Privacy policy

Note: If you're looking for a plain-English explanation of what we do to keep your data private and secure, you should check out our security center

Effective July 2nd, 2024

At Less Annoying CRM, we are denizens of the web, and we attempt to run our business the way we wish all web-based services would. As such, we respect your personal information and privacy and do everything, within reason, to prevent personal information from being disseminated without your consent.

Collected Information

At times we will collect personally identifiable or private information from you so that you can make use of our service. We never knowingly collect any personal information about people under the age of 13. This collected information includes the following:

You are never required to provide Less Annoying CRM with any personal information, but without the information detailed above, Less Annoying CRM will not be able to provide our service to you.

Less Annoying CRM also collects usage data and statistics about its users' behavior and visitor information (browser, operating system, etc.) for the purposes of improving the product and service we provide, but this data is for internal use only is and is never shared with any third party. We do not honor Do Not Track requests.

As a company, we are dedicated to keeping your personally identifiable information out of the hands of unauthorized viewers. We will always use the utmost discretion with your information, and we will never provide this information to any third party without your express consent, except in cases where:

You have the right to access your personal information. You may change, update, correct, or remove your personal information from Less Annoying CRM at any time. To do so, contact us at help@lessannoyingcrm.com.

Please be aware that Less Annoying CRM may be required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.

Your Data's Location and Ownership

Less Annoying CRM uses third-party vendors/hosting partners to provide the hardware, networking, storage, and other technology needed to run the CRM. Less Annoying CRM, however, owns the code, databases, and the CRM application. However, you, the user, maintain ownership of any data that you enter into the CRM system.

Each account has a single owner who will have control in the event of an ownership dispute amongst users within a single CRM account. The person who signs up for the service initially will be designated as the owner by default, but this user may request at any time that another user be given this status by contacting us at help@lessannoyingcrm.com.

Your identity is tied to the registered email address you have listed on your login settings page (this is also the email address we use to communicate with you). If you forget your password, or there is an ownership dispute, whoever has access to the registered email address for a user is considered to be the owner of that user's account. You must have access to your email account in order to be guaranteed access to the CRM.

Anytime we make important changes to your account (e.g. changing ownership), we will verify your identity either by sending you a verification email, or by requiring you to log in and submit a contact form. In order to prevent unauthorized ownership changes, when ownership of an account is transferred between users, the original owner (i.e. the person who controls the email address associated with the original owner’s account) will have a two week window to protest and revert the change by responding to an email sent to them notifying them of the change. After this two week period, the ownership change is considered final and cannot be reverted.

If a user changes the email address associated with their CRM account, a notification email will be sent to the previously listed email address. The owner of that email address will also have a two-week window during which they may revert the change by replying to that notice and informing Less Annoying CRM that the change was not authorized. If we do not receive an email requesting that we revert the change within two weeks of the change occurring, the change will be considered final and the owner of the original email address will have no claim to the account.

If the owner of a multi-user account leaves the company, it may be necessary to make a different user the owner. If this situation arises, we will first contact the current owner for permission. If the current owner denies permission, then we will not switch ownership. If the owner doesn't reply, we will continue trying to contact them for 90 days. If the owner has not responded after 90 days and a different member of the CRM account can demonstrate to us that they should in fact be the rightful owner of the account, we will transfer ownership to them. If the new owner did not previously have access to all of the data in the CRM, we will not give them access to any data that they could not previously see.

Because we store your information in multiple locations, including redundant back-ups, your information may remain on our servers after you delete your account. However, this information will never be accessed or used for any reason without your express consent.

We use third-party vendors to provide various services necessary for running Less Annoying CRM. We limit these vendors to only have access to your personal information when necessary (e.g. our email delivery service must know your email address in order to send you an email) and we never sell or share information with third parties aside from the purpose of offering you the Less Annoying CRM product and service.

Data protection and retention

We use industry best practices to store and protect your data. You can read the details in our security center, but to summarize: We encrypt your data both in transit and at rest. We regularly monitor our software for vulnerabilities, and we train every employee to avoid social engineering attacks.

