Privacy Policy

RapID™ Service

Overview

Intercede Ltd. provides 'MyID Service for your customers' (aka the 'RapID' service) for strong authentication on mobile devices. This service includes a website for account administration. When using this website, you must confirm your acceptance of the 'Cookie Policy' and the usage of web server log data described below. You may disable cookies, but this may prevent some features from working.

If you provide your name, email address or other information for the purposes of registering for the Service or subscribing to our support services, you must agree to the terms of this Privacy Notice.

Protecting your personal data is important to us, and we follow reasonable industry standards to ensure the proper treatment of personal data in accordance with data protection laws. This Privacy Notice explains how and why we collect, use, retain, disclose, and safeguard your information. Intercede Ltd. is the 'Data Controller' of personal information that you provide to us.

Personal data

Personal data refers to any data that can be used to identify a specific living person. Personal data does not include information that has been changed such that it can no longer be reasonably associated with a specific person.

Application of this notice

This Notice applies to the RapID administration website and service. This Notice does not apply to any website, product or service of any third party, even if the website links to (or from) our website. We are not responsible in any way for third-party sites or the collection or protection of your personal information on those sites.

What data we collect and when we collect it

Intercede collects your basic personal data for reasons of legitimate interest in the following circumstances:

Intercede also collects your personal data for contractual purposes when you register, subscribe or sign up to our Services. The information that we collect is some or all of the following:

What we do with your personal data

As a RapID customer, you subscribe to our service and generate anonymous digital certificates for your customers. We collect, store and process your personal data for contractual purposes and legal reasons. This may include data provided to us by application developers and service operators working on your behalf. We will use this information to communicate with you and to support activities associated with our contractual relationship. You must not provide your customers' personal data to us when using the Service, as RapID credentials are deliberately anonymous. We will not be liable for any damages that result from you providing personal information where anonymous data is expected.

Storing, sharing and disclosure of your personal data

We may store your personal data in locations beyond our physical control, such as on servers or databases located at cloud service providers. These servers may be located in Europe, the United States or Canada, all of which are regarded by the EU as providing 'adequate protection'.

Any sharing or disclosure of your personal data will comply with applicable data protection laws. We may share your personal data with trusted third parties for data processing activities necessary for us to provide our Services. We have a data processing agreement in place with such third parties to ensure data is not compromised. Third parties must implement appropriate technical and organizational measures to ensure the security of your data.

Your personal data may also be disclosed to law enforcement, government officials, or other third parties for legal, vital interest or legitimate interest reasons if we believe for example, that the disclosure is necessary to prevent physical harm or financial loss, to report suspected illegal activity, or to investigate violations of our Terms of Service.

In the event of a merger, acquisition, reorganization, bankruptcy, or other similar event, certain information in our possession may be transferred to our successors or assigns. In such circumstances, the new organization will take on the role of Data Controller.

We do not sell or rent personal data to marketers or third parties. If, despite our security precautions, personal data is disclosed, we will try to limit and remedy the disclosure to the extent permitted by law.

Marketing

We may send you information about our products and services, events and industry announcements that we think will be of interest to you. You can ask us to stop sending you this information at any point by using the 'unsubscribe' link in emails or by emailing us directly at privacy@intercede.com.

Retention of your personal data

Any personal data that we collect will not be retained for longer than is necessary for the purposes for which it was collected, subject to legal or contractual obligations.

Protection of personal data

We follow reasonable industry standards to ensure that the personal data we collect, use, or disclose is accurate, up-to-date, relevant and stored securely, and to ensure that it is protected from misuse, interference, loss, unauthorized access, modification, or disclosure.

We maintain strict administrative procedures to protect information stored on our servers. Access to personal data is limited to those employees who need it to perform their job functions.

Access, corrections, removal and complaints

We want to be sure that your personal data is accurate and current. You have the right to request a copy of your personal data held by us at any time, and to correct data that you believe is inaccurate. You also have the right to withdraw your consent to the continued retention and use of your personal data.

If you have any questions about this Privacy Notice or would like to examine or correct your personal data, please email privacy@intercede.com. We will either make the requested changes or explain why we cannot. Note that there are legitimate and lawful reasons that mean we must retain your data in some circumstances.

We reserve the right to charge a fee in the event of manifestly unfounded or excessive requests.

Cookies and web server logs

Cookies are a feature of web browsers that allow web servers to recognize the computer used to access a website. Cookies can remember what information a computer accessed on one web page to streamline activities on related web pages and to make the online experience easier and more personalized. Log files are used to monitor, measure, analyze, improve, and troubleshoot our Services.

We may use cookies and other technologies to collect information from our website and from other websites that use our services. Information gathered through cookies and web-server log files may include information such as the date and time of visits, the pages viewed, IP addresses, links to/from any page, and time spent on our site. We may use cookie data to measure activity on our website for monitoring, troubleshooting and improving our website and services, to look for possible fraudulent activity, and to understand the way people use our website.

Cookies also allow our servers to remember your account information for future visits and to provide personalized and streamlined information across related pages on our website and other websites or applications that use our services. You can disable cookies by changing settings in your browser, but this may limit your ability to use our website and services.

Changes to this notice

We may need to make changes to this Privacy Notice for operational or legal reasons. We will do our best to let you know if we change the way that your data is processed, by posting on our website and emailing existing data subjects. You have the right to withdraw any consent that you have given to our use of your data at any time.

This Privacy Notice was last updated on 21st May 2018.