Privacy Policy – The Verroo app is an offline, eKey management and control app. The first section of this privacy policy pertains to use of this part of the app.
If invited by a building manager or admin log into a virtual card wallet subcomponent of the app to access common area access control readers/doors. See below section ‘vCard Wallet’ for privacy terms in relation to use of the virtual card wallet.
Effective date: May 08, 2019
Verroo (“us”, “we”, or “our”) operates the Verroo mobile application (hereinafter referred to as the “Service”).
This page informs you of our policies regarding the collection, use and disclosure of personal data when you use our Service and the choices you have associated with that data. This Privacy Policy is managed by Privacy Policy Generator.
We use your data to provide and improve the Service. By using the Service, you agree to the collection and use of information in accordance with this policy. Unless otherwise defined in this Privacy Policy, the terms used in this Privacy Policy have the same meanings as in our Terms and Conditions.
Definitions
Service
Service is the Verroo mobile application operated by Verroo
Personal Data
Personal Data means data about a living individual who can be identified from those data (or from those and other information either in our possession or likely to come into our possession).
Usage Data
Usage Data is data collected automatically either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
Cookies
Cookies are small files stored on your device (computer or mobile device).
Information Collection and Use
We collect several different types of information for various purposes to provide and improve our Service to you.
Types of Data Collected
Personal Data
While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you (“Personal Data”). Personally identifiable information may include, but is not limited to:
- Cookies and Usage Data
Usage Data
When you access the Service with a mobile device, we may collect certain information automatically, including, but not limited to, the type of mobile device you use, your mobile device unique ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browser you use, unique device identifiers and other diagnostic data (“Usage Data”).
Tracking & Cookies Data
We use cookies and similar tracking technologies to track the activity on our Service and we hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Other tracking technologies are also used such as beacons, tags and scripts to collect and track information and to improve and analyse our Service. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service. Examples of Cookies we use:
- Session Cookies. We use Session Cookies to operate our Service.
- Preference Cookies. We use Preference Cookies to remember your preferences and various settings.
- Security Cookies. We use Security Cookies for security purposes.
Use of Data
Verroo uses the collected data for various purposes:
- To provide and maintain our Service
- To notify you about changes to our Service
- To allow you to participate in interactive features of our Service when you choose to do so
- To provide customer support
- To gather analysis or valuable information so that we can improve our Service
- To monitor the usage of our Service
- To detect, prevent and address technical issues
Transfer of Data
Your information, including Personal Data, may be transferred to – and maintained on – computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.
If you are located outside and choose to provide information to us, please note that we transfer the data, including Personal Data, to and process it there.
Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.
Verroo will take all the steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organisation or a country unless there are adequate controls in place including the security of your data and other personal information.
Disclosure of Data
Legal Requirements
Verroo may disclose your Personal Data in the good faith belief that such action is necessary to:
- To comply with a legal obligation
- To protect and defend the rights or property of Verroo
- To prevent or investigate possible wrongdoing in connection with the Service
- To protect the personal safety of users of the Service or the public
- To protect against legal liability
Security of Data
The security of your data is important to us but remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
Service Providers
We may employ third party companies and individuals to facilitate our Service (“Service Providers”), provide the Service on our behalf, perform Service-related services or assist us in analysing how our Service is used. These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
Links to Other Sites
Our Service may contain links to other sites that are not operated by us. If you click a third party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
Children’s Privacy
Our Service does not address anyone under the age of 18 (“Children”).
We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.
Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page. We will let you know via email and/or a prominent notice on our Service, prior to the change becoming effective and update the “effective date” at the top of this Privacy Policy.
You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
vCard Wallet
5dkey is a credential management system and wallet designed to facilitate your access to buildings and other assets.
The 5dkey.com Virtual Card Wallet (“vCard wallet”) is accessed via the Verroo app menu by persons invited by a 5dkey administrator. This section of the Verroo privacy policy relates to the use of the vCard wallet.
5dkey consists of the web management port (5dkey web app or web portal) as well as ‘in app’ virtual card wallets designed to emulate building access cards, such as Wiegand, iClass, Mifare and other formats. 5dkey (Sitepics.app Pty Ltd ABN 12621764314) collects only such information as to provide access services to you:
- Log you into Web and/or mobile app vCard wallet.
- Distribute virtual cards and eKeys (credentials) to your wallet.
- Collect and store access control logs for security purposes.
- Optimise the performance of your device / wallet for the above mentioned purposes.
Data collected by 5dkey
When you are invited to the platform by a building manager, property manager or security manager (5dkey admin) we collect on the 5dkey web portal:
- Your name
- Mobile number
If your invitation is configured for ‘Bill to end user’ we also collect your address. This may be the address of the building you are accessing, not your residential address.
Where you are distrubted a virtual card (vCard) to your mobile device:
- IP address used by your phone or by access devices when they interact with our service (for security and for your protection);
- the friendly name that you have assigned to your mobile device (because it is typically personalized);
- Credential Information – information provided to us by the organization that owns Your Identity System to create the Virtual Credential that you will use for building or network access, such as the physical access control or network access credential data assigned by your employer to identify you via an existing employee badge, prox card or similar physical credential system;
- Details of access events which may include location data as per below.
Location Services
5dkey apps use location data in the background to log the location of devices you have been given access to. Access logs such as access granted or access denied events are typically always collected by the back end access control system, thus location data is only used to append these logs to verify the location of assets (for example doors or printers) that you have been given access to. 5dkey apps do not otherwise collect nor store your general location data.
Android app. Your device location data is used to discover and provide control of devices near you. You will still have the ability to badge your phone at card readers to access doors for example, however you will not be able to control a reader or device at a distance such as roller door from 10M distance.
Android and Apple devices. Location data may also be used to restrict access to readers and devices outside of the location to which you are authorised to access those devices. This is only where this feature has been configured by your inviting organization.
Full 5dkey privacy at https://5dkey.com/privacy
Data we share with 3rd parties:
When you confirm your account either on web app or mobile app, you are doing so via our authentication systems partner Kinde. We share your email to Kinde for this purpose, Kinde also store your password and may record your device ID and IP address for geolocation security purposes. For example, to avoid unauthorised international log in to your account. https://kinde.com/docs/important-information/privacy-policy/
The core vCard Wallet components and back end credential management services are provided by Safetrust.
When you use the Credential Manager and the 5dkey Wallet application, Safetrusts collects and store the following Personal Information:
- your name;
- the country where you will be using our products;
- either your email address or your mobile phone number or both;
- IP address used by your phone or by access devices when they interact with our service (for security and for your protection);
- the friendly name that you have assigned to your mobile device (because it is typically personalized);
- Credential Information – information provided to us by the organization that owns Your Identity System to create the Virtual Credential that you will use for building or network access, such as the physical access control or network access credential data assigned by your employer to identify you via an existing employee badge, prox card or similar physical credential system;
- In some cases, we may store your photo, if that has been provided to us by your Identity System’s owner (again, typically your employer, landlord, or other organization) as part of the information they use to verify your identity (e.g., as part of your employee badge); and
- Details of access events. You can find Safetrust’s full privacy statement at https://safetrust.com/privacy
Contact Us
If you have any questions about this Privacy Policy, please contact us:
- By email: legal @ rmdinnovations.com.au