OUR COMMITMENT TO YOU
At Sakura, your privacy is a top priority. We appreciate that you put your trust in us when you provide us with your information and we do not take this lightly.
We do not compromise with your privacy. We design all of our products and services with your privacy in mind. We involve experts from various fields, including legal, security and others to make sure that no decision is taken without respect for your privacy.
We work hard to keep your information secure. We have teams dedicated to keeping your data safe and secure. We constantly update our security practices and invest in our security efforts to enhance the safety of your information.
We appreciate that you trust us with your information and we intend to always keep that trust. This starts with making sure you understand the information we collect, why we collect it, how it is used and your choices regarding your information. This Policy describes our privacy practices in plain language, keeping legal and technical jargon to a minimum.
IAC Search and Media Europe Limited
10 Earlsfort Terrace
If you live outside the EEA, the company responsible for your information is:
Ask Applications, Inc.
29 Wells Avenue, Suite 300
Yonkers, NY 10701
ATTN: Privacy Officer/Legal Dept.
3. INFORMATION WE COLLECT
It goes without saying, we can’t help you have an awesome user experience without some information about you, such as your email address and password in some of our services. We also collect information generated as you use our services, as well as information from third parties, like when you access our services through your Facebook account in Weather Live. Your information may be kept in an identifiable format, or in an aggregate format which means that you cannot reasonably be identified from it.
Information you give us
You choose to give us certain information when using our services. This includes:
When you create an account in some of our services, you provide us with your login credentials, such as email address, name and password.
To use certain features in our services, you may allow us to access your camera or the microphone. Depending on your device, Apple and Android system will ask for your permission before allowing us to access these features. The Warmlight – Picture Editor App does not have access or collect any facial data.
Features that allow you to share content about your use of our services with your connections or through your social network. We may also collect your information when you use our app such as when you post or share material, upload data, request further services or make selections using our app, if such functionality is available in the app.
In our Paloma app, please note that anything you input into the app (such as your menstruation) is stored on your device and not accessible by Sakura. However, in order to understand if our Paloma users are enjoying the app, we do receive anonymised statistics from our analytics partners about what features users like and don’t like. Should you wish to sync data held in your Apple “Health” app with Paloma (and vice versa), we will ask you for your explicit permission to do this. If you permit Paloma to access your Apple “Health” app data, then this data will only be stored on your device and will not be transmitted to Sakura or any other third party. You can “unsync” Paloma from your Apple “Health” app or vice versa at any time – however, please note that all previously synced data will remain. You can manually remove your data from your Apple “Health” app or Paloma at any time.
In our Sleepzy app, we ask for your explicit permission to access your heart rate data, which is stored on your device through Apple “Health” app. If you permit Sleepzy to access this data, then this data will be displayed in the Sleepzy app to help you gain a better understanding of your sleep habits and sleep quality alongside your health metrics. We will not store or access any of your health data that is accessed from Apple “Health” app and will not transmit this data to external servers or any other third party; all data from Apple “Health” app shall remain on your device. For additional clarity, we will not use your health data for advertising, promotion, cross-selling or any similar service.
If you contact our support team, we collect the information you give us when you report a problem, contact or communicate with us. In our VPN App, we do not connect this information to your internet browsing activities through our VPN.
From time to time, we may request your opinions, suggestions, or modification and improvement ideas (“Feedback”) through surveys, or other similar requests. Any responses you provide are voluntary, however you agree that any Feedback you provide shall be owned Sakura and may be used by Sakura in our sole discretion.
Information we receive from others
In addition to the information you provide us directly, we receive information about you from others, including:
• We may receive information about you from our partners, for instance where our ads are published on a partner’s website or platform (in which case they may pass along details on a campaign’s success).
• If you purchase a subscription in our apps, neither Google nor Apple provide us with any personal information of the subscription purchaser (like name, email or payment information). Only anonymized data gets passed to Sakura.
