Legal 

VAULT PRIVACY POLICY

Last modified: 10 02 2021

PLEASE READ THIS PRIVACY POLICY CAREFULLY.

This Privacy Policy is designed to tell you (the Subscriber or you) what will happen to the information Subscribers provide through our website, our Vault Enterprise platforms, any of our mobile or tablet applications or services, or through any other form of communication with Vault IQ AU Pty Ltd ACN 600 563 568 or Vault IQ NZ Ltd NZBN 9429034599266 (Vault, us or we), or other bodies corporate that we control, that controls us, or that is under common control with us, employees, officers, agents or contractors (Related Parties).  Please be sure to read this entire Privacy Policy before using our website, our Vault Enterprise Platforms, any of our mobile applications, or submitting personal or sensitive information to us or our Related Parties, and by doing so Subscribers consent to the data practices described in this Privacy Policy.  In this Privacy Policy, a reference to an Order means an order for a service provided by us and a reference to Data means any data created or stored by you using a Vault service, which may include personal and sensitive information.

Data Ownership

The Subscriber retains full ownership for all Data that they input, and all Data they may contract another party to input, for the purpose of using a Vault service.

We make no claim to any Data, or any other miscellaneous information, the Subscriber may provide to us pursuant to an Order for a Vault service.

We will only use information that you provide in accordance with this Privacy Policy and for the purposes stated in any applicable Order or terms of service.

Personal Information

This Privacy Policy concerns any personal information or sensitive information which is provided to us. For the purpose of this Privacy Policy:

• Personal information is any information about an identified individual or an individual who is reasonably identifiable, whether the information is true or not and whether the information is recorded in a material form or not.

• Sensitive information is any personal information about racial or ethnic origin, political opinions, membership of a political association, religious beliefs or affiliations, philosophical beliefs, membership of a professional or trade association, membership of a trade union, sexual orientation or practices, criminal record, health, genetics, biometrics or biometric templates.  We will collect, use or disclose sensitive information provided by Subscribers in accordance with this Privacy Policy but only as allowed by law, for example where we have received consent to do so (if consent is legally required) or the collection is required by law.

Consent and confirmation

By using our websites, using our Vault Enterprise platforms or any of our mobile applications, or otherwise providing us directly, or through others, with personal or sensitive information, Subscribers:

• agree with the terms of this Privacy Policy;
• consent to the collection, use, and disclosure of that information in accordance with this Privacy Policy and applicable privacy laws; and
• confirm that they have obtained all necessary consents in relation to the disclosure of personal or sensitive information to Vault.

Passive information collection

As Subscribers navigate through our websites, our Vault Enterprise platforms and access and use any of our mobile applications, certain information can be passively collected (that is, gathered without anyone actively providing the information) through various technologies, such as cookies, internet tags or web beacons and navigational data collection.

Our websites and mobile applications may use and combine such passively collected anonymous information to provide better services to our customers, website visitors and mobile application users, customise the website, our Vault Enterprise platforms and mobile application based on users preferences, compile and analyse statistics and trends and otherwise administer and improve the website, our Vault Enterprise platforms and mobile applications for our Subscribers’ use.  Such information is not combined with personally identifiable information collected elsewhere on the websites, our Vault Enterprise platforms or through the mobile application unless we have received consent to do so.

How we collect personal information

We collect personal information that is necessary for our business activities and in order to provide and develop our services.  We may do this in a number of ways, including:

• directly from our Subscribers when they provide it to us or our Related Parties;
• directly from our Subscribers’ systems when they provide or otherwise facilitate an electronic connection to our system or the systems of any of our Related Parties;
• from publicly available resources; or
• by analysing our own records of our Subscribers use of our services, websites and mobile applications.

We also may collect personal information when legally required to do so.

What personal information do we collect and why?

The type of personal information we collect may include, names, dates of birth, addresses, postcodes, telephone numbers, email addresses, licences, certifications, medical information, credit card information and information on how people use, and preferences regarding, our products and services.  If we are not provided with the personal information that we request, we may not be able to meet the requests of our Subscribers or provide our products or services to Subscribers.

The personal information Subscribers provide us may be used for a number of purposes connected with our business operations, which include to:

• verify identity;
• facilitate provision of our products and services;
• address or respond to any requests from Subscribers;
• inform Subscribers of existing and proposed products and services which we provide;
• better understand Subscribers’ needs in relation to the products and services that we provide; and
• develop and improve the quality and scope of the products and services we provide, and seek feedback.

Personal information may be used so that we and/or Related Parties can provide Subscribers with information about our products and services, such as by way of direct mail or telemarketing, and, where Subscribers have opted in, by email, Push Notifications, SMS and MMS, or to request feedback for promotional purposes.  Subscribers always have the right to opt-out of receiving such information.  Subscribers may exercise that right by contacting us as set out below or by using the opt out facility provided in the message.

