Privacy notice

Effective as of November 12, 2024

This privacy notice explains how HBK ReliaSoft Cloud collects, retains, processes, shares, and transfers personal data.

ReliaSoft Cloud may change this privacy notice from time-to-time. If any changes are made, the "Effective as of" date at the top of this notice will be updated. If any material changes are made, users will be provided with an additional notice (such as a notice on login screens, or an email notification will be sent).

Personal data collected and its use

The following personal data collected is strictly used for enabling ReliaSoft Cloud product capabilities and for providing product support.

Login ID

When ReliaSoft Cloud is used as authentication authority, a user provided email address is used as the Login ID.

When configured with external authorization (e.g. corporate single sign-on) the external Login ID will be used to authenticate users against the external authentication service. That Login ID would also be used to track certain user related actions, such as the creation or modification of data within the system.

Contact information

Contact information is used to notify users of events that occur within ReliaSoft Cloud. Notifications can be delivered via email, SMS, or other means.

Contact information collected via the product support portal is used to authenticate users, and to provide notifications of support ticket updates. Notifications are delivered via email. If a phone number is provided in support tickets, our product support team may contact users via phone.

Log and usage data

ReliaSoft Cloud collects information about user usage of ReliaSoft Cloud services. This information may include IP address, browser type, operating system, device type, and system and performance information.

This data is accessed only for operating and troubleshooting ReliaSoft Cloud services, and is permanently deleted on a rolling time basis.

Sharing of personal data

Personal data may be shared with sub-processors used to help deliver ReliaSoft Cloud services.

ReliaSoft Cloud enters into a GDPR compliant Data Processing Agreement with each sub-processor and ensures that each sub-processor implements and maintains the same level of privacy and security as ReliaSoft Cloud.

Personal data retention

When the ReliaSoft Cloud contract is terminated, all personal data is either deleted or anonymized. The exception being log and usage data, which is deleted on a rolling time basis. Notwithstanding the above, all customer data in ReliaSoft Cloud will be retained for 90 days following contract termination before being deleted. In relation to the personal data on the contract to perform the services it will be retained according to the legal retention periods.

Cookies

ReliaSoft Cloud uses persistent cookies to track user login state. These cookies may also store preferences that users have configured. A persistent cookie remains on a device until it expires or a user explicitly logs-off from ReliaSoft Cloud.

These cookies are only transmitted via HTTPS. Cookies used by ReliaSoft Cloud do not track users when they cross to third party websites, ReliaSoft Cloud does not provide targeted advertising, and does not respond to Do Not Track (DNT) signals.

Security

ReliaSoft Cloud takes appropriate security measures to protect against unauthorized access or unauthorized alteration, disclosure, or destruction of data. ReliaSoft Cloud restricts access of personal information to HBK employees, contractors, and agents who need to know that information in order to operate, develop, or improve our services. These individuals are bound by confidentiality obligations and may be subject to discipline, including termination, if they fail to meet these obligations. ReliaSoft Cloud is not responsible for protecting any personal data that is shared with an external authentication service.

Data transfer

ReliaSoft Cloud is hosted on Azure Web Services in the United States, so user information may be transferred to, stored, or processed in the United States. While the data protection, privacy, and other laws of the United States might not be as comprehensive as those in your country, ReliaSoft Cloud takes many steps to protect user privacy, including providing a Data Processing Addendum to ReliaSoft Cloud customers.

Privacy Contacts

For more information about personal data protection contact the HBK data protection officer at [email protected].