Information collected when you use our services
When you use our services, we collect information about which features you’ve used, how you’ve used them and the devices you use to access our services. See below for more details:
We collect information about your activity on our services, for instance how you use them (e.g., date and time you logged in, time spent in the app, features you’ve been using, advertising that you click on).
Movement Data: If you opt-in, some services (e.g. Sakura’s sleep tracker app, Sleepzy) may collect movement data from your device.
We collect information from and about the device(s) you use to access our services, including:
geolocation data (in some of our apps), which is any information which indicates the geographical position of your device and which may include the time the location was recorded, and may include precise (e.g., GPS-level) location data. Some apps may collect this data when the app is not open or actively in use. This may help us or third parties to customize information, content, or offers to you, for instance.
information on your wireless and mobile network connection, like your service provider and signal strength.
hardware and software information such as IP address, device type, app crashes, app version, advertising IDs (such as Google’s AdvertisingID and Apple’s IDFA, both of which are randomly generated numbers that you can reset by going into your device’s settings), browser type, version and language, operating system, time zones, identifiers associated with cookies or other technologies that may uniquely identify your device or browser (e.g., IMEI/UDID and MAC address).
Information we collect when you use our #VPN app:
Our #VPN app is intended to provide for secure and private internet browsing to be used in accordance with all applicable laws.
In our #VPN app, we collect information from and about the device(s) you use to access our VPN app, including:
From when you open the #VPN App:
• Our servers automatically record information about how a person uses the app, including things like app install source, IP address, app version, operating system, device model and device language.
• From time to time, we might show you subscription offers – but at no time will you see an advertisement in our #VPN app.
• At no time will we ask you for access to your precise device location data in our #VPN app.
From moment you turn on #VPN software:
• Your browsing activity (including your IP address) becomes encrypted, meaning it becomes invisible to ISPs, third party snoopers and even us.
• We have a strict no-logs policy when it comes to seeing user activity online. Your IP address is deleted after you disconnect from the VPN.
4. COOKIES AND OTHER SIMILAR DATA COLLECTION TECHNOLOGIES
If you wish to opt out of interest-based tracking through your mobile device, you can do so through your device “settings”, as follows (but please note that the below is for informational purposes only and Apple, Google, or other device platforms may change the manner in which their “opt out” settings work at any time): Please note that if you opt out through these settings, you will continue to receive advertising after you opt-out, but it may not be tailored to your interests. For instance, that advertising may be based on your real-time or “contextual” application usage or general location inferred from IP address.
Opting Out on iOS Devices Such as iPhones, iPads or iPods
If you have an Apple device, you can opt out of interest-based advertising by updating to iOS 6.0 or higher, and setting Limit Ad Tracking to ‘ON’. On an iPhone 6 for example, you can do this by clicking on Settings -> General -> Privacy -> Advertising and toggling “Limit Ad Tracking” to ‘ON’. Our systems are designed to respect your choice and not use your personal information to provide interest-based advertising when this setting is ON.
Opting Out on Android Devices
If you have an Android device and would like to opt out of interest-based advertising, you may do this as follows:
Open the Settings app on your device
Go to “Google”
Opt out of interest-based ads
5. HOW WE USE INFORMATION
The main reason we use your information is to deliver and improve our services. Additionally, we may use your information to help keep you safe and to communicate with you. Read on for a more detailed explanation of the various reasons we use your information, together with practical examples.
In our #VPN App specifically
When you connect to the VPN, we collect your IP address, immediately encrypt it and store it only for the duration of your VPN session. Your IP address is deleted after you disconnect from the VPN. We do not associate your IP address with your online activities and we do not store or log your IP address after you disconnect from the VPN.
We do not keep logs of your online activities and never associate any domains, or applications that you access while the VPN is connected with you or your device.
We DO NOT use your non-personal information (meaning information that, by itself, does not identify who you are such as device information) for targeted online marketing through tools like Facebook Custom Audience to contact interested parties.