If you cancel your account or your subscription lapses, we will keep an encrypted backup of your data securely archived for 12 months in case you want to reactivate your account during that time. After 12 months, we will permanently delete your data and you will not be able to reactivate your accoun. If you would like us to delete your data immediately rather than waiting the 12 months, please contact us at help@lessannoyingcrm.com.

External Data Collection and Sharing Features

If you use features that allow interaction with external parties (e.g., our form builder tool), the data you share and/or collect using these features will be handled with the same level of care as all other data. We may review content made accessible to external users to ensure compliance with our policies and to prevent abuse.

EU-US Data Privacy Framework, including UK Extension, & Swiss-US Data Privacy Framework Privacy Statement

Less Annoying CRM complies with the EU-U.S. Data Privacy Framework program (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework program (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. Less Annoying CRM has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF. Less Annoying CRM has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework program Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF.  If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.

The Federal Trade Commission has jurisdiction over Less Annoying CRM’s compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF).

Less Annoying CRM’s accountability for personal data that it receives in the United States under the DPF and subsequently transfers to a third-party is described in the DPF Principles. In particular, Less Annoying would remain responsible and liable under the DPF Principles if third-party agents that it engages to process personal data on its behalf do so in a manner inconsistent with the DPF Principles, unless Less Annoying proves that it is not responsible for the event giving rise to the damage.

Individuals are able to opt out of most automated system emails, as well as any email marketing, from their account settings. Individuals cannot opt out of sharing information with any of the listed providers, as they are all necessary for Less Annoying CRM to provide its services.

In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Less Annoying CRM commits to resolve DPF Principles-related complaints about our collection and use of your personal information.  EU and UK individuals and Swiss individuals with inquiries or complaints regarding our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF should first contact Less Annoying CRM at privacy@lessannoyingcrm.com.

Less Annoying CRM has further committed to refer unresolved privacy complaints under the DPF Principles to an independent dispute resolution mechanism, Data Privacy Framework Services, operated by BBB National Programs. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://bbbprograms.org/programs/all-programs/dpf-consumers/ProcessForConsumers for more information and to file a complaint. This service is provided free of charge to you.

If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms.  See https://www.dataprivacyframework.gov/s/article/G-Arbitration-Procedures-dpf?tabset-35584=2

Your Choices Regarding Your Personal Data

As part of our commitment to comply with the EU-US Data Privacy Framework, we want to inform you about the choices available to you regarding the use and disclosure of your personal data. Please note that our data sharing practices are essential for delivering our services effectively. We only share your personal data with third parties that are essential for providing our services, and we do not sell or share your data for any other purposes.

  1. Opting Out of Third-Party Disclosures: As our data sharing is integral to our service delivery, opting out of sharing your personal data with these essential third-party providers would mean that we could not provide our services to you. If you still wish to opt out, please be aware that this will mean that we cannot offer our product or services.
  2. Restricting Data Processing: You may request restrictions on the processing of your personal data. However, please note that such restrictions may impact our ability to provide our services effectively.
  3. Limiting Use and Disclosure: We limit the use and disclosure of your personal data strictly to what is necessary for providing our services. If you have specific concerns, please contact us to discuss your options.

To exercise any of these choices or for more information, please contact us at privacy@lessannoyingcrm.com. We will respond to your request in accordance with applicable laws and regulations.

Cookies
Less Annoying CRM, like many online services, requires the use of cookies to operate. Cookies are small pieces of data from our system that is stored on your hard drive, and contain anonymous identifiers. We use these cookies to record session information, and they do not represent a threat to your personal information's security.

Changes to this Privacy Policy
We reserve the right to change our Privacy Policy at any time. In the event of any substantial changes to this Privacy Policy, users will be informed through the email address listed on their account or by the information being displayed prominently on the Less Annoying CRM website.

Questions/Comments
If you have any questions about our Privacy Policy, please do not hesitate to contact us at help@lessannoyingcrm.com. We will attempt to get back to you as soon as possible.