Privacy Notice

Introduction

EveryHuman ("EveryHuman", “Algorithmic Perfumery”, “we” or “us”) offers an algorithmic perfume creation service through our websites, applications, and technology. This privacy notice aims to inform you about how we collect, use, disclose and store information about you when you:

  • interact or use our Websites and applications
  • interact with our in-store technology
  • if you use any of our products, services or applications (collectively the “Services”) in any manner.

What information does EveryHuman collect?

We gather various types of information, including information that identifies or may identify you as an individual (“Personal Information”) as explained in more details below.

Information You Provide to Us:

From website use: We may collect any Personal Information that you share during the registration. If you contact us through the Website contact form, we will keep a record of our correspondence.

From the Services: We receive and store information you provide directly to us. For example, when registering for the services we collect Personal Information, such as name and e-mail address, to provide you with the Services. The types of information we may collect directly from you include: names, usernames, email addresses, transactional information (including Services purchased), as well as any other contact or other information you may choose to provide us.

For the algorithmic perfume services we collect information about your age, gender, city, occupation, and a wide range of personal lifestyle, taste, fashion, culinary, sports etc. preferences and characteristics.

Information We Automatically Collect:

When you use the Websites: When you visit the Websites, we collect certain information related to your device, such as your device’s IP address, referring website, what pages your device visited, and the time that your device visited our Website.

When you use the Services:

Usage information – we keep track of user activity in relation to the types of Services our customers and their users use, the configuration of their computers, and performance metrics related to their use of the Services.

Log information – we log information about our customers and their users when you use one of the Services including Internet Protocol (“IP”) address.

Information collected by cookies and other similar technologies – we use various technologies to collect information which may include saving cookies to users’ computers. Customer Feedback – While using the Services, you may be asked to provide feedback (e.g. in the software directly or after receiving help from our support team). Providing this feedback is entirely optional.

How do we use the information?

We will use the information we collect via our Websites:

  • To administer our Website, internal operations, including troubleshooting, data analysis, testing, statistical and survey purposes;
  • To improve our Website to ensure that content is presented in the most effective manner for you and for your computer;
  • For purposes made clear to you at the time you submit your information – for example, to fulfill the perfume personalization service and
  • As part of our efforts to keep our Website secure.
  • Our use of your Personal Information may be based on our legitimate interest to ensure network and information security.

Services:

We may use the information we collect from our customers in connection with the Services we provide for a range of reasons, including to:

  • Set up a user account,
  • Provide, operate and maintain the Services;
  • Process and complete transactions, and send related information, including transaction confirmations and invoices;
  • Investigate and prevent fraudulent activities, unauthorized access to the Services, and other illegal activities; and
  • For any other purposes about which we notify customers and users.
  • For the personalization of your perfume, we use the information you provide about your age, gender, city, occupation, and a wide range of personal lifestyle, taste, fashion, culinary, sports etc. preferences and characteristics to allow the personalization algorithm service to create a scent that is aligned to your unique preferences.

We use your Personal Information in this context based on the consent that you provide or our legitimate interest for security purposes (e.g. the prevention and investigation of fraudulent activities). Personal Information will be deleted based on the terms of the service. You can exercise your rights regarding your personal information by contacting EveryHuman using the contact form at https://everyhuman.com/about/contact.

How do we share and disclose information to third parties?

We share and disclose information (including Personal Information) about our customers in the following limited circumstances:

