal department to oversee compliance with the EU and Swiss Privacy Shield program and the GDPR. This team shall review and approve any material changes to this program as necessary. Any questions, concerns, or comments regarding this Policy also may be directed to gdpr@ontraport.com. 

Ontraport will maintain, monitor, test, and upgrade information security policies, practices, and systems to assist in protecting the personal data that it collects. Ontraport personnel will receive training, as applicable, to effectively implement this Policy.

Ontraport provides various products and services to its customers, some of whom are EU citizens. Ontraport collects personal data from individuals when they purchase our products, fill out a form on our website, log in to their account, complete surveys, request information or otherwise communicate with us. For example, Ontraport customers may choose to seek live support or post to a message board.

The personal data that we collect may vary based on the customer’s interaction with our website and request for our services. Generally, Ontraport collects contact information, including names, email and physical addresses, phone numbers, company names and more. We also collect payment information including credit card information. Customers have the option to log into their accounts online and to request service online, including through a live support option; we will collect information that they choose to provide to us through these portals.

When Ontraport customers or non-customers use our services or website online, we will collect their IP address and browser type, along with contact information and any other information that the person chooses to submit through our website.

The information that we collect from customers is used for selling the products and services they buy from us, managing transactions, reporting, invoicing, renewals, and other operations related to providing services and products to our customers.

Ontraport also serves its customers as a service provider. In our capacity as a service provider, we will receive, store, and/or process personal data. In such cases, we are acting as a data processor and will process the personal information on behalf of and under the direction of our partners and/or agents. The information that we collect from our customers in this capacity is used for managing transactions, reporting, invoicing, renewals, and other operations related to providing services to our customers.

Ontraport uses the personal data that we collect from our customers for the following business purposes, without limitation:

• maintaining and supporting our products, delivering and providing the requested products/services, and complying with our contractual obligations (including managing transactions, reporting, invoices, renewals, and other operations related to providing services to a customer);

• satisfying governmental reporting, tax, and other requirements (e.g., import/export);

• storing and processing data in computer databases and servers located in the United States;

• verifying identity (e.g., for online access to accounts);

• as requested by our customers;

• for other business-related
  for other business-related purposes permitted or required under applicable local law and regulation;

• and as otherwise required by law.

Ontraport does not disclose personal information to third parties for purposes that are materially different than what it was originally collected for. Should this change in the future, we will provide individuals with the option to opt out.

Ontraport discloses personal data only to third parties who reasonably need to know such data only for the scope of the initial transaction and not for other purposes. Such recipients must agree to abide by confidentiality obligations.

• comply with the Privacy Shield principles or another mechanism permitted by the applicable EU & Swiss data protection law(s) for transfers and processing of personal data

• or agree to provide adequate protections for the personal data that are no less protective than those set out in this Policy

Ontraport may be required to disclose an individual's personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements. Ontraport is liable for appropriate onward transfers of personal data to third parties.

Ontraport does not collect Sensitive Data from its customers.

In the case of an onward transfer of your data, Ontraport bears responsibility for the processing of personal information it receives under the Privacy Shield and subsequently transfers to a third party acting as an agent on its behalf. Ontraport shall remain liable under the Principles if our agent processes such personal information in a manner inconsistent with the Principles, unless we prove that it we are not responsible for the event giving rise to the damage.

Ontraport uses reasonable efforts to maintain the accuracy and integrity of personal data and to update it as appropriate. Ontraport has implemented physical and technical safeguards to protect personal data from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. For example, electronically stored personal data is stored on a secure network with firewall protection, and access to Ontraport's electronic information systems requires user authentication via password or similar means. Ontraport also employs access restrictions, limiting the scope of employees who have access to personal data.

Ontraport personnel may access and use personal data only if they are authorized to do so and only for the purpose for which they are authorized.

• Right to Access - Customers have the right to know what personal data about them is included in the databases and to ensure that such personal data is accurate and relevant for the purposes for which Ontraport collected it. Customers may review their own personal data stored in the databases and correct, erase, or block any data that is incorrect, as permitted by applicable law and Ontraport policies. Upon reasonable request and as required by the Privacy Shield principles, Ontraport allows customers access to their personal data in order to correct or amend such data where inaccurate. Customers may edit their personal data by logging in to their account profile or by contacting Ontraport by phone or email. In making modifications to their personal data, Data Subjects must provide only truthful, complete, and accurate information. To request erasure of personal data, customers should submit a written request to gdpr@ontraport.com.

