Privacy Policy
This Privacy Policy explains how Biyo Limited Liability Company (“Biyo”, “us”, “we” or “our”) collect, use, disclose, transfer, protect, store and otherwise process your information. It also explains your rights and options around our use of your personal information and how you can exercise these choices.
’Personal information’ means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
For the purposes of this Policy, ‘Customer’, as the term is used here, refers to an individual or an entity that registers to use our Services.
Please, do not use Services if you are not ready to accept the Terms of Use and this Privacy Policy.
This Privacy Policy was updated on 21 May 2020.
Scope of privacy policy
Biyo is committed to protecting the privacy of the individuals on Biyo websites, mobile applications, products and services, (collectively, “Services”).
By registering for or using Services you acknowledge the collection, transfer, processing, storage, disclosure and other uses of your information, as described in this Privacy Policy.
Customer Information, being personal information relating to our Customers (where applicable). We collect this information so that we can provide our Services to those Customers. For the purposes of GDPR in the European Union, we are the ‘data controller’ (where applicable) of this Customer Information and we collect and store it for the purposes of providing our Services to Customers and maintaining records and contact details relating to those Services and Customers. This policy sets out how Biyo process your information as a Customer.
Consumer information, being personal information relating to consumers with whom our Customers interact (such as consumers of their products or services) including their email address, phone number or other information.
Employee information, being personal information relating to employees of our Customers, including email address, phone number or other information.
Customers are solely responsible for establishing policies for and ensuring compliance with all applicable laws and regulations, as well as all privacy policies, agreements or other obligations, relating to the collection of personal information in connection with the use of our Services by individuals with whom our Customers interact. We collect information under the direction of our Customers, and have no direct relationship with individuals whose personal information we process in connection with the use of our Services. If you are a Customer providing information (including personal information) about someone else, you must have the legal ability to do so and, if necessary, inform them about how their personal information will be used (as described in this Privacy Policy). If you are an individual who interacts with a Customer using our Services – for instance if you’re an employee or consumer of a retail store – that Customer is the controller of your information and you should contact them directly (e.g. – the owner or manager of the retail store) – for assistance with any requests or questions relating to your personal information.
What information we collect
We collect information about you when you provide it to us, when you use our Services. The ways we collect it can be broadly categorized into the following:
INFORMATION YOU DIRECTLY PROVIDE TO US:
Account and profile information. We collect following information about you when you register for an account, create or modify your profile, set preferences, sign-up for or make purchases through the Services:
Contact information such as name, email address and country
Profile information such as business phone number
Preferences information such as notification and marketing preferences
Operational data. We also store information you upload to or send through our Services, including:
Information about products and services the Customer sells (including inventory, pricing, sale, transaction, tax, and other data)
Information about the Customer or the Customer’s business (employees, consumers and suppliers)
Information you provide through our support channels. The Services also include customer support, where you may choose to submit information regarding a problem you are experiencing with a Service . Whether you designate yourself as a technical contact, speak to one of our representatives directly or otherwise engage with our support team, we may ask you to provide contact information, a summary of the problem you are experiencing, and any other documentation, screenshots or information that would be helpful in resolving the issue.
Payment Information: We collect certain payment and billing information when you subscribe for certain paid Services. For example, we ask you to designate a billing representative, including name and contact information. You might also provide payment information, such as payment card details, which we collect via secure payment processing services.
Other submissions. We ask for and collect personal information from you when you submit web forms on our websites or when you participate in any interactive features of our Services, participate in a survey, promotion, activity or event, request customer support, communicate with us via third party social media sites, or otherwise communicate with us.
INFORMATION WE COLLECT AUTOMATICALLY WHEN YOU USE THE SERVICES:
Access logs. Like with most websites and services delivered over the Internet, we gather certain information and store it in log files when you interact with our websites and Services. This information includes Internet protocol (IP) addresses as well as browser type, URLs of referring/exit pages, operating system, language and location preferences, time/date stamp, search history, device identification numbers and system configuration information. Occasionally, we connect personal information to information gathered in our log files as is necessary to improve our Services. If we do this, we would treat the combined information in accordance with this Privacy Policy.
Analytics information. We collect analytics information when you use our Services to help us improve our products and services. We are always aiming to make Services a better experience for retailers and customers alike, and your information really helps us to do this! This analytics information consists of the function and feature of the Services being used, and the Customer’s username and IP address of the individual who is using the function or feature (which will include any personal information incorporated into the username), and other information needed to detail the operation of the function and the parts of the Services that are being affected.
We use Google Analytics as one of our analytics providers. Refer to Google’s Policies and Principles to find out more about the privacy policy of Google Analytics. To prevent analytics information from being sent to Google Analytics, use the Google Analytics Opt-out Browser Add-on.
Analytics information derived from operational data. Analytics information also consists of data we collect as a result of running queries against Operational Data across our user base for the purposes of generating Usage Data. “Usage Data” is aggregated data about a category or group of features, services, or users that is not of itself personal information. It is also data about our Customers and their business.
We may incidentally come across personal information when we compile Usage Data.
