Privacy

Data Protection and Privacy Policy

Lynxight (hereinafter: “Lynxight” or “Our” or “We” or “Us”), are committed to protect your Personal Data. This Data Protection Policy explains how Lynxight collects, processes and stores the information from you or other data subjects through our website (hereinafter: “Website“).

As used in this policy, “Personal Data” or “Personal Data” means information that refers to, is related to, or is associated with an identified or identifiable individual or as otherwise may be defined by applicable law, such as a name, address, telephone number, e-mail address, information about activities directly linked to a person, such as that person’s location or IP information.

This data protection policy (hereinafter: “Policy“) may be revised or updated from time to time, and such changes shall come into effect from the moment Lynxight publish the new policy notifies you of such changes and/or updates, either by email, notification on our website or any other reasonable manner.

For any questions regarding the collection, processing or use of Personal Data relating to you and exercising your data subject rights (all as explained below) please contact our Data Protection Officer, at email: [email protected]

GENERAL PRINCIPLES OF OUR DATA PROTECTION

Lynxight is committed to ensuring that your Personal Data and the privacy of your data is protected according to the appropriate industry standards and practices in relation to the data we collect, and all in correspondence to Lynxight’s relevant legal obligations.

This policy explains your rights regarding the Personal Data Lynxight collects, processes and uses through the Lynxight Website, as well as Lynxight’s use of safeguards to protect these rights.

This Policy further applies also to Lynxight’s use of cookies and tracking tools, as specified in detail in our Cookies and Tracking Tools Policy as we use cookies and tracking tools on our Website to distinguish you from other and to improve your use of our Website, and in some cases, certain features may not function if you remove the cookies from your browser.

We collect and process your Personal Data in good faith, in a proportionate manner according to the declared purpose, and with the appropriate technical and organizational measures in line with the state-of-the-art measures, while taking into account the risks represented by our collection and processing and the nature of the Personal Data and data protected by us.

If any collection and processing of Personal Data will be carried out, in the course of Lynxight’s business and provision of services, by external data processors on Our behalf, Lynxight will require, within the framework of its contracts with such external

processors, for them to comply with relevant legal data protection rules and legislation applicable to the services they provide to Lynxight, prior to the transferring your Personal Data and data.

Important note: please refrain from browsing our Website, sending us e-mail messages with queries or requests, or otherwise providing Us with your Personal Data, if you do not consent to the collection, use, processing or disclosure of this data as set forth herein.

Information about the responsible party (referred to as the “controller” in GDPR) 

The data processing controller on this website is: 

Lynxight (1 Ha’Tmiha St., Yokneam Illit, 2066718) 

Phone: +972 (0)4 626 2660
E-mail: [email protected] 

The controller is the natural person or legal entity that single-handedly or jointly with others makes decisions as to the purposes of and resources for the processing of personal data (e.g., names, e-mail addresses, etc.). 

YOUR RIGHTS TO LIMIT OUR COLLECTION AND PROCESSING

You have certain rights in relation to the Personal Data that we hold about you, as detailed below:

• Consent – We will only process Personal Data if you have consented to such processing, unless We are otherwise legally authorized or obliged to collect and further process Personal Data relating to you any of your rights below.

If we process data solely based on your informed consent, We will only use the data for the purposes stated in the consent procedure and within the scope outlined below.

• Withdrawal of consent – You may revoke or withdraw your consent at any time by contacting and requesting so from our Data Protection Officer and We will stop processing your Personal Data, unless We are legally obligated or authorized to continue processing your Personal Data, including for ongoing legitimate business needs, which we will notify you in our response to your request, where applicable.
• The Right of Deletion (“To be Forgotten”) and Right of data Correction – You may also request the erasure or correction of all or part of your Personal Data that is held by Lynxight.

Upon your request, Lynxight will accommodate your request and delete (or alternatively equivalently irreversibly anonymize) or correct your Personal Data or remove from part or all of our records, as per your request, as soon as reasonably possible and when technically feasible, and unless there is an overriding legal interest or other authorized basis for the continuation of the data processing.

