Privacy Policy

We (Eccam s.r.o.) develop ReqView requirements management solution for managing and document requirements traceability in software or systems development projects (the “Product”) and provide services related to the Product (the “Services”).

In general, you can visit our online website or the support and product portals (the “Site”) without identifying yourself or revealing any personal information. However, we may request that you voluntarily supply us with personally identifiable information when using the Services, or when you otherwise do business or make contact with us.

We are committed to protecting and respecting your privacy. This Privacy Policy (the “Policy”) describes which personal information we collect, how we process it as a Controller, and how you can control the collection, correction and/or deletion of information in accordance to the EU General Data Protection Regulation (GDPR).

We do not have any intention of collecting any personally identifiable information from children. If you are aware that any person under the age of 18 has provided us with personally identifiable information, please contact us and we will remove the information.

The Site and the Product may contain links to other sites or online services. We are not responsible for the privacy practices of such sites or services. We encourage you to be aware when you leave the Site or the Product and to read the privacy statements of sites that collect personally identifiable information. The Policy applies only to information collected on this Site or in the Product.

Processing Personal Data

In general, you can use the Site and the Product without identifying yourself or revealing any personal information. We may request that you voluntarily provide us with personally identifiable information when you make an inquiry through the Site.

Evaluation

When you request an evaluation of the Product we collect and process your first and last name, email address and company name.

We process this personal information to deliver you the requested Product and Services during your evaluation and, in case of your interest, sell you the Product or the Services (Lawful basis: Legitimate interests).

We retain this personal information for 3 years to ensure that we can assist you when you have any questions or feedback about the Product or Services.

We use Bouncer third party service for verification of your email and Freshsales third party CRM service for managing your contact information.

Appointments

When you schedule an appointment with us we collect your first and last name, email address, and company information.

We process this personal information to schedule the meeting and to provide you relevant information during the meeting (Lawful basis: Legitimate interests).

We retain this personal information for 3 years to ensure that we can assist you when you have any questions or feedback about the Product or Services.

We use Calendly third party service to schedule the appointments at your convenience, Microsoft 365 third party service to manage calendar events and Zoom third party service to hold online meetings.

Purchase

When you order the Services we collect your first and last name, email address, company information and address at our product order forms or other online transaction forms.

We process this personal information to sell and deliver you the Product and Services, billing, bookkeeping, and product development (Lawful basis: Contract Performance).

We retain this personal information for a minimum period given by our legal obligations, such as an obligation to keep records for EU VAT purposes.

If you pay for the Services online, a secure window is opened and you can enter payment information (e.g. credit card number) which is provided directly to a third party PCI compliant reseller partner FastSpring. We have no access to that payment information.

We use Freshsales third party CRM service for managing your contact and sale information.

Product Usage

When you use the Product you need to provide your first and last name, email address and company information to enable some Product features, such as for history tracking and team collaboration. We do not process this personal information.

When you activate or deactivate a Product license then we may process your first and last name, email, IP address and license information, including license ID and company name, which may be in some cases associated with your personal information provided during the Purchase. We need this information for license management purposes (Lawful basis: Legitimate interests).

We retain this personal information for 5 years after your Product license expires.

The Product may send anonymous reports about program errors and exceptions to Sentry third party service. The error reports store information about program call stack and user actions preceding the error essential for further error analysis. The error reports also store a randomly generated unique user ID, which is not connected with your personal information, to estimate the number of users affected by each error. We use the error reports for fixing the Product errors and improving its stability only.

Feedback

The Site or the Product provides feedback functionality which you can use to submit questions, bug reports, feature requests, user surveys, discussion comments, or another kind of feedback. You can also send us your feedback directly by email.

In order to use certain online services and functions of the Site, such as the support or product portal, you need to register with a user name, email and a password. You may optionally provide also your title, phone, company information and photo.

We process your user name, phone, email address, and company information to respond to your inquiries (Lawful basis: Legitimate interests).

We retain this personal information for 20 years. We will delete this personal information until 30 days after you request us to do so.

We use Freshdesk third party service for managing your support tickets, Microsoft 365 third party service for exchanging emails, Freshsales third party CRM service for managing your inquiries, Productboard third party service for managing feature requests created, upvoted or commented by you, and Typeform for managing your responses to satisfaction surveys.

Newsletter

If you subscribe to receive newsletters on the Site then we will process your name, email and company information to send you announcements about Product updates and exclusive offers (Lawful basis: Consent).

You can unsubscribe from receiving the newsletter any time by clicking on the “unsubscribe from the list” link in a received email.

We retain this personal information for as long as you use remain subscribed to the newsletter or if we decide to cancel our newsletter service.

We use Freshsales and Freshmarketer third party services for managing the email campaigns and delivery of newsletter emails.