Cookies. Cookies are used by Biyo and our third party partners (for example, our analytics partners) to collect information. A cookie is a small text file that is stored on your hard drive or in device memory for record keeping purposes. We use cookies to give you a better and more personalised use of the Services, to save you logging in every time and to count the number of visits.
INFORMATION WE RECEIVE FROM OTHER SOURCES
We collect information from other sources, such as our business partners. We do not control, supervise or respond for how the third parties providing your information process your personal data, and any information request regarding the disclosure of your personal information to us should be directed to such third parties.
Legal justification for processing
We collect and process information about you only where we have legal bases for doing so under applicable EU laws. The legal bases depend on the Services you use and how you use them. This means we collect and use your information only where:
We need it to provide you the Services, including to operate the Services, provide customer support and personalized features and to protect the safety and security of the Services;
It satisfies a legitimate interest (which is not overridden by your data protection interests), such as for research and development, to market and promote the Services and to protect our legal rights and interests;
You give us consent to do so for a specific purpose; or
We need to process your data to comply with a legal obligation.
If you have consented to our use of information about you for a specific purpose, you have the right to change your mind at any time, but this will not affect any processing that has already taken place. Where we are using your information because we or a third party (e.g. your employer) have a legitimate interest to do so, you have the right to object to that use though, in some cases, this may mean no longer using the Services.
How we use your information
We are continually striving to improve Services. Being able to identify how retailers are using our product plays a big part in helping us to make our software better. We may use information about you for purposes such as:
Enabling you to access and use our Services
Displaying historical sale information
Sending you marketing, advertising, educational content and promotional messages and other information that may be of interest to you, including information about us, our Services, or general promotions for business partner campaigns and services. You can unsubscribe or opt-out from receiving these communications described below under “How You Can Protect Your Information”
In the case of retail stores, to share the name of the retail store with potential customers to encourage them to use our Services
Measuring, customising and improving the Services and developing new products
Sending to you service, support and administrative messages, reminders, technical notices, updates, security alerts and information requested by you
Investigating and preventing fraudulent transactions, unauthorised access to Services, and other illegal activities
With your consent: We use information about you where you have given us consent to do so for a specific purpose not listed above. For example, we may publish testimonials or featured customer stories to promote the Services, with your permission.
Where we need your personal information for any other purposes, it will be obvious from the circumstances as to the purposes for which we require that personal information from you.
Sharing & disclosure of your information
When you use the Services, we may share your information only as described below:
SERVICE PROVIDERS, BUSINESS PARTNERS AND OTHERS
We use and work with third party service providers and our trusted Business Partners to provide application development, hosting, website, infrastructure, maintenance, backup, payment processing, customer relationship management, marketing, accounting, human resources, business intelligence and analytics, data enrichment, customer support and other services for us. These service providers may have access to or process your information for the purpose of providing those services for us. Some of our pages use white-labelling techniques to serve content from our service providers while providing the look and feel of our site. Please note that you are providing your information to these third parties acting on behalf of Biyo These third parties are located in countries which may be outside of your location.
We also share your contact information with select trusted Business Partners, such as our partners who integrate with Services, to enable them to contact you about their services (as they relate to your Services). We also obtain contact information from select Business Partners to better understand your preferences and to deliver you more personalised marketing.
LINKS TO THIRD PARTY SITES
Our Services may contain links to other sites. We have no control over, and take no responsibility for, the privacy practices or content on other sites. You are responsible for checking the privacy policy of any such sites so that you can be informed of how they handle personal information.
SOCIAL MEDIA WIDGETS
Our Services may include social media features, such as the Facebook “Like” button and widgets, and the “Share” button or interactive mini-programs that run on our site. These features may collect your IP address, which page you are visiting on our site, and may set a cookie to enable the feature to function properly. Social media features and widgets are either hosted by a third party or hosted directly on our site. Your interactions with these features are governed by the privacy policy of the company providing it.
COMPLIANCE WITH LAWS AND PROTECTION OF RIGHTS
In certain situations, we may be required to use and disclose your information (including personal information) to a third party if we believe the disclosure is reasonably necessary:
To comply with any applicable law, legal process (for example, subpoenas and warrants) or governmental request
To enforce and administer our agreements, policies and terms of use
To protect the property, rights, and safety of Biyo, our Customers or the public from harm or illegal activities
For fraud prevention, risk assessment, investigation, customer support, product development or debugging purposes
To protect the rights, property or personal safety of Biyo, its users or members of the public
To establish or exercise our legal rights or defend ourselves against any third-party claims or allegations
BUSINESS TRANSFERS
If Biyo undertakes or is involved in any merger, acquisition, reorganization, sale of assets or bankruptcy or insolvency event, then we may transfer or share some or all of our assets, including your personal information. In this event, we will notify you before your personal information is transferred and becomes subject to a different privacy policy.
NON-IDENTIFYING OR AGGREGATED DATA
We may share aggregated or other non-personal information that does not directly identify you with third parties in order to improve our Services.
Your Privacy Rights
Updating your Personal Information via the Services: You may access, change, or correct information about you by logging into your Biyo account at any time or by making a request to us using the contact details below, in which case we may need to verify your identity before granting access or otherwise changing or correcting your information.
ACCOUNT INFORMATION AND DEACTIVATING YOUR ACCOUNT
If you wish to deactivate your Biyo account, you may do so by emailing us using the contact details provided below.
OPTING OUT OF PROMOTIONAL COMMUNICATIONS
You may opt out of receiving promotional communications from Biyo by using the unsubscribe link within each email or contacting us via our home page or sales team. Even after you opt out from receiving promotional messages from us, you will continue to receive transactional messages from us regarding Services (e.g., account verification, purchase and billing confirmations and reminders, technical and security notices).
YOUR EUROPEAN PRIVACY RIGHTS
In addition to the rights listed above, you have rights to:
Information about the processing of your personal data;
Obtain access to the personal data held about you;
Request that personal data be erased when it’s no longer needed or if processing it is unlawful;
Object to the processing of your personal data for marketing purposes or on grounds relating to your particular situation;
Request the restriction of the processing of your personal data in specific cases;
Receive your personal data in a machine-readable format and send it to another controller (‘data portability’);
Request that decisions based on automated processing concerning you or significantly affecting you and based on your personal data are made by natural persons, not only by computers. You also have the right in this case to express your point of view and to contest the decision.
If you are an individual who interacts with a Customer using our Services – for instance if you’re an employee or consumer – that Customer is the controller of your information. If this is the case, please direct your data privacy request and questions to that controller, as your use of the Services is subject to that controller’s policies. We are not responsible for the privacy or security practices of such controllers, which may be different from this policy.
If you’re not happy with how we are processing your personal information, you have the right to complain to your local information protection authority. Your local data protection authority will be able to give you more information on how to submit a complaint.
You can request to exercise these rights by emailing support@biyopos.com. We may need to verify your identity before granting access or otherwise changing or correcting your information.
COOKIES AND ADVERTISING
You may opt out of receiving cookies by instructing your browser to stop accepting cookies or to prompt you before accepting a cookie from websites you visit, by changing your browser options. Please read carefully our Cookies Policy.
You also can learn more about cookies by visiting www.allaboutcookies.org, which includes useful information on cookies and how to block cookies on different types of browsers and mobile devices.
Please note, however, that by blocking or deleting cookies used in Services, you may not be able to use all aspects of our Services.
Our global operations (including transfers of data from your home country to another)
To bring you Services, we operate globally. In order to do so, your personal information may be transferred to, and processed in countries other than the country you live in, outside of your home country, including to Germany and the United States. These countries may have laws different to what you’re used to. Rest assured, where we disclose personal data to a third party in another country, we put safeguards in place to ensure your personal data remains protected.
Specifically, Biyo hosts data with Amazon Web Services in the Germany. If you are a non-EU resident, this means that your personal information will be transferred to the Germany. The servers on which personal information is stored are kept in a controlled environment.
European Economic Area (EEA) users: This means that your information may be transferred outside of the EEA. Where your personal information is transferred outside the EEA, it will only be transferred to countries that have been deemed to provide adequate protection for EEA information (like US), or to a third party where we have approved transfer mechanisms in place to protect your personal information – i.e., by entering into the European Commission’s Standard Contractual Clauses, or by ensuring the entity is Privacy Shield certified.
How long we retain your information
We generally retain your information only as long as reasonably necessary to provide you the Services or to comply with applicable law.
However, even after you cancel your account, we can retain copies of information about you and any transactions or Services in which you may have participated for a period of time that is consistent with applicable law, applicable statute of limitations or as we believe is reasonably necessary to comply with applicable law, regulation, legal process, or governmental request, to resolve disputes, to address problems with our Services, to assist with investigations, to enforce our Terms of use or other applicable agreements or policies, or to take any other actions consistent with applicable law.
When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymise it.
Children’s use of the services
Services are not directed to individuals under 16. We do not knowingly collect personal information from children under 16. If we become aware that a child under 16 has provided us with personal information, we will take steps to delete such information. If you become aware that a child has provided us with personal information, please contact us at the address listed below.
Security
We have adopted technical, administrative and physical procedures to collect, manage, maintain and store information in a manner designed to help protect your information from loss, misuse, unauthorised access, and alteration. Unfortunately, no security system is impenetrable and due to the inherent nature of the Internet as an open global communications vehicle, we cannot guarantee that information, during transmission through the Internet or while stored on our systems or otherwise in our care, will be absolutely safe from intrusion by others, such as hackers.
Where data is transferred over the Internet as part of the Services, the data is encrypted using industry standard TLS (HTTPS).
Updates to our privacy policy
Biyo reserves the right to change this Privacy Policy from time to time, and if we do we will post any changes on this page. If you disagree with these changes, you can cancel your account at any time and/or stop your use of our Services. Your continued use of the Services after any changes to the Privacy Policy constitutes your acceptance of such changes.
Do You Have Questions?
If you have any questions about this Privacy Policy or Biyo privacy practices, please contact us at support@biyopos.com or at our mailing address below:
Biyo Limited Liability Company
1027 Hudson Ave
Ridgefield, NJ 07657