OVERVIEW

The confidentiality of your personal data is important to ITERRA AI LTD. Therefore, this Privacy Policy was developed by the Administration of ITERRA AI specifically for its users.

This Privacy Policy of personal data (hereinafter referred to as the "Privacy Policy") applies to all information that ITERRA AI (hereinafter referred to as the "Website"), located on the domain name ITERRA AI, can receive about the User during the use of the Website and its products.

This Privacy Policy will help you better understand how we collect, use, and share your personal information. If we change our privacy practices, we may update this privacy policy. We recommend that you regularly check and view any updates.

By using the Website and Widget, you acknowledge that ITERRA AI will use your information in the country where ITERRA AI operates. Please be aware that the privacy laws and standards in certain countries, including the rights of authorities to access your personal information, may differ from those that apply in the country in which you reside. 

DEFINITION OF TERMS

The following terms are used in this Privacy Policy:

Cookies are small piece of data sent by the web server and stored on the User's computer that the web client or web browser sends to the web server each time in the HTTP request when they try to open the page of the corresponding Website.

Device means a computer or a mobile device.

Data Controller means a natural or legal person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal data are, or are to be, processed. For the purpose of this Privacy Policy, we are a Data Controller of your data.

Data Processors (or Service Providers) means any natural or legal person who processes the data on behalf of the Data Controller. We may use the services of various Service Providers in order to process your data more effectively.

Data Subject is any living individual who is the subject of Personal Data.

Confidentiality of personal data is a mandatory requirement for the Website Administration or for other persons who have access to personal data to prevent their dissemination without the consent of the personal data subject or the presence of other legal grounds.

IP address – a unique network address of a node in a computer network built on the IP protocol.

Payment Card Industry Data Security Standard (PCI DSS) - a security standard for organizations that handle credit and debit card information. The standard was created to increase controls around payment data to reduce fraud.

Personal data means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an email, location data, telephone number, or more factors specific to that natural person.

Processing means any operation or set of operations that are performed on personal data or on sets of personal data, whether by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.

Service means together the Website, Widget.

Usage Data is data collected automatically, either generated by the use of a Service or from the Service infrastructure itself (for example, the duration of a page visit).

User is the individual using our Service. The User corresponds to the Data Subject, who is the subject of Personal Data.

Website means web pages located at ITERRA AI

Widget means a ITERRA AI widget that may be implemented to the User’s website.

1.​ACCEPTANCE OF PRIVACY POLICY

1.1.​This Privacy Policy sets forth the obligations of the Website Administration to not disclose and protect the privacy of personal data that the User provides upon the request of the Website Administration on the “ITERRA AI” when completing the information forms.

1.2.​We need to process your personal information to manage our business and provide you with services. By accepting our Terms of Use, you acknowledge that you have read and understood this Policy, including how and why we use your information. If you do not want us to collect or process your personal information in the ways described in this Policy, you must not use the Website services.

1.3.​Using the services, you acknowledge that ITERRA AI will use your information where we operate. We will take steps to ensure that your personal information continues to receive adequate protection. 

1.4.​This Privacy Policy applies only to the ITERRA AI Website. The administration of the Website does not control and does not bear responsibility for the websites of third parties with links available on the Website for the User.

2. COLLECTING OR RECEIVING PERSONAL DATA

2.1. During the provision of our services, we collect or receive your personal following information:

2.1.1. Information that you provide about yourself, such as name, surname; date, time, and place of birth; E-mail address. Personal data may also include data additionally provided by Users at the request of ITERRA AI to fulfill the obligations to the Users arising from the contract for the provision of services.;

2.1.2. Information about how you access our website, and your account, including information about the device and browser you use, your network connection, your IP address, and details about how you browse through our websites and platform. We collect some of this information by using “cookies” or other similar technologies directly from your device.

