Privacy Policy

Bubblink presents the following Integral Privacy Policy to you in order to protect your data, in accordance with the terms provided by the Law for such purposes. We hereby inform you the following:

1. Concepts

• Personal Data. Any data concerning a person, natural or legal, identified or identifiable.
• Sensitive Personal Data. The intimate Personal Data of the natural or legal, identified or identifiable person that could reveal any racial or ethnic aspects, present or future health status, genetic information; religious, philosophical or moral beliefs, syndicate membership, political opinions, sexual preference.
• Processing. The acquisition, use, disclosure or storage of Personal Data, by any means.
• Data Owner. The natural or legal person to whom the Personal Data belongs.
• Responsible Institution. The private individual or legal entity that decides on the Processing of the Personal Data.
• Consent. Manifestation of the will of the Data Owner by which the Processing is performed.
• Third. The natural or legal person, national or foreign person, other than the Data Owner and the Responsible Institution of the Data.
• Cookies. The data file stored in the hard drive of the eletronic communications device of a user when browsing a specific website.
• ARCO Rights. The access, rectification, cancellation and opposition rights.
• Platform. The internet website of the Responsible Institution, through which the Personal Data of the Data Owner is acquired. Namely, www.vcard.bubblink.com.mx and vsphere.com.mx.

2. Responsible Institution for the Processing of the Personal Data

The Responsible Institution for the Processing of the Personal Data that the Data Owner provides by reason of consent is Bubblink.

3. Personal Data

We will use the Personal Data we collect from you for the following purposes. which are necessary for the requested service:

• Creation of a public user profile in the Platform www.vcard.bubblink.com.mx and vsphere.com.mx.
• Creation of a vCard digital card.
• Social network links for the social networks service.
• Creation of a digital resume.
• Pet profiling with the owner's contact details, digitally readable on an electronic collar or bracelet.
• Generating bookings in the calendar service of the Data Owner and confirmation notifications.
• Synchronization of events bookings in the calendar service to read and write events in Google Calendar.
• Generating quotations for the provided services by the Data Owner.
• Interacting with the service of quotable services in a public user profile in the Platform and contact notifications.
• Identity verification and account recovery, in the case of lost credentials or data theft.

Additionally, Bubblink will use your Personal Data for the following purposes that are not necessary for the requested service, but help and allow us provide better attention:

• Anonymous use of signup and membership purchase dates, for data analytics purposes inside the Platform.
• Development of new features and bug fixes.

In case you do not want your Personal Data to be processed for this additional purposes, click here and fill the form in.

The refusal to use your Personal Data for these complementary purposes cannot be a motive for us to deny you the services and products you request or contract with us.

To accomplish the described purposes in this Privacy Policy, the Personal Data collected by Bubblink in the moment of signup as a user is:

• Username.
• E-mail.
• IP address.
• Unique third-party login data (if you choose this signup method) (username, e-mail, profile picture; company and profile URL, in the case of GitHub).

The Personal Data related to the interaction with the services provided by the Platform is:

• Full name.
• Age.
• Occupation.
• Company.
• Address.
• Cell phone.
• Phone number.
• Work e-mail.
• Birthdate.

We inform you that we use cookies, web beacons and other technologies in our Platform that allow us to offer a better service and user experience when browsing our Platform, as well as providing our new features, based on your preferences. However, the data collected by these means do not include your name, e-mail address or phone number. The Personal data we collect from these tracking technologies are the following: browsing time on our Platform, sections consulted and webpages accesed previously and after ours.

4. Purpose of Processing of the Personal Data

• Signup. The data collected by the Responsible Institution with the consent of the Data Owner for signup will be used both for control of the users that access the website and contacting the Data Owner for Platform issues and bugs reporting.
• User Experience, The data collected by the Responsible Institution with the consent of the Data Owner will be used to improve and customize our digital services and improve the user experience in the Platform, in general.
• Security and Protection. We prioritize the security of your account and our users and features when we collect the data. That includes identity verification, account authentication and defense against fraudulent activities, unauthorized uses and illegal activities.
• Diverse Use of the Personal Data other than the Agreed. In the cases where the Responsible Institution processes the Data Owner's data in a way other than the necessary and inherent to the achievement of of the purposes of use of the Platform, we will ask for the consent of the Data Owner.
• Data Analytics. We process data, which is collected anonymously, to offer our users the analytics stats feature. This includes followed social media links, resume watch time in user profiles and profile views from QR code, NFC card and electronic bracelets and collars.