We DO NOT use or share VPN IP or usage data (i.e. network activity).
To administer your account and provide our services to you
Deliver our services to you and ensure their optimal functionality and operation.
Identify, establish and manage your account and our relationship with you.
Provide you with customer support and respond to your requests.
Should you provide us with this information, we may use your email address, name, country and language for customized marketing purposes.
When we collect your precise geolocation data (subject to your consent) (which may be via the device’s cellular, Wi-Fi, Global Positioning System (GPS) networks and/or Bluetooth information), we do so to provide you with our location-related products and services, for example to provide you with forecast and weather alerts for your location, and also to facilitate, measure, or otherwise support advertising by third parties (through our apps or third parties’ apps) that may be related to your location over time.
If you have registered with an app using your social media account details, we may use the information we receive from your social media provider to identify which of your friends are also using our services so that you can connect with them in our app.
In some services, to ensure a consistent experience across your devices
Link the various apps and devices you use, so that you can enjoy a consistent experience of our services on all of them. This will allow us to form a single view of your use of our services, so you can easily access your content on multiple devices. For this purpose and better user experience generally, we may use and combine your personal information which we collect across different services used by you.
To improve our services and develop new ones
Develop new features and services (for example, we may decide to build a new feature further to requests or feedback received from users).
Conduct research and analysis of your behaviour about your use of, or interest in, our products, services, or content to improve our services and content (for instance, we may decide to change the look and feel or even substantially modify a given feature based on users’ behaviour). This software may record information such as how often you use the services, what happens within the services, aggregated usage, performance data, app errors and debugging information, and where the apps were downloaded from.
To communicate with you
Communicate with you by postal mail, telephone and/or mobile devices (including through in-application advertising) about products or services that may be of interest to you either from us, our parent or subsidiary companies or other third parties. If you do not wish to receive in-application advertising, in some cases you can upgrade to the paid version of the app.
When you share your information with us via a social network provider like Facebook, we use this to show information on your social network profile (subject to your privacy setting and preferences for such social network) and to allow you to share information about our services with your connections or on your social network profile.
With your consent (where needed), to send you email marketing in order to provide you with information about services that you may find of interest. You can opt-out of receiving direct marketing communications from us by following the unsubscribe instructions included in our marketing communications. We also send you non-marketing emails or messages, such as those related to transactions, your account, security, or product changes. Examples of service-related messages include an email address confirmation/welcome email when you register your account, service availability or modification of key features or functions.
To serve you relevant offers and ads
Develop and display content and advertising (and work with third parties who do so) tailored to your interests and/or location and to measure its effectiveness. When you are on our services, third-party ad partners may provide you with advertising based upon your interests. These companies may use technologies to collect data about users, including precise device location data, to help them tailor relevant ads and measure ads’ effectiveness. These companies may collect this data through SDKs or from users who view or interact with their advertisements. For the purposes of European law, most of these ad partners are independent controllers of your information, which means that they are responsible for providing and complying with their own policies relating to any personal information they obtain in connection with the services. It also means that if you are a Facebook app user for example – you provided consent to Facebook in your Facebook app to allow them to show you personalized ads inside of our services.
Verify your eligibility and deliver prizes in connection with contests and sweepstakes and in order to conduct polls and surveys;
To prevent, detect and fight fraud or other illegal or unauthorized activities
Perform data analysis to better understand and design countermeasures against these activities
Retain data related to fraudulent activities to prevent against recurrences
To ensure legal compliance
Comply with legal requirements
Assist law enforcement
Enforce or exercise our rights, for example our EULA
To process your information as described above, we rely on the following legal bases:
Provide our service to you: Most of the time, the reason we process your information is to perform the contract that you have with us. For instance, as you go about using our service, we use your information to maintain your account and provide our cool features to you.
Legitimate interests: We may use your information where we have legitimate interests to do so. For instance, we analyze users’ behavior on our services to continuously improve our offerings and we process information for administrative, fraud detection and other legal purposes.
