Privacy Policy

Effective date: September 9, 2021

This "Privacy Policy" describes the privacy practices of requestee UG and our subsidiaries and affiliates (collectively, "Secfix", “requestee”, "we", "us", or "our") in connection with the https://secfix.com website, and any other website that we own or control and which posts or links to this Privacy Policy (collectively, the "Service"), in connection with our marketing activities, and as otherwise described in this privacy policy. In addition, this privacy policy describes your rights and choices with respect to the Personal Information we collect.

We provide important information for individuals located in the European Union, European Economic Area, and United Kingdom in the GDPR Notice

We know that in this digital age, your privacy is important. This Privacy Policy reflects our commitment to protect personal data and the choices we offer you regarding how your data is used. We welcome you to read more about how we keep your information safe, as well as how you can exercise your rights. In addition, our Privacy policy covers our treatment of data that may be personal to you.

We will review, update and amend these policies from time to time consistent with our business needs and technology. We encourage you to check back periodically for new updates or changes. Your continued use of the service makes up your acceptance of any change to this Privacy Policy. We are the data controller of your information. We handle and process all data on behalf of our customers.

 

What private data do we collect from the people who visit our website and app?

When enlisting on our site or buying services, as suitable, you could be approached to type in your name, email, postage information, payment information, or different subtleties to assist you with your experience.

When you create an account and use the Services, including through a third-party platform, we collect any data you provide directly, including:

  • Account Data: To use certain features (like Paid or unpaid Services), you need to create a user account. When you create or update your account, we collect and store the data you provide, like your email address, password, gender, and date of birth, and assign you a unique identifying number ("Account Data").
  • Personal Data: Personal Data is information that can be used to identify you specifically, including your name, zip code, time zone, email address, telephone number, or demographic information like your age, gender, or hometown. You consent to give us this information by providing it to us voluntarily on our website or any mobile application. You provide some of this information when you register with or make purchases from our website. You may also provide this information by participating in various activities associated with our site, including responding to blogs, contacting us with questions, or participating in group training. Your decision to disclose this data is entirely voluntary. You are under no obligation to provide this information, but your refusal may prevent you from accessing certain benefits from our website or from making purchases.
  • Contact information. An Authorized User is required to provide some contact information (e.g., an email address) when making an account on the Services.

Data About Your Accounts on Other Services:

  • We may obtain certain information through your social media or other online accounts if they are connected to your Secfix account. If you login to via Google or another third-party platform or service, we ask for your permission to access certain information about that other account. For example, depending on the platform or service, we may collect your name, profile picture, account ID number, login email address, location, the physical location of your access devices, gender, birthday, and list of contacts.
  • Social Networking Data: We may access personal information from social networking sites, and apps, includes Google, which may include your name, your social network username, location, email address, age, gender, profile picture, and any other public information. If you do not want us to access this information, please go to the specific social networking site and change your privacy settings.
  • Mobile Device Data: If you use our website via a mobile device or app, we may collect information about your mobile device, including device ID, model and manufacturer, and location information.
  • If you access or use our Services or to buy services through a third-party platform or service, or click on any third-party links, the collection, use, and sharing of your data will also be subject to the privacy policies and other agreements of that third party.
  • Those platforms and services make information available to us through their APIs. The information we receive depends on what information you (via your privacy settings) or the platform or service decide to give us.
  • Information transferred via the Google API. Secfix's use and transfer of information received from Google API’s to any other app will adhere to Google API Services User Data Policy, including Limited Use requirements.

Automatically collected information about your use of our Services or tools,

This information is registered automatically with the visit by own configuration or manual of each tool on the website

  • When you visit, connect with, or utilize our service, we may gather, record or create specific specialized data about you. We do so either autonomously or with the assistance of third gathering Service Providers, including using "cookies" and other following innovations.

