Privacy Policy

Last modified: May 8, 2024

Disaster Technologies Incorporated (“Company”, “we” , “our”, or “us”) respects your privacy and is committed to protecting it through our compliance with this Policy (this “Privacy Policy”).

This Privacy Policy describes the types of information we may collect from you or that you may provide when you visit the website at www.dice.disastertech.com (the “Website”) or install or otherwise use or interact with any content, functionality, or services offered on or through the Website, such as our web application product (our application product is also called Pratus or PRATUS), or via certain third-party service providers such as Microsoft Azure, Microsoft Office 365, and Microsoft Teams (collectively, the “Services”), and our practices for collecting, using, maintaining, protecting, and disclosing that information.

This Privacy Policy applies to information we collect:

• On the Services.

• In email, text, and other electronic messages between you and the Services.

• Through applications you install from the Services, which provide dedicated non-browser-based interaction between you and the Services.

• When you interact with our Services on third-party websites and services, including without limitation via the Microsoft Teams application or through Microsoft Azure.

• When you interact with our Services through Microsoft Office 365 applications, including Microsoft Teams.

This Privacy Policy does not apply to information collected by:

• Us offline or through any other means, including on any other website operated by Company or any third-party.

• Any third-party, including through any application or content (including advertising) that may link to or be accessible from or on the Services.

Please read this Privacy Policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, your choice is not to use the Services. By accessing or using the Services, you have been provided by the terms of this Privacy Policy. This Privacy Policy may change from time to time and Company reserves the right to change this Privacy Policy at any time consistent with Applicable Laws. We reserve the right to amend this policy update or modify this Privacy Policy at any time and without prior notice by posting the revised version of this Privacy Policy on the Website. Where such changes are substantial, we will notify you of the expected changes prior to their entry into force.

In order to facilitate and guarantee the protection of your rights and those of other holders of Personal Data, it is necessary to understand and define some concepts, namely, the following:

Definitions:

1. Applicable Law(s) means at least the following: (i) the EU Data Protection Laws meaning the General Data Protection Regulation 2016/679/EU (“GDPR”) and laws and regulations supplementing the GDPR, and (ii) the “UK Data Protection Laws” and the Data Protection Act 2018 (“UK GDPR”).
2. Consent: freely-given, specific, informed and unequivocal expression by a positive action by which the holder agrees to the Processing of the latter’s Personal Data for a specific purpose;
3. Controller: natural or legal person, governed by public or private law, responsible for decisions regarding the processing of Personal Data;
4. Personal Data: information relating to an identified or identifiable natural person;
5. Processing: any operation carried out with Personal Data, such as those relating to the collection, production, reception, classification, use, access, reproduction, transmission, distribution, Processing, archiving, storage, elimination, assessment or control of information, modification, communication, transfer, dissemination or extraction;

Children Under the Age of 18

The Services are not intended for children under 18 years of age. No one under age 18 may provide any information to or on the Services. We do not knowingly collect Personal Data from children under 18. If you are under 18, do not use or provide any information on the Services or through any of their features, register on or for the Services, make any purchases through the Services, or provide any information about yourself to us, including your name, address, telephone number, email address, or any screen name or user name you may use. If we learn we have collected or received Personal Data from a child, we will delete that information. If you believe we might have any information from or about a child under 18 please contact us in accordance with the “Contact Us” section below.

Information We Collect About You and How We Collect It

Data privacy at a Glance

For Website visitors

Purpose	Legal basis	Personal Data collected and processed
Communicating with you and providing you with information about products or services	Our legitimate interest to market its products and services and get in touch with prospects and clients	Name, personal and business address, fax number, phone number, email address
Conducting surveys, sweepstakes, contests or other promotional activities	Our legitimate interest to improve client relationship and promotional events to increase its customers’ loyalty and attract new clients or as the case may be your Consent	Name, personal and business address, fax number, phone number, email address
Promoting and marketing our products and services in particular, but not limited to, via promotional emails, newsletters, new blog posts or other materials	Our legitimate interest to improve client relationship and promotional events to increase its customers’ loyalty and attract new clients	Name, personal and business address, fax number, phone number, email address
Providing you with assistance on our products and services as well as support in relation thereto, including through the contact form on our Website (e.g. general inquiry, demo scheduling).	Necessary for contract performance	Name, Email address

