CoffeeBean Technology Privacy Policy

CoffeeBean Technology Privacy Policy

Index

  • 1 – Effective Date
  • 2 – Who We Are
  • 3 – Introduction and Changes to Policy
  • 4 – Information We Collect and How We Use It on the Coffeebean Site and Demo Site
    • Information you provide to us
    • Information collected from third parties
    • Information collected automatically
    • Uses of Personally Identifiable Information and Disclosures to Third Parties
    • Opt-out
    • Liability
  • 5 – Information We Collect via CoffeeBean Identity and Access Platform and How We Use It
    • Information Collected when End Users use the CoffeeBean Identity and Access Platform Service
    • Information Automatically Collected from End User’s Browser.
    • Use of Information Collected about End Users and Disclosures to Third Parties
    • Data Control and Opt-out
  • 6 – Security of Information
  • 7 – EU- U.S. and Swiss-U.S. Privacy Shield Framework
  • 8 – Contact Us
  • 9 – Accessing and Correcting Your Information – for individuals outside of the EU and Switzerland
  • 10 – User Communications

Content

1 – Effective Date.

This Privacy Policy was last updated on April 15, 2020.

2 – Who we Are.

Coffee Bean Technology Corporation, a California Corporation with a U.S. location of 859 Corporate Way, Fremont, California 94539, (“Company”). Company is generally in the business of customer identity management. Specifically, Company engages with its business clients (“Clients”), to assist its Clients in creating and updating customer identity information relating to the Client’s customers (each an “End User”). The Company’s product for creating and maintaining the customer identity is called “CoffeeBean Identity and Access Platform”, which is deployed on Client’s digital properties such as web pages, mobile apps, Wifi or beacon devices, and which allows End Users to register with Client via a traditional login or a social media login. Company maintains the following websites, as well as related tools, applications, widgets, and documentation (collectively all are referred to as the “Services” as used in this policy):

  • the Company’s promotional website at https://coffeebeantech.com/ (the “Coffeebean Site”);
  • the Company’s demo website and CoffeeBean’s demo mobile apps for IOS and Android http://demo.coffeebeantech.com/ (the “Demo Site”) to allow Clients and third party affiliates such as digital marketing companies, IT companies or technology companies (“Third Party Affiliates”) to evaluate the CoffeeBean Platform product;
  • the Company’s development website for use by Clients and Third Party Affiliates to obtain resources on how to integrate and use CoffeeBean Identity and Access Platform http://dev.socialidnow.com/index.php?title=Main_Page (the “Development Site”)
  • the Company’s CoffeeBean Identity and Access Platform product website for deployment by Clients and used by Company at https://app.socialidnow.com/; (the “CoffeeBean Identity and Access Platform”)

The company’s websites are hosted by Amazon Web Services.

3 – Introduction and Changes to Policy.

Company values the protection of your privacy and is committed to protecting it through our compliance with this policy. This Privacy Policy describes our current practices with respect to the information we collect when you interact with our Services. If you do not agree with these practices, do not use our Services.

From time to time, we may change our Privacy Policy. Your continued use of the Services after changes are made indicates your acceptance of those changes. Please check our Privacy Policy regularly for updates.

The Services are not intended for children under 13 years of age. We do not knowingly collect Personally Identifiable Information from children under 13. If we learn we have collected or received such information from a child under 13 without verifiable parental consent, we will delete that information. If you believe we might have Personally Identifiable Information from or about a child under 13, please contact us.

4 – Information We Collect and How We Use It on the Coffeebean Site and Demo Site.

There are three ways that we collect information from you: (A) we collect it when you expressly provide that information to us, (B) we collect it from third parties when you allow us to do so, and (C) we collect some information automatically when you interact with the Services.

