Cookie Policy of incident.io

This document informs Users about the technologies that help incident.io to achieve the purposes described below. Such technologies allow the Owner to access and store information (for example by using a Cookie) or use resources (for example by running a script) on a User’s device as they interact with incident.io.

For simplicity, all such technologies are defined as "Trackers" within this document – unless there is a reason to differentiate.
For example, while Cookies can be used on both web and mobile browsers, it would be inaccurate to talk about Cookies in the context of mobile apps as they are a browser-based Tracker. For this reason, within this document, the term Cookies is only used where it is specifically meant to indicate that particular type of Tracker.

Some of the purposes for which Trackers are used may also require the User's consent. Whenever consent is given, it can be freely withdrawn at any time following the instructions provided in this document.

Incident.io uses Trackers managed directly by the Owner (so-called “first-party” Trackers) and Trackers that enable services provided by a third-party (so-called “third-party” Trackers). Unless otherwise specified within this document, third-party providers may access the Trackers managed by them.
The validity and expiration periods of Cookies and other similar Trackers may vary depending on the lifetime set by the Owner or the relevant provider. Some of them expire upon termination of the User’s browsing session.
In addition to what’s specified in the descriptions within each of the categories below, Users may find more precise and updated information regarding lifetime specification as well as any other relevant information — such as the presence of other Trackers — in the linked privacy policies of the respective third-party providers or by contacting the Owner.

Activities strictly necessary for the operation of incident.io and delivery of the Service

Incident.io uses so-called “technical” Cookies and other similar Trackers to carry out activities that are strictly necessary for the operation or delivery of the Service.

Third-party Trackers

  • Traffic optimization and distribution

    This type of service allows incident.io to distribute their content using servers located across different countries and to optimize their performance.
    Which Personal Data are processed depends on the characteristics and the way these services are implemented. Their function is to filter communications between incident.io and the User's browser.
    Considering the widespread distribution of this system, it is difficult to determine the locations to which the contents that may contain Personal Information of the User are transferred.

    Cloudflare (Cloudflare Inc.)

    Cloudflare is a traffic optimization and distribution service provided by Cloudflare Inc.
    The way Cloudflare is integrated means that it filters all the traffic through incident.io, i.e., communication between incident.io and the User's browser, while also allowing analytical data from incident.io to be collected.

    Personal Data processed: Trackers and various types of Data as specified in the privacy policy of the service.

    Place of processing: United States – Privacy Policy.

Other activities involving the use of Trackers

Functionality

Incident.io uses Trackers to enable basic interactions and functionalities, allowing Users to access selected features of the Service and facilitating the User's communication with the Owner.

  • Tag Management

    This type of service helps the Owner to manage the tags or scripts needed on incident.io in a centralized fashion.
    This results in the Users' Data flowing through these services, potentially resulting in the retention of this Data.

    Segment (Twilio, Inc.)

    Segment is a tag management service provided by Twilio, Inc.

    Personal Data processed: Data communicated in order to use the Service, Data communicated while using the service, Trackers, Usage Data, various types of Data and various types of Data as specified in the privacy policy of the service.

    Place of processing: United States – Privacy Policy.

    Storage duration:

    • __storejs__: indefinite
    • __tld__: duration of the session
    • ajs%3Acookies: duration of the session
    • ajs%3Atest: duration of the session
    • ajs_anonymous_id: 1 year
    • ajs_group_id: 1 year
    • ajs_group_properties: indefinite
    • ajs_user_id: 1 year
    • ajs_user_traits: indefinite
    • seg_first_url: 1 year
    • seg_first_utm: 1 year
    • segmentio*: indefinite

  • User database management

    This type of service allows the Owner to build user profiles by starting from an email address, a personal name, or other information that the User provides to incident.io, as well as to track User activities through analytics features. This Personal Data may also be matched with publicly available information about the User (such as social networks' profiles) and used to build private profiles that the Owner can display and use for improving incident.io.
    Some of these services may also enable the sending of timed messages to the User, such as emails based on specific actions performed on incident.io.

