Products

Products

Video Hosting

Upload and manage your videos in a centralized video library

CincoTube

Create your own community video hub for your team, students, or fans

Pages

Create dedicated website pages to showcase your images and videos

Players & Galleries

Launch beautiful playlists, academies, and e-learning courses instantly—no code needed

Solutions

eLearning & Training

Upload and manage your videos in a centralized video library

Enterprise

A-Z Video solutions for those that think big

eCommerce

Boost sales with interactive video & easy embedding

Sales & Marketing

Empower your sales team with video that closes deals
Townhalls Webinars Team Collaboration Learning & Development See All Solutions
Developers

Video API

Build your live and on-demand video experience from a web player to a full-blown video portal with advanced features

REST & GraphQL

Strapi Plugin

Embed video with powerful features in your headless websites

CMS Integration

Flutter Plugin

Easily embed Cincopa-powered video playback in your Flutter apps

Mobile First

Sanity

Upload media files, or link existing Cincopa assets directly from Sanity Studio

Mobile First

JotForms DeepUploader

Add media galleries, videos, audios, and images to your Jot forms

Form Builder
About Us
Meet Cincopa Image

Meet Cincopa

Power for developers, simplicity for content teams

Learn More

Integration

Cincopa & the tools you love, together

Demos

Know more about Cincopa platform via live demo

Professional Service

Services that boost your business

Help & Support Centre

Get access to help articles, FAQs, and all things Cincopa

Product Updates

Stay up-to-date with our latest greatest features

Customer Stories

Hear how we've helped businesses succeed
Pricing Get a demo Get Started
  1. Help
  2. Account
  3. GDPR & Data Privacy
Searching...

GDPR & Data Privacy

Contents

This page explains how Cincopa addresses data privacy and consent requirements across different regions worldwide. It complements our existing GDPR-focused documentation and clarifies how privacy, consent, and user rights are handled globally.

1. Global Privacy Commitment

Cincopa is committed to protecting personal data and respecting privacy rights worldwide. We apply privacy and consent mechanisms based on the user’s geographic location and applicable laws, including but not limited to:

  • EU / UK: General Data Protection Regulation (GDPR)
  • United States: State privacy laws such as CCPA / CPRA
  • Canada: PIPEDA
  • Israel: Protection of Privacy Law and Data Security Regulations

Our practices are designed to ensure transparency, security, and user control regardless of location.

2. GDPR (EU / UK)

Cincopa fully supports GDPR requirements for users located in the European Union and the United Kingdom.

This includes:

  • Lawful data processing and purpose limitation
  • Data minimization and retention controls
  • Support for data subject rights: access, rectification, deletion, portability, and restriction
  • Technical and organizational security measures
  • Use of approved sub-processors under appropriate safeguards

Product-Specific Personal Data Collection (Summary)

The table below provides a high-level summary of how personal data may be captured in specific Cincopa products. This summary is provided for transparency and does not change the customer’s role as data controller.

Personal Data Product Area How data is captured Consent Responsibility
Email address Lead generation (MAP integrations) Collected via integration with third-party marketing automation platforms (e.g. MAP / CRM) Consent obtained by the originating platform; customers are responsible for lawful collection
Email address Video email embeds (merge tags) Passed into Cincopa via merge tags from external email platforms Consent obtained by the originating email / CRM platform
Email address and form data Cincopa native lead forms Collected via forms embedded in video players Customers must add appropriate consent language to forms

Cincopa provides configuration options and APIs that allow customers to disable tracking or limit data collection in accordance with their consent policies.

