Hema Studio's Services are offered to companies and/or other legal entities for professional use (our 'Subscribers'). Our Subscriber agreements govern the delivery and use of the Services ('Subscriber Agreements').

This Privacy Policy applies when Hema Studio is the data controller responsible for processing personal data. It does not apply to any input submitted to, output generated by, or documents uploaded to our Services ('Content'). We process Content as a data processor on behalf of our Subscribers (the data controllers), and our processing of Content is governed by the relevant Subscriber Agreement. Any queries related to personal data included in Content should be directed to our Subscribers. If we receive any rights requests concerning instances where we act as data processor, we will forward them to the relevant Subscriber.

Hema Studio may maintain links to other websites and other websites may maintain links to the Online Services. This Privacy Policy only applies to hema-studio.com and not to other websites accessible from Hema Studio or websites that you use to access Hema Studio.

2.1 Information you provide to us

We collect personal data provided to us if you create an account to use our Services or communicate with us, including:

• User account information: We require everyone with access to our Services to have an account. When you or your employer creates a Hema Studio account, we collect personal data including your name, email address, phone number, company name, role, language preferences and account credentials.
• Communication information: When you contact us for customer support, feedback, or inquiries, we collect your name, email address, phone number, and any other information you provide us with to assist you or resolve your issue. Hema Studio may monitor and record phone conversations or email communications for training and quality assurance purposes.
• Social media information: We have accounts on social media sites such as LinkedIn and Instagram. When you interact with our Social Media, we will collect personal data that you elect to provide to us. Third-party hosts may provide us with aggregate analytics regarding your use of our Social Media.
• Survey and contest information: We may invite you to participate in satisfaction surveys. If you participate, we may request your name and email address. Participation is entirely voluntary.
• Testimonial and review information: We may display personal testimonials or reviews from satisfied users if you have consented. If you wish to update or delete your testimonial, please contact us.

2.2 Information we automatically collect

When you visit, use, and interact with our Services, we automatically collect certain information ('Technical Information'), including:

• Log data: Your browser automatically sends us your IP address, browser type and settings, the date and time of your request, and how you interacted with the Online Services.
• Device information: We automatically collect information about the device you use, including device name, operating system, browser, referring/exit pages, date/time stamps, and clickstream data.
• Usage data: We automatically collect information about your use of our Services, including the features you use, actions you take, your time zone, location, dates and times of access, and time spent within the Services.
• Cookies: Cookies are small text files transferred to your device for identification purposes. Hema Studio uses essential cookies (to enable navigation and secure access), performance and analytics cookies (including Google Analytics), and functional cookies (to remember your preferences). You may turn off cookies in your browser settings, though this may limit certain features.

2.3 Information collected from third parties

We may collect information about you from third parties, such as security partners, marketing vendors and event organizers. Our Subscribers may provide us with information about you to facilitate us providing our Services.

2.4 Publicly available information

Hema Studio may collect publicly available information about Subscribers and prospects, including name, email address, phone number and other contact details, for the purposes of providing and marketing our Services.

2.5 Aggregated information

Hema Studio may aggregate personal data to analyze the effectiveness of our Services, improve and add features, and share general user statistics with third parties. Aggregated information does not identify individual users.

Hema Studio may use your personal data for the following purposes:

• To provide, administer, maintain, and/or improve our Services;
• To provide you with support services, resolve issues or reply to your queries;
• To manage and remember your preferences and customize the Services;
• To communicate with you, including to send you information or marketing about our Services and events;
• To analyze and study the effectiveness of our Services and to develop new features and services;
• To verify your identity, prevent fraud, criminal activity and to ensure the security of our IT systems, architecture, and networks;
• To prevent misuse of the Services and enforce our legal terms;
• To comply with legal obligations and legal processes; and
• To protect Hema Studio's rights, privacy, safety, or property, and/or that of our affiliates, you, or other third parties.