    Intercom (Intercom Software UK Limited)

    Intercom is a User database management service provided by Intercom Software UK Limited.
    Intercom can also be used as a medium for communications, either through email, or through messages within incident.io. Intercom Messenger may use Trackers to recognize and track Users behavior.

    Personal Data processed: Data communicated while using the service, email address, Tracker, Universally unique identifier (UUID), Usage Data and various types of Data as specified in the privacy policy of the service.

    Place of processing: United Kingdom – Privacy Policy.

    Storage duration:

    • intercom-id-*: 10 months
    • intercom-session-*: 7 days
    • intercom-test: indefinite

    HubSpot CRM (HubSpot, Inc.)

    HubSpot CRM is a User database management service provided by HubSpot, Inc.

    Personal Data processed: company name, email address, first name, last name, profession, Trackers, Usage Data and various types of Data as specified in the privacy policy of the service.

    Place of processing: United States – Privacy Policy.

    Storage duration:

    • __hs_gpc_banner_dismiss: 6 months
    • __hssc: 30 minutes
    • __hssrc: duration of the session
    • __hstc: 2 months
    • hubspotutk: 2 months
    • messagesUtk: 2 months

Experience

Incident.io uses Trackers to improve the quality of the user experience and enable interactions with external content, networks and platforms.

  • Interaction with data collection platforms and other third parties

    This type of service allows Users to interact with data collection platforms or other services directly from the pages of incident.io for the purpose of saving and reusing data.
    If one of these services is installed, it may collect browsing and Usage Data in the pages where it is installed, even if the Users do not actively use the service.

    Hotjar Recruit User Testers (Hotjar Ltd.)

    The Hotjar Recruit User Testers widget is a service for interacting with the Hotjar data collection platform provided by Hotjar Ltd.
    Hotjar honors generic „Do Not Track” headers. This means the browser can tell its script not to collect any of the User's data. This is a setting that is available in all major browsers. Find Hotjar’s opt-out information here.

    Personal Data processed: Trackers, Usage Data and various types of Data.

    Place of processing: Malta – Privacy PolicyOpt Out.

    Storage duration:

    • _hjAbsoluteSessionInProgress: 30 minutes
    • _hjCachedUserAttributes: duration of the session
    • _hjClosedSurveyInvites: 1 year
    • _hjDonePolls: 1 year
    • _hjFirstSeen: duration of the session
    • _hjIncludedInPageviewSample: 30 minutes
    • _hjIncludedInSessionSample: 30 minutes
    • _hjLocalStorageTest: duration of the session
    • _hjMinimizedPolls: 1 year
    • _hjRecordingEnabled: duration of the session
    • _hjSession*: 30 minutes
    • _hjSessionRejected: duration of the session
    • _hjSessionResumed: duration of the session
    • _hjSessionTooLarge: 1 hour
    • _hjSessionUser*: 1 year
    • _hjShownFeedbackMessage: 1 year
    • _hjTLDTest: duration of the session
    • _hjUserAttributesHash: duration of the session
    • _hjViewportId: duration of the session
    • _hjid: 1 year

  • Interaction with external social networks and platforms

    This type of service allows interaction with social networks or other external platforms directly from the pages of incident.io.
    The interaction and information obtained through incident.io are always subject to the User’s privacy settings for each social network.
    This type of service might still collect traffic data for the pages where the service is installed, even when Users do not use it.
    It is recommended to log out from the respective services in order to make sure that the processed data on incident.io isn’t being connected back to the User’s profile.

    Twitter Tweet button and social widgets (X Corp.)

    The Twitter Tweet button and social widgets are services allowing interaction with the Twitter social network provided by Twitter, Inc.

    Personal Data processed: Tracker and Usage Data.

    Place of processing: United States – Privacy Policy.

