Last updated: Oct 09, 2020
The words of which the initial letter is capitalized have meanings defined under the following conditions.
The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.
While using Our Service, We may ask You, the registered user, to provide Us with certain personally identifiable information that can be used to contact or identify You. In using the broad range or security services provided by use, our service also collects and stores data relating to users within within your organisation.
Personally identifiable information may include, but is not limited to:
No information is collected stored or processed that does not relate to the continued provision of the service
We do NOT collect process or store emails, documents, or other business communications
We do NOT collect, process or store any other types of business information outside of the above categorisations
Usage Data is collected automatically when using the Service.
Usage Data may include information such as Your Device's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
When You access the Service by or through a mobile device, We may collect certain information automatically, including, but not limited to, the type of mobile device You use, Your mobile device unique ID, the IP address of Your mobile device, Your mobile operating system, the type of mobile Internet browser You use, unique device identifiers and other diagnostic data.
We may also collect information that Your browser sends whenever You visit our Service or when You access the Service by or through a mobile device.
You can instruct Your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if You do not accept Cookies, You may not be able to use some parts of our Service.
Cookies can be "Persistent" or "Session" Cookies. Persistent Cookies remain on your personal computer or mobile device when You go offline, while Session Cookies are deleted as soon as You close your web browser.
We use both session and persistent Cookies for the purposes set out below:
Necessary / Essential Cookies
Cookies Policy / Notice Acceptance Cookies
Tracking and Performance Cookies
For more information about the cookies we use and your choices regarding cookies, please visit our Cookies Policy.
Tenant Users and third parties stored within your Tenant users may include its employees, and in some cases, other persons with whom your Office 365 tenant has connected with and hence collected personal information on. In the case of the "other persons" these may include persons such as your clients or vendors for whom you have allocated guest user roles. An example of guest user might be a person with whom you are sharing an internal document via SharePoint.
The Company may use Personal Data of users within your tenant for the following purposes:
To provide and maintain our Service, including to monitor the usage of our Service. When using our security services; all data is collected, stored and processed in accordance with the provision of the security service. More specifically the data is used to infer security risks, security incidents, and security related configurations about your tenant. Some personal information is required within this context so as to infer the persons for whom these, risks and incidents apply to. Users and third parties stored within your Tenant Users may include its employees, and in some cases, other persons with whom your Office 365 tenant has connected with and hence collected personal information on. In the case of the "other persons" these may include persons such as your clients or vendors for whom you have allocated guest user roles. An example of guest user might be a person with whom you are sharing an internal document via SharePoint. The data that we collect, which may contain personal data, is metadata about the use of your tenant and NOT business data. It can be categorised as follows
The Company may share Personal Data of Tenant Users within your tenant for the following purposes:
The company may use Personal Data of the registered account owner for the following purposes. NB We will NOT use the personal data of other Tenant Users for the following purposes
We may share personal information of the registered account holder in the following situations:
Service Providers have access to Your Personal Data only to perform their tasks on Our behalf and are obligated not to disclose or use it for any other purpose.
We may use third-party Service providers to monitor and analyse the use of our Service.
The Company will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of Our Service, or We are legally obligated to retain this data for longer time periods.
Your information, including Personal Data, is processed at the Company's operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of Your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from Your jurisdiction.
Under certain circumstances, the Company may be required to disclose Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency).
The Company may disclose Personal Data in the good faith belief that such action is necessary to:
The security of Your Personal Data is important to Us in the extreme, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While We strive to use the most secure commercially acceptable means to protect Your Personal Data, We cannot guarantee its absolute security.
Our Service does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If You are a parent or guardian and You are aware that Your child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from anyone under the age of 13 without verification of parental consent, We take steps to remove that information from Our servers.
We also may limit how We collect, use, and store some of the information of Users between 13 and 18 years old. In some cases, this means We will be unable to provide certain functionality of the Service to these users.
If We need to rely on consent as a legal basis for processing Your information and Your country requires consent from a parent, We may require Your parent's consent before We collect and use that information.
We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
If you need to contact the Data Protection Officer of Octiga you can contact them here: