Privacy Policy for o2sheet

Last Updated On 31-Jan-2021
Effective Date 31-Jan-2021

At o2sheet, one of our main priorities is the privacy of our visitors. If you have additional questions or require more information about our Privacy Policy, do not hesitate to contact us.

This Privacy Policy describes the policies of o2sheet on the collection, use and disclosure of your information that we collect when you use our website (https://o2sheet.com ). (the “Service”). By accessing or using the Service, you are consenting to the collection, use and disclosure of your information in accordance with this Privacy Policy. If you do not consent to the same, please do not access or use the Service.

We may modify this Privacy Policy at any time without any prior notice to you and will post the revised Privacy Policy on the Service. The revised Policy will be effective 180 days from when the revised Policy is posted in the Service and your continued access or use of the Service after such time will constitute your acceptance of the revised Privacy Policy. We therefore recommend that you periodically review this page.

INFORMATION WE COLLECT

We will collect and process the following personal information about you:

  • Name
  • Email
  • Invoice Address

HOW WE COLLECT YOUR INFORMATION

We collect/receive information about you in the following manner:

  • When a user fills up the registration form or otherwise submits personal information
  • Interacts with the website
  • From public sources

HOW WE USE YOUR INFORMATION

We will use the information that we collect about you for the following purposes:

  • Creating user account
  • Processing payment
  • Support
  • Manage user account

If we want to use your information for any other purpose, we will ask you for consent and will use your information only on receiving your consent and then, only for the purpose(s) for which grant consent unless we are required to do otherwise by law.

HOW WE SHARE YOUR INFORMATION

We will not transfer your personal information to any third party without seeking your consent, except in limited circumstances as described below:

  • Analytics

We require such third party’s to use the personal information we transfer to them only for the purpose for which it was transferred and not to retain it for longer than is required for fulfilling the said purpose.

We may also disclose your personal information for the following: 

  1. to comply with applicable law, regulation, court order or other legal process;
  2. to enforce your agreements with us, including this Privacy Policy;
  3. to respond to claims that your use of the Service violates any third-party rights. If the Service or our company is merged or acquired with another company, your information will be one of the assets that is transferred to the new owner.

RETENTION OF YOUR INFORMATION

We will retain your personal information with us for 90 days to 2 years after users terminate their accounts or for as long as we need it to fulfill the purposes for which it was collected as detailed in this Privacy Policy. We may need to retain certain information for longer periods such as record-keeping / reporting in accordance with applicable law or for other legitimate reasons like enforcement of legal rights, fraud prevention, etc. Residual anonymous information and aggregate information, neither of which identifies you (directly or indirectly), may be stored indefinitely.

YOUR RIGHTS

Depending on the law that applies, you may have a right to access and rectify or erase your personal data or receive a copy of your personal data, restrict or object to the active processing of your data, ask us to share (port) your personal information to another entity, withdraw any consent you provided to us to process your data, a right to lodge a complaint with a statutory authority and such other rights as may be relevant under applicable laws. To exercise these rights, you can write to us at [email protected]. We will respond to your request in accordance with applicable law.

Do note that if you do not allow us to collect or process the required personal information or withdraw the consent to process the same for the required purposes, you may not be able to access or use the services for which your information was sought.

Cookies & Web Beacons

Like any other website, o2sheet uses ‘cookies’. These cookies are used to store information including visitors’ preferences, and the pages on the website that the visitor accessed or visited. The information is used to optimize the users’ experience by customizing our web page content based on visitors’ browser type and/or other information.

For more general information on cookies, please read “What Are Cookies”.

CookieTypeDurationDescription
Cloudflare Traficthird party6 daysUsed by the Cloudflare content network to identify reliable web traffic.
Consent choices on non-necessary cookiessessionTrack user choices on enabling or disabled non necessary cookies
Current selected languagesessionTechnical and strictly necessary cookie containing the language of the session. It is deleted when the internet browser is closed.
Google Analyticsthird party24 monthGoogle Analytics cookie enabling control of one-time visits. This cookie is installed the first time a user enters the website through a browser. When the user comes back to the website through the same browser, the cookie will consider him to be the same user. Only in the event that the user changes browser, will he be deemed to be a different user. This cookie expires two years after the last update.
PHPSESSIDsessionTechnical and strictly necessary cookie containing the ID of the session. It is deleted when the internet browser is closed.

SECURITY

The security of your information is important to us and we don’t store any information about your documents, configurations or Odoo credentials on our servers.

The data stored in your documents, configurations and Odoo credentials are stored on Google servers, and inherits the same level of security from their infrastructure. 

Our servers are located in France in a ISO 27001 and PCI-DSS certified datacenter. Transmission between your browser and our servers are protected using 256-bit TLS encryption.

GDPR Data Protection Rights

We would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:

The right to access – You have the right to request copies of your personal data. We may charge you a small fee for this service.

The right to rectification – You have the right to request that we correct any information you believe is inaccurate. You also have the right to request that we complete the information you believe is incomplete.

The right to erasure – You have the right to request that we erase your personal data, under certain conditions.

The right to restrict processing – You have the right to request that we restrict the processing of your personal data, under certain conditions.

The right to object to processing – You have the right to object to our processing of your personal data, under certain conditions.

The right to data portability – You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.

GRIEVANCE / DATA PROTECTION OFFICER

If you have any queries or concerns about the processing of your information that is available with us, you may email our Grievance Officer at o2sheet – France, email: [email protected]. We will address your concerns in accordance with applicable law.