For customers and suppliers

Purpose	Legal basis	Personal Data collected and processed
Providing you with information, products or services, or services that you request from us and providing you with notices about your account, including expiration and renewal notices	Necessary for contract performance	Name, personal and business address, fax number, phone number, email address,
Allowing you to participate in interactive features on the Services.	Our legitimate interest in providing a customer experience tailored to your interests	Name, email address, phone number
Allowing you to interact with other users	Our legitimate interest in providing a customer experience tailored to your interests	Name, email address, phone number
Allowing you to share any data that you contribute to the Services and to share the data attributed to you with other users.	Our legitimate interest in providing a customer experience tailored to your interests	Name, email address, phone number
Providing you with assistance on our products and services as well as support in relation thereto, including through the contact form on our Website (e.g. general inquiry, demo scheduling).	Necessary for contract performance	Name, personal and business address, fax number, phone number, email address, photo, banking information provided with invoices, business reference information including name and contact information
Providing you with third-party multi-factor authentication services	Necessary for contract performance	Name, Email address, Telephone number, alternative email address, professional address
Promoting and marketing our products and services in particular, but not limited to, via promotional emails, newsletters, new blog posts or other materials	Our legitimate interest to improve client relationship and promotional events to increase its customers’ loyalty and attract new clients or as the case may be your Consent	Name, personal and business address, fax number, phone number, email address
Personalizing your experience on our Website or customize any of our products or services	Our legitimate interest in providing a customer experience tailored to your interests	Email address
Completing necessary financial transactions	Necessary for contract performance	Name, Credit card number
Performing recall actions	Necessary for compliance with legal obligations	Name, Email address, Home address, Telephone number
Performing statistical analyses	Our legitimate interest of better understanding its customers’ needs, habits and preferences in order to improve its products and their experience	Email address
Complying with a legal requirement or court order	Necessary for compliance with legal obligations	Name, Email address, Home address, Telephone number
Enabling us to comply with Applicable Laws, rules, regulations, and judicial authorities in each geographical region in which we operate.	Necessary for compliance with legal obligations	Name, Email address, Home address, Work Address, Telephone number
Defending in, initiating or resolving disputes or legal proceedings and performing or enforcing the agreements to which We, or one of our business units, is a party	Our legitimate interest to enforce or defend our rights	Name, Email address
Carrying out our obligations and enforcing our rights arising from any contracts entered between you and us, including for billing and collection	Our legitimate interest to enforce or defend our rights	Name, personal and business address, fax number, phone number, email address, photo, banking information provided with invoices, business reference information including name and contact information
In any other way we may describe when you provide the information, subject to your Consent or under the relevant legal basis, as applicable	Your Consent or under the relevant legal basis, as applicable	Name, email address

You also may provide information to be published or displayed (hereinafter, “Posted”) on private areas of the Services, or transmitted to other users of the Services (such as members of your Microsoft Teams) or third-parties (collectively, “User Contributions”). Your User Contributions are Posted on the Services and transmitted to others at your own risk. Although we limit access to certain pages and users administrating our Enterprise Services (as defined below) may set certain privacy and other settings for such information.

Third-Party Integration

The Services may contain links and provide integrations to the products and services of third-parties, such as Microsoft or other third-party service providers. We provide these links and integrations as a convenience to you; we do not operate, control, or endorse any third-party or its products or services. It is your choice whether to utilize these links and integrations or not. These external websites, applications, and products are subject to their own privacy policies. To sync the Services with third-party accounts, we must access your online account with the service providers (such as Microsoft) who service those accounts. We will request your username, password, and any other login data that you have associated with the third-party account to enable access.

If you choose to sync the Services with your Microsoft account, then you give your permission to complete the integration between the Services and Microsoft and to activate any relevant teams and for any Personal Data and other information on the Services to be shared with the third-parties with which we have integrated. You can withdraw your permission at any time, but if you do, you may no longer be able to access the Services.

Likewise, if you choose to sign-in using a third-party account, such as Auth0, the third-party service will supply us with all information that you have authorized them to provide to us. Such information may include your first and last name, unique identifier, email address, and photograph, among other information.

We may also use your information to contact you about services that may be of interest to you. If you do not want us to use your information in this way, please uncheck the relevant box located on the form on which we collect your data.

Disclosure of Your Information

We do not sell Personal Data that we collect but may share it for business and commercial purposes as set forth below:

• To our subsidiaries and affiliates.

• To contractors, service providers, and other third-parties we use to support our business.

• To a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Company’s assets, whether as a going concern or as part of a bankruptcy, liquidation, or similar proceeding, in which Personal Data held by us about our users is among the assets transferred.

• To comply with any court order, law, or legal process, including to respond to any government or regulatory request.

• To enforce or apply our terms of use and other agreements, including for billing and collection purposes.

• If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of Company, our customers, or others. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction.

• To fulfill the purpose for which you provide it.

• For any other purpose disclosed by us when you provide the information.

• With your Consent or under the relevant legal basis, as applicable.

If your access to the Services is subject to the terms of any enterprise agreement entered into between you or the organization you work for and us (an “Enterprise Agreement”, and the Services provided pursuant to such Enterprise Agreement, the “Enterprise Services”), the Enterprise Agreement shall govern the delivery, access, and use of the Services, including the Processing of any messages, files, or other content submitted through the Services. The organization that entered into the Enterprise Agreement may have access and control of your Personal Data and other data, including your User Contributions. If you have any questions about this access and control, please contact the administrator who granted you access to the Services.

We anonymize Personal Data and further to such anonymization, we may aggregated information about our users (that does not identify them personally) without restriction.

Choices About How We Use and Disclose Your Information

We strive to provide you with choices regarding the Personal Data you provide to us. We have created mechanisms to provide you with the following control over your information:

Right to access Personal Data

You have a right to request that we provide you with a copy of your Personal Data that we hold and you have the right to be informed of: (a) the Controller’s identity; (b) the purposes, legal basis and methods of Processing; (c) the source of your Personal Data; (d) the entities or categories of entities to whom your Personal Data may be transferred; and (e) where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period. In order to submit such request, please see the “How to Contact Us” section below.

Right to rectify or erase Personal Data

You have a right to request that we rectify inaccurate Personal Data. We may seek to verify the accuracy of the Personal Data before rectifying it. You can also request that we erase your Personal Data in limited circumstances where:

• it is no longer needed for the purposes for which it was collected;
• you have withdrawn your Consent (where the Processing was based on Consent), and where there is no other legal ground for the Processing;
• you successfully lodged a right to object (see right to object);
• it has been processed unlawfully; or
• needed to comply with a legal obligation to which Disaster Technologies is subject.

We are not required to comply with your request to erase Personal Data if the Processing of your Personal Data is necessary:

• for compliance with a legal obligation; or
• for the establishment, exercise or defense of legal claims; or
• for performance of a contract.

Right to restrict the Processing of your Personal Data

You can ask us to restrict your Personal Data, where:

• its accuracy is contested, to allow us to verify its accuracy;
• the Processing is unlawful, but you do not want it erased;
• it is no longer needed for the purposes for which it was collected, but we still need it to establish, exercise or defend legal claims; or
• you have exercised the right to object, and verification of overriding grounds is pending.

We can continue to use your Personal Data following a request for restriction, where:

• we have your Consent;
• to establish, exercise or defend legal claims; or
• to protect the rights of another natural or legal person.

Right to transfer your Personal Data

You can ask us to provide your Personal Data to you in a structured, commonly used, machine-readable format, or you can ask to have it transferred directly to another Controller, where:

• the Processing is based on your Consent or the performance of a contract with you; and
• the Processing is carried out by automated means.

Right to object to the Processing of your Personal Data

You can object to any Processing of your Personal Data which has our legitimate interests as its legal basis, if you believe your fundamental rights and freedoms outweigh our legitimate interests. If you raise an objection, we have an opportunity to demonstrate that we have compelling legitimate interests which override your rights and freedoms.

Right to object to how we use your Personal Data for direct marketing purposes

You can request that we change the manner in which we contact you for marketing purposes. You can request that we do not transfer your Personal Data to unaffiliated third parties for the purposes of direct marketing or any other purposes.

Right to obtain a copy of Personal Data safeguards used for transfers outside your jurisdiction

You can ask to obtain a copy of, or reference to, the safeguards under which your Personal Data is transferred outside of the European Economic Area. We may redact data transfer agreements to protect commercial terms.

Right to lodge a complaint with your local supervisory authority

You have a right to lodge a complaint with your local supervisory authority (a list of European Union and United Kingdom national data protection authorities can be found here) if you have concerns about how we are Processing your Personal Data. We ask that you please attempt to resolve any issues with us first, although you have a right to contact your supervisory authority at any time.

Your Rights and Choices

Subject to certain exemptions, and in some cases dependent upon the Processing we are undertaking, you have certain rights in relation to your Personal Data. We may ask you for additional information to confirm your identity and for security purposes, before disclosing the Personal Data requested to you. We reserve the right to charge a fee where permitted by law, for instance if your request is manifestly unfounded or excessive.

You can exercise your rights through any means, including by contacting us at [•]. Subject to legal and other permissible considerations, we will make every reasonable effort to honor your request promptly or inform you if we require further information in order to fulfil your request.

California Residents

If you are a California resident, you may (i) obtain certain information regarding our disclosure of your personal information to third parties for their direct marketing purposes, and/or (ii) at any time opt out of receiving marketing communications from us and/or request that we discontinue providing any of your personal information to unaffiliated third-parties, in each case by contacting us in accordance with the “Contact Us” section below. Please note that if you decide to opt out of receiving marketing communications or request that we discontinue providing your personal information, your change in preference will only affect future contacts; if the information already has been provided to third parties, they may continue to use it.

Data Security

We have implemented measures designed to secure your Personal Data from accidental loss and from unauthorized access, use, alteration, and disclosure. The safety and security of your information also depends on you. Where we have given you (or where you have chosen) a password for access to certain parts of the Services, you are responsible for keeping your password, username, or any other credential information (“Credentials”) confidential. We ask you not to share your password with anyone. You also acknowledge that your account is personal to you. You represent and warrant that you will not sell, share, or disclose your Credentials to others, and will not otherwise provide any other person with access to the Website or portions of it using your account. You should use particular caution when accessing your account from a public or shared computer. Any action carried out through your Credentials will be deemed carried out by you, subject and up until such time that we have been informed in writing of either (i) your Credentials having been compromised, or (ii) your Credentials having been illegitimately used.

Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your Personal Data, we cannot guarantee the security of your Personal Data transmitted to the Services. Any transmission of Personal Data is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Services. Except as otherwise set forth under Applicable Law, we assume no liability or responsibility for disclosure of your information due to errors in transmission, unauthorized third-party access, or other causes beyond our control.

Retention of Data

We may retain information about you for as long as it is necessary to fulfill the purposes described in this Privacy Policy. Some of your information may be retained in our systems even after you request your information to be deleted in order to comply with our obligations under Applicable Law, collect fees owed, resolve disputes, enforce our legal rights, otherwise use internally in a lawful manner that is reasonably aligned with the expectations of the user or compatible with the context in which the information was provided, and/or to undertake any investigations necessitated by the foregoing.

Contact Us

To ask questions or comment about this Privacy Policy and/or our privacy practices, contact us at: community@disastertech.com.