Please be aware that in the event of deletion or correction of Personal Data upon your request, Lynxight may not be able to further provide you the services you applied for through the Website, in whole or in part and by requesting such deletion/correction, you irrevocably agree and waive any

claim against Lynxight’s inability to provide the services through the Website.

• Personal Data of children and minors – We do not knowingly collect or process Personal Data relating to children and minors under the age of 16 years, unless We are legally obliged to do so by an authorized court or governmental authority order or writ or parental consent. If we become aware that Personal Data was transferred to us or collected by us relating to children and minors under the age of 16 years without the informed consent of a parent or legal guardian or according to a legal obligation from a court or governmental authority, We will delete such Personal Data without undue delay. If the request for erasure of data relates to the Personal Data of a child or minor, please attach to the request adequate proof of your status as parent or guardian of the child or minor.
• Transparency and Data Portability. You are entitled to ask us for information about what type of Personal Data about you has been collected by Lynxight. You are also entitled to obtain (in a commonly used and machine-readable form) and reuse your Personal Data as you have provided to us (following your consent or to allow us to perform services under a contract) and which We process, for your own purposes across different services and free of charge, subject to technical feasibility and lawfulness considerations.
• Automated decision-making. Lynxight shall not intentionally take any potentially damaging decision concerning you because of using automated processing and decision-making operations without human intervention; and commits that where such will be implemented, we will give you the opportunity to obtain human intervention in such a decision, express your point of view, and obtain an explanation of the decision.

Important Notes:

• In the implementation of these data protection rights, Lynxight is committed to providing a timely and transparent response to your requests and upholding your right to contact Lynxight’s Data Protection Officer. In this case please send an Email to: [email protected]
• If you are an EU citizen or an EU supervisory authority then you can reach our EU Data Protection Representative via email: [email protected]
• Any data subject right you wish to uphold by Us, may not be fulfilled if you do not provide Us with relevant and/or sufficient information required for us to identify you as the data subject of said Personal Data, and we shall inform you accordingly in such an event.
• If you believe Lynxight has violated any of your data subject rights, you are entitled to file a complaint to the Data Protection Authority in your country of residence about the alleged data protection breach.

Information We Collect:

The Personal Data collected and used by Lynxight is limited strictly to any data which is necessary for us to provide you with services you request in the course of our ongoing business while operating under our relevant legal and data protection legislation and regulations obligations, as detailed herein below:

1. Collection of Personal Data Occurs when You:
   1. Contact us via e-mail through our contact details on the site
   1. When you browse through the website through cookies and tracking technologies.
2. What is the Personal Data We collect and when do we collect it:
3. When you contact us through our contact details on the Website, we may collect:
   1. your email address;
   1. the Content of your inquiry and/or request, and any Personal Data you elect to input therein;
4. When you browse through our websites and/or specific pages/portions thereof:

Automated Browsing Data which includes information about your computer, your web browser, mobile device, operating system, IP address, your location, website visit history including keywords and searches;

Why Lynxight Uses your Personal Data:

Lynxight uses data and Personal Data for the following reasons:

• to ensure that content in the website is presented in the most effective manner for you, including personalization;
• to process your contact request when you contact us through e-mail and/or to revert back to you accordingly;
• For performance of analytics such as trend analysis, site administration, statistical analysis of usage of the site, enhance and review integrity and stability of the website and to study trends in order to improve our website;
• To use data tracking technologies (i.e.: browsing and history data) for the purpose of providing you with personalized advertisements;

How We Protect Information:

We implement generally accepted industry standards to maintain the safety of your Personal Data against loss, alteration, theft or access by unauthorized third parties when you enter, submit, or access your Personal Data and once we receive it. However, no method of transmission over the Internet, or method of electronic storage is flawless or entirely secure.

Therefore, while we strive to protect your Personal Data via the aforementioned technical and organizational means, we cannot guarantee its absolute security. What we can guarantee is that we will not sell, share, transfer or use the data We collect from you for purposes other than those purposes stated expressly herein above.

The above notwithstanding, Lynxight will not be liable or responsible for any damage or loss resulting from the improper use or any breach of security leading to the

accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data.