    Storage duration:

    • personalization_id: 2 years

  • Interaction with online survey platforms

    This type of service allows Users to interact with third-party online survey platforms directly from the pages of incident.io.
    If one of these services is installed, it may collect browsing and Usage Data in the pages where it is installed, even if the Users do not actively use the service.

    Hotjar Poll & Survey widgets (Hotjar Ltd.)

    The Hotjar Poll & Survey widgets are services that enable interaction with the Hotjar platform provided by Hotjar Ltd.
    Hotjar honors generic „Do Not Track” headers. This means the browser can tell its script not to collect any of the User's data. This is a setting that is available in all major browsers. Find Hotjar’s opt-out information here.

    Personal Data processed: Trackers, Usage Data and various types of Data.

    Place of processing: Malta – Privacy PolicyOpt Out.

    Storage duration:

    • _hjAbsoluteSessionInProgress: 30 minutes
    • _hjCachedUserAttributes: duration of the session
    • _hjClosedSurveyInvites: 1 year
    • _hjDonePolls: 1 year
    • _hjFirstSeen: duration of the session
    • _hjIncludedInPageviewSample: 30 minutes
    • _hjIncludedInSessionSample: 30 minutes
    • _hjLocalStorageTest: duration of the session
    • _hjMinimizedPolls: 1 year
    • _hjRecordingEnabled: duration of the session
    • _hjSession*: 30 minutes
    • _hjSessionRejected: duration of the session
    • _hjSessionResumed: duration of the session
    • _hjSessionTooLarge: 1 hour
    • _hjSessionUser*: 1 year
    • _hjShownFeedbackMessage: 1 year
    • _hjTLDTest: duration of the session
    • _hjUserAttributesHash: duration of the session
    • _hjViewportId: duration of the session
    • _hjid: 1 year

Measurement

Incident.io uses Trackers to measure traffic and analyze User behavior to improve the Service.

  • Analytics

    The services contained in this section enable the Owner to monitor and analyze web traffic and can be used to keep track of User behavior.

    Google Analytics (Google Ireland Limited)

    Google Analytics is a web analysis service provided by Google Ireland Limited (“Google”). Google utilizes the Data collected to track and examine the use of incident.io, to prepare reports on its activities and share them with other Google services.
    Google may use the Data collected to contextualize and personalize the ads of its own advertising network.

    Personal Data processed: Tracker and Usage Data.

    Place of processing: Ireland – Privacy PolicyOpt Out.

    Storage duration:

    • AMP_TOKEN: 1 hour
    • _ga: 2 years
    • _gac*: 3 months
    • _gat: 1 minute
    • _gid: 1 day

    LinkedIn conversion tracking (LinkedIn Insight Tag) (LinkedIn Corporation)

    LinkedIn conversion tracking (LinkedIn Insight Tag) is an analytics and behavioral targeting service provided by LinkedIn Corporation that connects data from the LinkedIn advertising network with actions performed on incident.io. The LinkedIn Insight Tag tracks conversions that can be attributed to LinkedIn ads and enables to target groups of Users on the base of their past use of incident.io.

    Users may opt out of behavioral targeting features through their device settings, their LinkedIn account settings or by visiting the AdChoices opt-out page.

    Personal Data processed: device information, Trackers and Usage Data.

    Place of processing: United States – Privacy Policy.

    Storage duration:

    • AnalyticsSyncHistory: 1 month
    • JSESSIONID: duration of the session
    • UserMatchHistory: 1 month
    • bcookie: 1 year
    • bscookie: 1 year
    • lang: duration of the session
    • lidc: 1 day
    • lms_ads: 1 month
    • lms_analytics: 1 month

    Google Analytics 4 (Google Ireland Limited)

    Google Analytics 4 is a web analysis service provided by Google Ireland Limited (“Google”). Google utilizes the Data collected to track and examine the use of incident.io, to prepare reports on its activities and share them with other Google services.
    Google may use the Data collected to contextualize and personalize the ads of its own advertising network.
    In Google Analytics 4, IP addresses are used at collection time and then discarded before Data is logged in any data center or server. Users can learn more by consulting Google’s official documentation.

