This document outlines Basecamp's policy and process for addressing abusive usage of its products. It details how potential abuse is discovered, the principles guiding investigations (human oversight, balanced responsibilities, evidence focus), and the steps involved, including potential account termination and an appeals process for certain cases.

This document outlines the prohibited uses of 37signals' Services, detailing actions that are not allowed, such as collecting unauthorized data or interfering with security features. It clarifies that violations may lead to account cancellation. The policy also provides instructions on how to report abuse effectively.

This document outlines the cancellation policy for 37signals product accounts, detailing the process for account owners to cancel their subscriptions. It explains what happens to user data upon cancellation and the company's refund policy. The policy also covers scenarios where 37signals may initiate account cancellations.

This document outlines the process for managing a HEY email account when the owner is incapacitated or has died. It provides instructions for canceling billing, accessing the account with login credentials, or requesting assistance with legal authority if credentials are not available. The process involves submitting legal documents for verification and may lead to account cancellation or data export.

This document outlines the policy for Basecamp 4 account ownership, clarifying that accounts are owned by individuals, not organizations. It details the rights of account owners, including data access, subscription management, and the ability to designate other owners. The policy also explains procedures for managing accounts when owners are unavailable, emphasizing the need for permission or a court order for changes.

This document outlines the ownership and management structure for HEY for Domains accounts. It details who owns the account (either a legal entity or an individual) and defines the responsibilities and capabilities of Account Managers. The policy also explains the process for changing Account Managers, particularly for accounts owned by legal entities.

This document lists the third-party subprocessors utilized by Backpack, such as cloud computing and customer support providers. It assures users that GDPR-compliant data processing agreements are established with each subprocessor to safeguard personal data.

This document provides a comprehensive list of third-party subprocessors utilized by Basecamp, including cloud computing providers and customer support software. It outlines the specific services each subprocessor provides and their geographical locations. Basecamp confirms that all subprocessors operate under GDPR-compliant data processing agreements to ensure the protection of personal data.