Last modified September 01, 2021
Notice: We have updated this Privacy Notice to include updated contact information for our local representative for the purposes of the EU/UK GDPR.
Table of Contents
- About Us
- Information Covered by this Privacy Notice
- Information We Collect From You
- How We Use Your Information
- Sharing of Information
- Tracking Technologies and Online Advertising
- Retention of Personal Information
- Legal Basis for Processing Your Information
- Your right to control how your personal information is used
- Third Party Links and Information Collection and Use by Our Users
- Data Transfer
- Notification of Changes
- Contact Us and Complaints
Newfold Digital, Inc. (formerly The Endurance International Group, Inc.) and our subsidiaries (“we,” “us” or “Newfold”) are a leading provider of online tools for small businesses to establish and build their web presence, get found in online search, and connect with customers. A list of Newfold brands can be found here. This privacy notice applies to our brands that historically belonged to The Endurance International Group, Inc. (“Legacy Endurance”), including Bluehost, HostGator, Domain.com, iPage, ResellerClub, BigRock, LogicBoxes and others. For the privacy notice applicable to our brands that historically belonged to Web.com Group, Inc., also a subsidiary of Newfold, please click here.
We care about protecting the personal information of our customers and visitors who use our websites, products or services (collectively, our “Users”). This privacy notice provides details about how your personal information is collected, shared and used by us. To learn more about the Newfold corporate family, visit: https://newfold.com/.
For the purposes of the European Union’s General Data Protection Regulation 2016/679, or GDPR, and the United Kingdom (UK) Data Protection Act 2018, Newfold and each of the Legacy Endurance brands from which you have signed up for a product or service are the data controller, and our local representative is Bird & Bird, which may be contacted as follows:
Bird & Bird GDPR Representative Services SRL
Avenue Louise 235
Bird & Bird GDPR Representative Services UK
12 New Fetter Lane
London EC4A 1JP
Information Covered by this Privacy notice
When you purchase a Service from us, your personal information will be collected, used, and shared consistent with the provisions of this privacy notice. In addition, the following addendums related to particular Services offered by Newfold or individuals in certain locations also apply to your purchase or use of those Services. These addendums are a part of this privacy notice:
Addendum for Particular Services
- Addendum for Users who purchased services from Ecomdash
- Addendum for Users who purchased Domain Registration services, including from Domain.com
Addendum for Certain Geographies
Information We Collect From You
In the course of your use of the Services, we obtain the following information about you as described below. We collect this data for the purposes described under “How We Use Your Information”.
Information you voluntarily provide to us
We collect the following information from you when you provide it to us:
- Information you provide prior to any registration process, such as your email when you provide it to us;
- Information that you provide during any registration process, including in connection with a co-branded offer (such as your name, company name, email address, phone number, billing address or credit card information, geographic location and industry);
- Information you provide, when you call or email us (for support or otherwise) or when you use our products or services; and
- Payment information, including credit card data that you provide to us (by way of our Services or otherwise) when you purchase some of our products and services.
Information we collect about your usage and devices
- We collect data relating to your online activity on our websites, including the following:
- IP address;
- Browser type and version;
- Type of device you use, operating system version, and device identifier;
- Geographic location;
- Pages you view;
- How you got to our Services and any links you click on to leave our Services;
- When you update your information, communicate with us, or order new Services;
- Metadata about your use of our Services and emails we send to you (including clicks and opens);
- Metadata about how your customers, contacts, and users interact with the Services we provide you;
- Your interactions with any videos we offer;
- Issues you encounter requiring our support or assistance; and
- Any device or other method of communication you use to interact with the Services.
We store the data we collect in a variety of places within our infrastructure, including system log files, back end databases and analytics systems.
- We collect data relating to your online activity on our websites, including the following:
Information We Acquire From Social Media
- We collect information from third party social networking sites, including information that they provide to us if you use your credentials at such social networking sites to log into some of our Services (such as your name, social media account name and email address to pre-populate our sign-up form).