  • Such data comprises of availability, specialized and collected utilization data, for example, IP locations and general areas, gadget data (like sort, working framework, cell phone id, program form, region and language settings, Browser Information, Geographic location, Time of Visit, Referring site, applications or service, search engine utilized), date and time stamps of use, the and pixels introduced or used on such gadget and the recorded movement (meetings, clicks and further cooperation's) of Visitors and Users regarding our Service. for purposes including examination, service-, tasks, and business quality control and enhancements, and record-keeping purposes.

This is to improve the website, services, and security, among which we include security inspection by the administration of the website and third parties.

When do we acquire information?

We get data from you when you get enlisted on our site, respond to an audit, give us reactions on our items or enter information on our site. Below are the examples:

  • To register on our website or App to get updated about services or to buy services.
  • To create your account on the website (e.g., your name and email address)
  • Request a quote
  • Request a demo
  • Purchase or register a product
  • Request support
  • Sign up for newsletters, support materials, white papers, our email list, our blog, or any other assets offered by
  • To deal with our relationship with you, including notifying you about changes to our terms or security arrangement. Requesting that you leave an auditor to take an overview.
  • To manage and ensure our business and this site (counting investigating, information examination, testing, framework upkeep, backing, announcing, and facilitating information).
  • To make proposals and suggestions to you about merchandise or administrations that might hold any importance with you.

How do we handle social signals?

In Short: Yes, if you choose to register or log in to our website using a social media account, we may access certain information about you.

Our Sites offers you the ability to register and log in using your third-party social media account details (like your Google Login). Where you choose to do this, we will receive certain profile information about you from your social media provider. The profile Information we receive may vary depending on the social media provider concerned, but will often include your name, email address, friends list, profile picture, as well as other information you choose to make public.

We will use the information we receive only for the purposes described in this privacy policy or that are otherwise made clear to you on the Sites. Please note that we do not control, and are not responsible for, other uses of your personal information by your third-party social media provider. We recommend that you review their privacy policy to understand how they collect, use and share your personal information and how you can set your privacy preferences on their sites and apps.

The APs that we use to store and access cookies and other information on your devices. If you are a user currently in the European Union, please look at our EU User Consent Policy.

How do we use your details?

We may utilize the data we procure from you when you enlist, make a buy, join our bulletin, respond to an examination or promoting correspondence, peruse the site, or utilize specific other site includes in the following ways:

  • To provide access to the Application for both customers and their end users.
  • To maintain the security and integrity of the Application.
  • To communicate with customers and their end users about the Application.
  • To respond to support requests.
  • To develop and improve the Application.
  • To comply with legal and regulatory requirements applicable to our business and internal policies for maintaining records.
  • To protect all parties in the event of disputes.
  • Compile anonymous statistical data for our own use or for a third party's use; and
  • Assist law enforcement as necessary; and
  • Prevent fraudulent activity on our website or mobile app; and
  • Analyze trends to improve our website and offerings.
  • To fulfill or meet the reason you provided the information (e.g., to help provide our Site services to you).
  • To personalize and develop our site and the services we provide you and improve our offerings.
  • To provide certain features or functionality of the services on the site.
  • For marketing and promotions.
  • To create, maintain, customize, and secure your account with us.
  • To provide you with support, to communicate with you and respond to your inquiries, including to investigate and address your concerns and monitor and improve our responses.
  • To personalize your experience and to deliver content and product and services relevant to your interests.
  • To help maintain the safety, security, and integrity of our site, services, databases, and other technology assets and business.
  • For testing, research, analysis, and product development, including to develop and improve our site and services.
  • To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
  • To prevent illegal activity, fraud, and abuse.
  • Where we have to play out the agreement we are going to go into or have gone into with you
  • To help our site that will ready to serve you better.
  • To allow us to brought administration you up in furnishing a response to your client assistance demands.
  • To catch up after correspondence with (live talk, email, or telephone requests)
  • To furnish you with the data, items, and administrations that you demand from the site.

Do Not Track

Currently, various browsers — such as Internet Explorer, Firefox, and Safari — offer a “do not track” or “DNT” option that relies on a technology known as a DNT header, which sends a signal to Web sites’ visited by the user about the user's browser DNT preference setting. Secfix does not currently commit to responding to browsers' DNT signals with respect to the Company's Web sites, in part, because no common industry standard for DNT has been adopted by industry groups, technology companies or regulators, including no consistent standard of interpreting user intent. Secfix takes privacy and meaningful choice seriously and will make efforts to continue to monitor developments around DNT browser technology and the implementation of a standard.

When we share personal information

Once your personal information is collected, as detailed above, we may share it with third parties for various reasons, among them email delivery, data hosting, analytics, payment processing and content streaming. These services may collect browsing data that includes IP addresses, referring pages, and users’ movements as they navigate the Website. Other third parties help us with our marketing efforts including sending and analyzing our marketing efforts by measuring whether recipients have opened an email and clicked on any content within it.

When we share your personal information with a third party, we require that third party to protect the information consistent with this Statement and limit its use of the information to performing the services they provide to us. For example, when we share personal information with payment processors or presenters of web seminars, its use is limited to providing that service.

How do we protect your details?

  • We have implemented industry-accepted administrative, physical, and technology-based security measures to protect against loss, misuse, unauthorized access, and alteration of personal information in our systems. We ensure that any employee, contractor, corporation, organization, or vendor who has access to personal information in our systems is subject to legal and professional obligations to safeguard that personal information.
  • We do not use vulnerability scanning and/or scanning to PCI specifications.
  • We use regular Malware Scanning.
  • Your individual information is comprised behind secured systems and is merely accessible by a restricted number of folks who've special access privileges to such systems and must keep the information confidential carefully. Furthermore, all very sensitive/credit information you resource is encrypted via Secure Socket Layer (SSL) technology.
  • We implement a number of security measures whenever a user gets into, submits, or accesses their information to keep up the protection of your individual information.
  • While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or form of electronic storage is 100 percent secure. Therefore, we cannot guarantee its absolute security.
  • Secfix prohibits unauthorized access or use of personal information stored on our servers. Such access is a violation of law, and we will fully investigate and press charges against any party that has illegally accessed information within our systems.

California Consumer Rights

The California Consumer Privacy Act provides specific rights to those who live in California. If you are a California-based consumer, as that term is defined under California law, this section shall apply in addition to all other applicable rights and information contained in this Statement.

  • You have the right to request that we provide you with information about what personal information we collect, use, and disclose.
  • You have the right to request that we delete personal information we, or our service providers, store about you.
  • We will not discriminate or retaliate against you if you elect to exercise any rights under this section of our Privacy Statement.
  • You may request that we not sell your personal information. As noted above, we do not sell your personal information and we only share your personal information with third parties, as described in this Statement.
  • You have the right to designate an authorized agent to make a request on your behalf. Please see the Identity Verification Requirement below for information on our process for verifying that we have received a legally valid request.
  • If you are a California consumer and have additional questions based on this section of our Privacy Statement, or wish to submit a request to request that we not share your information with third parties, please contact us by email or through contact us page.

Children

Our Services is directed to, and is intended for use only by persons who are 18 years of age or older. We do not knowingly collect information from children under 18. If you are under 18 years of age, you are not permitted to register for an account or otherwise submit any personally identifiable information to us, including your name, address or e-mail address. If we discover that we have collected any personally identifiable information from a child under the age of 18, we will suspend the associated account and remove that information from our database as soon as possible. By registering for an account or submitting any personally identifiable information to us, you represent and warrant that you are 18 years of age or older.

Coppa (children online privacy protection action)

With regards to the assortment of private information from children under age 18 years, the Children's Online Privacy Protection Act (COPPA) puts parents in charge. The Federal Trade Commission, United States' consumer safety firm, enforces the COPPA Guideline, which spells out what providers of websites and online services should do to safeguard children privatizes and security online. Fore more Details Click Here or below link

https://www.ftc.gov/enforcement/rules/rulemaking-regulatory-reform-proceedings/childrens-online-privacy-protection-rule

GDPR-Customer data processing appendix:

Customer Data" means any personal data that processes on behalf of Customer via the service, as more particularly described in this DPA.

"Data Protection Laws" signifies all information protection laws and guidelines appropriate to a gathering's handling of Customer Data under the agreement, including, where pertinent, EU Data Protection Law and Non-EU Data Protection Laws.

GDPR-EU data protection law

"EU Data Protection Law" signifies all data protection laws and guidelines appropriate to Europe, including (I) Regulation 2016/679 of the European Parliament and of the Council on the insurance of ordinary people concerning the preparing of individual information and on the free development of such information (General Data Protection Regulation) ("GDPR"); (ii) Directive 2002/58/EC concerning the processing of personal data and the protection of privacy in the electronic communications sector; (iii) applicable national implementations of (i) and (ii); and (iii) in respect of the United Kingdom ("UK") any applicable national legislation that replaces or converts in domestic law the GDPR or any other law relating to data and privacy as a consequence of the UK leaving the European Union).

"Europe" signifies, for the motivations behind this DPA, the European Union, the European Economic Area as well as their part states, Switzerland and the United Kingdom.

"Non-EU Data Protection Laws" means the California Consumer Privacy Act ("CCPA"); the Canadian Personal Information Protection and Electronic Documents Act ("PIPEDA"); and the Brazilian General Data Protection Law ("LGPD"), Federal Law no. 13,709/2018.

  • Parties' roles: If EU Data Protection Law or the LGPD applies to either party's processing of Customer Data, the parties acknowledge and agree that concerning the processing of Customer Data, Customer is the controller and is a processor acting on behalf of Customer, as further described in Annex A (Details of Data Processing) of this DPA.
  • Purpose limitation: Secfix shall process Customer Data only following Customer's documented lawful instructions as outlined in this DPA, as necessary to comply with applicable law, or as otherwise agreed in writing ("Permitted Purposes"). The parties agree that the agreement sets out the Customer's complete and final instructions to Secfix concerning the processing of Customer Data, and processing outside the scope of these instructions (if any) shall require a prior written agreement between the parties.
  • Customer compliance: Customer represents and warrants that (i) it has complied, and will continue to comply, with all applicable laws, including Data Protection Laws, in respect of its processing of Customer Data and any processing instructions it issues to Secfix; and (ii) it has provided, and will continue to provide, all notice and has obtained, and will continue to obtain, all consents and rights necessary under Data Protection Laws for Secfix   to process Customer Data for the purposes described in the agreement. Customer shall have sole responsibility for the accuracy, quality, and legality of Customer Data and the means by which Customer acquired Customer data. Without prejudice to the generality of the foregoing, Customer agrees that it shall be responsible for complying with all laws (including Data Protection Laws) applicable to any emails or other content created, sent, or managed through the service, including those relating to obtaining consents (where required) to send emails, the content of the emails and its email deployment practices.
  • The lawfulness of Customer's instructions: Customer will ensure that United Kingdom processing of the Customer Data by Customer's instructions will not cause Secfix to violate any applicable law, regulation, or rule, including, without limitation, Data Protection Laws. Secfix shall promptly notify Customer in writing unless prohibited from doing so under EU Data Protection Laws if it becomes aware or believes that any data processing instruction from Customer violates the GDPR or any UK implementation of the GDPR.

Your Legal Rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data.