  • Vendors, consultants and other service providers: We may share your information with third party vendors, consultants and other service providers who we employ to perform tasks on our behalf. These companies include (for example) our payment processing providers, website analytics companies (e.g., Google Analytics), software service providers (e.g. Vercel Inc.) cloud data hosting providers (e.g. Amazon), email service providers (e.g., Google) and others.
  • If EveryHuman receives your Personal Information in the United States and subsequently transfers that information to a third party agent or service provider for processing, EveryHuman remains responsible for ensuring that such third party agent or service provider processes your Personal Information to the standard required by the applicable privacy laws, including the GDPR (see the sections below headed “Additional Information for Users in the European Economic Area (“EEA”) or in the United Kingdom (“UK”)” and “International Data Transfers”).
  • Business Transfers: We may choose to buy or sell assets, and may share and/or transfer customer information in connection with the evaluation of and entry into such transactions. Also, if we (or our assets) are acquired, or if we go out of business, enter bankruptcy, or go through some other change of control, Personal Information could be one of the assets transferred to or acquired by a third party.
  • EveryHuman Group Companies: We may also share your personal data with our parent companies, subsidiaries and/or affiliates for purposes consistent with this Privacy Notice.
  • Protection of EveryHuman, Algorithmic Perfumery and Others: We reserve the right to access, read, preserve, and disclose any information as necessary to comply with law or court order; enforce or apply our agreements with you and other agreements; or protect the rights, property, or safety of EveryHuman and Algorithmic Perfumery, our employees, our users, or others.
  • Disclosures for National Security or Law Enforcement: Under certain circumstances, we may be required to disclose your Personal Information in response to valid requests by public authorities, including to meet national security or law enforcement requirements.

Security

We use appropriate technical, organizational and administrative security measures to protect any information we hold in our records from loss, misuse, and unauthorized access, disclosure, alteration and destruction.

  • We use the CIS (Center for Internet Security) security controls framework to manage our information internal security practices and perform periodic Control Self Assessments.
  • We require adherence industry standard security controls from our vendors (e.g. NIST, ISO)

Unfortunately, no company or service can guarantee complete security. Unauthorized entry or use, hardware or software failure, and other factors, may compromise the security of user information at any time. Among other practices, your account is protected by a password for your privacy and security. You must prevent unauthorized access to your account and Personal Information by selecting and protecting your password appropriately and limiting access to your computer or device and browser by signing off after you have finished accessing your account.

Cookies and Other Tracking Technologies

A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information, as well as to understand your browsing of the Website and use of the application (for example, which page you visit or how long you stay on each page). Those cookies are set by us and called first party cookies.

More specifically, we use cookies and other tracking technologies for the following purposes:

  • Assisting you in navigation, login, and your ability to provide feedback;
  • Analysing your use of our products, services or applications;

We only use first party strictly necessary cookies. You can not opt out of these cookies, as these would render the service inoperable.

Your Privacy Rights

What choices do I have?

You can always opt not to disclose information to us, but keep in mind some information may be needed to register with us or to make use of the services.

Marketing Communications

You can opt-out of receiving certain promotional or marketing communications from us at any time, by using the unsubscribe link in the emails communications we send or using the contact form at https://everyhuman.com/about/contact.

How Can I Exercise My Data Subject Rights?

If you would like to access, review, update, rectify, and delete any Personal Information we hold about you, or exercise any other data subject right available to you under the EU General Data Protection Regulation (GDPR), you can use the contact form at https://everyhuman.com/about/contact. Our privacy team will examine your request and respond to you as quickly as possible.

Please note that we may still use any aggregated and de-identified Personal Information that does not identify any individual, and may also retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

California residents

California residents have specific rights under the California Consumer Privacy Act (‘CCPA’). For more information and to exercise your rights, please see the section headed “The California Consumer Privacy Act” below.

If you are a resident of the European Economic Area or the United Kingdom, please see the section below headed “Additional Information for users in the European Economic Area and in the United Kingdom” for further information about your privacy rights.

International Data Transfers

Personal Information you submit on the Websites or through the Services may be sent to the United States and processed by us there or in other countries, on our service providers’ cloud servers. We will always protect your information in accordance with this Privacy Notice wherever it is processed. Your data is stored at Amazon Inc. in USA.

