Privacy Policy

Introduction
Avisi (hereafter: "we") processes personal data of people that use Avisi's Apps, such as Atlas CRM Jira, Atlas CRM Confluence or the Numbered Headings App. We do this in order to provide our products and services and to achieve our goals. In this privacy policy, we explain why and how we process your personal data.
By using Avisi's Apps you agree to this privacy policy. If you do not agree to this privacy policy, you must not use Avisi's Apps.
We have a Privacy Officer in place who is committed to support us with GDPR compliancy of our Apps. We are happy to help you concerning your questions about data privacy. Should you have any questions or concerns, please contact us at [email protected].
This privacy statement was last amended on Augustus 5, 2021.
Who are we?
We are Avisi. This Privacy Policy governs all data processing activities in relation to our Atlassian Apps for which we are to be regarded as the Data Controller. However, in order to make it as clear as possible what personal data we process and how we deal with that personal data, we differentiate between several data processing activities.
We are located at Nieuwe Stationsstraat 10, 6811 KS, Arnhem, The Netherlands.
Definitions
Below we introduce some definitions to make a clear understanding of terms used in this privacy policy:
License Agreement: the license agreement concluded between Avisi and the Licensee for the use of the Apps.
Licensee: the party that has a License Agreement with Avisi.
End User: the natural person who uses the Apps.
Apps: the actual software app or apps developed by Avisi that Licensee orders from Avisi, including Updates and/or Upgrades and user documentation, which Avisi makes available to the Licensee and its End Users that have accepted the End User License Agreement.
Cloud: hosting option for Apps where an App implemented as-a-Service and used in tandem with Avisi's servers.
Server: hosting option for Apps where an App is downloaded and installed on a server not owned, maintained or accessible by Avisi.
Data Center: hosting option for Apps where an App is downloaded and installed on a server not owned, maintained or accessible by Avisi.
Types of data
The use of Avisi's Apps may involve several types of data that may contain personal data. The following data types are distinguished:
Content Data - Any data that you or your End Users enter into Avisi's Apps that is not any of the other data types below.
Support Data - Any data that you or your End Users provide to us directly in the support process that is not any other data type.
Contact Data - Data that you have provided to us in order to communicate with us.
Feedback Data - Data that you have provided to us in order to provide Feedback to us.
Usage Data - Data that is generated upon your use of Avisi's Apps.
Roles and scope of this privacy policy
With regard to Content Data and Support Data, the Licensee is to be regarded as the Data Controller. With regard to Content Data in our cloud-based Apps, we are to be regarded as the Data Processor. We do not have access to Content Data from Server or Data Center Apps. With regard to Support data, we are to be regarded as the Data Processor, irrespective of the nature of the App (Cloud, Sever or Data Center). The way in which we process these two data types on the Licensee's behalf is governed in the Data Processing Addendum, which is an integral part of the License Agreement.
With regard to Contact Data, Feedback Data and Usage Data, we are to be regarded as the Data Controller. The way in which we process these types of data is governed in this privacy policy. The remainder of this privacy policy is therefore solely considering Contact Data, Feedback Data and Usage Data.
Which personal data do we process?
Using Avisi's Apps, you can contact us, for example when you register with Atlassian or us (by installing an App) to evaluate an App or obtain a license for an App, send us an e-mail or raise a support ticket. In such cases, we may process the following contact data:
Name
Email address
User name
Any other personal data that you may provide us directly
When you provide us with feedback, for example by means of filling out a survey or filing a complaint, we process the following feedback data:
Name
Email address
Any other personal data that you may provide us directly
When you receive our welcome emails, we process the following personal data:
Name
Email address
Data about your activity with regard to our drip feed emails
When using our app, we process the following (pseudo) personal data with in-app analytics:
User ID/Account ID 
Tenant ID 
Location
Atlas CRM specific:
When enabling "Jira user sync" or "Automatically link issues", we process the following personal data of the Jira user / Jira Service Management user:
Name
E-mail address 
Why do we process that personal data?
We process personal data for various goals:
Communicate with you
When you contact us for one of the mentioned reasons, we process your personal data in order to make contact with you and in order to maintain contact. This allows us to contact you e.g. per email and e.g. in order to provide customer support.
Enable the provision of our Apps
We may use your contact data to enable the provision of our Apps, e.g. create your user account, process billing information, do account management or inform you about system maintenance.
Improve our products and services
When you provide us with feedback and/or by using Avisi's Apps, we process your feedback and usage data in order to maintain and improve a high level quality of our Apps, for example by means of dashboarding the use of Avisi's Apps as a means of operations management and tracing trends and opportunities for improvement. We will do this based on anonymized and aggregated data as much as possible.
Research and report
By using Avisi's Apps, we may process your usage data for means of research and reporting. We will only do this based on fully anonymized and aggregated data. We may share research reports with third parties, such as other users of Avisi's Apps.
Sending you drip feed emails
When you have installed one of our Apps, we process your personal information to send you our drip feed emails to help you on your way using our Apps.
‍Improve our services
We process your personal data to improve our services. For example, we track click behaviour with Google analytics in our app analytics to analyse which pages are visited and which path a user takes: the user id, tenant id and location are used for this.‌
Enable functionality (Atlas CRM)
We use personal data of Jira users of Jira Service Management users to enable the features "Jira User Sync" and "Automatically link issues". When Jira User Sync is enabled, Atlas CRM creates a CRM contact for each Jira user and (when applicable) Jira Service Desk customer. When Automatically link issues is enabled and a new issue is created, Atlas CRM uses the email address of the reporter to see if it can find a matching CRM contact. When a match is found, Atlas CRM automatically links the issue to the CRM contact.
Legal grounds for processing
We process your personal data based on the following legal grounds:
To perform or prepare an agreement (communicate, provision of our Apps, improve products and services)
A legitimate interest (direct marketing to customers)
Consent (marketing activities)
Sensitive Data
In specific occasions, we may process sensitive personal data:
When you provide sensitive personal data as feedback data
We strongly discourage you to send sensitive personal data to us if this is not necessary for our processing goals.
Personal data of minors
We explicitly do not have the intention to process personal data about minors, unless they have permission from their parents or guardians. However, we cannot check if a user is a minor. We therefore advise parents and guardians to be involved in the online activities of their children, in order to prevent that personal data about minors is processed without the consent of their parents or guardians. If you are convinced that we are processing personal data about minors without proper consent, please contact us at [email protected] and we will remove this information.
Automated decisions
We do not apply the principle where, based on automated data processing, decisions are made about cases that can have (considerable) implications for persons. This concerns decisions that are made by computer programs or systems, without human intervention (such as an Avisi employee).
Data subject rights
As a data subject, you have a number of rights regarding your personal data that we process. We will do our very best to meet these rights. To use your rights, you can contact us by sending a specific request to [email protected].
Information and access: You have the right to see what personal data we process of you. Upon request we will also tell you how and why we have processed your personal data.
Rectification: You have the right to the rectification of your personal data.
Right to be forgotten: You have the right to have your personal data erased. A legal obligation may force us to process your personal data after all. In this case we will inform you about this in reply to your request.
Restriction: Are you of the opinion that we process your personal data unlawfully or incorrect? Then you can express this to restrict processing.
Objection: You have the right to object to the processing of your personal data. Is it for marketing purposes? Then we will stop processing your personal data as soon as possible.
Portability: You have the right to transfer your personal data to yourself or another party.
You can also:
Withdraw consent: For example for receiving our newsletter or for the processing of pseudo personal data in our in-app analytics (opt-out). If you want to withdraw consent for other processing, you can contact us.
File a complaint: Are you of the opinion that we don't act conform the privacy law? Then we would like to hear from you. You can also file a complaint at a competent advisory authority.
Disable functionality (Atlas CRM): "Jira User sync" and "Automatically link issues" are disabled by default.  
To make sure that the request to access data is placed by you, we ask you to add a copy of your identification to your request. In the copy, hide your photo, MRZ (machine readable zone), passport number and citizen service number to protect your privacy. We will respond to your request as soon as possible, but in any case within 4 weeks.
Retention periods
We retain your data no longer than strictly necessary to achieve our processing goals for which we use your personal data. For example, we will remove your personal data from our drip feed email provider within 30 days when you choose to end your use of Avisi's Apps.
Information security
We take steps to ensure that your information is treated securely and in accordance with this privacy policy. The latest version of our information security policy is available from: Security Policy. Unfortunately, the Internet cannot be guaranteed to be 100% secure, and we cannot ensure or warrant the security of any information you provide to us. We do not accept liability for unintentional disclosure.
By using Avisi's Apps or providing personal information to us, you agree that we may communicate with you electronically regarding security, privacy, and administrative issues relating to your use of Avisi's Apps. If we learn of a security system's breach, we may attempt to notify you electronically by posting a notice within Avisi's Apps or sending an email to you. You may have a legal right to receive this notice in writing. To receive a free written notice of a security breach (or to withdraw your consent from receiving electronic notice), please notify us at [email protected].
Sharing of personal data (with third parties)
We do not share your personal data (with third parties), except for carrying out our services. These third parties are in fact data processors. We work, for example, with Amazon Web Services (AWS), Avisi's cloud-based Apps, Sendinblue (AWS / Google Cloud) for sending our drip feed emails and with Jira (AWS) to provide customer support. We do this only to carry out our agreement with you, for our legitimate interest or when we have your consent. These parties process personal data in accordance with the instructions of Avisi. A legal obligation or similar disclosure, or a merger or sale of Avisi to another company can also be a reason for us to share personal data with third parties.
Within Avisi, customer data is shared among its group entities. Your personal data may be shared as part of customer data. Customer data is only shared with group entities for the purpose of contacting the customer. Avisi processes customer data in line with the current laws and regulations (including GDPR).
Applicability of this Privacy Policy to third parties
When you navigate away from Avisi's Apps to websites or apps controlled by third parties, you leave Avisi's Apps, at which point this privacy policy no longer applies. You will not receive a warning when you leave Avisi's Apps. This privacy policy does not govern the data processing of anything that is not Avisi's Apps. We recommend you to read the privacy statements of other parties before using their services.
Disclaimer to international users
By choosing to use Avisi's Apps or otherwise providing information to us, you agree that any dispute over privacy or this privacy policy will be governed by Dutch law. If you are visiting from Australia and the United States or other regions with laws governing data collection and use, please note that you are agreeing to the transfer of your personal information to the European Union to us. By providing your personal information, you consent to any transfer and processing in accordance with this privacy policy. You also consent to the adjudication of any disputes arising in connection with us or Avisi's Apps in accordance with the License Agreement and/or End User License Agreement, as applicable.
New Uses
From time to time, we may use information, including personal information, for new, unanticipated uses not previously disclosed in our privacy policy. If our information practices change regarding information previously collected, we will take reasonable efforts to provide notice and obtain consent to any such uses as required by law.
Changes to the privacy policy
We have the right to change this privacy policy. We will post any changes to this Privacy Policy here. The revised version will be effective at the time it is posted. We recommend you to read this privacy policy regularly, so you stay up to date about any possible changes.
​
Last modified 1yr ago