1. An overview of data protection
DATA COLLECTION ON OUR WEBSITE
Who is responsible for the data collection on this website?
The data collected on this website are processed by the website operator. The operator’s contact details can be found in the website’s required legal notice.
How do we collect your data?
Some data are collected when you provide it to us. This could, for example, be data you enter on a contact form.
Other data are collected automatically by our IT systems when you visit the website. These data are primarily technical data such as the browser and operating system you are using or when you accessed the page. These data are collected automatically as soon as you enter our website.
What do we use your data for?
Part of the data is collected to ensure the proper functioning of the website. Other data can be used to analyze how visitors use the site.
You always have the right to request information about your stored data, its origin, its recipients, and the purpose of its collection at no charge. You also have the right to request that it be corrected, blocked, or deleted. You can contact us at any time using the address given in the legal notice if you have further questions about the issue of privacy and data protection. You may also, of course, file a complaint with the competent regulatory authorities.
ANALYTICS AND THIRD-PARTY TOOLS
You can object to this analysis. We will inform you below about how to exercise your options in this regard.
2. General information and mandatory information
Please note that data transmitted via the internet (e.g. via email communication) may be subject to security breaches. Complete protection of your data from third-party access is not possible.
NOTICE CONCERNING THE PARTY RESPONSIBLE FOR THIS WEBSITE
The party responsible for processing data on this website is:
56 LE TRONG TAN, TAY THANH, TAN PHU
Email: [email protected]
The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (names, email addresses, etc.).
REVOCATION OF YOUR CONSENT TO THE PROCESSING OF YOUR DATA
Many data processing operations are only possible with your express consent. You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
SSL OR TLS ENCRYPTION
This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar.
If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.
INFORMATION, BLOCKING, DELETION
As permitted by law, you have the right to be provided at any time with information free of charge about any of your personal data that is stored as well as its origin, the recipient and the purpose for which it has been processed. You also have the right to have this data corrected, blocked or deleted. You can contact us at any time using the address given in our legal notice if you have further questions on the topic of personal data.
OPPOSITION TO PROMOTIONAL EMAILS
We hereby expressly prohibit the use of contact data published in the context of website legal notice requirements with regard to sending promotional and informational materials not expressly requested. The website operator reserves the right to take specific legal action if unsolicited advertising material, such as email spam, is received.
3. Data protection officer
STATUTORY DATA PROTECTION OFFICER
We have appointed a data protection officer for our company.
56 LE TRONG TAN, TAY THANH, TAN PHU
Email: [email protected]
4. Data collection on our website
Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit. Other cookies remain in your device’s memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.
Cookies which are necessary to allow electronic communications or to provide certain functions you wish to use (such as the shopping cart) are stored pursuant to Art. 6 paragraph 1, letter f of DSGVO. The website operator has a legitimate interest in the storage of cookies to ensure an optimized service
SERVER LOG FILES
The website provider automatically collects and stores information that your browser automatically transmits to us in “server log files”. These are:
- Browser type and browser version
- Operating system used
- Referrer URL
- Host name of the accessing computer
- Time of the server request
- IP address
These data will not be combined with data from other sources.
Should you send us questions via the contact form, we will collect the data entered on the form, including the contact details you provide, to answer your question and any follow-up questions. We do not share this information without your permission.
You may revoke your consent at any time. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
We will retain the data you provide on the contact form until you request its deletion, revoke your consent for its storage, or the purpose for its storage no longer pertains (e.g. after fulfilling your request). Any mandatory statutory provisions, especially those regarding mandatory data retention periods, remain unaffected by this provision.
REGISTRATION ON THIS WEBSITE
You can register on our website in order to access additional functions offered here. The input data will only be used for the purpose of using the respective site or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise, we will reject your registration.
To inform you about important changes such as those within the scope of our site or technical changes, we will use the email address specified during registration.
You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.
We will continue to store the data collected during registration for as long as you remain registered on our website. Statutory retention periods remain unaffected.
If you would like to receive our newsletter, we require a valid email address as well as information that allows us to verify that you are the owner of the specified email address and that you agree to receive this newsletter. No additional data is collected or is only collected on a voluntary basis. We only use this data to send the requested information and do not pass it on to third parties.
You can revoke consent to the storage of your data and email address as well as their use for sending the newsletter at any time, e.g. through the “unsubscribe” link in the newsletter. The data processed before we receive your request may still be legally processed.
The data provided when registering for the newsletter will be used to distribute the newsletter until you cancel your subscription when said data will be deleted. Data we have stored for other purposes (e.g. email addresses for the members area) remain unaffected.
If you are concerned about our use of your Personal Information, please contact us at [email protected], with the subject line privacy.
7. Use Policy
Under these Terms of Service, you agree not to intentionally misuse the Service. For example, you must not, and must not attempt to intentionally, misuse the Service to do the following things:
- Probe, scan, or test the vulnerability of any BWS applications or services other than your own
- Breach or otherwise circumvent any security, accounting, licensing, audit, or authentication measures of the Service
- Access, tamper with, or use non-public areas of the Service
- Interfere with or disrupt any user, host, or network, for example by sending a virus, overloading, flooding, spamming, or mail-bombing any part of the Service
- Plant malware or otherwise use the Service to distribute malware
- Access or search the Service by any means other than our publicly supported interfaces (for example, “scraping”)
- Send unsolicited communications, promotions or advertisements, or spam
- Send altered, deceptive or false source-identifying information, including “spoofing” or “phishing”
- Publish anything that is fraudulent, misleading, or infringes another’s rights
- Promote or otherwise advertise products or services other than your own without proper authorization
- Impersonate or misrepresent your affiliation with any person or identity
- Publish or share materials that are unlawfully pornographic or indecent, or that advocate bigotry, religious, racial or ethnic hatred
- Violate the law in any way, or to violate the privacy of others, or to defame others
- Capture, store or compare biometric data from a person without his or her knowledge and consent.
You are personally responsible for all traffic originating from your Applications to the Services using your account credentials to the Services. As such, you should protect your authentication keys, certificates and security credentials. Actions taken using your credentials shall be deemed to be actions taken by you, with all consequences including accrual of associated fees and charges, service termination, civil and criminal penalties.
8. Dungg.io Warranties
Dungg.io represents and warrants that: (a) the Service as delivered to you and used in accordance with the specifications as set forth will not infringe on any patent, copyright or trade secret; (b) the Service shall conform to the Specifications in their then-current form at the time of the provision of such Service; (c) Dungg.io has implemented information security policies and safeguards to preserve the security, integrity, and confidentiality of your data and to protect against unauthorized access and anticipated threats or hazards. During the Term of this Agreement,Dungg.io’s sole responsibility shall be to, at Dungg.io’s own option and cost, provide a bug fix or otherwise correct any nonconformity (excluding sample source code or open source software) to substantially conform to the specification of the Service. Dungg.io will not be liable where Dungg.io cannot reproduce the problems despite commercially reasonable efforts to do so. IN NO EVENT WILL Dungg.io BE LIABLE FOR ANY COSTS YOU OR YOUR CUSTOMERS INCUR, INCLUDING LABOR, INSTALLATION, REMOVAL, SHIPPING OR ANY OTHER ASSOCIATED COSTS, AS A RESULT OF OUR REPLACEMENT OR REPAIR OF SERVICE.
9. Disclaimer of Warranty
EXCEPT FOR THE WARRANTIES EXPRESSLY PROVIDED IN SECTION “Dungg.io Warranties” OF THESE TERMS OF SERVICE, THE SERVICE IS PROVIDED AS IS, WITHOUT EXPRESS OR IMPLIED OR WARRANTIES OF ANY KIND, INCLUDING ANY IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT. NO ORAL OR WRITTEN INFORMATION OR ADVICE GIVEN BY Dungg.io, ITS DEALERS, DISTRIBUTORS, AGENTS OR EMPLOYEES SHALL IN ANY WAY INCREASE THE SCOPE OF THIS WARRANTY. Dungg.io DOES NOT WARRANT THAT Dungg.io SERVICE OR DOCUMENTATION SHALL MEET YOUR, OR OTHER THIRD PARTY’S REQUIREMENTS, THAT THE OPERATION OF Dungg.io SERVICE OR DOCUMENTATION SHALL BE UNINTERRUPTED OR ERROR FREE OR MAKE ANY WARRANTY AS TO THE USE, OR THE RESULTS OF THE USE, OF THE Dungg.io SERVICE OR DOCUMENTATION IN TERMS OF CORRECTNESS, ACCURACY, RELIABILITY OR OTHERWISE. Dungg.io MAKES NO WARRANTY WITH RESPECT TO DEFECTIVE CONDITIONS OR NON-CONFORMITIES RESULTING FROM YOUR USE, MISUSE, MISINSTALLATION, MISHANDLING, ACCIDENT OR ABUSE OF BIOID SERVICE OR DOCUMENTATION; OR ERRORS RESULTING FROM MALFUNCTIONING EQUIPMENT USED BY YOU, YOUR CUSTOMERS OR ANY THIRD PARTY; OR ERRORS RESULTING FROM INCORPORATION OF SOFTWARE INTO YOUR OR YOUR CUSTOMERS’ SYSTEMS, OR FAILURE OF YOU OR YOUR CUSTOMERS TO APPLY BIOID-SUPPLIED MODIFICATIONS, DIRECTIONS, UPDATES OR CORRECTIONS. Some states do not allow the types of disclaimers in this paragraph, so they may not apply to you.
