Privacy Policy

Privacy Policy of Softura
Softura operates the https://softura.com/ website, which provides the SERVICE.

This page is used to inform website visitors regarding our policies with the collection, use, and disclosure of Personal Information if anyone decided to use our Service, the Softura.com website.

If you choose to use our Service, then you agree to the collection and use of information in relation with this policy. The Personal Information that we collect are used for providing and improving the Service. We will not use or share your information with anyone except as described in this Privacy Policy.

The terms used in this Privacy Policy have the same meanings as in our Terms and Conditions, which is accessible at https://www.softura.com/, unless otherwise defined in this Privacy Policy.

Information Collection and Use
For a better experience while using our Service, we may require you to provide us with certain personally identifiable information, including but not limited to your name, phone number, and postal address. The information that we collect will be used to contact or identify you.

Log Data
We want to inform you that whenever you visit our Service, we collect information that your browser sends to us that is called Log Data. This Log Data may include information such as your computer’s Internet Protocol (“IP”) address, browser version, pages of our Service that you visit, the time and date of your visit, the time spent on those pages, and other statistics.

Cookies
Cookies are files with small amount of data that is commonly used an anonymous unique identifier. These are sent to your browser from the website that you visit and are stored on your computer’s hard drive.

Our website uses these “cookies” to collection information and to improve our Service. You have the option to either accept or refuse these cookies, and know when a cookie is being sent to your computer. If you choose to refuse our cookies, you may not be able to use some portions of our Service.

Service Providers
We may employ third-party companies and individuals due to the following reasons:

• To facilitate our Service;
• To provide the Service on our behalf;
• To perform Service-related services; or
• To assist us in analyzing how our Service is used.

We want to inform our Service users that these third parties have access to your Personal Information. The reason is to perform the tasks assigned to them on our behalf. However, they are obligated not to disclose or use the information for any other purpose.

Security
We value your trust in providing us your Personal Information, thus we are striving to use commercially acceptable means of protecting it. But remember that no method of transmission over the internet, or method of electronic storage is 100% secure and reliable, and we cannot guarantee its absolute security.

Links to Other Sites
Our Service may contain links to other sites. If you click on a third-party link, you will be directed to that site. Note that these external sites are not operated by us. Therefore, we strongly advise you to review the Privacy Policy of these websites. We have no control over, and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

Children’s Privacy
Our Services do not address anyone under the age of 13. We do not knowingly collect personal identifiable information from children under 13. In the case we discover that a child under 13 has provided us with personal information, we immediately delete this from our servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we will be able to do necessary actions.

Changes to This Privacy Policy
We may update our Privacy Policy from time to time. Thus, we advise you to review this page periodically for any changes. We will notify you of any changes by posting the new Privacy Policy on this page. These changes are effective immediately after they are posted on this page.

Contact Us
If you have any questions or suggestions about our Privacy Policy, do not hesitate to contact us.

Purpose
Our company data protection policy refers to our commitment to ensuring Confidentiality, Integrity, and availability of the information of employees, clients, stakeholders, and related interested parties.

Protecting personal, private data involved in the business is important to us and stringent controls/ measures are deployed at the Organizational level to protect data privacy. Data in electronic or manual format protection is our top priority and employees are trained on the Data protection policy.

Scope
The scope involves all the internal and external related interested parties’ information dealt with as per business purpose and applicable Globally.

PII List
The policy ensures that we gather, store and handle data fairly, and transparently with respect to individuals’ rights and as per legal, statutory, and contractual requirements.

For a better experience while using our Service, we may require you to provide us with certain personally identifiable information, including but not limited to your name, phone number, and postal address. The information that we collect will be used to contact or identify.

What information do we collect about you?

We collect information of those who access our Softura website.

Log Data
We want to inform you that whenever you visit our Service, we collect information that your browser sends to us that is called Log Data. This Log Data may include information such as your computer’s Internet Protocol (“IP”) address, browser version, pages of our Service that you visit, the time and date of your visit, the time spent on those pages, and other statistics.

Cookies

Cookies are files with small amount of data that is commonly used as an anonymous unique identifier. These are sent to your browser from the website that you visit and are stored on your computer’s hard drive.

Our website uses these “cookies” to collection information and to improve our Service. You have the option to either accept or refuse these cookies and know when a cookie is being sent to your computer. If you choose to refuse our cookies, you may not be able to use some portions of our Service.

Service Providers
We may employ third-party companies and individuals due to the following reasons:

• To facilitate our Service;
• To provide the Service on our behalf;
• To perform Service-related services; or
• To assist us in analyzing how our Service is used.

We want to inform our Service users that these third parties have access to your Personal Information. The reason is to perform the tasks assigned to them on our behalf. However, they are obligated not to disclose or use the information for any other purpose.

