Revision Date October 7, 2014
What information do we collect or process, and why? We collect and process different types of data and information for different purposes:
- Contact information. If you express an interest in our products and services, we may collect personal information that you provide to us, such as your name and job title, company, contact information including email address, demographic information such as postcode, preferences and interests, and other information relevant to providing you with information about us and our products and services. We use this information principally to respond to your inquiries but also to send you information about new products or services, special offers or other information that we think you may find interesting or to contact you for customer service or market research purposes.
- Registration, payment and device information. In addition to the information described above, if you sign up for our products or services, we may ask you to provide additional information for setting up and maintaining your account. This may include personally identifiable information such as address, phone numbers and payment information, and other information relevant to the products or services you receive from us, including information about your devices and applications that will use our services. We use this information principally to provide products and services to you.
What is our policy regarding cookies?
- Cookies. Like many web sites, we use different kinds of “cookies” to collect information about your visits to the Aeris Sites. We use “persistent” cookies, small files stored on your hard drive, to remember your login information and your preferences to make your future visits to the Aeris Sites more productive. We also use “session-based” cookies that collect certain types of information, such as IP address and browser type, and statistical information such as pages visited and length of time spent on pages, to help us analyze data about webpage traffic and to improve the Aeris Sites. We remove the data from our systems when we no longer need it. It is removed from your system when you have logged out of your account and closed your browser. You can adjust how your browser handles cookies, although blocking cookies may interfere with your use of some features of the Aeris Sites.
What do we do with the information we gather? In addition to uses described above, we use this information for the following reasons:
- Marketing. We use contact and registration information and log data about your visits to Aeris Sites for several purposes, including customizing your interaction with the Aeris Sites according to your customer status and your interests. We may periodically send promotional emails about new products, special offers or other information that we think you may find interesting using the email address that you have provided. From time to time, we may also use your information to contact you for market research purposes. We may contact you by email, phone, fax or mail.
- Operating, maintaining and improving our products and services. We use all of the information we collect to operate our business, provide products and services to you and our other customers and to maintain and improve our products and services.
- Analytics and Data Aggregation. We analyze all log data as described above to understand how our services are operating, how to maintain and improve them, and to determine if there is information about patterns, correlations and trends that may be useful to us or to our customers or partners. If we aggregate information and move that information outside of your secure account environment or our secure servers, we do so in a form that is intended not to permit personally identifiable information to be viewed or extracted (called, for convenience, “de-identified information”). In addition to our internal use, we may share results of our analysis or aggregated data containing de-identified information with third parties who use it for such purposes as industry analysis and demographic profiling. We may also sell products or services that incorporate or are based on results of our analysis or this aggregated information that has been de-identified.
- Law Enforcement. We may disclose any of your information to government officials as necessary to comply with applicable laws and orders. If we receive a request to disclose any such information, we may do so if we believe in our reasonable discretion that such request is lawful and required and is reasonably necessary to comply with a court order, to protect our property rights or rights of a third party, to protect the safety of any person or of the public or to prevent any activity that we believe is harmful, illegal or unethical.
How secure is your personally-identifiable information, and where is it stored?
- Security. We use industry-standard measures to safeguard the personally identifiable information you give to us, but you need to follow prudent measures to protect against unauthorized access to your account information, including logging out of your account when finished, not sharing your login information and taking other customary security precautions appropriate for the situation. We may use different security measures depending on the type of information and whether it consists of personally identifiable information. By collecting or storing any of your information, we do not undertake to be bound by any additional information security measures that may apply to you or your information under other laws, including, without limitation, the Health Insurance Portability and Accountability Act (HIPAA) or regulations pertaining to payment card data (other than payment card information we collect from you for processing your payments to us) unless we have agreed in a separate services agreement to do so. If we become aware that there has been a breach in security of any of the information that we store or that is stored by our third party service providers, we will promptly notify you as required by law and consistent with our need to determine the scope of the breach and to safeguard our systems.
- Phishing. We are aware that there are people who may pose as legitimate businesses and try to trick you into disclosing personal information that can be used to steal your identity. We will not request your account login or password, your credit card information or any national identifying numbers in an unsolicited or non-secure email or telephone call. If you believe that someone representing themselves as being associated with Aeris has requested this information in a contact that you did not request or initiate, please contact us immediately at firstname.lastname@example.org so that we may verify the identity of the person contacting you and the validity of the request.
Who has access to your personally-identifiable information?
- What access do you have? If you have established an account with us, you can always access your account and review the information you have provided, including name, address, email address, phone number, payment information and other relevant account information. You can update this information directly or contact us for assistance. If you delete some or all of this information, then you may be prevented from accessing your account or using any services. Data relating to your device activity and to actions you have taken regarding those devices that can be viewed by customers may be accessed at our customer portal. If your customer relationship with us terminates, we may archive your information for a period in accordance with our record management procedures and then delete it.
- What access does Aeris staff have? We allow access to those of our employees and consultants who have a need to access your information in order to provide products or services to you or to improve or maintain our products, services and facilities.
- What access do other third parties have? We may store your information with or allow access to your information to third parties who provide us with certain services, including website maintenance services, database services, customer services or other services. Our contracts with these third party providers only allow use of your information to provide these services and require that they not disclose it. We review the security policies and practices of our third party service providers as appropriate as part of our own efforts to maintain the security of your information. In addition, if you participate in any promotional programs, such as by entering a vendor code when you purchase products or services, we may share information about your purchases and your usage with that vendor.
Do we participate in the Safe Harbor Program? We are actively reviewing the steps necessary to permit us to participate in the Safe Harbor program developed by the U.S. Department of Commerce and the European Union.