We know that our visitors, customers, experts, speakers, participants in the events we organize and anyone who provides us with personal data (hereinafter "you", "your"), regardless of the channel, are concerned about the security and confidentiality of your personal data. We are therefore committed to building a trusted relationship with you and being completely transparent about your personal data. We want you to know how we use and protect the personal data you provide to us.
In addition, we are part of a group of companies operating in several countries around the world. Therefore, we are committed to collecting and processing personal data in compliance with all applicable laws and regulations, including the California Consumer Privacy Act of June 2018 (CCPA) with an effective date of January 1, 2020, the NEVADA SB-220 of May 29, 2019 with an effective date of October 1, 2020 (NEVADA SB-220) as well as the European General Data Protection Regulation of 27 April 2016 (GDPR) with an effective date of May 25, 2018 and similar laws in other countries that concern collecting and processing personal data or information (hereinafter "Personal Data Protection Laws and Regulations").
We collect personal data from you, through our interactions with you when you visit our website, request us to contact you via our online web forms, register to use the products and services which we market for subscription available on our website (the "Service(s)"), attend or register to attend webinars or other events we may organize.
You provide some of these data directly, and we get some of them by collecting data about your interactions, use, and experiences with our Services. The data we collect depend on the context of your interactions with us and the choices you make when you visit our website, submit forms, use our Services and participe to the events we organize.
In any case, we only collect and process personal data necessary for the management of our relationship, the use of our Services and the improvement of your user experience. For this purpose, you may be requested to provide the following data for provision of Services:
To do this, Thinkcurity ensures it collects and processes only data that is adequate, relevant and limited to what is necessary for the purposes for which it is processed. This is how we respect the principle of data minimization set by the Personal Data Protection Laws and Regulations.
The data we collect has a specific purpose, and is not used for other purposes. Our purposes are determined, legitimate, explicit and compatible with our missions, in this case the management of our relationship, the use of our Services and the improvement of your user experience.
In addition, we may also use your personal data to contact you regarding our future events.
The defined purpose determines the relevance of the data to be collected: only data that is adequate and strictly necessary to achieve the purpose is collected and processed by Thinkcurity.
According to the Personal Data Protection Laws and Regulations, Thinkcurity informs and encourages its employees to inform the person from whom personal data is collected:
Where the controller intends to further process the personal data for a purpose other than that for which the personal data were collected, the controller shall provide the data subject prior to that further processing with information on that other purpose and with any relevant further information as referred to in this section 3.
We do not share your personal data with third parties; we do not trade them and we do not sell them.
Your personal data is therefore intended only for specific recipients, entitled to receive it, in this case and according to the case, Thinkcurity and its affiliated companies, namely Trackforce (trackforce.com), Valiant (valiant.com) and Silvertrac (silvertracsoftware.com), as well as our subcontractors, but only for the purpose of providing our Services.
We only retain your personal data for the time required for the operations for which it was collected and in compliance with the Personal Data Protection Laws and Regulations.
Your personal data will be automatically deleted after a maximum of 5 years after the end of the contractual relationship.
Data on prospects is retained for up to 3 years from the last contact between Thinkcurity and the prospect.
Thinkcurity determines and implements the means necessary for the protection of personal data to avoid risks resulting in particular from the destruction, loss, alteration, unauthorized disclosure of personal data transmitted, retained or otherwise processed, or from unauthorized access to such data, accidentally or unlawfully.
These means consist of appropriate technical and organizational measures to ensure a level of security adapted to the risk, and include inter alia, as required:
In particular, access to data is secured by strong security systems.
The protection policy for personal data processed by Thinkcurity is thus organized around logical, physical or organizational measures.
Thinkcurity defines and implements the rules of access and confidentiality applicable to personal data processed.
Only duly authorized persons can therefore access certain data details, within the framework of a security policy in particular restricting access to only that data necessary for the activity.
Access rights, granted in accordance with the user's function, are updated in case of an upgrade or change of function.
In principle, Thinkcurity does not transfer your personal data from one country or subsidiary to another worldwide.
If such a transfer were to be necessary, in this case to a country outside the European Union, that transfer would be part of the purpose of the processing for which the data is intended.
In this case, data recipients would only have communication of the categories of data necessary for the achievement of that purpose.
More generally, Thinkcurity would transfer personal data only in accordance with the provisions of articles 44 to 50 of the GDPR.
Pursuant to the Personal Data Protection Laws and Regulations (in particular the GDPR), Thinkcurity has appointed a Data Protection Officer (DPO) directly reporting to its CEO.
The DPO constantly ensures compliance of all processing of personal data by Thinkcurity and its affiliates.
Complaints on the use, retention and disposal of your personal data can submitted via email to firstname.lastname@example.org accompanied by proof of your identity, your signature and the subject matter of your complaint.
For European Union data subject, you have the right to lodge a complaint with a supervisory authority concerning Thinkcurity’s personal data processing activities. If you believe, after contacting Thinkcurity, that your rights on your personal data are not respected, you can lodge a complaint with the data supervisory authority of your country whose email address appears on its website.