- The information you allow us to access varies by social networking site, and depends on the level of privacy settings you have in place at the social networking site. You can control and find out more about these privacy settings at the applicable social networking site.
Information We Acquire From Other Sources
We also collect the following information from other sources:
- Information you provide to us at seminars or to our partners;
- Information you provide to us in surveys;
- Information that is publicly available; and
- Information you consent to us receiving from third parties.
We also collect information that you may provide during your telephone conversations with us, which we may monitor or record.
We may combine any information we collect about you with other information we have about you to help us update, expand and analyze our records, identify new customers, and provide products and services that may be of interest to you. If you provide us personal information about others, or if others give us your information, we will only use that information for the specific reason for which it was provided to us.
How We Use Your Information
We use the information we collect, both on its own and combined with any other information we collect about you, for the following business and commercial purposes:
- To provide the requested Services to you;
- To provide you with useful content;
- To ensure the proper functioning of our Services
- To offer and improve our Services;
- To provide you with requested information or technical support
- To facilitate your movement through our websites or your use of our Services;
- To do a better job of advertising and marketing our Services (subject to your consent where required by applicable law);
- To advertise and market third party products and services (subject to your consent where required by applicable law)
- To diagnose problems with our servers or our Services;
- In connection with our security and compliance programs;
- To administer our websites;
- To communicate with you;
- To target current or prospective customers with our products or services through online advertisements served on third-party sites by third-party vendors, such as Google (subject to your consent where required by applicable law);
- To assist us in offering you a personalized experience or otherwise tailor our Services to you; and
- As otherwise described in this privacy notice.
We also use the information we receive to produce reports on trends and statistics, such as mobile search trends, email open rates by industry, campaign best practices or the number of users that have been exposed to, or clicked on, our websites or evaluated or purchased our products or services.
Payment information that you provide to us, including credit card data, will only be used to facilitate payment for the Services.
We also use recorded telephone conversations for quality control purposes, to train our employees and for our own protection.
Sharing of Information
We share your personal information according to this privacy notice, with your consent or as necessary to provide you the Services you request, as well as to operate our business. As further described below, we will only share certain personal information with:
Further information about the third parties with whom we share personal information is available here.
Sharing within the Newfold Corporate Family
We share personal information with other members of the Newfold corporate family to allow our corporate affiliates to contact you with offers, services or products that may be of interest to you and to provide you with their products and services. Any such corporate affiliate may use your information only according to the terms of this privacy notice. If you are located in a jurisdiction where such sharing requires your permission, we will only do so with your consent.
Sharing with Partners
When we share your personal information with certain third-party partners, including marketing and advertising partners, that information includes your name, email address and other information enabling partners to:
- Assist you in using our Services,
- Contact you with offers, services or products that may be of interest to you, and
- Provide you with their products or services.
If you are located in a jurisdiction where such sharing requires your permission, we will only do so with your consent. Please note that if you access our services through a tool that hides your location, such as through a virtual private network, you may not receive our request for permission because we were not able to identify you as being located in a jurisdiction where your permission is required.
Further, our partners are prohibited from using your contact information for any purpose beyond those set forth above without your consent. We will not provide our partners with your credit card information. Further information about certain partners we share personal information with is available here.
In the event we collect information from you in connection with an offer that is jointly presented by us and a partner, we will let you know who is collecting the information and whose privacy notice applies, as well as any options you may have regarding use of your information.
Sharing with Third Party Service Providers and Vendors
Occasionally, we enter into contracts with carefully selected third parties to assist us in servicing you (for example, providing you with customer service, fraud detection and deterrence or access to advertising assets and providing us with information technology and storage services) or to assist us in our own marketing and advertising activities (including providing us with analytic information and search engine optimization services). Additional information about certain third-party service providers we share personal information with is available here. Our contracts with such third parties prohibit them from using any of your personal information for any purpose beyond the purpose for which it was shared.
