Privacy Policy

Hyperio Software Limited (“Hyperio Software” or “us”, “our”, “we”) respects your right to privacy. Your ability to make informed choices about the uses of your information is important to us.

This Privacy Notice details how we collect, use and store information and data that we receive. If you have any comments or questions about our privacy policies, please contact us at datacontrol@hyperiosoftware.com.

This Privacy Notice shall govern all privacy aspects of our websites, including but not limited to https://certifiq.com (the “Site”), use of some additional tools and services that we provide, and the use of the digital Software as a Service (SaaS) Health and Safety platform (the “Solution”, and together with the foregoing, the “Services”). We may update this Privacy Notice from time to time, and we encourage you to review it periodically. Please also review the Terms of Service of the Site and Solution (together, the “Terms”). Terms capitalized but not defined herein have the meaning given to them in the applicable Terms. As used in this Privacy Notice, “Personal Data” means information that can be directly associated with a specific person or entity such as a name, address, date of birth, or e-mail address.  

A Note on Legal Bases

Certain jurisdictions do not allow the processing of personal data unless a legal basis has been established. Under the EU’s General Data Protection Regulation (GDPR), the possible legal bases include: where you give your consent, where processing is necessary to perform a contract with you, where processing is necessary to fulfill our legal obligations, or where we have a legitimate business interest to process your personal data. Where we are a controller, we only collect and process data where we have established a legal basis. Below you can find more details about specific legal basis.

Privacy Notice Key Points

In case you don’t want to read through the whole Privacy Notice, below are links to the main sections that might be of interest. You can click on the headers in this section to navigate to the full sections.  

1. Types of Information We Collect.

2. Specific Information We Collect.

3. Sharing the Personal Data We Collect.

4. International Transfer.

5. Security.

6. Your Rights – How to Access and Limit Our Use of Certain Personal Data.

7. Data Retention.

8. Cookies and Similar Technologies.

9. Children.

10. Changes to the Privacy Notice.

11. Contact Information.

1.Types of Information We Collect

Hyperio Software collects three types of personal data:  

1.1 Data from persons who visit our Sites, including without limitation https://www.hyperiosoftware.com/ and https://certifiq.com, and any other site governed by this Privacy Notice (“Site Data”). The Site will record certain information automatically, such as your IP address, mobile device or computer, operating system and browser, and geo-location. In addition, we collect any information you provide when you contact us for any reason via our site interface, such as your name, email, address, and other contact information.

1.2 Data collected when we process information in the context of providing services to our customers, including customers that use our Services free of charge (together “Customers”). This is data concerning individuals, including Customer’s personnel and service providers collected when Customers and/or their personnel and/or service providers use the Services (“Customer Data”). Customer Data includes data regarding how systems and code are used, accessed, developed, tested and deployed by employees and service providers of our Customers using our Services. Additionally, this data includes names, emails, and account profiles on systems such as customer relationship management, project management, enterprise relationship management and messaging tools may be processed. Our processing of Customer Data on behalf of Customers who are located in the EU is subject to the provisions of our Data Processing Agreement https://certifiq.com/data-processing-agreement/, or to specific Data Processing Agreements signed with such customers.

1.3 Data concerning individuals who access our Services through various means of access, including but not limited to browsers, mobile apps, and APIs (“Access Data”). Access Data can include information that is used for your identification or authentication, or to login to our various tools and services, such as names and email addresses, as well as profiles and account information from third party services such as source code and project management tools, and metadata of a user’s activity on such third party services.

You are not required by law to provide us with any of the information described herein, but by using the Services you agree to provide us with such information.

2. Specific Information We Collect

2.1 Registration Data. In order to access some of our Services, you may first need to create an account. When creating an account, you will be asked to provide information in order to verify your identity. This information may include your name and email address, information from third party providers through whom you access our Services, and any other information we deem reasonably necessary to properly verify your identity.

How We Use this Data: We use your registration data to provide you access to our Services, save your preferences, improve the usability of our Services, protect the security of our Services, prevent fraud, and to address any issues that arise. We use your contact details to communicate with you. We also use your contact details to send you newsletters or promotional materials relating to our products and services. For more information about our Communications and how you can control your preferences, see the Our Communications section below.

Legal Basis: When we process your registration data to provide you with our Services, we do so on the basis of performing a contract with you, in this case our Terms of Service. When we process your registration data we do so in order to maintain the Services, including to prevent fraud, protect the security of and/or address issues with the Services, we do so on the basis of our legitimate interest to maintain our assets. When we use your contact details to send you newsletters and promotional materials relating to our services, we do so based on your consent, and/or our legitimate interest to market our products and services.  

2.2 Contact Data. If you contact us for any reason, we collect any Personal Data you provide, such as your email address and the content of your message. When you sign up for newsletters or email lists we collect your name and email address. We may also collect additional information about the company you work for, including without limitation, its name, size, and location, and your role in the company.

If you apply for a job with us, we, or a third party operating on our behalf, collect the information you provide as part of your application and during the course of the application process. This may include your name, contact details, resume, recommendations, and any other information we may request or that you choose to share with us.

From time to time, we hold special events in which we may invite you to participate. If you register for an event, we will collect personal data provided as part of the registration process, such as your name, contact details, and any other information we may request.

If you have signed up for our newsletters and/or if you have contacted us regarding our Services we may send you newsletters or other promotional materials. We try to limit direct marketing to a reasonable and proportionate level and only send you communications which we believe may be of interest to you. Note that we may need to contact you about administrative or service-related issues as part of providing the services to you. This is not direct marketing and even if you opt-out of direct marketing, you will continue to receive these messages.  

How we use this data: We use this Personal Data to respond to your inquiry, to provide you with newsletters and to provide you with promotional or informational materials matching the interest you have expressed in your sign up request. If you choose to register for one of our special events, we will use the data you provided us for event planning and logistical purposes, to contact you with updates or to ask for your feedback regarding the event, to improve our events, products and services, and for marketing purposes.

Legal Basis: Responding to your inquiry and providing newsletters, where you have requested this is based on performance of a contract with you. When we use your Personal Data to send you promotional or informational materials, this is based on your consent to receive such promotional material. You may withdraw your consent at any point, including by emailing us at datacontrol@hyperiosoftware.com or by following the “unsubscribe” link in any messages. Note that we may need to contact you about administrative or service-related issues as part of providing the services to you. This is not direct marketing and even if you withdraw your consent to receipt of direct marketing, you will continue to receive these messages.

2.3 Automatically Collected Data. When you use the Services, we automatically collect information about your computer or mobile device. This includes non-Personal Data such as your operating system, and Personal Data such as your IP address, the location associated with your IP addresses, device ID, browsing history and any information regarding your viewing or usage history of the Services. This data is collected through cookies and similar technologies. You can change your browser setting in order to manage which cookies are placed. For more information and how to adjust your preferences, please see the Cookies and Similar Technologies section below.  

We may also use social plugins, such as the Facebook plugin, which will allow social media platforms to link Personal Data collected through our Services with Personal Data in your social media profile. This combined data may be used to serve you with advertising or customized content on the applicable social media platform. We recommend you routinely review the privacy notices and preference settings that are available to you on any social media platforms.  

How we use this data: We use this data to review how users use our Services, to develop new products or services and improve current content, products, and services, to prevent fraud, protect the security of our Services, and address any problems with the Services. This data is often used in an aggregated and non-specific analytical manner. We also use this data in order to provide you with customized content and targeted offers related to our Services.

Legal Basis: Reviewing, developing, and improving our products and services, as well as fraud prevention and security uses are based on our legitimate interests to manage our business. Similar, using this data to provide you with customized content relating to our Services is also based on our legitimate interest.

2.4 Statistical Information and Analytics. We want to understand how people are using our Services so that we can make improvements, understand user needs, and tailor our services for users. To do this, we use certain third-party analytics tools that help us gather and compile statistical information. One of the third-party analytics tools we use is “Google Analytics”. For more information about how Google collects information and how you can control such use at https://policies.google.com/technologies/partner-sites. We can also anonymize and aggregate data which we can then share with our business partners.  

3. Sharing the Personal Data We Collect

We share your information, including Personal Data, as follows:

3.1 Customers. If you use our Services in connection with a company that is our Customer, that Customer may have access to information about your use of the Services.  

3.2 Service Providers and Subcontractors. We disclose information, including Personal Data we collect from and/or about you, to our trusted service providers and subcontractors, who have agreed to confidentiality restrictions and who use such information solely on our behalf in order to: (1) help us provide you with Services; and (2) to assist us in our direct marketing activities described above.  

3.3 Business Transfers. In case of any merger or sale of our company or its assets, including in case of liquidation, we may disclose your Personal Data as part of such transaction or during the negotiations leading up to it. In such case, your Personal Data shall continue being subject to this Privacy Notice.