Third Party Sites:

Our website may contain links to third party websites an/or social media platforms. We have no control over third-party sites or services, and all use of third-party sites or services is at your own risk. Lynxight cannot accept responsibility for the privacy policies of any such third party sites and such third-party websites are governed solely by such third parties’ privacy policies and you are advised to be careful and check any such third party’s privacy policies and compliance with laws, prior to supplying them with any of your personal data to them.

Lynxight is not responsible for content available by means of such third party sites. Lynxight does not endorse any information or products offered by third parties and we urge our users to exercise caution in using third-party services.

offered by third parties and we urge our users to exercise caution in using third-party services.

Data retention and deletion

Lynxight deletes (or equivalently irreversibly anonymizes) personal data where the purpose for which the data was being collected or processed ceases to apply, except the extent it is prohibited to do so under local, Israeli law (and in such cases only to the extent required) and/or or if applicable data protection rules require us to delete such personal data

However, we shall keep your personal data as long as necessary to provide you with the Lynxight Service and for legitimate and essential business interests, such as maintaining the performance of the Lynxight Services, making data-driven business decisions about new features and offerings, and always when required for complying with our legal obligations, and resolving disputes, such as the following circumstances:

• If there is an unresolved issue relating to your account, such as an outstanding credit on your account or an unresolved claim or dispute we will retain the necessary personal data until the issue is resolved;
• Where we are required to retain the personal data for our legal, tax, audit, and accounting obligations and/or regulatory requirements, we will retain the necessary personal data for the period required by applicable law; and/or,
• Where necessary for our legitimate business interests such as fraud prevention or to maintain the security of our users.

The above notwithstanding, there are types of Personal Data we process will only be kept for as long as you use Lynxight Services, such as your e-mail address and other information sent as part of a request or when browsing as long as your consent to usage of Cookies and Tracking Tools is intact. Where such a request has been withdrawn or sufficiently fulfilled and no longer relevant we shall delete such as part of our commitment to data minimization.

Note: We will also delete your Personal Data upon your expressed request to fulfill your data subject right, provided you forward such a request through our Data Protection Officer, as mentioned above.

Transfer of Your Information:

We do not sell, trade, or otherwise transfer to outside parties your Personal Data, except as specifically specific in this Policy.

The above statement does not include trusted third parties who assist us in operating our services, conducting our business, or servicing you, and prior to such transfers those parties are contractually obliged to keep your Personal Data confidential and to not use it for any purpose other than to fulfill their obligations to us in relation to the provision of our services to you.

Be advised that We may share you information with subcontractors and other partners that are located in countries abroad which do not necessarily have the level of data protection according to an EU adequacy decision, however, all our subcontractors and other third parties will be subject to contractual obligations limiting their use of your Personal Data and subjecting their activities to the applicable data protection and privacy legislations applicable to your personal data and further to the foregoing all our subcontractors will be subject to non-disclosure and non-use obligations.

Nevertheless, some countries may have levels of protection of personal and other information which are not at an adequate level of protection compared with what is provided in your country of residence or business.

Be advised that We will fully cooperate with any law enforcement authorities or court order requesting or directing us to disclose the identity or behavior of any user suspected to have engaged in illegal behavior and thereby we may also release your information when we believe release is appropriate to comply with the law, enforce our site policies, or protect ours or others rights, property, or safety.

However, non-personally identifiable user information may be provided to other parties for analytics, trends study, or other uses, as previously established is one of the purpose of use herein above.

Tools and Services we use according to our website and sales processes

Hosting with Amazon Web Services (AWS) 

We are hosting our website with AWS. The provider is Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, 1855 Luxembourg (hereinafter referred to as “AWS”). 

When you visit our website, your personal data will be processed on AWS servers. This may also result in the transfer of personal data to the parent company of AWS in the United States. The transfer of data to the US is based on the EU’s standard contractual clauses. For details please consult: https://aws.amazon.com/de/blogs/security/aws-gdpr-data-processing-addendum/. 

For more information, please see the AWS Data Privacy Policy: https://aws.amazon.com/de/privacy/?nc1=f_pr. 