Security
We value your trust in providing us your Personal Information, thus we are striving to use commercially acceptable means of protecting it. But remember that no method of transmission over the internet, or method of electronic storage is 100% secure and reliable, and we cannot guarantee its absolute security.

Links to Other Sites

Our Service may contain links to other sites. If you click on a third-party link, you will be directed to that site. Note that these external sites are not operated by us. Therefore, we strongly advise you to review the Privacy Policy of these websites. We have no control over, and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

Children’s Privacy

Our Services do not address anyone under the age of 13. We do not knowingly collect personal identifiable information from children under 13. In the case we discover that a child under 13 has provided us with personal information, we immediately delete this from our servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we will be able to take necessary actions.

On some pages, you may opt to provide us information about yourself, for example, if you are interested in (a) an employment opportunity at Softura.

Softura may request that you voluntarily participate in a survey or poll such as feedback on website content or services. Your responses will be anonymous, unless you opt in to being contacted by email to provide further information regarding the survey.

Softura will collect your information for registering in the webinars hosted by us. When you register for our webinars, you may be asked to provide certain personal data, including, but not limited to, your name, email address, and job title. This information is required to facilitate your participation in the webinar and to provide you with limited and relevant information and materials related to the event.

Softura Webinar Privacy Policy.

Personal Data

• Types of Data Collected
  
  
• Contact information (E.g.: Name, Email Address, Company, Phone, Etc.,)
• Website visit data through cookies (with an option to accept/reject cookies)
• Log Data – such as IP, webpages visited, date/time of visit, and other statistics.
• Social media statistics when you visit our social media page or engage with our social media posts.
• Forms – Data entered by the website visitors through form fill-ups on any of our web/landing pages.
  
  
• Use of Personal Data

The Company may use personal data for the following purposes:

• To manage your account
• To contact You
• To manage your Request
• With your consent: We may disclose your personal information for any other purpose with Your consent.
  
  
• Retention of Your Personal Data
  
  
  • We will retain the personal data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your personal data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.
    
    
• Transfer of Your Personal Data
  
  
  • Your information, including personal data, is processed at the Company's operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.
    
    
  • Your consent to this privacy policy followed by your submission of such information represents your agreement to that transfer.
    
    
  • The Company will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy and no transfer of your personal data will take place to an organization or a country.
    
    
  • In accordance with and as permitted by applicable law and regulations, we reserve the right to transfer your data, process and store it outside of your county of residence to wherever we or our third-party service providers operate.
    
    
• Disclosure of your personal Data
  
  
  • Business Transactions

If the Company is involved in a merger, acquisition or asset sale, your Personal Data may be transferred. We will provide notice if your personal data is transferred and becomes subject to a different Privacy Policy.

• Law Enforcement

Under certain circumstances, the Company may be required to disclose your personal data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency)

• Other legal requirements
• Comply with a legal obligation.
• Protect and defend the rights or property of the Company.
• Prevent or investigate possible wrongdoing in connection with the Sites.
• Protect the personal safety of users of the Sites or the public.
• Protect against legal liability.

Security of your Personal Data @ Softura

• Confidentiality will be maintained on personal data handled.
  
  
• Applications developed using secured design and coding frameworks implemented using the latest edge technology.
  
  
• Adequate, relevant, and limited Data management will be taken care of in data processing/ data management aligning to statutory, legal, and contractual requirements.
  
  
• Access controls and review mechanisms will be mandated and stringent based on the business roles.
  
  
• Accurate, fair, lawful, and relevant information processing will be maintained ensuring data integrity.
  
  
• Personal data will not be retained for longer than necessary to comply with the relevant purpose or with any applicable legislation and contractual requirements.
  
  
• All employees are aware of the Data protection policy and updated with related training.
  
  
• Any breach in the information will be reported and investigated by the Incident Response Team (IRT) as per the incident management process, and data privacy breach process.
  
  
• Incident reporting to the relevant stakeholders and investigation will be ensured as per the incident management, data privacy breach process, and legal and contractual requirements.
  
  
• Availability of data for business processes will be maintained.
  
  
• Transferring data to cross borders will be prohibited and DLP methods implemented will prevent the transfer of critical data.
  
  
• Acceptable usage of assets policy deployed to ensure the fair and lawful usage of data.
  
  
• Any employee breaching the data protection policy will be subject to disciplinary process.

GDPR privacy

• Legal Basis for Processing Personal Data under GDPR
  

We may process Personal Data under the following conditions:

• Consent: You have given Your consent for processing personal data for one or more specific purposes.
  
  
• Performance of a contract: Provision of personal data is necessary for the performance of an agreement with you and/ or for any pre-contractual obligations thereof.
  
  
• Legal obligations: Processing personal data is necessary for compliance with a legal obligation to which the Company is subject.
  
