Our Commitment To Privacy
This website and all of the tools and services offered on our website are owned and operated by Candylio.. Your privacy on the Internet is of the utmost importance to us. At Candylio, we want to make sure your experience online is both satisfying and safe. If you have any questions at any time please contact Candylio at support@candylio.com.
This privacy policy (the “Policy”) explains how we collect and use visitors’ and customers’ information, particularly personal information, and the terms and conditions surrounding the capture and use of that information. By visiting our website www.Candylio.com and/or purchasing and using our products and services, you accept the practices described in this Policy. The use of information collected through our service shall be limited to the purpose of providing the service for which the Client has engaged Candylio. It also describes your choices regarding use, access and correction of your personal information.
Candylio complies with the U.S. – Swiss Safe Harbor framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data from Switzerland. Candylio has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement.  To learn more about the Safe Harbor program, and to view Candylio’s certification, please visit https://safeharbor.export.gov/swisslist.aspx.
EU-U.S. Privacy Shield
Candylio (and its parent/subsidiary companies) participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework.  Candylio is committed to subjecting all personal data received from European Union (EU) member countries, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles.  To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List. https://www.privacyshield.gov
Candylio is responsible for the processing of personal data it receives, under the Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf.  Candylio complies with the Privacy Shield Principles for all onward transfers of personal data from the EU, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the Privacy Shield Framework, Candylio is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission.  In certain situations, Candylio may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.  
Under certain conditions, more fully described on the Privacy Shield website https://www.privacyshield.gov, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
The Information We Collect
This Policy applies to all information collected or submitted through our Services. The information we collect and use is limited to the purpose for which the customers engage Candylio and other purposes expressly described in this Policy. For example: on our website, you can order products, make requests, and register to receive materials and/or sign up for services. The processing of your information or any information you provide through any of the Services will be done in accordance with the Policy. Personal Information means information or information set that identifies or could be used by or on behalf of Candylio to identify an individual.
Personal information collected through the use of our Services might include:
•	Name
•	Address
•	Email address
•	Phone number
•	Organization name
•	Credit/Debit Card Information
Through our Services, you can also submit information about other people. For example, if you register someone else for a Candylio course, or someone else, other than you, is paying for it, you will need to submit their information. In this circumstance, personal information collected might include:
•	Name
•	Address
•	Email address
•	Phone number
•	Organization name
•	Credit/Debit Card Information
On occasions, we may source personal information from a third party or a publicly-available source such as an outside credit reporting agency to help us with customer authentication and credit-related decisions. If you have not given your prior consent to us collecting your personal information from a third party, we will take reasonable steps to inform you that it has done so. As a general rule, we do not collect sensitive information about you. However, if we need sensitive information from you for any reason then we will only collect it if you consent to this. We require an opt-in consent for sharing any sensitive information.
Referrals
If you choose to use our referral service to tell a friend about our website, we will ask you for your friend’s name and email address. We will automatically send your friend a one-time email inviting him or her to visit the website. Candylio stores this information for the sole purpose of sending this one-time email and tracking the success of our referral program. Your friend may contact us at support@candylio.com to request that we remove this information from our database.
The Way We Use Information
We use the information you provide about yourself when placing an order ONLY to complete that order. We do not share this information with outside parties except to the extent necessary to complete that order. For example we may share your personal information with our third party service providers such as credit card processors, to provide the necessary services we use to operate the Services.
We may also disclose your personal information as required by law such as to comply with a subpoena or bankruptcy proceedings, if Candylio is involved in a merger, acquisition, or sales of all or a portion of its assets, you will be notified via email and/or a prominent notice on our Web site of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.
We use return email addresses to answer the email we receive. Such addresses are not used for any other purpose and are not shared with outside parties. In the event any of your information is shared with an outside third party for the purposes stated herein, we require such third party to adhere in a written agreement to at least the same level of privacy protection as we afford you and as required by the relevant principles.
We use non-identifying and aggregate information to better design our website and Services. We use tracking information to determine which areas of our websites users like and don’t like based on traffic to those areas. We do on occasion track what individual users read to determine if a particular article has been read and if such subject matter is interesting to our users.