AWS is used on the basis of Art. 6(1)(f) GDPR. We have a legitimate interest in a depiction of our website that is as reliable as possible. If your respective consent was obtained, processing will occur exclusively based on Art. 6(1)(a) GDPR. This consent may be revoked at any time. 

Execution of a contract data processing agreement 

We have concluded a contract processing agreement with AWS. This is a contract mandated by data privacy laws that guarantees that AWS processes the personal data of our website visitors only based on our instructions and in compliance with the GDPR. 

Google Web Fonts 

To ensure that fonts used on this website are uniform, this website uses so-called Web Fonts provided by Google. When you access a page on our website, your browser will load the required web fonts into your browser cache to correctly display text and fonts. 

To do this, the browser you use will have to establish a connection with Google’s servers. As a result, Google will learn that your IP address was used to access this website. The use of Google Web Fonts is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in a uniform presentation of the font on the operator’s website. If a respective declaration of consent has been obtained (e.g., consent to the archiving of cookies), the data will be processed exclusively on the basis of Art. 6(1)(a) GDPR. Any such consent may be revoked at any time. 

If your browser should not support Web Fonts, a standard font installed on your computer will be used. 

For more information on Google Web Fonts, please follow this link: https://developers.google.com/fonts/faq and consult Google’s Data Privacy Declaration under: https://policies.google.com/privacy?hl=en. 

Online-based Audio and Video Conferences (Conference tools) 

Data processing 

We use online conference tools, among other things, for communication with our customers. The tools we use are listed in detail below. If you communicate with us by video or audio conference using the Internet, your personal data will be collected and processed by the provider of the respective conference tool and by us. The conferencing tools collect all information that you provide/access to use the tools (email address and/or your phone number). Furthermore, the conference tools process the duration of the conference, start and end (time) of participation in the conference, number of participants and other “context information” related to the communication process (metadata). 

Furthermore, the provider of the tool processes all the technical data required for the processing of the online communication. This includes, in particular, IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or loudspeaker and the type of connection. 

Should content be exchanged, uploaded, or otherwise made available within the tool, it is also stored on the servers of the tool provider. Such content includes, but is not limited to, cloud recordings, chat/ instant messages, voicemail uploaded photos and videos, files, whiteboards, and other information shared while using the service. 

Please note that we do not have complete influence on the data processing procedures of the tools used. Our possibilities are largely determined by the corporate policy of the respective provider. Further information on data processing by the conference tools can be found in the data protection declarations of the tools used, and which we have listed below this text. 

Purpose and legal bases 

The conference tools are used to communicate with prospective or existing contractual partners or to offer certain services to our customers (Art. 6(1)(b) GDPR). Furthermore, the use of the tools serves to generally simplify and accelerate communication with us or our company (legitimate interest in the meaning of Art. 6(1)(f) GDPR). Insofar as consent has been requested, the tools in question will be used on the basis of this consent; the consent may be revoked at any time with effect from that date. 

Duration of storage 

Data collected directly by us via the video and conference tools will be deleted from our systems immediately after you request us to delete it, revoke your consent to storage, or the reason for storing the data no longer applies. Stored cookies remain on your end device until you delete them. Mandatory legal retention periods remain unaffected. 

We have no influence on the duration of storage of your data that is stored by the operators of the conference tools for their own purposes. For details, please directly contact the operators of the conference tools. 

Zoom 

We use Zoom. The provider of this service is Zoom Communications Inc, San Jose, 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA. For details on data processing, please refer to Zoom’s privacy policy: https://zoom.us/en-us/privacy.html. 

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://zoom.us/de-de/privacy.html. 

Execution of a contract data processing agreement 

We have entered into a contract data processing agreement with the provider of Zoom and implement the strict provisions of the German data protection agencies to the fullest when using Zoom. 

Updates and Changes to this Data Protection and Privacy Policy

We may revise this Policy from time to time, and such changes shall come into effect from the moment Lynxight notifies you of such changes and/or updates, either by email, on the websites or in some other reasonable manner.

