Privacy

Revised June 15, 2023

Welcome to the website of Dovico Software, Inc. ("Dovico", "we", "us", and "our"). We have prepared this Privacy Policy ("Privacy Policy") to explain how we collect, use, protect and disclose your information when you use the Dovico website, or any other websites on which this Privacy Policy appears ("Sites"), and Dovico services including any software, mobile applications, products, devices or other services offered by Dovico from time to time (collectively, "Services"). It also describes the choices available to you regarding the use of, your access to, and how to update and correct your Personal Data. "You" refers to you as a user of the Sites or Services, and "Customer" refers to the entity or person who has opened an account and subscribed to the Services.

Quick Links

We recommend that you read this Privacy Policy in full to ensure you are fully informed. If you only want to access a section of this Privacy Policy, then you can click on the relevant link below to jump to that section.

1. Who We Are

Dovico is a provider of time tracking, resource allocation, and employee engagement solutions.  We are headquartered in New Brunswick, Canada. For more information, please see "About Us" on our website.

2. Information We Collect

Information You Provide to Us

We collect information that personally identifies you and other personally identifiable information that you provide to us when you sign up for or use the Sites or Services ("Personal Data"). This may include:

Social Media

Any public posts, such as blog articles, comments, questions and testimonials, that are placed on the Sites may be read, collected, and used by others who access them. To request removal of your Personal Data from our blog or community forum, please contact us. In some cases, we may not be able to remove your Personal Data.

Information We Collect Automatically

We automatically collect information (“Usage Data”) regarding the actions you take on the Sites and Services. In some countries, including countries in the European Economic Area ("EEA"), this information may be considered Personal Data under applicable data protection laws. Usage Data helps us understand trends in our users' needs so that we can better consider new features or otherwise improve our Services. We may share Usage Data about our users with our third-party service providers for various purposes, including to help us better understand our customers' needs and improve our Services.

When you use the Sites or Services, some examples of the Usage Data we may collect could include:

We may store such Usage Data itself and/or such information may be included in databases owned and maintained by Dovico’s service providers. We may use such information and pool it with other information to track, for example, the total number of visitors to our Sites or users of our Services, the number of visitors to each page of our Sites. We use this information to help us understand how people use the Sites and Services, and to enhance the Sites and Services.

Our mobile application may collect certain additional information automatically, including, but not limited to, the type of mobile device you use, your mobile device's unique device ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browsers you use, available storage space, connection type (e.g. WiFi vs. cellular) and information about the way you use the application. We may also use GPS technology (or other similar technology) to determine your current location. If you do not want us to have your location information, you should turn off the location services for the mobile application located in your mobile phone settings and/or within the mobile application.

Single Sign-On

You can log in to our Sites using sign-in services such as Facebook Connect or an Open ID provider. These services will authenticate your identity, provide you the option to share certain Personal Data (such as your name and email address) with us, and to pre-populate our sign-up form. Services like Facebook Connect give you the option to post information about your activities on our Sites to your profile page to share with others within your network.

Social Media Widgets

Our Sites may include Social Media Features, such as the Facebook “Like” button, and Widgets, such as the “Share this” button or interactive mini-programs that run on our Sites. These Features may collect your Internet protocol address, which page you are visiting on our Sites, and may set a cookie to enable the Feature to function properly. Social Media Features and Widgets are either hosted by a third party or hosted directly on our website. Your interactions with these Features are governed by the privacy statement of the company providing it.

3. Tracking Technologies

We use cookies (a small text file placed on your computer to identify your computer and browser) and web beacons (a file placed on a website that monitors usage). Cookies and web beacons operate to improve the experience of the Sites and Services, for example, pre-populating your username for easier login, to allow user-specific messaging or to permit user-specific advertising.

Most web browsers are initially set up to accept cookies. At this time, Dovico does not recognize automated browser signals regarding tracking, including "do-not-track" signals. You can remove persistent cookies and change your privacy preferences by following directions provided in your Internet browser's "help" directory. However, certain features of the Sites or Services may not work if you delete or disable cookies. Some of our service providers may use their own cookies and web beacons in connection with the services they perform on our behalf, as further explained below.

We and our service providers use similar technologies to analyze trends, administer the Sites, track users' movements around the Sites, and to gather demographic information about our user base as a whole. Users can control the use of cookies at the individual browser level.

For additional information, see our Cookie Statement.

4. How We Use Your Information

We may use your Personal Data for the following purposes:

5. Who We Share Your Personal Data With

We may disclose your Personal Data to the following categories of recipients:

6. Security

We recognize our legal obligations to protect the Personal Data we have gathered about individuals. We have therefore implemented appropriate technical and organizational measures to secure against unauthorized access, collection, use, disclosure, copying, modification, disposal or destruction of Personal Data; These arrangements may include physical security measures, network security measures, and organizational measures such as non-disclosure agreements and need-to-know access.

7. Data Retention

We will retain your information for as long as your account is active or where we have an ongoing business need to do so (for example, to comply with applicable, legal, tax, or accounting requirements). We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

When we have no ongoing legitimate business need to process your Personal Data, we will either delete or anonymize it or, if this is not possible (for example, because your Personal Data has been stored in backup archives), then we will securely store your Personal Data and isolate it from any further processing until deletion is possible.

8. Third Party Links

Our Sites and Services may contain links or integrate with other websites and online services or allow others to send you such links. Dovico is not responsible or liable for any damage or loss related to your use of any third-party website or online service. You should always read the terms and conditions and Privacy Policy of a third-party website or online service before using it, whether directly or in connection with your use of the Sites or Services. Third parties may collect, but we do not authorize them to collect, personally identifiable information about your online activities over time and across different websites when you use the Sites or Services.

