Privacy Policy for NOVAtime SaaS / NOVAtime Anywhere / Smart NOVAbot®
Effective Date: June 7, 2018. We Respect Your Privacy NOVAtime Technology Inc. (“NOVAtime,” “we,” “us,” or “our”) provides an employee time management platform and related services (“Services”). At NOVAtime, customer privacy is a top priority and we are committed to protecting the privacy of our customers online. This Privacy Policy ("Privacy Policy") details NOVAtime’s policies and practices regarding its collection and use of your personal information and sets forth your privacy rights. We are committed to helping you protect your privacy. We encourage you to take precaution to protect your privacy protection while going online.
Policy Scope and Links to Other Websites
This Privacy Policy addresses activities on the NOVAtime platform. The NOVAtime platform, this website, and any other website or web-based system provided by NOVAtime to provide the Service are referred to as the “Website". Through the Website you can access links to other websites which are not under the control of NOVAtime. We have no control over the nature, content and availability of those sites. This Privacy Policy does not cover the links within the Website that link to such other websites. We encourage you to read the privacy statements on the other websites you may visit. Information We Collect and How We Use It NOVAtime collects information about you in order to identify you each time you use our Service provided, or to customize your experience. When your organization sets up an account for you, a User ID and password is required. You may, depending on the choice of Service features by your organization, provide other types of personal information. You will be prompted for your User ID and password to log in if you do not use the Single Sign On (SSO) feature. Due to the sensitivity of social security numbers, we encourage your organization or you to NOT use social security number when setting up accounts. Depending on the features enabled in our Service provided, personal information we collect may include: • User ID; • First name; • Last name; • Employee status; • Hire date; • Email address; • Picture; • IP address; • GPS location; • Applicable home location, department, and Job data (labor group data is configurable by your organization) • Applicable work location, department, and Job data (labor group data is configurable by your organization) • Biometric data, and • Social Security number. Unlike many commercial sites, we do not use “cookies” to collect information about how our Website is used. There are only two cookies we use when a user accesses our SaaS site. The first one is for identifying the time zone of your system. This is to ensure that the time displayed on our site matches the local time of your system. The second cookie is to optimize load balancing at the web server tier. Sharing with Third Parties We will not sell or lease any personal information to third parties unless we have specifically requested your permission. We may disclose your information if we believe such action is necessary to i) comply with lawful requests by public authorities, including meeting national security or law enforcement requirements; ii) protect and defend the rights or property of NOVAtime (including the enforcement of our agreements); or iii) act in response to urgent circumstances to protect the personal safety of users of services provided by NOVAtime, members of the public, or NOVAtime. Security of Your Information When providing Services, NOVAtime is committed to protecting your personal information in every transaction, at every tier of our application service offering. We maintain physical, technical and administrative safeguards to protect your information. When you submit sensitive information via the Website, your information is protected both online and offline. Wherever we collect sensitive information (such as biometric data), that information is encrypted and transmitted to us in a secure way. You can verify this by looking for a lock icon in the address bar and looking for "https" at the beginning of the address of the Website. While we use encryption to protect sensitive information transmitted online, we also protect your information offline. The computers/servers in which we store personal information are kept in a secure environment. Only employees who need access to the information to perform a specific job (for example, provide customer service) are granted access to personal information. These employees are trained to take privacy and security as a conscientious priority. In addition, we commit to taking appropriate disciplinary measures to enforce our employees' privacy responsibilities. We work diligently every day to honor our commitment to privacy. However, as it’s commonly known, data transmission over the internet cannot be guaranteed to be 100% secure. Therefore, we do not promise, and you should not expect, that we can warrant the complete privacy and security during the transmission over the internet. Biometric Data To protect biometric data, NOVAtime does not save an image of a user’s fingerprints or handprints, but rather converts and stores a proprietary geometric representation of the prints. It is important to note that user fingerprint and handprint images are not stored in the system; therefore, biometric images cannot be accessed or rendered available from the NOVAtime system or time clocks. For more information, see NOVAtime's Commitment to Biometric Compliance. Data Storage and Retention Your personal data is stored by us on our servers located in the United States. Biometric data and employee images will be purged promptly when you are marked inactive by your organization. All other personal data including your name, email address, IP address, and GPS location are kept in order to preserve our audit trail and comply with legal obligations. When an organization cancels the Service, the data will be archived and the archive is kept for 7 years. For more information on where and how long your personal data is stored, and for more information on your rights of erasure and portability, please contact us at Privacy@NOVAtime.com. Compromise of Personal Information In the event that personal information is compromised as a result of a breach of security, NOVAtime will promptly notify those persons whose personal information has been compromised in accordance with the notification procedures set forth in this Privacy Policy and as required by Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the Processing of Personal Data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) or other applicable law.
