Effective starting: 8 January, 2020
Award Force, “us”, “we”, or “our” refers to Creative Force Ltd, Award Force Pty Ltd and any of our corporate affiliates. We operate the Award Force cloud software and the Award Force website www.awardforce.com (the “Service”).
We are committed to providing you with the best possible experience, which includes the security, privacy and integrity of your personal data. Our Service complies with the requirements of the following regulations and acts:
|For Users in the EU:||The EU General Data Protection Regulation (GDPR) as set out in the Regulation (EU) 2016/679 of the European Parliament and of the Council, of 27 April 2016|
|For Users in California:||The California Consumer Privacy Act (CCPA)|
|For Users in Australia:||The Australian Privacy Principles as set out in the Privacy Act 1988 (Cth)|
This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data.
“Personal Data” means data about a living individual who can be identified from that data. It does not include data where the identity has been removed (such as anonymous or deidentified data).
“Usage Data” is data collected automatically either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
“Cookies” are small pieces of data stored on a User’s device.
“Data Controller” means a person who (either alone or jointly or in common with other persons) determines the purposes for which and the manner in which any personal data are, or are to be, processed.
“Data Processor” (or “Service Provider”) means any person (other than an employee of the Data Controller) who processes the data on behalf of the Data Controller.
We may use the services of various Service Providers in order to process your data more effectively.
“Data Subject” is any living individual who is the subject of Personal Data.
The “User” is the individual using our Service. The User corresponds to the Data Subject, who is the subject of Personal Data.
Information collection and use
We collect several different types of information for various purposes to provide and improve our Service to you.
Types of data collected
While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you (“Personal Data”). Personally identifiable information includes:
- Email address
- First name and last name
- Phone number
- Address, State, Province, ZIP/Postal code, City
- Financial/billing information (not stored by us)
We use your Personal Data to contact you with newsletters, marketing or promotional materials and other information that may be of interest to you. You may opt out of receiving any, or all, of these communications from us by following the unsubscribe link or instructions provided in any email we send. Marketing consent is not required as a condition of use of the Service.
We may also collect information on how the Service is accessed and used (“Usage Data”). This Usage Data may include information such as your computer’s IP address, browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
Tracking Cookies Data
You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.
Examples of Cookies we use:
- Session Cookies. We use Session Cookies to operate our Service.
- Preference Cookies. We use Preference Cookies to remember your preferences and various settings.
- Security Cookies. We use Security Cookies for security purposes.
Use of data
We use the collected data for various purposes:
- To provide and maintain our Service
- To notify you about changes to our Service
- To allow you to participate in interactive features of our Service when you choose to do so
- To provide customer support
- To gather analysis or valuable information so that we can improve our Service
- To monitor the usage of our Service
- To detect, prevent and address technical issues
- To provide you with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless you have opted not to receive such information
We are not in the business of selling personal data to third parties, in the course of providing the Service or otherwise.
Retention of data
We will retain your Personal Data only for as long as we have a legitimate business or legal need to do so. Our retention periods depend on the type of data and its purpose.
We will retain your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), to resolve disputes, and to enforce our legal agreements and policies. We will not retain your Personal Data for business purposes for more than 45 days past the end of a Service contract.
We will retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Service, or we are legally obligated to retain this data for longer time periods.
Transfer of data
Your information, including Personal Data, may be transferred to— and maintained on— computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.
If you are located outside the European Union (EU) and choose to provide information to us, please note that we transfer the data, including Personal Data, to the EU and process it there.
Your Personal Data may be transferred to Service Providers outside of the EU for processing, but only where adequate protections are in place.
Disclosure of data
We may disclose your Personal Data in the good faith belief that such action is necessary:
- To comply with a legal obligation
- To protect and defend our rights or property
- To prevent or investigate possible wrongdoing in connection with the Service
- To protect the personal safety of users of the Service or the public
- To protect against legal liability
Security of data
The security of your data is important to us, but remember that no method of transmission over the internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable, best practice, and state-of-the-art means to protect your Personal Data, we cannot guarantee its absolute security.
We aim to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.
Whenever made possible, you can update your Personal Data directly within your account settings section. If you are unable to change your Personal Data, please contact us to make the required changes.
If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please contact us.
You can submit a justified request:
- To access and receive a copy of the Personal Data we hold about you
- To rectify any Personal Data held about you that is inaccurate
- To request the deletion of Personal Data held about you
You have the right to data portability for the information you provide to us. You can request to obtain a copy of your Personal Data in a commonly used electronic format so that you can manage and move it.
You may exercise your right to object, if no opt-out mechanism is otherwise made available to you (including objecting to the basis of use for the purpose of our legitimate interest), by sending an email to firstname.lastname@example.org.
Please note that we may ask you to verify your identity before responding to such requests.
We may employ third party companies and individuals to facilitate our Service (“Service Providers”), to provide the Service on our behalf, to perform Service-related services or to assist us in analysing how our Service is used.
These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
We may use third-party Service Providers to monitor and analyse the use of our Service.
We may use third-party software Service Providers to manipulate images and PDFs that you may upload to the Service. Images and PDFs provided to our third-party image manipulation Service Providers could include Personal Data. Their processing of your Personal Data is governed by a Data Processing Addendum between us and them.
We may use third-party software Service Providers for sending and receiving email, SMS, push messages and support interactions. Messages provided to our third-party messaging Service Providers could include Personal Data. Their processing of your Personal Data is governed by a Data Processing Addendum between us and them.
We may provide paid products and/or services within the Service. In that case, we use third-party services for payment processing.
Links to other sites
We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
Our Service does not address anyone under the age of 16 (“Children” or “Child”). Additionally, if you are under the age of majority in your jurisdiction (most commonly, 18 years of age), you represent that your parent or legal guardian has reviewed and agreed to this Policy.
We do not knowingly collect personally identifiable information from anyone under the age of 16. If you are a parent or guardian and you are aware that your Child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from Children without verification of parental consent, we take steps to remove that information from our servers.
California Privacy Notices
If you are a California resident, California law may provide you with certain rights regarding our use of your personal information.
- “Do Not Track” under the California Online Privacy Protection Act. We do not support Do Not Track (“DNT”). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked. You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser. We are not aware of any processes for others collecting personal information about your activities on our websites over time and across third party websites, apps, or other online services, nor do we knowingly collect information about your activities over time across third party sites and services.
- California’s “Shine the Light” law (Civil Code Section § 1798.83). This law permits users of our website that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please send an email to us as set forth in the Contact us section above.
- California Consumer Privacy Act (CCPA). This part (C) serves as a privacy notice under the CCPA for California residents and applies solely to all visitors, users, and others who reside in the State of California. This part is effective upon the effective date of enforcement of the CCPA. Terms defined in the CCPA have the same meaning when used in this notice. Note that provision of this CCPA notice is not an admission on our part that we are a “business” within the meaning of the CCPA, and nothing in this Policy may be construed as such an admission.
Personal information we collect
We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular person (“personal information”) that falls within the following categories of personal information, and have done so within the last 12 months:
|Identifiers||A real name, postal address, unique identifier, online identifier, Internet Protocol address, email address, and account name.|
|Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))||A name, address, telephone number, financial and business information.|
|Commercial information||Records of services purchased, obtained, or considered, or other transaction histories.|
|Internet or other similar network activity||A consumer’s interaction with a website.|
Personal information does not include: (a) publicly available information from government records; (b) deidentified information or aggregate consumer information; (c) information excluded from the CCPA’s scope; and (d) personal information covered by certain sector-specific privacy laws.
We obtain the categories of personal information listed above from the following categories of sources:
- directly from you or publicly available sources. For example, from forms you complete or products and services you purchase or sell, or from information you choose to display in publicly accessible social media accounts.
- indirectly when you use our services (eg cookies when using our website).
Our use of personal information
We may use or disclose the personal information we collect for the purposes set forth in this Policy, and one or more of the following business purposes:
- to fulfill or meet the reason you provided the information. For example, if you share your name and contact information to request a price quote or ask a question about our products or services, we will use that personal information to respond to your inquiry. If you provide your personal information to purchase a product or service, we will use that information to process your payment and facilitate delivery.
- to provide, support, personalize, and develop our website, products, and services.
- to create, maintain, customize, and secure your account with us.
- to process your requests, purchases, transactions, and payments and prevent transactional fraud.
- to provide you with support and to respond to your inquiries, including to investigate and address your concerns and monitor and improve our responses.
- to deliver content and product and service offerings relevant to your interests, including targeted offers and ads through our sites, third-party sites, and via email or text message (with your consent, where required by law).
- to help maintain the safety, security, and integrity of our website, products and services, databases and other technology assets, and business.
- for testing, research, analysis, and product development.
- to respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
- as described to you when collecting your personal information or as otherwise set forth in the CCPA.
- auditing related to a current interactions and concurrent transactions, including, but not limited to, counting ad impressions to unique visitors, verifying positioning and quality of ad impressions, and auditing compliance with this specification and other standards.
- detecting security incidents, protecting against malicious, deceptive, fraudulent, or illegal activity, and prosecuting those responsible for that activity.
- debugging to identify and repair errors that impair existing intended functionality.
- to evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by us is among the assets transferred.
We will not collect additional categories of personal information or use the personal information we collected for materially different, unrelated, or incompatible purposes without providing you notice. We will not sell personal data (other than in connection with a sale of business or merger as explained above).
Sharing personal information
We may disclose any or all of the categories above of your personal information to a third party for a business purpose, as set forth in the Service Providers section above, and we have done so in the last 12 months. When we disclose personal information for a business purpose, we enter a contract that describes the purpose and requires the recipient to both keep that personal information confidential and not use it for any purpose except performing the contract. The CCPA prohibits third parties who purchase the personal information we hold from reselling it unless you have received explicit notice and an opportunity to opt-out of further sales.
We disclose your personal information for a business purpose to the following categories of third parties:
- third parties to whom we may choose to sell, transfer, or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this Policy.
- any other third parties to whom you have permitted us to disclose your personal information.
- as set forth in this Policy.
Your rights and choices
You have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months. Once we receive and confirm your verifiable consumer request, we will disclose to you:
- the categories of personal information we collected about you.
- the categories of sources for the personal information we collected about you.
- our business or commercial purpose for collecting or selling that personal information.
- the categories of third parties with whom we share that personal information.
- the specific pieces of personal information we collected about you (also called a data portability request).
- if we sold or disclosed your personal information for a business purpose, two separate lists disclosing: (a) sales, identifying the personal information categories that each category of recipient purchased; and (b) disclosures for a business purpose, identifying the personal information categories that each category of recipient obtained.
Deletion request rights
California residents have the right under the CCPA to request that we delete any of their personal information that we have collected and retained, subject to certain exceptions. Once we receive and confirm a verifiable consumer request (see below), we will delete (and direct our service providers to delete) relevant personal information from our records, unless an exception applies.
We may deny California residents’ deletion request if retaining the information is necessary for us or our service provider(s) to:
- complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with the requesting individual, or otherwise perform our contract with a requesting individual.
- detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
- debug products to identify and repair errors that impair existing intended functionality.
- exercise free speech, ensure the right of another to exercise their free speech rights, or exercise another right provided for by law.
- enable solely internal uses that are reasonably aligned with consumer expectations.
- comply with a legal obligation.
- make other internal and lawful uses of that information that are compatible with the context in which you provided it.
Verifiable consumer request
To exercise the access, data portability, and deletion rights under the CCPA described above, please submit to us a verifiable consumer request by email as set forth in the Contact us section above.
Only a California resident, or a person registered with the California Secretary of State that a California resident has authorized to act on their behalf, may make a verifiable consumer request related to their personal information. A California resident may also make a verifiable consumer request on behalf of their minor child.
A verifiable consumer request for access or data portability can only be made twice within a 12-month period. The verifiable consumer request must provide sufficient information that allows us to reasonably verify the California resident about whom we collected personal information or an authorized representative, and contain sufficient detail that allows us to properly understand, evaluate, and respond to it. We cannot respond to your request or provide personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you.
Making a verifiable consumer request does not require you to create an account on our website. However, we do consider requests made through your password protected account sufficiently verified when the request relates to personal information associated with that specific account. We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.
We will endeavour to respond to a verifiable consumer request within 45 days of its receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing. If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically.
Any disclosures we provide will only cover the 12-month period preceding the verifiable consumer request’s receipt. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.
We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
We will not discriminate against you for exercising any of your CCPA rights. Except as permitted by the CCPA, we will not:
- deny you goods or services.
- charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties.
- provide you a different level or quality of goods or services.
- suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.