We started Coil because we wanted a way for content creators to get paid without needing to rely on intrusive advertising that fails to respect users' privacy. Therefore, we take our own users' privacy very seriously. In order to run the service and respond to your requests, we need to collect some information from you, or about you. The information we collect and store about you depends on which aspect of our services you use.
If you visit our site and do not have a Coil subscription or account, we only collect basic usage data like IP address, user-agent, and pages you access on our server (for more details see "Information Collected Automatically" below) as part of the normal business of running a web service.
If you create an account on Coil, we store the information you and your browser give us. We generally avoid storing and using your personal information as much as possible unless there is a legitimate, important purpose, examples of which include:
Manage the services provided by Coil's web and mobile applications (the “Coil Service”), including your registration and account. Perform services requested by you, such as to respond to your comments, questions, and requests, and provide customer service.
Send you technical notices, updates, security alerts, information regarding changes to our policies, and support and administrative messages.
Monitor and analyse trends, usage, and activities.
Conduct research, including focus groups and surveys.
Improve the Coil Service or other Coil websites, apps, marketing efforts, products and services.
Aggregate, anonymize, and analyze the anonymized information and use the anonymized aggregated information for Coil’s business purposes.
Send you communications regarding our and third party products, offers, promotions, rewards, events, and services that may be of interest to you.
We will not divulge information to third parties unless it is first anonymized, except if we are required to share personal details by regulation, law, court order or to protect the safety of Coil staff or partners, or as otherwise requested by you.
Coil is a site for users to share their own content. So if you publish information on Coil that violates your own privacy, we accept no liability or responsibility. For example: If you post a photo of both sides of your credit card and someone blows all your money in Vegas, it's on you. (Protip: Don't.)
If you posted something by accident and are unable to remove it yourself, please contact us and we will make a reasonable effort to remove it from public view if we can.
If you purchase a subscription on Coil.com, a PCI compliant, regulated financial services provider (Stripe) handles and stores your credit card details. Those details are never sent to or stored by Coil’s own servers.
Coil may decide to work with a different PCI compliant, regulated provider in the future in which case your data may be migrated to the new provider.
We may share information such as your IP address and proof of your use of the Coil Service with our payment processors, the credit card network, and your credit card issuing bank to respond to credit card chargebacks, resolve payment network disputes, and detect and prevent payment fraud.
Until Web Monetization is built into browsers, Coil uses a browser extension to stream money to web-monetized sites and creators.
The owner of the website and/or the content creator knows only that they are being paid by Coil (so they can switch off ads, or provide bonus content). Micropayments sent from Coil to the site do not include any personally identifiable information like your name, email, or username. Micropayments sent from Coil to the site do include an ephemeral identifier which the site can use to verify that your browsing session is monetized. The ephemeral identifier is random on every page load and cannot be used to track you across different sites.
At a high level, Coil can see:
The ILP ("Interledger Protocol") addresses of web-monetized sites you visit, which enables us to pay them. The ILP address cannot be linked back to the web-monetized site unless the site configures itself to be identifiable by ILP address.
When you're on a web-monetized site, but not which site.
We also support creators on YouTube.com and Twitch.com even though neither platform currently uses Web Monetization. Coil can see (but does not record):
YouTube videos you view with the Coil extension installed.
Twitch channels you view with the Coil extension installed.
Coil does not see:
Which web-monetized sites you visit outside of coil.com (aside from YouTube.com and Twitch.com as mentioned above) unless the web-monetized site configures itself to make itself identifiable by ILP address.
Which non-web-monetized sites you visit.
We provide "Sign in with Coil" so that a third party site can allow you to sign into the third party site using your Coil account. This way you can use your Coil account to sign into and use many different services. With your approval, this may allow the third party to monetize sites without requiring you to have the Coil browser extension installed. It also provides the sites information about your Coil account. Any information that will be shared with the third party site will be shown to you before it is shared with the third party site. You’ll be asked for approval before any of this information is shared. If you wish to revoke access at any time you can do so using the "Apps" tab under your Coil account settings.
Coil doesn’t share any data with third party wallet providers unless you use “Sign in with Coil” to sign into your wallet. If you use “Sign in with Coil” we will tell you what information we will share with the wallet provider and let you approve it before we share anything. See section "If you use 'Sign in with Coil' on a third party site" above for more information.
We store and use the content of messages you send to us, such as feedback or questions and information you provide to customer support. We also store and use the content of your communications with Coil support as necessary to provide you support for the Coil Services you use. For example, if you start a chat with us on Intercom or email firstname.lastname@example.org.
We automatically collect information about your device and how your device interacts with the Coil Service. We may use Service Providers to collect this information. Some examples of information we collect include the following:
Coil Service Use Data. We collect data about your use of the Coil Service such as:
Features you use on the Coil Service.
Pages you visit on the Coil Service.
Whether you follow links in emails from Coil.
Advertisements for the Coil Service you view.
Characteristics of any subscription you purchase from Coil.
The time of day you use the Coil Service.
Your referring and exiting pages on the Coil Service.
Device Connectivity and Configuration Data. We collect data about the type of device or browser you use, your device’s operating software, your internet service provider, your device’s regional and language settings, and other similar information. This data also includes IP address, MAC address, device advertising Id (e.g., IDFA or AAID), and other device identifiers.
Location Data. We collect data that may imply imprecise location data (e.g., location derived from an IP address or data that indicates a country, city or postal code).
We use various technologies to collect this information (“Tracking Technologies,”), including the following:
Log Files. A log file is a file that records events that occur in connection with your use of the Coil Service, such as your service use data.
Cookies. A cookie is an industry-standard small data file stored on your device that acts as a unique tag to identify your browser. We use two types of cookies: session cookies and persistent cookies. Session cookies make it easier for you to navigate the Coil Service and expire when you close your browser. Persistent cookies help with personalizing your experience, remembering your preferences, and supporting security features. Persistent cookies may remain on your device for extended periods of time, and generally may be controlled through your browser settings.
Third Party. We may embed third party scripts or put embeds in the page that send requests to external sites which may allow third parties to drop and read cookies on your browser. We cannot read or alter the cookies dropped on your browser by external sites. Your browser may allow you to disable cookies from third party sites.
For further information on Tracking Technologies and your rights and choices regarding them, see the sections entitled “Third Parties” and “Your Rights and Choices” below.
Publicly available information on social networks.
Social networks when you reference the Coil Service or grant permission to Coil to access your data on one or more of these services. (For example, if you add your YouTube channel to coil.com, YouTube will ask you to grant us limited access to your YouTube account so we can pull the channel information to our service.)
Partners with which we offer co-branded services, sell or distribute our products, or engage in joint marketing activities.
Certain areas of the Coil Service, such as user profiles and blogs, are designed to help you share information with the world. If you make information public through the Coil Service, other people will have access to it. Please think carefully before making information public as you are solely responsible for any information you make public. Once you have posted information, you may not always be able to edit or delete such information; however, California residents and European data subjects have specific rights as set forth in “Your rights and choices” below.
The Coil Service contains content from and hyperlinks to websites, locations, platforms, and services operated and owned by third parties (“Third Party Services”). These Third Party Services may use Tracking Technologies to independently collect information about you and may solicit information from you. The information collected and stored by third parties, whether through the Coil Service, a Third Party Service, a Third Party Feature (defined below), or a third party device, remains subject to their own policies and practices, including what information they share with us, your rights and choices on their services and devices, and whether they store information in the U.S. or elsewhere. We encourage you to familiarize yourself with and consult their privacy policies and terms of service.
Platform Linking. We may offer you the ability to link your Coil account to a Third Party Service in order to retrieve certain data about your account on that Service. For example, if you link your Coil account to a gaming platform such as Steam or Twitch, the linking may allow us to obtain information such as your gaming username, email address, photo, game performance, and high scores. For more information about how these platforms handle your information, please refer to their respective privacy policies and terms of service.
You may access, update, or remove certain account information that you have voluntarily submitted to us through the Coil Service by sending an email to the email address set forth in the section entitled “Contact Us” below. We may require additional information from you to allow us to confirm your identity. Please note that we will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. California residents and European data subjects have additional rights as set forth in the sections entitled “Your California Privacy Rights” and “Your European Privacy Rights” below.