9. Additional Notice to Residents of the European Economic Area (EEA)

9.1 International Data Transfers

Customer Data

Data and information, including Personal Data, provided or created by our Customers and their licensed users in the course of using the Services (“Customer Data”) is processed in the geographic region where the Customer is located. The Customer is the data controller of Customer Data. Dovico, as data processor, only processes the Customer data according to the instructions of the data controller. For more information, see Dovico’s standard Data Protection Addendum (“DPA”) which determines the processing of Customer Data.

Any questions about the processing of Customer Data should be directed to the Dovico customer through whose account you access the Services.

Direct Data Transfers to Dovico (Canada)

In some circumstances, Personal Data may be transferred from the EEA/UK to Dovico’s offices in Canada. These include direct communications for support, finance, and sales, and occasionally Customer Data may be transferred if required for technical support. Such transfers are legally authorized by a finding by the EU Commission that Canada has an adequate level of data protection.

Transfers to Other Countries

We use third-party service providers to provide some services that are necessary or ancillary to our delivering the Sites and the Services, and some of these services may include processing Personal Data. These may be located generally in Canada, the EEA/UK, the USA, and other countries. In order to provide security and confidentiality for your Personal Data, Dovico has undertaken contractual and other measures to ensure our service providers provide adequate protection for Personal Data, as follows:

9.2 Your Data Protection Rights

If you access our Sites and Services from the EEA, you have the following legal rights in respect of your Personal Data:

The right to be informed – You have the right to be told about the collection and use of the Personal Data you provide. This Privacy Policy sets out the purpose for which we process your Personal Data, how long we will keep your data, and who we will share your data with. (For more information: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/right-to-be-informed/).

Right of access – You have the right to know whether we are processing your Personal Data, and to receive a copy of that data. We would need as much information as possible to enable us to locate your data. We will respond to your request within 30 days of receipt of your request. (For more information: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/right-of-access/).

Right to rectification – You have the right to have any incorrect Personal Data corrected or completed if it is incomplete. You can make this request verbally or in writing. We will need as much information as possible to enable us to locate your data. We will look at any request and inform you of our decision within 30 days of receiving the request. (For more information: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/right-to-rectification/).

Right to erasure – This right, often referred to as the right to be forgotten, allows you to ask us to erase Personal Data where there is no valid reason for us to keep it. (For more information: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/right-to-erasure/).

Right to restrict processing – You have the right to ask us to restrict processing of your data. (For more information: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/right-to-restrict-processing/).

Right to data portability – You have the right to move, copy or transfer your Personal Data from one IT environment to another. This right applies to data that you have provided to us and that we are processing on the legal basis of consent or in the performance of a contract and that processing is by automated means. (For more information: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/right-to-data-portability/).

Right to object – You have the right to object to our processing of your Personal Data based on (i) legitimate interests, or for the performance of a task in the public interests/exercise of official authority (including profiling); (ii) direct marketing (including profiling); and (iii) for purposes of scientific/historical research and statistics.

(For more information: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/right-to-object/).

Rights relating to automated decision making including profiling – You have the right in respect of automated decision making, including profiling. Where we carry out solely automated decision making, including profiling, which has legal or similarly significant effects on you, we can only do this if it is in connection with a contract with you, we have a right under law or you have provided your explicit consent. We will tell you if this happens and tell you how you can request human intervention or challenge the decision. (For more information: https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/individual-rights/rights-related-to-automated-decision-making-including-profiling/).

Rights to withdraw consent – Where we process your Personal Data based on your consent you have the right to withdraw that consent at any time without reason. You can opt-out by using the unsubscribe/opt-out in any marketing we send you.

Exercising your data rights – If you want to exercise any of the above rights, or If you have any questions on how and why we process your data, please contact us. We will respond to your request within 30 days of receipt of your request. However, if Dovico derives the custody or control of the Personal Data through its Customer, the Customer will be the data controller and all requests for access to Personal Data should be forwarded through such data controller to Dovico.

If you are not satisfied with any aspect of our handling of your data, and you consider that the processing of your Personal Data infringes the GDPR which is applicable throughout the EEA, you can make a complaint to the supervisory authority of the Member State of your habitual residence, place of work or place of the alleged infringement.

We respond to all requests we receive from individuals wishing to exercise their data protection rights promptly and at the latest within a month. If you are not located in the EEA, you may have similar rights in your location. If feasible, we will help with your request.

9.3 Legal Basis For Processing Personal Data

If you are visiting our Sites or accessing our Services from the EEA, our legal basis for collecting and using the Personal Data described above will depend on the Personal Data concerned and the specific context in which we collect it.

We will generally collect Personal Data from you only where we have your consent to do so, where we need the Personal Data to perform a contract with you, or where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms. In some cases, we may also have a legal obligation to collect Personal Data from you or may otherwise need the Personal Data to protect your vital interests or those of another person.

If you have questions about or need further information concerning the legal basis on which we collect and use your Personal Data, or for more details on our legitimate interests, please contact us.

10. Privacy Policy Changes

We may change this privacy policy at any time and from time to time. When we update the policy, we will take appropriate measures to inform you, consistent with the significance of the changes we make. The most recent version of the privacy policy is reflected by the version date located at the top of this privacy policy. All updates and amendments are effective immediately upon notice, which we may give by any means, including, but not limited to, by posting a revised version of this privacy policy or other notice on the Sites. We encourage you to review this privacy policy often to stay informed of changes that may affect you.

11. How To Contact Us

If you have any questions or concerns about our use of your Personal Data, please contact us by email or telephone, or by mail at the address below.

Dovico Software Inc.
91 John St
Moncton, NB, Canada
E1C 2H3