3.4 Law Enforcement Related Disclosure. We may share your Personal Data with third parties: (i) if we believe in good faith that disclosure is appropriate to protect our or a third party’s rights, property or safety (including the enforcement of the Terms and this Privacy Notice); (ii) when required for compliance with any law, regulation, subpoena, court order or other law enforcement related issues, agencies and/or authorities.

4. International Transfer

We are an international business and we transfer your data to various countries, including the US. When we share Personal Data with third parties as described above, these third parties may also be located in countries other than your own. We will ensure that these third parties will be subject to written agreements ensuring the same level of privacy and data protection as set forth in this Privacy Notice.

Or  

Your information, including Personal Data, is processed at our operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.

Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.

Hyperio Software will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.

5. Security

We have implemented and maintain appropriate technical and organization security measures, policies and procedures designed to reduce the risk of accidental destruction or loss, or the unauthorized disclosure or access to Personal Data appropriate to the nature of such data. We are compliant with ISO 27001 (Information Security Management) and use measures such as physical, electronic, and procedural safeguards, access control, internal policies backups and encryption to protect your data. However, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security. You are responsible for the security of the devices you use and for keeping your credentials protected.

6. Your Rights –How to Access and Limit Our Use of Certain Personal Data

Depending on the applicable law, you may have certain rights relating to the Personal Data that we collect about you. If you are in the EU, certain additional rights may apply as detailed below.  

6.1 Right of Access. You have a right to know what Personal Data we collect about you. Subject to applicable law, we may charge a fee for providing this information. If we are not able to provide you with all of the information you request, we will do our best to explain to you why.  

6.2 Right to Correct Personal Data. Subject to certain limitations, you may request that we update, complete, correct or delete inaccurate, incomplete, or outdated Personal Data.  

6.3 Direct Marketing Opt Out. You can change your mind at any time about your election to receive marketing communications from us and/or having your Personal Data processed for direct marketing purposes. If you do, please notify us by Contacting Us. It may take a few days for us to update our records before any opt out is effective.

7. Data Retention

7.1 Subject to applicable law, we retain Personal Data as necessary for the purposes set forth above. We may delete information from our systems without notice to you once we deem it is no longer necessary for these purposes. Retention by any of our service providers may vary in accordance with their retention policies.  

7.2 In some circumstances, we may store your Personal Data for longer periods of time, for instance where we are required to do so in accordance with legal, regulatory, tax, audit, accounting requirements and so that we have an accurate record of your dealings with us in the event of any complaints or challenges, or if we reasonably believe there is a prospect of litigation relating to your Personal Data or dealings.  

7.3 Please Contact Us if you would like details regarding the retention periods for different types of your Personal Data.

8. Cookies and Similar Technologies

8.1 What are Cookies?

When we use the term “cookie” we are referring to technologies that get stored locally on your browser or device and which help us identify you and collect information about you. These may be traditional cookies, web beacons, pixel tags, or similar.  

8.1.1 Some cookies (session cookies) will only be stored until you leave the Services and some (persistent cookies) will remain for longer periods or until you delete them. For example, persistent cookies may be used to help save your settings across visits.

8.1.2 First-party cookies are placed by us, while third-party cookies may be placed by a third party. We use both first- and third-party cookies.  

8.1.3 Cookie Consent. When using the Services, you shall be notified of the use of and placement of cookies on your device and will be asked to agree to placement of cookies.

8.2 How We Use Cookies. We use cookies and similar technologies for the purposes described below. The specific names and types of the cookies we use may change but they generally fall into one of the following categories:

Necessary. These cookies are necessary in order to allow the Services to work correctly. They enable you to access & navigate the Services and utilize different capabilities and features of the Services These cookies cannot be disabled.

Functionality. These cookies remember your settings and preferences and the choices you make (such as language or regional preferences) in order to help us personalize your experience and offer you enhanced functionality and content.

Security. These cookies can help us identify and prevent security risks. They may be used to store your session information to prevent others from tampering with your login credentials.

Performance & Analytics. These cookies can help us collect information to help us understand how you use our Services, for example whether you have viewed messages or specific pages, which features are popular, and how long you spent on each page. This helps us improve the usability and performance of our Services.

Additionally, cookies and web beacons may be placed in messages we send in order to track your interaction with such emails.  

8.3 How to Adjust Your Preferences: You can adjust your preferences through your browser’s settings. You can configure your settings to refuse all cookies and you can delete existing cookies at any time. Note that some features may not work properly if cookies are disabled or removed.

9. Children

We do not knowingly collect Personal Data from children under the age of sixteen (16). In the event that you become aware that an individual under the age of sixteen (16) has registered to our Services or subscribed to our marketing lists or otherwise provided Personal Data without parental permission, please advise us immediately.

