Privacy

Feb 28, 2019

Your privacy is important to us. This privacy statement explains our collection, use, and disclosure of personal information. This privacy statement applies to Noyo Technologies, Inc. (“Noyo”). References to our “products” in this statement include our websites, applications, software, services, and devices. This statement applies to our products that display or reference this statement, but it does not apply to any products that display or reference a different privacy statement.

PERSONAL INFORMATION WE COLLECT

The personal information we collect depends on how you interact with us, the products you use, and the choices you make. We collect and process personal information about you with your consent and/or as necessary to provide the products you use, operate our business, meet our contractual and legal obligations, protect the security of our systems and our customers, or fulfil other legitimate interests. We collect information about you in various ways when you use our products, including information you provide directly, information collected automatically, and third-party data sources. 

Information you provide directly. We collect personal information you provide to us. For example, we collect your name, email address, postal address, phone number, fax number, demographics, and other information you provide us. If you make a purchase, we also collect credit card numbers and other payment information. When using our products, you determine what personal information to provide to us. For example, you may provide us with employee and dependent demographic information, such as name, address, date of birth, and government identification numbers. You may also provide employee insurance purchase and enrollment choices, contribution amounts, and business contact information. 

Information collected automatically. When you use our products, some information is collected automatically. For example, when you visit our websites, our web servers automatically log your computer's operating system, Internet Protocol (IP) address, access times, browser type and language, the website you visited before our site, and your activity on our websites. 

Third-party sources. We may also obtain information from third parties. We protect information obtained from third parties according to the practices described in this statement, plus any additional restrictions imposed by the source of theinformation. These third-party sources may include: Data brokers from which we purchase demographic data to supplement the data we collect; Publicly-available sources, such as open government databases or other data in the public domain.

When you are asked to provide personal information, you may decline. But if you choose not to provide information that is necessary for certain products or features, those products or features may not be available or function correctly.

OUR USE OF PERSONAL INFORMATION

We use personal information collected through our products for purposes described in this privacy statement or otherwise disclosed to you. For example, we use personal information to:provide and deliver our products, including securing, troubleshooting, improving, and personalizing those products; operate our business, such as improving our internal operations, securing our systems, and detecting fraudulent or illegal activity; understand you and your preferences to enhance your experienceand enjoyment using our products; provide customer support and respond to your questions; send you information, including confirmations, invoices, technical notices, updates, security alerts, and support and administrative messages; communicate with you about new products, offers, promotions, rewards, contests, upcoming events, and other about our products and those of our selected partners (see the Choice and Control section of this privacy statement for how to change your preferences for promotional communications); and provide our customers with reports, market insights,and trends based on the aggregation of data.

In carrying out these purposes, we combine data we collect from different sources to give you a more seamless, consistent, and personalized experience.

OUR SHARING OF PERSONAL INFORMATION

We share personal information with your consent or as necessary to complete your transactions or provide the products you have requested or authorized. For example, when you provide payment data to make a purchase, we will share that data with banks and other entities as necessary for payment processing, fraud prevention, credit risk reduction, or other related financial services. We will also share personal information with the parties you designate to perform the requested services between insurance brokers and insurers. 

In addition, we share personal information among our affiliates and subsidiaries. We also share personal information with vendors or agents working on our behalf for the purposes described in this statement. For example, companies we have hired to provide cloud hosting services or assist in protecting and securing our systems. These services may need access to personal information to provide those functions. In such cases, these companies must abide by data privacy and security requirements and are not allowed to use personal information they receive from us for any other purpose. We may also disclose personal information as part of a corporate transaction such as a merger, transfer, divestiture, or sale of all or a portion of our business or assets. 

Finally, we will access, transfer, disclose, and preserve personal information when we have a good faith belief that doing so is necessary to: comply with applicable law or respond to valid legal process, including from law enforcement or other government agencies; protect our customers, for example to prevent spam or attempts to defraud users of our products, or to help prevent the loss of life or serious injury of anyone; operate and maintain the security of our products, including to prevent or stop an attack on our computer system or networks; or protect our rights or property, including enforcing the terms of our agreements. Please note that some of our products include references or links to products provided by third parties whose privacy practices differ from ours. If you provide personal information to any of those third parties, or consent to our sharing personal information with them, that data is governed by their privacy statements.

CHOICE AND CONTROL OF PERSONAL INFORMATION

Access, correction, and deletion. If you wish to request access to, or correction or deletion of, personal information about you that we hold, please contact us at security@gonoyo.com. To the extent permitted by applicable law, we reserve the right to decline requests that are unreasonable, excessive, or prohibited by law, could adversely affect the privacy or other rights of another person, or where we are unable to authenticate you as the person to whom the data relates.  

Communications preferences. You can choose whether you wish to receive promotional communications from us by email, SMS, physical mail, and telephone. If you receive promotional email or SMS messages from us and would like to stop, you can do so by following the directions in that messageor by contacting us at security@gonoyo.com. These choices do not apply to mandatory service communications that are part of certain of our products, or to surveys or other informational communications that may have their own unsubscribe method. 

Do Not Track. Some browsers have incorporated "Do Not Track" (DNT) features that can send a signal to the websites you visit indicating you do not wish to be tracked. Because there is not a common understanding of how to interpret the DNT signal, our websites do not currently respond to browser DNT signals. Instead, you can use the range of other tools to control data collection and use, including the cookie controls and advertising controls described above.

EUROPEAN DATA PROTECTION RIGHTS

If the processing of personal information about you is subject to European Union data protection law, you have certain rights with respect to that data: You can request access to, and rectification or erasure of, personal information; If any automated processing of personal information is based on your consent or a contract with you, you have a right to transfer or receive a copy of your personal information in a usable and portable format; If the processing of personal information is based on your consent, you can withdraw consent at any time for future processing; You can to object to, or obtain a restriction of, the processing of personal informationunder certain circumstances; and for residents of France, you can send us specific instructions regarding the use of your data after your death.

To make such requests, contact us at security@gonoyo.com. When we are processing data on behalf of another party that is the “data controller,” you should direct your request to that party. You also have the right to lodge a complaint with a supervisory authority, but we encourage you to first contact us with any questions or concerns.

RETENTION OF PERSONAL INFORMATION

We retain personal information for as long as necessary to provide the products and fulfill the transactions you have requested, or for other essential purposes such as complying with our legal obligations, resolving disputes, and enforcing our agreements. Because these needs can vary for different data types in the context of different products, actual retention periods can vary significantly based on criteria such as user expectations or consent, the sensitivity of the data, the availability of automated controls that enable users to delete data, and our legal or contractual obligations. 

LOCATION OF PERSONAL INFORMATION

The personal information we collect may be stored and processed in your country or region, or in any other country where we or our affiliates, subsidiaries, or service providers maintain facilities. Currently, we primarily use data centers in the United States.The storage location(s) are chosen in order to operate efficiently, to improve performance, and to create redundancies in order to protect the data in the event of an outage or other problem. We take steps designed to ensure that the data we collect under this statement is processed according to the provisions of this statement and applicable law wherever the data is located.

SECURITY OF PERSONAL INFORMATION

We provide reasonable technical and administrative controls to help protect the confidentiality, integrity and availability of personal information designed to prevent unauthorized access, use, disclosure, alteration, and destruction. For example, only authorized employees are permitted to access personal information. And, we encrypt sensitive information in transit and at rest.  

CHANGES TO THIS PRIVACY STATEMENT

We will update this privacy statement when necessary to reflect changes in our products, how we use personal information, or the applicable law. When we post changes to the statement, we will change the "Last Updated" date at the top of the statement.  If we make material changes to the statement, we will provide notice or obtain consent regarding such changes as may be required by law. 

HOW TO CONTACT US

If you have a privacy concern, complaint, or a question for Noyo, please contact us at security@gonoyo.com

Our address is 18 Bartol Street, #122, San Francisco, CA 94108 USA.