What is a Data Controller? For general data protection regulation purposes, the “data controller” means the organization (in this case, MontaVista Software, Inc.) who decides the purposes for which and the way in which any personal data is processed. As a Data Controller, we are bound by the requirements of the General Data Protection Regulations (the “GDPR”).
What is Data Processing? Data processing is any operation or set of operations performed upon Personal Information (whether automated or not). Examples of data processing explicitly listed in the text of the GDPR are: collection, recording, organizing, structuring, storing, adapting, altering, retrieving, consulting, using, disclosing by transmission, disseminating or making available, aligning or combining, restricting, erasure or destruction.
What is Personal Information? Personal information is any information which is about you, from which you can be identified.
There are many privacy regulations to address, not to mention our policy of ensuring our customers’ privacy. So, while we address the requirements of each applicable privacy regulation or law, we do so across the board for all customers and all regulations, and all personal data is treated with the same level of care.
Applicable regulations include, but are not limited to:
While we handle all personal information equally (this means we likely surpass the requirements for a specific single regulator), we respond to requests about the information per the residency of the person affected (for example, someone resident in the EU we would be handled per the GDPR; and for a California resident, per the CCPA and other California Privacy laws and regulations).
We may collect the following types of personal information from you:
We may also collect and aggregate information about the use of our Site and our Services. That information could include information such as your Internet Protocol (IP) address (an IP or Internet Protocol Address is a unique numerical address assigned to a computer as it logs on to the internet), browser type, operating system, the web page that you were visiting before accessing our Site, the pages or features of our Site which you browsed and the time spent on those pages or features, search terms, the links on our Site that you clicked on and other statistics. If you access our Site using a mobile device, we collect information such as a device identifier, user settings and the operating system of your device, as well as information about your use of our Services.
We may also use your Personal Information where necessary for us to comply with a legal obligation, including to share information with government and regulatory authorities when required by law or in response to legal process, obligation or request.
We implement a variety of security measures to maintain the safety of your personal information when you enter, submit or access your personal information.
Except as set out below, we do not sell, trade or otherwise transfer to outside parties your personally identifiable information. Non-personally identifiable visitor information, however, may be provided to other parties for marketing, advertising or other uses. We may contract with third-party service providers to assist us in better understanding our site visitors. These service providers are not permitted to use the information collected on our behalf except to help us conduct and improve our business. We may also release your Personal Information when we believe release is appropriate to comply with the law, enforce our site policies or protect our or others’ rights, property or safety.
Your Personal Information may also be transferred to another company in the event of a transfer, change of ownership, reorganization or assignment of all or part of our businesses or assets. This will occur if the parties have entered into an agreement under which the collection, use and disclosure of the information is limited to those purposes of the business transaction, including a determination whether or not to proceed with the business transaction. You will be notified via email or prominent notice on our websites for thirty (30) days of any such change in ownership or control of your personal information or as otherwise may be required or permitted by law.
Our Site is operated in the United States. If you are located in another jurisdiction, please know that your information will be transferred to, stored, and processed in the United States. By using this site and providing us with information, you consent to this transfer, processing, and storage, of your information in the United States. It is important to note that the privacy laws in the United States may not be as comprehensive as those in other countries such as the European Union. Our service providers use appropriate safeguards to transfer your personal data to the United States, and this is provided for in the data protection agreements with those service providers.
We retain your Personal Information for as long as we need to fulfill our Services. In addition:
Our site, products and services are all directed to people who are at least 13-years-old or older. We strive to comply with the requirements of COPPA – the Children’s Online Privacy Protection Act (https://uscode.house.gov/view.xhtml?req=granuleid%3AUSC-prelim-title15-section6501&edition=prelim). If this server is in the United States, and you are under the age of 13, do not use this site. We do not knowingly collect personal information from children under the age of 18 or your country’s age of minority. If you nevertheless believe that your child has provided us with their personal information, please contact us and we will delete it.
Other rights you have include the rights to:
We welcome any queries, comments or requests you may have regarding this policy please do not hesitate to contact us at firstname.lastname@example.org.
If you have questions on information we may hold about you, you may contact us as follows: