Privacy Policy

1. About Us

VIMDRIVE, also referred to as “Us” or “We,” offers Performance Marketing agency services and SaaS (Software as a Service) known as the “Service” under its entity VIMCX. This service empowers businesses to comprehend the interactions of their services with the end-users, understanding how they access or engage with the business. Safeguarding your privacy is a priority for us, and we are dedicated to ensuring its protection.

2. About this Policy

This Privacy Policy, also referred to as the “Policy,” outlines the collection of information (referred to as “Personal Data” or “Personal Information”) directly or indirectly obtained from you through the VIMDRIVE and VIMCX platforms (collectively known as the “Platform”) as part of our Service. It details how we handle, store, transfer, share, gather, organize, utilize, remove, or delete (“Process”) personal data, emphasizing the privacy and security measures implemented on the VIMDRIVE Platform.

In the event that the utilization of your information undergoes any changes, we will furnish you (including Website Visitors, Customers, End Users, Job Applicants/Candidates, Employees – current and former, Contractors, subcontractors, third-party vendors, and visitors to the VIMDRIVE office) with updated information when we engage with you. This communication may occur through various modes, including our website or via email. For any updates or modifications to this Policy, you can refer to our website at https://www.VIMDRIVE.com/. Any information processed is subject to the prevailing privacy policy at the time of its collection.

It’s important to note that this Privacy Policy is exclusive to VIMDRIVE and its entity VIMCX. It does not extend to practices employed by companies not owned or controlled by VIMDRIVE, or individuals not employed or managed by VIMDRIVE. This policy applies universally to all website visitors, end users of our customers, employees – permanent or temporary, as well as all contractors and interns working on behalf of VIMDRIVE.

If VIMDRIVE directly collects information from you, it operates as the Data Controller (defined below). However, if VIMDRIVE receives information from its customers, it functions as a Data Processor (defined below) and processes data in accordance with the instructions provided by the Data Controller. Should you have any inquiries regarding the handling of your Personal Data by VIMDRIVE or wish to exercise your privacy rights, please reach out to us at contact@VIMDRIVE.com.

3. Legal Basis for Processing Your Information

This Policy is applicable globally, irrespective of your place of residence. In this section, we delineate the legal justifications, often termed as “legal basis,” governing the utilization of your Personal Information in relation to our primary processing activities.

It’s important to note: the laws in your country may not mandatorily stipulate a specific legal basis for the utilization of your Personal Information or for transferring it outside your country of residence (e.g., GDPR). If your jurisdiction necessitates consent for processing your Personal Information when engaging with us, we will seek your consent before utilizing such information.

Here, we elucidate VIMDRIVE’s legal grounds for processing your Personal Information:

3.1 Under our contractual agreement with you:

As our customer (upon creating your account) or business partner, we retain and store your personal or professional contact information to facilitate interaction, offer relevant services, manage your user account, and handle administrative or billing matters.

For VIMDRIVE employees, we process and store your personal data as per our employer-employee relationship, governed by the Non-Disclosure Agreement (NDA) and the Privacy Policy signed during onboarding.

3.2 With your prior consent (where permitted or required by law):

We gather information when you navigate our sites, submit queries, or engage with us, typically obtained through cookie consent. Refer to our ‘Cookie Policy’ for detailed information.

We utilize your information in marketing and sales to suggest similar offers, update you on upcoming products, and send newsletters, besides using it for statistical purposes.

In certain cases, depending on your country of residence, we may need your explicit consent, such as when contacting us for queries, becoming a Partner with VIMDRIVE, signing up for our service as a free user, registering for VIMDRIVE webinars, creating a customer account, subscribing to Library Updates for access to newsletters, blogs, Ebooks, reports, guides, videos, podcasts, sharing your Personal Data with Sub-processors outside your country, or using forms and cookies.

For job applicants applying through our careers page, consent is obtained during the application process.

3.3 Based on your legitimate interest:

Your shared interests during referral through the ‘Talent Ambassador Program’ and when sharing details with recruiters via phone calls, LinkedIn, or email are processed under legitimate interests.

4. To adhere to data protection laws and other legal statutes:

In specific cases, we may retain limited Personal Information for longer durations, such as for tax or accounting purposes.

4.1 Withdrawal of Consent:

VIMDRIVE allows data subjects to withdraw their consent easily. The withdrawal process is as accessible as granting consent and involves a simple one-step procedure. We have mechanisms in place to ensure effective exercise of this right:

Data subjects can withdraw consent by completing the ‘Data Subject Rights’ form available on the cookie banner or in the ‘Privacy Settings’ section at the footer of the website. Upon completion, they will receive a ‘Consent Withdrawal Form’ Template to be filled and shared with contact@vimdrive.com.

5. Data Collection

5.1 Data Collection as a Data Controller:

We strictly gather information essential for legitimate business purposes.

In our capacity as a Data Controller, VIMDRIVE collects such data from employees, contractors, vendors, interns, and customers for various reasons, including product demonstrations, marketing endeavours, job vacancies/career Digital Platforms, or other related purposes.

Employee Personal Data is collected through Digital Platforms, forms, intranet Digital Platforms, physical records, interactions with government authorities, vendor interactions, emails, and interviews during the employment process. Additionally, personal information, along with supporting documents, is obtained during VIMDRIVE onboarding and throughout the employment period. We may also acquire personal information directly from publicly accessible databases, social media platforms, or in partnership with our affiliates as needed.