If you purchase a product or service from a third party through one of our brands, we will pass your personal information to such third party in order for them to fulfill your order.
We offer features that allow you to better target who you contact through our products and services. These features allow you to optimize your campaigns, segment your lists, and better customize your offerings to your customers. In order to do this, we partner with third parties who can provide you with information about your contacts. If both you and your contacts are located outside of the European Union, this may include demographic information and geographic location. We require that these third parties are contractually or legally permitted to share this information with you.
In order to provide you with these features, we may send third parties certain pseudonymized personal data about your contacts. These third parties are prohibited from using this personal data for any purpose beyond that for which it was shared.
We also share non-personal information with certain third parties, including the media, industry observers, marketing and advertising partners, vendors, customers, potential customers or partners. For example, we disclose mobile search trends, email open rates by industry, campaign best practices or the number of users that have been exposed to, or clicked on, our websites or evaluated or purchased our products and services.
If we are involved in a merger, acquisition, a sale of all or a substantial portion of our assets, or other similar sale transaction, your information will be transferred as part of that transaction. We will notify you by email and/or a prominent notice on our website of any such transfer and any choices you may have regarding your information.
All users authorized by you to have access to your account can view personal information stored in the account. A primary account holder can view personal information saved in subaccounts to which they have authorized access. We share information about authorized users only for legitimate purposes consistent with this privacy notice, including servicing your account and marketing products and services to you.
If legally required to do so, or if we have a good faith belief that such disclosure is reasonably necessary, we may disclose your personal information to courts of law, public authorities (including to meet national security or law enforcement requirements), and other relevant third parties, such as internet service providers, to conduct an investigation, respond to a third party or law enforcement subpoena or court order, to bring legal action, prevent harm to others or pursue other relief when you or a third party are or may be:
- Violating our terms and conditions of use;
- Causing injury or other harm to, or otherwise violating the property or other legal rights, of us, other users, or third parties; or
- Violating federal, state, local, or other applicable law.
This disclosure can include transferring your information to the U.S. and other countries outside the European Economic Area. To the extent we are legally permitted to do so, we will notify you in the event that we are required to provide your personal information to third parties in connection with a subpoena.
The transmission of information via the internet, email or text message is not completely secure. Although we will do our best to protect your personal information, we cannot guarantee the security of your information transmitted through the Services or over email; any transmission is at your own risk. Once we have received your information, we will take appropriate technical and organizational measures to safeguard your personal information against loss, theft and unauthorized use, access or modification.
When we collect financial account information, such as credit card numbers, we protect its transmission through the use of encryption such as the Transport Layer Security (TLS) protocol.
Tracking Technologies and Online Advertising
Marketing Communications from Us
You always have the opportunity to opt out of our marketing communications with you or change your preferences by following a link in the footer of all non-transactional email messages from us or by emailing us at email@example.com. Some communications from us are considered transactional or service communications (for example, important account notifications and billing information). You agree to receive these transactional and service communications as a condition of the Services that we provide to you. You must cancel your accounts for all Services, if you do not wish to receive any transactional or service communications from us. To cancel your account, please follow the instructions found in the terms of service for the applicable Service. You may still receive marketing communications from us even after you cancel your account unless you also opt-out of our marketing communications, as described above.
If you do not want to receive marketing calls by phone, you may contact customer support at the brand from which you purchased your Services and indicate your preference to us. Contact information for specific brands can be found on the homepage of each brand.
Note that we may use automated dialing technology to place marketing calls. In the event we do use such technology for marketing calls, we will do so with your consent as required to comply with applicable law. You do not need to agree to receive automated marketing phone calls or texts from us in order to use the Services.
For information about how to manage and opt out from cookies, please visit our Cookie Notice.
