1. Website Privacy Policy

2. Software Privacy Policy

3. General Data Protection Regulation (GDPR)



1. WEBSITE PRIVACY POLICY

Innovative Assessments International, Ltd. (“IAI”), is committed to protecting the privacy of consumers visiting our websites and using our products and services. IAI wishes to maintain a safe and secure environment for all users of our online products and services. Visit IAI’s EU General Data Protection Regulation (GDPR) below for more information about GDPR and IAI. 

Scope of this Privacy Policy 

This Privacy Policy describes how your personal information is treated when it is collected on our website www.iassessments.com and all of its sub-domains and associated websites (the “Websites“).The IAI Software Privacy Policy covers information that may be collected through our Products and Services. From time to time, IAI may offer new products and/or services which may fall within the scope of this policy, and will be updated as needed. Please check back with us periodically to stay informed. This Privacy Policy answers the following questions for you regarding your online privacy protection:

  • What Information Does IAI Collect?
  • How Does IAI Use My Information?
  • Does IAI Disclose My Personal Information?
  • Data Retention
  • Legal Basis for Processing Personal Information (EEA visitors only)
  • Social Media Features and Widgets
  • What About Security of Data Transmission?
  • International Data Transfers
  • Will You Notify Me in the Event of Changes to this Privacy Policy?
  • Miscellaneous
    • How Can I Unsubscribe?
    • How Do I Contact IAI?
    • Does the IAI Website Use Cookies and Tracking Technologies?

What Information Does IAI Collect?

IAI may collect personal information from our users for different purposes. The following lists the ways in which we may collect personal information from our users, and the type of information that may be collected: Information you provide voluntarily

  • Registration: To download certain files and/or to obtain other services offered on the Website, you may be required to register yourself via an online form. In this form, we will typically collect the following information: (i) full name; (ii) title; (iii) e-mail address; (iv) phone number, and (v) company name. The provision of this personal information may be mandatory, and if you choose not to submit the requested information we may not be able to provide you with the products or services offered on the Website. All users can access the Website without being a registered user. However, you may not be able to access certain areas or services online if you are not a registered online user.
  • Contact us: IAI may send e-mail, phone, and SMS communications to customers in accordance with their communication preferences, which they opt-in upon registration. You can opt-out from these communications at any time by following the instructions under the heading “Your Data Protection Rights”.
  • Product Demos: IAI may collect a user’s name and/or email for demonstration purposes of the products and services, upon a Customer’s specific request. In such cases, this personal information is used only to identify a specific user’s results from our Services, and forward his/her results to the User or Customer.

Information we collect automatically:

  • Server logs: As is true of most websites, we gather certain information automatically from visitors to our Website and store it in log files. This information may include internet protocol (IP) address, browser type, internet service provider (ISP), referring/exit page, operating system, date/time stamp, and click stream data. We use this information, which does not directly identify individual users, to analyze trends, to administer the Website, to track users’ movements around the Website and to gather demographic information about our user base as a whole.

How Does IAI Use My Information?

IAI uses personal information for the following purposes:

  • Purposes apparent to you: IAI uses the personal information it collects primarily for the purposes made apparent to you at the time the information is collected – namely, to provide access to restricted documents, to contact you upon your request, and/or to demonstrate our products and services.
  • Communications: In addition, IAI also may use users’ contact details for the following purposes in accordance with the user’s communication preferences:
    • for internal surveys to obtain feedback on our products, our Website, or on other aspects of our business that impact you as a IAI customer;
    • to notify users of new products or services we think may be of interest to them;
    • to send promotional materials.

Users may receive such promotional materials and/or be contacted by our business partners only if this is in accordance with their communications preferences. Please see “How Can I Unsubscribe?” for more information.

  • Testimonials: We may display personal testimonials and endorsements of satisfied customers on our Website. With your consent, we may post your testimonial along with your name. If you wish to update or delete your testimonial, you can contact us at privacy@iassessments.com.

Does IAI Disclose My Personal Information?

