Processing Activities. This Policy applies when you interact with us by doing any of the following; i) make use of our application and services as an authorized user; visit any of our websites that link to this Privacy Statement; visit any of our branded social media pages; visit our physical offices; attend any of our branded or sponsored events; and receive any communication from us including newsletters, emails, calls, or texts.
Personal Data We Collect.
Data you provide.
Personal data we collect includes:· Account information such as your name, company, email address, and password
· Mobile device specific identifiers including: make and model, IMEI and phone number
Note that we do not request, gather, or store the following information:
· Payment information such as your billing address, credit card, debit card or other payment method
· Other information such as your occupation, employment details, or residential address
Device and Usage Data. When you visit a Sera4 website we automatically collect and store information about your visit using browser cookies (files which are sent by us to your computer) or similar technology. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. The Help feature on most browsers provide information on how to accept cookies, disable cookies or to notify you when receiving a new cookie. If you do not accept cookies, you may not be able to use some features of our Service and we recommend that you leave them turned on. We also process information when you use our services. This information includes IP addresses, login information, device IDs, time stamps, authentication records, location information, and other operational data.
Data we collect from third parties. We may receive your personal data from third parties such as companies subscribing to Sera4 services, partners and other sources. This information is not collected by us but by a third-party and is subject to the relevant third-party’s own separate privacy and data collection policies. We do not have any control or input on how your personal data is handled by third parties. As always, you have the right to review and rectify this information. If you have any questions you should first contact the relevant third-party for further information about your personal data. Where that third-party is unresponsive to your rights, you may contact the Data Protection Officer of Sera4 (contact details below) and we can assist you.
Purpose and Legal Basis for the Processing of Personal Data. We collect and use personal data about you with your consent to provide, maintain, and develop our products and services and understand how to improve them.
Build a Safe and Secure Environment.
· Verify or authenticate your identity
· Investigate and prevent security incidents such as breaches, attacks and hacks.
Provide, Develop, and Improve our Products and Services.
· Deliver, maintain, debug and improve our products and services.
· Enable you to access Teleporte services and set up accounts.
· Provide cloud services to enable the user and administrator to access, activate, administer, and monitor Teleporte branded locks, lock controllers, and other IoT solutions.
· Provide you with technical and customer support.
Organize and Deliver Advertising and Marketing.
· Aggregate your information in an anonymized form to generate usage statistics
· Send you newsletters and other marketing communications about current and future products, programs and services, events, competitions, surveys and promotions held by us or hosted on our behalf; and
· Organize events or register attendees and schedule meetings for events.
Where we process your personal data to provide a product or service, we do so because it is necessary to perform contractual obligations. All of the above processing is necessary in our legitimate interests to provide products and services and to maintain our relationship with you and to protect our business for example against fraud. Consent will be required to initiate services with you. New consent will be required If any changes are made to the type of data collected. Within our contract, if you fail to provide consent, some services may not be available to you.
Sharing and Disclosure. We will share your personal data with third parties only in the ways set out in this Policy or set out at the point when the personal data is collected. We consider your personal data to be a vital part of our relationship with you. We do not sell your personal data to third parties, including to third-party advertisers.
Legal Requirement. We may use or disclose your personal data in order to comply with a legal obligation, in connection with a request from a public or government authority, or in connection with court or tribunal proceedings, to prevent loss of life or injury, or to protect our rights or property. Where possible and practical to do so, we will tell you in advance of such disclosure.
Service Providers and Other Third Parties. We my use a third-party service provider, independent contractors, agencies, or consultants to deliver and help us improve our products and services. Service providers may be within or located outside the EEA. We may share your personal data with marketing agencies, database service providers, backup and disaster recovery service providers, email service providers and others but only to maintain and improve our products and services. For further information on the recipients of your Personal Data, please contact us at [email protected]
Data Aggregation and Analytics. We may collate your personal data you provide to us or we collect and use it anonymously for analytics, benchmarking, and to effectively monitor our service and improve your user experience.
Security. We are constantly deploying and updating our technical and organizational security measures to protect against loss, misuse or alteration of personal data that we have collected or received from a third-party. To the extent permitted by law, Sera4 may review, scan or analyze communications for fraud prevention, investigation, regulatory compliance, risk assessment, research, product development, and customer support purposes. We use industry-standard encryption technologies when transferring and receiving personal data, and network access control technology to limit access to the systems on which personal data is stored, and we monitor for possible vulnerabilities and attacks. If you become aware that there has been a breach in security of any of the personal data that we store or that is stored by our third-party service providers, please contact us via the instructions provided in the Contact Us section below.
Retention & Deletion. We will only retain your personal data for as long as necessary for the purpose for which that data was collected and to the extent required by applicable law. When we no longer need personal data, we will remove it from our systems and / or take steps to anonymize it.
Children’s Privacy. We will not knowingly collect personal data from children under the age of 16 years.
Your Rights for Your Personal Data. Depending on your geographical location and citizenship, your rights are subject to local data privacy regulations. These rights may include:
Right to Access (GDPR Article 15). You have the right to request a copy of the personal data we are processing about you.
Right to Rectification (GDPR Article 16). You have the right to have incomplete or inaccurate personal data that we process about you rectified.
Right to be Forgotten (right to erasure) (GDPR Article 17). You have the right to request that we delete personal data that we process about you, except we are not obliged to do so if we need to retain such data in order to comply with a legal obligation or to establish, exercise or defend legal claims.
Right to Restriction of Processing (GDPR Article 18). You have the right to restrict our processing of your personal data where you believe such data to be inaccurate; our processing is unlawful; or if we no longer need to process such data for a particular purpose unless we are not able to delete the data due to a legal or other obligation or because you do not wish us to delete it.
Right to Portability (GDPR Article 20). You have the right to obtain personal data we hold about you, in a structured, electronic format, and to transmit such data to another data controller, where this is (a) personal data which you have provided to us, and (b) if we are processing that data on the basis of your consent or to perform a contract with you or the third-party that subscribes to Sera4 services.
Right to Objection (GDPR Article 21). Where the legal justification for our processing of your personal data is our legitimate interest, you have the right to object to such processing on grounds relating to your particular situation. We will abide by your request unless we have compelling legitimate grounds for processing which override your interests and rights, or if we need to continue to process the data for the establishment, exercise or defense of a legal claim.
Withdrawing Consent. If you have consented to our processing of your personal data, you have the right to withdraw your consent at any time, free of charge, such as where you wish to opt out from marketing messages that you receive from us. If you wish to withdraw your consent, please contact us at [email protected]
How to Exercise Your Rights. You can make a request to exercise any of these rights in relation to your personal data by sending the request by mail to Data Protection Officer of Sera4, 725 Bridge St. W, Waterloo, Ontario, Canada N2V 2H1 or email to [email protected] For your own privacy and security, at our discretion, we may require you to prove your identity before providing the requested information.
Contact Us. To contact us, please email [email protected] or write to us at: Data Protection Officer of Sera4 Ltd., 725 Bridge St. W., Waterloo, Ontario, N2V 2H1, CANADA
Complaints. If you have a complaint about this Policy or any element of your personal information that we hold then please contact us at the above address. If you are not satisfied, then you have the right to lodge a complaint with the local data protection authority. If you are based in the EEA, please visit the following website for a list of local data protection authorities: https://edpb.europa.eu/about-edpb/board/members_en