Effective Date: April 20, 2021
Vendori, Inc. (“Vendori,” “we,” “us,” or “our”) is committed to safeguarding the privacy of registered users of the Vendori platform. This Notice informs you how Vendori collects, uses, secures and shares your personal information when you use our platform and related services as a customer (“Services”).
If you do not feel comfortable with any part of this Notice, please immediately cease using our Service. This Notice may change from time to time. If we make a change to this Notice that we believe materially affects how we process your personal information or reduces your rights, we will provide you with notice.
Personal information is generally any information that identifies you or makes you identifiable such as your name, IP address or user preferences. We may collect, store and use the following personal information from you in relation to the Services (“Collected Information”):
Collected Information may be used for the following purposes:
We may share Collected Information about you as described below:
Our platform may contain links to other websites and third party products, which you may elect to use in your sole discretion. We are not responsible for what the third parties and their services do with your Collected Information or the information that you choose to share with them. Your use of these third-party services will be subject to their respective terms of service and privacy policies.
You may ask us to collect information about you or about others from organizations. For example, you can ask us to import your contacts by giving us access to your third-party services (for example, your email account) or you can share your social networking information with us if you give us access via a social network connection service. If you are acting on behalf of an employer using the Service, please note that you are responsible for complying with all applicable laws in relation to the Collected Information that you process on the Service.
Security of Collected Information
We will take reasonable precautions to prevent the loss, misuse or alteration of your personal information. Data transmission over the Internet is inherently insecure and we cannot guarantee the security of information sent over the Internet.
We will store all the personal information you provide or that we collect about you on our secure servers. You are responsible for keeping your passwords confidential. We will not ask you for your passwords.
We have procedures in place to ensure we can react quickly to any possible issue. If you ever find a security issue, or simply have a security related concern, please reach out directly to us. The quickest and most effective way is by sending an email to info@Vendori.com.
Transfers of Collected Information
We are located in the United States. If you access or use our Service or provide your information to us, your personal information may be transferred to, processed and maintained on servers or databases located outside of the country or jurisdiction where you are located. Such countries or jurisdictions may have data protection laws that are less protective than the laws of the jurisdiction in which you reside. If you do not want your information transferred to or processed or maintained outside of the country or jurisdiction where you are located, you should not use our Service.
If you are located in the European Economic Area (“EEA”), the United Kingdom or Switzerland, we comply with applicable laws to provide an adequate level of data protection for the transfer of your Personal Data to the United States. Vendori is certified under the EU-U.S. and the Swiss-U.S. Privacy Shield Framework and adheres to the Privacy Shield Principles. For more information, see Section 10 below.
Accessing and Updating Collected Information
If you are a registered user, you may review, update, or correct the personal information provided in your registration or account profile. If your personal information changes, or if you no longer desire our service, you may update or delete it by making the change on your account settings. Notwithstanding the foregoing, as a platform user, we depend on you to update and correct your personal information to the extent necessary for the purposes for which that data was collected, such as contact information you provide so that we can provide you invoicing information.
In some cases, we may retain copies of your personal information if required by law. For questions about your personal information on our Service, please contact info@Vendori.com. We will use responsible efforts to respond to your inquiry as soon as practicable. When updating your personal information, we may ask you to verify your identity before we can act on your requests.
Retention of Collected Information
We retain your personal information until it is requested to be purged from our systems by an authorized member of your organization. We may retain and use your information as necessary to comply with our legal obligations, resolve disputes, or enforce our agreements. Consistent with these requirements, we will try to delete your information quickly upon request. Please note, however, that there might be latency in deleting information from our servers and backed-up versions might exist after deletion. In addition, we do not delete from our servers files any information that you have in common with other users. While retention requirements can vary by country, we generally apply the retention periods noted below.
Interactions on Our Service. We may store any information about your interactions on our Service or any content created, posted or shared by you on our Services(e.g., pictures, comments, support tickets, and other content) after the closure of your account for the establishment or defense of legal claims, audit and crime prevention purposes.
Telephone Records. As required by applicable law, we will inform you that a call will be recorded before doing so. Any telephone calls with you may be kept for a period of up to six years.
Our Service is not directed to persons under 18, and we do not knowingly collect personal information from children under 18. Any individuals under the age of 18 must have consent from their parent or guardian to use the Service. If a parent or guardian becomes aware that his or her child has provided us with personal information without their consent, he or she should contact us at info@Vendori.com. If we become aware that a child under 18 has provided us with personal information, we will take steps to delete such information from our files.
Special Notice for Individuals in the EEA, UK and Switzerland
This section only applies to interactions with individuals who are in the European Economic Area, United Kingdom or Switzerland (collectively, the “Designated Countries”) at the time of data collection.
Parties’ Roles. Vendori is a data controller with regard to any personal information collected from users of the Service. Any third parties that handle your personal information in accordance with our instructions are our service providers and are “data processors.” You are a “user.” Users are individuals providing personal information to us via the Service pursuant to a contract that has been entered into with Vendori.
Marketing. We will only contact individuals located in the Designated Countries by electronic means (including email or SMS) based on our legitimate interests, as permitted by applicable law, or the individual’s consent. To the extent we can rely on legitimate interest under the applicable law, we will only send you information about our Services and other materials that are similar to those which were the subject of a previous Interaction with you. If you do not want us to use your personal information in this way please go to the email settings for your account to opt out, click an unsubscribe link in your emails, or contact us at info@Vendori.com. You can object to direct marketing at any time and free of charge.
Additional Privacy Rights. We provide you with the rights described below. We may limit these privacy rights requests (a) where denial of access is required or authorized by law, (b) when granting access would have a negative impact on others’ privacy, (c) to protect our rights and properties, or (d) where the request is frivolous or burdensome. If you would like to exercise your rights under applicable law, please contact us at info@Vendori.com. We may seek to verify your identity when we receive your privacy rights request to ensure the security of your personal information.
Right to withdraw consent. For any consent-based processing of your personal information, you have the right to withdraw your consent. A withdrawal of consent will not affect the lawfulness of our processing or the processing of any third parties based on consent before your withdrawal.
Right of access/right of portability. You may have the right to access the personal information that we hold about you, and in some limited circumstances, have the personal information provided to you so that you can provide that personal information to another controller.
Right to rectification. You may request to correct any of your personal information in our files.
Right to erasure. In certain circumstances, you may have a right to the erasure of your personal information that we hold on you.
Right to restriction. You have the right to request that we restrict our processing of your personal information in certain circumstances.
Right to object to processing. You have the right to object to our processing of your personal information at any time and as permitted by applicable law if we process your personal information on the legal bases of: consent; contract; or legitimate interests. We may continue to process your personal information if it is necessary for the defense of legal claims, or for any other exceptions permitted by applicable law.
Notification to third parties. When we fulfill your individual rights requests for correction, erasure or restriction of processing, we will notify third parties also handling the relevant personal information unless this proves impossible or involves disproportionate effort.
The EU-U.S. and Swiss-U.S. Privacy Shield Frameworks. Vendori complies with the EU-U.S. and the Swiss-U.S. Privacy Shield Frameworks as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of Personal Data transferred from the European Union, the United Kingdom and Switzerland to the United States. Vendori has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. The Federal Trade Commission has jurisdiction over Vendori’s compliance with the Privacy Shield.
If there is any conflict between the terms in this Notice and the Privacy Shield Principles, the Privacy Shield Principles shall govern. In the context of an onward transfer, Vendori has responsibility for the processing of personal information it receives under the Privacy Shield and subsequently transfers to a third party acting as an agent on its behalf. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/.
If you are a European, United Kingdom or Swiss data subject with an unresolved complaint or dispute arising under the requirements of the Privacy Shield Framework, we agree to refer your complaint under the Framework to an independent dispute resolution mechanism. Vendori has committed to refer unresolved privacy complaints under the EU-U.S. and Swiss Privacy Shield Principles to an independent dispute resolution mechanism operated by JAMS. If you do not receive timely acknowledgment of your complaint or if your complaint is not satisfactorily addressed, please visit https://www.jamsadr.com/eu-us-privacy-shield to file a complaint or obtain more information.
Please note that if your complaint is not resolved through these channels, under limited circumstances, a binding arbitration option may be available before a Privacy Shield Panel.
Legal Bases for Processing Personal Data. Our legal bases for collecting and using the personal information described above will depend on the type of personal information collected, the specific context in which we collect it and the purposes for which it is used. We rely on the following legal bases under the European Union’s General Data Protection Regulation (“GDPR”) in processing your personal information. Article 6(1) of the GDPR describes when processing can be done lawfully. When we process your personal information for a specified purpose, we shall apply one of the Article 6 legal bases described below.
Whenever we require your consent for the processing of your personal information such processing will be based on Article 6(1) lit. (a) GDPR.
If the processing of your personal information is necessary for the performance of a contract between you and GT or for taking any pre-contractual steps upon your request, such processing will be based on Article 6(1) lit. (b) GDPR. If this data is not processed, Vendori will not be able to execute the contract with you.
Where the processing is necessary for us to comply with a legal obligation, we will process your information on basis of Article 6(1) lit. (c) GDPR, for example for complying with obligations under anti-money laundering laws.
Where the processing is necessary for the purposes of Vendori’s or another party’s legitimate interests, such processing will be made in accordance with Article 6(1) lit. (f) GDPR, for example to enforce legal claims.
To exercise your rights, or if you have any questions about this Notice or our treatment of your personal information, please send us an email at info@Vendori.com or by post to Vendori, Inc., 1700 Northside Dr., Suite A7-2738, Atlanta, GA 30318