登录

CleverControl 隐私政策

我们是谁。 CleverControl LLC(“CleverControl”,“我们”)提供企业对企业员工监控和相关云服务以及clevercontrol.com网站(“网站”)。

联系方式 CleverControl LLC,地址:2234 North Federal Hwy #2017, Boca Raton, FL 33431, USA。电话:+1 (407) 250-10-40。邮箱:

mailto:privacy@clevercontrol.com

1. 范围及如何阅读本通知

我们提供两种类型的信息,以帮助您了解我们的隐私惯例。此结构旨在明确 CleverControl 何时充当控制者,何时充当处理者:

  • 网站隐私声明(本文件第 2-10 节) — 涵盖在网站上收集的个人数据(例如,cookies/分析、联系表格、支持请求、营销和销售通讯)。
  • 产品和服务隐私声明(第 11-15 条) — 涵盖我们的商业客户使用 CleverControl 软件/代理和云服务时处理的个人数据。

我们出于自身目的处理个人数据的情况(例如,网站分析、销售/营销) CleverControl 是一个控制器。

关键定义

  • 顾客 - 在我们这里拥有账户以使用我们的服务或对 CleverControl 或我们的服务(直接或通过合作伙伴)表示兴趣的组织或个人。
  • 网站访问者 - 访问或使用我们的网站或链接至本通知的其他网站的人士。
  • 最终用户 - 经客户授权访问或使用服务的个人,及/或其设备托管 CleverControl 代理的个人(例如,员工、顾问、承包商)。最终用户应查阅客户的隐私政策,了解客户作为控制者如何处理其信息。

当企业客户使用我们的服务来监控其员工时,客户就是控制者,而 CleverControl 则根据客户的指示和我们的数据处理标准充当处理者。

2. 我们在网站上收集的个人数据

您提供的信息 — 联系方式(姓名、工作邮箱、电话)、公司和职位、消息内容、支持请求、账户/门户凭证、订单号、通过我们的结账流程提交的账单信息(由符合 PCI 标准的支付服务提供商处理)以及偏好设置。我们不会在我们的系统中存储完整的支付卡数据。

来自您的设备的信息 — 在线标识符,例如 IP 地址、cookie ID、设备/浏览器信息、查看的页面、引用/退出页面、会话持续时间以及与表单或下载的交互。

来自第三方的信息 — 来自合作伙伴和提供商(例如渠道合作伙伴、分析和广告平台、CRM 丰富、支付和履行合作伙伴)的有限业务联系/丰富数据,以帮助我们满足请求和运营网站。

3. 我们如何使用网站数据(目的)

We use Site data to:

  1. operate the Site and provide requested information;

  2. create and manage accounts, trials, and orders;

  3. provide sales/marketing communications (including events, demos, and surveys);

  4. provide customer support;

  5. analyze and improve the Site and services;

  6. detect, prevent, and investigate security incidents, abuse, and fraud;

  7. comply with the law and exercise legal claims;

  8. 管理招聘流程。

4. 法律依据(欧洲经济区/英国)

当适用法律(例如 GDPR/UK GDPR)需要法律依据时,我们依赖:

网站运营、账户、报价、试用、订单、支持履行合同或签订合同前的步骤;经营我们业务的合法利益
安全/欺诈、服务完整性和日志记录合法权益;适用时的法律义务
向潜在客户和客户发送营销电子邮件同意(或合法利益/允许的软选择加入)并选择退出
欧洲经济区/英国的分析/广告 Cookie通过我们的 Cookie 横幅/CMP 表示同意
招聘同意;合法权益;法律义务(记录保存)

5. Cookie、类似技术和信号

我们使用 Cookie 和类似技术来运行网站并评估其性能。在欧洲经济区/英国,非必要的 Cookie(例如,分析/广告)仅在您同意的情况下通过我们的 Cookie 横幅/同意管理平台 (CMP) 运行。您可以随时使用网站上的“Cookie 设置”链接更改您的偏好设置。

全球隐私控制 (GPC)。根据美国各州适用法律的要求,我们会尊重浏览器级别的 GPC 信号,以选择退出个人数据的出售/共享或定向广告。

您的选择。您可以将浏览器设置为阻止 Cookie 或在设置 Cookie 时提醒您;如果没有必要的 Cookie,某些网站功能可能无法运行。

6. 网站数据披露

我们不会出售您的个人数据。我们会将网站数据披露给:

  • 代表我们行事的服务提供商(托管、分析/测量、安全、客户关系管理、通信、订单和付款处理、客户支持、专业顾问)。这些提供商受合同约束,必须保护您的数据,并仅将其用于我们的指示。
  • 广告/重定向合作伙伴(针对同意此类 cookie 的网站访问者)来投放和衡量我们的广告并防止广告欺诈。
  • 渠道合作伙伴/经销商响应您对本地采购和支持的请求。
  • 公司交易(例如合并、收购)须受到适当的保障。
  • 法律合规性和安全性,我们认为披露是法律要求或允许的(例如,当局的合法要求、执行条款、保护权利、安全或保障)。

7. 国际数据传输

对于 EEA/UK 个人数据,如果向第三国的转移缺乏充分性决定,我们会使用适当的保护措施(例如,欧盟标准合同条款和英国 IDTA/附录)并进行转移风险评估。

8. 保留

我们将根据上述目的及法律要求,在必要期限内保留网站个人数据。典型保留期限包括:营销线索和分析记录,自上次互动起最多 24 个月;支持请求,自关闭后最多 24 个月;服务器安全日志,约 90 天;每个工具记录的 Cookie 数据,其有效期为 24 个月。对于依赖用户同意的情况,我们将根据法律要求保留用户同意和偏好的记录。