When we make material changes to this Policy, we’ll provide you with prominent notice as appropriate under the circumstances, e.g., by displaying a prominent notice within the Lynxight website or by sending you an email message to that effect.

Lynxight’s Cookies and Tracking Policy

NOTE: For any issues of personal data protection, please refer to our Data Protection Policy. For any questions regarding the collection, processing or use of personal data relating to you (as explained below) please contact our Data Protection Officer.

What’s a cookie?

A cookie is a small file sent from a website or web-based interface, which is then stored by your web browser. When you return to the website or web-based interface, the information in the cookie can be used to recognize your last session. Cookies cannot install malicious software such as viruses on your device, and they do not store any of your personal data or account information.

Why do we use cookies?

We use cookies to save and maintain users’ settings and selected preferences during browsing sessions, for saving repeating users’ preferences for future use (e.g. geographical location, currency preferences accessibility and language selections and preferences), and for statistical analysis of the performance and trends on our website or interfaces and for monitoring and identifying errors.

Where do cookies come from?

Cookies originate from two types of sources: first party and third party. The classification whether a cookie is ‘first’ or ‘third’ party refers to the internet domain that is placing the cookie.

• First-party cookies are those set by a website that is being visited by the user at the time.
• Third-party cookies are cookies that are set by a domain other than that of the site being visited by the user. If a user visits a website and another entity sets a cookie through that site this would be a third party cookie.

Opt-out: When you first visit the Website, you will be given the option to accept or decline the use of cookies. You can also control the use of cookies at the individual browser level, and instructions for managing cookie usage can be found for the following browsers, at:

• Google Chrome
• Internet Explorer
• Firefox
• Safari
• Safari Mobile
• Opera

If you wish to opt-out of personalized or behavioral advertising, you can use an indus- try resource in your region that provides cookie choices, such as the tools provided by:

• the Digital Advertising Alliance (DAA),
• the Digital Advertising Alliance of Canada (DAAC), and
• the European Interactive Digital Advertising Alliance (EDAA).

Be advised that if you elect to remove/block our cookies, you may still use the website or interface, but your ability to use some features or areas therein may be impaired, limited or unavailable and you hereby irrevocably and unconditionally waive any claim or demand if such an action results in any of the website or our services becoming unavailable, impaired or non-functional.

Do Not Track/Privacy Mode

“Do not track” or “privacy mode” is a function that allows website users to opt out of being tracked by websites for any purpose including the use of analytics services, advertising networks and social platforms.

Do not track options are available in a few browsers including:

• Firefox
• Internet Explorer
• Chrome
• Safari
• Opera

If you have enabled the “do not track” function in your browser, you will not be tracked by cookies (note: tracking by browser fingerprinting is nevertheless possible), but this may impair your use of our website or interface. This is in addition to you opting-out of the aggregation and analysis of data for the website and booking interface’s statistics.

You hereby irrevocably and unconditionally waive any claim or demand if employing any of the aforementioned modes on your browser results in any of the services becoming unavailable, impaired or non-functional.

Categories of cookies we use

There are two categories of cookies which are in use on our sites:

• Session Cookies containing encrypted information to allow the system to uniquely identify you while you are visiting the Website. Session cookies exist only during a singular online session and disappear from your computer when you close your browser or turn off your computer.
• Persistent Cookies used to identify the fact that you are a repeating visitor or a new visitor to Website, and to identify and maintain your preferences, such as the selected language, your selected country of origin as of your last visit, in order to present the contents of the Website in a personalized way according to your past selected preferences and browsing usage in order receive certain types of content. Persistent cookies remain on your computer after you have closed your browser or turned off your computer for varying periods of time, according to the duration of each cookie. They include such information as a unique identifier for your browser.

What kind of third-party cookies and/or tracking tools do we use?

Gravity Forms (a WordPress Plugin)

Our Website uses a plugin called “Gravity Forms” to power the online forms available on the Website. While Gravity Forms does not use Cookies on the front-end of the site, but it does use one on Online Form pages for the purpose of Spam protection and retention of data inputted for a limited amount of time.

