Last Updated on November 30, 2020. Updates to the policy have been made based on the United Kingdom's new relationship with the European Union.
Our Websites include:
Our Services include the Websites and:
This policy explains:
This policy describes the types of personal data that we may collect from you when you access or use our Services, or in rare cases, obtain from other parties, and our practices for collecting, using, maintaining, protecting and disclosing that data.
"User" or "you" or "your" refers to you, as an individual user of the Services, and any other persons authorized to use the Services. A user is someone who accesses or uses the Services for any purpose, including sharing, displaying, hosting, publishing, transacting, uploading information or viewing pictures.Org Account, Org Admin and Member Account
A "Org Account" is a dedicated space for a single organization, or tenant, in our SaaS Application with it’s own metadata and user management. An Org Account is managed by an "Org Admin", an administrative user who may create logins within this dedicated space for User members of their organization "Member Accounts".
You are an Org Admin if you have registered for a trial or signed-up for a Business plan. You are an Org Member if you have been given a login by an Org Admin.Personal Account
A "Personal Account" is a dedicated space for a single individual with its own metadata. You have a Personal Account if you have registered for a free account, or signed-up for a Personal plan.User Content
"User Content" includes, but is not limited to, documents, images, photos, audio, videos and data files created or retrieved, whether by Users or applications or other methods, through your Org Account, Member Account or Personal Account.
"Personal Data" refers to any data, whether true or not, relating to an individual who can be identified (a) from that data; or (b) from that data and other information to which we have or are likely to have access, including data in our records as may be updated from time to time. Examples of Personal Data you might give us when using the Services include your email address, your name and application preferences.
Vehera LTD may collect and use information of and regarding its Users. We will only collect data which is essential to our operations, or for which we have your consent.
The information through which an individual may be identified may include data which you voluntarily enter, use or provide when using the Services of the Vehera LTD Website, submit when creating an Org Account, Member Account, or Personal Account, or in some cases which we obtain externally.
The information we collect on or through our Services may include:
TinyURL - is a link shortening service. When you use the Short URL option we share the original link with TinyURL.com. Unless a password is added, TinyURL would have access to your content.
Marketing - We use MailChimp as our marketing automation platform and Zoho CRM for customer relationship management.
Support - We use Zoho Desk for our support system.
Payment Processing - Online payments may be made via our payment service provider PayPal. We do not share any personal information with or obtain any personal information from PayPal except whether payment was completed. We receive from PayPal your name as it was given to PayPal and the amount paid.
Legal Obligation - We may share your information where we are legally obliged to do so. Please note we may not be able to provide you with notice prior to disclosure in such cases.
Corporate Transaction - Where we are considering a corporate transaction or we are in negotiations to sell or buy any business or assets or conclude such a transaction, we may disclose your Personal Data to the prospective or actual seller or buyer of such business or assets.
As an information management service our Services may display or send Personal Data, under your control, through our applications or via email or text. For example, you may have configured the service to send an email notification when a user downloads a file.
It is your responsibility to secure your login credentials to the Services, and keep your email address up to date. We highly recommend enabling two factor authentication, and learning about security controls available with the Services. For more information see our documentation at https://docs.storagemadeeasy.com/security.
You have the right to review, correct, delete, or limit the use of your Personal Data. You may do so through tools we provide within the Services or through a written or verbal request. You may email email@example.com or submit a Contact Us form.Information for Enterprise File Fabric Users
Users can access the Personal Data that is held by Enterprise File Fabric under the “My Personal Data” section within their “Dashboard”. They may also change their marketing preferences and delete their account completely from this page. This applies to SaaS and IaaS. Deleting an account also removes files created in personal folders by that user.
In many situations, Storage Made Easy operates as a service provider on behalf of another entity. For example, when we provide an organization with an Org Account, we are processing user data under the direction of the owner of that account. In this scenario we are known as the ‘processor’ and they are known as the ‘controller’. Certain data protection laws (like GDPR) mandate that data subject requests are handled by data controllers.
We have implemented appropriate measures in the form of various technical, physical and other means, including, but not limited to measures regarding the security of our electronic systems and databases, locks, racks, cases and other devices and access controlling systems, fire-notifying and fire extinguishing systems. These means aim at improving the integrity and security of the Personal Data that we collect and maintain. However, please be advised that even the best security measures cannot guarantee the full elimination of all risks.
Your Personal Data safety is of utmost importance to us. We review and strive to improve our security measures on a regular basis.
If we learn of a Personal Data breach that affects our Services we will attempt to notify you electronically so that timely and appropriate protective steps can be taken. Apart from informing you via email, we may post a notice through the website if a security breach occurs.
We retain Personal Data where we have an ongoing legitimate business or legal need to do so. Our retention periods will vary depending on the type of data involved, whether you have the ability to remove that data yourself, and the legal need. For example, we have a legal obligation to retain payment transaction data for seven years for tax and accounting purposes.
We store encrypted backups in cloud storage as an important layer of protection to help recover from accidental loss of systems or data. Under ordinary circumstances these backups will be retained for up to six months.
The Services are directed to businesses though also available to consumers. They are not available to children under the age of 16.
If you are accessing the Vehera LTD UK website (eu.storagemadeeasy.com) from another jurisdiction, please be advised that you are transferring your personal information to Vehera LTD in the United Kingdom and, by using the website, you consent to that transfer and to abide by the applicable laws concerning your use of the website and your agreement(s) with us.
If you are accessing the Vehera LTD US website (storagemadeeasy.com) from another jurisdiction, please be advised that you are transferring your personal information to Vehera LTD in servers based in the United States and, by using the website, you consent to that transfer and to abide by the applicable laws concerning your use of the website and your agreement(s) with us.
The copyrights of our Websites are the property of Vehera LTD.
Texts, graphics, photographs, animations, videos and clips, visible on the Website are the object of copyright and are part of the intellectual property of Vehera LTD or our partners. Those may not be reproduced, used, presented or represented without an explicit written permission by Vehera LTD. Any distribution of these files, obtained by the Users under the Terms and Conditions of the Website, or of parts of such files, constitutes a violation of the relevant intellectual property protection laws and is prosecuted by the law.
Nothing contained on this Website may be interpreted as granting a license or right of use as a trademark without the prior explicit written consent of Vehera LTD.
Vehera LTD is controlled, operated and administered entirely within United Kingdom.
Our Services may contain links to other websites of interest. You should note that we do not have any control over other websites. We cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
If Vehera LTD does not address your request, or fails to provide you with a valid reason why it is unable to do so, you have the right to contact the Information Commissioner’s Office to make a complaint. See https://ico.org.uk/concerns/ for more information.