Effective Date: January 15, 2025

Welcome to WebAbility! This Privacy Policy outlines how we handle your personal information when you use our services, which include our standalone service accessible through our website, webability.io (collectively referred to as the "Service").

Information We Collect and Receive

We collect various types of information, including Personal Information, when a Customer or a Visitor (including anyone acting on their behalf) accesses or uses our Services as more fully set forth below.

a. Information You Provide

b. Information Collected from Other Sources

c. Information from Social Media

We collect publicly posted data (e.g., feedback, reviews, social handles) from our official social pages. If you'd like content removed, email [email protected].

d. Data Obtained through Analytics Tools

We use tools like Google Analytics to track site visits, page interactions, session frequency, non-precise geolocation, and referral sources.

e. Information We Collect from Third Parties

We may obtain data from referral partners, service providers (e.g., payment processors, social media), publicly available sources, and marketing providers. Combined with our data, this helps us improve and personalize the Service.

f. Information Collected in Accordance with Applicable Law

We also collect any data required to verify your identity or comply with legal obligations under applicable laws.

Communications

We may contact you via email, telephone, or other means about changes to the Service, updates to your account, billing issues, and important security or account-related notices ("Essential Communications"). You cannot opt out of these Essential Communications as they are necessary for contract performance.

Additionally, we may send newsletters, feature updates, event invitations, and other marketing or promotional emails based on your consent. You may withdraw consent and opt out of these easily by:

Consent withdrawal will be processed immediately and take effect within 48 hours.

How We Use Your Data

WebAbility uses the collected data for various purposes, including:

Data Transfer

Your information, including Personal Data, may be transferred to and maintained on servers located outside your state, province, country, or other governmental jurisdiction where data protection laws may differ from your own. If you are located outside Germany and choose to provide information to us, note that we transfer the data to Germany for processing. This transfer is necessary for the performance of our contract with you and to provide our services.

We take reasonable steps to ensure that your data is secure and treated in accordance with this Privacy Policy and applicable data protection laws. All data processing takes place within the European Economic Area (EEA), ensuring adequate protection under GDPR. No transfer of your Personal Data will occur to an organization or country unless adequate controls are in place.

Since we process data within Germany and the European Economic Area (utilizing secure German data center infrastructure), your personal data benefits from comprehensive protection under European data protection laws.

Data Protection Officer

You can contact our Data Protection Officer at:
Email: [email protected]
For general privacy inquiries: [email protected]

Disclosure of Data

WebAbility may disclose your Personal Data in good faith if necessary to:

Security of Data

The security of your data is important to us. We implement appropriate technical and organizational measures to protect your Personal Data against unauthorized access, alteration, disclosure, or destruction. These measures include:

However, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.

Data Protection Safeguards

Since we process data within Germany and the European Economic Area, your personal data benefits from comprehensive protection under European data protection laws.

Data Protection Officer

You can contact our Data Protection Officer at:
Email: [email protected]
For general privacy inquiries: [email protected]

How Long We Retain Personal Information

We retain Personal Information for specific periods based on the purpose:

After the retention period ends, we take the following actions with your personal data:

You can request earlier deletion of your personal data by contacting us at [email protected]. Note that anonymized data cannot be deleted as it no longer identifies you personally.

Aggregated, anonymized data used for business insights is retained indefinitely, as it cannot identify you and provides valuable insights for service improvement.

How We Protect Your Information

The security of your Personal Information is important to us. We implement physical, technical, and organizational safeguards—such as encryption, access controls, and secure development practices—to protect your data from misuse, damage, and unauthorized access.

However, no system is entirely foolproof. While we strive to use industry-standard measures, we cannot guarantee absolute security for information transmitted over the Internet or stored on our servers or those of our third parties.

Your Rights as a Visitor from the EEA, UK or Switzerland

If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, the GDPR, UK GDPR, and Swiss FADP apply. In addition to the rights in this policy, you have the additional rights listed below.

We process your Personal Information on these lawful grounds:

You have the right to:

For a full summary of your EU data protection rights, visit ec.europa.eu/info/law/law-topic/data-protection/reform/rights-citizens_en.

To exercise these rights, contact us at [email protected]. We may request information to verify your identity and will respond within 30 days.

When we act as an independent data controller, you may contact us directly. If we process data on behalf of another controller, please contact that controller to exercise your rights.

If you're unsatisfied with our response, you may lodge a complaint with your local Data Protection Authority. Find contacts at ec.europa.eu/justice/data-protection/article-29/structure/data-protection-authorities/index_en.htm.

Specific Provisions for California Residents

a. Categories of Personal Information Collected

In the past 12 months, we have collected:

b. Business Purposes for Collection

We collect this information to provide, maintain, and improve the Service, as described in Section 4.

c. Sources of Information

We obtain Personal Information directly from you, from your use of the Service, and from third-party providers.

d. Sharing of Personal Information

We share your data with service providers and affiliates (see Section 5). We do not "sell" your data under CCPA, but we do share it with certain ad tech partners. To opt out of such sharing, click here.

e. Categories of Disclosed Information

In the past 12 months, we have disclosed for business purposes:

We have not sold Personal Information in the past 12 months.

f. Your Rights as a California Resident

You may:

g. How to Exercise Your Rights

To submit a request, email us at [email protected]. Only you or an authorized agent may make a request. You may make two requests per 12 months. We will verify your identity and respond within 45 days (possible extension of 45 more days with notice). We do not charge a fee unless the request is excessive or unfounded.

Service Providers

We may employ third-party companies and individuals to facilitate our Service ("Service Providers"), provide the Service on our behalf, perform Service-related services, or assist us in analyzing how our Service is used.

These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

GDPR Compliance: All service providers are contractually bound to:

Analytics

We may use third-party Service Providers to monitor and analyze the use of our Service.

International Data Transfers

Since we process data within Germany and the EEA, international data transfers are minimized. Where transfers outside the EEA occur (e.g., to cloud service providers), we ensure adequate protection through:

Links to Other Sites

Our Service may contain links to other sites that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

GDPR Compliance

If you are located in the European Economic Area (EEA), the following additional provisions apply:

Data Controller

WebAbility is the data controller responsible for your personal data under the GDPR.
Contact:
WebAbility
Email: [email protected]
DPO Email: [email protected]

Lawful Basis for Processing

We process your personal data only where we have a lawful basis to do so, such as:

Your GDPR Rights

Under the GDPR, you have the right to:

To exercise any of these rights, please contact us at [email protected]. We will respond within one month, or sooner if required by law.

Supervisory Authority

If you are located in the European Economic Area and believe that our processing of your personal information violates data protection laws, you have the right to lodge a complaint with a supervisory authority responsible for data protection. You can find contact details for supervisory authorities at: edpb.europa.eu/about-edpb/about-edpb/members_en

Changes to This Privacy Policy

Recent Updates (January 15, 2025)

Key changes in this version include:

Future Changes

We may update our Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page.

For material changes that affect your rights or significantly change how we process your data, we will provide at least 30 days' notice via email and/or a prominent notice on our Service, and update the "Effective Date" at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Contact Us

If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact us:

Data Controller:
WebAbility
Email: [email protected]

Data Protection Officer:
Email: [email protected]

For GDPR-related inquiries:
Email: [email protected]

Make YOUR WEBSITE ACCESSIBLE for FREE

Find out now if your website is

WCAG  &  ADA compliant