Information for users in the European Economic Area (“EEA”) or in the United Kingdom (“UK”) EveryHuman LLC may transfer Personal Information from the EEA or the UK to the United States, including Personal Information we receive from individuals residing in the EEA or the UK who visit our Websites and/or who may use of our Services or otherwise interact with us. Please note that for individuals located in the EEA or the UK, the term Personal Information used in this notice is equivalent to the term “personal data” under applicable European and UK data protection laws.

When EveryHuman LLC engages in such transfers of personal information, it relies on i) Adequacy Decisions as adopted by European Commission on the basis of Article 45 of Regulation (EU) 2016/679 (GDPR), or ii) Standard Contractual Clauses issued by the European Commission. The European Commission has determined that the Standard Contractual Clauses provide sufficient safeguards to protect the personal data transferred outside the EU or EEA. For more information, please visit https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en. EveryHuman also continually monitors the circumstances surrounding such transfers in order to ensure that these maintain, in practice, a level of protection that is essentially equivalent to the one guaranteed by the GDPR.

Please note that EveryHuman is required to disclose Personal Information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

The California Consumer Privacy Act

Under the California Consumer Privacy Act (‘CCPA’), California residents have certain rights regarding the personal information that businesses have about them. This includes the rights to request access or deletion of your personal information, as well as the right to direct a business to stop selling your personal information.

  • Personal Information We Collect. We collect identifiers (such as name, address, email, phone number, job title, and transactional information), commercial information (such as a record of the services purchased or demos requested), and Internet or other electronic network activity information (such as usage information, IP address, cookie information, and customer feedback).
  • Why We Collect Your Personal Information. We use identifiers to provide the services requested, such as to fulfill a request for a demo, provide access to a webinar, or provide you with information about our services.
  • We use identifiers and commercial information for general website administration, which includes record keeping, troubleshooting, data analysis, testing, and survey purposes.
  • How We Collect Your Personal Information
  • We collect identifiers and commercial information directly from you.
  • We collect Internet or other electronic network activity from your usage of the EveryHuman website and its services.
  • We collect Internet or other electronic network activity from your usage of the EveryHuman website and its services.
  • With Whom We Share and Sell Your Personal Information. EveryHuman shares personal information as necessary for certain “business purposes,” as defined by the CCPA (Cal. Civ. Code 1798.140(d)). This includes sharing identifiers, commercial information and internet or other electronic network activity with providers of payment processing, customer relationship management, consulting, email, product feedback and helpdesk services.
  • While EveryHuman does not sell personal information in exchange for any monetary consideration, we do share personal information for other benefits that could be deemed a “sale,” as defined by the CCPA (Cal. Civ. Code 1798.140(t)(1)). This includes sharing identifiers, commercial information and internet or other electronic network activity with advertising networks, website analytics companies, and event sponsors.

The Right to Opt-out of Sale

While EveryHuman does not sell personal information in exchange for any monetary consideration, we do share personal information for other benefits that could be deemed a “sale,” as defined by the CCPA (Cal. Civ. Code 1798.140(t)(1)). We support the CCPA and wish to provide you with control over how your personal information is collected and shared.

  • You have the right to direct EveryHuman to not sell your personal information. Click here to learn more and to exercise your right to opt-out.
  • With respect to cookies, you can always customize your settings at any time.
  • Please note that we may still use aggregated and de-identified personal information that does not identify you or any individual; we may also retain information as needed in order to comply with legal obligations, enforce agreements, and resolve disputes.

Right to Request Disclosure

You have the right to request disclosure about what categories of personal information EveryHuman has sold or disclosed for a business purpose about you and the categories of third parties to whom the personal information was sold or disclosed. Additionally, you have the right to request disclosure of specific pieces of information. Below is a full list of the information that you can include in your request.

  • The categories of personal information that EveryHuman has collected about you
  • The categories of sources from which EveryHuman collected the personal information
  • The business or commercial purpose for collecting or selling the personal information
  • The categories of third parties with whom EveryHuman shares personal information
  • The specific pieces of personal information EveryHuman has collected about you
  • The categories of personal information that EveryHuman disclosed about you for a business purpose
  • The categories of personal information that EveryHuman has sold about you, as well as the categories of third parties to whom EveryHuman sold the information
  • If you would like to exercise your right to request disclosure, please fill out this request form. Our privacy team will examine your request and respond to you as quickly as possible.

