Privacy and Data Governance
Omnigo Software respects and protects visitors’ privacy to Omnigo.com and our customers who use our services. Omnigo Software maintains policies to ensure the privacy of our visitors and customers. This policy describes the types of information we may collect and our practices for collecting, using, maintaining, protecting, and disclosing such information.
By accessing or using the site or services, you agree to this policy. Your continued use of this site or services after we make changes to this policy is deemed to be acceptance of those changes, so please check the policy periodically for updates.
Scope of this Policy
This policy outlines our commitment to protecting the privacy of individuals who visit our site and customers using our services that have agreed to the terms. This policy applies to information automatically collected via the site or through our services or provided to us by visitors or customers.
Our services are intended for use by enterprises. When we process personal data on behalf of a customer, our customer is the data controller of personal information, and Omnigo Software is a data processor under the General Data Protection Regulation (“GDPR”). When you visit our site or use our services, and we collect information from you, including personal data, Omnigo Software is the data controller for the collected data under GDPR.
Omnigo Software gathers a variety of information about our site visitors, customers, and end-users, including personally identifiable data, such as name, address, e-mail, phone numbers, or other data by which Omnigo Software may contact you online or offline; that is about you but individually does not identify you; and about your internet connection, the equipment you use to access our site or services and usage details.
We collect this information directly from you when you provide it to us automatically as you navigate through the site, or from third parties which may track this information.
When you sign up to use our services or request certain materials, you may be required to provide personal data. We may ask you to provide your contact information and related information like your company name and website name during these processes.
Through your use of our site or services, we may also obtain personal data from records and copies of your correspondence (including email addresses), if you contact us; your responses to surveys that we might ask you to complete for research purposes; or details of transactions you carry out through our site or services.
We may obtain certain information if you provide it to be published or displayed in public areas of the site. Such information is posted on and transmitted to others at your own risk. Please be aware that we cannot control the actions of other users of the site with whom you may choose to interact. Therefore, we cannot guarantee that unauthorized persons will not view your interactions or information that you have posted on the site.
Information Automatically Collected
As you navigate our site and services, we may use automatic data collection technologies to collect information about your equipment, browsing actions, and patterns. We collect statistical data automatically and do not collect personal information. We may maintain the statistical data or associate it with the personal information we collect in other ways. It helps us improve our site and services and allows us to deliver better and more personalized service, including estimating our audience size and usage patterns, storing information about your preferences, and recognizing you when you return to our site.
The technologies we use for this automatic data collection may include:
- Cookies (or browser cookies)
- Flash Cookies
Certain features of our site may use local stored objects (or Flash cookies) to collect and store information about your preferences and navigation to, from, and on our Site. Flash cookies are not managed by the same browser settings used for browser cookies. For information about managing your privacy and security settings for Flash cookies, visit Adobe’s Web Storage Settings panel here.
- Log Files and Web Beacons
Pages of the site and our e-mails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit us, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of certain website content and verifying system and server integrity). Occasionally, we connect personal information to information gathered in our log files that may help to improve our site and services. In such cases, we treat the combined information in accordance with this policy. The EU Legislation on cookies and advisory body of data protection – WP29 exempts consent if the cookie is required for the sole purpose of carrying out the transmission of communication and is strictly necessary to provide the service.
- Cookies exempt from consent include:
- User‑input cookies (session-id) such as first‑party cookies to keep track of the user's input when filling online forms, shopping carts, etc., for the duration of a session or persistent cookies limited to a few hours in some cases
- Authentication cookies to identify the user once he/she has logged in, for the duration of a session
- User‑centric security cookies, used to detect authentication abuses for a limited persistent duration
- Multimedia content player cookies are used to store technical data to playback video or audio content for the duration of a session
- Load‑balancing cookies for the duration of a session
- User‑interface customization cookies such as language or font preferences for the duration of a session (or slightly longer)
- Third‑party social plug‑in content‑sharing cookies for logged‑in members of a social network
We do not collect personal information automatically, but we may tie this information to personal information about you that we collect from other sources or you provide to us.
Omnigo Software identifies the purposes for which the information is being collected before or at the time of collection. The collection of your personal data will be limited to that which is needed for the purposes identified by Omnigo Software. Unless you consent or we are required by law, we will only use the personal data for the purposes for which it was collected. If Omnigo Software will be processing your personal data for another purpose later on, Omnigo Software will seek your further legal permission or consent, except where the other purpose is compatible with the original purpose. We will keep your personal data only as long as required to serve those purposes or for as long as necessary to comply with our legal obligations or to resolve disputes.
We may use aggregated information about our users and information that does not identify any individual, without restriction.
We use information about you, including personal data, for a variety of purposes, including:
- To enable you to use our site or services
- To provide you with information, products, or services that you request from us
- To respond to your comments, questions, and requests
- To provide customer service and support
- To send you administrative messages about the site or services
- To provide you with notices about your account, including expiration and renewal notices
- To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection
- To notify you about changes to our site or services or any products or services we offer or provide
- To allow you to participate in interactive features on our site or through our services
- To monitor and analyze trends, usage, and activities in connection with our site and services
- To investigate and help prevent fraudulent transactions, unauthorized access to the site and the services, violations of the terms, and other illegal activities;
- To share testimonials or reviews that you may have posted to the site, services, or Omnigo Software social media pages
- To compile benchmarking, research and development data, including, but not limited to your operational, financial and statistical data in order to provide de-identified comparative benchmarking services, decision support services and predictive management services to Omnigo Software customers and prospective customers and for use in Omnigo Software’s research and development of the Software.
- In any other way we may describe when you provide the information
- For any other purpose with your consent
We may also use your information to contact you about goods and services that may be of interest to you. If you do not want us to use your information in this way, please follow the unsubscribe instructions included in our marketing communications.
We may disclose personal data that we collect or you provide:
- To contractors, service providers, and other third parties we use to support our business and who are bound by contractual obligations to keep personal information confidential and use it only for the purposes for which we disclose it to them, including payment processors, storage contractors, and analytics contractors
- To a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Omnigo Software’s assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by Omnigo Software about our site or services users is among the assets transferred. Any successor in interest to this policy will be bound by the policy at the time of transfer
- To our subsidiaries and affiliates
We may also disclose your personal information:
- To comply with any court order, law, or legal process, including to respond to any government or regulatory request
- To enforce or apply our terms and other agreements, including for billing and collection purposes
- If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of Omnigo Software, our customers, or others. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction.
“Customer Data” means any and all data, information or material provided or submitted by Customers to Omnigo Software by any means, including Personal Data of Customer employees, contractors, and End-Users. We only process Customer Data as per our Customer's instructions. For purposes of the GDPR, we are the processor and not the controller of the Customer Data. Our European Economic Area (“EEA”) are the controllers of that data and are responsible for compliance with the applicable data protection law.
As the controller, it is our customers’ responsibility to inform end-users about the processing, and, where required, obtain necessary consent or authorization for any personal data that is collected as part of the Customer Data. As the processors of personal data on behalf of our customers, we follow customers’ instructions with respect to the Customer Data to the extent consistent with the functionality of our services. In doing so, we implement technical, physical and administrative measures to help protect against unauthorized processing of such information and against loss, destruction of, or damage to, personal data.
We have implemented appropriate technical and organizational measures designed to help secure personal data from accidental loss and from unauthorized access, use, alteration, and disclosure. The measures we use are designed to provide a level of security appropriate to the risk of processing personal data. All information you provide to us is stored on our secure servers behind firewalls.
The safety and security of your information also depends on you. Where we have given you (or where you have chosen) a password for access to certain parts of our site or services, you are responsible for keeping this password confidential. We ask you not to share your password with anyone. We urge you to be careful about giving out information in public areas of the site and in connection with our services such as company profile pages or message boards. The information you share in public areas may be viewed by any user of our site.
Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal data transmitted to or from our site or in connection with our services. Any transmission of personal data is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on our site or in connection with our services.
Specific Data Regulations
The GDPR is legislation to protect individuals within the European Union (EU), effective May 25, 2018. It is binding and applicable to all EU member countries, which means it does not require national governments to pass any additional legislation.
The GDPR applies to personal data when the data controller (an organization that collects data from EU residents) or data processor (an organization that processes data on behalf of the data controller) or the data subject is based in the EU area. It also applies to organizations based outside of the EU in case they collect or process personal data of EU residents.
The GDPR defines personal data as any data related to an identified or identifiable natural person (data subject). When a service supplied by Omnigo Software acts as a Data Processor on a customer’s behalf, our customers - as Data Controllers - are responsible for ensuring that their use of our products is in compliance with the GPDR.
Omnigo Software is a Data Processor. Our products process personal data collected in these products on behalf of its customers, and those customers are either Data Processors as well or the Data Controllers of the personal data. As a Data Processor, Omnigo Software processes personal data only on the instructions from its customers.
For purposes of GDPR compliance, Omnigo Software:
- Has a data protection steering group review all system and process changes related to data protection and respond to questions and requests from customers and other stakeholders.
- Assesses customer implementations to understand the data elements collected within the Omnigo Software platforms.
- Develops technical and organizational processes to maintain data subject’s rights.
- Documents the life-cycle of personal data collected by the Omnigo Software platforms.
- Creates internal guidelines and trains staff to be aware of the requirements of the GDPR.
- Covers data tracking and protection issues in our subscription agreements.
The Criminal Justice Information Services Division (CJIS) is a division of the United States Federal Bureau of Investigation (FBI). CJIS databases contain all necessary information for detaining criminals, performing background checks, and tracking criminal activity.
Criminal Justice Information (CJI) is data necessary for law enforcement and civil agencies to perform their missions including biometric, identity history, biographic, property and case/incident history data. This includes any data obtained from both state and national CJIS data systems.
The CJIS Security Policy provides guidance for the creation, viewing, modification, transmission, dissemination, storage, and destruction of CJI. Omnigo Software is a contracting private entity that operates in support of criminal justice services and information. All current and prospective law enforcement customers require Omnigo Software be CJIS-compliant to support our products.
Omnigo Software offices and servers are physically secured. Non-CJIS certified personnel with access to physically secure locations or controlled areas are always escorted by authorized personnel.
The Health Insurance Portability and Accountability Act (HIPPA) mandates industry-wide standards for health care information and requires the protection and confidential handling of protected health information.
HIPAA requires health care providers and organizations, as well as their business associates, to develop and follow procedures that ensure the confidentiality and security of protected health information (PHI) when it is transferred, received, handled, or shared. Only the minimum health information necessary to conduct business is to be used or shared. Records maintained in our products may fall into this category.
HIPPA includes exclusions for law enforcement officials. There are no exclusions for hospital security departments or public safety departments that are not law enforcement agencies.
HIPAA applies only to covered entities: health plans, health care clearinghouses, and certain health care providers. HIPPA allows covered providers and health plans to disclose protected health information to “business associates,” which are persons or entities that perform certain functions or activities that involve the use or disclosure of protected health information on behalf of, or provide services to, a covered entity. There are specific items that must be included in the contract with business associates.
Omnigo Software is a “business associate” of our healthcare customers.
The Family Educational Rights and Privacy Act (FERPA) protects personally identifiable information in students’ education records from unauthorized disclosure.
FERPA applies to all educational agencies and institutions that receive funds under any program administered by the Family Policy Compliance Office of the United States Department of Education. Public and private educational agencies and institutions (i.e.: schools and school districts) often rely on service providers to handle services they cannot efficiently provide themselves, such as applications that contain student information. Omnigo Software is a service provider to these agencies and institutions.
When schools and districts outsource institutional services or functions, FERPA permits the disclosure of personally identifiable information from education records to contractors, consultants, volunteers, or other third parties. Omnigo Software maintains data security and ensures our customers are able to access and control their data.