Terms of Service and Privacy Policy
Last Reviewed Date: April 2023
VEERUM provides a data-agnostic web application that ingests, aggregates, analyzes and visualizes asset data on a cloud-hosted site (VEERUM) globally accessible to corporate stakeholders. VEERUM is hosted in the USA.
VEERUM application and services are offered to commercial entities on a subscription model as well as to non commercial entities for joint research projects. Optional features and services are available; for more information on our products and services see https://www.veerum.com/digital-asset-management.
This Privacy Policy sets out the essential details relating to your personal data relationships with VEERUM as a user of the VEERUM application (“End User”) when you access VEERUM application.
Please note that VEERUM collects and uses your personal information as necessary to provide the contracted services to its clients. VEERUM acts as a service provider or processor or data intermediary. The organizations contracting the use of VEERUM (“Clients”) are also responsible for complying with all applicable privacy regulatory requirements as applicable to them.
If you have any questions about this Privacy Policy or our privacy practices, please contact privacy@veerum.com.
Personal information we collect
Table of contents
What personal information we collect
How we collect personal information
How we share personal information
How we secure the personal information
How long we keep your personal information
What personal information we collect
VEERUM is intended for business use only.
The following categories of personal information are collected:
Personal information required by VEERUM:
-
Log in details - name, email address, password
-
Information captured automatically:
-
related to personal devices - IP address, web browser and OS version
-
user activities such as logging in , accessed data, models opened, data deleted etc.
-
user input and metadata related to creation of Objects and User Created Objects
-
Additional information may also be submitted by Clients and End Users at their own discretion includes:
-
Information entered by End Users in Conversations which is deemed to be personal information, for example information revealing something personal about the End User or another identified or identifiable individual
-
Any other personal information as uploaded or entered by the End Users, at their sole discretion. For example, images of individuals included in technical data provided by Clients.
We expect all End Users to follow their organization’s privacy policy and any applicable regulatory requirements when uploading, accessing and using personal information into our Application.
We collect the personal information in order to:
-
Provide the contracted services and access to the VEERUM application
-
Interact with you directly via phone calls, chats, messages or video conferencing platforms
-
Maintain the VEERUM application
-
Create a better user experience for you and all other End Users
-
Send communications to you about:
-
VEERUM features and upgrades
-
our services and offerings
-
event announcements
-
product notices and changes to our terms and policies
-
particular programs in which you have chosen to participate
-
promotional offers and surveys
-
product tutorials and training material
-
-
Prevent fraud and other prohibited or illegal activities
-
Protect the security or integrity of the VEERUM application, our business and/or services; or
-
Otherwise, as disclosed to you at the point of collection or as required or permitted by law
We do not sell any personal information to third parties.
Please note that VEERUM Clients submit data (photos, images, reality scans, etc) that may contain faces of individuals present, at the time of capturing the data.
-
If VEERUM has been contracted to provide face blurring services, VEERUM may use facial recognition technology to detect faces in client data. In certain instances the technology will blur these images. However, VEERUM will not authenticate or personally identify these people by name or otherwise.
-
If VEERUM has not been contracted to perform blurring services, the images of individuals will be stored, but not detected nor blurred.
VEERUM does not require personal information, outside what is described in this Policy, to provide the contracted services and is not responsible for the submission of images of individuals. VEERUM Clients are entirely responsible to comply with all applicable privacy legislation of their jurisdiction, including obtaining consent from individuals for recording and sharing their images.
How we collect personal information
VEERUM Clients (except those using single sign on functionality) initially provide to us the names and email addresses of their workforce and other parties required to access VEERUM. We use that information to set up the End User access to VEERUM.
Clients also provide technical and other information which may include personal information, as described in this Policy, to be uploaded into VEERUM.
Once access is granted to any of the End Users, personal information may also be manually entered or uploaded directly by the End Users and collected automatically by VEERUM and its supporting infrastructure.
How we share personal information
As an End User, your personal information may be viewed by other users within the same corporate account with access to VEERUM.
Service Providers
We use third parties to help us provide our services. Some of the service providers are based in the USA or other international jurisdictions.
They will have access to your information as collected by the VEERUM application and as reasonably necessary to perform the contracted tasks on our behalf. We sign contractual agreements to obligate them to protect the personal information and to only use it to deliver the contracted services to us.
Legal disclosures
It is possible that we may need to disclose personal information when required by law, subpoena or other legal process as identified in the applicable legislation.
We attempt to notify our Clients about legal demands for their personal data when appropriate in our judgment, unless prohibited by law or court order or when the request is an emergency.
Change in Control
We can also share your personal data as part of a sale, merger or change in control or in preparation for any of these events.
Any other entity which buys us or part of our business will have the right to continue to use your data, but only in the manner set out in this Privacy Policy unless you agree otherwise.
How we secure the personal information
We are committed to protecting the security of all of the personal information we collect and use.
We use a variety of physical, administrative and technical safeguards designed to help protect it from unauthorized access, use and disclosure. We have implemented best practice standards and controls in compliance with SOC2 requirements and ISO27001 certification. We use encryption technologies to protect data at rest and in transit.
Your rights
For personal information we have about you, you can:
-
Access your personal information or request a copy. You have the right to obtain information about what personal information we process about you or to obtain a copy of your personal information. You may contact us to obtain an outline of what information we have about you or a copy of the information.
-
You have the right to be notified of what personal information we collectabout you and how we use it, disclose it and protect it. This Privacy Policy describes what personal information we collect and our privacy practices. We may also have additional privacy notices and statements available to you at the point of providing information to us directly.
-
Change or correct your personal information. You have the right to update/correct your personal information or ask us to do so on your behalf.
-
Delete or erase your personal information. You have the right to request deletion of your personal information at any time. We will communicate back to you within reasonable timelines the result of your request. Please note that any deletion request will be forwarded to the organization that contracted our services. We may not be able to delete or erase your personal information if so directed by the contracting organization but we will inform you of the reasons and any further actions available to you.
If you would like to exercise any of the rights described above, please email us at privacy@veerum.com
You also have the right to lodge a complaint with the privacy regulators in charge of enforcing the privacy legislation applicable in your territory.
Individuals based in Canada may lodge a complaint with the Office of the Privacy Commissioner of Canada. See contact details here https://www.priv.gc.ca/en/contact-the-opc/.
How long we keep your personal information
We retain information as long as it is necessary to provide the contracted services to our client organizations, subject to any legal obligations to further retain such information.
We may also retain information to comply with the law, prevent fraud, collect fees, resolve disputes, troubleshoot problems, assist with investigations, enforce our Terms of Service and take other actions permitted by law.
The information we retain will be handled in accordance with this Privacy Policy.
Contact us
If you have any questions, clarifications, complaints etc related to our handling of your personal information, please email us at privacy@veerum.com.
You also have the right to lodge a complaint with the privacy regulators in charge of enforcing the privacy legislation applicable in your territory.
For End Users based in European Economic Area (EEA), Switzerland and UK
VEERUM is a processor of all personal data processed on the VEERUM application, on behalf of our Clients. We only process the personal data under their direction. Please see the rest of this Privacy Policy for information related to the collection, use, protection and retention of the personal data collected from end users based in the EEA (EU countries and Iceland, Liechtenstein and Norway), Switzerland and UK.
Please contact your employer or the organization that granted you access to the VEERUM application for details on their privacy practices and to exercise any of your data subject rights. VEERUM clients are responsible to inform VEERUM of any rights requests relevant to the personal data processed by VEERUM.
We process personal data in Canada and USA and share it with our service providers also located in Canada, USA and other jurisdictions. We use standard contractual clauses as the data transfer mechanism of transferring EU data to countries subject to data transfer requirements.
See table of our service providers below:
You may lodge a complaint with your local supervisory authority EU Data Protection Authorities; see their contact details here https://edpb.europa.eu/about-edpb/about-edpb/members_en
For the UK Information Commissioner Office see https://ico.org.uk/global/contact-us/.
Cookies notice
VEERUM uses cookies necessary to ensure the proper functioning of the application. The cookies are removed when no longer necessary. No targeting or marketing cookies are used on the VEERUM application.