Right to Request Deletion

You have the right to request that EveryHuman delete any personal information about you that EveryHuman has collected from you. Please note that there are exceptions where EveryHuman does not have to fulfill a request to delete information, such as when the deletion of information would create problems with the completion of a transaction or compliance with a legal obligation.

If you would like to exercise your right to delete, please use the contact form at https://everyhuman.com/about/contact. Our privacy team will examine your request and respond to you as quickly as possible.

The Right to Non-Discrimination

EveryHuman will not discriminate against you (e.g., through denying goods or services, or providing a different level or quality of goods or services) for exercising any of the rights afforded to you.

Contact Information

In compliance with the CCPA, we commit to resolve complaints about your privacy and our collection or use of your Personal Information. California residents with inquiries or complaints regarding this Privacy Notice should first contact EveryHuman using the contact form at https://everyhuman.com/about/contact.

Controller Details:

Algorithmic Perfumery Antiloopstraat 67 4817 LA Breda The Netherlands Email Address: info@everyhuman.com

California and Delaware “Do Not Track” Disclosures

California and Delaware law require EveryHuman to indicate whether it honors “Do Not Track” settings in your browser concerning targeted advertising. EveryHuman adheres to the standards set out in this Privacy Notice and does not monitor or respond to Do Not Track browser requests.

Children

We do not knowingly collect or solicit personal information from anyone under the age of 13. If you are under 13, please do not attempt to register for the Services or send any Personal Information about yourself to us. If we learn that we have collected Personal Information from a child under age 13, we will delete that information as quickly as possible. If you believe that a child under 13 may have provided us Personal Information, please contact us using the contact form at https://everyhuman.com/about/contact.

Linked Websites

For your convenience, hyperlinks may be posted on the Websites that link to other websites (the “Linked Sites”). We are not responsible for, and this Privacy Notice does not apply to, the privacy practices of any Linked Sites or of any companies that we do not own or control. Linked Sites may collect information in addition to that which we collect on the Websites. We do not endorse any of these Linked Sites, the services or products described or offered on such Linked Sites, or any of the content contained on the Linked Sites. We encourage you to seek out and read the privacy notice of each Linked Site that you visit to understand how the information that is collected about you is used and protected.

Giftcards

EveryHuman Giftcards can be used as payment for purchases at https://everyhuman.com/about/contact or at our Living Lab in Breda, NL.

We have made perfume shopping for someone else as easy and personal as possible. All they need to do is answer our online questionnaire to create one-of-a-kind perfumes. Our Giftcard is available at the starting value of €5 up to €200 and sent via email to the lucky recipient, along with a personalized note and eGiftcard code. Email notifications may take 20mns to be received -you may want to also give the recipient a headsup to check their spam.

Giftcards cannot be exchanged or redeemed for cash. Our Giftcards have an 18 months expiration date and no service fees. For balance inquiries, go to 'Giftcard' in the menu or email info@everyhuman.com.

Changes to the Privacy Notice

We’re constantly trying to improve our Websites and Services, so we may need to change this Privacy Notice from time to time as well. We will alert you to material changes by, for example, placing a notice on our Websites and/or by sending you an email (if you have registered your e-mail details with us) when we are required to do so by applicable law. You can see when this Privacy Notice was last updated by checking the date at the top of this page. You are responsible for periodically reviewing this Privacy Notice.

Contact Us

Please contact EveryHuman using the contact form at https://everyhuman.com/about/contact.

Controller Details:

Algorithmic Perfumery Antiloopstraat 67 4817 LA Breda The Netherlands Email Address: info@everyhuman.com

If you have questions, requests or concerns regarding your privacy and rights, please let us know how we can help.