Effective date: [12.02.2018].
I. CUSTOMERS DATA PROCESSING
Processing personal data relates particularly to the Customer and his/ her employees or subcontractors first names, surnames, e-mail addresses, phone numbers, computer IP addresses, physical addresses, Account information and other data necessary for the provision of the Service. Processing the personal data of the Customer for marketing purposes requires his/ her separate consent.
QUOTISS processed the Customer’s personal data particularly to create the Account and sub-accounts, provide the Service to the Customer through the Website and QUOTISS Software, identify the Customer within QUOTISS Software and to communicate with the Customer.
Only authorized persons shall have the access to data collected by QUOTISS in the records. Personal data processed by QUOTISS shall not be disclosed on the initiative of QUOTISS to other persons, subject to the cases prescribed by mandatory provisions of law or if such disclosure is necessary for the purpose of rendering the Service or with the Customer’s permission or if such action was mentioned in the Terms of Service or in QUOTISS Software interface or if it is necessary to protect QUOTISS’ rights. Also, if QUOTISS decides to sell, buy, merge or reorganize its business, it may also need to disclose the Customer’s personal data for such business reasons, but will pursue relevant and proper protection of the above-mentioned data in such an event.
The Customer may give other persons access to the Content, including personal data, processed by QUOTISS within QUOTISS Software. The Customer is fully responsible for controlling activities of his/ her employees, subcontractors, customers and other persons who have the ability to access or control the Content as well as introducing internal privacy policies and terms regarding the use and protection of the Content.
The Customer has the right to control the processing of the Customer’s personal data which relate to him/ her and are included in QUOTISS’ databases, in particular the right to: access his/ her personal data, alter and correct them by filing such request with QUOTISS, request temporary or permanent suspension of their processing or their removal if they are incomplete, invalid, inaccurate or if they have been collected in violation of the law or they have become unnecessary to realize the purpose, for which they have been collected.
II. INFORMATION SECURITY
QUOTISS applies technological and organizational means in order to secure the processed personal data corresponding to the threats and category of data to be secured, in particular, QUOTISS secures data against sharing with unauthorized persons, taking over by an unauthorized person, processing in violation of the law and unauthorised change, loss, damage or destruction, through technical and organizational means, among others the SSL certificates shall be applied. The Users’ personal data are collected and stored on a secured server, moreover, they are secured by QUOTISS internal procedures related to processing personal data and information security policy.
In order to log in to the Account, it shall be necessary to provide relevant username and password. In order to ensure an appropriate level of security, the password for the Account shall exist on QUOTISS Software only in a coded form. Furthermore, the operation of QUOTISS Software shall proceed within secure https connection. Communication between the User’s device and the servers shall be encoded using the SSL (Secure Socket Layer) protocol.
At the same time, QUOTISS states that using the Internet and the Service provided by electronic means may pose a threat of malware, breaking into User’s or Customer’s teleinformatic system or device, as well as any other unauthorized access to the User’s/ Customer’s data, including personal details, by third parties. In order to minimize such threats, the User/ the Customer should use appropriate technical security means, e.g. using updated antivirus programs or programs securing identification of the User/ the Customer on the Internet. In order to obtain detailed and professional information related to the security in the Internet QUOTISS recommends taking advice from entities specializing in relevant IT services.
III. LOCAL STORAGE/ THIRD-PARTY COOKIES/ WEBSITE USE INFORMATION
In order to enhance QUOTISS’ ability to provide the Service, QUOTISS uses Local Storage in order to store the User/ Customer preferences and settings. Local Storage technology is similar to browser Cookies but can store data more comprehensively. By itself, Local Storage cannot do anything to or with the data stored on the User’s/ Customer’s device. Many Internet browsers allow to disable HTML5 Local Storage or delete information contained in HTML5 Local Storage using browser controls.
QUOTISS also uses third-party Cookies for the following purposes: preparing statistics (anonymous) for the purposes of optimizing the functionality of QUOTISS Software, by means of analytic tools, among others: Google Analytics (Cookies administrator: Google Inc. with its registered office in the USA).
The User/ Customer may individually change Cookies settings at any time, stating the conditions of their storage, through the Internet browser settings or configuration of the Service. The User/ Customer may also individually delete Cookies stored on his/her device at any time in accordance with the instructions of the browser producer. Detailed information concerning Cookies support is available in the browser settings.
The User/ Customer should be aware that the complete blocking the option to save Cookies or Local Storage technology may, however, hinder or completely block the possibility of using the Website or the Service.
QUOTISS’ servers automatically collect site use information, each time the User visits the Website. The Website uses information includes HTTP enquiries, therefore the files containing web server logs may store data concerning the User, including the IP address of the computer sending the enquiry, the name of User’s station, if possible, date and system, time of registration in the Service and receipt of the enquiry, number of bytes sent by the server, information concerning User’s browser or information concerning errors which occurred by realization of the HTTP transaction.
Files containing web server logs may be analyzed for the purposes of preparing statistics concerning traffic on the Website and occurring errors. The information shall be anonymous and summary of such details shall not identify particular Visitors. Web server logs may be collected for the purposes of proper administration of the Website.
QUOTISS may collect geolocation data pertaining to Visitors and Customers. QUOTISS shall use geolocation data for analytical purposes.
IV. COMPLAINTS AND REQUESTS
At the complaint or request of the person whom the personal data processed by QUOTISS concern, such a person may contact QUOTISS by email directly at firstname.lastname@example.org. QUOTISS will respond within 30 days at the latest.