NoviSign is committed to ensuring that your privacy is protected. Should we ask you to provide certain information by which you can be identified when using this website, then you can be assured that it will only be used in accordance with this privacy statement.
NoviSign may change this policy from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes. This policy is effective from 23-May-2018.
What personal information do we collect from the people that visit our blogs, websites or apps?
We post user testimonials on our website. These testimonials may include names and other Personal Information and we acquire permission from our users prior to posting these on our website. NoviSign is not responsible for the Personal Information users elect to post within their testimonials.
When do we collect information?
We collect information from you when you register on our site or enter information on our site. Also, we collect information when you visit our websites and use our solution.
What we collect?
We may collect the following information:
• Full name and job title.
• Contact information including phone numbers, mail address, home address and email address.
• Company name, address and website.
• Position in the company.
• Country name.
For the digital signage players, we may also collect the external IP address, browser type, browser version, browser language, operating system, timezone, app version, errors generated and other player related information.
For how long do we collect?
The above mentioned information which we collect will remain at our databases with no expiration date, until you ask ask to delete that data (probably, in case you decide to end our services).
How do we use your information?
We may use the information we collect from you when you register, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, surf the websites, or use certain other site features in the following ways:
• Internal record keeping.
• We may use the information to improve our products and services.
• To personalize user’s experience and to allow us to deliver the type of content and product offerings in which you are most interested.
• To allow us to better service you in responding to your customer service requests.
• From time to time, we may also use your information to contact you for your order, subscription, market research or other products, services and news. We may contact you by email, phone, fax or mail. We may use the information to customize the website according to your interests.
Our primary goal is to improve upon and make sure our services and messaging are relevant for all our users, while also ensuring that personal information of all users is respected and protected.
To respond to legal requests or prevent fraud, we may need to use and disclose information or data we hold about you. If we receive a subpoena or other legal request, we may need to inspect the data we hold to determine how to respond. We collect and use the above mentioned data on the basis that we have to use this information in order to fulfill our contract with you.
Where do we store the information?
The above mentioned information which we collect will be stored in our cloud servers in the U.S.A. (Amazon S3 and GoDaddy.com). We use Google Analytics, but with anonymization. We also use AgileCRM service which, according our best knowledge, has its servers in the U.S.A., too.
Security: How do we protect visitor information?
We are committed to ensuring that your information is secure. In order to prevent unauthorized access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.
We adopt industry appropriate data collection, storage and processing practices and security measures, as well as physical security measures to protect against unauthorized access, alteration, disclosure or destruction of your personal information, username, password, transaction information and data stored in your user account.
Access to your name and email address is restricted to our employees who need to know such information in connection with providing NoviSign Services to you and are bound by confidentiality obligations.
We do not use vulnerability scanning and/or scanning to PCI standards.
We do collect credit card information, but did not know PCI compliant scans are now required.
We do not use Malware Scanning.
We use an SSL certificate, unless you are a white labeled partner (reseller).
We do not delete data from NoviSign’s services unless your request us to do so. In order to prevent loss of data due to errors or system failures, we also keep backup copies of data including the contents of your user account. Hence, your files and data may remain on our servers even after deletion or termination of your user account.
Like most websites today, our web servers keep log files that record data each time a device accesses our servers. The log files contain data about the nature of each access, including originating IP addresses, the files viewed on our site (e.g., HTML pages, graphics, etc.), operating system versions, device type and timestamps.
Who is my data controller?
Your data controller is NoviSign to the extent that it is processing your personal data.
Do we use ‘cookies’?
• Understand and save user’s preferences for future visits.
• Provide better services based on your interests.
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser (like Internet Explorer) settings. Each browser is a little different, so look at your browser’s Help menu to learn the correct way to modify your cookies.
If users disable cookies in their browser:
If you disable cookies off, some features will be disabled It will turn off some of the features that make your site experience more efficient and some of our services will not function properly.
We do not sell, trade, or otherwise transfer to outside parties your personal identifiable information.
Our websites (www.novisign.com and digital.signage.software) may contain links to other websites of interest. However, once you have used these links to leave our sites, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.
We do not specifically market to children under 18.
Generally, our services are not intended for and may not be used by minors. “Minors” are individuals under the age of 13 (or under a higher age if permitted by the laws of their residence). NoviSign does not knowingly collect personal data from Minors or allow them to register. If it comes to our attention that we have collected personal data from a Minor, we may delete this information without notice. If you have reason to believe that this has occurred, please contact customer support at firstname.lastname@example.org.
Fair information practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices and GDPR we will take the following responsive action, should a data breach occur:
We will notify the users via email within 3 business days and will notify the European Union relevant officer within 24 hours from the moment we know of such a data breach.
We also agree to the Individual Redress Principle, which requires that individuals have a right to pursue legally enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
To be in accordance with CANSPAM we agree to the following:
If at any time you would like to unsubscribe from receiving future emails, you can email us at email@example.com and we will promptly remove you from ALL correspondence.
Controlling your personal information
You may choose to restrict or delete (the right “to be forgotten”) the collection or use of your personal information by writing to or emailing us at firstname.lastname@example.org.
We will not sell, distribute or lease your personal information to third parties unless we have your permission or are required by law to do so. We may use your personal information to send you promotional information about third parties which we think you may find interesting if you tell us that you wish this to happen.
You may request details of personal information which we hold about you under the Data General Data Protection Regulation (“GDPR” – Regulation (EU) 2016/679). If you would like a copy of the information held on you please write to email@example.com.
If you believe that any information we are holding on you is incorrect or incomplete, please write to or email us as soon as possible, at the above address. We will promptly correct any information found to be incorrect.
Upon request and once we have verified your identity, we will provide you with information about whether we hold any of your personal information. Users who wish to correct, update or remove any personal information, including those from a public forum, directory or testimonial on our site, may do so either by accessing their user account or by contacting NoviSign customer support services at firstname.lastname@example.org. Such changes may take up to 48 hours to take effect.
We respond to all inquiries within 30 days.
We reserve the right to charge a fee where permitted by law, especially if your request is manifestly unfounded or excessive.
- All information of a confidential or sensitive nature on paper or electronic media must be securely destroyed when it is no longer required or in accordance with the company’s SLA or upon customer request.
- All information, in any format, destroyed from any location must have due regard to confidentiality of company’s employees and customers.
- When records are disposed of, on-site or off, it is important to use methods that do not allow future use or reconstruction.
- Data that is retained on backups would be disposed of in accordance with the backup retention policy.
Last Edited on 2019-May-16