LAST UPDATED: April 20, 2022
SUMMARY
MasterControl Solutions Inc. and its group companies ("MasterControl", "we", "us", “our”) takes your privacy seriously. This privacy notice ("Notice") explains who we are, how we collect, use, and share personal information about you, and how you can exercise your privacy rights (where applicable by law). "You" may be a visitor to one of our websites, a customer or a customer’s representative, office visitor, event participant, and/or an end user of one Services.
MasterControl understands the importance of protecting children's privacy, especially in an online environment. Our websites, product, and services are not designed for, directed at, or marketed to children under the age of 18. It is our policy to never knowingly collect or maintain information about anyone under the age of 18. Those under the age of 18 should not use our websites, contact us, or request information in any form.
SCOPE
Our Privacy Notice applies to all geographical locations, with supplements added to comply with specific applicable geographical laws and/or regulations. To review regional supplemental information, please utilize the links below:
This Notice does not apply to the personal information that we process as data processors on behalf of our customers in the course of providing our Services. For example - personal information input into the MasterControl software, like names and email addresses, are controlled and maintained directly by the customer and not by MasterControl. Therefore, personal information is governed by the customers own internal privacy notices and not by this one.
This Notice only applies to MasterControl Websites and Services. Any access to and use of any linked third-party websites or services is not governed by this Notice, but instead is governed by the privacy policies of those third parties. We are not responsible for the information practices of such third parties.
If you are resident in the European Economic Area (EEA), MasterControl Solutions Inc. is considered the controller of your personal information (not MasterControl Global) when we are performing controller processes.
PROCESSING ACTIVITIES COVERED
This Notice applies to the processing of personal information collected by us in the usual course of business, including when you:
QUICK LINKS
2. WHAT PERSONAL DATA DO WE COLLECT?
2.1. Information you provide to us
2.2. Information we collect automatically
2.3. Information we collect from other sources
3. HOW DO WE USE YOUR INFORMATION?
3.1. How Do We Share Your Information?
3.2. Cross-Border Data Transfers
4. SECURITY MEASURES IMPLEMENTED BY MASTERCONTROL
5. GEOGRAPHICAL PRIVACY RIGHT SUPPLEMENTS
5.1. European Economic Area Supplement
6. MODIFICATIONS TO THIS NOTICE
1. WHO WE ARE
MasterControl is a global company headquartered in the US, with offices in Utah, United Kingdom, Japan and Australia. We provide a full line of industry specific quality and compliance software solutions and services (the "Services") to customers worldwide. Our offerings enable regulated companies to accelerate compliance and get to market faster while reducing costs and improving efficiency.
2. WHAT PERSONAL DATA DO WE COLLECT?
The information we collect depends on the context of your interactions with MasterControl and the choices you make (including your privacy settings), the products and features you use, your location and applicable law.
2.1. Information you provide to us
The personal information we collect may include:
If you ever communicate directly with us, we will maintain a record of those communications and responses.
2.2. Information we collect automatically
2.3. Information we collect from other sources
2.4. Social Media Features
3. HOW DO WE USE YOUR INFORMATION?
We use and process the personal information we collect and/or receive (alone or in combination) for the purposes and legal bases identified below:
3.2. Cross-Border Data Transfers
MasterControl is headquartered in the United States and has offices, employees and services providers who operate around the globe. Therefore, as a global business, MasterControl processes, hosts and transfers personal information in different countries, including in the United States. These countries may have data protection laws that are different to the laws of your country.
MasterControl fully assesses the circumstances involving all cross-border data transfers and has suitable safeguards in place to require that your personal information will remain protected in accordance with this Notice. These include implementing the European Commission's Standard Contractual Clauses for transfers of personal information between our group companies, which require all group companies to protect personal information they process from the EEA in accordance with European Union data protection law.
We process any personal data of our customers pursuant to the obligations of the Standard Contractual Clauses, which form part of our Data Processing Agreement (DPA). For reference, a copy of our DPA can be downloaded here.
4. SECURITY MEASURES IMPLEMENTED BY MASTERCONTROL
We are committed to security and privacy, maintaining appropriate physical, technical and administrative standards to protect the personal information that we collect.
The personal information collected or obtained by MasterControl is stored in secure operating environments that are not available to the public. However, no data transmission over the internet can be guaranteed to be 100 percent secure. As a result, while we strive to protect your personal information, we cannot warrant the security of any information you transmit to us or from our website and services.
5. GEOGRAPHICAL PRIVACY RIGHT SUPPLEMENTS
European Economic Area and UK Supplement
If you are a resident of the European Economic Area (Member States of the European Union, Iceland, Liechtenstein and Norway) or of the United Kingdom, the following additional rights apply to you:
California Supplement
If you are a resident of California, the following additional rights apply to you:
5.1. How Long Do We Keep Your Personal Information?
We retain your personal information where we have an ongoing legitimate business need to do so and for a period of time consistent with the original purpose as described in this Notice. We determine the appropriate retention period for personal information on the basis of the amount, nature, and sensitivity of your personal information processed, the potential risk of harm from unauthorized use or disclosure of your personal information and whether we can achieve the purposes of the processing through other means, as well as on the basis of applicable legal requirements (such as applicable statutes of limitation).
After expiration of the applicable retention periods, we will either delete or anonymize your personal information or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
6. MODIFICATIONS TO THIS NOTICE
When necessary, this Notice is subject to changes. The date of its most recent revision is noted at the beginning of this Notice. If we make material changes to this Notice, we will notify you either by posting a notice of such changes or by directly sending you a notification. We encourage you to review this Notice frequently to be informed of how MasterControl is protecting your information.
7. CONTACT US
If you have any questions or concerns that are not addressed in this Notice, or if you wish to exercise your privacy rights, or file complaints, please email your questions or requests to us at [email protected].