Finally, we NEVER use or share the personal information provided to us online in ways unrelated to the ones described above without also providing you an opportunity to opt-out or otherwise prohibit such unrelated uses. To this end, we would alert you prior to such disclosure and allow you to either electronically as part of the notification or in writing, to opt-out or prohibit us from sharing such information.
Our Commitment To Data Quality
We take reasonable steps to ensure that the personal information our Services collect is accurate, up to date and complete. In circumstances where your personal information has changed please contact us to enable us to update and correct the information. We may also contact you from time to time to check our record of your personal information is still correct.
Our Commitment To Data Security
To prevent unauthorized access, maintain data accuracy, and ensure the correct use of information, we have put in place appropriate physical, electronic, and managerial procedures to safeguard and secure the information we collect online. We use industry standard methods of securing our electronic databases of personal information. For example, when you enter sensitive customer information (such as login credentials), this information is transferred via industry standard Secure Sockets Layers (SSL) and our databases are protected by 2 layers of firewalls. Except as provided elsewhere in this Policy, we limit access to personal information in electronic databases to those people in our organization that have a business need for such access. Your privacy is very important to us. Due to factors beyond our control, we cannot fully ensure that your personal information will not be disclosed to third parties other than those mentioned above. For example: we may be legally required to disclose information to the government or a third party under certain circumstances such as responding to a subpoena, court order or to exercise our legal rights or defend against legal claims, or third parties may unlawfully intercept or access transmissions or private communications. If you have any questions about security on our Web site, you can contact us at support@candylio.com.
The moment we successfully collect the payment from you, your Credit Card information is purged from our system.
Our Commitment To Children’s Privacy
Protecting the privacy of the very young is especially important to Candylio. For that reason, we never collect or maintain information at our website from those we actually know are under 13, and no part of our website is structured to attract anyone under 13.
Special Notification for California Residents
California Civil Code Section 1798.83, also known as the Shine The Light law, permits our clients who are California residents to request and obtain from us once a year, free of charge, information about the personal information (if any) we disclosed to third parties for direct marketing purposes in the preceding calendar year. To obtain such information, please contact us.
Information Collected on our Website
By using our Services, you consent to the terms of this Policy. If you do not agree with any term of this Policy, please do not use our Services. You are advised that there are inherent risks in transmitting information across the internet. We gather information about our website users collectively. Such information includes the areas that users visit, and the services that users access, most frequently. We will only use this data anonymously and in the aggregate. By doing so, we can optimize the services our website provides to our customers. We may also collect personal information that individuals choose to provide via online forms or by email. Any personal information provided online is treated in the same manner as any personal information collected through other means.
Choice/Opt-Out
You may choose to stop receiving our newsletter or marketing emails by following the unsubscribe instructions included in these emails or you can contact us at support@candylio.com.
Cookies and other Tracking Technologies
Technologies such as: cookies, beacons, tags and scripts are used by Candylio and our marketing partners, affiliates, or service providers. These technologies are used in analyzing trends, administering the website, tracking users’ movements around the website and to gather demographic information about our user base as a whole. We may receive reports based on the use of these technologies by these companies on an individual as well as aggregated basis.
We use cookies for our shopping cart, to remember users’ settings (e.g. language preference), for authentication. Users can control the use of cookies at the individual browser level. If you reject cookies, you may still use our website, but your ability to use some features or areas of our website may be limited.
Log Files
As is true of most web sites, we gather certain information automatically and store it in log files. This information may include internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data. We do link this automatically collected data to other information we collect about you. We may combine this automatically collected log information with other information we collect about you. We do this to improve services we offer you, to improve marketing, analytics, or site functionality.
Local Storage Objects (HTML 5) & Local Shared Objects (Flash)
We use Local Storage, such as HTML5, to store content information and preferences. Third parties with whom we partner to provide certain features on our website or to display advertising based upon your Web browsing activity use LSOs such as Flash cookies or and HTML 5. Various browsers may offer their own management tools for removing HTML5 LSOs. To manage Flash cookies, please click here.
Behavioral Targeting / Re-Targeting
We partner with a third party to either display advertising on our website or to manage our advertising on other sites. Our third party partner may use technologies such as cookies to gather information about your activities on this site and other sites in order to provide you advertising based upon your browsing activities and interests. If you wish to not have this information used for the purpose of serving you interest-based ads, you may opt-out by clicking here (or if located in the European Union click here). Please note this does not opt you out of being served ads. You will continue to receive generic ads.
Widgets
