DataNovo Inc.’s Privacy Policy

Effective Date: January 1, 2020

This Privacy Policy (“Policy”) applies to www.datanovo.com (the “Site”) and the DataNovo platforms (collectively the “Platforms”) owned and operated by DataNovo Inc. (“DataNovo” or “we” or “us”). DataNovo has created this Policy in order to demonstrate our commitment to data privacy. Since we gather information from our visitors and customers, we have established this Policy to communicate our information gathering and management practices as well the choices we have made regarding how we use the information we collect. It also describes the choices available to you regarding the use of, your access to, and how to update and correct your personal data.

Collected Information

The collection and use of personal data collected by DataNovo is limited to the purpose of providing the service for which the customer has engaged DataNovo and for communication with visitors and potential customers who have provided their information.

In order to access certain portions of the Site, you will be required to register by providing certain limited information regarding you and the company you represent such as name, email address, address and/or phone number. DataNovo collects this information and engages third parties to collect personal data to assist us for a variety of reasons, including personalizing your experience, contacting visitors to further discuss their interest in our company, when you register for a webinar or other informational offering, and sending information regarding DataNovo, such as newsletters and events. DataNovo and the third parties we engage may combine the information we collect with information obtained from other sources to help us improve its overall accuracy and completeness, and to help us better tailor our interactions with you. Any visitor and personal data collected by DataNovo will not be distributed or shared with any third parties under any circumstance other than as outlined in this Policy. Customers can opt out of being contacted by us, or receiving such information from us, at any time by following the unsubscribe instructions contained in the email communications you receive or by emailing us at support@datanovo.com to unsubscribe (please make sure to include your name, username, and email).

When you access the Site and use our services via mobile application, we automatically collect information on the type of device and operating system version you use.

Cookies and other Web Technologies

DataNovo and our partners, marketing partners, affiliates, or analytics or service providers, such as our online customer support technology provider, use cookies or similar technologies, to administer the website, track users’ movements around the website, and gather demographic information about our user base as a whole. We may record and monitor calls and keep a record of your correspondence with us, to deal with your inquiry and for quality and training purposes. We may receive individual or aggregated reports based on the use of these technologies from these companies.

When you interact with the Site and Platforms, we strive to make that experience easy and meaningful. When you come to our Site and Platforms, our web server may send a cookie to your computer. Cookies are files that web browsers place on a computer’s hard drive and are used to tell us whether customers and visitors have visited the Site previously. Standing alone, cookies do not identify you personally. They merely recognize your browser. Unless you choose to identify yourself to DataNovo by either requesting a download or registering for a demo or webinar, you remain anonymous to DataNovo. If you do not accept cookies from the Site, you cannot access certain portions of the Site or Platforms without registering again each time you would like to access restricted information.

The use of cookies by our partners, affiliates, tracking utility company, or service providers on the Site is not covered by this Policy. We do not have access or control over these cookies.

As is true of most websites, we gather certain information automatically and store it in log files. This information may include internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data. We use IP addresses to analyze trends, administer the Site, track user’s movement, and gather broad demographic information for aggregate use. IP addresses and other data that we automatically collect are not linked to personally identifiable information. We may work with partners or sponsors to provide access to content. When you access such content, we may share your personal data with the associated partners or sponsors.

We use mobile analytics software to allow us to better understand the functionality of our mobile software application on your phone. This mobile analytics software may record information such as how often you use the application, the events that occur within the application, aggregated usage, performance data, and where the application was downloaded from.

Advertising

We partner with one or more third party ad networks to either display advertising on our Site or to manage our advertising on other sites. Our ad network partners use cookies and web beacons to collect personal data about your activities on the Site and other web sites to provide you targeted advertising based upon your interests. If you wish to not have this information used for the purpose of serving you targeted ads, you may opt-out by clicking here (or if located in the European Union (“EU”), please click here). Please note this does not opt you out of being served advertising. You will continue to receive generic ads.

Social Media Feature

Our Site includes social media features, such as the Facebook Like button (“Features”). These Features may collect your IP address, which page you are visiting on our Site, and may set a cookie to enable the Features to function properly. The Features on the Site are either hosted by a third party or hosted directly on our Site. Your interactions with these Features are governed by the privacy policy of the company providing the Feature.

Users Outside the United States

DataNovo strives to comply with all applicable laws worldwide that are designed to protect your privacy. Although legal requirements may vary by jurisdictions, DataNovo intends to adhere to the principles set forth in this Policy. Our goal is to provide protection for your personal data no matter where that personal data is collected, transferred, or retained.

Users from EU member countries and Switzerland are provided with further information under the Privacy Shield section of this Policy.

Personal Data Transfer from EU to the United States

Regardless of the country of origin or residence, DataNovo may process your personal data in the U.S. DataNovo collects and transfer to the U.S. personal data only:

       with your consent;

       to perform a contract with you or to provide a service to you;

       for purposes of communicating with you

       or to fulfill a compelling legitimate interest of DataNovo in a manner that does not outweigh your rights and freedoms.

DataNovo takes care to apply suitable safeguards to protect the privacy and security of your personal data and to use it only consistent with your relationship with DataNovo and the practices described in this Policy. DataNovo also minimizes the risk to your rights and freedoms by not collecting or storing sensitive information about you.

Data Subject’s Rights

The European Union’s General Data Protection Regulation and other countries’ privacy laws provide certain rights for data subjects.

This Policy is intended to provide you with information about what personal data DataNovo collects about you and how it is used. If you have any questions, please contact us at support@datanovo.com.

If you wish to confirm that DataNovo is processing your personal data, or to have access to the personal data DataNovo may have about you, please contact us at support@datanovo.com.

You may also request information regarding:

       the purpose of the processing;

       the categories of personal data concerned;

       who else outside DataNovo might have received the data from DataNovo;

       what the source of the information was (if you didn’t provide it directly to DataNovo);

       how long it will be stored.

You have a right to correct (rectify) the record of your personal data maintained by DataNovo if it is inaccurate. You may request that DataNovo erase that data or cease processing it, subject to certain exceptions. You may also request that DataNovo cease using your data for direct marketing purposes. In many countries, you have a right to lodge a complaint with the appropriate data protection authority if you have concerns about how DataNovo processes your personal data. When technically feasible, DataNovo will—at your request—provide your personal data to you or transmit it directly to another controller.

Reasonable access to your personal data will be provided at no cost upon request made to DataNovo at support@datanovo.com. If access cannot be provided within a reasonable time frame, DataNovo will provide you with a date when the information will be provided. If for some reason access is denied, DataNovo will provide an explanation as to why access has been denied.

Security

DataNovo takes substantial precautions to protect data and information under its control from misuse, loss or alteration. We utilize some of the most advanced technology available today for internet security and are constantly taking measures to adjust to the changing security landscape. As such, DataNovo maintains layered, defense in-depth security measures, including hosting our solution in a Tier IV (the highest recognized level) datacenter, to allow only authorized personnel access to your information. When you provide us with sensitive information (such as your login credentials) we transmit your personal data in an encrypted state. Unfortunately, no system can ensure complete security, and DataNovo disclaims any liability resulting from use of the Site. If you have any questions regarding security on our Site, you can contact us at support@datanovo.com.

Links to Third-Party Sites

The Site contains links to other web sites. DataNovo is not responsible for the privacy practices or the content of these other web sites. Visitors are advised to check the privacy policies of other web sites to understand their policies. Accessing a linked web site may expose your private information.

Notice

Through this Policy, DataNovo hereby informs you of the purpose for which it collects and uses personal data. DataNovo will notify you in the event of any unintentional disclosure of your personal data to a third party. You have the option to limit the use of any personal data through the means described herein.

Choice

DataNovo provides you with a choice to opt out of disclosure of your personal data to a third party or the use of personal data for something other than it was originally collected. If you would like to opt out, please contact support@datanovo.com or write to us at the address below.

DataNovo collects information under the direction of its customers, and has no direct relationship with the individuals whose personal data it processes. If you are an individual whose personal data was provided to DataNovo by an DataNovo customer (such customer the “data controller”) and would no longer like to be contacted by the data controller that uses our service, please contact the data controller that you interact with directly.

Onward Transfer

DataNovo may transfer personal data to companies that help us provide our services to our customers and users such as an email service provider to send emails on our behalf and a career management partner to collect potential employee information. Transfers to these third parties are covered by the provisions in this Policy regarding notice and choice and the service agreements with our customers.

We reserve the right to disclose personal data as required by law, such as to comply with a subpoena, bankruptcy proceedings, or similar legal process when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.

In the event DataNovo goes through a business transition, such as a merger, acquisition by another company, or sale of all or a portion of its assets, your personal data will likely be among the assets transferred. You will be notified via either email or prominent notice on our Site for 30 days of any such change in ownership or control of your personal data.

Data Integrity

DataNovo shall use information collected for its relevant and intended purpose only. If there is any change of use of the personal data collected, DataNovo shall inform you and gain your approval before making such changes of the use of the personal data collected. Further, DataNovo shall take reasonable steps to ensure that the personal data collected is accurate and reliable for its intended use.

