Hitpoint Cloud Privacy and Data Protection Policy

A Leading Cloud Computing Solutions Provider

Hitpoint Cloud Privacy and Data Protection Policy

This is the privacy and Data Protection policy for www.hitpointcloud.com website and Hitpoint Cloud’s software product and service:
-    Hitpoint eCommerce Bridge
-    Hitpoint WW WMS
The web site and the software are the property of Hitpoint Cloud Co., Ltd. We take the privacy of all visitors to the website and the software, as well as the users of our products, very seriously and therefore set out in this policy our position regarding certain privacy matters and the use of cookies for the website and the software.
This policy covers all data that is shared by a visitor with us whether directly via www.hitpointcloud.com, or via email or via the use of our software service. It also covers data our customers ask us to process Via hitpointcloud.com, any related Connectors, or Integration Apps, or via our software’s Extension Apps.
    What Regulations are in scope for this Policy?
There are many privacy regulations to address, not to mention our policy of ensuring our customer’s and their customers Privacy. So, while we address the requirements of each applicable privacy regulations or law, we do so across the board for all customers, and all regulations, and all personal data is treated with the same level of care.
In scope regulations include, but are not limited to:
    •The EU GDPR
    •The US Privacy Shield
    •The US Health information Portability and accountability Act (HIPAA)
    •The California Consumer Protection Act (CCPA), and other related Privacy laws of California, or other US states and territories
    •The Amazon Data
While we handle all personal information equally (this means we likely surpass the requirements for a specific single regulator), we respond to requests about the information per the residency of the person affected (for example, someone resident in the EU we would be handled per the GDPR and Privacy shield; and for a California resident, per the CCPA and other California Privacy laws and regulations)
    Information We Collect
While using our site, we may ask you to provide us with certain personal data that can be used to contact or identify you (“Personal Data”). Personal Data may include, but is not limited to:
    •Email address
    •First name and last name
    •Phone number
    •Address, State, Province, ZIP/Postal code, City
    •Job title, profession
    •Pictures or videos you submit
Information Collected Automatically
Like many websites, we and our third-party service providers, such as advertising and analytics providers, use cookies, web beacons and other data technologies to receive and store certain types of information when you interact with us through your computer or mobile device. Using these technologies helps us recognize you, customize your experience and make relevant marketing messages. Here are the types of information we collect:
    •Log & Device data. When you visit our site, we may automatically record information (“log data”), including information that your browser sends whenever you visit our site. This log data may include your web address you came from or are going to, your device model, operating system, browser type, unique device identifier, IP address, mobile network carrier, and time zone or location.
    •Our third party service providers may provide us information that tells us how our marketing ads, often placed on third party sites, performed and who clicked on them. This information does not identify any specific individual and is generally non-identifying. If we were to associate it with you we would treat it as personal data.
    Privacy Shield Notice and Policy
-    Hitpoint Cloud Co., Ltd. adheres to the Privacy Shield Principles. If there is any conflict between the terms in the Hitpoint Cloud Privacy and Cookie Policy at http://hitpointcloud.com/enpolicy and the Privacy Shield Principles, the Privacy Shield Principles shall govern.
-    
-    Hitpoint Cloud Co., Ltd. Under EU privacy laws, Hitpoint Cloud Co., Ltd. is generally considered a “data processor.” For example, an business customer may use Hitpoint eCommerce Bridge to process data in an integration between two SaaS applications containing names, email addresses, and other personal information about its customers. As part of Hitpoint Cloud providing services to the business customer, this personal information of consumers may be transferred through Hitpoint Cloud environment under our Privacy Shield certification, or Standard Contractual Clauses, as described below.
-    
    •Additional descriptions on the following topics about how we treat personal information that is transferred in reliance on Privacy Shield are available in the following section of the Hitpoint Cloud Privacy and Cookie Policy (This document):