6. HOW WE SHARE YOUR INFORMATION
Since our goal is to provide the best services we can to you, the main sharing of users’ information is with service providers and partners who assist us in operating the services, with other IAC Group companies and, in some cases, legal authorities. Read on for more details about how your information is shared with others.
With our service providers and partners
We follow a strict vetting process prior to engaging any service provider or working with any partner. We use third parties to help us operate and improve our services. These third parties assist us with various tasks, including data hosting and maintenance, analytics, marketing, advertising and security operations. These service providers may have limited access to your information, which is needed to perform their functions, but are not permitted to share or use such information for any other purposes. For example, we use your non-personal information (meaning information that, by itself, does not identify who you are such as device information) for targeted online marketing through tools like Facebook Custom Audience to contact interested parties.
In addition, we may share aggregated information we collect, under any of the above circumstances, with third parties, including advisors, advertisers and investors, for the purpose of conducting general business analysis or other legitimate business purposes. Please note that such aggregated information will not include any information which allows third parties to identity you.
With our #VPN service providers
Our VPN service providers may have limited access to your information, which is needed to perform their functions, but are not permitted to share or use such information for any other purposes. We do not log, and prohibit our VPN service providers from logging, your internet browsing activities when you use our VPN.
With other IAC Group companies
Sakura is part of the IAC Group family of businesses.
We share your information with other parts of IAC to:
• assist us in technical processing operations, such as data hosting and maintenance, finance, legal, HR and accounting assistance, securing our data and systems and fighting against spam, abuse, fraud, infringement and other wrongdoings.
• for legitimate business purposes such as corporate audit, analysis and consolidated reporting as well as compliance with applicable laws.
For corporate transactions
We may transfer your information if we are involved, whether in whole or in part, in a merger, sale, acquisition, divestiture, restructuring, reorganization, dissolution, bankruptcy or other change of ownership or control.
When required by law
We may disclose your information if reasonably necessary: (i) to comply with a legal process, such as a court order, subpoena or search warrant, government / law enforcement investigation or other legal requirements; (ii) in connection with efforts to investigate, prevent, or take other action regarding illegal activity, suspected fraud or other wrongdoing; or (iii) to protect and defend the rights, property or safety of our company, our users, our employees, or others.
To enforce legal rights
We may also share information: (i) if disclosure would mitigate our liability in an actual or threatened lawsuit; (ii) as necessary to protect our legal rights and legal rights of our users, business partners or other interested parties and/or to comply with applicable law; (iii) to enforce our agreements or policies with you; and (iv) to investigate, prevent, or take other action regarding illegal activity, suspected fraud or other wrongdoing.
With your consent or at your request
We may ask for your consent to share your information with third parties. In any such case, we will make it clear why we want to share the information.
7. HOW WE PROTECT YOUR INFORMATION
The security of your personal information is important to us. We follow generally accepted standards to protect the personal information submitted to us, both during transmission and after it is received. We work hard to protect you from unauthorized access to or alteration, disclosure or destruction of your personal information. As with all technology companies, although we take steps to secure your information, we do not promise, and you should not expect, that your personal information will always remain secure. We regularly monitor our systems for possible vulnerabilities and attacks and regularly review our information collection, storage and processing practices to update our physical, technical and organizational security measures.