    • A – Information you provide to us.Visitors. Unregistered users (visitors) have an ability to provide us with Personally Identifiable Information when contacting us, which can include but is not limited to: name, phone number, email address, job position, and employer information, and LinkedIn profile. We will use this information in order to interact with you and provide you customer service, such as to answer questions you may have about the Services.Registered Users. When you register with us, send us email messages, submit forms to us, or provide information to us by any means, you will provide us with certain Personally Identifiable Information. Upon registration, we will ask you to provide some identifying information, which may include but is not limited to: name, phone number, email address, job position, employer information, and LinkedIn profile. We will use this information in order to identify you, interact with you and provide you customer service. We may also occasionally ask for personal information in order to assist you, such as for technical support.
    • B – Information collected from third parties.Visitors and Registered Users. You may use Facebook to sign in and register with us on the Demo Site, which is powered by the CoffeeBean Identity and Access Platform. The Facebook service will authenticate your identity and ask you whether you agree to share certain personal information with us. The information we receive from Facebook about you is dependent upon your privacy settings in Facebook. We use this information from Facebook to simulate our services for demonstration purposes.Company collects certain information about Visitors and Registered Users when Visitors and Registered Users interact with the CoffeeBean Identity and Access Platform product that is activated on a Demo Site. For example, CoffeeBean Identity and Access Platform allows Visitors and Registered Users to login to the Demo Site by using a social media account, which will then enable Company to receive certain Visitors’ and Registered Users’ information from the social media site in accordance with that site’s privacy policy and the End User’s privacy settings with the social media site.Company will not sell or disclose this information to third parties and this information is periodically deleted.
    • C – Information collected automatically.The Company uses CoffeeBean Identity and Access Platform in conjunction with the Coffeebean Site and Demo Site. The CoffeeBean Identity and Access Platform automatically collects certain information from your browser when you visit sites with our technology enabled. This information may include your browser type and language, IP addresses, referring pages, operating system, date and time and metadata information about the site, such as title, keywords, content and sections, in order to feed site usage analytics, analyze trends and provide personalization. We may also collect unique browser identifiers granted by the user such as web push notification endpoints and keys used to provide engagement services. User related data can be both persistent or session stored in the browser for user tracking and caching purposes.We collect and store data by using cookies, local storage or similar technologies.You can control the use of these technologies at the individual browser settings (such as “do not track” configuration), but if you disable them you may block or limit some services provided by our platform.
    • D – Uses of Personally Identifiable Information and Disclosures to Third Parties.We will not sell, trade, or rent Personally Identifiable Information we collect from you to third parties, except to the extent necessary:
      • To protect ourselves from liability,
      • To respond to a court order or subpoena, to comply with an investigation, or to comply with applicable laws or rules,
      • To obtain services from other companies that help us with business activities, such as sending emails, maintaining Company servers, or providing customer service, or
      • In connection with a merger, acquisition, or liquidation of the company.
    • E – Opt-out. Under the Privacy Shield Principles, individuals have the right to opt out of (i) disclosures of their personal information to third parties; or (ii) uses of their personal information. The process to opt-out should be done by contacting Company via email (support@coffeebeantechnology.wpcomstaging.com).
    • F – Liability. In the context of an onward transfer Company has responsibility for the processing of personal information it receives under the Privacy Shield and subsequently transfers to a third party acting as an agent on its behalf. The Company shall remain liable under the Principles if its agent processes such personal information in a manner inconsistent with the Principles, unless the organization proves that it is not responsible for the event giving rise to the damage.

In the event of a merger, acquisition, or sale of all or a portion of Company’s assets, you will be notified via email and/or a prominent notice on our website of any change in ownership or uses of your personal information, as well as any choices you may have regarding your Personally Identifiable Information.

We reserve the right to report to law enforcement agencies any activities that we in good faith believe to be unlawful.

5 – Information We Collect via CoffeeBean Identity and Access Platform and How We Use It.

CoffeeBean Identity and Access Platform is deployed on Client’s digital properties for purposes of creating and maintaining customer identity information relating to the Client’s End Users who interact with the digital properties.

There are two ways that we collect information about End Users: (A) we collect it when End Users use the CoffeeBean Identity and Access Platform service, and (B) we collect it automatically from the End User’s browser when End User visits sites when CoffeeBean Identity and Access Platform is enabled.

    • A – Information Collected when End Users use the CoffeeBean Identity and Access Platform Service installed at Client’s Digital Properties.Clients use the CoffeeBean Identity and Access Platform to collect certain information about End Users when End Users interact with the CoffeeBean Identity and Access Platform product that is activated on a Client digital property. For example, CoffeeBean Identity and Access Platform allows End Users to login to a Client digital property by using a social network account, which will then enable Client to receive certain End User information from the social network site in accordance with that site’s privacy policy and the End User’s privacy settings with the social network site. Since we do not have direct control over the third party social network site’s policies or practices, we are not responsible for the privacy practices of those sites. We recommend and encourage that you always review the privacy policies of these sites.
      The information that we collect on behalf of our Client changes accordingly to what CoffeeBean Identity and Access Platform services are used.
    • B – Information Automatically Collected from End User’s Browser.CoffeeBean Identity and Access Platform collects information about the End User’s browsing activity, which may include but is not limited to the End User browser type and language, IP addresses, referring pages, operating system, date and time and metadata information about the site, such as title, keywords, content and sections, in order to feed site usage analytics, analyze trends and provide personalization. CoffeeBean Identity and Access Platform may also collect unique browser identifiers such as web push notification endpoints and keys used to provide engagement services. End User related data can be both persistent or session stored in the browser for user tracking and caching purposes.CoffeeBean Identity and Access Platform collects and stores data by using cookies, local storage or similar technologies. End User can control the use of these technologies at the individual browser settings, but if you disable them you may block or limit some services provided by CoffeeBean Identity and Access Platform.
    • C – Use of Information Collected about End Users and Disclosures to Third Parties.All information collected about End Users via CoffeeBean Identity and Access Platform is at the direction of our Clients, and Company does not directly engage with End Users. All data collected about End Users (“Client Data”) is disclosed to Client, belongs to Client, and not to Company; however, Company retains the right to use Client Data in an anonymized, aggregated fashion for its own internal development – improve the product, and for marketing and advertising purposes, not to compete with client. Company may use Client Data to provide reports to its Clients, and such information may include personally identifiable information about End Users. Company will store such Client Data for as long as necessary or appropriate to provide services to Client, or to comply with applicable laws or to enforce its agreements.Company will not disclose any End User Personally Identifiable Information collected on behalf of Clients to any third parties, except to the extent necessary:
      • To protect ourselves from liability,
      • To respond to a court order or subpoena, to comply with an investigation, or to comply with applicable laws or rules.
    • D – Data control and Opt-out. Because Clients own the Client Data, the Client controls its use, storage disclosure, and deletion, and the Company merely follows the instructions and guidance of the Client. If you are an individual who wants to opt-out, modify or delete personal information which the Company may be storing on behalf of Client, you must contact the Client directly.

