How we commit to protecting your personal information

Effective date: Jan 01, 2018.

Hello, and welcome to our Privacy Policy. This Privacy Policy helps you to make informed decisions about your relationship with us, so please read it carefully.

We — meaning FacilityConneX, doing business as FacilityConneX LLC (also “we,” “us,” “our,” and “FacilityConneX”) — take very seriously the respect and protection of your privacy and security, and we are committed to fair practices that protect the information you share with us.

We’ve prepared this Privacy Policy to help you (the individual who uses this website, cloud service, mobile application, or engages with us directly by email or telephone) understand what are our information practices with respect to the collection, use, and disclosure of information we collect from you through applications that link to this Privacy Policy, and any other services we provide to our customers or end users (collectively, the “Service”).

Our commitments to employees are governed by our internal employment policies.

In all instances, we are committed to transparency with our customers and employees, and to protecting your data privacy.

If you have any questions or concerns about our use of your Personal Information, then please contact us using the contact details provided on our site https://facilityconnex.com.

Overview of the Sources of Personal Data

This Privacy Policy governs how we collect and process information obtained from your visits to our website, when you contact us directly (or interact with us via other media outlets and social media) about becoming a customer or to obtain other information, and when you engage with us as during onboarding, support, or any operational engagement.

All of the different forms of data, content, and information described below are collectively referred to as “information.”

1. Information We Collect and Store

When you interact with the Service, and in connection with our events, sales and marketing activities, we collect information that alone or in combination with other information could be used to identify you (“Personal Data”), as described below.

A. Information You Give Us

• We may collect your name, email address, phone number, username, as well as other information you directly give us on our website.
• For customers who have paid services, we collect your billing details such as credit card information, banking information, and/or billing address.
• We may also collect data from you including without limitation when you attend one of our events, during phone calls with sales representatives, during application onboarding, or when you contact customer support.

B. Information We Get from Others

• We may also receive Personal Information (for example, your email address) through other users, for example when they invite you to their FacilityConneX organization.

C. Information Automatically Collected

• We may collect information about you and the devices accessing our Service. For example, type of device, what operating system is used, application information, unique device identifiers and crash data. The type of information we collect depends on the type of device used and its settings.
• We may automatically log information about you and your computer. For example, when visiting our website, we log your computer operating system type, browser type, browser language, pages you viewed, how long you spent on a page, location, access times and information about your use of and actions on our website or the Service.
• When you visit our website or use our Service, we may use “cookies” (small data files that we transfer to your Device) to automatically recognize your device next time you visit.
  • A cookie is a small file, typically of letters and numbers, that a website sends to your browser that is then stored on your system. Cookies are used because they allow a website to recognize a user’s device. Information collected in this way can be used to identify you, unless you change your browser settings as set out below. Cookies do not typically identify you as an individual, just the device you are using.
  • We use cookies in a very limited capacity to enhance user experience, and to track patterns of user behavior on our website and services.
  • If you do not wish to receive cookies, please configure your Internet browser to erase all cookies from your computer’s hard drive, block all cookies, or to receive a warning before a cookie is stored. If you choose not to accept these cookies, your experience on our website or using our Service will not be impacted as a result, as our usage of cookies is limited to only tracking patterns of behaviors for purposes of improving our product.

D. Information Collected or Entered Using The Service

• We collect and store data with FacilityConneX collector services (“Data Collectors”) and we may associate all or a portion of this data with you.
• We store submitted contextual information that you associate with the data collected in the Service. This may include but is not limited to equipment names, descriptions, units of measure, geographic location, and comments.

We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offenses.

Changing or Deleting Your Information

You have the right to be ‘forgotten’. Send us an email at support@facilityconnex.com requesting the deletion of your account and removal of personal information, and we will delete your information unless we have another legal reason to hold your personal information (such as a legal claim or a regulatory requirement).

2. How We Use Personal Information

We use your personal information for the following purposes:

• To operate, maintain, and improve our site, products, and services.
• To be able to provide to our users products and services they request based on our contractual relationship.
• To respond to comments and questions, provide customer support, and diagnose issues that you may incur with the Service.
• To send information including confirmations, invoices, proposals, technical notices, updates, security alerts, and support and administrative messages. These communications are strictly necessary, and you may not opt out of them.
• To communicate system updates, promotions, upcoming events, and other news about products and services offered by us.
• To protect, investigate, and deter against fraudulent, unauthorized, or illegal activity.

3. Our Legal Bases for Processing Your Personal Information

In order to collect and/or use your personal information we have at least one of the following legal bases:

Consent

You have given us clear and explicit consent to process your personal information. If you have previously given consent to processing your information, you can withdraw such consent at any time. You can do this by emailing us at support@facilityconnex.com. If you do withdraw your consent, and if we do not have another legal basis for processing your information, we will stop processing your personal information.

Contract

Processing your information is necessary for a contract to be formulated and executed in order for us to be able to provide our products and services or because such information is necessary before entering into that contract.

Existing customers

If you have been our customer in the past, we may communicate with you via email, in order to inform you about products and services similar to the ones you showed interest in.

Legitimate interests

Processing your information is necessary for our legitimate interests, provided those interests are not outweighed by your rights and interests. These legitimate interests may include the following:

• Delivering, developing and improving our services and products.
• Ensuring that our website, platform, and infrastructure operate smoothly.
• Determining whether marketing campaigns are effective.
• Improving data security.
• Gaining insights from your behavior on our website in order to be able to offer you services and products that might be useful.

In each case, we found that these legitimate interests were not outweighed by your rights and interests. If you require further information about the process that FacilityConneX has undertaken to justify its reliance on the legitimate interest legal basis under the GDPR, please see Section ‘Contacting Us’ for further details on how to contact us.