Assess to Personal Data Received

Upon request DataNovo shall provide you with information about whether we hold any of your personal data and reasonable access, as required by law, to your personal data in order to confirm that it is correct or to amend or delete inaccurate information. If you need to correct, update, or remove personal data provided to DataNovo, please contact DataNovo at support@datanovo.com or by our postal mail at the contact information listed below.

DataNovo acknowledges that you have the right to access your personal data. DataNovo has no direct relationship with the individuals whose personal data it processes. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data should direct the query to the DataNovo customer who provided the personal data to DataNovo(such customer, the “data controller”). If the data controller needs to contact DataNovo to request DataNovo remove the data, such data controller can contact us at: support@datanovo.com. We will endeavor to respond to all requests for within 30 days.

DataNovo will retain your personal data and the personal data we process on behalf of our customers for as long as needed to provide services to our customers. DataNovo will retain and use this personal data as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

Privacy Shield

DataNovo Inc. (“DataNovo”) participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce. We are committed to subjecting all personal data received from European Union (EU) member countries, the United Kingdom, and Switzerland, respectively, to the United States in reliance on each Privacy Shield Framework and their applicable principles, respectively. To learn more about the Privacy Shield Frameworks, and to view our certification, visit the U.S. Department of Commerce’s Privacy Shield List. https://www.privacyshield.gov/list.

DataNovo is responsible for the processing of personal data it receives under each Privacy Shield Framework and subsequent transfers to a third party acting as an agent on its behalf. DataNovo complies with the Privacy Shield Principles for all onward transfers of personal data from the EU, the United Kingdom, and Switzerland, including the onward transfer liability provisions.

With respect to personal data received or transferred pursuant to the Privacy Shield Frameworks, DataNovo is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

Under certain conditions, more fully described on the Privacy Shield website https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.

Enforcement

DataNovo has established internal mechanisms to verify its ongoing adherence to this Policy. DataNovo encourages individuals covered by this Policy to raise any concerns about our processing of personal data by contacting us at: support@datanovo.com.

After a complaint or concern is received, DataNovo will work internally to resolve the issue. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.

Data Protection Officer

DataNovo is headquartered in San Francisco, California, in the United States. DataNovo has appointed an internal data protection officer for you to contact if you have any questions or concerns about DataNovo’s personal data policies or practices. DataNovo’s data protection officer’s name and contact information are as follows:

Michael Lee
DataNovo, Inc.
Local Phone: +1.415.300.0437

Email: michael@datanovo.com

Amendment

This Policy may be amended from time to time. We will notify you by email sent to the e-mail address specified in your account or by means of a prominent notice on this Site prior to any material amendments becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices.

GDPR

The General Data Protection Regulation (GDPR) is a European privacy law that took effect on May 25, 2018. This law is an important step forward in streamlining data protection requirements across the European Union.

DataNovo is compliant with the requirements of GDPR and able to demonstrate compliance.

Sub-Processors

Last Modified: January 1, 2020

DataNovo uses sub-processors to assist in providing DataNovo’s service offerings (“Services”), as more fully described in the applicable subscription and services agreement (“Agreement”) entered into by and between the Customer named in such Agreement and DataNovo. For purposes of this document, “DataNovo” means the DataNovo entity which is a party to the Agreement, as specified in the Agreement being DataNovo Inc., a company incorporated in Delaware.

Sub-processor
A sub-processor is any entity engaged by DataNovo to process Personal Data on behalf of DataNovo as a Processor and you as the Data Controller. A sub-processor has or will potentially have access to or process Personal Data. DataNovo requires sub-processors to satisfy equivalent obligations as those required by DataNovo as a Data Processor.

The following is a list of DataNovo sub-processors:

Sub-Processors
DataNovo works with certain sub-processors to provide specific functionality within the Services. In order to provide the relevant functionality these sub-processors process Personal Data.

Entity Name

Primary Purpose

Applicable Services

Amazon Web Services, Inc.

Cloud Service Provider and Content Delivery Network

All

Google LLC

Customer Communication

All

Zoho Corporation

Customer Communication

All

Mixpanel, Inc.

Analytics Management Platform

All

Mailchimp, Inc.

Customer Communication

All

Zendesk, Inc.

Customer Support and Document Management

All

 

DataNovo Affiliate Sub-Processors
DataNovo may also engage one or more of the following affiliates as sub-processors to deliver some or all of the Services and may access Personal Data.

Entity Name

Entity Country

AC Holding, Inc.

United States

DataNovo, Inc.

Canada

DataNovo, Inc.

European Union

DataNovo, Inc.

Australia

DataNovo, Inc.

United Kingdom

DataNovo, Inc.

Japan

DataNovo, Inc.

Taiwan

DataNovo, Inc.

South Korea

DataNovo, Inc.

Taiwan

DataNovo, Inc.