5. Consent to Process the Personal Data

To the effects of Processing the Personal Data by the Responsible Institution. the Data Owner must grant their explicit or implicit agreement (depending on the case). The methods to grant consent are described as follows, as well as the cases where the consent of the Data Owner is not required to Process their Personal Data.

• Implicit consent. It is generally granted (unless the laws provide the explicit consent for the Personal Data type purposes) in the moment that the present Privacy Policy was made available to the Data Owner and they did not refuse to grant consent in the terms of the mechanisms for such purposes.
• Explicit consent. In the terms of the law, consent will be explictir when the Responsible Institution Process financial data, sensitive data, if the Responsible Institution requests or if the Data Owner and Responsible Institution agree to.
• How I grant my consent. In terms of the user signup, it will be enough not to oppose the filling of the form, and not manifesting opposition to the process of signup within the following 5 business days of its filling, in the understanding that said opposition may be informed the moment the Data Owner does not accept the conditions of the present Privacy Policy in the signup process.

To the effects of the Personal Data provided with the purpose of interacting with the Platform features, a checkbox will be displayed when the Data Owner is filling the forms. This checkbox must be checked to acknowledge that the Data Owner has read and accepted the Terms of Service and the Privacy Policy, which means they grant explicit consent for the Responsible Institution to Process their Personal Data. On the other hand, if said checkbox is not checked, your Personal Data will no longer be used for the requested purposes

Mechanism to refuse consent. It will be enough to keep the "I have read and I accept the Terms of Service and the Privacy Policy" checkbox unchecked, the moment the present Privacy Policy is available to the Data Owner.

6. Personal Data Confidentiality

In order to respect the principles governing the protection of Personal Data, the Responsible Institution will perform the following actions to protect your data:

• Once the relationship between the Data Owner and the Responsible Institution is over, the Responsible Institution will protect the Data Owner Personal Data for a reasonable period that justifies the Processing of the Personal Data.
• In case it is required to provide the Personal Data of the Data Owner to a third-party, the Data Owner will be immediately notified via e-mail in order to obtain their consent.
• Personal Data provided by the Data Owner will be Processed exclusively by the personnel designated by the Responsible Institution.
• The Personal Data stored in the databases of the Responsible Institution are protected by firewalls and computer systems, in order to restrict the access to the Personal Data by unauthorized third parties.
• We may preserve, use, share or publish your data when we consider it necessary to:
  • Comply with laws, normatives, or administrative or legal requirements.
  • Ensure the security of any person and to ensure the security and safety of our Platform, including preventing spam or abusive actions from third parties in our services.
  • Explain why we delete content or accounts from our services (e. g., breach our Terms of Service).
  • Address technical or security issues.
  • Protect our rights and assets, or the rights and assets of those who use our services..

7. Data we collect when you use vSphere

Usage information. We collect data about your activity in www.vcard.bubblink.com.mx and vsphere.com.mx, including interactions with other users of the Platform public profiles, like:

• Profile views via link QR code, NFC card, or electronic bracelet and collars.
• Interaction with links in other users of the Platform public profiles.
• View time in the resume service, in other users Platform public profiles.
• Name and e-mail, in the event of interaction with the calendar service visible in other users of the Platform public profiles, and phone number, age, occupation and address, if the owner of the profile so required..
• Full name, e-mail, cell phone and company in the event of interaction with the quotable services in other users of the Platform public profiles.

Signup and geolocation Information. Bubblink may collect data when you are interacting with the visible services in the authenticated users of the Platform public profiles, even if you have not created an account or you have logged out. For example:

• IP address and related data: browser, language, operative system, webpage of origin, device data.
• Geolocation data, namely, region, latitude and longitude (only for the pets service and when the user grants their explicit consent).

8. How long we store your data

• We keep your data and the content of your profile as long as your account remains active.
• If you breach the Terms of Service and we suspend your account, we may preserve the identifiers you have used to create your account, like your IP address, username, e-mail address or cell phone, for an indefinite period.
• To comply with legal requirements and safety reasons, we may store certain data for longer than specified in our Privacy Policy.

9. ARCO Rights

You have the right to know what Personal Data we store about you, what we use it for and the use conditions we employ (Access). In addition, if your Personal Data is outdated, inaccurate or incomplete, it is your right to request the amendment of your Personal Data (Rectification); request to delete it from our logs and databases when you consider that your data is not being Processed accordingly to the princples, duties and obligations provided by the normative (Cancellation); as well as opposing to the use of your Personal Data for specific purposes (Opposition). These are known as the ARCO rights.

