DataNovo, Inc. (“DataNovo”, “we”, “our” or “us”) has subscribed to the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework (collectively, “Privacy Shield”). DataNovo adheres to the Privacy Shield Principles including the Supplemental Principles, (collectively, the “Privacy Shield Principles”) for Personal Data received from entities in the European Economic Area (the “EEA”) and Switzerland.
If there is any conflict between the terms in this Privacy Shield Policy and the Privacy Shield Principles as concerns the Personal Data received under the Privacy Shield, the Privacy Shield Principles shall govern to the extent of the conflict. To learn more about the Privacy Shield program visit www.privacyshield.gov https:/www.privacyshield.gov , and to view our certification, please visit https://www.privacyshield.gov/list
Privacy Shield Principles
1. and 2. Notice and Choice
If you are a User, DataNovo may act as an agent for you in relation to the Personal Data that you provide or make available to DataNovo. DataNovo usually will not have a relationship with the User’s clients or customers. Here, the User is responsible for ensuring that its clients or customers are provided with appropriate notice and choice with respect to their Personal Data.
In its role as a controller and as required by applicable law, DataNovo generally offers individuals in the EU and Switzerland (hereinafter, “EEA/CH Consumers”) the opportunity to choose whether their Personal Data may be (i) disclosed to third-party controllers or (ii) used for a purpose that is materially different from the purposes for which the information was originally collected or subsequently authorized by the relevant EEA/CH Consumer. To the extent required by the Privacy Shield Principles, DataNovo obtains opt-in consent for certain uses and disclosures of sensitive data. EEA/CH Consumers may contact DataNovo as indicated below regarding the DataNovo’s use or disclosure of their Personal Data. Unless DataNovo offers EEA/CH Consumers an appropriate choice, DataNovo uses Personal Data only for purposes that are materially the same as those indicated in this Policy.
3. Data Integrity and Purpose Limitation
We only collect Personal Data that is relevant to providing our Services. We process Personal Data compatible with us providing the Services or as otherwise notified to you. We take reasonable steps to ensure that the Personal Data received under the Privacy Shield is needed for DataNovo’s Services, accurate, complete, and current.
4. Accountability for Onward Transfers
Except as permitted or required by applicable law and in accordance with DataNovo’s role as a controller or processor, DataNovo provides EEA/CH Consumers with an opportunity to opt out of sharing their Personal Data with third-party controllers. DataNovo requires third-party controllers to whom it discloses the Personal Data of EEA/CH Consumers to contractually agree to (a) only process the Personal Data for limited and specified purposes consistent with the consent provided by the relevant EEA/CH Consumer, (b) provide the same level of protection for Personal Data as is required by the Privacy Shield Principles, and (c) notify DataNovo and cease processing Personal Data (or take other reasonable and appropriate remedial steps) if the third-party controller determines that it cannot meet its obligation to provide the same level of protection for Personal Data as is required by the Privacy Shield Principles.
We may also need to disclose Personal Data in response to lawful requests by public authorities, for law enforcement or national security reasons, or when such action is necessary to comply with a judicial proceeding or court order, or when otherwise required by law. We will not offer an opportunity to opt out from this category of disclosure.
5. Data Security
We use reasonable and appropriate physical, electronic, and administrative safeguards to protect Personal Data from loss, misuse and unauthorized access, disclosure, alteration and destruction, taking into account the nature of the Personal Data and the risks involved in processing that information.
6. Access to Personal Data
When DataNovo acts on behalf of its Users, DataNovo will assist Users in responding to individuals exercising their rights under the Privacy Shield Principles.
If you are a client or customer of a User, please contact the User directly with your request to access or limit the use or disclosure of your Personal Data. If you contact us with the name of the User to which you provided your Personal Data, we will refer your request to that User and support them in responding to your access request.
7. Recourse, Enforcement and Dispute Resolution
If you have any questions or concerns, please write to us at the address listed below. We will investigate and attempt to resolve complaints and disputes regarding use and disclosure of Personal Data in accordance with the Privacy Shield Principles.
In the event we are unable to resolve your concern, you may contact JAMS , which provides an independent third-party dispute resolution body based in the United States, and they will investigate and assist you free of charge. A binding arbitration option may also be available to you in order to address residual complaints not resolved by any other means. DataNovo is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (“FTC”).
If you have any questions regarding this Privacy Shield Policy, please contact us by email at firstname.lastname@example.org, or please write to the following address: DataNovo, Inc. 3035 Lakehill Dr. Pearland, TX 77584 Attention: DataNovo Legal
Changes to this Privacy Shield Policy