Effective: May 23, 2015 (rev. #2 March 15, 2017)

Privacy Policy

Welcome to the Shape Labs, Inc., Privacy Policy. We are a Delaware Corporation, located in San Mateo, California. For purposes of this policy, when we say stuff like "We", “Shape” and "Us," we mean Shape Labs, Inc., the Company. When we say stuff like "Website" or "Site," we're talking about our website at https://shapescale.com, or other websites that we may operate like http://shpe.us and http://bysha.pe.

This Privacy Policy applies to any information that is collected while you are on our Website. Our goal with this policy is to be transparent about what information we collect, how and when we use it, and when and whether it is shared.

By visiting and (we hope!) using our site to make beautiful things, you acknowledge and consent to this Privacy Policy. If you have questions or complaints about this policy, we encourage you to send them to hello@shapescale.com

Like many Privacy Policies past, present, and doubtless future, our Privacy Policy explains:

  • The types of information we collect
  • How we use that information
  • The choices we offer, including how to access or update your own information, and
  • The steps we take to keep your information safe
  • Of course, our Privacy Policy may change, and when it does, we will post the new Policy on our Site. Whenever a user visits the Site, the current version of the Policy applies.

(1) When do we collect information?

We collect information from you when you register on our site, place an order, subscribe to a newsletter or enter information on our site.

1a. What information do we collect from the people that visit our blog, website or store?

When you visit the Site we collect data, much of which is anonymous. This data includes information such as: the type of browser and OS you use; the time and date that you visit; your IP address and the general geographical location the IP identifies you as being at; the address of the external or internal page that referred you; search terms you might have used to find our site, or if you used an email to access our site, what email you clicked on; and the pages on the site that you visit, possibly including the order of the pages you visit and any actions you take on a given page.

1b. What information do we collect from e-mail sign ups and contest participants?

When you sign up with your name and email, we keep them stored so that we can tell you about our launch and occasional company announcements or promotions.

Once you are on our mailing list, you will remain on the list until you unsubscribe, which you can do at any time by clicking the unsubscribe link in every email. Or if you prefer, you can send an email to hello@shapescale.com and we will remove it for you. We use Vero to provide email list services, and their privacy policy is here.

If you submit a document or photo, it becomes Shape's property. If you submit photos to us in any social media context, you thereby grant us permission to use that photo in print or online/electronically for any lawful purposes. Note that if you share information with us on a public social media site, that information may be seen by the general public and any other person or entity might collect and keep that information for their own purposes.

1c. What information do we collect from ShapeScale.com store customers?

When ordering or registering on our site, as appropriate, you may be asked to enter your name, email address or other details to help you with your experience.

We take the relevant information you give us and hold onto it for our records. In so doing, we may store information such as: your name; your email address; your username and password; the name of any referrer; the name of any people referred; your contact information, including any billing or shipping address/es; records of anything you order from us or request from us; and photos or other documents you may submit to us.

While you may submit credit card information while making a purchase with us, we don't hold onto your full credit card information ourselves – we have you pay by either Stripe (or in the future through Paypal), and they will store your credit card information in their secure credit card vaults. We do keep a record of the last 4 digits of the card you used, because that helps us to identify given transactions later. As regards your full credit card number, Stripe's privacy policy is here, and Paypal's privacy policy is here.

We do provide an option to opt out of us (or rather, Stripe) saving your credit card information, if you only want to use that information for one transaction on our website. If you do opt out, we do not keep that information, nor does Stripe. Paypal similarly offers an opt-out for saving your credit card information, if you choose to make a one-time payment through them.

1d. What information do we collect from Social Media, or Use Social Media Buttons on our Site?

You may see Facebook "like" buttons or "share" buttons on our website, or similar buttons on our blog or other social media sites.

If you use those buttons, we may collect your IP address and where you were on our site or on social media when you used the button. These kinds of social media features are governed by the privacy policies of the companies providing them. Here are the policies of a few of those companies:

1e. What information do we collect from those that directly communicate with us?

If you email us or send us other communications directly, we will retain your email or address and correspondence so that we may respond to your request. We may retain this information indefinitely so that we have a history of our past communications.

1f. What information do we collect from our mobile and software application on iOS, Android and/or web?

Our software around the ShapeScale product will be covered with a separate privacy policy.

(2) How do we use your information?

We may use the information we collect from you when you register, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:

  • To personalize user’s experience and to allow us to deliver the type of content and product offerings in which you are most interested.
  • To improve our website functionality and user experience in order to better serve you.
  • To quickly process and fulfill your transactions.
  • To send periodic emails regarding your order or other products, services and promotions.

(3) How do we protect visitor information?

Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible.

  • We use regular Malware Scanning.
  • We use 256-bit SSL certificates to encrypt all data transfer where necessary.
  • We are secure.

(4) Do we use ‘cookies’?

Yes. Cookies are small files that a site or its service provider transfers to your computer’s hard drive through your Web browser (if you allow) that enables the site’s or service provider’s systems to recognize your browser and capture and remember certain information.

For instance, we use cookies to help us remember and process the items in your shopping cart. They are also used to help us understand your preferences based on previous or current site activity, which enables us to provide you with improved services.

We also use cookies to help us compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future.

We use cookies to:

  • Help remember and process the items in the shopping cart.
  • Understand and save user’s preferences for future visits.
  • Keep track of advertisements.
  • Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We may also use trusted third party services that track this information on our behalf.

You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser (like Internet Explorer) settings. Each browser is a little different, so look at your browser’s Help menu to learn the correct way to modify your cookies.

If you disable cookies off, some features will be disabled It won’t affect the users experience that make your site experience more efficient and some of our services will not function properly. However, you can still place orders.