We may also use personal information for purposes related to those described above which would reasonably be expected by our Subscribers.

We will not use information for purposes other than those described above unless we have obtained consent or as permitted or required by law (including for law enforcement or public health and safety reasons).

Our websites and mobile applications are not intended for children under the age of 16.  We will not knowingly collect information about children under the age of 16 or from website visitors and mobile application users in this age group. If you believe we have collected information about a child under 16, please contact us so that we may delete the information.

Sharing personal information

We may disclose personal information in certain circumstances, such as where we are required or authorised by law or where we have obtained consent to us doing so.

We also may disclose personal information to:

• others in accordance with a request made by the Subscriber concerned;
• our Related Parties and business partners;
• our data storage providers; and
• persons engaged in providing us with professional, business, technology and corporate services, when reasonably required.

When making such a disclosure we will take reasonable steps to ensure that the recipient is bound by privacy obligations.

Unless we have obtained consent, we otherwise will not disclose personal information to third parties other than as set out above.

Retention of information

We generally retain personal information for as long as we consider it potentially useful and then we securely delete the information, however we only retain personal information for as long as we are legally entitled to. Unless legally prohibited from doing so, we will delete this information from our servers following termination of a Subscriber’s subscription or at an earlier date if Subscribers request.

We will only send personal information outside the country specified in your order:

• if we are authorised to do so by law;
• for any of the purposes set out in this Privacy Policy (but only to parties that are subject to obligations in relation to personal information no less onerous than those in this Privacy Policy); or
• if we have obtained consent to us doing so.

In the course of our ordinary business operations we commonly store personal information with third party data storage providers located in the following countries:

• Australia (in which case the backup location is Australia).
• New Zealand (in which case the backup location is New Zealand).
• Singapore (in which case the backup location is Hong Kong).

Access and correction

Subscribers may request access to any of the personal information we hold about them or their Related Parties or Users by contacting us as specified below.  Where legally permitted, we reserve the right to charge a reasonable fee for the costs of retrieval and supply of any requested information.

We will take steps to ensure that the personal information we collect, use or disclose is accurate, complete and up to date.  To ensure personal information is accurate, please notify us of any errors or changes to personal information provided by Subscribers and we will take appropriate steps to update or correct such information in our possession.

Storage and security

We provide a number of options for Data storage which can be selected when the Subscriber completes an Order with us. These options can include data sovereignty for stored and backup Data, or options to securely encrypt stored Data.

We will take reasonable steps to safeguard information provided by Subscribers from loss, misuse, interference, unauthorised access, modification or disclosure.

Links to other websites

Our website, Vault Enterprise platforms and mobile applications may contain links or references to other websites and applications to which this Privacy Policy may not apply.  Subscribers should check their own privacy policies before providing personal information.

Complaints

If Subscribers have any questions or concerns about our collection, use or disclosure of personal information, or if Subscribers believe we have not complied with this Privacy Policy or the Act, please contact us as set out below.  One of our senior employees will investigate the complaint and determine whether a breach has occurred and what action, if any, to take. We will act in accordance with our internal Privacy Breach Policy and applicable law if the initial investigation reveals a breach of this Privacy Policy.

Vault and our Related Parties will take any privacy complaint seriously and will aim to resolve any such complaint in a timely and efficient manner, and our target response time is 5 days.

Vault and our Related Parties expect our procedures will deal fairly and promptly with complaints. However, if Subscribers remain dissatisfied, they can also make a formal complaint with the official authority for privacy and information in the jurisdiction of the service location specified in your Order.  In Australia, this authority is the Officer of the Australian Information Commissioner (which is the regulator responsible for privacy in Australia) who can be contacted as follows:

In New Zealand, this authority is the Office of the Privacy Commissioner (which is the regulator responsible for privacy in New Zealand) who can be contacted as follows:

How to contact us

Subscribers wishing to exercise rights to opt-out of receiving our marketing materials, or having any questions or concerns about this Privacy Policy or our information practices (including whether and what type of health information we hold about them or their Related Parties), should contact us by:

Telephone

1300 723 240 Australia

0508 475 2846 New Zealand

Post

Attn: General Manager

Australia: 145-147 Bouverie Street, Carlton, 3053, Melbourne, Victoria, Australia.

New Zealand: Level 1, 106 Wrights Road, Christchurch, 8024, New Zealand.

Email

privacy@vaultintel.com

Changes to this Privacy Policy

Our Privacy Policy may change from time to time as updated on our website.  Before providing us with personal information, please check this Privacy Policy on our website for any changes. We will also notify Subscribers of any updates to the policy.