6 – Security of Information.

Company uses industry high standard security measures and safeguards to ensure the security and integrity of all Personally Identifiable Information it collects through its Services. For more information please access our Trust page.

The safety and security of your information also depends on you. Where we have assigned you (or where you have a chosen) a password for access to Services, you are responsible for keeping this password confidential.

Unfortunately, the transmission of information via the internet and mobile platforms is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures we provide.

7 – EU-U.S. and Swiss-U.S. Privacy Shield Framework

Company complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Frameworks, as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and the United Kingdom and/or Switzerland, as applicable to the United States. Company has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/list.

The Privacy Shield Principles provide individuals located in the E.U. or United Kingdom or Switzerland, as applicable, whose personal information are collected with the right to access their personal information in order to review, correct, amend or delete information processed under the Principles.

European Union and Swiss End Users whose personal information we collect on behalf of a Client via CoffeeBean Identity and Access Platform should first contact the Client, who is the controller of the End User’s personal information, to access their personal information.

European Union and Swiss individuals who are users of the Coffeebean Site or Demo Site that have inquiries or complaints regarding our Privacy Shield policy should contact Company as specified in the “Contact Us” section of this policy. Anyone who uses the Coffeebean Site or the Demo Site and is a registered user can update their information within their account settings.

In compliance with the Privacy Shield Principles, Company commits to resolve complaints about our collection or use of your personal information. If you have a complaint, please first contact Company as specified in the “Contact Us” section of this policy.

Company has further committed to refer unresolved Privacy Shield complaints to JAMS, an alternative dispute resolution provider located in the United States. The services of JAMS are provided at no cost to you. For more information about JAMS dispute resolution process or to file a complaint, please visit https://www.jamsadr.com/eu-us-privacy-shield

Company has also further committed to cooperate with the panel established by the EU data protection authorities (DPAs) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved Privacy Shield complaints concerning human resources data transferred from the EU and Switzerland in the context of the employment relationship.

The Federal Trade Commission has jurisdiction over Company’s compliance with the Privacy Shield.

An individual has the possibility, under certain conditions, to invoke binding arbitration for complaints regarding Company’s Privacy Shield compliance not resolved by any of the other Privacy Shield mechanisms; please visit this link for additional information: https://www.privacyshield.gov/article?id=ANNEX-I-introduction

Sections 4E and 5D of this policy explain the choices and means we offer individuals for limiting the use and disclosure of their personal data.

In accordance with our legal obligations, we may also transfer, subject to a lawful request, personal information to public authorities for law enforcement or national security purposes.

8 – Contact Us.

If you have any questions or concerns regarding our Privacy Policy or our general privacy practices, please contact us at:

legal@coffeebeantechnology.wpcomstaging.com

859 Corporate Way, Fremont, California 94539

9 – Accessing and Correcting Your Information – for individuals outside of the EU and Switzerland

  • A – End Users whose personal information we collect on behalf of a Client via CoffeeBean Identity and Access Platform should first contact the Client, who is the controller of the End User’s personal information, to access their personal information.
  • B – Individuals who are users of the Coffeebean Site or Demo Site and is a registered user can update their information within their account settings. Unregistered users may contact the Company as indicated in the “Contact Us” section of this policy. Company will use reasonable efforts to delete your information if you so request; however, because we and our web hosting company have backup systems and keep track of past transactions and/or activities, it may be impossible to completely delete your information. We will retain your information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

10 – User Communications

We may, from time to time, send you email to the email address collected from the CoffeeBean Site regarding our Services. In addition, if you indicate upon registration or otherwise that you are interested in receiving offers or information from us, we may occasionally send you direct email about products and services that may be of interest to you. Only we will send you these direct emails, and only if you “opted in” by indicating that you are interested in receiving these offers. If you do not want these mailings, you can tell us when you submit or edit your Personally Identifiable Information by sending us an email.