You may have the following rights:

  1. Request access to your personal data (commonly known as a "data subject access request"). This enables you to receive a copy of the personal data we hold about you and to check that we are lawfully processing it.
  2. Request correction of the personal data that we hold about you. This enables you to have any incomplete or inaccurate data we hold about you corrected, though we may need to verify the accuracy of the new data you provide to us.
  3. Request erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have successfully exercised your right to object to processing (see below), where we may have processed your information unlawfully or where we are required to erase your personal data to comply with local law. Note, however, that we may not always be able to comply with your request of erasure for specific legal reasons which will be notified to you, if applicable, at the time of your request.
  4. Object to processing of your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms. You also have the right to object where we are processing your personal data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process your information which override your rights and freedoms.
  5. Request restriction of processing of your personal data. This enables you to ask us to suspend the processing of your personal data in the following scenarios:
  6. If you want us to establish the data's accuracy.
  7. Where our use of the data is unlawful, but you do not want us to erase it.
  8. Where you need us to hold the data even if we no longer require it as you need it to establish, exercise or defend legal claims.
  9. You have objected to our use of your data but we need to verify whether we have overriding legitimate grounds to use it.
  10. Request the transfer of your personal data to you or to a third party. We will provide to you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.
  11. Withdraw consent at any time where we are relying on consent to process your personal data. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain services to you.

Identity verification requirement

The law requires us to verify that any request submitted was made by someone with the legal right to access the information. Therefore, before accessing or divulging any information pursuant to a data access request, we may request that you provide us with additional information so we can verify your identity and legal authority, particularly where the information provided with the request is insufficient to confirm legal authority and/or identity.

Can-spam act

The CAN-SPAM Take action is a regulation that sets the guidelines for commercial email, establishes requirements for commercial announcements, offers recipients to have emails ceased from being delivered to them, and spells out hard fines for violations.

We accumulate your email to be able to:

  • Send information, react to questions, and/or other demands or questions
  • To maintain compliance with CANSPAM, we consent to the next:
  • Not use untrue or misleading subject matter or email addresses.
  • Identify the concept as an advertisement in some realistic way.
  • Include the physical address of our site headquarters or business
  • Screen third-party email marketing services for conformity, if one can be used.
  • Honor opt-out/unsubscribe demands quickly.
  • Allow users to unsubscribe utilizing the link at the bottom of every email.

If anytime you want to unsubscribe from receiving future email, you can email us at by using contact form at our website Secfix and we'll immediately remove you from ALL communication.

Limitation of liability

  • Some jurisdictions do not allow the limitation or exclusion of liability for incidental or consequential damages so some of the above limitations may not apply to you.
  • We make no legal representation that the website or products are appropriate or available for use in locations outside Germany. You may access the website from outside Germany.at your own risk and initiative and must bear all responsibility for compliance with any applicable foreign laws.

Indemnification

  • Upon visiting this website you agree release, indemnify, defend and hold harmless Secfix and any of its contractors, agents, employees, officers, directors, shareholders, affiliates and assigns from all liabilities, claims, damages, costs and expenses, including reasonable attorneys' fees and expenses, of third parties relating to or arising out of your use of the website content; your use of the products; your violation of any provision of these terms; any unauthorized information or data you supplied to us. You will have sole responsibility to defend us against any claim, but you must receive our prior written consent regarding any related settlement.

Governing Law and Jurisdiction

  • This website originates from Germany. The laws of Germany. without regard to its conflict of law principles will govern these terms to the contrary. You, hereby agree that, all disputes arising out of or in connection with these terms shall be submitted to the exclusive jurisdiction of the Germany. By using this website, you consent to the jurisdiction and venue of such courts in connection with any action, suit, proceeding or claim arising under or by reason of these terms. You hereby waive any right to trial by jury arising out of these terms.

Changes to this privacy notice

We reserve the right to alter this privacy notice at any time. Such alterations will be posted on our website. You can also obtain an up-to-date copy of our privacy notice by contacting us.

Contacting us

If you would like to contact us to understand more about this Policy or wish to contact us concerning any matter relating to individual rights and your Personal Information, you may do so via the contact us or email us at Info@secfix.com

Secfix

Germany