What Personal Data Does Nomic Labs Collect, and Why?
The information that Nomic Labs gathers from Clients allows us to deliver and improve our services. For example, it allows us to communicate with Clients, provide support, and (with Clients’ permission) monitor deployments of Hardhat for performance-improvement and error-correction purposes.
A. Information Our Clients Provide
We receive and store the information our Clients supply to us when they communicate with us by email, GitHub, and social media. This information may include the Client’s name, company, email address, username, postal address, and telephone number.
B. Information Automatically Collected from Clients
We also collect certain information automatically, including:
Hardhat collects automated error and performance monitoring data to help Nomic Labs fix bugs and improve the performance of our software. This data is only collected and processed if the Client opts in to this feature.
The information collected includes: 1) a unique cryptographic identifier to identify data from a single user; 2) the Hardhat version number; 3) whether Hardhat is running on a server or desktop; 4) the Client’s operating system (e.g. Windows, Mac, or Linux); 5) whether the Hardhat task running is a build-in or user-defined task; 6) the versions of Node.js and Sentry running on the Client’s computer; 7) error message text; 8) stack trace data; and 9) timestamps.
Nomic Labs uses a third-party service, Sentry, to collect and process this data. The data is anonymized before being sent to Sentry’s servers. Any piece of data resembling a path or a private key is removed on a best-effort basis. The data sent to Sentry is subject to a data processing agreement limiting Sentry’s use of the data and requiring Sentry to take appropriate security measures to protect the data.
Type of Cookie
How to Control These
Session cookies: these are used to anonymously track a user’s session on our website to deliver a better experience.
You can block or delete these by changing your browser settings.
Performance and Targeting cookies: These cookies collect information that is used either in aggregate form to help us understand how our website is being used or how effective our marketing campaigns are, or to help us customize our website for you. Such cookies may record site and display-related activity for a session so that a client does not see displays that are irrelevant or have already been dismissed.
Google offers a Google Analytics Opt-Out Browser Add-on for most browsers.
Other information we collect and analyze includes the Internet Protocol (IP) address used to connect your computer to the Internet, computer and connection information such as browser type, version, language, and time zone setting, browser plug-in type and version, screen resolution, and operating system and platform. This information is stored in log files and is collected automatically. We collect this technical information to better understand user needs and provide Clients with an optimal online experience.
We also collect aggregate usage data for our website, which may include browsing patterns and broad demographic information, to enable us to understand how our website is being used and to develop and refine it to better serve our Clients.
Our Legal Bases for Processing Personal Information
For personal data under Nomic Labs’s control, we rely on two bases to lawfully obtain and process personal information. First, where Clients have given us valid consent to use their data in certain ways, we rely on that consent. Second, as described in more detail below, in certain cases we may process information where this is necessary to meet legal obligations, such as compliance with law enforcement subpoenas or warrants, and/or to further our legitimate interests, so long as any such legitimate interests are not overridden by your rights or interests.
How and When Do We Share Information?
Nomic Labs does not sell your information. As set out below, we only share information on a limited basis in order to enable us to offer our services. We do not otherwise make Client data available to third parties.
We employ other organizations and service providers to perform certain functions on our behalf. These third parties have only limited access to your information, may use your information only to perform these tasks on our behalf, and are obligated to Nomic Labs not to disclose or use your information for other purposes.
Our use of third party service providers includes:
Legal Compliance / Protection of the Public and Our Business / Legitimate Interests
We will release personal and account information: to comply with a subpoena, court order, legal process, or other legal requirement when we believe in good faith that such disclosure is necessary to comply with the law; to protect, establish, or exercise our legal rights or defend against legal claims; when we believe doing so is reasonably necessary to prevent harm to an individual; or take action regarding illegal activities, suspected fraud, threats to our property, or violations of our legal terms.
We may also share your information during an organizational transaction like a merger or distribution of our assets to a successor organization. If such a transaction occurs, we will provide notification of any changes to control of your information, as well as choices you may have.
The services are not intended for children under the age of 13. We do not knowingly collect personal information from anyone under the age of sixteen. If you are under the age of sixteen, your parent or guardian must provide their consent for you to use the services.
Nomic Labs is based in the United States, processes and stores data in the United States, and makes its services available around the world. The United States, Member States of the European Economic Area (“EEA”), and other countries are governed by different laws. When your data is moved from its home country to another country, the laws and rules that protect your personal information in the country to which your information is transferred may be different from those in the country where you reside. For example, the legal requirements for law enforcement to gain access to personal information may vary between countries. If your personal data is in the United States, it may be accessed by government authorities in accordance with United States law.
Nomic Labs provides a voluntary service and Clients can choose whether or not they wish to use it. Because we offer our services to people in different countries and use technical infrastructure based in the United States, we may need to transfer your personal information across borders in order to deliver our services.
How Secure Is Your Information?
We maintain administrative, technical, and physical safeguards designed to protect the privacy and security of the information we maintain about you. The connection between your computer and our website server is encrypted using Secure Sockets Layer (SSL) software that encrypts that information. We use a Digital Certificate and secure pages will be identified by a padlock sign and “https://” in the address bar. Likewise, all Hardhat error and performance monitoring data is transmitted over HTTPS transport layer security (TLS)-secured connections.
However, no method of transmission or storage is 100% secure. As a result, while we strive to protect your personal information, you acknowledge that: (a) there are security and privacy limitations inherent to the Internet which are beyond our control; and (b) security, integrity, and privacy of any and all information and data exchanged between you and us through this Site cannot be guaranteed.
What Are Your Rights?
You can also withdraw your consent to our processing of your information and the use of our services, and/or delete your Client account at any time, by using the contact information below to request that your personal information be deleted. If you are an EU resident and believe that our processing of your personal data is contrary to the EU General Data Protection Regulation, you have the right to lodge a complaint with the appropriate supervisory authority.
If you withdraw your consent to the use or sharing of your personal information for the purposes set out in this policy, we may not be able to provide you with our services. Please note that in certain cases we may continue to process your information after you have withdrawn consent and requested that we delete your information if we have a legal basis/need to do so.
For personal data under its control, Nomic Labs will retain such data only for as long as is necessary for the purposes set out in this policy, or as needed to provide Clients with our services.
If a Client no longer wishes to use our services then it may request deletion of its data at any time.
Notwithstanding the above, Nomic Labs will retain and use Client information to the extent necessary to comply with our legal obligations (for example, if we are required to retain your information to comply with applicable tax/revenue laws), resolve disputes, and enforce our agreements. We may also retain log files for the purpose of internal analysis, for site safety, security and fraud prevention, to improve site functionality, or where we are legally required to retain them for longer time periods.
If you have any questions, comments or suggestions about how we handle personal information you can contact Nomic Labs at firstname.lastname@example.org.