  
• Vital interests: Processing personal data is necessary to protect your vital interests or those of another natural person.
  
  
• Public interests: Processing personal data is related to a task that is carried out in the public interest or in the exercise of official authority vested in the Company.
  
  
• Legitimate interests: Processing personal data is necessary for the purposes of the legitimate interests pursued by the Company.

In any case, the Company will gladly help to clarify the specific legal basis that applies to the processing, and whether the provision of personal data is a statutory or contractual requirement, or a requirement necessary to enter into a contract.

• Your Rights under the GDPR

The Company undertakes to respect the confidentiality of your personal data and to guarantee you can exercise your rights.

You have the right under this privacy policy, and by law if You are within the EU, to:

• Request access to your personal data. The right to access, update or delete the information we have on you. Whenever made possible, you can access, update or request deletion of your Personal Data directly within Your account settings section. If you are unable to perform these actions yourself, please contact us to assist you. This also enables You to receive a copy of the personal data we hold about you.
  
  
• Request correction of the personal data that we hold about you. You have the right to have any incomplete or inaccurate information we hold about you corrected.
  
  
• Object to processing of Your personal data. This right exists where we are relying on a legitimate interest as the legal basis for our processing and there is something about your situation, which makes You want to object to our processing of your personal data on this ground. You also have the right to object where we are processing Your personal data for direct marketing purposes.
  
  
• Request erasure of your personal data. You have the right to ask us to delete or remove personal data when there is no good reason for us to continue processing it.
  
  
• Request the transfer of your personal data. We will provide to you, or to a third-party you have chosen, your personal data in a structured, commonly used, machine-readable format. Please note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.
  
  
• Withdraw your consent. You have the right to withdraw your consent on using your personal data.
  
  
• Exercising of your GDPR Data protection rights
  
  
• • You may exercise your rights of access, rectification, cancellation, and opposition by contacting us. Please note that we may ask you to verify your identity before responding to such requests. If you make a request, ye will try our best to respond to you as soon as possible.
    
    
  • We have Data Protection Office (DPO) to oversee compliance of Softura Globally for data privacy related queries and other applicable data protection laws, the privacy notice, and this addendum. If you want to exercise one of the above rights in connection to your personal information or if you have any queries or complaints about our privacy notice or how we handle your personal information, please contact usat dataprotectionoffice@softura.com.

CCPA Privacy

This privacy notice section for California residents supplements the information contained in our privacy policy and it applies solely to all visitors, users, and others who reside in the State of California.

Categories of personal Information Collected

We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device. The following is a list of categories of personal information which we may collect or may have been collected from California residents within the last twelve (12) months.

Please note that the categories and examples provided in the list below are those defined in the CCPA. This does not mean that all examples of that category of personal information were in fact collected by us but reflects our good faith belief to the best of our knowledge that some of that information from the applicable category may be and may have been collected. For example, certain categories of personal information would only be collected if you provided such personal information directly to us.

Category A: Identifiers.

Examples: A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address.

Collected: Yes.

Category B: Personal information categories listed in the California Customer Records statute.

Examples: A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver's license or state identification card number, insurance policy number, employee ID, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories.

Collected: Yes, for transaction processing of Softura employee details.

Category C: Protected classification characteristics under California or federal law.

Examples: Age (40 years or older), race, colour, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).

Collected: No.

Category D: Commercial information.

Examples: Records and history of products or services purchased or considered.

Collected: No.

Category E: Biometric information.

Examples: Genetic, physiological, behavioural, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.

Collected: No.

Category F: Internet or other similar network activity.

Examples: Interaction with our sites or advertisement.

Collected: Yes.

Category G: Geolocation data.

Examples: Approximate physical location.

Collected: No.

Category H: Sensory data.

Examples: Audio, electronic, visual, thermal, olfactory, or similar information.

Collected: No.

Category I: Professional or employment-related information.

Examples: Current or past job history or performance evaluations.

Collected: Only in connection with hiring matters and human resources functions.

Category J: Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)).

Examples: Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.

Collected: No.

Category K: Inferences drawn from other personal information.

Examples: Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behaviour, attitudes, intelligence, abilities, and aptitudes.

Collected: No.

Under CCPA, personal information does not include:

• Publicly available information from government records
  
  
• Deidentified or aggregated consumer information
  
  
• Information excluded from the CCPA's scope, such as:
  
  
• Health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA) or clinical trial data.
  
  
• Personal Information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FRCA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver's Privacy Protection Act of 1994
  
  
• Sources of Personal Information

We obtain the categories of personal information listed above from the following categories of sources:

• Directly from you. For example, from the forms you complete on our sites, preferences you express or provide through our Sites, or from your purchases on our sites.
  
  
• Indirectly from you. For example, from observing your activity on our sites.
  