Information from Third Parties
To manage the information we receive about you from a social networking site or other third party (if applicable), you will need to follow the instructions from that party for updating your information and changing your privacy settings, where available. The information we collect is covered by this privacy notice and the information the third party collects is subject to such third party’s privacy practices. Privacy choices you have made on any third party site will not apply to our use of the information we have collected directly through our Services.
If an account or profile was created without your knowledge or authorization, please contact customer support at the brand on which the account or profile is located to request removal of the account or profile.
Retention of Personal Information
We retain your personal information to provide services to you and as otherwise necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. We will retain your personal information for no more than seven years following the later of (i) the date on which you terminate your use of the Services or (ii) May 25, 2018, unless we are otherwise required by law or regulation to retain your personal information for longer.
Legal Basis for Processing Your Information
Depending on what information we collect from you and how we collect it, we rely on various grounds for processing your information under the GDPR, including the following:
- In order to administer our contractual relationship, including setting up your requested Services, payments, renewals and processes;
- Because it is in our legitimate interest to run a successful and efficient business and provide you with the Services and other useful content;
- In order to fulfill any legal obligations we may have to collect this information from you; and/or
- Because you have provided your consent for us to do so.
YOUR RIGHT TO CONTROL HOW YOUR PERSONAL INFORMATION IS USED
You have the right to make requests regarding your personal information. You can:
- Ask us to access, update, remove or correct personal information if it is inaccurate;
- Request that we transfer some or all of your personal information to you or a third party (whenever it is technically feasible to do so);
- Make choices about receiving marketing communications;
- Withdraw your consent to process your personal information in circumstances where we are relying on your consent as our basis for processing.
To exercise any of your rights, please send an email to firstname.lastname@example.org or visit our Privacy Center .
Users located in Brazil, the European Union and California have additional rights. Click here to learn more.
In addition to the rights above, Users located in Brazil, residents of the European Union and California have further rights which are detailed below. Please note that some rights only apply in certain circumstances or to certain information and some exceptions may apply.
We will require you to verify your identity before responding to any requests to exercise your rights.
Residents of the European Union or United Kingdom
In addition to the rights outlined above, where the GDPR or UK Data Protection Act or related data protection laws apply, you may:
- Ask whether we process personal information about you, and if we do, to access data we hold about you and certain information about how we use it and who we share it with.
- Request that we delete the personal information we hold about you in certain limited circumstances.
- Request that we stop processing the personal information we hold about you.
- Object to our processing of data about you.
Residents of California
In addition to the rights outlined above, where the California Consumer Privacy Act 2018 (“CCPA”) or related data protection laws apply, you may:
- Request to know the categories of personal information we collect about you, as well as the sources from which the personal information is collected; the business or commercial purpose of our collection; the categories of third parties with whom we share your personal information; and the specific pieces of personal information we hold about you.
- Request certain information regarding, and/or opt-out of, our disclosure of your personal information to third parties.
- Request that we delete the personal information we hold about you in certain limited circumstances.
More information about your rights as a resident of California is available here.
Users located in Brazil
In addition to the rights outlined above, where the Lei Geral de Proteção de Dados (“LGPD”) applies, you may:
- Ask that we provide confirmation of the existence of the processing of your personal data;
- Access the personal data we hold about you and certain information about how we use it and who we share it with including information about any public and private entities we have shared your personal data with;
- Request the deletion of personal information we have collected from you, subject to certain exceptions;
- Ask us to anonymize, block, or delete unnecessary or excessive data or data that is not being processed in compliance with the LGPD; and
- Ask us to provide information about the possibility of denying consent for the processing of your personal data and the consequences of such denial.
More information about your rights as a User located in Brazil is available here.
Third Party Links and Information Collection and Use by Our Users
Some of our Services provide links to other websites. Because we do not control the information policies or practices of these third party sites, you should review their privacy policies to learn about how they collect and use personal information.