Information We Collect and How We Use It
NOVAtime collects information about you in order to identify you each time you use our Service provided, or to customize your experience.
When your organization sets up an account for you, a User ID and password is required. You may, depending on the choice of Service features by your organization, provide other types of personal information. You will be prompted for your User ID and password to log in if you do not use the Single Sign On (SSO) feature. Due to the sensitivity of social security numbers, we encourage your organization or you to NOT use social security number when setting up accounts.
Depending on the features enabled in our Service provided, personal information we collect may include:
• User ID; • First name; • Last name; • Employee status; • Hire date; • Email address; • Picture; • IP address; • GPS location; • Applicable home location, department, and Job data (labor group data is configurable by your organization) • Applicable work location, department, and Job data (labor group data is configurable by your organization) • Biometric data, and • Social Security number.
Unlike many commercial sites, we do not use “cookies” to collect information about how our Website is used. There are only two cookies we use when a user accesses our SaaS site. The first one is for identifying the time zone of your system. This is to ensure that the time displayed on our site matches the local time of your system. The second cookie is to optimize load balancing at the web server tier.
Sharing with Third Parties
We will not sell or lease any personal information to third parties unless we have specifically requested your permission. We may disclose your information if we believe such action is necessary to i) comply with lawful requests by public authorities, including meeting national security or law enforcement requirements; ii) protect and defend the rights or property of NOVAtime (including the enforcement of our agreements); or iii) act in response to urgent circumstances to protect the personal safety of users of services provided by NOVAtime, members of the public, or NOVAtime. Security of Your Information When providing Services, NOVAtime is committed to protecting your personal information in every transaction, at every tier of our application service offering. We maintain physical, technical and administrative safeguards to protect your information. When you submit sensitive information via the Website, your information is protected both online and offline. Wherever we collect sensitive information (such as biometric data), that information is encrypted and transmitted to us in a secure way. You can verify this by looking for a lock icon in the address bar and looking for "https" at the beginning of the address of the Website. While we use encryption to protect sensitive information transmitted online, we also protect your information offline. The computers/servers in which we store personal information are kept in a secure environment. Only employees who need access to the information to perform a specific job (for example, provide customer service) are granted access to personal information. These employees are trained to take privacy and security as a conscientious priority. In addition, we commit to taking appropriate disciplinary measures to enforce our employees' privacy responsibilities. We work diligently every day to honor our commitment to privacy. However, as it’s commonly known, data transmission over the internet cannot be guaranteed to be 100% secure. Therefore, we do not promise, and you should not expect, that we can warrant the complete privacy and security during the transmission over the internet.
Biometric Data To protect biometric data, NOVAtime does not save an image of a user’s fingerprints or handprints, but rather converts and stores a proprietary geometric representation of the prints. It is important to note that user fingerprint and handprint images are not stored in the system; therefore, biometric images cannot be accessed or rendered available from the NOVAtime system or time clocks. For more information, see NOVAtime's Commitment to Biometric Compliance.
Data Storage and Retention Your personal data is stored by us on our servers located in the United States. Biometric data and employee images will be purged promptly when you are marked inactive by your organization. All other personal data including your name, email address, IP address, and GPS location are kept in order to preserve our audit trail and comply with legal obligations. When an organization cancels the Service, the data will be archived and the archive is kept for 7 years. For more information on where and how long your personal data is stored, and for more information on your rights of erasure and portability, please contact us at Privacy@NOVAtime.com.