  
• Automatically from you. For example, through cookies we or our service providers set on your Device as you navigate through our sites.
  
  
• From service providers. For example, third-party vendors to monitor and analyse the use of our sites, third-party vendors for payment processing, or other third-party vendors that we use to provide the sites to you.
  
  
• From clients subscribing to our products. For example, clients subscribing to our products will have access to personal information that you provide to our clients directly that we may host or maintain on their behalf in connection with our products.
  
  
• Use of Personal Information for Business Purposes or Commercial Purposes

We may use or disclose personal information we collect for “business purposes” or “commercial purposes” (as defined under the CCPA), which may include the following examples:

• To operate our sites and provide you with access to our sites.
  
  
• To provide our products to our clients.
  
  
• To provide you with support and to respond to your inquiries, including to investigate and address your concerns and monitor and improve our sites.
  
  
• To fulfil or meet the reason you provided the information. For example, if you share your contact information to ask a question about our sites or products, we will use that personal information to respond to your inquiry. If you provide your personal information to purchase a product or service, we will use that information to process your payment and facilitate delivery.
  
  
• To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
  
  
• As described to you when collecting your personal information or as otherwise set forth in the CCPA.
• For internal administrative and auditing purposes.
  
  
• To detect security incidents and protect against malicious, deceptive, fraudulent, or illegal activity, including, when necessary, to prosecute those responsible for such activities.

Please note that the examples provided above are illustrative and not intended to be exhaustive. For more details on how we use this information, please refer to the “Use of your Personal Data” section.

• Disclosure of Personal Information for Business Purposes or Commercial Purposes

We may use or disclose and may have used or disclosed in the last twelve (12) months the following categories of personal information for business or commercial purposes:

Category A: Identifiers

Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))

Category D: Commercial information

Category F: Internet or other similar network activity

Please note that the categories listed above are those defined in the CCPA. This does not mean that all examples of that category of personal information were in fact disclosed but reflects our good faith belief to the best of our knowledge that some of that information from the applicable category may be and may have been disclosed.

When we disclose personal information for a business purpose or a commercial purpose, we enter a contract that describes the purpose and requires the recipient to both keep that personal information confidential and not use it for any purpose except performing the contract.

• Sale of Personal Information

As defined in the CCPA, "sell" and "sale" mean selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating orally, in writing, or by electronic or other means, a consumer's personal information by the business to a third party for valuable consideration. This means that we may have received some kind of benefit in return for sharing personal information, but not necessarily a monetary benefit. We do not sell your personal information.

• Share of Personal Information

We may share your personal information identified in the above categories with the following categories of third parties:

• Service Providers
• Payment processors
• Our business partners and Clients using our Products.
• Third party vendors to whom you or your agents authorize us to disclose your personal information in connection with products or services we provide to You.
  
  
• Sale of Personal Information of Minors Under 16 Years of Age

We do not sell the personal information of Consumers we know are less than 16 years of age. If You have reason to believe that a child under the age of 13 (or 16) has provided us with personal information, please contact us with sufficient detail to enable us to delete that information.

• Your Rights under the CCPA

The CCPA provides California residents with specific rights regarding their personal information. If You are a resident of California, you have the following rights:

• The right to notice. You have the right to be notified which categories of personal data are being collected and the purposes for which the personal data is being used.
  
  
• The right to request. Under CCPA, you have the right to request that we disclose information to You about our collection, use, sale, disclosure for business purposes and share of personal information. Once we receive and confirm your request, we will disclose to you:
  
  
• The categories of personal information we collected about you.
  
  
• The categories of sources for the personal information we collected about you.
  
  
• Our business or commercial purpose for collecting or selling that personal information.
  
  
• The categories of third parties with whom we share that personal information.
  
  
• The specific pieces of personal information we collected about you.
  
  
• The right to delete personal data. You have the right to request the deletion of your personal data, subject to certain exceptions. Once we receive and confirm your request, we will delete (and direct Our Service Providers to delete) your personal information from our records, unless an exception applies. We may deny Your deletion request if retaining the information is necessary for us or our service providers to:
  
  
• Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you.
  
  
• Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
  
  
• Debug products to identify and repair errors that impair existing intended functionality.
  
  
• Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.
  
  
• Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et. seq.).
• Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.
  
  
• Comply with a legal obligation.
  
  
• Make other internal and lawful uses of that information that are compatible with the context in which you provided it.

How to Contact us?

If you have any questions about this privacy policy or the content of this site, you can contact our Data Protection Office - Email to dataprotectionoffice@softura.com

Updates to this Privacy Policy

We may update our Privacy Policy from time to time consistent to applicable standards, legal, statutory, regulatory requirements. Policy changes are effective immediately after they are posted on our official website. The review and approval authority lies with Data Protection Office and CISO of Softura.