EU-U.S. and Swiss-US Privacy Shield Policy

Gazelle (“Gazelle”, “we”, “our”, or “us”) complies with the EU-U.S. Privacy Shield Framework and Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce (collectively, “Privacy Shield”) regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States. Gazelle has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/

This Gazelle Privacy Shield Policy (“Privacy Shield Policy”) and the Gazelle Privacy Policy (“Privacy Policy”) describe in detail the privacy practices that we implement for Personal Data received from the EU or Switzerland.

Privacy Shield Principles

1. and 2. Notice and Choice

Our Privacy Policy covers the personal data we collect from each of our customers. This Privacy Shield Policy describes how we process Personal Data covered by the Privacy Shield.

If Personal Data covered by this Privacy Shield Policy is to be used for a new purpose that is materially different from that for which the Personal Data was originally collected, Gazelle will provide Data Subjects the choice to consent. You may, at any time, contact us at privacy@gazelleapp.io if you wish to opt-out of having your Personal Data processed by a third party as outlined in this Privacy Shield Policy and our Privacy Policy.

If you use Gazelle, we may act as an agent for you in relation to the Personal Data that you provide or make available to Gazelle. Gazelle does not have a relationship with your Customers except when your clients visit one of your client-facing pages of our service, such as when viewing an invoice or scheduling an appointment. In these cases Gazelle will notify your clients of the data we collect and given them a choice to consent. In all other cases, you are responsible for ensuring that Customers are provided with appropriate notice and choice with respect to their Personal Data.

3. Data Integrity and Purpose Limitation

We only collect Personal Data that is relevant to providing our Services. We process Personal Data compatible with the Services we provide as outlined in our Privacy Policy. We take reasonable steps to ensure that the Personal Data received under the Privacy Shield is essential for Gazelle’s services, accurate, complete, and current.

4. Accountability for Onward Transfers

Gazelle may disclose Personal Data to trusted third parties as indicated in the Privacy Policy. Gazelle requires that its agents and service providers ensure the same level of protection as required by the Privacy Shield Principles. We ensure that our agents process Personal Data received under the Privacy Shield in a manner consistent with our obligations under the Privacy Shield Principles, and share responsibility for any failure to comply. In some circumstances subject to the limitations within our Privacy Policy we may need to disclose Personal Data in response to lawful requests by public authorities, for law enforcement or national security reasons, or when such action is necessary to comply with a judicial proceeding or court order, or when otherwise required by law. Under no circumstances will we share any data without a court order.

Gazelle will remain liable under the Privacy Shield Principles if an agent processes personal information in a manner inconsistent with the Privacy Shield Principles, unless the Gazelle proves that it is not responsible for the event giving rise to the damage.

5. Data Security

All data is encrypted at rest and in transit. We use reasonable and appropriate physical, electronic, and administrative safeguards to protect Personal Data from loss, misuse and unauthorized access, disclosure, alteration and destruction, taking into account the nature of the Personal Data and the risks involved in processing that information.

6. Access to Personal Data

Our Privacy Policy explains how you may access or submit requests to review, correct, update, suppress, or delete Personal Data. You can ask to review and correct Personal Data that we maintain about you by sending a written request to privacy@gazelleapp.io. We may limit or deny access to Personal Data where providing such access is unreasonably burdensome, expensive under the circumstances, or as otherwise permitted by the Privacy Shield Principles.

When Gazelle acts on behalf of its Users, Gazelle will assist in responding to individuals exercising their rights under the Privacy Shield Principles. If you are not a direct customer of Gazelle, please contact the company or user through whom your interaction is controlled with your request to access or limit the use or disclosure of your Personal Data. If you contact us with the name of the User or company to which you provided your Personal Data, we will refer your request to that User and support them in responding to your access request.

7. Recourse, Enforcement and Dispute Resolution

In compliance with the Privacy Shield Principles, Gazelle commits to resolve complaints about our collection or use of your personal information. EU and Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Gazelle at:

Phone: +1 704-271-9877
Email: privacy@gazelleapp.io
Address: Luke Ehresman
c/o Gazelle
PO Box 832
Holly Springs, NC 27540

Gazelle has further committed to refer unresolved Privacy Shield complaints to JAMS, an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please contact or visit https://www.jamsadr.com/eu-us-privacy-shield for more information or to file a complaint. The services of JAMS are provided at no cost to you. A binding arbitration option may also be available to you in order to address residual complaints not resolved by any other means. Gazelle is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (“FTC”).

Changes to this Privacy Shield Policy

This Privacy Shield Policy may be changed from time to time, consistent with the requirements of the Privacy Shield and in accordance with the process described in the Privacy Policy. A list of significant changes will be kept at the bottom of this document.

Significant Revisions