IAI discloses personal information in the following circumstances:

  • Compliance with law: We may disclose your data to any competent law enforcement body, regulatory, government agency, court or other third party where we believe disclosure is necessary (i) as a matter of applicable law or regulation, (ii) to exercise, establish or defend our legal rights, or (iii) to protect your vital interests or those of any other person.
  • Mergers and acquisitions: We may disclose your data to a potential buyer (and its agents and advisors) in connection with any proposed purchase, merger or acquisition of any part of our business, provided we inform the buyer it must use your personal information only for the purposes disclosed in this Privacy Policy.

Data retention

We retain personal information we collect from you where we have an ongoing legitimate business need to do so. For example, we will retain your information for as long as your account is active or as needed to provide you services. If you wish to cancel your account or request that we no longer use your information to provide you services contact us at privacy@iassessments.com.Please note that if you ask us to delete your personal information we will endeavor to comply with your request in compliance with applicable law, but may need to retain and use some information where necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

Legal Basis for Processing Personal Information (EEA visitors only)If you are a visitor from the European Economic Area, our collection and use of your personal information is based on your consent. If you have questions about or need further information concerning the basis on which we collect and use your personal information, please contact us at privacy@iassessments.com

Social Media Features and Widgets

Our Website may include social media features, such as the Facebook Like button and widgets, such as the “Share This” button or interactive mini-programs that run on our Website. These features may collect your IP address, which page you are visiting on our Website, and may set a cookie to enable the feature to function properly. Social media features and widgets are either hosted by a third party or hosted directly on our Website. Your interactions with these features are governed by the privacy policy of the company providing them.

What about Security of Data Transmission?

We use technical and organizational measures to protect the personal information that we collect and process about you. The measures we use are intended to provide a level of security appropriate to the risk of processing your personal information. Unfortunately, no data transmission over the Internet can be guaranteed to be 100% secure. As a result, while we strive to protect your personal information, IAI cannot guarantee the security of any information you transmit to us or from our products or services.

International Data Transfers

Your personal information may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different from the laws of your country. Specifically, our Website servers are located in the U.S. and our third party service providers and partners operate around the world. This means that when we collect your personal information we may process it in any of these countries. However, we have taken legal safeguards, including implementing the European Commission’s Standard Contractual Clauses for transfers of personal information between our group companies, which require all group companies to protect personal information they process from the EEA in accordance with the European Union data protection law. Further details about the Standard Contractual Clauses we have implemented or the safeguards we have adopted with our third party service providers and partners and further details will be provided upon request.

Your Data Protection Rights

You have the following data protection rights: You have the right to access, correct, update or request deletion of the personal information collected about you. Please direct such requests to privacy@iassessments.com.You have the right to opt-out of marketing communications we send you at any time. Please see the section entitled “How can I unsubscribe?” All access, correction, update, opt-out and deletion requests will be acknowledged and responded to within 30 days of receipt. We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws. In addition, if you reside in the European Economic Area or Switzerland, you also have the following rights: You have the right to object to the processing of your personal information, the right to ask us to restrict the processing of your personal information or the right to request the portability of your personal information. You can exercise these rights by contacting us at privacy@iassessments.com

In the circumstances where you have consented to the collection and processing of your personal information, you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal. Additionally, if the information was collected for another reason (e.g., to perform a contractual obligation, for legitimate business interests that are not outweighed by your data protection interests or for another legally permissible purpose), the withdrawal of your consent will be effective when such purpose no longer exists. You have the right to file a complaint with a data protection authority about our collection and use of your personal information. For more information, please contact your local data protection authority. (Contact details for data protection authorities in the European Economic Area, Switzerland and certain non-European countries (including the US and Canada) are available here ).

Will You Notify Me in the Event of Changes to this Privacy Policy?

IAI reserves the right to make changes to this Privacy Policy in response to changing legal, technical or business developments. When we update our Privacy Policy, we will take measures to inform you of such change by posting any changes in the policy directly on the IAI Website.  In the event of a material change in the Website’s data collection and handling practices, IAI will post a prominent notice on the Website for 30 days prior to the changes taking effect and we may also notify you by email (sent to the e-mail address specified in your account). We will obtain your consent to any material Privacy Policy changes if and where this is required by applicable data protection laws. We encourage you to review our Privacy Policy whenever you visit the Website. If you have any questions or concerns on the IAI Privacy Policy, please contact us using the details provided below.

How Can I Unsubscribe?

If you no longer wish to receive our newsletter and promotional communications, you may opt-out of receiving them by following the instructions included in each newsletter or communication, by emailing us at privacy@iassessments.com or you may contact us using the contact details provided below to opt-out.

Does the IAI Website Use Cookies and Similar Tracking Technologies?

We, and our third party partners, use cookies, scripts, and tags on our Websites. A cookie is a piece of data stored on a website visitor’s hard drive to help us improve your access to our Website and identify repeat visitors to our Website. Cookies can also enable us to track and target the interests of our users to enhance the experience on our Website.Our third party partners may also use other tracking technologies, such as clear GIFs (a.k.a. web beacons/web bugs), that help us better manage content on our Websites by informing us what content is effective. Clear GIFs are tiny graphics with a unique identifier, similar in function to cookies, and are used to track the online movements of Web users.We may also use clear GIFs in our HTML-based emails to let us know which emails have been opened by recipients. This allows us to gauge the effectiveness of certain communications and the effectiveness of our marketing campaigns. If you would like to opt-out of these e-mails, please see “How Can I Unsubscribe?” We, and our third party partners, may use Local Shared Objects (Flash cookies) or Local Storage (HTML 5), to store content information and preferences. Various browsers may offer their own management tools for removing HTML 5. To manage Flash, please click here: http://www.macromedia.com/support/documentation/en/flashplayer/help/settings_manager07.html

How Do I Contact IAI?

If you have any further questions or comments regarding this Privacy Policy, you may contact us at privacy@iassessments.com, or by mail to: Innovative Assessments International LTD., 25 HaMered St., 17th Floor, Tel Aviv-Yafo 6812508, Israel. The data controller of your personal information is Innovative Assessments International Ltd., unless we inform you otherwise when providing a product or service to you.



2. SOTWARE PRIVACY POLICY


EFFECTIVE DATE: May 1, 2018 Innovative Assessments International, Ltd. (“IAI”), values your privacy in your personal information and data stored in the Worthy Credit software platform (the “Service”). This Privacy Policy (“Policy”) describes what information IAI and its affiliated companies (“we” or “us”) collect about you and why, what we may do with that information and how we handle your data. These privacy terms are specific to the Service. Additional privacy terms can be found in the general IAI Website Privacy Policy. Visit IAI’s EU General Data Protection Regulation (GDPR) policy for more information about GDPR and IAI.

Scope of this Privacy Policy

This Privacy Policy is incorporated into the Terms of Service applicable to the Service and applies to the information obtained by us through your use of the Service.

Changes to this Privacy Policy

As the Service evolves, we may need to update this Policy to reflect changes in the Service, our business and applicable laws; we will, however, always maintain our commitment to respect your privacy. We will post revisions to this Policy, with effective dates, in an easy to find area of our web site. We recommend that you check back here periodically to stay informed of any changes. We will request your consent to any changes if required by law; if consent is not required, please understand that your continued use of the Service after any change means that you agree with, and consent to be bound by, the revised Privacy Policy. If you disagree with any changes in this Policy and do not wish your information to be subject to the revised Policy, you will need to discontinue use of the Service as described below (see “How Do I Cancel the Service and Delete My Data?”). In the event of a material change in our data collection and handling practices, IAI will post a prominent notice on its website for 30 days prior to the changes taking effect.


I. Information Collection and Use

What Information Does IAI Collect About me and Why?

In most cases, IAI does not collect any personally identifying information from the users of the Service. However, IAI may, in some situations, collect a user’s name, email, phone number and/or ID number, for demo purposes or upon a customer’s specific request (“User Information”). In such cases, this User Information is used only to identify a specific user’s results from our Services. 

II. Information Access and Disclosure

When Is My Personal Information or Data Shared?

IAI does not sell or rent your User Information. Your User Information is only shared with the customer who requested the collection of the User Information and is not used for any other reason. The only other situation in which we would otherwise disclose your User Information is if we are required to comply with applicable laws, including compliance with warrants, court orders or other legal process.


III. Data Storage and Transfer

Where Is My Data Stored?

