Privacy Policy
Last updated: January 15, 2024
Remote Access Portal Solutions ("Remote Access Portal Solutions", "we", "us", or "our") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard information when you access our Extranet Portal and related services.
1. Information We Collect
We may collect the following categories of information when you interact with our services:
- Account Information: Name, email address, employee ID, department, and role within your organization.
- Authentication Data: Login credentials, multi-factor authentication tokens, session identifiers, and authentication logs.
- Technical Data: IP address, browser type and version, operating system, device identifiers, referring URLs, and access timestamps.
- Usage Data: Pages visited, features accessed, files downloaded or uploaded, and interaction patterns within the portal.
- Network Data: Connection metadata, VPN session information, and network access logs as required for security monitoring.
2. How We Use Your Information
We use the information we collect for the following purposes:
- To authenticate your identity and provide access to authorized resources.
- To maintain and improve the security of our systems and infrastructure.
- To monitor for unauthorized access, anomalous activity, and potential security threats.
- To comply with applicable legal obligations and regulatory requirements.
- To provide technical support and resolve service-related issues.
- To generate aggregated, anonymized analytics for system performance optimization.
3. Security Monitoring and Logging
All access to the Extranet Portal is subject to continuous security monitoring. We maintain detailed access logs including authentication attempts, session activity, and network connections. These logs are retained for a minimum of 12 months and may be shared with incident response teams, law enforcement, or regulatory bodies as required.
By accessing this portal, you acknowledge and consent to such monitoring and logging activities.
4. Data Sharing and Disclosure
We do not sell your personal information. We may share your information with:
- Authorized Partners: Third-party organizations with whom your employer has established a data processing agreement.
- Service Providers: Vendors who assist in operating our infrastructure, subject to contractual confidentiality obligations.
- Security Teams: Internal and external security operations centers (SOC) for threat detection and incident response purposes.
- Legal Authorities: When required by law, subpoena, court order, or to protect the rights and safety of our users and systems.
5. Data Retention
We retain personal information for as long as necessary to fulfill the purposes outlined in this policy, or as required by applicable law. Authentication logs and security-related data are retained for a minimum of 24 months. Account information is retained for the duration of the business relationship plus an additional 6 months.
6. Your Rights
Depending on your jurisdiction, you may have the right to access, correct, delete, or port your personal data. To exercise these rights, please contact your organization's IT administrator or submit a request to our Data Protection Officer at privacy@extranet-portal.com.
7. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) and relevant certifications, to protect your data in accordance with applicable data protection laws.
8. Cookies and Tracking Technologies
The Extranet Portal uses strictly necessary cookies for session management and authentication. We do not use third-party advertising or analytics cookies. Session cookies are automatically deleted when you close your browser or after a period of inactivity.
9. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via the portal dashboard or email notification. Continued use of the portal after such changes constitutes acceptance of the updated policy.
10. Contact Us
If you have questions or concerns about this Privacy Policy, please contact:
Remote Access Portal Solutions
Data Protection Officer
privacy@extranet-portal.com