This privacy statement discloses the privacy practices for MyELAL.MyELAL (“MyELAL,” “we” or “us” or “our” ) is committed to protecting the privacy and security of your personally identifying information. We have prepared this Privacy Policy to explain how we collect, use, protect, and disclose your Personal Information (as defined below), usage data and message data when you use our marketing website located at elal.com (the “Site”), as well as when you use the MyELAL Service which includes the MyELAL mobile app, MyELAL web interface, MyELAL APIs, MyELAL administrator tools and other products and services provided on the elal.com website (all of the foregoing, collectively, the “Service”). By using the Service you consent to this Privacy Policy.
By visiting the Site or using the Service, you accept the policies and practices described in this Policy, as such Policy may be amended from time to time. Each time you visit the Site or use the Service, you agree and expressly consent to our collection, use and disclosure of the information that you provide as described in this Policy. In any case, and with respect to any Google Account information, we will only use that information to access your Google Account when, and for the limited purposes for which, you have given us permission to do so.
To be clear about the terminology we are using, when we use the phrase “Personal Information” in this Policy, we mean information about you that is personally identifiable, like your name, address, e-mail address, billing information, or phone number, as well as other non-public information that is associated with this personal information. When we use the phrase “Anonymous Information” in this Policy, we mean information that is not personally identifiable, or linked to your Personal Information such as aggregated information, general demographic information and IP addresses. Anonymous Information does not necessarily enable identification of individual persons.
1. Sharing and Disclosure of Information
We do not rent, sell, or share any information about the user with any third-parties, except as specifically described herein. We may disclose your Personal Information if we believe such action is necessary to:
(a) comply with the law, or legal process served on us;
(b) protect and defend our rights or property (including the enforcement of our agreements); or
(c) act in urgent circumstances to protect the personal safety of users of our Service or members of the public.
In order to provide you with MyELAL products you have requested, MyELAL may sometimes, if necessary, share your Personal Information (excluding your address book and related information) and traffic data with trusted partner service providers and/or agents, for example: banking organizations or other providers of payment and analytical services, customer support, or hosting services. MyELAL will always require these third parties to take appropriate organizational and technical measures to protect your personal data and traffic data and to observe the relevant legislation. MyELAL will never share your address book information with any third party, except as may be required by law (see below).
Third party companies, such as mobile providers, are used in order to send you an authentication SMS when you register with MyELAL and for any message that is designated as an SMS/MMS message. In order to send you the SMS/MMS, we share with these third party companies your phone number and/or email address when delivering email messages.
We may disclose information about you if we determine that for national security, law enforcement, or other issues of public importance that disclosure of information is necessary.
Furthermore, upon administrator request for MyELAL to deliver application logs from the mobile app to server, it will be done transparently without requiring user assent or acknowledgement on his mobile.
We may from time to time ask you to provide information about your experiences which will be used to measure and improve quality. You are at no time under any obligation to provide any of such data. Any and all information which is voluntarily submitted in feedback forms on the Site or any survey that you accept to take part in is used for the purposes of reviewing this feedback and improving the MyELAL software, products and websites.
We may contact you to send you messages about faults and service issues. Furthermore, we reserve the right to use email, the MyELAL software or SMS to notify you of any eventual claims related to your use of our software, websites and/or products, including without limitation claims of violation of third party rights.
We may send you alerts via the MyELAL software to notify you when someone has tried to contact you. We may also use the MyELAL software to keep you up to date with news about our software and products that you have purchased and/or to inform you about other MyELAL products and related information.
2. International data transfers and our Data Privacy Framework
As a global organization, we may need to transfer your personal data to MyELAL servers, affiliates, contractors, service providers, and to third parties in various countries and jurisdictions around the world. In each case, we take care to use appropriate safeguards to ensure your personal data remains protected.
Data transfers to the United States and elsewhere:
When you use our account portal, or our other products and services, personal data of you your end users, and your employees that is processed by MyELAL may be transferred to the United States, where our primary processing facilities are located, and possibly to other countries where we or our service providers operate. These transfers will often be made in connection with routing your communications in the most efficient way or based on requirements of individual customers.