When you use IAI’s Worthy Credit platform, the data transmitted will be stored in AWS (Amazon Web Services) servers located in the United States of America. Please note that AWS is GDPR compliant – see the following link for more details – https://aws.amazon.com/blogs/security/all-aws-services-gdpr-ready/

International Data Transfers

Your personal information may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different to the laws of your country. Specifically, our servers are located in the U.S. and third party service providers and partners operate around the world. This means that when we collect your personal information we may process it in any of these countries. However, we have taken appropriate legal safeguards, these include implementing the European Commission’s Standard Contractual Clauses for transfers of personal information between our group companies, which require all group companies to protect personal information they process from the EEA in accordance with European Union data protection law. Further details about the Standard Contractual Clauses we have implemented, or the safeguards we have adopted with our third party service providers and partners, will be provided upon request.

How Can I Access or Correct the Information that IAI has About Me?

If you wish to (i) access any personal information that we maintain about you; or (ii) request that we correct or delete the personal information that we maintain about you, you may contact us via email at privacy@iassessments.com. We will comply with such requests to the extent required by law or our policies, and subject to any limitations in our systems.

Is My Data Secure?

The security of your data is important to us and a responsibility that we embrace. IAI takes reasonable measures to help protect your information from loss, theft, misuse and unauthorized access, disclosure, alteration and destruction. We use a combination of administrative, physical and logical security safeguards and continue to work on features to keep your information safe. Your data is accessed by IAI as required to support the Service and access is limited to only those within the organization with the need to access to support the Service. For Worthy Credit’s data we use industry standard HTTPS/TLS for data encryption in transit and hardware based encryption for data at rest. Your data is hosted by AWS. We believe AWS is able to invest much more in security, backups and maintenance than many medium to large enterprises. For this reason, we believe the AWS web-based system typically has more security measures in place than many on-premises systems. If IAI learns of a security system breach, we may attempt to notify you and provide information on protective steps, if available, through the email address that you have provided to us or by posting a notice on our web site and/or via other communication platforms. Depending on where you live, you may have a legal right to receive such notices in writing.

Legal Basis for Processing Personal Information (EEA visitors only)

If you are a visitor from the European Economic Area, our collection of your personal information is based upon your consent. If you have questions about or need further information concerning the basis on which we collect and use your personal information, please contact us at privacy@iassessments.com

IV. Information Ownership, Data Retention, Service Cancellation and Data Deletion

Who Owns My Data?

Data created and stored in the Service is owned by the applicable Customer and not by IAI.

How Long is My Data Retained?

We will retain information stored on Service-related servers for as long as the account is active, or as needed to provide the Customer with the Service.

How Do I Cancel the Service and Delete My Data?

Your data may be deleted upon request or in accordance with IAI’s contractual agreement with the relevant Customer. In addition, if you reside in the European Economic Area or Switzerland, you also have additional rights under the GDPR. To exercise any of such rights, please contact us at privacy@iassessments.com.   

V. Contact Us

How can I Contact IAI?

IAI welcomes your feedback regarding this Privacy Policy. If you have questions, comments or concerns about this Policy, please contact us by email at privacy@iassessments.com or postal mail at: Innovative Assessments International, 25 HaMered St., 17th Floor, Tel Aviv-Yafo 6812508, Israel. 


3. EU GENERAL DATA PROTECTION REGULATION (GDPR)


Introduction

The European Union’s General Data Protection Regulation (GDPR) became effective on May 25, 2018. GDPR applies beyond the borders of the EU; any organization that works with EU residents’ personal data in any manner, irrespective of location, has obligations to protect the data. Innovative Assessments (IAI) is aware of its GDPR compliance obligations and its role in providing support to users and customers to meet GDPR requirements. 

IAI’s Commitment

IAI has and will continue to honor its users’ right to data privacy and protection. This means, among other things, that: we do not collect and process users’ personal information beyond what is required for the functioning of our products or services; we have implemented the European Commission’s Standard Contractual Clauses for international transfers of personal information between our group companies, which require all group companies to protect personal information processed from the EEA in accordance with European Union data protection law; we have implemented policies and procedures to support GDPR requirements with respect to users’ rights (i.e. right to portability, right to erasure, etc.) we have adopted safeguards with our third party service providers and partners; we provide visibility and transparency through our privacy notices which inform our users and customers about what data is collected and how it is used; and we offer Data Processing Agreements, which meet GDPR requirements, to our software as a service (SaaS) customers.