At SuperSaaS we recognize that privacy is important. On May 25th, 2018, the General Data Protection Regulation (or GDPR) will come into effect for all businesses operating within the European Union. SuperSaaS will, of course, be compliant with the new regulation when it comes into effect. You may need to take action to ensure compliance with the new rules, as explained in our page with information on the GDPR.
Last Updated: August 2015
We offer a variety of services, some of which require your users’ registration or personal information. This document will refer to your users as “end users”. In order to provide our full range of services, we may collect the following types of information:
SuperSaaS processes personal information for the purposes described above, and in addition to the above we use the information to:
SuperSaaS processes personal information and appointment and booking data on our servers in the Netherlands and in other countries. In some cases, we process personal information on a server outside your own country but we do not process information on servers outside the European Union. We may process personal information to provide our own services. In some cases, we may process personal information on behalf of and according to the instructions of a third party, such as our advertising partners.
When you sign up for a particular service that requires registration, we ask you to provide personal information. If we intend to use this information in a manner other than the purpose for which it was collected, we will ask for your consent prior to such use.
If we propose to use personal information for any purposes other than those described in this Policy and/or in the specific service notices, we will offer you an effective way to opt out of the use of personal information for those other purposes. We will not collect or use sensitive information for purposes other than those described in this Policy and/or in the specific service notices, unless we have obtained your prior consent.
You can decline to submit personal information to any of our services, in which case SuperSaaS may not be able to provide those services to you.
When using SuperSaaS embedded into another site, certain disclosures must be given to and consents obtained from end users in the European Union where EU data protection law requires such disclosures and consents. For end users in the European Union you must use commercially reasonable efforts to ensure that an end user is provided with clear and comprehensive information about this site’s policies.
SuperSaaS only shares personal information with other companies or individuals outside of SuperSaaS in the following limited circumstances:
We may share with third parties certain pieces of aggregated, non-personal information, such as how many users clicked on a particular advertisement. Such information does not identify you individually.
We take appropriate security measures to protect against unauthorized access to or unauthorized alteration, disclosure or destruction of data. We restrict access to personal information to SuperSaaS employees, contractors and agents who need to know that information in order to operate, develop or improve our services. These individuals are bound by confidentiality obligations and may be subject to discipline, including termination, if they fail to meet these obligations.
SuperSaaS processes personal information only for the purposes for which it was collected and in accordance with this Policy or any applicable service-specific privacy notice. We review our data collection, storage and processing practices ensuring that we only collect, store and process the personal information needed to provide or improve our services. We take reasonable steps to ensure that the personal information we process is accurate, complete, and current, but we depend on our users to update or correct their personal information whenever necessary.
When you use SuperSaaS services, we make good faith efforts to provide you with access to your personal information and either to correct this data if it is inaccurate or to delete such data at your request if it is not otherwise required to be retained by law or for legitimate business purposes. We ask individual users to identify themselves and the information requested to be accessed, corrected or removed before processing such requests, and we may decline to process requests that are unreasonably repetitive or systematic, require disproportionate technical effort, jeopardize the privacy of others, or would be extremely impractical (for instance, requests concerning information residing on backup tapes), or for which access is not otherwise required. In any case where we provide information access and correction, we perform this service free of charge, except if doing so would require a disproportionate effort.