Privacy Policy
Last updated: May 7, 2024
Altvia Solutions, LLC (“Altvia,” “us,” “we,” “our,” or the “Company”) is committed to protecting the privacy of individuals. This privacy policy (“Privacy Policy”) describes how we collect and use your personal information, as well as individuals’ choices regarding use, access and correction of personal information, and lets you know our practices regarding information collected from the different Altvia sites, related applications, and services that Altvia owns.
Information We Collect
We collect personal information that you submit to us voluntarily. When interacting with us through any one of our various channels, you may provide Altvia with personal information, which is any information that could identify an individual. Some of the information that could be collected may be, but is not limited to, first and last name, company name, address, phone number, and email address. When purchasing services, you may also provide Altvia with financial qualification and billing information, such as billing name and address, credit card number, and the number of employees within the organization that will be using the services. We may collect personal information that is necessary for our legitimate interests, which will be disclosed to you at the time of collection. Altvia will use this information for the purposes of which it was collected.
As you navigate one of our listed sites we may also collect certain information automatically, including your web site navigational information via cookies or similar technologies such as, your IP address, pages viewed and clicked, and the type of browser you are viewing Altvia’s content from.
Altvia may also receive information about you from other sources, including third parties, such as financial service partners or with partners with whom we offer co-branded services or engage in joint marketing activities. We protect data obtained from third parties according to the practices described in this Privacy Policy and we also apply any additional restrictions imposed by the source of the personal information.
How We Use The Information Collected
In general, we use the personal information we collect to perform the services that you have requested, respond to requests that you make, and to improve our service offering. For example, if you fill out a “Contact Me” Web form, the Company will use the information provided to contact you about your interest in the services. We may also use personal information collected for sending newsletters, marketing purposes, account registration, to enable you to purchase and download certain services, to renew orders, to comply with applicable legal requirements, customer support, financial qualifications, improvements to the company’s web sites, and other legitimate purposes permitted by applicable law.
Disclosure of Information
Altvia may disclose personal information to any Altvia subsidiary, affiliates and other related companies.
Altvia may share your information with third-party business partners who provide services on our behalf. These companies are authorized to use your personal information only as necessary to provide these services to us. These services may include payment processing, providing customer service, sending marketing or transactional communications, and for other legitimate purposes permitted by applicable law or otherwise with your consent.
There may also be instances when Altvia may disclose your personal information without providing you with a choice in order to honor a request that you have made through the services; comply with the law or in response to a court order, government request, or other legal process; protect the interests, rights, safety, or property of Altvia or others; protect against fraud or for risk management purposes; or respond to adverse third parties (i.e., adverse parties and their counsel and other agents) in the context of litigation. In addition, if Altvia sells all or part of its business or makes a sale or transfer of assets or is otherwise involved in a merger or business transfer, you agree that we may transfer your personal information to a third party as part of that transaction.
Security at Altvia
At Altvia, we understand the critical importance of security in managing and protecting the personal information entrusted to us. We have implemented comprehensive security measures to safeguard your data from unauthorized access, loss, misuse, and breach. Our security infrastructure includes advanced encryption, strict access controls, and continuous monitoring systems, ensuring robust defense layers across our operations.
Compliance and Regulations
We are committed to maintaining the highest data protection standards and have structured our security practices to align with SOC2 compliance. We demonstrate our dedication to the trust service principles of security, availability, processing integrity, confidentiality, and privacy. Altvia also adheres to global data protection regulations, including the General Data Protection Regulation (GDPR) for our European users and the California Consumer Privacy Act (CCPA) for users in California, ensuring all personal data is handled with the utmost care and legal compliance.
Secure Development Practices
At Altvia, secure development practices are a cornerstone of our approach to software creation. Our development process includes thorough code reviews and automated code scanning to identify and address vulnerabilities. This ensures that our software is functionally robust and secure against potential threats.
Penetration Testing and Continuous Improvement
Recognizing that no security system is impermeable, we conduct regular penetration tests and security audits by independent third-party experts. These assessments help us promptly identify and mitigate vulnerabilities and continually refine our security measures. This proactive approach to security emphasizes our commitment to exceeding industry standards.
Preparedness and Incident Response
We are fully prepared to respond to security incidents rapidly and effectively. Our incident response plan is designed to minimize any potential impact on your data and our operations, ensuring a swift and coordinated response to security threats.
Your Role in Security
We encourage our users to engage in safe data practices, enhancing the collective security of all stakeholders involved. If you have any questions about our security practices or wish to report a security concern, please contact us using the methods listed below.
Retention of Information
Altvia will retain your personal information as needed to fulfill the purposes for which it was collected. We will retain and use your personal information as necessary to comply with Altvia’s legitimate business requirements, legal obligations, resolve disputes, protect our assets and enforce our agreements.
Data Integrity and Purpose Limitation
Altvia limits the use of personal information to ways that are compatible and relevant to the purposes for which the personal information was collected or subsequently authorized, or for which consent was obtained. We will take reasonable steps to ensure that personal information is reliable for its intended use, accurate, complete and current.
Your Choices
Every marketing email from Altvia contains an option to opt out of receiving further marketing emails from Altvia. You may manage your receipt of marketing and non-transactional communications by clicking on the “unsubscribe” link located on the bottom of the Company’s marketing emails. At any time if you would like to make changes to your emailing preferences or information about requests to access, change, or delete your information, please contact us via email at infosec@altvia.com. If you decide not to receive marketing emails, we may still send you transactional communications, such as those about your account, to fulfill orders you have made, to ask you to rate a service you have purchased, event you attended or other service-related communications.
We rely on you to update and correct your personal information. Note that we may keep historical information in our backup files as permitted by law. All requests to correct your information must be directed to the contact in the “Contacting us” section below. If required by law (for example, the EU General Data Protection Regulation), upon request, we will grant reasonable access to the personal information that we hold about a user. All requests must be directed to the contact in the “Contacting us” section below.
Typically we retain your personal information for the period necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Some Users may have the legal right (for example, under the EU General Data Protection Regulation) to request that we delete their personal information. All deletion requests must be directed to the contact in the “Contacting us” section below. We may also decide to delete your personal information if we believe that the data is incomplete, inaccurate or that our continued use and storage are contrary to our obligations to other individuals or third parties. When we delete personal information, it will be removed from our active database, but it may remain in archives where it is not practical or possible to delete it. In addition, we may keep your personal information as needed to comply with our legal obligations, resolve disputes, or enforce any of our agreements.
At times we may rely on your consent for the processing of personal information that you have provided. If you revoke your consent for the processing of personal information, then we may no longer be able to provide you services. In some cases, we may limit or deny your request to revoke consent if the law permits or requires us to do so, or if we are unable to adequately verify your identity.
We do not currently recognize browser signals of tracking preferences, which may include “Do Not Track” instructions.
California residents may be entitled to ask us for a notice describing what categories of personal information (if any) we share with third parties or affiliates for those parties to use for direct marketing. If you are a California resident and would like a copy of such notice, please submit a written request to us using the information in the “Contacting us” section below.
If you are a citizen of the EU and you believe that we have not processed your personal information in accordance with the applicable provisions of the EU General Data Protection Regulation, you may lodge a complaint with the respective EU data protection authority (DPA).
Cross-Border Transfer of Information
Altvia may transfer your personal information to Altvia’s entities in the United States, or to third parties as described in this Privacy Policy that are located in various countries around the world. By using Altvia’s services, or providing any personal information to us, where applicable law permits, you consent to the transfer, processing and storage or such information outside of your country of residence where data protection standards may be different. When Altvia collects information in one country, and transfers it to another, to the extent possible it applies the same level of data protection required under the laws in the first country even when the data is in the second country.
Altvia safeguards and enables the global transfer of personal information in a number of ways. The following describes some of the protections that are taken regarding data originating from certain countries:
EU-U.S. Data Privacy Framework.
Altvia complies with the EU-U.S. Data Privacy Framework, the Swiss-U.S. Data Privacy, and the UK Extension to the EU-U.S. Data Privacy Framework (collectively, the “DPF Program”) as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union, Switzerland, and the United Kingdom to the United States. Altvia has certified to the Department of Commerce that it adheres to the Data Privacy Framework (DPF) Principles. If there is any conflict between the terms in this privacy policy and the DPF Principles, the DPF Principles shall govern. To learn more about the DPF Program, and to view our certification, please visit https://www.dataprivacyframework.gov/. If we received your information pursuant to the DPF Program, you have the right to opt-out of (a) disclosures of your personal information to third parties not identified at the time of collection or subsequently authorized, and (b) uses of your personal information for purposes materially different from those disclosed at the time of collection or subsequently authorized. Altvia is responsible for the processing of personal information it receives under the DPF Program and subsequently transfers to a third party acting as an agent on its behalf. Altvia complies with the DPF Principles for all onward transfers of personal data from the European Union, the United Kingdom, and Switzerland, including the onward transfer liability provisions. In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. With respect to personal information received or transferred pursuant to the DPF Program, Altvia is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission.
In compliance with the DPF Principles, Altvia commits to resolve complaints about our collection or use of your personal information. Individuals with inquiries or complaints regarding our Privacy Policy should first contact us at the address listed below under the section titled “Contacting us”. We will investigate and attempt to resolve complaints and disputes regarding collection, use, and disclosure of personal information in accordance with this Privacy Policy.
Altvia has further committed to refer unresolved complaints under the DPF Principals to JAMS, an alternative dispute resolution provider located in the United States. If you have an unresolved DPF privacy or data use concern that we have not addressed satisfactorily or have not addressed in a timely manner, please contact JAMS free of charge by clicking https://www.jamsadr.com/eu-us-data-privacy-framework. If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See https://www.dataprivacyframework.gov/s/article/G-Arbitration-Procedures-dpf?tabset-35584=2.
Changes to This Privacy Policy
We may update this Privacy Policy to reflect changes to our information practices. If we make any material changes we will notify you by email (sent to the e-mail address specified in your account) or by means of a notice on this website prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices.
Contacting us
Questions regarding this Privacy Policy or the information practices of the Company’s websites and services should be directed to Altvia at infosec@altvia.com or by mailing us at:
Altvia Solutions, LLC
590 Burbank St, Suite 220
Broomfield, CO 80020
If Altvia is required to contact you about your personal information we may do so by mail, phone, or email.