Privisol

Privacy Policy

Policy Statement 

Your privacy is very important to Privisol (“we,” and/or “us”). We are dedicated to the responsible collection, use, maintenance and disclosure of personal information and are committed to comply with applicable privacy rules and regulations. This Privacy Policy explains how we collect, use, and share information collected from including its domain and subdomains as well as any software, platform, or application owned or licensed by Innovaccer (collectively, the Services).

In addition to the activities described in this Privacy Policy, we process information provided by our customers when they use our Services. Our customers use our Services to run their businesses and provide Services to their end users, which involves collecting information about their end users. 

To understand how a customer uses information about Data Subject, Data subjects can refer to the customer’s privacy policy.

Scope

This Data Protection Policy covers all employee/s, customers, suppliers, external consultants, partners, contractors and any other external entity.

Definitions 

• Personal Data:  Information relating to an identified or identifiable natural person.
• Data Subject: An identified or identifiable natural person to whom the personal data relates.
• Data Controller: The entity that determines the purposes and means of processing personal data.
• Data Processor: The entity that processes personal data on behalf of the data controller.
• Processing: Any operation performed on personal data, such as collection, storage, use, or destruction.
• Special Category of Data: Personal data revealing racial or ethnic origin, political opinions, religious beliefs, genetic data, biometric data, health data, sex life, or sexual orientation.
• Data Subject Consent: Any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data.
• Personal Data Breach: A breach of security leading to the accidental, or unlawful, destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed.
• Service/s: Privisol provides an AI-driven software-based Compliance related Auditing services. Our platform uses advanced machine learning and artificial intelligence algorithms to analyses the documents and evidences provided by the user to provide a detailed audit report.

Data Protection Principles

• Lawfulness, Fairness, and Transparency: Personal data must be processed lawfully, fairly, and transparently.
• Purpose Limitation: Data is collected for specified, explicit, and legitimate purposes and not further processed in a manner incompatible with those purposes.
• Data Minimization: Data collected must be adequate, relevant, and limited to what is necessary for the intended purposes.
• Accuracy: Personal data must be accurate and kept up to date.
• Storage Limitation: Personal data should be kept in a form that permits identification of data subjects for no longer than necessary.
• Integrity and Confidentiality: Data must be processed in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.
• Accountability: Organization is responsible for, and can demonstrate compliance with, these principles.

Data Subject Rights

• Right to be Informed: Data subjects have the right to be informed about the collection and use of their personal data.
• Right of Access: Data subjects have the right to access their personal data and supplementary information.
• Right to Rectification: Data subjects have the right to have inaccurate personal data rectified or completed if it is incomplete.
• Right to Erasure (Right to be Forgotten): Data subjects have the right to request the deletion or removal of personal data when there is no compelling reason for its continued processing.
• Right to Restrict Processing: Data subjects have the right to restrict the processing of their personal data in certain circumstances.
• Right to Data Portability: Data subjects have the right to obtain and reuse their personal data for their own purposes across different services.
• Right to Object: Data subjects have the right to object to the processing of their personal data in certain circumstances.
• Rights Related to Automated Decision-Making and Profiling: Data subjects have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal or similarly significant effects.

Lawful Basis 

Privisol collects and processes data based on legal grounds such as consent, contractual necessity, compliance with legal obligations for the performance of a task carried out in the fulfilment of the business activities.

Information We Collect 

• Name of the organization
• Documents required for Auditing Purpose
• Evidences Provided in support if the documents
• Other internal information which is necessary for the purpose of auditing

Use of Information 

Privisol uses the collected data for various purposes:

• To provide and maintain the Service
• To allow you to participate in interactive features of our Service
• To provide customer care and support
• To provide analysis or valuable information so that we can improve the Service
• To monitor the usage of the Service
• To detect, prevent and address technical issues

Information Provided to other Users

Any Information that you voluntarily choose to include on or through the Services, including information in a publicly accessible area of the Services (such as a public profile page) or information you share with or allow to be shared with other users, will be available to anyone who has access to that content, including other users. Privisol is not responsible for the privacy practices of the other users who will view and use the posted information.

Information from cookies 

We do not collect any data from cookies. Our platform operates without the use of tracking or storing information through cookies, ensuring your browsing privacy is maintained.

Children’s Privacy 

We do not collect, maintain, or use personal information of children under and no part of our Services are directed to children.

Disclosure of Information or Disclosure of information to any third Parties 

Privisol may disclose your Personal Data in the good faith belief that such action is necessary to:

• To perform the contractual obligation (our customers who uses our services for their end users)
• To comply with a legal obligation
• To protect and defend the rights or property of Privisol
• To prevent or investigate possible wrongdoing in connection with the Service
• To protect the personal safety of users of the Service or the public
• To protect against legal liability

Data Retention 

Data can be lawfully retained only for as long as retention is necessary to achieve the legitimate business purpose for which the data is collected and processed. Ensuring compliance with this requirement means that Privisol and its employees must proactively manage personal information retention periods. In addition Privisol has a separate Data Retention Policy in place.

Disposal of Data 

Personal data shall be disposed of securely, in accordance with the sixth principle of the GDPR. Thus, processed in an appropriate manner, to maintain security, thereby, protecting the “rights and freedoms” of data subjects. Any disposal of data shall be done in accordance with the Secure Disposal Procedure.

Security of Information  

The security of your data is our top priority. Privisol implements robust security measures and follows industry best practices to protect your personal information. While no method of transmission over the Internet or electronic storage is completely infallible, Privisol is committed to using the most advanced and reliable methods available to ensure the safety of your data. Your trust is paramount to Privisol, and Privisol continuously works to enhance security protocols to safeguard your personal information.

Changes to this Privacy Policy

We may change this Privacy Policy and will post any changes on this page. The revised version will be effective when it is posted. We will also provide appropriate notice and choices to you, through the Services, by email, or other communication, if we materially change the ways in which we use or share personal information previously collected from you through the Services. You may also visit this Privacy Policy to learn of any updates.

Contact Details 

At Privisol, we are committed to resolving concerns about your privacy and our collection or use of your Personal Information. For any questions or inquiries, you may contact Privisol at humans@privisol.org .

Contact to Appropriate Authority 

In case of any complaint you can reach our Data Protection Officer for you at dpo@privisol.org.