You may also log in to some of our Services using sign-in services such as Facebook Connect or an Open ID provider. These services will authenticate your identity and provide you with the option to share certain personal information with us, such as your name and email address to pre-populate our sign up form. For example, if you take advantage of certain of our social media features, such as the Facebook Like button, and widgets, such as the “Share This” button or interactive mini-programs that run on our site, the applicable social networking sites may collect your IP address, which page you are visiting on our websites, and may set a cookie to enable it to function properly.
Our Services are not directed to persons under 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian of such a child and become aware that your child has provided personal information to us, please contact us as described in this Privacy Notice and we will take reasonable steps immediately to remove any such information.
International Data Transfer
In order for us to fulfill your request or provide the Services to you, your personal information will be transferred to, stored at, and processed in jurisdictions other than where you live, including in the United States. For instance, your personal data may be processed by staff in India and the Philippines, who work for us or for one of our suppliers. Laws in these countries may differ from the laws applicable to your country of residence. If you are a European Economic Area (EEA) data subject and your personal information is shared with our affiliates, partners, or third-party service providers acting on our behalf outside of the EEA, it is done so pursuant to necessary means to ensure an adequate level of protection. We will take all steps reasonably necessary to ensure that your personal data is treated securely and in accordance with this notice.
For transfers of personal information within the Newfold corporate family, such transfer will be under the Commission’s model contracts for the transfer of personal data to third countries (i.e., the standard contractual clauses), pursuant to Decision 2004/915/EC and 2010/87/EU.
For transfers of data to third parties, such transfers will be under the Commission’s model contracts for the transfer of personal data to third countries (i.e., the standard contractual clauses), pursuant to Decision 2004/915/EC and 2010/87/EU.
Although not currently relied upon as a legal basis for transfers, Newfold’s Ecomdash, Bluehost, Fast Domain, Host Monster and Just Host brands (together known as “Covered Entities”) participate in and have certified their compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework (together, the “Privacy Shield Frameworks”). To learn more about the Privacy Shield Frameworks, and to view our certifications, visit the U.S. Department of Commerce at https://www.privacyshield.gov/list.
The Covered Entities are committed to subjecting all personal data received from European Union (EU) member countries and Switzerland to the principles of the applicable Privacy Shield Framework (the “Privacy Shield Principles”). The Covered Entities are responsible for the processing of personal data they receive and subsequently transfer to a third party acting as an agent on its behalf. The Covered Entities comply with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the Privacy Shield Frameworks, the Covered Entities are subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
Under certain conditions, more fully described on the Privacy Shield website, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.
You can contact the Data Protection Officer listed below to obtain a copy of the data transfer agreement or more information regarding the relevant safeguard we put in place. For more information about the EU-US Privacy Shield Framework and the Swiss-US Privacy Shield Framework, please visit the U.S. Department of Commerce’s Privacy Shield website.
You may click on the seal to check Bluehost, Fast Domain, Host Monster and Just Host’s privacy verification status.
You may click on the seal to check Ecomdash’s privacy verification status.
Notification of Changes
We reserve the right to modify this privacy notice at any time, so please review it frequently. If we decide to change this privacy notice in any material way, we will notify you here, by email, or by means of a notice on https://newfold.com/ or the website of the Newfold product or service you use prior to the change becoming effective. In all cases, your continued use of any Services constitutes acceptance to any such changes.
If you have any questions about this privacy notice or our data handling practices, or you wish to make a complaint, you may contact our Data Protection Officer at email@example.com or by regular mail at:Data Protection Officer
5335 Gate Pkwy
Jacksonville, FL 32256
We will address your request. In addition, you may raise a complaint with the Dutch Supervisory Authority (Autoriteit Persoonsgegevens) by contacting:Autoriteit Persoonsgegevens
2509 AJ DEN HAAG
Telephone: (+31) – (0)70 – 888 85 00
Fax: (+31) – (0)70 – 888 85 01