Information We Collect
    •Use of Cookies (Cookie Policy)
        oDo Not Track Signals
    •Use of Your Information—Grounds for Using Your Personal Data
    •Sharing and Disclosure
    •Storing Your Personal Data/Transfer of Data
    •Third Party Links
    •Choices and Individual Rights
    •Security
    •Sensitive Data
    •Our Policy on Children’s Information
    •Contacting Us
    •
Please note that when Hitpoint Cloud uses service providers to process personal information received in reliance on Privacy Shield, it is responsible if that service provider processes the information in violation of the Privacy Shield Principles, or the Model Clauses. (unless Hitpoint Cloud can prove that it’s not responsible for the service provider’s action that violated the Principles).
Hitpoint Cloud is liable and remains responsible for any of your personal information that is shared under the Onward Transfer Principle with third parties for external processing on our behalf. Hitpoint Cloud
Hitpoint Cloud may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
Inquiring About Your Data:
Directly with Hitpoint Cloud- If you have a question or complaint about our compliance with the Privacy Shield Principles, please contact us at: info@hitpointcloud.com
Complaints:
In compliance with the Privacy Shield Principles, Hitpoint Cloud commits to resolve complaints about our collection or use of your personal information.
Individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Hitpoint Cloud at: info@hitpointcloud.com
Personal information definition
For the purposes of the Privacy Shield Principles “personal information” means information that: (1) is recorded in any form; (2) is about, or pertains to a specific individual; (3) can be linked to that individual; and (4) is collected by Hitpoint Cloud in connection with Hitpoint Cloud business activities. Personal information does not include data that is de-identified, anonymous or publicly available.
Use of Your Data
When Hitpoint Cloud uses our customers’ personal data for the purpose of conducting business, such as sales, marketing, and support, Hitpoint Cloud is the Data Controller. As such, Hitpoint Cloud has measures in place for adhering to GDPR requirements as Data Controller and manages personal data according to these six lawful processing conditions of GDPR:
    •Compliance with a legal obligation
    •Performance of a contract
    •Legitimate interest
    •Public interest
    •Vital interest
    •Consent
When Hitpoint Cloud transfers personal information from customers across national borders, we do so in compliance with applicable law.
    Use of Cookies (Cookie Policy)
Cookie data. We may use “cookies” (a small text file sent by your computer each time you visit our site) or similar technologies to record log data. Many browsers default to accepting cookies. You may be able to change this setting in your browser and you can also clear your cookies.
We may use the following types of cookies:
    •Advertising and analytics: These cookies collect information about who is visiting our site and how users engage with our site. This information does not identify any individual user. It is aggregated and anonymous. Information included in this analysis is the number of visitors to our site, referring websites, pages visited while on this site, time of day visited our site, if this is a new or repeat visitor, and other comparable information. This information is used to help us understand the usage of our site, improve and operate our services more efficiently and to monitor the activity on our site. Please see below for a listing of our analytics providers.
    •Essential cookies: These cookies help run our site and make your experience better. These include cookies that allow you access to a members only part of the site or help the content of our site load quickly. These cookies are only used to provide you with these services.
    •Functionality cookies: These cookies allow the site to remember preferences you have selected such as login details or other selections you may have made. These are designed to make it easier to use our site and not have to set the same preferences every time.
    •Social Media cookies: We use social media tools on our site and these cookies allow the social media network to record when you have liked or engaged with a social media tool on our site. In some situations, the social network may send us data that you have set to share. If you do not want the social media network to share information with us, please check your privacy settings with the social media network.
    •Advertising cookies: These cookies allow us to track browsing habits as you visit the site. Based on your browsing history and with your permission, we use third party advertising partners who can then display to you a relevant ad when you are on a third-party site such as a social media platform. Within these cookies, we may also know your precise location such as latitude, longitude, GeoIP, and other location specific information. Please see below for your choices on cookies and the use of advertising.
To help us make e-mails more useful and interesting, we often receive a confirmation when you open e-mail from us if your computer supports such capabilities. You can opt out of receiving emails from us. Please see the Your Choices section below. •
We might also use a pixel tag, which is a small graphic file that allows us and third parties to monitor the use of the site and provide us with information based on your interaction with the site. These tags may collect the IP address from the device which you loaded the page, the browser type. Pixel tags are also used by our third parties to collect information when you visit our site, the links and other actions you take on our site, and we may use this information in combination with cookies to display targeted advertisements. •
Forms/web behavior
Other data technologies may be used that collect comparable information for security and fraud detection purposes.
    Amazon Data Protection
We provide software and service for Amazon Selling Partners. In order to meet Amazon Data Protection Policy https://sellercentral.amazon.com/mws/static/policy?documentType=DPP&locale=en_US, we have additional policy for Amazon data. If those policy are conflicted with other policy listed in this document, the Amazon data policy take higher priority:
    •We do NOT provide any Amazon data and Personally Identifiable Information from Amazon to our users. If the software and service we provided require Amazon Data to complete the process, we only use it in the process. It means that in the logistic software and service we provided, in the tax accounting service we provided, you get service results, but we do NOT provide Amazon Data in any format.

    •We do NOT provide archiving or backup service for any Amazon Data and do NOT provide any offline backup to any user

    •We use Amazon Data on need-to-know base and encrypt Amazon Data as Amazon Policy required. We do NOT provide any technical detail of data security related networks, software and hardware. Our Amazon Data working process is only subject to Amazon’s audit.

    •Any behavior wants to break our policy and retrieve Amazon Data from our service process are illegal. We preserve the right of law suite

    Do Not Track Signals?
Our Sites and Services do not collect personal information about your online activities over time and across third-party websites or online services. Therefore, “do not track” signals transmitted from web browsers do not apply to our Sites or Services, and we do not alter any of our data collection and use practices upon receipt of such a signal.
Use of Your Information—Grounds for Using Your Personal Data
The information that we collect and store relating to you is primarily used to enable us to provide our services to you. In addition, Hitpoint Cloud is relying on the following lawful grounds to collect and process any personal data you may have provided:
-    Legitimate Business Interests: To provide you with information requested from us relating to our products or services and to provide information on other products which we feel may be of interest to you if you have consented to receive such information, which are legitimate business interests. To notify you about any changes to our Website, such as improvements or service/product changes, that may affect our service. If you are an existing customer, we may contact you with information about goods and services similar to those which were the subject of a previous sale to you.
-    Performance of Contract: To meet our contractual commitments to you and in performance of contractual obligations to you.
-    User Consent: We may use your data, or permit selected third parties to use your data, so that you can be provided with information about related services which we may partner with to provide our service. If you are a new customer, we will only contact you or allow third parties to contact you only when you have provided consent and only by those means you provided consent for. If you do not want us to use your data for ourselves or third-parties, you will have the opportunity to withdraw your consent to this
-    Please be advised that we do not reveal information about identifiable individuals to our advertisers, but we may, on occasion, provide them with aggregate statistical information about our visitors such as your area of residence or age group.
Sharing and Disclosure
We do not share your personal information with others except as indicated within this policy or when we inform you and give you an opportunity to opt out of having your personal information shared.
We will share your information in the following ways.
    •With third party service providers, agents, or contractors. We use other companies, agents or contractors (“Service Providers”) to perform services on our behalf or to assist us with providing services to you. For example, we may engage Service Providers to process credit card transactions or other payment methods. Or, we may engage Service Providers to provide services such as marketing, advertising, communications, infrastructure and IT services, to provide customer service, to collect debts, and to analyze and enhance data (including data about users’ interactions with our service). These Service Providers may have access to your personal or other information in order to provide these functions. In addition, some of the information we request may be collected by third party providers on our behalf. We do not authorize them to use or disclose your personal information except in connection with providing their services.
    •To comply with legal process or to protect Hitpoint Cloud. If we believe that disclosure is reasonably necessary to comply with a law, regulation, legal or governmental request; to enforce applicable terms of use, including investigation of potential violations thereof; to protect the safety, rights, or property of the public, any person, or Hitpoint Cloud as required by law; or to detect, prevent, or otherwise address, security or technical issues or illegal or suspected illegal activities (including fraud).
    •Business Transfers. We may engage in a merger, acquisition, bankruptcy, dissolution, reorganization, or similar transaction or proceeding that involves the transfer of the information described in this Policy. In such transitions, customer information is typically one of the business assets that is transferred or acquired by a third party. In the unlikely event that we or substantially all of our assets are acquired or enter a court proceeding, you acknowledge that such transfers may occur and that your personal information can continue to be used as set forth in this privacy policy.
Storing Your Personal Data/Transfer of Data
This site is operated in China. If you are located in another jurisdiction, please know that your information will be transferred to, stored, and processed in China. By using this site and providing us with information, you consent to this transfer, processing, and storage, of your information in China. It is important to note that the privacy laws in China may not be as comprehensive as those in other countries such as the European Union. Our service providers use appropriate safeguards to transfer your personal data to China, and this is provided for in the Data Protection Agreements with those service providers.
    •We may transfer data that we collect from you to locations outside of our production environment for processing and storing. In addition, it may be processed by staff operating outside China who work for us or for one of our suppliers. For example, such staff may be engaged in the processing and concluding of your order, the processing of your payment details and the provision of support services. By submitting your personal data, you agree to this transfer, storing or processing. We will take all reasonable steps to make sure that your data is treated securely and in agreement with this privacy policy.
    •Data that is provided to us is stored on secure servers. Details relating to any transactions entered into via our site or service providers sites will be encrypted in motion and at rest.
    •The transmission of information via the internet is not completely secure and therefore we cannot guarantee the security of data sent to us electronically and transmission of such data is entirely at your own risk. Where we have given you (or where you have chosen) a password so that you can access certain areas of our site, you are responsible for keeping this password confidential.