10. Data Privacy
To provide the Service we need to maintain necessary information, such as your biometric templates and transaction logs. You give us permission to do these things only to provide the Service. You are responsible to inform your users before collecting their biometric information, as well as to obtain user consent if required by local laws.
Biometric template: We collect the biometric information you provide during enrollment and verification as images for extracting your unique biometric features. These Raw Data are stored for auditing, support or failure analysis unless you choose to have them deleted automatically after use. Biometric information provided for enrollment is transformed into biometric “templates”, which are irreversible, anonymous, mathematical representations of a user’s unique biometric characteristics. We only maintain biometric templates in order to perform the service for you. This information can only be used by our Service and is inaccessible via our API, management portal, or any other means. You are responsible for the accuracy, quality, and integrity of the Raw Data according to Dungg.io recommended guidelines, as well as the proper use of the Service. In particular, you are responsible to store the Raw Data for support or audit purposes if necessary and if permitted by local laws, in which case, you are responsible to specifically inform your users about such an implementation. You are also responsible to regularly update the biometric templates, to the extent feasible and/or practicable, whenever possible to ensure the quality of the Service.
Transaction log: For accounting, licensing and audit purposes, when you use the Service, we automatically log the transaction without storing the Raw Data.
Dungg.io Account: If you register for a Dungg.io account, only your email is required to link you to the account. If you choose to enroll your biometrics, either through our Playground or other websites or mobile apps, your biometric information will be maintained by us in order to provide the necessary services associated with your Dungg.io account. If you are using your Dungg.io account via the Dungg.io app, the only data stored in the app itself is your UserID and UserName or email. No other personal information, photos or biometrics are stored on your device. We store your your UserID and UserName or email in order to provide the service to you.
Dungg.io Connect: Your Dungg.io account is managed by Dungg.io Connect, which is a separate application independent of Dungg.io. Only Dungg.io Connect can link your personal information to your biometric data stored at Dungg.io; thus your template stored in Dungg.io is completely anonymous. You can view and manage these from your profile page. If you delete all data here your template will be deleted and you will not be able to log in with your face or voice until you enroll again.
11. Data Retention/Deletion
Deletion of data associated with a Biometric Class ID (BCID or a “user”) is effective immediately after triggering the corresponding Dungg.io API call. This is irreversible so access to the deleted BCID is no longer possible. On the storage systems all reference to the data is removed and the copies are then removed by a garbage collection operation.
The data stored as part of the Service, e.g. accounting data, licensing data, audit data, logging data, performance data and certificates, are kept for accounting purposes as long as the Service Term is valid or as required by local laws.
12. Data Protection/Data Center Security
This section applies only when the Service is hosted by Dungg.io in Kdata centers.
The Dungg.io server and storage components are built on Kdata centers. Dungg.io is available in Vietnam. No data will be transferred into another geographic region, e.g. from Vietnam to the United States, except when you request to do so.
Development and test subscriptions may be hosted in a dedicated Dungg.io instance within a multitenant Kdata installation in the region of our choosing.
Dungg.io will provide support to you related to our Service via email. Other support programs may be arranged separately upon request.
Dungg.io will provide technical support to your support and technical staff for integration with the Service or for resolution of a problem using the Service. You will provide first-line support to and direct communication with your end users. At the time of opening an incident with Dungg.io, we expect that you have used reasonable efforts to conduct initial troubleshooting of the issue.