We, the MapTiler team, formally represented by MapTiler AG, ID no: CHE-345.466.193, with registered office at Höfnerstrasse 98/Unterägeri, Zug 6314, Switzerland, are a group of professionals creating all MapTiler services. If you visit our website https://www.maptiler.com/ or use our services, we process some of your personal data.
Our business is built around selling our map products, not map visitors' private data. Therefore, we only collect the minimum information we need about you to run our services.
Our maps contain no spy code. We don't track the end-users to sell them targeted advertisements or, even worse, to sell such data to third parties.
Here, you will find which of your personal data we use, why we need your personal data, what entitles us to do so and for how long we keep your personal data. We will also inform you about persons with access to your personal data, about your rights and how you can exercise them.
We process different personal data for different purposes. Overall, we process the following categories of personal data:
We use cookies and similar trackers. When you visit our website https://www.maptiler.com/, we may place cookies on your device to learn some information about your behaviour on the site. You can find more information about cookies in a cookie banner. You can change your cookie settings at any time by clicking on a rolled cookie banner in the low left corner of the website. Or you can write to us and we can help you with the change of the cookie settings personally.
When using cookies, we process identification data of your device (IP address) and information about your behaviour on the site. If you are a user of our services, we can also connect these data with your login details and know more about how you use our services.
We use essential (strictly necessary) cookies to ensure proper functioning of our website based on our legitimate interest in the operation of our website.
Based on your consent, we use analytical and statistical (performance) cookies to generate statistics and reports on the use of the website and to save your preferences, and advertising (targeting) cookies to display targeted advertising on other websites and to transmit it to advertising operators.
You can use any of our offered services as MapTiler Cloud, MapTiler Data, MapTiler Engine or MapTiler Server. If you use our services, we need to sign you up for our service, allow you to login to your account, use our service, pay for the service (if the service is paid) and we want to inform you about service updates, new functionalities, its issues and security incidents.
For this purpose, we process your identification data, login, contact and payment details (only if the service is paid) and information about the use of the service. Such processing is necessary to allow you to use our service (for the performance of the service contract that we conclude when you sign up for the service). Please note that we don't have a direct access to your password which is saved in a secured Google Firebase software.
We will process your personal data until your user account is cancelled (for example upon your request).
In your account settings, you can choose which types of notifications you don't want to receive. If you don't want to receive some notifications, you can also unsubscribe in each email, and we will not send you these types of notifications. Alternatively, you can write to us, and we will do it manually.
We need to fulfil our legal obligations set out in laws and regulations. For this purpose, we process identification data of your device (to save your cookie preferences), login and contact details (to block illegal content and identify you), payment details (only if the service is paid) and information about the use of the service.
This processing of personal data is necessary to fulfil our legal obligations, especially in the area of accounting, taxes and provision of digital services.
We will process your personal data for retention periods set out in the laws.
We need to protect our rights and interests in disputes. For this purpose, we process any information we keep about you in relation to the provision of our services. We process your personal data for this purpose on the basis of our legitimate interest to protect our rights and interests. We can keep your personal data up to 10 years from cancellation of your user account, or in case of a dispute, until the dispute is settled. We chose this retention period in line with the laws governing limitation periods in which we or you can file a lawsuit to protect our or your rights.
You can object to this processing of your personal data. If your objection is justified (your interest in protecting your privacy outweighs our interests), we will stop processing your personal data.
We are constantly improving our services. For this purpose, we need to collect identification data of your device (IP address), data about how the traffic flows on our website, which pages are being visited and about how our products are used (also extracted from heatmaps).
We process your personal data for this purpose on the basis of our legitimate interest to improve our services. We can use your personal data until your account is cancelled. You can object to this processing of your personal data. If your objection is justified (your interest in protecting your privacy outweighs our interests), we will stop processing your personal data for analytical purposes.
We may use your IP addresses for security checks based on our legitimate interest to protect our software and our clients. For this purpose, we process your IP address only for the time necessary to conduct the security check when you login to your account or when you use as an end-users use our map visible on websites of our customers. We process your personal data for this purpose only for a limited period of time, for up to 2 months. You can object to the processing of your personal data. If your objection is justified, we will stop with the processing.
If you subscribe, we can send you newsletters and commercial emails with information about MapTiler team and offers of our new products. Then, we process your email address to inform you about news in the MapTiler team, our new products and possible discounts and favours.
We can send you the newsletters based on our legitimate interest to stay in touch with our customers and to keep our direct marketing going. We can send you the newsletters until your account is cancelled or earlier until you unsubscribe from the newsletters.
If you do not want to receive the newsletters, you can unsubscribe in the account settings or directly in the newsletter and we will not send you anything. Alternatively, you can write to us and we will do it manually.
Please be aware that we can use pixel tracking and track if you have opened our emails and newsletters or what you have read in the emails. We process your personal data for this purpose based on our legitimate interest in improvement of our services and communication. We may use the tracked data until your account is cancelled or until you unsubscribe from the emails. You can object to the processing of your personal data. If your objection is justified, we will stop with the processing.
If you contact us with a query, we need to use your contact details and the content of your communication with us to answer your queries.