Our Web site includes Social Media Features, such as the Facebook Like button and Widgets, such as the Share this button or interactive mini-programs that run on our site. These Features may collect your IP address, which page you are visiting on our site, and may set a cookie to enable the Feature to function properly. Social Media Features and Widgets are either hosted by a third party or hosted directly on our Site. Your interactions with these Features are governed by the privacy policy of the company providing it.
Single Sign-On
You can apply for an open position on our website using sign-in services such as LinkedIn Connect. These services will authenticate your identity and provide you the option to share certain personal information with us such as your name and email address to pre-populate our sign up form. Services like LinkedIn Connect give you the option to post information about your activities on this website to your profile page to share with others within your network.
Blogs
Anytime you post on our blog please be aware that you are posting using a third party application and we have no access or control over this information.
To request removal of your personal information from our blog, you can either log into the third party application and remove your comment or you can contact the appropriate third party application. Your interaction with these features is governed by the privacy policy of the company providing it.
Testimonials
We display personal testimonials of satisfied customers on our website in addition to other endorsements. With your consent we may post your testimonial along with your name. If you wish to update or delete your testimonial, you can contact us at support@candylio.com.
Accessing and Updating your Information
Whenever you use our Services, we aim to provide you with access to your personal information. If that information is wrong, we strive to give you ways to update it quickly or to delete it – unless we have to keep that information for legitimate business or legal purposes. When updating your personal information, we may ask you to verify your identity before we can act on your request.
We may reject requests that are unreasonably repetitive, require disproportionate technical effort (for example, developing a new system or fundamentally changing an existing practice), risk the privacy of others, or would be extremely impractical (for instance, requests concerning information residing on backup tapes).
Where we can provide information access and correction, we will do so for free, except where it would require a disproportionate effort. Please contact us at support@candylio.com. We will respond to such queries within a reasonable timeframe.
Data Retention
We will retain personal information we process on behalf of yourself for as long as needed to provide the Services to you, subject to our compliance with this Policy. We may further retain and use the information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
Links to Other Web Sites
Our Site includes links to other Web sites whose privacy practices may differ from those of Candylio. If you submit personal information to any of those sites, your information is governed by their privacy policies. We encourage you to carefully read the privacy statement policy of any Web site you visit.
Changes to This Policy
If we make any material changes to this Policy, we will notify you by email or by posting a prominent notice on our website prior to the changes becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices. We will also keep prior versions of this Policy in an archive for your review. Your continued use of the Services constitutes your agreement to be bound by the changes to the Policy. Your only remedy if you do not accept the terms of this Policy is to discontinue use of the Services.
Enforcement
We regularly review our compliance with our Policy. When we receive formal written complaints, we will contact the person who made the complaint to follow up within a reasonable timeframe. We work with the appropriate regulatory authorities, including local data protection authorities, to resolve any complaints regarding the transfer of personal data that we cannot resolve with our users directly.
How To Contact Us
Please contact us if you have one of the following requests:
•	if you would like to access your personal information collected by us
•	if you would like us to change any of your personal information
•	if you would like your personal information removed from our database
•	if you have a general query relating to this Policy
To assist us with your request, please provide sufficient information (for example: name, address and contact details) to enable us to locate your record on its database. We will use commercially reasonable efforts to fulfill your request in a timely manner, but no more than 30 business days.
Should you have other questions or concerns about our Policy, please contact us at support@candylio.com or:
Candylio Inc.
Attn: Privacy Officer
2741 Middlefield Rd, Suite 200
Palo Alto, CA 94306
UNITED STATES
Information Related to Data Collected through Learndot
Candylio collects information under the direction of its Clients, and has no direct relationship with the individuals whose personal data it processes.
Choice
We collect information for our clients, if you are a customer of one of our Clients and would no longer like to be contacted by one of our Clients that use our service, please contact the client that you interact with directly.
Service Provider, Sub-Processors/Onward Transfer
Candylio may transfer personal information to companies that help us provide our service. Transfers to subsequent third parties are covered by the provisions in this Policy regarding notice and choice and the service agreements with our Clients
Access to Data Controlled by our Clients
Candylio has no direct relationship with the individuals whose personal data it processes. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data should direct his query to the Candylio’s Client (the data controller). If the Client requests Candylio to remove the data, we will respond to their request within a reasonable timeframe.
Upon request Candylio will provide you with information about whether we hold any of your personal information. You may access, correct, or request deletion of your personal information by contacting us at mailto:support@candylio.com.  We will respond to your request within a reasonable timeframe.
Data Retention
Candylio will retain personal data we process on behalf of our Clients for as long as needed to provide services to our Client. Candylio will retain and use this personal information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

