Privacy Policy

Effective: May 25th 2018

This Privacy Policy sets out our commitment to protecting the privacy of personal information provided to us, or otherwise collected by us, offline or online, including through this website (Site). In this Privacy Policy we, us or our means Astonsoft Ltd., Laki 9a, Tallinn, Estonia. When we collect, store and use your personal information, we do so in accordance with European Union General Data Protection Regulation (EU) 2016/279 (to the extent applicable).

Personal information

Personal information: The types of personal information or personal data we may collect about you include:

  • your name;
  • your contact details, including email address, mailing address, street address and/or telephone number;
  • your age and/or date of birth;
  • your demographic information, such as postal code; and
  • any other personal information requested by us and/or provided by you or a third party.

We may collect these types of personal information directly from you or from third parties.

Collection and use of personal information

We may collect, hold, use and disclose personal information for the following purposes:

  • to enable you to access and use our services or the services of our customers, including storing that information;
  • to contact and communicate with you;
  • for internal record keeping and administrative purposes; and
  • to comply with our legal obligations and resolve any disputes that we may have.

Accessing Google data

EssentialPIM is an offline client for your Google data. It allows the synchronization and management of Google Calendar, Tasks, Notes, Contacts and Gmail. It also can synchronize EssentialPIM's Passwords and Notes with Google Drive.

EssentialPIM stores this data exclusively in its own database and does not share it with any third parties (unless user sets up synchronization with another service).

Allowed use: EssentialPIM may request access to following data in your Google account:

  • "Read, compose, send, and permanently delete all your email from Gmail" - in case you are creating a Gmail account in EssentialPIM. That's needed to provide email client capabilities within EssentialPIM;
  • "See, edit, create, and delete all of your Google Drive files" - in case you want to synchronize EssentialPIM Notes and Passwords through your Google account. This data is stored in Google Drive files;
  • "Create, edit, organize, and delete all your tasks"- in case you want to synchronize EssentialPIM Tasks with Google Tasks;
  • "See, edit, download, and permanently delete your contacts" - in case you want to synchronize EssentialPIM Contact entries and Google Contacts;
  • "See, edit, share, and permanently delete all the calendars you can access using Google Calendar" - in case you want to synchronize EssentialPIM appointments and Google Calendar;
  • "View your email address"- in case you set up your Gmail account in EssentialPIM to provide better experience during setup.

Allowed Transfer: EssentialPIM will transfer restricted scope data to others only in the following cases: (a) when it is necessary to provide or improve user-facing features that are prominent from the requesting app's user interface, (b) to comply with applicable laws, or (c) a part of a merger, acquisition or sale of assets of the developer.

Prohibited Advertising: EssentialPIM will not use restricted scope data to serve users any advertisements.

Prohibited Human Interaction: Developers will not allow humans to read restricted scope user data, without written consent of the user.

EssentialPIM’s use and transfer of information received from Google APIs to any other app will adhere to Google API Services User Data Policy, including the Limited Use requirements.

Disclosure of personal information to third parties

We may disclose personal information to:

  • courts, tribunals, regulatory authorities and law enforcement officers, as required by law, in connection with any actual or prospective legal proceedings, or in order to establish, exercise or defend our legal rights; and
  • third parties to collect and process data, such as Google Analytics or other relevant businesses. This may include parties that store data outside of Estonia including in the U.S.A.

Where we disclose your personal information to third parties, including data processors, we will request or ensure that the third party handle your personal information in accordance with this Privacy Policy. The third party will only process your personal information in accordance with written instructions from us, and we require that the third party comply either with the privacy shield principles set out in the GDPR or with some other mechanism set out by applicable EU and Swiss data protection laws for the transfer and processing of personal information. When we refer to ‘processing’ in this clause and this Privacy Policy in general, we mean any operation or set of operations which is performed on personal information, whether or not by automated means, such as collecting, recording, organising, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available personal information.

By providing us with personal information, you consent to the disclosure of your personal information to third parties who are outside the EU.

Your rights and controlling your personal information

Information from third parties: If we receive personal information about you from a third party, we will protect it as set out in this Privacy Policy. If you are a third party providing personal information about somebody else, you represent and warrant that you have such person’s consent to provide the personal information to us.

Complaints: If you believe that we have breached this Privacy Policy or an article of the GDPR and wish to make a complaint, please contact us using the details below and provide us with full details of the alleged breach. We will promptly investigate your complaint and respond to you, in writing, setting out the outcome of our investigation and the steps we will take to deal with your complaint.

Storage and security

We are committed to ensuring that the personal information we collect is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures such as the pseudonymization and encryption of personal information, to safeguard and secure personal information and protect it from misuse, interference, loss and unauthorised access, modification and disclosure.

We cannot guarantee the security of any information that is transmitted to or by us over the Internet. The transmission and exchange of information is carried out at your own risk. Although we take measures to safeguard against unauthorised disclosures of information, we cannot assure you that the personal information we collect will not be disclosed in a manner that is inconsistent with this Privacy Policy.

Cookies and web beacons

We may use cookies on our Site from time to time. Cookies are text files placed in your computer's browser to store your preferences. Cookies, by themselves, do not tell us your email address or other personally identifiable information. However, they do allow third parties, such as Google and Facebook, to cause our advertisements to appear on your social media and online media feeds as part of our retargeting campaigns. If and when you choose to provide our Site with personal information, this information may be linked to the data stored in the cookie.

We may use web beacons on our Site from time to time. Web beacons (also known as Clear GIFs) are small pieces of code placed on a web page to monitor the visitor’s behaviour and collect data about the visitor’s viewing of a web page. For example, web beacons can be used to count the users who visit a web page or to deliver a cookie to the browser of a visitor viewing that page.

We may use Google Analytics to collect and process data. To find out how Google uses data when you use third party websites or applications, please see or any other URL Google may use from time to time.

Links to other websites

Our Site may contain links to other websites. We do not have any control over those websites and we are not responsible for the protection and privacy of any personal information which you provide whilst visiting those websites. Those websites are not governed by this Privacy Policy.


We may, at any time and at our discretion, vary this Privacy Policy. We will notify you if we amend this Privacy Policy, by contacting you through the contact details you have provided to us. Any amended Privacy Policy is effective once we notify you of the change.