10. Changes to the Privacy Notice

We may update this Privacy Notice from time to time to keep it up to date with legal requirements and the way we operate our business, and we will place any updates on this webpage. Please come back to this page every now and then to make sure you are familiar with the latest version. If we make material changes to this Privacy Notice, we will seek to inform you by notice on our Site and/or other communication channels.

11. Contact Information

If you have any comments or questions if you wish to exercise any of your legal rights, you can contact us as follows:  

11.1 By email. The easiest way to contact us is by emailing datacontrol@hyperiosoftware.com  

11.2 Through the Site. You can also contact us through the Contact Us form on our Support page on our Site.

Information for EU Individuals

If you are an individual located in the European Union, some additional terms and rights may apply to you.  

1 . Controllers and Processors.  

1.1 Hyperio Software is the data controller of your Personal Data as described in this Privacy Notice. The address of our registered office is Agias Filaxeos 1, KPMG Center, 2nd Floor, Office 2B and 2C, 3025 Limassol, Cyprus.

1.2 When we process information in the context of providing services to our customers (“Customers”), such as information about each Customer’s personnel and service providers, the applicable Customer serves as a controller of the personnel and service providers’ Personal Data and Company serves as a processor on its behalf.

2. International Transfers. Whenever we transfer your Personal Data out of the European Economic Area (“EEA“), including to third parties, and when required under applicable law, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:  

2.1 We will only transfer your Personal Data to countries that have been deemed to provide an adequate level of protection for Personal Data by the European Commission.

2.2 Where we use certain service providers not located in countries with an adequate level of protection as determined by the European Commission, we may use specific contracts approved by the European Commission which give Personal Data the same protection it has in the EEA.

2.3 If you would like further information on the specific mechanism used by us when transferring your Personal Data out of the EEA, please Contact Us.

3. Your Rights. In addition to the rights described in Section 6 above, you may have certain additional rights in relation to the Personal Data that we or other controllers hold about you. If you want to exercise any of these rights with respect to Personal Data held by other controllers, please contact the applicable controller (such as the relevant Customer) directly. You can also request that we contact all independent controllers. We may ask for reasonable evidence to verify your identity before we can comply with any request.  

3.1 Deletion of Personal Data (“Right to Be Forgotten”). You have a right to request that we delete your Personal Data if either: (i) it is no longer needed for the purpose for which it was collected, (ii) our processing was based on your consent and you have withdrawn your consent, (iii) you have exercised your Right to Object (see below), (iv) processing was unlawful, or (iv) we are required to erase it for compliance with a legal obligation. To ensure that we do not collect any additional Personal Data, you should also uninstall any of our software you have installed on your devices, , terminate your account with us, and clear our cookies from any device where you have used our Services. We may retain certain Personal Data (including following your request to delete) as permitted by applicable law.  

3.2 Right to Restrict Processing. You can ask us to limit the processing of your Personal Data if either: (i) you have contested its accuracy and wish us to limit processing until this is verified; (ii) the processing is unlawful, but you do not want us to erase the Personal Data; (iii) it is no longer needed for the purposes for which it was collected, but we still need it to establish, exercise, or defend of a legal claim; (iv) you have exercised your Right to Object (below) and we are in the process of verifying our legitimate basis for processing. We may continue to use your Personal Data after a restriction request under certain circumstances.  

3.3 Right to Data Portability. If the processing is based on your consent or performance of a contract with you and processing is being carried out by automated means, you may be entitled to (request that we) provide you or another party with a copy of the Personal Data you provided to us in a structured, commonly-used, and machine-readable format.  

3.4 Withdrawal of Consent. If our processing of your Personal Data is based upon your consent, you may withdraw your consent.  

3.5 Right to Object. If processing is based on our legitimate interest, you may object to such processing where you believe your fundamental rights and freedoms outweigh our legitimate interests. If you object, we have an opportunity to demonstrate the validity of our legitimate interest.  

3.6 Right to Lodge a Complaint with Your Local Supervisory Authority. You may have the right to submit a complaint to the relevant supervisory data protection authority if you have any concerns about how we are processing your Personal Data, though we ask that as a courtesy you please attempt to resolve any issues with us first.

Súhlas so súbormi cookie

Kliknutím „Prijať“, súhlasíte s ukladaním súborov cookie na vašom zariadení s cieľom zlepšiť navigáciu na stránke, analyzovať používanie stránok a pomôcť pri našom marketingovom úsilí. Pozrite si naše Zásady ochrany osobných údajov pre viac informácií.