For our customers using Hitpoint Cloud products, it is Hitpoint Cloud policy that we do not “sell” (as defined under the California Consumer Protection Act of 2018 (CCPA)) customers data processed in our Hitpoint Cloud system or by any Integration Apps or Connectors, or SuiteApp and its Applications.
Hitpoint Cloud customer’s in process data is always treated as sensitive, and is protected by encryption and the confidentiality clause in the Subscription Service Agreement in all cases. Hitpoint Cloud is not a persistent data repository for the data customers have integrated between their SaaS providers using Hitpoint Cloud integration tools.
Third Party Links
We may have links on our site to other sites that we do not operate. If you click on a third-party link, you will be taken directly to that site which is governed by its own privacy notice. We strongly encourage you to read that privacy notice. We do not control that site and assume no responsibility for the content, policies or its practices.
Choices and Individual Rights
We aim to take reasonable steps, so you can correct, amend, delete or limit the use of your Personal Data. We outline your choices below:
    •E-mail. As described above, if you do not wish to receive promotional e-mails from us, you may opt out at any time. If you opt out of a promotional e-mail, we may still send you transactional and administrative emails about this privacy notice or about the products or services you have purchased.
    •Cookies. Your browser’s help function should contain instructions on how to set your computer to accept all cookies, to notify you when a cookie is issued, or not to receive cookies at any time.
    •Advertising. You can opt out of online targeted advertising by opting out within the advertisement itself or by visiting Digital Advertising Alliance, the Digital Advertising Alliance of Canada in Canada or the European Interactive Digital Advertising Alliance in Europe. You can also opt out of the Digital Advertising Alliance using your mobile device settings.
    •Your rights under certain circumstances. To initiate any of these actions please contact us at info@hitpointcloud.com.
        oTo access and receive a copy of the Personal Data we hold about you
        oTo rectify any Personal Data held about you that is inaccurate
        oTo request the deletion of Personal Data held about you
        oYou have the right to data portability for the information you have provided to us. You can request to obtain a copy of this information in a commonly used electronic format so that you can manage and move it. We will need to verify your identity before being able to respond to such requests. Please note that in some cases, we may not be able to remove your personal information, in which case we will let you know if we are unable to do so and why.
        oTo Opt out of having personal information disclosed to a third party or used for a different purpose than that for which it was provided.
    •Right to Lodge a Complaint. For European Union residents, if you feel that our processing of your personal data infringes on data protection laws, you have a legal right to lodge a complaint with a supervisory authority responsible for data protection. You may do so in the EU member state where you habitually reside, your place of work or the location of the alleged infringement. If you are located outside of the European Union, you may have rights under privacy laws in the jurisdiction where you live.
    •For California Residents – as of Jan 1, 2020:
You have rights as a California resident under the California Consumer Privacy Act of 2018 to:
        oAsk we not sell your data.
            •Hitpoint Cloud does not sell, as defined by the CCPA any consumer information so we do not need or have a “do not Sell my info” button
        oRequest information about what information we hold on you (See above list of categories)
        oRequest information about the specific pieces of personal information we have collected about you.
        oRequest the categories of third parties with whom the business shares personal information. (Partners)
        oHave inaccurate data corrected
        oRequest that Hitpoint Cloud delete any personal information about you which Hitpoint Cloud has collected about you within the limits of the California Consumer Privacy Act of 2018.
        oHave equal service and price, even if you exercise your privacy rights.
Security
We use reasonable administrative, logical, physical and managerial measures to safeguard your personal information against loss, theft and unauthorized access, use and modification. Unfortunately, no measures can be guaranteed to provide 100% security. Accordingly, we cannot guarantee the security of your information.
Sensitive Data
We request that you do not send us any sensitive data such as social security or national identification numbers, information related to racial or ethnic origin, political opinions, religious beliefs, health data, biometrics or genetic, criminal background or trade union membership information. If you do send us this information, then you are consenting to its processing in accordance with this privacy notice. To avoid processing of sensitive data, do not submit it.
Our Policy on Children’s Information
Our site is not directed to children under 16. If you learn that your minor child has provided us with personal information without your consent, please contact us.
Contacting Us
    •We welcome any queries, comments or requests you may have regarding this policy please do not hesitate to contact us at info@hitpointcloud.com
    •If you have questions on information we may hold about you, you may contact us at:
1.    Email our Data protection officer at: info@hitpointcloud.com with the following information:
Name _________________________________
Company _______________________________
Title ___________________________________
Country ________________________________
State of residence ________________________
How to contact you about the request, (Phone or Email, preferably an Email, address)
2.    Call toll-free400 033 9909 and leave a message including:
Name _________________________________
Company _______________________________
Title ___________________________________
Country ________________________________
State of residence ________________________
How to contact you about the request, (Phone or Email, preferably an Email, address)
    •If you would prefer to write to us then our contact address is:
C1401,NO.221,Huangxing Road,Yangpu Area,Shanghai P.R China
Postal code :200090
Phone:400-033-9909

Updated: June 21, 2021

Links:Oracle   |  NetSuite   |  Funacc   |  NetSuite Status
Copyright © 2012-2021 By Hitpoint Cloud Co.,Ltd. All Rights Reserved. ICP:12043419-1