Safeguards for data transfers:
MyELAL employs appropriate safeguards for cross-border transfers of personal data, as required by applicable local law. Where we must transfer end users’ and employee personal data to a third country, we do it as a request of an individual company for whom we are processing information and following the processing, we do not store end user information other than the one of employees registered to our service
GDPR Data Protection Agreement:
MyELAL has self-certified to the EU-U.S. and Swiss-U.S. Data Privacy Framework with respect to Customer Data and to the European Monetary System (EMS) General Data Protection Regulation (GDPR) Data Protection Agreement.
For more information on how we adhere GDPR, please see our Privacy Policy.
EU-US Data Privacy Framework (“EU-US DPF”), UK Extension to the EU-U.S. Data Privacy Framework and Swiss-US Data Privacy Framework (Swiss-US DPF):
MyELAL complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern.
When we transfer personal data outside countries other than those in the EEA, the UK, and Switzerland, we strive to comply with the cross-border data transfer rules of those countries, such as by cooperating with that country’s data protection authority or based on a written agreement with individual customer that meets the data protection requirements of the customer and country.
Specific MSA and SCC:
Any specific MSA or Standard Contractual Clauses that were signed with individual companies will override the terms written in this online privacy policy statement.
China Privacy and Terms of Service:
Note that the WeChat Capture product is using the Microsoft Azure Cloud services in China, and running over the Tencent WeChat Cloud in China. This is a requirement to comply with Tencent and Chinese regulations which require the messages to be stored in China before being sent outside using an official Chinese ICP (Internet Content Provider).
3. Children’s Privacy
MyELAL websites and software clients are not intended for or designed to attract anyone under the age of 13 and we do not intentionally or knowingly collect Personal Information on our sites from anyone under the age of 13 (or older in some jurisdictions). We encourage parents to be involved in the online activities of their children to ensure that no information is collected from a child without parental permission.
4. Security
We take reasonable precaution to protect Personal Information from misuse, loss and unauthorized access. Although we cannot guarantee that Personal Information will not be subject to unauthorized access, we have physical, electronic, and procedural safeguards in place to protect Personal Information. Personal Information is stored on our servers and protected by secured networks to which access is limited to a few authorized employees and personnel. All employees are made aware of our security procedures as part of our training process. We review our web security procedures on a monthly basis. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure.
5. Business Transitions
In the event that we go through a business transition, such as a merger, acquisition by another company, or sale of all or a portion of our assets, Personal Information will likely be among the assets transferred. As part of such a transaction the new entity will be required to commit to the same level of protection of your Personal Information as described in this Privacy Policy. If we cannot obtain such a commitment, we will not perform the business transition.
We will post a notice on this Site of any such change in ownership or control of the Personal Information we may have prior to such transfer.
6. Changes to Policy
From time to time, we may revise this Policy. We reserve the right to update or modify this Policy, or any other of our policies or practices, at any time with or without notice. However, we will not use your Personal Information in a way that is materially different than the uses described in this Policy without giving you an opportunity to opt-out of such differing uses. We will post the revised Policy on the Site, so that users can always be aware of what information we collect, how the information is used and under what circumstances such information may be disclosed. You agree to review the Policy periodically so that you are aware of any modifications. Your continued use of the Site indicates your assent to any changes and signifies your agreement to the terms of our Policy. If you do not agree with these terms, you should not use the Site, the MyELAL App, or any other Service.
7. Hosting of Site and Service
Please note that the Service and the Site are hosted in the United States and are intended for and directed to users in the United States. If you are an international user, please be advised that through your use of the Service or the Site, you expressly consent to your personal data being transferred to the United States and to the application of the United States federal laws to such transfer.
8. Change or Removal of Information
If you provided your e-mail address to us and wish to update it, you may do so by sending an e-mail to [email protected].
If you no longer wish to receive e-mail communication from us, such as updates and newsletters, you may opt-out of receiving such communications by following the instructions included in each newsletter or communication. In addition, you can remove your e-mail address at any time by sending an e-mail with the subject line of UNSUBSCRIBE to [email protected].
9. Contact Information
Please direct all questions in connection with this Policy via e-mail to [email protected] or by writing to El Al Israel Airlines, Attention: Privacy Policy Administrator, P.O.B. 41, Ben Gurion Airport, Israel 7015001.