If you use any of our services, we archive the communication with you to fulfil our contractual obligations with you. We need to archive the communication until the service is cancelled and sometimes up to 10 years from the cancellation of the service to protect our rights and interests in disputes.
If you are not a user of our services, we will communicate with you based on our legitimate interest in answering your queries. We will archive the communication for up to 1 year from the last communication with you and then we will delete it. If you want us to delete the communication with you earlier, you can object to the archiving. If your objection is justified, we will delete the communication.
MapTiler is a holding and therefore we may share software and databases with other companies in the holding for the purpose of effective management of our companies. In this case, we share your personal data based on our legitimate interest to effectively manage the holding. You can object to the processing of your personal data. If your objection is justified, we will stop with the processing.
In the future, we may cooperate with a potential investor in our company. The investor may need to see some data about using our services to discover whether it is secure to invest in our company. In this case, we may disclose the minimum amount of our personal data to secure the investment. The investor will be obliged with a strict duty of confidentiality and security of the personal data. And after the transaction is finalised, we will inform you about the investor individually. We may disclose the information to the investor based on our legitimate interest to secure an investment in our company. You can object to the processing of your personal data. If your objection is justified, we will stop with the processing.
Our software and services are designed with privacy and security in mind. We use encryption everywhere it is possible and it makes sense to do so. We also do regular internal security audits. All team members undergo security and privacy training. The data centres we use have strict security policies allowing physical access to servers only to authorized persons and our infrastructure providers are certified to ISO/IEC 27001 standard.
In case of any security incident that may affect you or your clients, we will contact you by email as soon as possible, no more than within 72 hours.
We may disclose your personal data to our suppliers usually in a position of a data processor or to public authorities. The following categories of persons may have access to your personal data:
We may use services of other software providers which make our work easier. For example:
We use payment provider FastSpring to ensure the payment operations. When you are paying for software or one of our services, the money is transferred using a third-party service. This is also where you enter your credit card details; we do not have access to them.
These persons can access your personal data in order to comply with their legal obligations. They are bound by duty of confidentiality.
External experts, as programmers or data analysts, can provide us with professional assistance when using our services.
Sometimes we must or need to disclose your personal data to public authorities controlling the use of public funds, criminal law enforcement authorities, tax authorities etc.
It is possible that we may disclose some information to potential investors to our company.
If you want to know who exactly has access to your personal data and for what purposes, please let us know. We will be happy to provide you with more specific information.
Some of our suppliers are based outside the EU and Switzerland. In these cases, we have ensured that they provide appropriate safeguards to ensure that your personal data is secure and that your rights are not restricted in any way.
You have a number of rights in relation to the processing of your personal data. You can exercise these rights in any way that suits you. However, you must allow us to verify that it is really you exercising your rights. Ideally, please exercise your rights by contacting us via this contact form on our website. Or you can write us at support@maptiler.com.
Profiling may occur on our website. This means that we may use the personal data we process about you to put you into certain groups - for example, according to the service you use or the way you use the service. These profiles can give us a better understanding of who uses our website and services and how they use them, so that we can improve the website and our services. However, profiling will not affect how we provide services to you specifically.
You can object to the profiling. If your objection is justified, we will stop profiling you.
If we process your personal data based on your consent, you have the right to withdraw your consent. You can easily withdraw your consent by emailing us at support@maptiler.com.
You have the right to access personal data we process about you. At the same time, you have the right to be informed about what personal data we process about you, for how long, what the purposes of the processing are, to whom we disclose it and whether we use it for automated decision-making (or how this automated decision-making works).
We will give you a copy of your personal data free of charge. If want more copies, we may charge you the necessary costs.
Have you discovered that we are processing incomplete or incorrect personal data about you? Then you have the right to have the personal data rectified or, if required by the purpose of processing of the personal data, completed.
You also have the right to have the personal data we hold about you deleted. For you to request erasure, one of the following reasons must be given:
Although you may withdraw your consent to the processing of your personal data or request that we delete your personal data, we may not always delete your data. Sometimes we are required by law to process your personal data. However, we will then inform you of the grounds on which your personal data cannot be erased.
If you feel that your personal data is inaccurate, you may request that we restrict the processing of your personal data for the time necessary to verify its accuracy and correct it, if necessary.
You also have this right in the following cases:
If we process your personal data based on legitimate interest or we profile you, you have the right to object to this processing. We will assess whether it is in our legitimate interest to process your personal data for that purpose. Or whether your right not to have your personal data processed any longer prevails.
If your objection is justified (your right to protect your privacy prevails over our interests), we will stop processing your personal data.
If we process your personal data by automated means based on your consent or necessity for the performance of a contract, you may ask us to provide your personal data in a structured, commonly used, and machine-readable format. And to pass it on to another data controller of your choice where appropriate.
Do you think that the above rights are insufficient from your point of view? Or that we are violating your rights in any way? You can lodge a complaint with the supervisory authority in your country. For example, here, you will find a list of data protection supervisory authorities in the EU. In Switzerland, you can contact Federal Data Protection and Information Commissioner (FDPIC). In the UK, you can contact Information Commissioner's Office (ICO). In California, you can contact California Privacy Protection Agency.
We don't expect to make any dramatic changes to this privacy policy. However, if you are our client, we will notify you about the changes by e-mail.