Welcome to our website!
CirrioSoft, Ltd. (“CirrioSoft”, "we", "our") is a company registered in Slovenia with the business address: at Ulica Ambrožiča Novljana 5, 1000 Ljubljana, and its registered number: 8830142000, which operates the websites https://www.quantifly.si/ and https://www.360.quantifly.si/ (the "quantifly Analysis Website" and the "quantifly 360 Website", collectively, “the Websites") and which provides services in the field of personnel/human resources analysis (“the Services").
TABLE OF CONTENT
- Consent to, withdrawal and restriction of the processing of Personal Data
- What Personal Data do we collect?
- What do we do with the collected Personal Data?
- How do we protect your Personal Data?
- What are your rights?
- Links to other websites
- How to contact us?
1. Consent to, withdrawal and restriction of the processing of personal data
CirrioSoft will continue to process, even after withdrawal of your consent, only the data relating to you that it is required to process in order to comply with its legal obligations, to perform its contract with you and to pursue its legitimate interests.
“GDPR” stands for the EU General Data Protection Regulation (Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of Personal Data and on the free movement of such data).
The two “Websites” are collectively the quantifly analysis Website and the quantifly 360 Website.
3. What personal data do we collect?
3.1. General information
We collect your Personal Data when you use our Website, when you contact us (e.g. email, telephone, etc.), through our online questionnaire and when we provide our Services. This enables us to provide you with the Services and operation of our Websites efficiently. All Personal Data will be processed lawfully, fairly and in a transparent manner.
3.2. Basis for collecting Personal Data
CirrioSoft receives, collects, stores and processes the Personal Data provided on the basis of a contract with the Client or on the basis of the Client's or the Participant’s explicit consent.
In connection to this, CirrioSoft reserves the right to request the Client to provide evidence of the collected consents for the collection, processing and transfer of Personal Data and, in the event that the Client is unable or unwilling to provide such evidence, to terminate the business cooperation or refuse to accept the Personal Data provided for storage and processing.
Due to the nature of the Services, certain processing of Personal Data is necessary for the performance of the contract between CirrioSoft and you. If you withdraw your consent, the performance of the contract and thus the performance of the Services may no longer be possible.
In some cases, CirrioSoft has developed legitimate interests in the processing of Personal Data. CirrioSoft's legitimate interests include:
- asserting any legal action, claim or dispute or defending CirrioSoft against any action, claim or dispute;
- compliance with a court order or other legal process, or legal and regulatory requirements of government authorities;
- ensuring information security, including unauthorised access to the Services or confidential information.
On the basis of legitimate interest, CirrioSoft processes Personal Data collected in the context of the performance of a contract or on the basis of the consent of the data subject. Such processing may continue until the lack of legitimate interest is demonstrated.
3.3. Personal Data we collect
We only collect Personal Data that is necessary for the provision of the Services. What Personal Data is collected and processed depends on how you interact with our Websites and the preferences and choices you make about your privacy.
The Personal Data we collect:
- contact details (such as personal name, email, phone number, address, etc.);
- information about the use of our Websites;
- job and employment details;
- device data: information that could identify your device, such as the serial number of your device, or about your device, such as the type of browser;
- usage data: information about your activity and use of our Services and Websites, including browsing history; search history; product interaction; malfunction, performance and other diagnostic data; and other usage data;
- technical information: including the Internet Protocol (IP) address used to connect your computer to the internet, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform; information about your visits, including URLs (uniform resource locator), clickstream to the Website, Services offered, Services viewed or searched for, page response times, download errors, length of visits to specific pages, information about your interaction with the site (such as page navigation, clicks and mouse movements), the methods used to navigate the site, and any telephone number used to call our customer service;
- other information you provide to us: details such as the content of your communications with the company.
3.4. Restriction options
You can also choose what Personal Data we collect about you. Where we ask for your consent to obtain and process Personal Data, you can refuse to do so. If you do not provide us with all the information we need to operate the Websites, you may experience certain problems in using it. Also, if you do not provide us with the necessary information to provide Services, we may not be able to provide those Services.
4. What do we do with the collected personal data?
4.1. Use of Personal Data
We use the Personal Data collected to provide our Services and to pursue our legitimate interests. These include providing our Services, maintaining coordination and sending you notifications such as updates regarding your activities on our Websites.
Some Personal Data may also be used for marketing purposes (e.g. we may use your email address to send you certain marketing campaigns about our Services).
Personal Data is not used to make automated decisions.
4.2. Where and for how long do we keep your Personal Data?
Personal Data is stored digitally on third-party servers, specifically on servers of Google, Amazon and Digital Ocean, located in the European Union. Personal Data is stored on these servers on a continuous basis until you withdraw your consent.
Because we offer our Services on a continuous and recurring basis, your data will not be deleted after a quantifly Analysis or a single use of quantifly 360, but will be kept for comparison with the results of the next quantifly Analysis or quantifly 360. This is to ensure that you are able to see developments and changes and to make full, uninterrupted use of our Services. You may withdraw such consent at any time or request deletion in accordance with your rights as set out below. If you make such a withdrawal or deletion request, the full functionality of the Services may not be available to you hereunder.
5. How do we protect your personal data?
Your Personal Data is processed in a way that ensures adequate security. This includes protection against unauthorised or unlawful processing and against accidental loss, destruction or damage.
We do our best to protect your Personal Data. Unfortunately, transmission of information over the internet is never completely secure and, despite our best efforts, we cannot guarantee the complete security of your Personal Data and accept no liability in the event of a breach of security. We also cannot guarantee the complete security of your Personal Data in the event of hacker attacks or other intrusions into our systems. In the event of such intrusions or attacks, we assume no responsibility for the disclosure of your Personal Data.
The following security measures are also in place to protect your Personal Data.
Security measures: appropriate technical and organisational measures are in place to ensure that only Personal Data necessary for each specific purpose of processing are processed. This applies to the amount, scope of processing and accessibility of the Personal Data collected. Such measures are taken to ensure that Personal Data is not accessible to an unlimited number of persons without your intervention.
In the event of a Personal Data breach: we will notify the competent supervisory authority without undue delay, as far as practicable, but at the latest within 72 hours after becoming aware of the breach. We will also notify you without undue delay if there is a risk to your rights and freedoms as a result of a Personal Data breach.
The above provision does not apply in cases where such a breach would be unlikely to jeopardise your rights and freedoms, or where we have implemented appropriate technical and organisational safeguards applicable to the protection of the Personal Data affected by the breach, or where our further measures ensure that the risk is unlikely to materialise. Nor does the above provision apply where it would involve a disproportionate effort. In the cases described above, we will inform you by public communication or by similar equally effective means.
6. What are your rights?
Under the GDPR, as a user of our Websites and Services, you are granted certain rights regarding the processing of your Personal Data.
Right to information - you have the right to accurate, transparent, comprehensible and easily accessible information regarding the processing of your Personal Data.
Right of access - You have the right to access the Personal Data we hold about you. You can ask us to confirm whether your Personal Data is used and how it is used (e.g. purposes of processing, recipients). We will also provide you with a copy of your Personal Data upon your request.
Right to rectification (updating your data) - upon your request, we will ensure that inaccurate Personal Data is updated without undue delay. You also have the right to have incomplete Personal Data completed, depending on the purposes of the processing.
Right to erasure (deletion of your data) - once certain criteria are met (Article 17 GDPR), you have the right to request that we delete all your Personal Data that we process without undue delay.
Right to restriction of processing - in certain circumstances (Article 18 GDPR), you can request that we restrict the way we process your Personal Data.
Right to data portability - you have the right to receive your Personal Data that we hold in a structured, commonly used, machine-readable format. You can also transfer this data to a third party service provider. Please note that this right only applies if we are using your data on the basis of your consent or in performance of a contract and our use of your data is by automated means.
Right to object - You have the right to object to our processing of your Personal Data at any time, provided that you have a valid reason for doing so. If there are no compelling legitimate grounds for further processing, we will stop processing your Personal Data. This right also allows you to request that we stop using your Personal Data for direct marketing purposes.
Complaints - You can lodge a complaint with the relevant data protection authority under the conditions set out in the GDPR.
In the event of a Personal Data breach, you may lodge a complaint against the controller with the competent supervisory authority at the Information Commissioner's Office, Zaloška 59, 1000 Ljubljana or at email@example.com.
If you have any questions about your rights or the circumstances in which those rights apply, please contact us. You can also read more detailed descriptions of each right in Chapter III of the GDPR (https://eur-lex.europa.eu/eli/reg/2016/679/oj).
Legal bases for processing EU residents' data - We will only process your Personal Data if one (or more) of the following requirements is met:
- When we have your consent. If consent is the legal basis for processing your Personal Data, you can withdraw your consent at any time.
- When the processing is necessary for the performance of a contract to which you are a party (e.g. to provide Services you have requested).
- To meet our legal obligations.
- When it's necessary to protect your vital interests or those of others.
- Where processing is necessary for the performance of a task carried out in the public interest.
- When we or a third party have a legitimate interest in processing your Personal Data
7. Links to other websites
10. How to contact us?
CirrioSoft, a company for the development of web-based solutions for human resources management, Ltd
Ulica Ambrožiča Novljana 5
SUBJECT: PERSONAL DATA PROTECTION
Cookies do not personally identify you. We only use them to make our Websites work better.
By using these Websites, you agree to the Websites setting cookies on the device or browser you are using to access them.
1. What are cookies?
Cookies are small text files, usually made up of letters and numbers, which are stored on a device (computer, mobile phone, tablet, etc.) by the website you visit in order to identify those devices. The storage of cookies is under the control of the browser - see below: control of cookies.
2. Why does the website need cookies?
The main purpose of a cookie is to enable (our) web server to present the user with personalised web pages that make the experience of visiting (our) Websites more personal and more responsive to the user's individual needs. Cookies make the interaction between the user and the Website faster and easier. They help the Website to remember the individual's preferences and experience, saving the user’s time on return visits and making the browsing experience more efficient and enjoyable.
Cookies are an important means of keeping content fresh and relevant, in line with the interests and preferences of the individual web user. The reasons for using cookies are based on their characteristics (one of them is to store information about the state of a particular website), cookies help in the provision of various online services (online shops), they help in the collection of various statistics, since only with them can the frequency of visits to a particular website be monitored. Cookies allow the website operator to assess the effectiveness of the design of its website, as well as the relevance of the type and number of advertisements offered by third parties to users on its website.
4. Which cookies does the website use?
5. Control over cookies or cookie preferences
If you wish to change the way cookies are used in your browser, including blocking or deleting them, you can do so by changing your browser settings accordingly. Please contact your browser provider for more detailed instructions.
The operator of the Websites is CirrioSoft, a company for the development of web-based solutions for human resources management, Ltd, registered in Slovenia with the business address: at Ulica Ambrožiča Novljana 5, 1000 Ljubljana, and its registered number: 8830142000.