Effective date: 5th October 2014
Last Updated: 9th October 2020
This Privacy and Cookies Statement explains how personal information is collected, used, and disclosed by SoapBox Labs Limited, an Irish company (“we”, “us”, “our”) in connection with your use of the speech recognition applications and associated services (collectively the “Services”) of SoapBox Labs.
We respect your right to privacy and your freedom to control and monitor your children’s online activities. This Privacy and Cookies Statement together with any terms and conditions of use for the Services (“Terms”) and any other documents which they refer to sets out the basis on which any personal data we collect from you and from any children who use our Services will be processed by us.
There are two different ways that our Services can be accessed:
Our services apply a “data protection by default” and “data protection by design” approach in keeping with the principle of minimizing the processing of personal data to the extent necessary to provide the Services and to further develop and enhance our services. Accordingly, Soapbox will not take any steps to re-identify or de-anonymize any voice data or otherwise associate the voice data with personally identifiable information and does not authorize, instruct, or encourage any third party to do so.
For Direct Access, we rely on consent from an individual with parental authority as the legal basis for processing data where the data subject is a child. We have our own clear parental consent mechanisms and verification processes in place and you can withdraw your consent as outlined below. For Indirect Access, we require any third parties using our services to ensure that the relevant parental consents are in place before they send any voice data to our services. We process de-identified voice data for the legitimate interest purposes of improving the Services as outlined in this statement. Your rights and the mechanisms for objecting to this type of processing of data are clearly outlined below.
SoapBox Labs Limited is a member of the PRIVO Kids Privacy Assured Program(“the Program”) for COPPA Safe Harbor Certification and GDPRkids™. PRIVO is an independent, third-party organization committed to safeguarding children’s personal information collected online.
The Program certification applies to the digital properties listed on the validation page that is viewable by clicking on the PRIVO COPPA certification Seal. The certification Seal posted on this page indicates SoapBox Labs Limited has established COPPA compliant privacy practices and has agreed to submit to PRIVO’s oversight and consumer dispute resolution process. If you have questions or concerns about our privacy practices, please contact us at +353894267250 or email@example.com.If you have further concerns after you have contacted us, you can contact PRIVO directly at firstname.lastname@example.org.
The Program applies to the digital properties listed on the validation page that is viewable by clicking on the PRIVO GDPRkids™ Verified Shield. The PRIVO GDPRkids™ Privacy Assured Program supports child directed services known as Information Society Services under the General Data Protection Regulation (GDPR), to comply with the requirements of this legislation. It impacts any child directed service in an EU Member State and any service globally that collects and or processes the personal data of children and minors. There is no safe harbor for the GDPR to date, but to ensure this company’s services meet the program requirements, we conduct regular monitoring and consulting
By using the Services or permitting your child to use the Services, you signify acceptance of this Privacy and Cookies Statement. If you do not agree with or you are not comfortable with any aspect of the Privacy and Cookies Statement, you should discontinue use of the Services.
Where you are accessing our services through a third party, the voice data passed to us is de-identified voice data and no other data relating to the identity of the child is received by our system. Depending on the terms and conditions agreed with the third party provider, this voice data may be retained in our system after processing for the sole purpose of improving the services. In other cases, the data is deleted immediately after processing. You should check with the third party to clarify the basis on which the voice data is passed to our system to assess whether or not it is retained post-processing.
We collect Recordings from children which are captured when children interact with the Services depending upon the particular application being used. We may use, store, process and transcribe Recordings in order to provide and maintain the Services, to perform, test or improve our own/proprietary speech recognition technology and artificial intelligence algorithms, or for other research and development and data analysis purposes. Additionally, these recordings may be listened to by human ears for the specific purpose of generating transcriptions or labelling data. We do not share the recordings, or any data generated by the recordings, with any third parties for any purpose other than those described above.
The data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”). By submitting your personal data or permitting your child to use the Services, you agree to this transfer, storing or processing. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy and Cookies Statement, typically through the use of EU-approved “model contract clauses” or ensuring our third party vendors are certified under the EU-US Privacy Shield.
All information you provide to us is stored on our secure servers. Where we have given you (or where you have chosen) a password or username which enables you to access certain parts of our Services, you are responsible for keeping this password or username confidential. We ask you not to share this information with anyone. You can request deletion of this data at any time by emailing us at email@example.com, from the email address provided upon initial registration.
When you interact directly with a SoapBox Labs application, we will delete personally identifiable information 12 months after our contact with you has terminated. However, we will retain de-identified data indefinitely for product development purposes unless you have chosen to withdraw your consent or delete your data as outlined below.
We use information held about you:
We may disclose your personal information to third parties if we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our Terms and other agreements; or to protect the rights, property, or safety of SoapBox Labs, its subsidiaries and its group companies, our users, or others.
We may disclose aggregated or anonymised data if:
You have the right to request a copy of your personal data which is held by us about you or your child. If you are accessing our service directly, you should contact us about this data – if you are accessing our services indirectly, you should also contact the third party provider. You also have the right to access your or your child’s personal data, have changed any inaccuracies in the details we hold, the right to object to the use of personal data, the right to block any specific uses of personal data in certain circumstances, the right to data portability and the right to request deletion of personal data, by means of a request in writing setting out as much detail as possible to firstname.lastname@example.org Where your data has been deleted or de-identified by us it will not be possible to act on your request.
Questions, comments and requests regarding this Privacy and Cookies Statement are welcomed and should be addressed to SoapBox Labs with its registered office at Floor 3, The Boat House, Bishop Street, Dublin 8, Ireland or email@example.com or Cell/Mobile +353894267250.
If you are in the European Union, please note that our Data Protection Officer (DPO) can be contacted at firstname.lastname@example.org
If you are in the European Union and have further concerns after you have contacted us, you can lodge a complaint with the Irish Data Protection Commission directly at email@example.com.
© SoapBoxLabs. 2021 – All Rights Reserved