2.2. Information for analytics: We use data analytics to provide Website functionality and improve services. We use analytics software for understanding the Website’s functionality. This software can record information, for example, how often you visit the Website, what happens in applications, aggregated usage, performance data, application errors, debugging information, and the source of opening the Website. We do not link the information stored in the analytics software with any personal information that you send.

2.3. We obtain the location information you provide in your profile or your IP address. With your consent, we may also determine location by using other information from your devices, such as precise location information from GPS or information about wireless networks or cell towers near your mobile device. We use and store information about your location to provide features and to improve and customize the Services, for example, for. ITERRA AI internal analytics and performance monitoring; localization, regional requirements, and policies for the Services; for local content, search results, and recommendations; for shipping and mapping services; and (using non-precise location information) marketing. If you have consented to share your precise device location details but would no longer like to continue sharing that information with us, you may revoke your consent to the sharing of that information through the settings or on your mobile device.

3. CONTROL OVER PERSONAL DATA

3.1. We know that Users of our Website value control over their personal information, so ITERRA AI gives you the opportunity to provide, edit or delete certain information, and also choose how we will inform you. 

3.2. You can also monitor the receipt of messages from ITERRA AI using tools in e-mails. ITERRA AI can send you messages about services or our activities. Some of these messages are necessary since they are service messages (for example, organizational or legal notices). Others are not mandatory messages, for example, newsletters. 

3.3. The Website may contain advertisements from third parties that are not affiliated with us and which may link to other websites, online services, or mobile applications. We cannot guarantee the safety and privacy of the data you provide to any third parties. Any data collected by third parties is not covered by this privacy notice. We are not responsible for the content or privacy and security practices and policies of any third parties, including other websites, services, or applications that may be linked to or from the Website. You should review the policies of such third parties and contact them directly to respond to your questions.

3.4. Our Service may contain links to other websites that are not operated by us. If you click a third-party link, you will be directed to that third-party's Website. We strongly advise you to review the Privacy Policy of every Website you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party Websites or services.

3.5. We do not knowingly solicit data from or market to children under 18 years of age. By using the Website, you represent that you are at least 18 or that you are the parent or guardian of such a minor and consent to such minor dependent’s use of the Website. If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data from our records. If you become aware of any datawe may have collected from children under the age of 18, please contact us.

4. TRACKING COOKIES DATA

4.1. We use cookies and similar tracking technologies to track the activity on our Service and we hold certain information.

A cookie is a small text file that is downloaded onto your ‘terminal equipment’ (e.g. a computer or smartphone) when you access our Website. It allows us to recognize your device and store some information about your preferences or past actions.

Cookies are downloaded by your internet browser the first time you visit the Website. The next time you visit the Website from the same device, the cookie and the information stored in it are either sent back to the Website that generated it (first-party cookie) or to a different website to which it belongs (third-party cookie).  

There are two main kinds of cookies: session cookies and persistent cookies. Session cookies are erased when you close your browser or mobile application. Persistent cookies remain on your device for a predefined period.

We use «session cookies», «persistent cookies» and other similar technologies (‘cookies’).

4.2. Types of cookies

There are three primary types of cookies:

Session cookies are specific to a particular visit and carry information as you view different pages, so you don’t have to re-enter information every time you change pages or attempt to check out. Session cookies expire and delete themselves automatically in a short period of time, like after you leave the Website or when you close your web browser.

Persistent cookies remember certain information about your preferences for viewing the Website and allow ITERRA AI to recognize you each time you return. Persistent cookies are stored on your browser cache or mobile device until you choose to delete them, and otherwise typically delete themselves at expiration.

Third-party cookies are placed by someone other than ITERRA AI, and may gather browsing activity across multiple websites and across multiple sessions. They are usually a type of persistent cookie and are stored until you delete them, or they expire based on the time period set in each third-party cookie.

Operational cookies

There are some cookies that we have to include in order for certain web pages to function. For this reason, they do not require your consent. In particular:

- authentication cookies,

- technical cookies required by certain IT systems,

- authentication cookies.

When you do this, you accept the associated privacy policy.

Cookies store data about your use, but they are helpful because they allow us to help ITERRA AI function and customize your experience. You can configure your desktop or mobile browser's settings to reflect your preference to accept or reject cookies, including how to handle third-party cookies.

4.3. Consent, contract, and legitimate interests in processing

Certain Cookie Technologies are employed to make the Website function for its intended purpose and are provided based on contractual necessity based on your agreement with ITERRA AI to perform the services you have requested. These include the functions strictly necessary for the service noted above.

Our EU/GDPR Cookie Bar shows our Website visitors a GDPR-friendly cookie bar banner that informs you that our website uses cookies and allows you to view our Privacy Policy. As soon as you agree to your terms, the banner disappears automatically!

By choosing to use our Services after having been notified of our use of Cookie Technologies in the ways described in this Policy, and, in applicable jurisdictions, through notice and unambiguous acknowledgment of your consent, you agree to such use. More information is laid out in our Privacy Policy.

4.4. Managing your cookie technology preferences

Opt-in and Opt-out for Browsers

In addition, when you use ITERRA AI via a browser, you can change your web browser's settings to reflect your cookie preferences. Each browser is a little different, but usually, these settings are under the "options" or "preferences" menu.  

If you reject or block all cookies in your browser settings, you will not be able to take advantage of ITERRA AI Services as some cookies are necessary for the Website to function properly.

Mobile and Third-Party Device Opt-out

If you access ITERRA AI through the Mobile, you may also control interest-based advertising on an iOS or Android device.

For third-party IoT devices such as voice-activated assistants or smart TVs, consult the manufacturer and/or service provider for the opt-out mechanism for their respective devices and services.

5. USE, EXCHANGE, AND DISCLOSURE OF INFORMATION

5.1. When you use the Website, we collect, use, share, and otherwise process your personal information, as described in this Policy. We may process or share your data that we hold based on the following legal basis:

Consent: We may process your data if you have given us specific consent to use your personal information for a specific purpose.

Legitimate Interests: We may process your data when it is reasonably necessary to achieve our legitimate business interests.

Performance of a Contract: Where we have entered into a contract with you, we may process your personal information to fulfill the terms of our contract.

Legal Obligations: We may disclose your information where we are legally required to do so to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal processes, such as in response to a court order or a subpoena (including in response to public authorities to meet national security or law enforcement requirements).

Vital Interests: We may disclose your information where we believe it is necessary to investigate, prevent, or take action regarding potential violations of our policies, suspected fraud, situations involving potential threats to the safety of any person and illegal activities, or as evidence in litigation in which we are involved.

5.2. More specifically, we may need to process your data or share your personal information in the following situations:

Business Transfers. We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

Affiliates. We may share your information with our affiliates, in which case we will require those affiliates to honor this privacy notice. Affiliates include our parent company and any subsidiaries, joint venture partners, or other companies that we control or that are under common control with us.

Business Partners. We may share your information with our business partners to offer you certain products, services, or promotions.

5.3. Our Website offers you the ability to register and login using your third-party social media account details (like your Facebook or Google). Where you choose to do this, we will receive certain profile information about you from your social media provider. The profile Information we receive may vary depending on the social media provider concerned, but will often include your name, email address, friends list, profile picture as well as other information you choose to make public on such social media platforms.

We will use the information we receive only for the purposes that are described in this privacy notice or that are otherwise made clear to you on the relevant Website. Please note that we do not control, and are not responsible for, other uses of your personal information by your third-party social media provider. We recommend that you review their privacy notice to understand how they collect, use, and share your personal information, and how you can set your privacy preferences on their Websites and apps.

5.4. We inform you that your information may be transferred to, stored and processed by us at our facilities and by those third parties to whom we may transfer your personal information.

5.5. Not only that, but we do not control the privacy policy of third parties, including other members who sell using users’ services or API. We are not responsible for maintaining the confidentiality or security of these sellers, API users, or other websites on the Internet, even related to or from the Services. We recommend that you read the privacy policy and ask questions to third parties before disclosing your personal information. For the purposes of European law, these vendors, and API users, are independent data controllers.

6. TRANSFER OF DATA

6.1. Your information, including Personal Data, may be transferred to – and maintained on – computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction. If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including Personal Data, to the United States and process it there. The Company will take all the steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information. 

6.2. When we transfer your Personal Data to other countries, we will protect that Personal Data as described in this Privacy Policy and in accordance with applicable law. We use contractual protections for the transfer of Personal Data among various jurisdictions (the European Commission’s standard contractual clauses referred to in Article 46. 2 c) of the GDPR).

6.3. The security of your data is important to us but remember that no method of transmission over the Internet or method of electronic storage is 100% secure. We use appropriate administrative, technical, and physical safeguards to protect the Personal Data you provide against accidental, unlawful, or unauthorized destruction, loss, alteration, access, disclosure, or use, e.g. we maintain backup copies and only authorized personnel may access the Personal Data.

7. YOUR RIGHTS OVER YOUR INFORMATION

7.1. Certain privacy laws around the world, including the European General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), provide users with rights related to their personal information. Consistent with those laws, ITERRA AI gives you the choice of accessing, editing, or removing certain information, as well as choices about how we contact you. While some of these rights apply generally, certain rights apply in limited cases.

Right to Access & Portability: You can access certain personal information associated with your account by visiting your account privacy settings. You can request a copy of your personal information in an easily accessible format and information explaining how that information is used.

Right to Correction: You are entitled to request that we rectify inaccurate information about you. By visiting your account settings, you can correct and change the certain personal information associated with your account.

Right to Restrict Processing: In certain cases, where we process your information, you may also have the right to restrict or limit the ways in which we use your personal information.

Right to Deletion: In certain circumstances, you are entitled to request the deletion of your personal information, except information we are required to retain by law, regulation, or to protect the safety, security, and integrity of ITERRA AI.

Right to Object: If we process your information based on our legitimate interests as explained above, or in the public interest, you can object to this processing in certain circumstances. In such cases, we will cease processing your information unless we have compelling legitimate grounds to continue processing or where it is needed for legal reasons. Where we use your personal data for direct marketing purposes, you can object to using the unsubscribe link in such communications or changing your account email settings.

Right to Withdraw Consent: Where we rely on consent, you can choose to withdraw your consent to our processing of your information using specific features provided to enable you to withdraw consent, like an email unsubscribe link or your account privacy preferences. If you have consented to share your precise device location details but would no longer like to continue sharing that information with us, you can revoke your consent to the sharing of that information through the settings on your mobile device. This is without prejudice to your right to generally permanently close your account and delete your personal information.

7.2. You have certain rights regarding your information, which we process. If you want to manage, modify, restrict, or delete your personal information, you can do so by contacting us. Upon request, ITERRA AI will provide you with information on whether we retain your personal information. We will respond to your request within a reasonable time.

Please note that if you send us a request relating to your personal information, we have to make sure that it is you before we can respond. To do so, we may ask to see documentation verifying your identity, which we will discard after verification.

If you are not happy with our response to a request, you can contact us to resolve the issue. You also have the right to contact your local data protection or privacy authority at any time.

7.3. Limiting the use of, or deleting, your personal information may impact features and uses that rely on that information. However, we will not discriminate against you for exercising any of your rights, including otherwise denying you goods or services, providing you with a different level or quality of services, or charging you different prices or rates for services.

7.4. Addendum to Privacy Policy for Canada

Personal Data maintained and processed by our affiliates and third-party service providers in the U.S. and other foreign jurisdictions may be subject to disclosure pursuant to a lawful access request by U.S. or foreign courts or government authorities. We will not provide your information to third parties for marketing purposes without your prior consent. For more information about our privacy practices; to access, update, or correct inaccuracies in your personal information; or if you have a question or complaint about the manner in which we or our service providers treat your personal information, please contact us on data indicated in section “Contact us” above.

7.5. Addendum to Privacy Policy for Mexico

To the extent Mexican privacy laws or regulations apply, the following additional Mexico-specific provisions apply and shall prevail over conflicting provisions in the Privacy Policy.

- How We Use the Information We Obtain

In addition, we may use your Personal Data for the other purposes listed in the “Use of Data” section of the Privacy Policy, which may be considered secondary purposes under Mexican law. We do not use or share personal payment or financial information except in connection with the processing of payments or where there is another legal basis. You may withdraw your consent to our processing of your Personal Data by contacting us as indicated in the “How to Contact Us” section of the Privacy Policy. If you withdraw your consent for us to process your Personal Data for one of the primary purposes indicated above, then in some situations we may not be able to provide the service, though we may still engage in certain processing authorized by law. The Company may also use data and related data analysis in other Company products and services.

- Information We Share

- We may share your Personal Data as provided in the Privacy Policy, but to the extent permitted by law, you may withdraw your consent to this sharing by contacting us as indicated in the “How to Contact Us” section of the Privacy Policy. We also share the related information we obtain with our customers, partners, affiliates, and joint marketing partners. These entities, which collectively are referred to here as the “Business Partners” may use the information for the purposes described in this Privacy Policy. We may also share the information with our Business Partners and other third parties for warranty, troubleshooting or maintenance purposes, or for improving the design and performance of their products and services.

- Requests for Access, Correction, Cancellation, Objection or Consent Withdrawal

- In addition to any rights granted in the Privacy Policy, you may ask us to cancel your Personal Data to the extent permitted by law by contacting us as indicated in the “How to Contact Us” section of the Privacy Policy. Following a valid cancellation request, we may hold the Personal Data for the duration and purposes permitted by law before deleting it. We will answer your requests to access, correct or cancel your Personal Data or to object or withdraw your consent to our processing of your Personal Data within 20 business days from the date we receive your complete request or as provided by law. To be considered complete, your request must include your full name and contact address and a clear and detailed description of your request.

7.6. Addendum to Privacy Policy for Japan

The Company complies with Japanese laws and regulations, including the Act on the Protection of Personal Information. The Company is primarily responsible for the management of the Personal Data that is jointly used with our affiliates or third parties. We will not provide your information to third parties for marketing purposes without your prior consent.

7.7. Addendum to Privacy Policy for the Republic of Korea

Except as otherwise required by law, consumer Personal Data is securely disposed of without delay when (i) the consumer revokes his or her consent for our use of the information, (ii) the purpose of our collection and use of the Personal Data has been accomplished or (iii) the legal retention period has expired. If applicable law requires the preservation of Personal Data that otherwise would be disposed of, the Personal Data is transferred to a separate database and then disposed of after the period determined by the applicable law. Personal Data is disposed of using a method that is reasonably likely to prevent the Personal Data from being restored or reused. We will not provide your Personal Data to third parties in violation of law (such as without your consent, where consent is required). For the purposes stated in the Privacy Policy, Company, or our affiliates are responsible for the handling of Personal Data with respect to services provided in the Republic of Korea.

7.8. If you wish to execute any of the above-mentioned rights, please email us at vch@iterra.ai. Please note that we may ask you to verify your identity before responding to such requests. Please note, we may not be able to provide Service without some necessary data.

8. PAYMENTS

8.1. We may provide paid products and/or services within the Service. In that case, we use third-party services for payment processing (e.g. payment processors). We will not store or collect your payment card details. That information is provided directly to our third-party payment processors, whose use of your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express, and Discover. PCI-DSS requirements help ensure the secure handling of payment information. 

9. CONTACT

If you have questions:

Contact ITERRA AI LTD:

vch@iterra.ai

Last updated on July 10, 2023

1