It is Raven360’s policy to respect your privacy regarding any information we may collect while operating our websites and related software applications, collectively called the “Services”.
Raven360, INC (“Raven360”) operates raven360.com “Services”.
Collectively, Raven360 Inc is the data controller for the personal data that we collect about you.
Data Collection about you
Data that you or your employer provide during registration
You provide data that is necessary to create user accounts for you. Your content provider may also provide data about you when the services are taken at an organisation level.
For user registration, you or your employer or content provider needs to provide your email address.
Data from Others
Raven360 may receive your data from sources other than from you, such as your employer, [organisation admin] and tracking cookies
Data Provided by your Employers or Content Provider
Your employer or content provider may provide information about you
Invitation mails sent by our users
Certain data about you is necessary to continue our services or statutorily required
Certain personal data such as payment data is a mandatory to continue the services. Failure to provide this will result in disruption of our services. We have clearly marked information that is mandatory during data collection
Special information collected
Our Sites and Services utilize Google Analytics, Lucky Orange to collect information
Google Analytics collects information such as how often users visit this site, what pages they visit when they do so, and what other sites they used prior to coming to this site. We use the information we get from Google Analytics only to improve this site, but in anonymous form. Google Analytics/Lucky Orange collects only the IP address assigned to you on the date you visit this site and assigns a user ID code, rather than your name or other identifying information.
We collect data through cookies
How We Use Your Data
Lawful basis for processing
We have lawful basis to process your personal data. We also use your consent as basis for lawfully processing your personal data.
We process your personal data only when we have a lawful basis. Presently, we use the Performance of Contract (i.e. to deliver the services to you that you requested) and consent as the lawful basis for processing. For certain processing, we may also use legitimate interests as provided under the European Union General Data Protection Regulations (GDPR).
Where you have consented to a particular processing, you have a right to withdraw the consent at any time from the “MY Profile” section.
How we use your data
We use your data to authenticate you and authorize access to our services
We use the data that we have about you to provide, support, personalize and make our services (including trial account) more relevant and useful to you and others. In each case, Raven360 collects such information only in so far as is necessary or appropriate to fulfil the purpose of the interaction with our services.
Service Improvement messages and Direct Marketing
We may send you service related messages or marketing / promotional materials. You may choose to restrict the collection or use of your personal information
We will update you with improvements in our services, new features and from time to time also carry out direct marketing of our products and services. Direct marketing is carried out only if you consent to receiving such communications from us.
We may use services like SendGrid to send you emails and track our email interactions with you after you sign up for the Services or if you indicate an interest in receiving information, you may change your mind at any time by emailing us or using the unsubscribe option available in every email.
We use data to help you fix problems.
If you send us a request (for example via a support email or via one of our feedback mechanisms), we respond to your request to assist with support issues.
Users under 16 years of age
The Sites and Services do not knowingly collect personal information from users under the age of 16
If you are under the age of 16, you are not permitted to use the Sites and Services or to disclose Personal Information. If we learn we have collected or received Personal Information from a child under 16, we will delete that information. If you believe we might have any information from or about a child under 16, please contact us.
Data Retention Policy
We retain your information for as long as you or your employer has an active Services account. We may also retain your personal information for extended period under applicable statutory laws
We retain your personal data while your account is active or until it has been closed, as it is needed to provide you services. Active accounts are those that have logged into our services at least once in the last six months.
When you decide to close your account, we delete all personal information about you unless your information is necessary for your Employer’s Services.
Rights to Control your Own Data
Whenever you use our services, we aim to provide you easy means to access, modify, delete, object to or restrict use of your personal information
We strive to give you ways to access, update/modify your data quickly or to delete it unless we have to keep that information for legal purposes. The following are offered in the My Profile section of the application
Access to information – You can access all the information that we have about you on you My profile section.
You can also ask us for a copy of this information.
Modify your data – You can easily modify data that you see on the My Profile section. Presently, due to application functionality, you are not allowed to update your email address. If you need to change your email address that is used for registration, you will need to close the existing account and register again with a new email address.
Delete Data – You can close your account at any time and all personal identifiable data relating to you will be deleted. We would retain anonymous data related to your usage of the platform, e.g. content viewed, ratings, scores, etc.
Object to or restrict use of data – If your data is used for any processing to which you had earlier consented, you can withdraw your consent on the My Profile section.
We keep some personal data even after account closure
Once you choose to close your account, we generally delete your personal information within 30 days of closure of your account. Some information that is necessary for statutory obligations such as records of payment processing, invoicing data will be retained as necessary.
Your information shared with others
Recipients of your data
Your data will be shared with other recipients in order to provide you with services.
While we aim to limit the sharing off your data, at times, it is necessary to provide you seamless services. Examples
of when and for what purpose your data is shared include data center / hosting services, email marketing services, analytics companies etc.
The following categories of recipient will most likely receive your data in order for us to provide services to you:
- Cloud Service Provider - AWS
- Marketing Services
- Service providers engaged by us will have access to your information as reasonably necessary to perform support and maintenance tasks on our behalf and are obligated not to disclose or use it for other purposes.
Cross-Border Data Transfers
Your data will be stored and processed in multiple countries including outside of the European Union (EU) Region
Since we are an international company, your data will be processed outside of the EU region. Your data will be processed within AWS Data Centers in USA and in our offices in India. Some countries where we process data may not have as protective laws as your own country and there are risks associated with such transfer. By consenting to the use of your information by us, you are consenting to the onward transfer of your data outside of the European Economic Area (EEA). We will rely on binding corporate rules to ensure that your data is adequately protected outside of the EEA.
Security Measures to Protect your Data
We implement security controls to prevent breaches and unauthorised access to your data.
We implement security controls necessary to protect your data such as physical access controls, encryption, HTTPS, restricted access to data, monitoring for threats and vulnerabilities etc.
We also subject our services to internationally recognised certification and attestation standards.
Protection of personal information
Our Sites and Services uses commercial efforts to maintain safeguards for protection of your Personal Information
Raven360 takes reasonably necessary and appropriate measures to protect against the unauthorized access, use, alteration or destruction of potentially personally-identifying and personally-identifying information.
We do not respond to “Do Not Track” browser signals
We do not track our customers over time and across third party websites and so we don’t respond towards DO NOT TRACK(DNT) signals.
If you have questions or complaints regarding this Policy, you may contact us through email at email@example.com.If you have questions or complaints regarding this Policy, you may contact us through email at firstname.lastname@example.org.
Last Updated Date: 20.12.2022