Cookies. Most browsers accept cookies by default. You can instruct your browser, by changing its settings, to decline or delete cookies. If you use multiple browsers on your device, you will need to instruct each browser separately. Your ability to limit cookies is subject to your browser settings and limitations.
Do Not Track. Your browser settings may allow you to automatically transmit a “Do Not Track” signal to online services you visit. Note, however, there is no industry consensus as to what site and app operators should do with regard to these signals. Accordingly, we do not monitor or take action with respect to “Do Not Track” signals or other mechanisms. For more information on “Do Not Track,” visit https://www.allaboutdnt.com.
Please be aware that if you disable or remove Tracking Technologies some parts of the Coil Service may not function correctly.
Emails. You can opt-out of receiving promotional emails from us at any time by following the instructions as provided in emails to click on the unsubscribe link, or emailing us at the email address set forth in the section entitled “Contact Us” below with the word UNSUBSCRIBE in the subject field of the email. Please note that you cannot opt-out of non-promotional emails, such as those about your account, transactions, servicing, or Coil’s ongoing business relations.
Push Notifications. If you have opted-in to receive push notifications on your device, you can opt-out at any time by adjusting the permissions in your device or uninstalling our app.
Please note that your opt-out is limited to the email address or device used and will not affect subsequent subscriptions.
California’s “Shine the Light” law permits customers in California to request certain details about how certain types of their information are shared with third parties and, in some cases, affiliates, for those third parties’ and affiliates’ own direct marketing purposes. Under the law, a business should either provide California customers certain information upon request or permit California customers to opt in to, or opt out of, this type of sharing.
Coil may share personal information as defined by California’s “Shine the Light” law with third parties and/or affiliates for such third parties’ and affiliates’ own direct marketing purposes. If you are a California resident and wish to obtain information about our compliance with this law, please contact us as set forth in the section entitled “Contact Us” below. Requests must include “California Privacy Rights Request” in the first line of the description and include your name, street address, city, state, and ZIP code. Please note that Coil is not required to respond to requests made by means other than through the provided email address or mail address.
Any California residents under the age of eighteen (18) who have registered to use the Coil Service and posted content or information on the Coil Service, can request that such information be removed from the Coil Service by sending an email to the email address set forth in the section entitled “Contact Us” below. Requests must state that the user personally posted such content or information and detail where the content or information is posted. We will make reasonable good faith efforts to remove the post from prospective public view.
If you are a data subject in the European Economic Area (“EEA”), you have the right to access, rectify, or erase any personal data we have collected about you through the Coil Service. You also have the right to data portability and the right to restrict or object to our processing of personal data we have collected about you through the Coil Service. In addition, you have the right to ask us not to process your personal data (or provide it to third parties to process) for marketing purposes or purposes materially different than for which it was originally collected or subsequently authorized by you. You may withdraw your consent at any time for any data processing we do based on consent you have provided to us.
To exercise any of these rights, contact us as set forth in the section entitled “Contact Us” below and specify which right you intend to exercise. We will respond to your request within 30 days. We may require additional information from you to allow us to confirm your identity. Please note that we store information as necessary to fullfil the purposes for which it was collected, and may continue to retain and use the information even after a data subject request for purposes of our legitimate interests, including as necessary to comply with our legal obligations, resolve disputes, prevent fraud, and enforce our agreements.
If you have any issues with our compliance, you have the right to lodge a complaint with an EEA supervisory authority.
The Coil Service is intended for a general audience and not directed to children under thirteen (13) years of age. Coil does not knowingly collect personal information as defined by the U.S. Children’s Privacy Protection Act (“COPPA”) in a manner that is not permitted by COPPA. If you are a parent or guardian and believe Coil has collected such information in a manner not permitted by COPPA, please contact us as set forth in the section entitled “Contact Us” below, and we will remove such data to the extent required by COPPA.
We protect your information and maintain reasonable administrative, physical, and technical security safeguards loss, theft, misuse and unauthorized access, disclosure, alteration and destruction. Nevertheless, transmission via the internet is not completely secure and we cannot guarantee the security of your information.
By email: email@example.com
By mail: Compliance Officer Coil Technologies, Inc. 268 Bush St #3632 San Francisco, CA 94104