9. 您的权利

根据适用法律,您有权请求访问、更正、删除、限制、可移植性或反对某些处理。如果您已获得同意,您可以随时撤回您的同意(这不会影响撤回之前的处理)。您可以通过发送电子邮件至 privacy@clevercontrol.com 行使权利。我们可能需要验证您的身份,并将在法律规定的时间内回复。

10. 美国州隐私声明(网站访问者)

Depending on your state of residence and our thresholds, you may have rights under laws such as those of California, Colorado, Connecticut, Virginia, Utah, Texas, Oregon, Delaware, and others. These may include the right to know/access, delete, correct, portability, and to opt-out of sale, sharing, or targeted advertising. We do not use sensitive personal data for inferring characteristics.

  • How to exercise rights: submit a request to privacy@clevercontrol.com. If we deny your request, you may appeal by replying to our decision email. If you remain unsatisfied, you may contact your state Attorney General.

  • Authorized agents (CA/others): If you submit a request via an authorized agent, we may require proof of authorization (e.g., power of attorney or signed permission) and may ask you to verify your identity directly with us.

  • Opt-out of sale/share/targeted ads: use our cookie preferences and, where supported, GPC signals.

  • Verification & response time: We verify requests using reasonable methods and respond within 45 days (we may extend by an additional 45 days where permitted and will tell you why).

  • We will not discriminate against you for exercising your rights.

11. Product & Services Privacy Notice (Customer Monitoring Data)

Role of the parties. For personal data monitored about employees, contractors, or other users of devices/accounts monitored by our customers, the customer is the controller (or business) and CleverControl is the processor (or service provider).

Categories of data processed (as configured by the customer): user identifiers, device identifiers, timestamps, application and website activity, URLs and titles, productivity categorizations, keystroke metadata or content (if explicitly enabled), screenshots/screen recordings (if enabled), webcam and/or audio recordings (if explicitly enabled and lawful), voice/call recordings (if explicitly enabled and lawful), email/log data, IP and approximate location, and administrative logs. Exact categories depend on product tier and customer configuration. We may also process de-identified and/or aggregated data derived from Customer data for analytics, benchmarking, and service improvement. We will not attempt to re-identify de-identified data except as permitted by law and to assess de-identification effectiveness.

End User data and marketing. We do not sell End User data or use it for targeted advertising.

Prohibited uses. Our services must not be used for covert or unlawful surveillance, monitoring of personal devices without authorization, intimate-partner or domestic surveillance, or any use without the notices, consents, or legal authorizations required by applicable law. We may suspend or terminate access for suspected misuse.

Customer responsibilities. Customers are solely responsible for:

  • providing legally required worker notices and obtaining consents where applicable (e.g., prior electronic-monitoring notices in certain U.S. states);

  • configuring monitoring to be necessary and proportionate for legitimate business purposes;

  • performing data protection impact assessments where required;

  • honoring workers’ rights requests directed to them;

  • setting and enforcing internal retention, access, and use policies.

Retention & deletion. Customer monitoring data is retained according to our agreement. Upon contract end or at the customer’s instruction, we delete personal data within agreed timelines. Deleted data cannot be restored.

Security. We implement appropriate technical and organizational measures, including encryption in transit and at rest; access controls and least-privilege; SSO/MFA options; audit logging; vulnerability management and penetration testing; secure development practices; and vendor security reviews. We notify customers without undue delay after becoming aware of a data breach affecting customer data.

Service providers (sub-processors). We use vetted service providers to deliver our services (infrastructure, storage, analytics, communications, support). We provide notice to customers of material changes to service providers.

International transfers. When we transfer customer personal data internationally, we do so under the safeguards described in Section 7.

Law enforcement and governmental requests. For customer data, we require a valid legal process and will redirect requests to the customer where feasible. We will notify the customer unless legally prohibited and will seek to narrow the scope of any request. We may publish high-level transparency statistics.

Employee/End-user inquiries. Individuals monitored by a customer should contact that customer (the controller/business) to exercise their privacy rights. Where we receive an inquiry directly, we will notify the relevant customer and assist.

12. Children

Our Site and services are intended for business use by adults. We do not knowingly collect personal data from children under 13 (or under 16 in the EEA/UK) on the Site. Customers must not use our services to monitor minors’ personal devices without a lawful basis and required notices/consents.

13. Links and Third Parties

The Site may link to third-party websites, apps, or services. Their privacy practices are governed by their own notices. We encourage you to review them before providing personal data.

14. Changes to This Notice

We may update this Notice from time to time. We will post the updated version with a new effective date and, if changes materially affect how we use or disclose personal data, we will provide additional notice as required.

15. How to Contact Us

For privacy questions, requests, or complaints, contact privacy@clevercontrol.com or write to: CleverControl LLC, 2234 North Federal Hwy #2017, Boca Raton, FL 33431, USA. If you are in the EEA/UK and we are required to appoint a representative or Data Protection Officer, their contact details will be published here.

For privacy questions, requests, or complaints, contact privacy@clevercontrol.com or write to: CleverControl LLC, 2234 North Federal Hwy #2017, Boca Raton, FL 33431, USA. If you are in the EEA/UK and we are required to appoint a representative or Data Protection Officer, their contact details will be published here.