(5) Third Party Tracking

3rd party cookies (also called web beacons, conversion pixels, or tracking pixels) are small blocks of code on a webpage or app that allow them to do things like read and place cookies and transmit information to us or our partners. The resulting connection can include information such as a device's IP address, the time a person viewed the page or app, whether a viewer did a particular activity, an identifier associated with the browser or device and the type of browser being used.

On our website we use the following services:

  • Google Analytics (The breakdown of cookies used by Cookie is here.)
  • Remarketing with Google AdSense
  • Google Display Network Impression Reporting
  • Facebook Remarketing (The Facebook Cookie and Pixel Policy is here.)
  • Twitter Remarketing (Twitter's Cookie Policy and Pixel is here)
  • Vero (Email) behavioral tracking (Vero's Privacy Policy is here)
  • Heap Analytics (The Heap Privacy Policy is here)
  • Hotjar Analytics (The Hotjar Privacy Policy is here)
  • Segment (The Segment Privacy Policy is here)

We along with third-party vendors, such as Google use first-party cookies (such as the Google Analytics cookies) and third-party cookies together to compile data regarding user interactions in combination with ad impressions, and other ad service functions as they relate to our website.

This information helps us to both improve our website's functionality and user experience as well as serve visitors ads across the Internet, target our ads more effectively and reach those that have shown greatest interest in our products and/or services.

Opting out:

Users can set preferences for how Google advertises to you using the Google Ad Settings page. Alternatively, you can opt out by visiting the Network Advertising initiative opt out page or permanently using the GoogleAnalytics Opt Out Browser add on.

Facebook is part of the Digital Marketing Alliance's "Consumer Choice" Program. That program, located here for US users, here for Canadian users, and here for EU users, allows you to opt out of many different types of ad tracking, including Facebook's. The Program is managed browser-by-browser, so if you use many different means of browsing the web, you may need to opt out of a given organization's ad tracking that many times. On your mobile device, you also may be able to opt out using its settings.

There are also a number of browser ad-blocker add-ons available that help to opt-out of behavioral tracking.

How does our site handle do not track signals?

We honor do not track signals and do not track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.

(6) Third Party Disclosure

We do not rent or sell personally identifiable information to others.

We may share our mailing list with reputable third parties who sell products or services complementary to our own. To opt out, please send an email to hello@shapescale.com.

We do share information with our vendors, as described in this policy, for the purposes described in this policy. These vendors are not authorized to use or disclose the information, other than to perform their services for us. For example, as we described above, we share information with Vero so that they can operate our mailing list, but they are not authorized to email you directly or share your information with others.

The same applies to vendors who operate services for us such as: our forums, our referral program, our job application page, shipping, market research, and payment processing.

Finally, we might also share information in the following specific situations:

  • If we receive your consent to do so;
  • If we believe we have to in order to comply with a law, regulation, or valid legal process. If we are about to release your information, we will try to provide you with notice in advance, unless we are legally prohibited from doing so; and
  • If we are acquired by or merged with another company. This Privacy Policy would continue to apply to any data collected while it was in place.

Third party links

We do not include or offer third party products or services on our website.

(7) California Online Privacy Protection Act

CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law’s reach stretches well beyond California to require a person or company in the United States (and conceivably the world) that operates websites collecting personally identifiable information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals with whom it is being shared, and to comply with this policy. – See more at: http://consumercal.org/california-online-privacy-protection-act-caloppa/#sthash.0FdRbT51.dpuf

According to CalOPPA we agree to the following:

Users can visit our site anonymously.

Once this privacy policy is created, we will add a link to it on our home page, or as a minimum on the first significant page after entering our website.

Our Privacy Policy link includes the word ‘Privacy’, and can be easily be found on the page specified above.

Users will be notified of any privacy policy changes:

On our Privacy Policy Page Users are able to change their personal information:

By emailing us at hello@shapescale.com

(8) COPPA (Children Online Privacy Protection Act)

When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control.

The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.

We do not specifically market to children under 13.

(9) Fair Information Practices

The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:

We will notify the users via email within 7 business days

We also agree to the individual redress principle, which requires that individuals have a right to pursue legally enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or a government agency to investigate and/or prosecute non-compliance by data processors.

(10) CAN SPAM Act

The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.

(11) International Visitors

Shape is based in San Mateo and incorporated in Delaware. Our website is hosted at Siteground. The Siteground privacy policy is located here. All personal information we collect from our international users is processed according to US law.

In compliance with the US-European Union (EU) and US-Swiss Safe Harbor Principles, Shape commits to resolve complaints about your privacy and our collection or use of your personal information. Swiss or EU citizens with inquiries or complaints regarding this privacy policy should first contact Shape at:

Shape Labs, Inc. ATTN: Privacy Complaints 1900 S Norfolk St Ste 350 San Mateo, CA 94403

Shape has further committed to refer unresolved privacy complaints under the US-EU and US-Swiss Safe Harbor Principles to an independent dispute resolution mechanism, the BBB EU SAFE HARBOR, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed by Shape, please visit the BBB EU SAFE HARBOR web site at www.bbb.org/us/safe-harbor-complaints for more information and to file a complaint.

We have certified that we adhere to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. If there is any conflict between the policies in this privacy policy and the Safe Harbor Privacy Principles, the Safe Harbor Privacy Principles shall govern. To learn more about the Safe Harbor program, and to view our certification page, please visit http://www.export.gov/safeharbor/.

(12) Contacting Us

If there are any questions regarding this privacy policy you may contact us using the information below:

Shape Labs, Inc. ATTN: Privacy 1900 S Norfolk St Ste 350 San Mateo, CA 94403 hello@shapescale.com