Cincopa uses different consent and notice mechanisms depending on the applicable regional requirements:

EU / UK

  • Cincopa uses a cookie consent mechanism on its website for users located in the EU and UK
  • The consent banner is displayed prior to setting non-essential cookies
  • Non-essential cookies and tracking technologies are blocked until valid consent is obtained
  • A full consent mechanism aligned with GDPR and ePrivacy requirements
  • Prior consent for non-essential cookies
  • Granular control over purposes and technologies

United States

  • Cincopa does not deploy a consent popup by default for users located in the United States
  • Cincopa provides notice of its data practices via its privacy documentation
  • Applicable opt-out rights are supported through documented request processes
  • Notice-and-choice model rather than prior opt-in
  • Users may opt out of the sale or sharing of personal information where applicable
  • Support for recognized opt-out signals, including Global Privacy Control (GPC)

Canada

  • Cincopa does not deploy a consent popup by default for users located in Canada
  • Informational notice regarding cookies and data usage is provided via privacy documentation
  • Consent may be implied where permitted by law
  • Informational cookie notice
  • Implied consent for analytics and functional cookies, where permitted
  • Clear explanation of data usage and withdrawal options

Israel

  • Cincopa does not deploy a consent popup by default for users located in Israel
  • Transparency regarding data collection purposes and user rights is provided via privacy documentation
  • Informational privacy notice
  • Disclosure of data collection purposes and data transfers
  • Clear contact method for correction or deletion requests

4. United States Privacy Rights

For users located in the United States, including California residents, Cincopa provides the following rights where applicable:

  • Right to know what personal data is collected and how it is used
  • Right to request deletion of personal data
  • Right to opt out of the sale or sharing of personal data for advertising or analytics purposes

Cincopa honors valid Global Privacy Control (GPC) signals as an opt-out request where required by law.

5. Canada Privacy Notice

For users in Canada, Cincopa processes personal data in accordance with PIPEDA.

  • Data is collected for identified and legitimate purposes
  • Consent may be implied for standard analytics and functional use
  • Users may contact Cincopa to inquire about, correct, or withdraw consent regarding their personal data

6. Israel Privacy Notice

For users located in Israel, Cincopa complies with the Protection of Privacy Law and related regulations.

This includes:

  • Transparency regarding the purposes of data collection
  • Disclosure of cross-border data transfers
  • Reasonable data security measures
  • Access, correction, and deletion rights in accordance with Israeli law

7. Data Breach Notification

In the event of a personal data breach involving personal data processed by Cincopa, Cincopa will notify affected customers without undue delay and via email, in accordance with applicable data protection laws.

8. Sub-Processors and Service Providers

Cincopa uses carefully selected third-party service providers (sub-processors) to support the delivery, security, and operation of its services. These sub-processors may process personal data on Cincopa’s behalf and only under documented instructions.

Sub-processors may include providers for:

  • Cloud infrastructure and hosting
  • Content delivery networks (CDNs)
  • Backup and disaster recovery
  • Email delivery and customer support systems
  • Analytics and monitoring

Cincopa maintains contractual agreements with its sub-processors that include data protection obligations consistent with applicable privacy laws, including confidentiality, security measures, and restrictions on further processing.

Primary Infrastructure Sub-Processors

The following table lists Cincopa’s primary infrastructure sub-processors used to deliver the Service. This list represents key providers and may be updated from time to time.

Name Type Location
Amazon Web Services, inc. Cloud Service Provider

Multiple regions, including USA
Fastly CDN Global
CacheFly CDN Global
IBM Cloud Cloud Service Provider Multiple regions, including USA

Where required, international data transfers involving sub-processors are protected using appropriate safeguards, such as standard contractual clauses or equivalent mechanisms.

A current list of sub-processors is available upon request.

9. Data Transfers and International Processing

Cincopa may transfer and process data internationally, including in the United States, Europe, and other jurisdictions where Cincopa or its sub-processors operate. Such transfers are conducted in accordance with applicable data protection laws and are subject to appropriate contractual and technical safeguards.

10. Privacy Governance

Cincopa has appointed appropriate privacy and security contacts to oversee data protection matters and handle privacy-related inquiries.

11. Contact and Requests

Users may contact Cincopa regarding privacy-related questions or to exercise their rights by contacting: privacy@cincopa.com

Requests are handled in accordance with applicable law and within required timeframes.

12. Updates

This page may be updated periodically to reflect changes in applicable laws or Cincopa’s practices. We encourage users to review it regularly.

Was this article helpful?

Yes No