    Personal Data processed: Trackers and Usage Data.

    Place of processing: Ireland – Privacy PolicyOpt Out.

    Storage duration:

    • _ga: 2 years
    • _ga_*: 2 years

    Hotjar Form Analysis & Conversion Funnels (Hotjar Ltd.)

    Hotjar is an analytics service provided by Hotjar Ltd.
    Hotjar honors generic Do Not Track headers. This means your browser can tell its script not to collect any of your data. This is a setting that is available in all major browsers. Find Hotjar’s opt-out information here.

    Personal Data processed: Trackers and Usage Data.

    Place of processing: Malta – Privacy PolicyOpt Out.

    Storage duration:

    • _hjAbsoluteSessionInProgress: 30 minutes
    • _hjCachedUserAttributes: duration of the session
    • _hjClosedSurveyInvites: 1 year
    • _hjDonePolls: 1 year
    • _hjFirstSeen: duration of the session
    • _hjIncludedInPageviewSample: 30 minutes
    • _hjIncludedInSessionSample: 30 minutes
    • _hjLocalStorageTest: duration of the session
    • _hjMinimizedPolls: 1 year
    • _hjRecordingEnabled: duration of the session
    • _hjSession*: 30 minutes
    • _hjSessionRejected: duration of the session
    • _hjSessionResumed: duration of the session
    • _hjSessionTooLarge: 1 hour
    • _hjSessionUser*: 1 year
    • _hjShownFeedbackMessage: 1 year
    • _hjTLDTest: duration of the session
    • _hjUserAttributesHash: duration of the session
    • _hjViewportId: duration of the session
    • _hjid: 1 year

  • Analytics services managed directly by incident.io

    The services contained in this section allow the Owner to collect and manage analytics through the use of first-party Trackers.

    Matomo (incident.io)

    Matomo is an analytics software used by incident.io to analyze data directly without the help of third parties.

    Personal Data processed: Trackers and Usage Data.

    Storage duration:

    • _pk_cvar*: 30 minutes
    • _pk_hsr*: 30 minutes
    • _pk_id*: 2 years
    • _pk_ref*: 7 months
    • _pk_ses*: 30 minutes
    • _pk_testcookie*: duration of the session

  • Heat mapping and session recording

    Heat mapping services are used to display the areas of incident.io that Users interact with most frequently. This shows where the points of interest are. These services make it possible to monitor and analyze web traffic and keep track of User behavior.
    Some of these services may record sessions and make them available for later visual playback.

    Hotjar Heat Maps & Recordings (Hotjar Ltd.)

    Hotjar is a session recording and heat mapping service provided by Hotjar Ltd.
    Hotjar honors generic „Do Not Track” headers. This means the browser can tell its script not to collect any of the User's data. This is a setting that is available in all major browsers. Find Hotjar’s opt-out information here.

    Personal Data processed: Trackers, Usage Data and various types of Data as specified in the privacy policy of the service.

    Place of processing: Malta – Privacy PolicyOpt Out.

    Storage duration:

    • _hjAbsoluteSessionInProgress: 30 minutes
    • _hjCachedUserAttributes: duration of the session
    • _hjClosedSurveyInvites: 1 year
    • _hjDonePolls: 1 year
    • _hjFirstSeen: duration of the session
    • _hjIncludedInPageviewSample: 30 minutes
    • _hjIncludedInSessionSample: 30 minutes
    • _hjLocalStorageTest: duration of the session
    • _hjLocalStorageTest: duration of the session
    • _hjMinimizedPolls: 1 year
    • _hjRecordingEnabled: duration of the session
    • _hjSession*: 30 minutes
    • _hjSessionRejected: duration of the session
    • _hjSessionResumed: duration of the session
    • _hjSessionTooLarge: 1 hour
    • _hjSessionUser*: 1 year
    • _hjShownFeedbackMessage: 1 year
    • _hjTLDTest: duration of the session
    • _hjUserAttributesHash: duration of the session
    • _hjViewportId: duration of the session
    • _hjid: 1 year

  • Managing data collection and online surveys

    This type of service allows incident.io to manage the creation, deployment, administration, distribution and analysis of online forms and surveys in order to collect, save and reuse Data from any responding Users.
    The Personal Data collected depend on the information asked and provided by the Users in the corresponding online form.

