We keep certain basic information when you visit our website and recognize the importance of keeping that information secure and letting you know what we will do with it. For the purpose of the Data Protection Act 1998 (Data Protection Act), the we are the Data Processor. This policy only applies to the Asset General System for which this Policy is attached. If you leave our site via a link or otherwise, you will be subject to the policy of that website provider. We have no control over that policy or the terms of the website and you should check their policy before continuing to access the site.
As defined by the EU General Data Protection Regulation 2016/679 ("GDPR"), we are the Data Processor whereas our Client on behalf of whom we operate this System is considered the Data Controller. The link to contact us regarding GDPR is below under Contact Us.
We do not, as a matter of practice, collect any personal information. However, you or our Client may enter certain information into our system for the purpose of providing you a service, as a condition of, or giving you access to this System.
This information may consist of:
Your Name (Contact Name)
Your Email (Business Email)
Your Office Phone Number (Contact Phone)
Your Employer (End User Company Name)
Your Address of Employment (Company Location Address)
We do not, as a matter of practice, facilitate the entry of any other personally identifiable information on this System.
No GDPR Sensitive Data
Under normal operation, you do not provide us and we do not collect any information that is considered by GDPR to be sensitive data.
Cookies and IP Addresses
For security and audit purposes, we keep a record of your login sessions to the System. This information may contain your IP address and browser type. We make this information available to our Client the Data Controller of the System.
Storing of collected data
The above mentioned limited amount of data that we collect from your activities may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”). It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers. Such staff maybe engaged in the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing.
We do not accept or collect any payments. Where we have given you (or where you have chosen) a password, which enables you to access certain parts of our system, you are responsible for keeping this password confidential. We ask you not to share a password with anyone. Note that the transmission of information via the internet is not completely secure.
Security of your information
Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we use all reasonable measures, procedures and security features to try to prevent unauthorized access. Unfortunately, no measures can be guaranteed to provide 100% security. Accordingly, we cannot guarantee the security of your information.
Use of your information
We use information held about you in the following ways:
To ensure that content from our system that should be presented to you is presented only to you when logged in.
To carry out our obligations arising from any contracts entered into between you and our Client and our Client and us.
To allow you to participate in interactive features of our service, when you choose to do so.
To notify you of activities that have taken place in our system such as batch jobs or reminders generated by certain system functionality.
To help you reset your password or to notify you of the creation of, or changes to, an account that has been setup by our Client on your behalf.
Disclosure of information collected
We may disclose your personal information to third parties if we are under a duty to disclose or share your personal data in order to comply with any legal obligation or our Client.
You have the right to ask us to remove any data we have on our site from you at any time. We will do our best to verify that your request is legitimate and we will inform our Client prior to removing your account.
Access to Information
The Data Protection Act gives you the right to access information held about you. Your right of access can be exercised in accordance with the Data Protection Act.
As it relates to GDPR, we do not process large amounts of personal data. However as a matter of good policy we have designated a DPO (Data Protection Officer). You may contact our DPO via this link. Please use “Attention DPO” in the subject line so your message is routed correctly.
Our Service does not address anyone under the age of 18 ("Children").
We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Children has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.
Questions, comments and requests regarding this Privacy and GDPR Policy are welcomed and should be addressed to email@example.com.
Last Update: May, 30 2018