Saganworks GDPR Compliance Information

This GDPR Compliance Policy is meant to help you understand what information we collect, why we collect it, and how you can update, manage, export, and delete your information.

What data does Saganworks collect and why?

Saganworks collects a very limited amount of personal information from our users. Email address and generalized location data (IP Address) are collected to establish unique accounts and deliver services according to the laws in particular locations around the globe. Usage statistics are collected to assess the performance of the application, its features, and in order to improve the user experience. This usage data is anonymous to everyone in our organization with the exception of system administrators and those whose job-function depends on usage of this data. Access to identifiable data is proactively limited to those individuals.

 

WHAT WHY
Email address As a unique identifier for your account and to deliver important info about your account status and/or billing
IP Address Location data in order to maintain compliance with laws in various locales
Usage Statistics To assess the performance of the app, its features, and content, in order to improve user experience

 

How does Saganworks protect my data?

Saganworks uses Microsoft Azure Cloud Store and SQL Server which offer world-class data security. Learn more about these data protections HERE.

 

Saganworks performs an annual audit of data-collection practices to ensure:

  • We are only collecting what is necessary to administer unique accounts and to maintain and improve our platform.
  • Access to data is limited to Saganworks employees who need the data to complete their job functions. We audit access annually to maintain these security measures.
  • We have a comprehensive, updated, map of the places data is stored and surfaced.

Will Saganworks sell or monetize my data?

No. Saganworks is committed to protecting user data and does not sell or monetize it.

 

What rights do I have regarding my data?

You are entitled to:

Access to your Data

In particular to: (i) request information about the purpose of their processing, (ii) categories of processed Data, (iii) identifying the recipient to whom the Data are to be provided, and (iv) duration of processing and collecting your Data.

 

Correction of your Data

In case you acknowledge that we are processing Data about you, which are not correct, please inform us about this matter and we shall correct the incorrect data without undue delay.

 

Erasure of your Data (Right to be forgotten)

We shall erase your Data if: (i) the Data are no longer necessary in relation to the purpose for which they were collected, (ii) you withdraw your consent to processing your Data according to this Privacy Policy, (iii) you object to the processing of your Data, (iv) in case your Data have been obtained by us unlawfully, (v) we have a legal obligation to do so and (vi) the Data have been collected in relation to the offer of information society services.

 

Restriction of Data processing

You have the right to restriction of your Data processing if: (i) the accuracy of your Data is contested by you for a period which shall enable us to verify the accuracy of your Data, (ii) the processing of your Data is unlawful and you request restriction of such Data use instead of erasure, (iii) we no longer need your Data for the purpose of processing, but are required by you for the establishment, exercise or defence of legal claims, and (iv) you have objected to the processing of your Data pending the verification whether our legitimate grounds override yours.

 

Data portability

You are entitled to receive your Data processed by us in a structured, commonly used and machine-readable format for the purpose of transmitting such Data to another data controller.

 

Object to data processing

You have the right to object to the processing of your Data based on the grounds of legitimate interest, marketing purposes, profiling related to direct marketing.

 

Lodge a complaint with a supervisory authority

If you consider that your rights relating to the processing of your Data have been infringed you have the right to lodge a complaint with a supervisory authority.

 

Do we process the data of children?

Protecting the privacy of young children is especially important. For that reason, we do not knowingly collect or solicit personal information from anyone under the age of 13. If you are under 13, please do not send any information about yourself to us, including your name, address, telephone number, or email address. No one under age 13 is allowed to provide any personal information to or on the Site. In the event that we learn that we have collected personal information from a child under age 13 without verification of parental consent, we will delete that information as quickly as possible. If you believe that we might have any information from or about a child under 13, please contact us at [email protected]

What else should I know?

Saganworks uses 3rd party business software applications to support our various business functions. Some user data is stored and utilized in these applications. These applications do not distribute or sell this data and they maintain GDPR compliance. Here are the names of these services, how we use them, and their respective GDPR compliance practices:

 

Hubspot – Automated communications – Privacy Policy

Zendesk – Customer support – Privacy/Data Policy