Anonymized Data

We may create anonymized data sets from your personal data. Anonymized data does not allow for the identification of any individual person and so it is no longer personal data.

The Site and the Product may use a third party software for analytics, such as Google Analytics, to collect anonymized analytics data to understand better Site visitors or Product users, analyze trends, administer the Site, track your actions and usage of the Site or the Product, record transactions, and gather demographic information for aggregate use.

Cookies

We may use cookies (small text files stored your computer) for record-keeping purposes. We may use session cookies to make it easier for you to navigate the Site. A session ID cookie expires when you close your browser. We may use persistent cookies to track and target the interests of users to enhance the experience on the Site.

Your web browser allows you to control and limit cookies on your computer. If you reject cookies, you may still use the Site, but your ability to use some areas or functions of the Site may be limited.

Do Not Track

The Site and the Product do not use technologies that respond to ‘Do-Not-Track’ signals communicated by your Internet browser.

Security

The security of data is very important to our business. In accordance with our legal obligations, we take appropriate technical and organizational measures to protect your personal data and keep those measures under review.

Your Rights

Right of Access

You have the right to receive confirmation as to whether your personal data is being processed by us, as well as various other information relating to our use of your personal data. You also have the right to access your personal data which we are processing.

Right to Rectification

You have the right to require us to rectify any inaccurate personal data we hold about you. You also have the right to have incomplete personal data we hold about you completed, by providing a supplementary statement to us.

Right to Erasure

You have the right to require we erase your personal data which we are processing where at least one of the following grounds applies: the processing is no longer necessary in relation to the purposes for which your personal data were collected or otherwise processed; our processing of your personal data is based on your consent, you have subsequently withdrawn your consent and there is no other legal ground we can use to process your personal data; you object to the processing as set out in the “Right to Object” section of this policy and we have no overriding legitimate interest for our processing; the personal data have been unlawfully processed, and the erasure is required for compliance with a law to which we are subject.

Right to Restriction of Processing

You have the right to restrict our processing of your personal data where: the accuracy of the personal data is being contested by you; the processing by us of your personal data is unlawful, but you do not want the relevant personal data erased; we no longer need to process your personal data for the agreed purposes, but you want to preserve your personal data for the establishment, exercise or defense of legal claims; or we are processing your data based on our legitimate interest (as set out above) and you object to our processing on this basis and want processing of the relevant personal data to be restricted until it can be determined whether our legitimate interest overrides your legitimate interest.

Where any exercise by you of your right to restriction determines that our processing of particular personal data is to be restricted, we will then only process the relevant personal data in accordance with your consent and, in addition, for storage purposes and the purpose of legal claims.

Right to Data Portability

You have the right to receive your personal data in a structured, standard machine readable format and the right to transmit such personal data to another controller.

Right to Object

You have the right to object to us processing your personal data where we are processing your personal data based on our legitimate interests (as set out above).

If you ask us to stop processing your personal data on this basis, we will stop processing your personal data: unless we can demonstrate compelling grounds as to why the processing should continue in accordance with data protection laws; and for direct marking purposes.

International Transfers

We may transfer your personal data to third party processors (see section “Processing Personal Data”) complying with the highest data protection standards as requested by the GDPR.

Processors storing the personal data in the United States have self-certified their compliance with the EU-U.S. Privacy Shield which is an approved certification mechanism under the GDPR.

Business Reorganizations

Eccam may be sold, might sell or buy businesses or assets of businesses, or Eccam might merge with another business. In such transactions, customer information generally is one of the transferred business assets. Also, if Eccam, a line of business of Eccam, or substantially all the assets of Eccam are transferred, customer information may well be one of the transferred assets. We will make reasonable effort to provide notice on the Site and to notify you via email to the most recent email address that you have provided to us of any such change in ownership or control of your personal information.

We may release information concerning your use of the Site (including, but not limited to, posted Public Content, registration information, and network records) when we believe in good faith that such release is appropriate to comply with the law (for example, pursuant to a statutory demand, subpoena, warrant or court order), to protect against the fraudulent, abusive or unlawful use of the Site, to protect our rights or property, enforce any contract between you and Eccam, or if we reasonably believe that a situation involving danger of death or injury to any person requires disclosure.

Changes

We do reserve the right to modify, revise, or otherwise amend the Policy at any time and in any manner. Please check back frequently to see any updates or changes to the Policy.

If we make any significant changes or otherwise change the way that we process your personal data, we may let you know via email or notify you when you are using the Site or the Product.

Contact

If you have any questions regarding the Policy, if you would like to exercise your data subject rights then please use the contact form.

You can also contact us by post on the following address:

Eccam s.r.o.
Krakovska 9
110 00 Prague 1
Czech Republic

Revision Date: August 19, 2020