• Requests for Personal Data - Ontraport will track each of the following and will provide notice to the appropriate parties under law and contract when either of the following circumstances arise: (a) legally binding request for disclosure of the personal data by a law enforcement authority unless prohibited by law or regulation or (b) requests received from the Data Subject. If Ontraport receives a request for access to his/her personal data from a customer, unless otherwise required under law or by contract with such customer, Ontraport will refer such Data Subject to the customer.

• Satisfying Requests for Access, Modifications, and Corrections - Ontraport will endeavor to respond in a timely manner to all reasonable written requests to view, modify, or inactivate personal data.

In compliance with the Privacy Shield Principles, Ontraport commits to resolve complaints about our collection or use of your personal information.  European Union and Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Ontraport at: gdpr@ontraport.com.

Ontraport has further committed to refer unresolved Privacy Shield complaints to the EU data protection authorities, an alternative dispute resolution provider located in the EU. If you do not receive timely acknowledgment of your complaint from us, or if we have not resolved your complaint, please visit this link to find contact information for your local Data Protection Authority or contact the Swiss Federal Data Protection and Information Commissioner for more information or to file a complaint.  The services of these EU DPAs and the Swiss Commissioner are provided at no cost to you.

Ontraport commits to cooperate with the panel established by the EU data protection authorities (DPAs) and/or the Swiss Federal Data Protection and Information Commissioner and to comply with the advice given by the panel and/or Commissioner with regard to human resources data transferred from the EU or Switzerland.

The Federal Trade Commission has jurisdiction over Ontraport’s compliance with the Privacy Shield.

As a last resort and in limited situations, EU and Swiss individuals may seek redress from the Privacy Shield Panel, a binding arbitration mechanism.

An individual who decides to invoke this arbitration option must take the following steps prior to initiating an arbitration claim: (1) raise the claimed violation directly with the organization and afford the organization an opportunity to resolve the issue within the timeframe set forth in Section III.11(d)(i) of the Principles; (2) make use of the independent recourse mechanism under the Principles, which is at no cost to the individual; and (3) raise the issue through their Data Protection Authority to the Department of Commerce and afford the Department of Commerce an opportunity to use best efforts to resolve the issue within the timeframes set forth in the Letter from the International Trade Administration of the Department of Commerce, at no cost to the individual. This arbitration option may not be invoked if the individual’s same claimed violation of the Principles (1) has previously been subject to binding arbitration; (2) was the subject of a final judgment entered in a court action to which the individual was a party; or (3) was previously settled by the parties.

In addition, this option may not be invoked if an EU Data Protection Authority or the Swiss Commissioner (1) has authority under Sections III.5 or III.9 of the Principles; or (2) has the authority to resolve the claimed violation directly with the organization.

Zoom Integration Data Usage and Privacy

• No Data Collection or Storage: Our Zoom app does not collect or store any user data of any kind. We do not retain any information from your Zoom account.
• No Personally Identifiable Information (PII) Collection: We do not collect any personally identifiable information (PII) from your Zoom account. This includes usernames, email addresses, or other account-specific details.
• Purpose of Integration: The Zoom integration is solely used to request and store Zoom meeting links on your behalf. This allows you to seamlessly integrate meeting scheduling into our service.
• User Control Over Integration: You may request to remove the Zoom integration at any time. Once removed, our app will no longer be able to make requests to Zoom or retrieve any meeting information unless you reconnect the integration.

Ontraport Sandbox accounts are a complimentary service. However, charges will incur if usage from SMS or other messaging services are generated during testing.

Sandbox accounts may not be used for marketing, processing genuine customer data, processing real ecommerce transactions or running partner or affiliate programs.

• For developers who are creating public-facing integrations with Ontraport, there are no time limits on your Sandbox Account.

• For our Ontraport Experts, Sandbox accounts will be active for as long as your certification is valid.

To be approved for an Ontraport Nonprofit Account, you must have proof of your 501(c)(3) status or country equivalent. If approved, the nonprofit discount will be 50% off your first year, then 20% off thereafter for the lifetime of your account, as long as your 501(c)(3) status is intact. The nonprofit discount is applied to your account when it is approved and does not apply to previous payments. Nonprofit discounts only apply to the account plan and Dynamic CMS plans.