Connecting you to our latest security, compliance, privacy and legal information.
Like security in the cloud, privacy in the cloud is a shared responsibility between you and us. While you are a client, we become a custodian of your data. That means we store and ensure that only those with the correct permissions have access to the data you store within your SmartSimple Cloud solution.
We do not own Client Data, information, or material that you submit, store, or process within the system. You authorize our staff to access your system, including its Data, only to respond to service or technical problems. We do not monitor, retain beyond the terms of their service agreement, manipulate, use, or disclose any Data or any information regarding you, your account, or your users, without your prior written permission.
During the lifespan of your engagement with us, you are responsible for the integrity of your data. You may elect to cleanse, delete or remove data, where we can provide guidance in the proper steps to perform the task. We will not delete or remove data at your request.
You are responsible for providing notice to users related to data collection, processing, data sharing, openness & data access, international transfer, responsibility, and accountability.
Clients use our solutions to directly collect information from their staff and communities (communities as defined by the Client).
We collect two types of data:
Data required to support the Client’s use of the system through the SmartSimple support desk as expressly requested by the Client.
Aggregated, anonymized, non-demographic usage required to optimize service availability.
Processes related to your Data are defined and managed by you, not SmartSimple. We do not process data. Our solutions act solely as a collection system for the Client.
Choices such as opt-in and opt-outs that are provided to users of the system are defined and managed by you.
We never share data with any other organization or person.
You have full control of matters related to the configuration of your system to implement your corporate openness and data access policies. We are neutral to client policies.
You have the flexibility to activate your system in the jurisdiction of their choice (ie. EU, US, or Canada). Where international transfer of data is envisaged by you, we recommend that you seek legal advice as to the appropriate hosting location and approach.
Internal SmartSimple responsibilities related to the system and service delivery are defined in the Operational Procedures Guide. You are responsible for defining your internal responsibilities.
The Operation Procedures Guide defines internal SmartSimple accountability related to system and service delivery. You are responsible for defining your internal accountability.