China

 

Updates
As our business grows and evolves, the sub-processors we engage may also change. We will endeavor to provide the owner of customer’s account with notice of any new sub-processors to the extent required under the Agreement.

California Consumer Privacy Act (CCPA)

Privacy Notice for California Residents

Effective Date: January 1, 2020

Your privacy is very important to us. This Privacy Notice for California Residents supplements the information contained in DataNovo Inc’s Privacy Policy (“Policy”) above, and under the California Consumer Privacy Act of 2018 (“CCPA“), California residents (“consumers” or “you”) have certain rights around DataNovo’s collection, use, and sharing of their personal information.

DataNovo does not sell your personal information and will not do so in the future without providing you with notice and an opportunity to opt-out of such sale as required by law. Similarly, we do not offer financial incentives associated with our collection, use, or disclosure of your personal information.

Information We Collect

Our Site collects information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device (“personal information”). In particular, the Site has collected the following categories of personal information from its consumers within the last twelve (12) months:

A screenshot of a cell phone

Description automatically generated
A screenshot of a cell phone

Description automatically generated
A screenshot of a cell phone

Description automatically generated

Personal information does not include:

DataNovo Corporation obtains the categories of personal information listed above from the following categories of sources:

Use of Personal Information

We may use, or disclose the personal information we collect for one or more of the following business purposes:

DataNovo Corporation will not collect additional categories of personal information or use the personal information we collected for materially different, unrelated, or incompatible purposes without providing you notice.

Sharing Personal Information

DataNovo Corporation may disclose your personal information to a third party for a business purpose. When we disclose personal information for a business purpose, we enter a contract that describes the purpose and requires the recipient to both keep that personal information confidential and not use it for any purpose except performing the contract.

We share your personal information with the following categories of third parties:

Disclosures of Personal Information for a Business Purpose

In the preceding twelve (12) months, Company has disclosed the following categories of personal information for a business purpose:

We disclose your personal information for a business purpose to the following categories of third parties:

Sales of Personal Information

In the preceding twelve (12) months, Company has not sold personal information.

Your Rights and Choices

The CCPA provides consumers (California residents) with specific rights regarding their personal information. This section describes your CCPA rights and explains how to exercise those rights.

Access to Specific Information and Data Portability Rights

You have the right to request that DataNovo Corporation disclose certain information to you about our collection and use of your personal information over the past 12 months. Once we receive and confirm your verifiable consumer request (see Exercising Access, Data Portability, and Deletion Rights), we will disclose to you:

Deletion Request Rights

You have the right to request that DataNovo Corporation delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request (see Exercising Access, Data Portability, and Deletion Rights), we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies.

We may deny your deletion request if retaining the information is necessary for us or our service provider(s) to:

1.     Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you.

2.     Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.

3.     Debug products to identify and repair errors that impair existing intended functionality.

4.     Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.

5.     Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et seq.).

6.     Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information's deletion may likely render impossible or seriously impair the research's achievement, if you previously provided informed consent.

7.     Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.

8.     Comply with a legal obligation.

9.     Make other internal and lawful uses of that information that are compatible with the context in which you provided it.

Exercising Access, Data Portability, and Deletion Rights

To exercise the access, data portability, and deletion rights described above, please submit a verifiable request to us by either:

Only you, or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child.

You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:

We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you.

Making a verifiable consumer request does not require you to create an account with us. However, we do consider requests made through your password protected account sufficiently verified when the request relates to personal information associated with that specific account.

We will only use personal information provided in a verifiable consumer request to verify the requestor's identity or authority to make the request.

Response Timing and Format

We endeavor to respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing.

If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option.

Any disclosures we provide will only cover the 12-month period preceding the verifiable consumer request's receipt. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily usable and should allow you to transmit the information from one entity to another entity without hindrance.

We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

Other California Privacy Rights

California’s “Shine the Light” law (Civil Code Section § 1798.83) permits users of our Website that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please send an email to support@datanovo.com.

Changes to Our Privacy Notice

DataNovo Inc. reserves the right to amend this privacy notice at our discretion and at any time. When we make changes to this privacy notice, we will post the updated notice on the Website and update the notice's effective date. Your continued use of our Website following the posting of changes constitutes your acceptance of such changes.

Contact Information

If you have any questions or comments about this notice, the ways in which DataNovo Corporation collects and uses your information described below and in the Privacy Policy above, your choices and rights regarding such use, or wish to exercise your rights under California law, please do not hesitate to contact us at:
Phone: 1-415-300-0437
Website: 
www.datanovo.com
Email: 
support@datanovo.com

 

Question or Comments Regarding this Policy

For additional questions, or to be taken off our marketing lists, please send an e-mail to support@datanovo.com or to the contact information above.