To know more about the process and requirements for the exercise of the ARCO rights, you can enter this page, Or else, you can contact us at contacto@bubblink.com.mx. In which cases you must indicate the following data:

• Full name, address of the Data Owner, e-mail, cell phone, or other means of contact to communicate the response to your request.
• Documents that prove the identity or legal representation of the Data Owner of the Personal Data.
• Clear and precise description of the Personal Data in respect of which you seek to exercise any of the aforementioned rights.
• Any other item or document that you consider relevant and facilitates the location of the Personal Data.
• Point out the modifications to be made and/or the limitations on the use of the Personal Data.
• Provide the documentation that supports the request.

The Responsible Institution will let the Personal Data Owner know the decision taken, within a period of no more than 20 business days, starting from the date the request was received. Once the request has been submitted and after the deadline for its resolution, the Responsible Institution will inform the Personal Data Owner of the meaning and motivation of the resolution, by the same means by which the request was submitted and will attach said resolution to the relevant evidence, if it is the case.

In case, the request is admitted, the Responsible Institution will perform the respective changes within the next 15 business days following the communication of the resolution adopted.

If the Responsible Institution does not produce any reply to the request, or it is negated, the Data Owner may present a data protection request to the respective organization due to the received response, or lack of response, from the Responsible Institution. This request must be presented by the Data Owner within the next 15 days following the date when the Responsible Institution notifies the Data Owner the response and will be subjected to what the Law provides.

In the case of Personal Data access requests, the applicant or their legal representative must first prove their identity.

In the event that a person requests Bubblink the access to their Personal Data, assuming they are the Data Owner, and it turns out they are not the Data Owner, Bubblink will only need to inform so to the Data Owner by any means, to deem the request as fulfilled.

The response to the request of access, rectification, cancellation or opposition of Personal Data is free.

Bubblink may deny the partial or total access to Personal Data of the exercise of these rights in the following events:

• When the applicant is not the Data Owner or the legal representative is not accredited to do so.
• When the Personal Data is not found in the Bubblink database.
• Personal of the applicant:
  • When the rights of a third party are violated.
  • When there exists a legal deterrent or an authority resolution.
  • When the rectification, cancellation or opposition request has been previously fulfilled, such that the request lacks subject matter.

You may revoke the consent that you have granted us for the Processing of your Personal Data. However, it is important that you consider that we will not be able to respond to your request or terminate the use immediately in all cases, since it is possible that, due to some legal obligation, we may require to continue Processing your Personal Data. Likewise, you should consider that, for certain purposes, the revocation of your consent will imply that we will no longer be able to provide you with the service you requested, or the termination of your relationship with us

To revoke your consent, you must submit your request on this page.

The revocation of consent will result in a blocking period after which Bubblink will proceed to delete the corresponding data. Once deleted, Bubblink will notify the Data Owner. After this has been done, Bubblink may retain the Personal Data exclusively for the purposes of the responsibilities derived from the Processing referred to in this Privacy Policy.

In addition, when the information collected in the Personal Data is no longer necessary for the fulfillment of the purposes set forth in this Privacy Policy, and in the applicable legal provisions, your Personal Data will be deleted from the Bubblink database.

In order for you to limit the use and disclosure of your personal information, we offer you the following means:

• Your registration in the Public Registry to Avoid Advertising, which is managed by the Federal Consumer Protection Agency, in order to ensure that your Personal Data is not used to receive advertising or promotions from companies that sell assets or services. For more information about this registry, you can consult the PROFEO website, or contact it directly.

10. Changes in this Privacy Policy

The present Privacy Policy may be subject to modifications, changes or updates, derived from new legal requirements, our own needs for the products and features we offer; our privacy practices; changes in our business model or for other reasons.

Bubblink undertakes to keep you informed of any changes made to this Privacy Policy, through e-mail notifications (sender: no-reply@bubblink.com.mx).

11. General

Finally, if you consider that your right to protect your Personal Data has been violated by any conduct or omission on our side, or you suspect any violation of the provisions set forth in the Federal Law on the Protection of Personal Data Held by Private Parties, its Regulations and other applicable regulations, you may file your complaint or complaint with the National Institute for Transparency, Access to Information and Protection of Personal Data (INAI). For more information, we suggest you visit its official website, www.inai.org.mx.