Compromise of Personal Information
In the event that personal information is compromised as a result of a breach of security, NOVAtime will promptly notify those persons whose personal information has been compromised in accordance with the notification procedures set forth in this Privacy Policy and as required by Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the Processing of Personal Data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) or other applicable law.
Notification of Changes and Updates to the Privacy Policy NOVAtime reserves the right to amend this Privacy Policy at any time, for any reason, without notice to you, other than the posting of the amended Privacy Policy on this Website. Changes to this Privacy Policy are effective when they are posted on this page. When we change the policy in a material manner we will let you know by updating the “Effective Date” at the top of this page. The policies and practices described herein replace all previous notices or statements regarding this subject matter or content of this Privacy Policy.
If you
.
Recommendations for a secure online experience
When going online, consider the following tips to help protect your computer and your personal data and information. Do not share accounts. If you are sharing a computer with anyone (especially at home), each user should have their own account. This will safeguard any information specific to your account profile. Safeguard your passwords. Memorize your passwords. Do not write them down or share them with anyone. Change them regularly and use combinations of letters (with a mix of upper and lower case), numbers, and "special characters" such as the "at" (@) and "pound" (#) signs If possible, do not use sensitive information like your social security number as username or password. Avoid using the same password for different accounts. Keep your computer operating system (OS) up to date. If your computer is running an old OS (e.g. Windows 98, OS7, etc.), it may not offer the same level of protection as newer systems. OS manufacturers provide updates to help make your system more secure. If the update is not automatic, you should regularly check their websites for updates. We provide herein update links for some commonly used OSs for personal computers. Microsoft® – http://www.microsoft.com/security/ Apple® – http://www.apple.com/support/security/ Red Hat® – http://www.redhat.com/security/updates/ Novell® – http://www.novell.com/linux/security Install, run, and keep anti-virus and anti-spyware software updated. The commercially available protection software helps reduce the risk of compromising your computer’s security while connected to the Internet. These programs offer continuous upgrades in response to the latest threats. The key is to make sure that your protection software is configured to automatically receive updates. Install a personal firewall. Though most office networks include firewall protection, your home computer may benefit from this added level of security. Operating systems like Windows XP already includes a firewall and can be activated easily. Use a current web browser. If you are using an older version of a web browser, it may not offer the same level of protection as newer ones. To provide our customers with the most secure online access to their accounts, NOVAtime continually upgrades our online services. Hence, your browser eventually may become incompatible for using our online application service. We recommend using one of the followings (note that we do not support beta versions of browsers): Microsoft® Internet Explorer Mozilla® Firefox Google Chrome® Do not activate “Remember Password” feature. Some web browsers or web sites will offer you to let them save your password so that you do not have to type it in next time. Just say “No” to these offers. Do transactions and shopping only with secure websites. Make sure the web site you are visiting offers encryption of your data. With encryption, the web address of the page you are viewing will begin with https://... (instead of http://). The “s” indicates “secured”. Also, you will see a lock symbol in the lower right-hand corner of your browser window. Avoid downloading programs from unknown sources. Downloads from unknown sources may contain hidden programs or viruses that can compromise your computer’s security. To reject a download request, it is always safer to click on the “X” (upper right corner) of the download window, instead of clicking the “No/Cancel” button. Avoid opening emails from unknown senders.Emails may contain hidden links that will communicate with malicious sites in the background. If you are not sure about the origin of an email, simply delete it. Close your web browser when done. Most web browsers cache web pages and sensitive transaction data might still be accessible even after you logged out from the web site. So, when you’re completed with the transactions, make it a habit to close your web browser. Disconnect from the Internet when done. With connections such as DSL or high-speed cable, your computer is connected to the Internet all the time. As an additional step to help protect yourself, when you are finished, shutdown your computer to avoid unwanted access to your computer's data.
When going online, consider the following tips to help protect your computer and your personal data and information.
The commercially available protection software helps reduce the risk of compromising your computer’s security while connected to the Internet. These programs offer continuous upgrades in response to the latest threats. The key is to make sure that your protection software is configured to automatically receive updates.