Policy Versions

Version One: 22nd December 2016

Version Two: 10 Feb 2021

Damstra Solo Privacy Policy

 10 02 2021

Damstra Technology (“Damstra”) owns the Damstra Solo app (“Solo” , ”App” , ”Application”) which is a Commercial app offered to businesses (“Workforce Manager” , ”Subscriber”) that manage workforce, and not directly to individual users. This SERVICE is provided by Damstra Technology and is intended for use as is.

This page is used to inform visitors regarding our policies with the collection, use, and disclosure of Personal Information if anyone decided to use our Service.

Damstra Solo is designed to manage the performance and protection of your workforce, no matter where they are in the world. Protect what matters with a complete ecosystem of intelligence-backed tools designed to give your people and business the assurance they need to do what they do best.

If you choose to use our Service, then you agree to the collection and use of information in relation to this policy. The Personal Information that we collect is used for providing and improving the Service. We will not use or share your information with anyone except as described in this Privacy Policy.

The terms used in this Privacy Policy have the same meanings as in our Terms and Conditions, which is accessible at Damstra Solo unless otherwise defined in this Privacy Policy.

Information Collection and Use

For a better experience, while using our Service, your Workforce Manager may require you to provide them with your Contact Information and consent that they use to create your access to the app.

While using the application, we may require you to provide us with certain personally identifiable information while using the app, including but not limited to the following:

• Geographic Information System (GIS) data
• Accelerometer
• Mobile device information and application analytics, including IP address and device indentifiers

The application also has features for the following services:

• Sending and receiving of alerts
• In-App Messages
• Requiring answers to questions upon meeting event criterias

The information that we request will be retained by us and your Workforce Manager, and used as described in this privacy policy. The Subscriber, as the Data Controller, controls how data is processed by Damstra, being the Data Processor. Ultimately, the app user (“Individuals” , ”Data Subject”) maintains ownership over their personal information.

We, at Damstra, will never sell your data to external parties for marketing or other purposes not related to the performance of your duties.

The app does use third party services that may collect information used to identify you. Link to privacy policy of third party service providers used by the app

• Google Play Services
• Apple

If the subscriber avails of the SoloDrive add-on feature, we will periodically access and collect information about your phone and driving activity that can be detected by the phone, including the speed of your automobile, braking habits, distracted driving, distances and precise routes driven, other driving events and behaviour, etc. which we will share with the third party service provider Zendrive who will analyze the driving data. The data to be shared are non-personally identifiable information that cannot be used on it own to trace, or identify a person. Link to privacy policy of Zendrive

• Zendrive

Log Data

We want to inform you that whenever you use our Service, in a case of an error in the app we collect data and information (through third party products) on your phone called Log Data. This Log Data may include information such as your device Internet Protocol (“IP”) address, device name, operating system version, the configuration of the app when utilizing our Service, the time and date of your use of the Service, and other statistics.

Cookies

Cookies are files with a small amount of data that are commonly used as anonymous unique identifiers. These are sent to your browser from the websites that you visit and are stored on your device's internal memory.

This Service does not use these “cookies” explicitly. However, the app may use third party code and libraries that use “cookies” to collect information and improve their services. You have the option to either accept or refuse these cookies and know when a cookie is being sent to your device. If you choose to refuse our cookies, you may not be able to use some portions of this Service.

Service Providers

We may employ third-party companies and individuals due to the following reasons:

• To facilitate our Service;
• To provide the Service on our behalf;
• To perform Service-related services; or
• To assist us in analyzing how our Service is used.

We want to inform users of this Service that these third parties have access to your Personal Information. The reason is to perform the tasks assigned to them on our behalf. However, they are obligated not to disclose or use the information for any other purpose.

Security

We value your trust in providing us your Personal Information, thus we are striving to use commercially acceptable means of protecting it. But remember that no method of transmission over the internet, or method of electronic storage is 100% secure and reliable, and we cannot guarantee its absolute security.

Links to Other Sites

This Service may contain links to other sites. If you click on a third-party link, you will be directed to that site. Note that these external sites are not operated by us. Therefore, we strongly advise you to review the Privacy Policy of these websites. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

Children’s Privacy

These Services are not intended and do not address anyone under the age of 16. We do not knowingly collect personally identifiable information from children under 16. In the case we discover that a child under 16 has provided us with personal information, we immediately delete this from our servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we will be able to do necessary actions.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. Thus, you are advised to review this page periodically for any changes. We will notify you of any changes by posting the new Privacy Policy on this page.

This policy is effective as of 2020-12-01

Contact Us

If you have any questions or suggestions about our Privacy Policy, do not hesitate to contact us at enquiries@damstratechnology.com.

10 02 2021