Candylio is committed to preserving the privacy of all visitors to this website and of clients using our products and services. Please read the following privacy policy to

understand how we use and protect the information that you provide to us.



By submitting details to us, you consent to the collection, use and transfer of your information under the terms of this policy. Should you have any specific queries after

reading this policy, please feel free to contact us for clarification.



We must collect the information fairly, that is, we must explain how we will use it (see the notices on particular web pages that let you know why we are requesting

the information) and tell you if we want to pass the information on to anyone else.



Unless explicitly stated otherwise, we will never pass your information on to any third parties and access to your information is restricted to specific Candylio staff who

may only access it for specific purposes.



If you post or send offensive, inappropriate or objectionable content anywhere on or to this website or our company or otherwise engage in any disruptive behaviour, we

can use whatever information that is available to us to stop such behaviour. This may involve informing relevant third parties such as your employer, school email/Internet provider and law enforcement agencies about the content and your behaviour.



Contacting Us

Should you wish to contact us regarding anything within this document you can do

so by submitting an enquiry via email:

csm@candylio.com



Google cookies

Candylio.com uses Google Analytics to analyse the use of this website. Google Analytics generates statistical and other information about website use by means of

cookies, which are stored on users’ computers. The information generated relating to our website is used to create reports about the use of the website. Google will store and use this information. Google’s privacy policy is available at: http://www.google.com/privacypolicy.html



IP Addresses and Server Logs

Our web service stores access logs in the standard formats which include IP addresses.



We use the information to better understand user behaviour on our systems, so that we may improve the experience for all. We also use the information for security and

operational purposes.



Search Results

We monitor search results to ensure that people are finding the information they are looking for quickly and easily and should we identify pages that are giving misleading search results we will amend them to avoid such issues.



Cookies

We use cookies to allow you to log in to our systems, connecting various page views together into a session. If you use the “remember me” feature, this will store a token within your browser so that you do not need to log in every visit.



Most of our systems continue to operate when cookies are blocked, however some functionality may be reduced. Please refer to your browser’s manual for details on how to block cookies within your client.



Information that we collect from you

When you use our products or services you may be asked to provide certain information about yourself, including your name and contact details. We may also

collect information about your usage, as well as information you provide during such usage. This includes using our websites, products and services, as well as any

correspondence or communication you send.



Users of age 16 and under

If you are aged 16 or under, please get your parent/guardian’s permission beforehand whenever you provide personal information to this website. Users without this consent are not allowed to provide us with personal information.



Use of your information

Use of your information will vary depending on how your information was tracked. For example, if you send us an email we will use your information to reply to your message. In other cases, we may use your information to enable us to provide you with access to some or all parts of our site. We may also use and analyse the information we collect (for example page rankings and emails) so that we can administer, support, improve and develop our business.



We collect information to process your order, manage your account, and, if you agree, to contact you for your views on our products and services and to notify you occasionally about important changes or developments to the site or our products and services.



Disclosure of your information

The information you provide to us will be held on our computers and may be accessed by or given to our staff. Unless required to do so by law, we will not otherwise share, sell or distribute any of the information you provide to us without your consent.



Clients who purchase goods or services from Candylio may be referenced in promotional material. Should you not want to be listed, please contact us. Individuals will never be added to the list.



Finally, if our business enters into a joint venture with or is sold to or merged with another business entity, your information may be disclosed to our new business partners or owners.



Access by your company administrator

You should be aware that the administrator of your Products and Services at your company may be able to:

access information in and about your account; disclose, restrict, or access information that you have provided or that is made available to you when using your account, and; control how your account may be accessed or deleted.



Host Clients

If you are using our Host service, Candylio will have access to your Atlassian Product license key and in some cases an administrative login to your account. Access to this information is strictly controlled and will only be used for specific support services such as the initial configuration of your Builder account, routine maintenance such as backups and changes to server configuration and also any bespoke content production or alterations we make upon your request.



In addition, Atlassian will have to retain a copy of your contact details and license key of the Atlassian Products for their own records, along with any correspondence

you may have with them directly.



Communications

From time to time you may need to contact Candylio and, likewise, we may need to contact you. During such communications contact details are generally transferred

(either manually or automatically) between both parties.



When you contact Candylio

There are numerous ways to contact us, each of them is listed below.



Telephone

If you telephone us, our itemised billing will contain a record of your telephone number, the date and time on which you called, the duration of your call and the

recipient of your call.



From time to time, telephone calls may be recorded to help us monitor and improve our service to clients.



Most telephone companies provide a dialing prefix that will hide your telephone number should you wish your calls to be more anonymous. For further information, please contact your telephone company.



Email

When you send us an email, it will contain your email address and a list of all servers which the email has passed through to get to our email server.

We now provide online email forms on our website (see Contact section for relevant forms) so that you can insert email messages directly in to our key departments. Note, however, that any replies we send and your subsequent correspondence will still be transferred as normal email.



In some cases, we may keep email messages for two years or more, but will usually delete them should you cease to be our customer.



We make extensive use of our online support system to manage emails regarding general enquiries, sales enquiries and support enquiries. This system allows you to log in and view all emails from your email address.



Online Support Website

When you add a support request (and any subsequent posts to it) to our online support site, your request will be stored against your email address. You will also receive email notifications when adding your support request as well as any replies made to that request.



Note: Due to problems with Spam, notifications are only sent for support requests at present.



You can view sample form stored against your email address at the bottom of our homepage



When we contact you

Should we contact you (usually as a result of you contacting us first), it may be via post, telephone as well as by e-mail or SMS messaging. If you do not want us to contact you, or would prefer to only be contacted in a specific manner, please contact us.



Note: We have a strong preference for email communications and will only resort to using other alternatives should emails not get through to you.



When we send you emails, both will be stored on our email server until manually deleted.



If we contact you by telephone, our call logs will show your phone number, call duration and date and time. For legal reasons, we’re unable to delete this information.



If we send correspondence via post, there will usually be a document stored on our computer that was used to print the correspondence.



Page Tracking, Comments and Ratings

This website temporarily records the pages you visit so that you can quickly revisit them. Candylio do not have access to this information and it is automatically deleted within 1 hour of your last access to this server.



Should any pages on this site allow posting of comments, your username will be associated with any comments (except in areas where anonymous comments are permitted you post and displayed alongside those comments to anyone who has access to see them).



Software Downloads

We may make certain software available for download on this website or link to software on other, third party websites. This software may be created by Candylio orby third party vendors. The software may be programmed to access our servers and/or third party servers in order for the software to operate and in order to check for program upgrades or enhancements. From time to time, new files may be added to your computer in order to upgrade the software or add new functionality to it. These changes may occur without notice to you. If at any time you wish to uninstall the software program, you may do so by following the instructions that accompany

the software. Use of the software will be governed by a separate license agreement.



Securing the Transmission and Storage of Information

Candylio is committed to protecting the security of your personal information. We use a variety of security technologies and procedures to help protect your personal information.



In particular, we use all reasonable endeavours to ensure that appropriate security measures are in place to protect your Personal Data. We apply the security

measures foreseen in the applicable regulations as well as our own technical and organizational security measures including policy, governance, procedures, responsibilities, risk assessment; network and subprocessor security.



Candylio operates secure data networks protected by industry standard firewall and password protection systems. Our security and privacy policies are periodically reviewed and enhanced as necessary, and only authorized individuals have access to the information provided by our users. Candylio takes steps to ensure that your information is treated securely and in accordance with this Privacy Policy.



Unfortunately, the transmission of information via the internet is not completely secure and so we cannot guarantee the security of your Personal Data transmitted through the Website; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent

unauthorised access.



We treat the information you provide to us, including the Files, as confidential information; it is, accordingly, subject to our company's security procedures and corporate policies regarding protection and use of confidential information. After personally identifiable information reaches Atlassian, it is stored on a server with physical and electronic security features as customary in the industry, including utilization of login/password procedures and electronic firewalls designed to block unauthorized access from outside of Atlassian. Because laws applicable to personal information vary by country, our offices or other business operations may put in place additional measures that vary depending on the applicable legal requirements.



Information collected on the sites covered by this Privacy Policy is processed and stored in the United States and possibly other jurisdictions and also in other countries where Candylio and its service providers conduct business. All Candylio employees are obligated by our privacy and security policies. Your information is only accessible to those employees who perform technical support of the service.



If a password is used to help protect your accounts and personal information, it is your responsibility to keep your password confidential. Do not share this information

with anyone. If you are sharing a computer with anyone you should always log out before leaving any site or service to protect access to your information from

subsequent users.



Accessing and updating

You are entitled to see the information held about you and you may ask us to make any necessary changes to ensure that it is accurate and kept up to date. If you wish

to do this, please contact us.



We want to make sure your personal information is correct and up to date. You may ask us to correct or remove information you think is inaccurate.



Changes to our privacy policy

As statutory and online requirements change so this policy document may change. Any changes to our privacy policy in the future will be posted to this page.