In this Services Privacy Statement (“Statement”), Zemsoft Corporation explains how Customer Data is collected, used, maintained, disclosed and transferred by us. As a data processor, we will process all Customer Data strictly on behalf of our customers in accordance with our contractual agreements with them and/or as required or permitted by law
Customer Data is defined as personal and/or company information our customers and their end-users input or upload into the Services (“Customer Data”). It does not include data we collect from visitors to our Websites, or data we collect about our customers or prospective customers, service providers, professional advisors, consultants and other third parties otherwise in the course of doing business. Our use of the term Services in this Statement has the same definition as in your applicable Services agreement with us (“Services”).
References in this Statement to “we,” “us” or “our” are references to the Zemsoft Corporation entity defined in your Services agreement with us. Statements referring to “you” or “your” are references to the customer for which we process Customer Data.
If you have any questions regarding this Statement, please refer to the Contact Us page.
This Statement applies to Customer Data only.
COLLECTION PURPOSES, USE OF CUSTOMER DATA
Customer Data may be processed by us as a result of customer’s use of the Services when our customers, or their end-users, input or upload information into the Service. For example, customers who use our Enterprise Resource Planning tools may upload Customer Data about their respective items and transactions. We act as a data processor with respect to this Customer Data. The use of Customer Data will be limited to the following purposes:
We only process Customer Data on behalf of our customers and in accordance with their instructions provided in the applicable Services agreement with us. Our customers are responsible as data controllers for ensuring (i) their end-users receive proper notice of customer’s privacy practices, and (ii) Customer Data is obtained in accordance with all applicable laws. Because the Customer Data is under the customer’s control, the customer is responsible for providing appropriate notice and choice to its end users regarding our processing of Customer Data on its behalf. If a customer’s end-user has any questions or concerns related to our handling of Customer Data, the end-user may contact us and we will work with the customer to address the concern.
DATA TRANSFERS TO THIRD PARTIES
We do not sell Customer Data to any third-parties; however, we may share Customer Data with third-parties as follows:
Trusted agents, consultants and service providers to perform business related functions such as service providers that help support the Services.
Under certain circumstances, we may be required to disclose Customer Data in response to valid requests by public authorities, including meeting national security or law enforcement requirements.
We may disclose Customer Data if required to do so by law in order to (for example) respond to a subpoena or request from law enforcement, a court or a government agency, or in the good faith belief that such action is necessary (a) to comply with a legal obligation, (b) to protect or defend our rights, interests or property or that of third parties, (c) to prevent or investigate possible wrongdoing in connection with the site or our Services, (d) to act in urgent circumstances to protect the personal safety of users of the site, our Services or the public; or (e) to protect against legal liability.
Where it relates to Customer Data, we will attempt to refer any request for disclosure of personal information by public authorities, including those received for national security or law enforcement reasons, to the customer. We may, where legally obligated to do so, disclose personal information to law enforcement or other government authorities, in which case we will notify our customer of such a request (unless prohibited by law to do so).
We maintain reasonable and appropriate security measures to protect Customer Data from loss, misuse, unauthorized access, disclosure, alteration, and destruction.
While we employ security measures to protect Customer Data in our Services, our customers, and their end users, should only access the Services within a secure environment and take appropriate steps to always ensure that login credentials and passwords are kept safe at all times. You should notify us as soon as possible if you become aware of any misuse of your password or your account, and immediately change your password within the Services.
If you have any complaints regarding our compliance with this Statement, you should first contact us. We will investigate and attempt to resolve complaints and disputes regarding use and disclosure of personal information in accordance with this Statement.
We retain Customer Data and any other data collected through the Services in accordance with the timeframes set out in the relevant Services Agreements with our customers.
GENERAL DATA REQUESTS
An individual who seeks to access Customer Data, or to correct, amend, or delete Customer Data that is inaccurate, should direct their query to the customer. If the customer asks us to retrieve, amend or remove the Customer Data, we will do so in accordance with our Services Agreement with them and our Privacy Shield commitments.
Alternatively, if you are a customer and want to find out more about the data security settings on your account, you can refer to your Services agreement or other applicable contractual documents with us, or contact us directly for further information.
HOW TO CONTACT US
If you have any questions regarding this Statement or if you need to request access to or update, change or remove personal information that we control, you can do so by contacting Zemsoft Corporation through the Contact Us page.
We reserve the right to change, modify, add or remove portions of this Statement from time to time and in our sole discretion, but will alert you that changes have been made by indicating on this Statement the date it was last updated. When you visit this site, you are accepting the current version of this Statement as posted on the site at that time. We recommend that users revisit this Statement on occasion to learn of any changes.