Data privacy policy

Personal data is any information relating to an identified or identifiable natural person; an identifiable natural person is a person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Where do we store your personal data?

Personal data that we collect from you is stored within the European Economic Area (EEA) but may also be transferred to and processed in a country outside EU/EEA. Atea uses vendors for mail, cloud services, antimalware, firewalls, authentication, etc. when personal data may be transferred to and processed in a country outside EU/EEA. Any each such transfer of your personal data is carried out with accordance with applicable laws. For transfers outside EU/EEA Atea uses Standard Contractual Clauses as appendix to our data processing agreements according to the Chapter V of the GDPR.

Recipients of personal data

We may disclose your personal information to all companies in our group (i.e., subsidiaries, our ultimate holding company and all its subsidiaries) insofar that it is reasonably necessary for the purposes stated in this privacy policy.

We do not sell, trade or otherwise transfer your personal information to third parties. Exceptions are trusted third parties that help us to run the site, conduct our business, deliver the goods you order or provide service, if these parties agree to keep the information confidential and not use it for other purposes that not agreed upon.

Why do we collect your personal data?

We collect your personal data only when have legal basis for it. For every specific process of personal data, we collect from you, we inform you whether the provision of personal data is statutory or required to enter a contract and whether it is an obligation to provide the personal data and possible consequences if you choose not to.

Retention policy

We will only store your personal data for as long as it´s necessary to perform our contractual obligations and if required by statutory storage time. When we store your personal data for purposes other than our contractual commitments, such as consent when you sign up to our events or receive newsletter via email, we save the data only if necessary and / or statutory for the purpose.

When there is no longer a purpose or legal obligation of storing the personal data, it is deleted or anonymized.

Personal data that is only collected for a specific purpose is kept to a minimum to be able to perform the purpose, also known as data minimization.

Your personal rights

If you have questions about the privacy policy, how we process personal data or want to exercise any of your rights, such as requesting registry extracts or corrections, this can be made free of charge once a year, you are welcome to contact us at the contact details below. To submit any request, please contact us at dpo@atea.com for more information.

You have the right to submit eventual complaints about processing of your personal data to the national supervisory authority.

Transfer to third Country

Information we collect about you can be processed, stored and transferred between all Atea subsidiaries in the countries we operate in. All Atea subsidiaries have signed an internal Data Processing Agreement having unified data protection across all subsidiaries. However, Atea will not transfer the personal data you provide us to countries outside the European Economic Area (EEA) without explicitly informing you about that transfer.

Links to third parties

We may, at our discretion, publish or offer third-party products on our website at our discretion. These third-party websites have their own, independent privacy rules. We therefore take no responsibility for the content and activities of these linked sites. However, as we want to protect the privacy of our site, we welcome comments on these websites.

Last update to Data privacy policy

Atea reserves the right to update or change this Policy at any time and you should visit this site regularly to obtain the latest version.

2022-09-09

How to contact us

If you have any questions regarding this privacy policy or our processing of personal data, or want to contact us regarding your personal data, please contact dpo@atea.com.

Categories of Personal data we collect

Atea eShop account and online purchase

When you create an account in eShop to order products and services, we process personal data about the Customer Representative in accordance with the terms and conditions set out in this Privacy Policy. We also handle the personal information you provide to us by filling in different types of forms. For corporate representative accounts in eShop we process personal information such as name, e-mail address and possibly mobile phone number (for 2-factor authentication). Personal data such as employment numbers may also be saved at the customer's request. If the account holder has not logged on up to 36 months, the account will automatically be deleted.

Inactive account retention period can differ between countries where the user has registered, so please read country Data Privacy Policy for specified storing time.

Call records

When you call our Servicedesk to inform about an incident or a problem that has occurred in your company, we record and store all your inbound telephone calls for ninety (90) days for quality assurances and complaints investigation purpose.

Call record retention time can differ between countries where Servicedesk is placed, so please read country Data Privacy Policy for specified storing time.

We always inform you before conversation starts that this call will be recorded. You can choose not to be recorded and continue the conversation.

Servicedesk case and incident handling

When you contact Atea Servicedesk, your personal data will be stored in our ticketing system for the purpose to handle the case. The personal data processed is the data you provide when submitting the case/incident, like for example:

Name, phone number, email address, organization, job title, department.

The personal data is processed by Atea as the data Controller since we need to register contact information for a case or incident to solve the case and be able to contact you regarding the case. Personal data is also stored for a historical purpose to be able to return to a case afterwards, both for learning purposes and for history. Based on this, the personal data is stored for 5 years after a case is closed.

After resolving the case you receive Atea User Satisfactory Survey email which is related to the case number. Atea User Satisfaction Survey will be stored for 2 years to be able to return to survey evaluation afterwards and to compare the results of customer support.

The legal basis for the processing of personal data is a legitimate interest. Atea's interest lies in the fact that we need contact information for the individual who has submitted a case so that we can carry out our tasks and handle the case. Included in the assessment of the legitimate interests are the type of personal data that only includes contact information.

Authorization to Atea systems

We have control authorization mechanisms for you to safely authenticate to our systems. The authorization is handled by Atea secure authorization solution.

There are two ways to authenticate to be able to get access to relevant systems in Atea.

Atea authorization

User ID (email address) and password for authentication is used. Personal data in scope: email address, IP address. On authentication, email address and password will be verified by our identity provider through secure API. Logging of authentication is handled according to Atea directive for security logging.

Customer Active Directory authentication

Single Sign On for authentication is used. Personal data in scope: name, surname, email address, IP address. On authentication, first name, last name and email address is verified by customers’ Active Directory and passed to Atea secure authorization solution. Logging of authentication is handled according to Atea directive for security logging.

Direct marketing

We use your personal data to send company news, updates, information about other similar products and services, Atea’s events and newsletters, etc. Personal data you provide to us by filling in the forms on our webpage is used only with your consent. We process following categories of personal data: name, surname, company name, email address, phone number. We store your data for direct marketing until you withdraw your consent.

Atea events

To register for events organized by us, we process your contact information such as: name, company name, email address and phone number, and store for the period which is determined in the event registering form. Your personal data is only processed to the extent that is necessary to fulfill the respective purpose.

For online events Atea is using a SaaS vendor where Atea is acting as a data controller for the following personal data:

• Event content: chat, video, event recording, event participation and registration date, CSV files with attendees’ list

When you as attendee register to online event, after registration you receive email from Atea’s SaaS vendor with the link to be able to connect to online event. Therefore, you need to create a user account in Atea’s SaaS vendor event platform. Atea’s SaaS vendor is responsible and acts as data controller for your user account. Following personal data is in scope:

• Attendee account in SaaS vendor platform
• Personal details in attendee’s vendor’s account

Cookies

When you visit any website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the site work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience.

Cookies are widely used to “remember” you and your preferences, either for a single visit (through a “session cookie”) or for multiple repeat visits (using a “persistent cookie”). They ensure a consistent and efficient experience for you as a visitor and perform essential functions such as allowing you to register and remain logged in. Cookies may be set by the site that you are visiting (known as “first party cookies”), or by third parties, such as those who serve content or provide advertising or analytics services on the website (“third party cookies”).

Atea uses cookies to personalize content and ads, to provide social media features and to analyze our traffic. Atea also shares information about your use of our site with our social media, advertising and analytics partners.

Below is a detailed list of the cookies we use on our websites. Our websites are scanned with a cookie scanning tool regularly to maintain a list as accurate as possible. We classify cookies in the following categories:

• Mandatory Cookies
• Functional Cookies
• Marketing Cookies

You can opt-in of each cookie category (except mandatory cookies) by clicking on the “cookie settings”.

Mandatory

These cookies are necessary for the website to function and cannot be switched off in our systems. This enables the website to provide enhanced functionality and personalization. They may be set by us or by third party providers whose services Atea have added to our pages. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. Blocking these cookies may affect the performance of the site. These cookies do not directly store personal information but are based on uniquely identifying your internet browser and device.

Analytics Cookies

These cookies allow Atea to monitor traffic and sources to be able to measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies, Atea will be less able to optimize and analyze the Sites’ performance.

Marketing Cookies

These cookies may be set through our site by our advertising partners and social media services. Anonymized data can be shared with third parties to build a profile of your preferences and show you relevant adverts on other sites with your friends and networks. They do not directly store personal information but are based on uniquely identifying your internet browser and device, which can be used to build up a profile. If you do not allow these cookies, you will experience less targeted advertising and will not be able to use or see these sharing tools.