Only authorized individuals will be able to access your data, and it will not be disclosed to third parties. If you would like your data to be removed in advance of the (fill in number) days, please email: ___________________

Google Analytics

Our Website uses Google Analytics cookies. These cookies collect information about how you interact with our website, including how you came to our website, which pages you visited, for how long and what you clicked on, your location (based on your IP address).

This integration of Google Analytics anonymizes your IP address. It works by shortening Users’ IP addresses within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the complete IP address be sent to a Google server and shortened within the US. To see an overview of privacy at Google and how this applies to Google Analytics, please click here.

If you wish to Opt-out of our Google Analytics usage, you may download the browser plugin “Google Analytics Opt-out Browser Add-on” here which is compatible with your web browser.

Google Tag Manager

Our Website uses Google Tag Manager is a marketing solution which allows us to insert marketed website tags into our website and to manage them, and the Tag Manager tool itself (which implements the tags) is a cookie-less domain and does not register personal data.

The tag manager makes it easier for us to integrate and manage our tags. Tags are small code elements that are used to measure traffic and visitor behavior, capture the impact of online advertising and social channels, set up remarketing and target audience targeting, and test and optimize web pages

For more information on Google Tag Manager’s terms of service and privacy policy, please visit www.google.com/analytics/tag-manager/use-policy/.

You may deactivate Google Tag Manager with the help of a browser add-on if you do not want this website analysis. This add-on can be downloaded at: www.ghostery.com/

Hotjar

Hotjar is a technology service that helps us better understand our users experience on our Website (e.g. how much time they spend on which pages, which links they choose to click, what users do and don’t like, etc.) and this enables us to build and maintain our service with user feedback.

Hotjar uses cookies and other technologies to collect data on our users’ behaviour and their devices (in particular device’s IP address (captured and stored only in anonymized form), device screen size, device type (unique device identifiers), browser information, geographic location (country only), preferred language used to display our website).

Hotjar stores this information in a pseudonymized user profile. Neither Hotjar nor we will ever use this information to identify individual users or to match it with further data on an individual user.

For further details, please see Hotjar’s privacy policy by clicking on this link.

HubSpot

Hubspot is a CRM (customer relationship management) service provided by Hubspot Inc.

We use Hubspot to facilitate sign-ups for registered accounts and newsletters, as well as to collect data on interactions with our website (e.g. average page views) for our internal analytical purposes.

Facebook Pixel

Our Website uses Facebook pixel, which is a tracking code which allows us to track and monitor the success of advertisements we use on Facebook and to improve the effectiveness of those advertisements by recording information such as the device you used to access our website and the actions you took on our website using cookies. We may also use Facebook Pixel to create retargeting advertisements and custom audiences for our advertisements on Facebook and on our website.

Facebook aggregates data gathered from our use of Facebook Pixel on our website with data it gathers from other sources, in order to improve and target advertisements displayed on its website or via its services, to improve its systems and to provide measurement services to third parties which use Facebook’s advertising services

If you wish to opt-out of our Facebook pixel see https://www.facebook.com/ads/preferences

Google Ads & DoubleClick Campaign Manager

We use Google Ads and Doubleclick Campaign Manager, which enable us to advertise our website in Google search results, as well as on third-party websites. To this end, Google places a cookie in the browser of your terminal device, which automatically uses a pseudonymous cookie ID on the basis of pages you visited to allow interest- based advertising. Further information regarding advertising and Google can be viewed at: https://policies.google.com/technologies/ads

Can I withdraw consent for the use of cookies or tracking tools?

If you wish to withdraw your consent, you can choose to opt-out of cookies at any time by managing and/or deleting your cookies using your internet browser settings.

Additional information on cookies in general:

A number of websites provide detailed information on cookies, including  AboutCookies.org and AllAboutCookies.org.

Updates to our Policy

We update our Cookies Policy from time to time, if we introduce a new cookie or tracking tool which processes new information or wish to process the information collected by your cookies and tracing tools in a new manner, we shall notify you and ask you to consent to this updated processing or new cookie or tracking tool.

Questions?

Should you have any questions about the use of cookies by Lynxight, please be in touch with our Data Protection Officer.

The Cookies and Tracking Tools Deployed on our Website: