Who we are and what this is
“Esther.ai” and “Esther the Tester” are trading names of Esther.ai Corporation, Delaware.
Registered company address: 12137 NW 9th Drive, Coral Springs, 33071, USA.
Registered in Delaware, USA 7312711.
When the terms refer to “Esther.ai” or “Esther”, the legal entity is Esther.ai Corporation, Delaware.
Esther.ai is a web-based application that helps teams and individuals to analyze, design, create, execute, and report test cases in the Software Delivery Life Cycle (SDLC). When we refer to “our services” or “our platform” we are referring to the Esthr.ai platform/application.
We take the private nature of your personal information very seriously, and are committed to protecting it. To do that, we’ve set up procedures to ensure that your information is handled responsibly and in accordance with applicable data protection and privacy laws. We are grateful for your trust, and will always act responsibly in respect to that.
Esther.ai (“We”) are committed to protecting and respecting your privacy.
When we collect personal information from you, we comply with the Data Protection Act 1998 and all other associated privacy legislation. For the purpose of the Data Protection Act 1998 (the Act), the data controller is: Esther.ai.
This policy and any other documents referred to within sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
Our site may, from time to time, contain links to and from the websites of our partners and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
Information we may collect from you
We may collect and process the following data about you when you visit our website (www.esther.ai):
Information that you provide on sign up. This includes your contact information that you have provided: your name, organisation, telephone, email address and (where applicable when you subscribe for a trial or live account) payment card details.
Details of your visits to our site including, but not limited to, traffic data, location data, IP addresses, weblogs and other communication data and the resources that you access.
We will not store any of your payment information.
If you contact us, we will keep a record of that correspondence which may be used, amongst other things, for future training, to ensure we always provide the best possible service to you.
We may also ask you to complete surveys that we use for research purposes, although you do not have to respond to them.
Details of your visits to our site and the resources that you access.
We may collect information about your computer, including where available your IP address, operating system and browser type, for system administration.
When trialling or subscribing to our product offering we will create an account domain for you using the personal information you provide to us in our web forms. A username and password will be created for you to access your domain and trial account.
Once you have subscribed to our products and have created an account domain, you understand that you or the registered company you are representing is the Data Controller for any personal information processed in your workspace, as set out in the Subscriber Agreement.
If you are inputting information about individuals, in the form of ‘human actors’ or in any other form into our platform, you must ensure these individuals are aware of the processing of their personal information.
Personal Profile, Passwords and Login Details
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Security of your personal information
We seek always to operate within the (seven) principles of the International Safe Harbour Privacy Principles.
All information you provide to us is stored on secure servers operated by us or our trusted data processors acting on our behalf.
Areas of our site that collect your information use industry standard secure socket layer encryption (SSL/TLS); however, to take advantage of this your browser must support encryption protection.
The connection to our site is encrypted and authenticated using a strong protocol (TLS 1.2), a strong key exchange (ECDHE_RSA with P-256), and a strong cipher (AES_128_GCM).
Any backups we take are also encrypted using GPG.
All your files and documents are kept in a non-publicly accessible directory and can only be accessed by the registered users in your organisation.
Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. We will take all reasonable technical and organisational precautions (as outlined above) to prevent loss or misuse of your personal information. You acknowledge that the transmission of information over the internet is inherently insecure and we cannot guarantee the security of data that is sent by this means.
Where we store your personal data
Uses made of the information
We use information held about you in the following ways:
To provide our services and features to you, to measure and improve those services and features and to provide you with customer and technical support through Customer Relationship Management (CRM) systems.
To contact you with any service-related announcements from time to time. If you contact us for customer or technical support, we may keep a record of that correspondence or conversation.
To carry out our obligations arising from any contracts entered into between you and us.
To provide you with information, products or services from us which we feel may interest you. We will do this by email unless you have opted-out of receiving this information (see Marketing Communications and Opting out below).
To provide you with advertisements concerning our products and services through our Third Party Partners Programme (see Third Party Partners programme and the Cookies Policy for more details).
To ensure that content from our site is presented in the most effective manner for you and for your computer.
To allow you to participate in interactive features of our service, when you choose to do so.
To notify you about changes to our site and service.
How you can change or remove your information
You may change your profile information displayed through our site at any time by going to “Edit profile” and editing your information.
You have several rights under privacy and data protection laws: including the right to opt out of marketing and to request copies of the personal information we hold about you.
If you wish to request copies of the Personal Information we hold about you, please contact us here or write to us at our registered office address. We will need proof of your identity in order to process your request.
Marketing communications and opting-out
We will provide you with information concerning our products or services that you request from us or which we feel may interest you by email and telephone unless you have opted-out of receiving this information.
You may at any time opt-out of receiving this information by clicking on the opt-out link in the footer of a marketing email you have received or by contact us here.
Opt out requests will not apply where we send you a notice regarding the status of service, security alerts or any notice pertinent to your service and account.
Trusted Data Processors
We may use trusted companies (“Data Processors”) to assist in the delivery, provision, analysis and improvement of the Services including but not limited to data storage, maintenance services, database management, analytics, payment processing, Customer Relationship Management services/systems and improvement to the Services features (“tasks”).
Disclosure of your information
We may disclose your personal information to any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006.
We may disclose your personal information to third parties:
In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
If we or substantially all of our assets are acquired by a third party, in which case personal data held by us will be one of the transferred assets.
In connection with any on-going or prospective legal proceedings.
In order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk).
The Act gives you the right to access any information we hold about you. All you need to do is contact us here.
We may change this Policy from time to time. If we make any changes to this Policy, we will change the “Last updated” date above. We encourage You to check this Policy whenever You use our site and services to understand how your personal information is used. Where changes are particularly significant we will notify you and where applicable seek your permission to carry out the processing.