Privacy Notice – VIMANA Elevate

Effective as of May 25, 2018

This privacy notice explains how VIMANA Elevate collects, retains, processes, shares, and transfer your personal data.

VIMANA may change this privacy notice from time-to-time. If any changes are made, the “Effective as of” date at the top of this notice will be updated. If any material changes are made, users will be provided with an additional notice (such as a notice on login screens, or an email notification will be sent).

 

Personal data collected and its use

Personal data collected is strictly used for enabling VIMANA Elevate and providing product support.

Contact information (such as email address, phone number, SMS address)

Contact information collected via VIMANA Elevate is used to notify users of events that occur within VIMANA Elevate. Notifications can be delivered via email, SMS, or other means. Notifications are subscribed to by users and administrators. Subscriptions and contact information can be deleted at any time.

Contact information collected via the product support portal is used to authenticate users, and to provide notifications of support ticket updates. Notifications are delivered via email. If a phone number is provided in support tickets, our product support team may contact users via phone.

Operator machine usage (such as operator ID, operator machine login/logout times)

Operator machine usage information is collected to calculate and visualize analytics grouped or aggregated to understand operator usage of machines in the plant. The capture of operator related information is not collected by default; it must explicitly be configured by the VIMANA Elevate administrator.

External Login ID (if optionally using an external authentication service)

When configured with external authorization (e.g. corporate single sign-on) the external Login ID will be used to authenticate users against the external authentication service. That Login ID would also be used to track certain user related actions, like the creation or modification of system settings, tickets, etc.

Log and usage data

VIMANA collects information about user usage of VIMANA Elevate. This information may include IP Address, browser type, operating system, device type, and system and performance information. This data is accessed only for operating and troubleshooting VIMANA Elevate, and is permanently deleted on a rolling time basis.

 

Sharing of personal data

Personal data may be shared with sub-processors used to help deliver VIMANA Elevate. We verify that each sub-processor implements and maintains the same level of privacy and security as VIMANA Elevate, VIMANA enters into a GDPR compliant Data Processing Agreement with each sub-processor.

 

Personal data retention

When the VIMANA Elevate contract is terminated, all personal data is either deleted or anonymized. The exception being log and usage data, which is deleted on a rolling time basis.

 

Cookies

VIMANA Elevate uses persistent cookies to track users login state. These cookies may also store preferences that users have configured.  A persistent cookie remains on a device until it expires or a user explicitly logs-off from VIMANA Elevate. This cookie is only transmitted over HTTPS. Cookies used by VIMANA Elevate do not track users when they cross to third party websites, VIMANA does not provide targeted advertising, and does not respond to Do Not Track (DNT) signals.

 

Security

VIMANA takes appropriate security measures to protect against unauthorized access or unauthorized alteration, disclosure, or destruction of data. VIMANA restricts access of personal information to VIMANA employees, contractors, and agents who need to know that information in order to operate, develop, or improve our services. These individuals are bound by confidentiality obligations and may be subject to discipline, including termination, if they fail to meet these obligations. VIMANA is not responsible for protecting any personal data that is shared with an external authentication service.

 

Data transfers

VIMANA Elevate is hosted on Amazon Web Services in the United States, so user information may be transferred to, stored, or processed in the United States. While the data protection, privacy, and other laws of the United States might not be as comprehensive as those in your country, VIMANA takes many steps to protect user privacy, including offering a data processing addendum to VIMANA customers. For information on entering into a data processing agreement, contact dpo@govimana.com.

 

EU GPDR

VeraSafe has been appointed as VIMANA’s representative in the European Union for data protection matters, pursuant to Article 27 of the General Data Protection Regulation of the European Union. VeraSafe can be contacted in addition to dpo@govimana.com, only on matters related to the processing of personal data. To make such an inquiry, please contact VeraSafe using this contact form: https://www.verasafe.com/privacy-services/contact-article-27-representative

Alternatively, VeraSafe can be contacted at:

Matthew Joseph

Zahradníčkova

1220/20A

Prague 15000

Czech Republic

VeraSafe Ireland Ltd

Unit 3D North Point House

North Point Business Park

New Mallow Road

Cork T23AT2P

Ireland