Ynomia is trying to answer two questions, where are the things I care about and what does that mean? It is impossible to do our job without location data. Where possible we seperate how we deal with data into two buckets. The first bucket is readings from devices and the second is adding meaning to those readings. This means we don't by default have your details on the readings.
This document primarily applies to our mobile apps, our web apps and our integrations. In addition it applies to the data we collect in the course of doing business. Where the differences matter we'll explicitly make reference to what we're talking about.
Broadly we have three categories of data. Technical data which refers to the computers we manage and run as part of the service. Process data which refers to the things we need to know to help you understand the data. Finally personal data, this relates to the users of our software.
We currently collect all of the following:
Location data - we try and work out where a tag is in three dimensions.
Machine data - things like how strong is the radio signal or how much charge does the battery have. Also what version of the software are we running?
Network data - what IP address is the machine using? What network is the machine on?
Machine data - things like registration plates for machines. Dates they were last audited and whether they are moving or not.
Materials data - references to plans, identifiers like Panel IDs and images of the materials.
Currently we don't have people data for employees.
Email addresses – we use these for reports and to get in touch.
Phone numbers – these are used for alerting but in context for phone calls. Currently we don't record voice conversations with us.
Communications with us – as you would imagine we store emails, chat logs and physical correspondence with us.
We do share Personal Data with your permission so that we can perform services you have requested or communicate on your behalf. For example, if you set yourself as responsible for a site we will share your phone number to allow the integrator to provide you with SMS alerts. Additionally, you may indicate, (through your actions), that you are willing to share your Personal Data. For example, if you logon to a Ynomia server the owner of the that account will have the ability to view your activity in the account's access log.
We do not share, sell, rent, or trade Personal Data with third parties for their commercial purposes except where you have specifically told us to.
We do not host advertising on Ynomia. We may occasionally embed content from third party sites, such as YouTube – and that content may include ads. While we try to minimize the amount of ads our embedded content contains, we can't always control what third parties show.
We do not disclose Personal Data outside Ynomia – except in the situations listed in this section, or because we have been forced to do so legally.
We do share certain aggregated, non-personally identifying information with others about how our users collectively use Ynomia, or how our users respond to our other offerings – such as our conferences or events. For example, we may compile usage statistics to understand if features are valuable. However, we do not sell this information to advertisers or marketers.
We do share Personal Data with a limited number of third party vendors who process it on our behalf to provide or improve our service and who have agreed to privacy restrictions similar to our own Privacy Statement by signing data protection agreements. Our vendors perform services such as payment processing, customer support ticketing, network data transmission and other similar services. If you would like to know who our third party vendors are, please see our page on Integrations and Sub-processors.
We do share aggregated, non-Personally Identifying information with third parties. For example, we share the movement of a tag, or, in the event of a security incident, we may share the number of times a particular record was accessed.
We may share Personal Data if we are involved in a merger, sale or acquisition. If any such change of ownership happens we will ensure that it is under terms that preserve the confidentiality of Personal Data and we will notify you on our website or by email before any transfer of your Personal Data. The organisation receiving any Personal Data will have to honour any promises we have made in our Privacy Statement.
If Ynomia processes information about you and you do not have an account, then you may access, update, alter, delete or object to the processing of your personal information by contacting email@example.com
Generally Ynomia will retain Personal Data for as long as your account is active or as needed to provide you services.
We may retain certain Personal Data indefinitely – unless you delete it or request its deletion. For example, we don’t automatically delete inactive user accounts, so unless you choose to delete your account we will retain your account information indefinitely.
If you would like to cancel your account or delete your User Personal Information you may contact firstname.lastname@example.org. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes and enforce our agreements, but barring legal requirements we will delete your full profile, (within reason), within 90 days.
After an account has been deleted, certain data such as contributions to Ynomia client projects will remain. However, we will delete or deidentify your personal information where possible.
We use a number of third party analytics and service providers to help us evaluate our users' use of Ynomia, compile statistical reports on activity and improve our content and website performance. In addition we use our own internal analytics software to provide features and improve our content and performance.
Ynomia takes all measures reasonably necessary to protect Personal Data from unauthorised access, alteration, or destruction; maintain data accuracy and help ensure the appropriate use of Personal Data.
Ynomia enforces a written security information program. Our program:
In the event of a data breach that affects your Personal Data, we will act promptly to mitigate the impact of a breach and notify any affected users without undue delay.
Transmission of data on Ynomia is encrypted using HTTPS and SSL/TLS. Our data is also encrypted at rest.
No method of transmission or method of electronic storage is 100% secure. Therefore, we cannot guarantee its absolute security. For more information see our security policy.
Ynomia may disclose Personally Identifying information or other information we collect about you to law enforcement in response to a valid subpoena, court order, warrant, or similar government order; or when we believe in good faith that disclosure is reasonably necessary to protect our property or rights or those of third parties or the public at large.
In complying with court orders and similar legal processes Ynomia strives for transparency. When permitted we will make a reasonable effort to notify users of any disclosure of their information unless we are prohibited by law or court order from doing so – or in rare, exigent circumstances.
We will use your email address and telephone number to communicate with you if you've said that's okay and only for the reasons you’ve said that it's okay. For example, if you contact our Support Team with a request we will respond to you via email.
Our emails might contain a pixel tag – which is a small, clear image that can tell us whether or not you have opened an email and what your IP address is. We use this pixel tag to make our email more effective for you and to make sure we’re not sending you unwanted email.
If you have concerns about the way Ynomia is handling your Personal Data please let us know immediately. We want to help. You may contact us by emailing us directly at email@example.com with the subject line "Privacy Concerns". We will respond promptly – within 45 days at the latest.
Although most changes are likely to be minor, Ynomia may change our Privacy Statement from time to time. We will provide notification to Users of material changes to this Privacy Statement through our Website at least 30 days prior to the change taking effect by posting a notice on our home page or sending email to the primary email address specified in your account.