Last updated: 2018-10-12
During a Company or a Finders registration with FindersCrowd platform, or when someone submits their response to a recommendation, they provide information such as company name, e-mail, address, location, telephone and the name of a contact person and other relevant information in order for us to manage the service. This information is used by FindersCrowd to identify contact persons within customer organizations and in FindersCrowd’s platform. We also use the information to enable you to communicate with other parties within FindersCrowd's platform, including but not limited to; sending them messages or other information, to send you service, support and/or administrative messages, reminders, technical notices, updates, security alerts, marketing, promotional messages and other information that may be of interest to you.
FindersCrowd users can at any time access and update their contact information by logging into the FindersCrowd's platform with their username and password. If the user wishes to delete the information, the user must contact FindersCrowd by ordinary mail. Contact information is available on our website finderscrowd.com.
The Company stated in General Terms and Conditions is the legal owner of all personal data collected in any assignment created by The Company and is solely responsible for the data being handled according to applicable rules.
FindersCrowd customers may have access to create several users to their account. The customer is responsible to choose the level of access each user should have and to protect the information by selecting which users within the organization that should be able to access the system. We may keep certain User Personal Information indefinitely, unless you request to delete it. For example, we don’t automatically delete inactive user accounts and unless you choose to delete your account, we might keep your account information indefinitely.
We may pass your personal data to anyone who needs the data in order to fulfill your request for our services, or process any payment. Some of these may be located outside the European Economic Area.
Except as set out above, we will not disclose your personal information unless we are obliged to do so or allowed to do so, by law, or where we need to do so in order to run our business (for instance where we outsource services or other people process data for us). If you would like to know the information we have collected from you contact firstname.lastname@example.org
Our Services are not intended for use by children, and we do not publish content that is targeted to children. If you are a parent or guardian who has discovered that your child has submitted his or her personally identifiable information without your permission or consent, we will make reasonable efforts to remove the information, at your written request. To request the removal of your child's information, please send us an e-mail at email@example.com
Authentication: If you're signed in to your account, cookies help us keep you logged in, show you the right information and personalize your experience.
Preferences, features and services: Cookies can tell us which language you prefer and what your communications preferences are. They can help you fill out forms on our Sites more easily. They also provide you with features, insights, and customized content.
FindersCrowd is dedicated to protecting all customer data using industry best standards. This Security Statement is intended to provide a short transparent view of our security infrastructure and practices to help assure that your data is protected.
SSL/TLS Encryption: All communications with the FindersCrowd website and service are sent over SSL/TLS connections. Secure Sockets Layer (SSL) and Transport Layer Security (TLS) technology (the successor technology to SSL) protect communications by using both server authentication and data encryption. This ensures that user data in transit is safe, secure, and available only to intended recipients.
User Authentication: User data on our database is logically segregated by account-based access rules. User accounts have unique usernames and passwords that must be entered each time a user logs on. FindersCrowd issues a session token only to record encrypted authentication information for the duration of a specific session. The session token does not include the password of the user.
User Passwords: User application passwords have minimum complexity requirements. Passwords are individually salted and hashed.
Data Encryption: Certain sensitive user data, such as account passwords, is stored in encrypted format.
Physical Security, Availability, Network Security, and Storage Security
FindersCrowd uses the Microsoft Azure cloud platform to host its applications. As such, FindersCrowd leverages Microsoft’s cutting-edge security and technology infrastructure. Azure currently meets a broad set of international and industry-specific compliance standards, such as ISO 27001, HIPAA, FedRAMP, SOC 1 and SOC 2, as well as country-specific standards like Australia IRAP, UK G-Cloud, and Singapore MTCS. Rigorous third-party audits, such as by the British Standards Institute, verify Azure’s adherence to the strict security controls these standards mandate. Microsoft has leveraged its decades-long experience building enterprise software and running some of the world’s largest online services to create industry-leading security technologies and practices. These help ensure that Azure infrastructure is resilient to attack and safeguards user access to the Azure environment, and helps keep customer data secure. For more details about the physical security, availability, network security, and storage security provided by Microsoft Azure cloud services, please visit www.microsoft.com/en-us/TrustCenter/Security/default.aspx
Employee Screening: We perform background screening on all employees. Training: We provide security and technology use training for employees. Access: Access controls to sensitive data in our databases, systems and environments are set on a need-to-know / least privilege necessary basis.
Coding Practices: Our engineers use best practices and industry-standard secure coding guidelines to ensure secure coding.
Despite best efforts, no method of transmission over the Internet and no method of electronic storage is perfectly secure. We cannot guarantee absolute security. However, if FindersCrowd learns of a security breach, we will notify affected users so that they can take appropriate protective steps. Our breach notification procedures are consistent with our obligations under various state and federal laws and regulation, as well as any industry rules or standards that we adhere to. Notification procedures include providing email notices or posting a notice on our website if a breach occurs.
Keeping your data secure also depends on you ensuring that you maintain the security of your account by using sufficiently complicated passwords and storing them safely. You should also ensure that you have sufficient security on your own systems, to keep any study data you download to your own computer away from prying eyes.
FindersCrowd may occasionally amend this information; such changes will be notified by changing the last updated section in this document and may also be shown as a welcome message when logging into our site. We encourage our customers to regularly check for any updates to this statement.