EXACTBLUE – MOBILE AND WEB APPS
Effective Date: October 8, 2018
2. What information we collect
We may collect several types of information from and about users of our App, including the following:
a. Personal Information: First Name, Last Name, Email, Payment Details.
b. Analytics: We use Google Analytics, Intercom or other tracking software to measure usage, error rates and other information that is useful to provide a better customer experience. We will store device information, IP addresses, time and location of test, GPS information etc in a non-identifiable fashion. We may run reports against this data to aggregate to output aggregate reports, patterns and insights.
c. Voluntary Data: Information you voluntarily provide when you contact us for any reason.
We collect this information:
d. Directly from you when you provide it to us.
e. Automatically as you navigate through the App.
3. How we use your information
We use information that we collect about you or that you provide to us, including any personal information:
a. To provide the services you requested.
b. To notify you about changes to our App or any services we offer or provide though it.
c. To carry out our obligations and enforce our rights.
d. In any other way we may describe when you provide the information.
Data is stored with user and organization info when identifiable. We will retain water testing information in the App for logging and analytics purposes.
4. Disclosure of your information
We do not sell any of your personal information to 3rd parties. We may disclose personal information that we collect or you provide as described in this Policy:
a. To fulfill the purpose for which you provide it.
b. To contractors, service providers and other third parties we use to support our business.
c. To a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution or other sale or transfer of some or all of the App’s assets, whether as a going concern or as part of bankruptcy, liquidation or similar proceeding, in which personal information about our App users is among the assets transferred.
d. We may, without restriction, disclose aggregated information about our users and information that does not identify any individual.
e. For any other purpose disclosed by us when you provide the information.
We may also disclose your personal information:
f. To comply with any court order, law or legal process, including to respond to any government or regulatory request.
g. If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of the App, our customers or others.
a. To provide the service you have asked for. Some cookies are essential so you can navigate through the App and use its features. Without these cookies, we would not be able to provide the services you’ve requested. For example, some cookies allow us to identify subscribers and ensure they can access the subscription only pages. Essential cookies keep you logged in during your visit.
b. To improve your browsing experience. These cookies allow the App to remember choices you make, such as your language or region and they provide improved features. These cookies will help remembering your preferences and settings, including marketing preferences, remembering if you’ve filled in certain forms, so you’re not asked to do it again, remembering if you’ve been to the App before and restricting the number of times you’re shown a particular advertisement. We might also use these cookies to highlight App services that we think will be of interest to you based on your usage of the website.
c. Analytics. To improve your experience on our App, we like to keep track of what pages and links are popular and which ones don’t get used so much to help us keep our App relevant and up to date. It’s also very useful to be able to identify trends of how people navigate (find their way through) our App and if they get error messages from web pages. This group of cookies, often called “analytics cookies” are used to gather this information. These cookies don’t collect information that identifies you. The information collected is anonymous and is grouped with the information from everyone else’s cookies. We can then see the overall patterns of usage rather than any one person’s activity.
d. To show advertising that is relevant to your interests. We may sell space on our App to advertisers. The resulting ads often contain cookies. These cookies are used to deliver adverts more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as help measure the effectiveness of the advertising campaign. They are usually placed by advertising networks with our permission. They remember that you have visited a website and this information is shared with other organizations such as advertisers.
Most browsers allow you to turn off cookies. To do this, look at the “help” menu on your browser. Switching off cookies may restrict your use of the App and/or delay or affect the way in which it operates.
6. Data security
Personal information you provide to us is stored on a password protected server accessible only by administrator. We use SSL. User data is secured and protected by cloud provider (Microsoft, AWS etc). We use Microsoft Azure B2C active directory services to store information which is built to be GDPR compliant and data is stored using highest security standards. Some more information on how Azure is GDPR compliant: https://azure.microsoft.com/en-ca/blog/new-capabilities-to-enable-robust-gdpr-compliance/
App users can only access their own information, or, if user is an admin, information about all the devices and users in their organization. Any information stored about water test results on local device will be saved to our cloud in non-personally identifiable structure when user is not signed in.
However, we cannot guarantee the security of your personal information because any transmission of information over the Internet has its inherent risks. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the App. You are responsible for keeping your login credentials, if any, confidential.
7. Children’s privacy
Our App is not directed to children under the age of 18. We do not knowingly collect any personal information about children under the age of 18. If we obtain actual knowledge that we have collected personal information about a child under the age of 18, that information will be immediately deleted from our database.
If a parent believes that his or her child has submitted personal information to us, he or she can contact us via e-mail. We will promptly delete the information upon learning that it relates to a child under the age of 18. Please note that it is possible some of this information may remain archived in web logs and back-up archives after we delete the information from our active database.
8. International transfer
Your information, including Personal Information, may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.
9. EU users’ rights.
a. Your GDPR rights to be informed, to access, rectify, erase or restrict the processing of your personal information. You have the right to obtain free information about what personal data we have obtained about you, where it is stored, for how long, for what purposes it is used, to whom it was disclosed. You have the right to have us, without undue delay, rectify of inaccurate personal data concerning you. That means you can request we change your personal data in our records, or have you incomplete personal data completed. You have the “right to be forgotten,” i.e. to have us delete your personal information, without undue delay, if the data is no longer necessary in relation to the purposes for which it was collected. However, GDPR gives us the right to refuse erasure if we can demonstrate compelling legitimate grounds for keeping your information.
b. GDPR gives you the right to restrict processing if any of the following applies:
i. If you contest the accuracy of your personal data, we will restrict processing it for a period enabling us to verify its accuracy.
ii. The processing is unlawful and you oppose its erasure and request instead the restriction of its use.
iii. We no longer need your personal data for the purposes of the processing, but you require us to restrict processing for the establishment, exercise or defence of legal claims.
iv. You have objected to processing pursuant to Article 21(1) of the GDPR pending the verification whether our legitimate grounds override yours.
c. Right to data portability. Upon request, we will provide you your personal data in our possession, in a structured, commonly used and machine-readable format. You have the right to transmit that data to another controller if doing so does not adversely affect the rights and freedoms of others.
d. Right to object. You can object, on grounds relating your particular situation, at any time, to processing of your personal information, if based on point (e) or (f) of Article 6(1) of the GDPR. We will then have to stop processing, unless we can demonstrate compelling legitimate grounds for the processing. If you object to the processing for direct marketing purposes, we will have to stop processing for these purposes.
e. Right to withdraw consent. GDPR grants you the right to withdraw your erlier given consent, if any, to processing of your personal data at any time.
f. Rights related to automated decision making. As a responsible business, we do not rely on any automated decision making, such as profiling.
10. Accessing and correcting your personal information