    These services may be integrated with a wide range of third-party services to enable the Owner to take subsequent steps with the Data processed - e.g. managing contacts, sending messages, analytics, advertising and payment processing.

    Hotjar surveys (Hotjar Ltd.)

    Hotjar surveys is a survey builder and data collection platform provided by Hotjar Ltd.
    Hotjar surveys may use cookies to track User behavior. Users can Opt-Out of Hotjar surveys cookie tracking by visiting this opt-out page.

    Hotjar surveys respects the Do Not Track option available in most modern browsers that, if activated, sends a special signal to stop tracking User activity. Users can find more information on how to enable Do Not Track for each supported browser here.

    Personal Data processed: Trackers and Usage Data.

    Place of processing: Malta – Privacy PolicyOpt Out.

    Storage duration:

    • _hjAbsoluteSessionInProgress: 30 minutes
    • _hjCachedUserAttributes: duration of the session
    • _hjClosedSurveyInvites: 1 year
    • _hjDonePolls: 1 year
    • _hjFirstSeen: duration of the session
    • _hjIncludedInPageviewSample: 30 minutes
    • _hjIncludedInSessionSample: 30 minutes
    • _hjLocalStorageTest: duration of the session
    • _hjMinimizedPolls: 1 year
    • _hjRecordingEnabled: duration of the session
    • _hjSession*: 30 minutes
    • _hjSessionRejected: duration of the session
    • _hjSessionResumed: duration of the session
    • _hjSessionTooLarge: 1 hour
    • _hjSessionUser*: 1 year
    • _hjShownFeedbackMessage: 1 year
    • _hjTLDTest: duration of the session
    • _hjUserAttributesHash: duration of the session
    • _hjViewportId: duration of the session
    • _hjid: 1 year
    • hjActiveViewportIds: duration of the session

Marketing

Incident.io uses Trackers to deliver personalized marketing content based on User behavior and to operate, serve and track ads.

  • User database management

    This type of service allows the Owner to build user profiles by starting from an email address, a personal name, or other information that the User provides to incident.io, as well as to track User activities through analytics features. This Personal Data may also be matched with publicly available information about the User (such as social networks' profiles) and used to build private profiles that the Owner can display and use for improving incident.io.
    Some of these services may also enable the sending of timed messages to the User, such as emails based on specific actions performed on incident.io.

    Intercom (Intercom Software UK Limited)

    Intercom is a User database management service provided by Intercom Software UK Limited.
    Intercom can also be used as a medium for communications, either through email, or through messages within incident.io. Intercom Messenger may use Trackers to recognize and track Users behavior.

    Personal Data processed: Data communicated while using the service, email address, Tracker, Universally unique identifier (UUID), Usage Data and various types of Data as specified in the privacy policy of the service.

    Place of processing: United Kingdom – Privacy Policy.

    Storage duration:

    • intercom-id-*: 10 months
    • intercom-session-*: 7 days
    • intercom-test: indefinite

    HubSpot CRM (HubSpot, Inc.)

    HubSpot CRM is a User database management service provided by HubSpot, Inc.

    Personal Data processed: company name, email address, first name, last name, profession, Trackers, Usage Data and various types of Data as specified in the privacy policy of the service.

    Place of processing: United States – Privacy Policy.

    Storage duration:

    • __hs_gpc_banner_dismiss: 6 months
    • __hssc: 30 minutes
    • __hssrc: duration of the session
    • __hstc: 2 months
    • hubspotutk: 2 months
    • messagesUtk: 2 months

How to manage preferences and provide or withdraw consent

There are various ways to manage Tracker related preferences and to provide and withdraw consent, where relevant:

Users can manage preferences related to Trackers from directly within their own device settings, for example, by preventing the use or storage of Trackers.