Legal obligation

Processing your information is necessary for compliance with a legal obligation to which we are subject (for example to provide you with invoices, report to tax authorities etc).

4. How We Share Personal Information

Personal Data is never sold or shared with third parties for any purpose except as provided in this Privacy Policy. We may share personal information as follows:

• We may share information to technical service providers which may operate the technical infrastructure that we need to provide the Service, in particular providers which host, store, manage, and maintain the FacilityConneX application, its content and the data we host. As of the date this policy went into effect, we use Amazon Web Services to store some of your information (for example your username, email, and phone number). You can find more information on Amazon Web Services data security here.
• We also may share personal data with certain marketing and advertising partners to send you promotional communications about FacilityConneX.
• We may share information per our customers’ instructions.
• We may share information in compliance with any applicable law.
• We may share personal information for legal, protection, information security, and safety purposes. Examples include enforcing contracts or policies, reporting on security breaches, or assisting with investigating and preventing fraud or security issues.
• We may share information to comply with laws and regulatory requests. Examples include responding to lawful requests and legal or regulatory processes.
• We may share information to protect the rights and property of FacilityConneX, our agents, customers, and others. This includes enforcing our agreements, policies, and terms of use.
• We may share information with those who need it to do work for us. An example is granting a FacilityConneX employee the necessary access in order to perform his/her duties.
• We may share aggregated or anonymized data. We may disclose or use aggregated or anonymized data for any purpose. An example would be for marketing, analytics or research purposes.
• We will not share personal information with investors of the Company beyond any personal information that such investors are entitled to for customary legitimate business purposes.
• We may share other information with third parties when we have consent to do so.
• We may share information in those cases where we sell or negotiate to sell our business to a buyer or prospective buyer. In this situation, FacilityConneX will continue to ensure the confidentiality of your personal data and give you notice before your personal data is transferred to the buyer or becomes subject to a different Privacy Policy.

5. European Economic Area and GDPR

To the extent that the FacilityConneX website and services are used to collect, process or store personal data belonging to individuals located in, or employed by entities located in a member state of the European Economic Area (i.e. EU, Norway, Lichtenstein, Iceland), our handling of that data adheres to the European Union’s General Data Protection Regulation (GDPR) provisions.

Although we use reasonable efforts to verify the accuracy of data submitted by users of the FacilityConneX website, users are expected to notify support@facilityconnex.com, when necessary, to ensure that their personal data is accurate, complete and current.

We are committed to cooperating with data protection authorities located in Europe to resolve and remedy any disputes that arise regarding data connected to individuals located in (or employed by entities located in) Europe.

Salesforce.com has also committed to compliance with EU GDPR standards.

8. Security

To protect your personal data against accidental or unlawful destruction, loss or alteration and against unauthorized disclosure or access, FacilityConneX uses reasonable commercial efforts to secure its computer and networks systems.

We protect your data using technical measures to minimize the risks of misuse, unauthorized access, unauthorized disclosure, loss or theft, and loss of access. We take our data security very seriously. Therefore, the security mechanisms used to protect your data are monitored, logged, checked, and updated regularly to provide effective protection against abuse.

Manually entered Personal Data is not stored on the FacilityConneX website but sent to Salesforce.com for storage and processing. Salesforce has security built into every layer of the Platform. The infrastructure layer comes with replication, backup, and disaster recovery planning. Network services have encryption in transit and advanced threat detection. Application services implement identity, authentication, and user permissions. There is an additional layer of trust with Salesforce Shield, including Platform Encryption, Event Monitoring, and Field Audit Trail. For additional information on Salesforce.com security, please contact Salesforce.com.

Despite our best efforts, however, security cannot be absolutely guaranteed against all threats. If you believe that the security of your data has been compromised, or if you would like more information on the measures we use to protect your data, please contact us at support@facilityconnex.com. If FacilityConneX believes that the security of your data has been compromised, we will notify you, as well as the applicable authorities, within 72 hours of the issue identification to inform you of the breach and the recommended actions.

If you choose not to have your personal data stored and used to support our customer relationship (e.g. email marketing, telemarketing, direct marketing or market research), we will respect your choice, and you may decline these services at any time and your information will be deleted.

9. Our Policy Toward Children

Our Services are not offered to persons under 18. We do not knowingly collect personal data / personally identifiable information from children under 18. If a parent or guardian becomes aware that his or her child has provided us with Personal Information without their consent, he or she should contact us at support@facilityconnex.com. If we become aware that a child under 18 has provided us with Personal Information, we will take steps to delete such information from our systems.

10. External Links

Our Site includes links to other websites whose privacy practices may differ from those of FacilityConneX. If you submit personal information to any of those sites, your information is governed by their privacy statements. We cannot control or be held responsible for third parties’ privacy practices and content. Please read their privacy policies to find out how they collect and process your personal data.

11. Changes to our Privacy Policy

This Privacy Policy may change from time to time. If we make a change to this privacy policy that we believe materially reduces your rights, we will provide you with notice (for example, by email). And we may provide notice of changes in other circumstances as well. By continuing to use the Service after those changes become effective, you agree to be bound by the revised Privacy Policy.

12. Contacting Us

Thank you for reading our Privacy Policy. If you have any questions about this Policy, please contact us at support@facilityconnex.com or 138 Industrial Park Road, Plymouth, MA 02360, United States.

13. Consent

By using the Service or contacting us directly, you signify your acceptance of this Privacy Policy. If you do not agree to this Privacy Policy, you should not engage with our website, or use the Service. Continued use of the website, direct engagement with us, or following the posting of changes to this Privacy Policy that do not significantly affect the use or disclosure of your personal information will mean that you accept those changes.