We may suspend your use of all or part of the services without notice if we suspect or detect any breach of security. If you believe that your account or information is no longer secure, please notify us immediately at SakuraDPO@sakura-massage.eu
8. INFORMATION RELATING TO CHILDREN
Our services are intended for general audiences over the age of 13 years old (or over the age of 16 if you are resident in the EEA). We do not knowingly collect information from children under the age of 13 years old, or 16 years old in the EEA. If you are not over 13 years old (or 16 years old in the EEA) then DO NOT DOWNLOAD OR USE THE SERVICES. If you believe that we may have personal information from or about a child under the age of 13 years old (or over the age of 16 if you are resident in the EEA), please contact us at SakuraDPO@sakura-massage.eu and we will promptly delete that personal information
9. YOUR RIGHTS
We want you to be in control of your information and be aware of your privacy rights, so here are a few key points to remember:
Depending on your location you may have some or all of the following rights in relation to how we use your personal information:
• Access: you may request access to your personal information and receive copies of it;
• Correction: you may have inaccurate/incomplete personal information corrected and updated;
• Object to, or Limit or Restrict, Use of Data: you can ask us to stop using all or some of your personal information or to limit our use of it.
• Deletion: in certain circumstances, you can request a right “to be forgotten” (this is a right to have your information deleted or our use of your data restricted). We will honour such requests unless we have to retain this information to comply with a legal obligation or unless we have an overriding interest to retain it.
• Portability: in certain circumstances, exercise the right to data portability (this is a right to obtain a transferable version of your personal information to transfer to another provider)
• Consent Management: where we rely on consent to process your personal data, you may withdraw consent at any time. You do not have to provide a reason for your withdrawal where processing is based on consent.
If you wish to exercise any of these rights, or wish to object to our use of your information, please write to us at the address listed below and we will consider your request in accordance with applicable laws.
Keep in mind, we may reject requests for certain reasons, including if the request is unlawful or if it may infringe on the rights and freedoms of another person. For example, we may not be able to accommodate certain requests to object to the processing of personal information, notably where such requests would not allow us to provide our service to you anymore.
For your protection, we may ask you to provide proof of identity before we can answer the above requests.
10. CROSS-BORDER DATA TRANSFERS
Sharing of information sometimes involves cross-border data transfers, for instance to the United States of America and other jurisdictions. The United States, European Economic Area (“EEA”) Member States, and other countries all have different laws. When your information is moved from your home country to another country, the laws and rules that protect your personal information in the country to which your information is transferred may be different from those in the country in which you live.
The European Commission has adopted standard contractual clauses (also known as Model Clauses), which provide safeguards for personal information that is transferred outside of the EEA. We use these Model Clauses or other suitable safeguards (such as EU-US Privacy Shield to send personal information to some of our third party service providers in the United States, where they are certified to receive such information under the Privacy Shield Program) to permit data transfers from the EEA to other countries.
11. HOW LONG WE STORE YOUR INFORMATION
We retain your information only for as long as is necessary for the purposes set out in this policy, for as long as your account is active or as needed to provide the services to you. We will also retain and use your information to the extent necessary:
to comply with applicable law;
to evidence our compliance with applicable law;
if there is an outstanding issue, claim or dispute requiring us to keep the relevant information until it is resolved; or
if the information must be kept for our legitimate business interests, such as enforcing our terms or fraud prevention. For example, information may need to be kept to prevent a user who was banned for security incidents from opening a new account.
Keep in mind that even though our systems are designed to carry out data deletion processes according to the above guidelines, we cannot promise that all data will be deleted within a specific timeframe due to technical constraints.
Because we’re always looking for new and innovative ways to help you enjoy our services, this policy may change over time. We will notify you of any material changes so that you have time to review the changes.
13. DATA PROTECTION OFFICER
For our European users, our Data Protection Officer is responsible for ensuring your rights are respected and to review and oversee how we collect and use your personal information. They can be reached by contacting SakuraDPO@sakura-massage.eu
14. HOW TO CONTACT US
If you live in the EEA:
IAC Search and Media Europe Limited
10 Earlsfort Terrace
If you live outside the EEA:
Ask Applications, Inc.
29 Wells Avenue, Suite 300
Yonkers, NY 10701
ATTN: Privacy Officer/Legal Dept.
Without prejudice to any other rights you may have, if you are located in the EEA, you also have the right to file a complaint against Sakura with the Irish Data Protection Commissioner (“DPC”), which is Sakura’s Lead Supervisory Authority.