Additionally, whenever the use of Trackers is based on consent, Users can provide or withdraw such consent by setting their preferences within the cookie notice or by updating such preferences accordingly via the relevant consent-preferences privacy widget, if available.

It is also possible, via relevant browser or device features, to delete previously stored Trackers, including those used to remember the User’s initial consent preferences.

Other Trackers in the browser’s local memory may be cleared by deleting the browsing history.

With regard to any third-party Trackers, Users can manage their preferences via the related opt-out link (where provided), by using the means indicated in the third party's privacy policy, or by contacting the third party.

Locating Tracker Settings

Users can, for example, find information about how to manage Cookies in the most commonly used browsers at the following addresses:

Users may also manage certain categories of Trackers used on mobile apps by opting out through relevant device settings such as the device advertising settings for mobile devices, or tracking settings in general (Users may open the device settings and look for the relevant setting).

How to opt out of interest-based advertising

Notwithstanding the above, Users may follow the instructions provided by YourOnlineChoices (EU and UK), the Network Advertising Initiative (US) and the Digital Advertising Alliance (US), DAAC (Canada), DDAI (Japan) or other similar services. Such initiatives allow Users to select their tracking preferences for most of the advertising tools. The Owner thus recommends that Users make use of these resources in addition to the information provided in this document.

The Digital Advertising Alliance offers an application called AppChoices that helps Users to control interest-based advertising on mobile apps.

Consequences of denying the use of Trackers

Users are free to decide whether or not to allow the use of Trackers. However, please note that Trackers help incident.io to provide a better experience and advanced functionalities to Users (in line with the purposes outlined in this document). Therefore, if the User chooses to block the use of Trackers, the Owner may be unable to provide related features.

Owner and Data Controller

incident.io

Owner contact email: support@incident.io

Since the use of third-party Trackers through incident.io cannot be fully controlled by the Owner, any specific references to third-party Trackers are to be considered indicative. In order to obtain complete information, Users are kindly requested to consult the privacy policies of the respective third-party services listed in this document.

Given the objective complexity surrounding tracking technologies, Users are encouraged to contact the Owner should they wish to receive any further information on the use of such technologies by incident.io.

Definitions and legal references

Personal Data (or Data)

Any information that directly, indirectly, or in connection with other information — including a personal identification number — allows for the identification or identifiability of a natural person.

Usage Data

Information collected automatically through incident.io (or third-party services employed in incident.io), which can include: the IP addresses or domain names of the computers utilized by the Users who use incident.io, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server's answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User's IT environment.

User

The individual using incident.io who, unless otherwise specified, coincides with the Data Subject.

Data Subject

The natural person to whom the Personal Data refers.

Data Processor (or Processor)

The natural or legal person, public authority, agency or other body which processes Personal Data on behalf of the Controller, as described in this privacy policy.

Data Controller (or Owner)

The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data, including the security measures concerning the operation and use of incident.io. The Data Controller, unless otherwise specified, is the Owner of incident.io.

incident.io (or this Application)

The means by which the Personal Data of the User is collected and processed.

Service

The service provided by incident.io as described in the relative terms (if available) and on this site/application.

European Union (or EU)

Unless otherwise specified, all references made within this document to the European Union include all current member states to the European Union and the European Economic Area.

Cookie

Cookies are Trackers consisting of small sets of data stored in the User's browser.

Tracker

Tracker indicates any technology - e.g Cookies, unique identifiers, web beacons, embedded scripts, e-tags and fingerprinting - that enables the tracking of Users, for example by accessing or storing information on the User’s device.

Legal information

This privacy policy relates solely to incident.io, if not stated otherwise within this document.

Latest update: January 10, 2023

iubenda hosts this content and only collects the Personal Data strictly necessary for it to be provided.

Show the complete Privacy Policy