In certain circumstances, we may share your personal data with third parties, including:

• Affiliates: Hema Studio may share your personal data with other entities within the Hema Studio corporate group. Affiliates will only use personal data in a manner consistent with this Privacy Policy.
• Vendors and Service Providers: To assist us in meeting business operations needs, we may share your personal data with hosting services, cloud service providers, IT services providers, email communication software, advertising and marketing services, and web analytics services.
• Third-party Websites and Services: Our Services may contain links to other websites not operated or controlled by Hema Studio. Information you share with third-party sites will be governed by their own privacy policies.
• Other users: When using collaboration features within Hema Studio's Services, certain actions you take may be visible to other users.
• Business changes: If we are involved in strategic transactions (such as a sale, merger, reorganization, or liquidation), your personal data may be shared in the diligence process and transferred to a successor or affiliate.
• Legal Requirements: Hema Studio may share your personal data if required to do so by law or in good faith belief that such action is necessary to comply with a legal obligation, protect and defend our rights or property, prevent fraud, or protect against legal liability.

Hema Studio always strives to process your personal data as close to you as possible. By using our Online Services, you understand that your personal information may be transferred to our facilities and servers within the EU/EEA.

In certain situations your personal data may be transferred outside the EU/EEA. Hema Studio always ensures that the same high level of protection applies in accordance with relevant data protection laws, including by relying on one or more of the following safeguards:

• Adequacy decisions: Transfers to countries deemed adequate by the European Commission.
• Standard Contractual Clauses: The relevant authority's standard clauses entered into between Hema Studio and the recipient, ensuring your data remains protected.
• Derogation: In limited circumstances, we may rely on exceptions under applicable data protection laws, such as your explicit consent or the establishment, exercise or defence of legal claims.
• Data Privacy Framework: Where applicable, transfers may be covered by a relevant data privacy framework, such as the EU-US Data Privacy Framework.

You have several rights under applicable data protection laws (including the GDPR) in relation to your personal data:

• Right to information and access: You have the right to be informed of how we process your personal data and to request a copy of the personal data we hold about you.
• Right to rectification: If you believe your personal data is inaccurate or incomplete, you have the right to ask for it to be corrected or completed.
• Right to restriction: You have the right to request that we restrict the processing of your personal data in certain circumstances, such as while we assess an objection or rectification request.
• Right to object: You have the right to object to the processing of your personal data based on our legitimate interest. You can always object to processing for direct marketing purposes.
• Right to be forgotten: In some cases, you have the right to have us delete personal data about you, for example where we no longer need it for the purpose it was collected or where you withdraw consent.
• Right to data portability: Where we process your personal data to fulfill a contract or on the basis of your consent, you may in certain cases obtain a copy of your personal data in a machine-readable format.
• Right to withdraw consent: Where we process your personal data based on your consent, you have the right to withdraw that consent at any time.
• Right to lodge a complaint: If you have objections or concerns about how we process your personal data, you have the right to lodge a complaint with the relevant supervisory authority.

To exercise any of your rights, please contact us at any time using the contact details in Section 10. We may require you to verify your identity before processing your request.

We take significant and appropriate steps to protect your personal data against loss, misuse, and unauthorized access, disclosure, alteration and destruction. We use appropriate technical and organizational measures, which may include physical access controls, encryption, intrusion detection and network monitoring, depending on the nature of the information and the scope of processing.

Hema Studio retains your personal information for as long as necessary to fulfill the purposes for which we collected it, or longer if required under applicable law:

• If you are a Hema Studio user covered by a Subscription Agreement between your employer and Hema Studio, we will delete your data in accordance with that Subscription Agreement.
• Personal data that Hema Studio is under a legal obligation to retain (for example under bookkeeping laws) is retained for the required periods under applicable laws, generally 5 or 7 years.
• Personal data not used for the purposes of a contractual relationship or where Hema Studio does not have a legal obligation to retain the data is only retained as long as necessary to fulfill the respective purpose, usually 3 months.

When we no longer need your personal data, we will delete it or anonymize it in accordance with our data retention policies and applicable laws.

We may update this Privacy Policy from time to time. When updated, we will post a revised version on this page. By continuing to use our Online Services or providing us with personal data after we have posted an updated Privacy Policy, you consent to the revised Privacy Policy.

If you have any questions about our Privacy Policy or any other privacy related matter, please contact us: