Ascertia respects your privacy and is committed to protecting it
To provide you access to the Ascertia products, free/paid certificates or more information Ascertia website requires you to provide personal identifiable information. Some of the information is provided at account registration time and some later. At all times the information mentioned below can be viewed and updated from your Ascertia website account. Some of this information is mandatory for the basic processing of your account while some is optional.
Billing Info – When making a purchase from the Ascertia website, your billing address is provided to our payment gateway which is eventually provided to us for displaying on invoices that we create for you. The invoices we provide gives you complete details of the payment process including purchaser’s name, purchase date, price, billing address, VAT information and transaction ID. Note that we don’t ask for or store your card information on our systems. This is managed by our payment gateway service which is PCI/DSS compliant. https://www.worldpay.com/us/products/security-compliance/pci-compliance
You can optionally provide how you came to know about us and any specific project requirements which helps us respond to you in the most efficient way. If submitted, this information is also shared with our marketing and CRM platforms to enable our sales team to contact you accordingly and deal with your request. You can opt out of our marketing emails by using the unsubscribe link.
This information is only kept during the chat session and removed automatically as the chat session closes.
This information helps Ascertia recognise the reseller partner and how to best manage the request for licenses.
Following is the list of information gathered automatically by Ascertia website:
Ascertia is committed to protecting the information you provide us. To prevent unauthorised access or disclosure, to maintain data accuracy, and to ensure the appropriate use of the information, Ascertia has in place appropriate physical and managerial procedures to safeguard the information we collect. This security measure is working when you see either the symbol of an unbroken key or closed lock (depending on your browser) on the bottom of your browser window.
All of your personal data is stored in our database (encrypted) and system logs in secure manner within data centers operating in the EU region. Back up of your data is also done within the EU region. All of your information is transferred from your machine to our servers over TLS to provide end-to-end confidentiality and data integrity protection to ensure that the information you send to us is not intercepted by anyone in transit. This is true also for any personal data moving from our servers to any 3rd party service providers. We use modern and secure versions of TLS with SSL v2 and v3 being blocked. There is a small of personal data which our service provides (processors) keep outside of EU region. See section Information Sharing below for more details.
Both of these organisations are ISO 27001 certified service providers. The information is stored inside their USA/EU held data centres and is not shared with other clients. HubSpot and Salesforce both have the EU-US privacy shield certificates.
For more details about privacy capability of these services and in particular GDPR see the following links:
We may share your information in other ways if you have consented to such sharing. For example, we publish customer testimonials on our website.
By using the services, you acknowledge that some of your information may be transferred outside of EU as our service providers data centres are hosted outside EU with sufficient protection applied in place.
If we merge with or are acquired by another company or if all or a substantial portion of our assets are acquired by another company, in those cases your information will likely to be one of the assets that is transferred.
We provide users to access and change all of your account information which includes your profile information. You cannot change information which is automatically system-created like personal data which goes inside invoices or logs.
In case you are failing to modify any information contact us using the contact information below. We will review and respond within 3 working days on how to modify any inaccurate or incomplete information as per the laws. Note that your ID (email) cannot be changed once an account is created as this is your unique link to your account. In case you want to change this, you will need to create a new account with the different email address. Once done you can contact us to delete the previous account.
We provide opt-out information in all marketing / information emails we send via an “unsubscribe” link which is set in the bottom of the emails. If initiated it may take a day to opt out. You can also opt out of such emails using your profile area.
Your account held data is kept at all times unless a user request via email to delete his data. We may keep some information in the web logs which is automatically cleared in 30 days. Logs are kept in rolling fashion and contain information to help us troubleshoot issues. If you were paid-up customer then your information may be kept for accounting purposes as per the law.
Any account deletion requests will be processed within 7 days. As per your request we will delete all of your personal information. Even after account deletion we may keep certain information like name, email as part of our billing accounts. You will no longer receive any marketing or commercial emails. Any requests to restrict-processing will be processed within 3 days.
For account deletion or restricting processing of your information, a formal request is required from you (the Subject). You must send an email using the same email account which is configured inside Ascertia website. You will be informed once your data is deleted.
If you need a copy of your personal information in machine ready format then you must send an email using the email account which is configured inside Ascertia website. We will process your request in 14 days and return the information in CSV format where possible. Certain data may still be in other formats e.g. XML.
In case we find a breach which impacts your personal data then we will investigate and inform you within 72 hours of us becoming aware of it. We will inform you about the issue and the details via your email.
Ascertia is committed to protecting the privacy needs of children and we encourage parents and guardians to take an active role in their children’s online activities and interests. We only provide service to you if at least 18 years of age (or, as applicable, the age of majority in the state or province in which you reside), and that you possess the legal right and ability to enter into this Agreement.