miniOrange ("Us", "We", "Our" or the "Company") is committed to protecting the privacy of your information while you use our miniOrange Product and Services. We’ve crafted the policy below to help you understand how our Product/Services collects and uses personally identifiable information
We protect your personal information using industry standard safeguards. We may share your information only with your consent or as required by law as detailed in this policy, maintaining your trust is our top priority, so we adhere to the following principles to protect your privacy.
We protect your personal information and will only provide it to third parties
Your data is only accessed by the authorized employee of the miniOrange which is used solely for the maintenance of your service provided by miniOrange, to provide your billing / payment details, to provide you the support to serve better.
miniOrange Approach on Rights Through the miniOrange directory services, IT Administrators of customer companies have complete control over the personal data of their end-users, which is securely stored in the identity management platform. They can access the data and then choose to delete or share it. The end-users themselves also have control over their personal information and can utilize it to access other services, as well. These features of our platform allow for our compliance with this section of the GDPR.
miniOrange takes pride in its methods of security concerning personal data: access to our technical infrastructure (In which personal information is contained) is limited only to personnel with a documented and approved business need; all of our data at rest is encrypted; login requests and privileged commands are tracked using the appropriate software; our authentication process is secured with the implementation of methods such as MFA and password complexity. However, if miniOrange has the least reason to suspect a data breach, the technical and organizational personnel follow a specified response plan and policy. Data recovery aside, the Data Breach Notification is something miniOrange is ready to fulfill to the level described above, as soon as the moment arises. This notification includes : data subject name and details. The date and time of the breach The date and time we detected it. Information about the type of breach Information about the personal data affected.
miniOrange only collects and processes personal data that we need to provide services and products. This personal information includes names, email addresses, and other company information. If customers desire their end-users to input this data individually, the customer themselves becomes the controller over that information, and miniOrange becomes the sub-processor. Customers have a large amount of control over this personal information. They can add, delete or modify existing data as they see fit. miniOrange does not utilize this user-generated content in any way other than to display it at the customers' end, for authentication and verification.
miniOrange does not meet any of the circumstances where a Data Protection Officer would be required. A Data Protection Officer is required to be implemented under if the following circumstances hold true. They are: The processing of personal data is done by a public authority (Courts and independent judicial authorities are exempted from this). The personal data being processed requires regular and systematic monitoring on a large scale. The data subjects (i.e. The EU citizens) are required to be regularly monitored on a large scale for the data processing. The personal data being processed is related to or regards crimes and convictions on a large scale. We need only a handful of personal data from our customers, such as names, email addresses, organization names and phone numbers. Since we are not a public authority, nor are we partaking in the collection or processing of high
We will notify you when we change this policy. We may change this Policy from time to time. If we make significant changes in the way we treat your personal information, we will provide notice by posting an announcement on the Website or sending an email prior to the change becoming effective.