Effective Date: 29/10/2024
Last updated: 04/11/2024
Welcome to Asaya Labs (“we,” “us,” or “our”). We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform. Please read this policy carefully to understand our practices regarding your personal data.
1. Who We Are
Asaya Labs is a software-as-a-service (SaaS) provider focused on performance management solutions. We are committed to safeguarding the privacy of our users and complying with the General Data Protection Regulation (GDPR) and other applicable privacy laws within Sweden and the European Union.
2. Information We Collect
We collect personal data to provide our services effectively and enhance the user experience on our platform. The types of data we collect include:
- User-Provided Data: Information that you or your organization provide to us, including names, roles, genders, titles, performance and engagement data, and employment details.
- Usage Data: Information collected automatically about your use of our platform, such as IP addresses, browser type, pages visited, actions taken, and other interaction data.
3. How We Use Your Information
We process personal data for the following purposes:
- To Provide and Improve Services: This includes using data to deliver core platform functionalities, analyze usage patterns, and enhance user experience.
- Service Analytics: To monitor and analyze usage and trends, helping us improve the platform’s performance and efficiency.
4. Legal Basis for Processing
We process personal data based on your consent. By using our platform, you consent to the collection and processing of your information in accordance with this Privacy Policy.
5. Sharing Your Information with Third-Party Processors
We may engage third-party service providers to assist us in delivering and improving our services. These service providers may have access to your information in the course of performing specific functions on our behalf, such as hosting, data analysis, customer support, and marketing assistance. While we take steps to ensure that these service providers adhere to appropriate privacy and security practices, we cannot control their actions or guarantee their compliance with our policies.
6. User Rights
In accordance with GDPR, you have the following rights regarding your personal data:
- Access: Request access to your data.
- Rectification: Correct inaccurate or incomplete data.
- Erasure: Request deletion of your data.
- Restriction: Limit processing under certain circumstances.
- Portability: Request transfer of your data to another organization.
- Withdrawal of Consent: Withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
To exercise any of these rights, please contact us at privacy@asayalabs.com.
7. Data Retention
- Anonymous Analytics Data: Stored indefinitely for long-term trend analysis and service improvement.
- User Data for Accounts: Retained for 1 year if the account remains inactive, unless otherwise agreed. This retention period may be extended if required for compliance with legal obligations.
- Legal Compliance Data: Stored according to specific legal requirements applicable to our business and jurisdiction.
After the applicable retention period, personal data will be securely deleted or anonymized according to our data retention procedures.
8. Security Measures
We take appropriate technical and organizational security measures to protect your personal data, including encryption, access controls, and data pseudonymization, to safeguard your information from unauthorized access, alteration, or deletion.
9. Cookies and Tracking Technologies
We use cookies to ensure the proper functionality of our platform and improve user experience. This includes:
- Essential Cookies: Required for the basic operation of our website.
- Analytics Cookies: Used to analyze platform usage and improve services.
You may adjust your browser settings to block cookies or notify you when cookies are used. However, some features may not function as intended without cookies.
10. International Data Transfers
Asaya Labs may transfer anonymous usage data outside the EU for processing and analytics purposes. We ensure that any data transfers meet GDPR requirements by only transferring non-identifiable information. All other data and applications, except for analytics data, are stored within the EU (AWS data centers in Stockholm, Sweden) and are never transferred outside the EU.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make changes, we will update the effective date and notify you through appropriate means. We encourage you to review this policy periodically.
12. Contact Us
If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at privacy@asayalabs.com.