Secure your workforce identity with Acceptto’s end-to-end risk-based Cognitive Continuous AuthenticationTM eGuardian® platform. All without passwords.
Effective date: February 14, 2019
About Acceptto and this Policy
Our Data Protection Officer can be reached at firstname.lastname@example.org.
Information you provide to us
We collect information you provide directly to us. For example, we collect information when you create an account, use the Services, fill out a form, request customer support or otherwise communicate with us. The types of information we may collect include your email address, phone number and other contact or identifying information you choose to provide.
Information we collect automatically when you use the Services
When you access or use our Services, we automatically collect information about you, including:
- Log information: We log information about your use of the Services, including the type of browser you use, internet service provider, clickstream data, date/time stamp, pages and files viewed on our site (e.g., HTML pages, graphics, etc.), your IP address and the page you visited before navigating to our Services.
- Device information: We collect information about the computer or mobile device you use to access our Services, including the hardware model, operating system and version, unique device identifiers and mobile network information.
Use of Information
We use information about you for various purposes, including to:
- Provide, maintain and improve our Services and products;
- Provide and deliver the products and services you request, process transactions, and to send you related information, including confirmations and invoices;
- Send you technical notices, updates, security alerts and support and administrative messages;
- Respond to your comments, questions and requests and provide customer service;
- Monitor and analyze trends, usage and activities in connection with our Services;
Generally, Acceptto processes data we control in order to respond to your requests and manage our Services. You have the right to withdraw any consent you have given, and object to any processing done under legitimate interest. Contact us for more information about your rights.
Sharing of Information
We may share personal data about you as follows:
- With third party vendors, consultants and other service providers who need access to your information to carry out work on our behalf such as providing product and service functionality, customer service, and conducting research and analysis; these companies are authorized to use your personal data only as necessary to provide these services to us. Our current list of subprocessors include Google Analytics and Twilio.
We may also share aggregated or de-identified information, which cannot reasonably be used to identify you.
Third-party analytics and advertisements
Acceptto performs analytics on the functioning of our Web sites. Specifically, Acceptto uses an integrated version of Google Analytics. You may opt out from Google Analytics by use the Google’s Ads Preferences Manager. We also encourage you to use the Google Analytics opt-out browser add-on.
Your Rights and Information Choices
Account or Profile Information
Upon request Acceptto will provide you with information about whether we hold any of your personal data. You may ask us to update, correct or delete information about you at any time. If you wish to delete or suspend your account, please contact us, but note that we may retain certain information as required by law or for legitimate business purposes. Also, if you have become aware that a profile has been created about you without your consent or knowledge, you may contact us to request deletion of that said account. We may also retain cached or archived copies of your information for a certain period of time. We will respond to your request without undue delay within 30 days.
You can also ask about:
- whether and why we have your personal data;
- how we got your personal data;
- what we have done with your personal data;
- to whom we have communicated your personal data;
- where your personal data has been stored, processed or transferred;
- how long we will retain your personal data, or how that retention period will be determined; and
- the safeguards in place to protect your information when it is transferred to third parties or third countries.
Finally, you can ask us not to collect or use your personal data for certain purposes (including for purposes that are materially different from the purposes for which it was originally collected), you can ask us to delete your personal data, or you can ask us to either refrain from sharing your information with or specifically ask that we do provide your personal data to a third party.
Depending on which laws apply to your personal data, we may only be able to do some of these things for you. If you request one of these things and we refuse to do it, we will explain the reason for our refusal and any recourse you may have.
We will respond to your request without undue delay within 30 days. We reserve the right to take reasonable steps to verify your identity prior to granting access or processing changes or corrections.
To address any privacy or security questions or concerns, or to make any of these requests, contact us with details about your request.
How can I lodge a complaint?
We commit to investigating and resolving complaints about our collection or use of your personal data. To make a complaint, contact us at email@example.com.
Clearly state the following to help us address the issue effectively:
- The specific data privacy complaint (please provide as much detail as possible including country, your understanding of the data privacy infringement and issues, redress requested);
- Your full name and how we can contact you;
- Any previous correspondence on this specific data privacy issue.
For European Union residents
If you are in the EU, and if you are not satisfied with our resolution of your complaint, you may complain to the Information Commissioner’s Office (ICO). We commit to cooperating with the panel established by the EU data protection authorities (DPAs) and comply with the advice given by the panel or the FDPIC with regard to personal data transferred from the EU. For the purposes of the Privacy Shield, we are subject to the investigatory and enforcement powers of the Federal Trade Commission. In some conditions, you may be able to invoke binding arbitration to resolve your complaint where your personal data has been transferred to and processed in the United States.
For United States residents
If you are not satisfied with our resolution of your complaint, you can make a privacy complaint to the Federal Trade Commission or you can make a consumer reporting complaint to the Consumer Financial Protection Bureau.
For Canadian residents
If you are not satisfied with our resolution of your complaint, you may be able to make a complaint to one of the following regulatory agencies. Upon resolution of your complaint, we will let you know which of these, if any, may apply to your situation.
- Office of the Privacy Commissioner of Canada
- Office of the Information and Privacy Commissioner of Alberta
- Office of the Information and Privacy Commissioner for British Columbia
- Commission d’accès à l’information du Québec
We aim to resolve all issues in a timely manner, or as mandated by local law, but if this is not possible because a more detailed investigation is required, we will keep in regular contact with you to ensure that you are kept informed of the resolution of your matter.
Use of this Website by Children
This website is not intended for anyone under the age of 18 years. If you are younger than 18, you may not register with or use this website.