Privacy, Security, and Data Ownership

Privacy Policy

Rival Solutions Incorporated’s (“Rival”) Privacy Policy is a statement of principles and policies regarding the protection of personal and business information provided by Rival. Rival develop and commercialise infrastructures inspection and management solutions through the use of mobile and web applications. We are committed to protect private and business information of our clients as described further in this document. 

Purpose and Scope of the Policy 

This privacy policy describes how we collect, utilize, and disclose your personal and business information and how this personal and business information can be consulted and corrected when necessary. This policy also explains how cookies are used within our Web Application (“rDash”). 

By visiting data.rivalsolutions.com/rDash (the “RUBIX Dashboard”), contacting us, or agreeing to receive emails directly from Rival, you are accepting the terms and conditions of this policy. 

This policy does not extend to web applications operated by third parties. Rival is therefore not liable for their such privacy policies, procedures and/or practices. 

Personal Information Collected 

A. Information that you send us 

Rival collects personal and business information in several ways, including when users 

  1. i) use our mobile applications to collect inspection data and submit it to our servers for processing; 
  2. ii) communicate with Rival by email or by telephone for technical assistance; 
  3. iii) obtain information about our products and services; 
  4. iv) login and use the RUBIX Dashboard; and 
  5. v) take direct action related to the marketing and operation of the RUBIX product. 

Depending on the circumstances, personal and business information may include your name, contact information, and your end user’s (if applicable) name and contact information (electronic address, telephone number). By way of example, when you register yourself or one of your end user clients on RUBIX Dashboard you are providing personal information.

B. Information provided on our Web Application 

Rival collects data during sessions on the RUBIX Dashboard Web Application (“RUBIX Dashboard”). This information may include the IP address of the machine or device you accessing it from, the date, time, and duration of your visit(s), as well as the web pages that were viewed. 

rDash, like most commercial web applications, uses cookies. These are files that are installed on your computer hard drive or web browser to collect information such as your language of preference, browsing history, and browser type and version. The primary purpose of cookies is optimize the user experience of the RUBIX Dashboard. 

These cookies cannot be used to extract personal information. However, we can match the information collected by cookies with other information through the RUBIX Dashboard [OR] the information collected by cookies is not related to any other data that can identify you. 

Disabling cookies on your browser could adversely affect the browsing experience on the RUBIX Dashboard. 

Use and Communication of your Personal Information 

We use and disclose personal information mainly 

  1. i) to allow us to deploy our products and services; 
  2. ii) to answer questions and information requests; 
  3. iii) for the purposes of marketing, advertising, or contests; and 
  4. iv) for any other purposes authorized or required by law. 

If Rival is in a position that requires us to disclose personal information to third parties, Rival takes reasonable measures to ensure that the rules set forth in this policy are fully complied with. 

Right to Access and Correct 

On written request and subject to proof of identity, you may consult the personal information, if any, that Rival has disclosed, and ask that any necessary corrections be made, where applicable, as authorized or required by law. 

To make sure that the personal information we maintain is accurate and up to date, please inform Rival immediately of any changes to such information. 

Update 

This Privacy Policy may be amended without notice. This policy was last updated on January 7, 2016 

Contact Person

Any request to access or correct your personal information and any questions or comments you may have with respect to this privacy policy must be sent to the Privacy Officer by mail or email using the following contact information: 

Rival Solutions Inc. 
4710 Saint-Ambroise, Suite 309, Montreal, QC, H4C 2C7, Canada
info@rivalsolutions.com

Security

Data Transfer

Rival uses Secure Sockets Layers (SSL), a standard security technology, for establishing an encrypted link between the RUBIX web servers and client apps. Details on this can be seen on the certificate shown.

algorithm: sha256RSA
public key: 2048 bits

Database and Servers

Rival stores all data in a hosted solution.  The service provider name is OVH.  This is an extract from the OVH website:

“For more than 15 years, OVH has hosted your data, and data protection has always been one of our top priorities. In order to guarantee the very highest security levels, we have carefully put efficient measures in place, as well as an arsenal of good practices at all levels of our organisation and infrastructures. This way, we can provide you with high availability, complete transparency, and guaranteed confidentiality.”

More details on OVH security can be accessed here:
https://www.ovh.com/ca/en/about-us/security.xml

Dashboard / Data Access

Access to the RUBIX dashboard is restricted and requires user credentials to access.   Details can be found in the Terms of Use of RUBIX.

 

Data Ownership

The customer owns all rights, title and interest in and to the data collected. 

For the purposes of Research, Development, and Marketing, Rival Solutions may collect, develop, create, extract, compile, synthesize, analyze and commercialize statistics, benchmarks, measures and other information based on Aggregated Data (collectively, “Blind Data”). Blind Data will be owned solely by Rival and may be used for any lawful business purpose without a duty of accounting to Customer. “Aggregated Data”) means Customer Data that is: (i) anonymized and not identifiable to any person or entity; (ii) combined with the data of other customers or additional data sources; and (iii) presented in a way which does not reveal Customer’s identity.