When other VIMDRIVE entities or third parties provide us with Personal Information about you, we ensure compliance with relevant privacy laws and regulations. This involves informing you about the processing of personal data aligned with your legitimate interests and obtaining necessary permissions from you, as outlined in this Privacy Policy.

This information is gathered through various channels during your integration into our organization and throughout our association with you. These channels and practices are detailed in the ‘Employee Privacy Notice’ disseminated during your onboarding.

Data captured through cookies may include analytical insights, timestamped request information, Internet Protocol (IP) addresses, geolocation data, browser details, operating systems, and device IDs. Please refer to our ‘Cookie Policy’ for comprehensive details.

5.2 Data collected as a Data Processor

As a Data Processor, VIMDRIVE and VIMCX offer SaaS (Software as a Service) empowering our clients to comprehend how end users engage, access, and interact with their services. Our clients have the option to gather Personal Data from these end users.

For tailored campaigns, VIMDRIVE extends omnichannel support to clients, providing analytics and allowing them to collect Personal Information like names, email addresses, phone numbers, designations, etc. These details are entirely customizable by the Customer or event organizer.

When a business integrates our tracking code into its Platforms, we access or receive Personally Identifiable Information (PII) such as an End User’s email address, name, and phone number, contingent upon the selections made by the applicable Business through the VIMDRIVE Software Development Kits (SDKs).

Additionally, we access or receive further information about End Users’ activities on Businesses’ Digital Platforms and details regarding their devices, encompassing actions taken on these digital platforms.

It’s crucial to thoroughly review, comprehend, and accept the privacy policies and terms of use of the Businesses employing the VIMDRIVE Service. By utilizing our Service, you explicitly absolve VIMDRIVE from any liability arising from your use of the Businesses’ services. We analyse and utilize this information to offer and enhance the VIMDRIVE Service.

VIMDRIVE collects information under the guidance of our Businesses and doesn’t directly interact with the End Users whose personal data it processes. If you are a customer of one of our Businesses and prefer not to receive further communication from a Business utilizing the VIMDRIVE Service, kindly reach out to the Business directly. Should the Business fail to respond to your request within 30 days, you may contact us regarding your request at contact@VIMDRIVE.com.

6. Information Related to Use of the Platform

We automatically collect specific information and retain it in log files. This data may encompass Internet Protocol (IP) addresses, browser types, Internet Service Providers (ISPs), referring/exit pages, operating systems, timestamps, and/or clickstream data. We might merge this automatically gathered log data with other information gathered about you. Our objective in doing so is to enhance the services we provide to you, improve marketing strategies, refine analytics, and enhance site functionality.

6.1 For Businesses

6.1.1 Why do we collect information from Businesses?

We collect and use information from Businesses to provide our Service, improve our Service, administer your Account, and personalize the End User experience.

6.1.2 Personal Information

When you, as a Digital Platform, create an Account or when you request information about the VIMDRIVE Service, we’ll collect certain information that can be used to identify you, such as your name and email address (“PII”). We may also collect information that cannot be used to identify you, such as Account preferences.

6.2 For End Users Data

6.2.1 Communications

Businesses are able to send you, the End Users, push notifications, thought In-apps, or email communications through the VIMDRIVE Service.

6.2.2 Opt-Out

An End User who seeks to opt out must direct their query to their Business (Data Controller). The Businesses may then request us to opt out of the said End User’s data, which we shall do so within 1 calendar month. Alternatively, the End User may contact us directly, by sending opt-out requests to contact@VIMDRIVE.com, which we will then share with our customer (the Business).

6.3 For End Users and Businesses

VIMDRIVE uses “cookies,” which are small text files that are placed by web servers and used to remember your preferences and settings.

We may receive reports based on the use of these technologies on an individual as well as aggregated basis. You can change your browser settings to stop accepting cookies or to prompt you before accepting a cookie from the websites you visit. If your browser does not accept cookies, you may not be able to easily access all aspects of our Service. Please refer to the ‘Cookie Policy’ for more details on how we use cookies and other web tracking technologies.

6.4 Opting-Out

Our partners may use non-cookie technologies (web tracking technologies) such as pixel tags, that may not be impacted by browser settings that block cookies. Your browser may not permit you to block such technologies. For this reason, you can use the following third-party tools to decline the collection and use of information for the purpose of serving you interest-based advertising:

7. Sharing and Disclosure of Information

7.1 Information Shared with our Subsidiaries

We shall transfer your PII to our subsidiary e.g. VIMCX to provide you with better service or for troubleshooting purposes. Our subsidiary is bound by the principles of Standard Contractual Clauses and the obligations under this Privacy Policy. If you have any questions or concerns related to the transfer of PII to our Indian subsidiary, you contact us at contact@VIMDRIVE.com.

7.2 Information Shared with our Service Providers or Sub-Processors

We may engage third-party Service Providers or Sub-processors to work with us to administer and provide the VIMDRIVE Service such as sending you emails, storing data, etc. These third-party Service Providers have access to PII only for the purpose of performing the VIMDRIVE Service on our behalf and are expressly obligated not to disclose or use your PII for any other purpose.

The End Users may reach us at contact@VIMDRIVE.com if they require further information about the third-party Service Provider, the services that they are providing, or their privacy policy.

7.3 Information Shared with Third Parties

We may share aggregated information and non-identifying information with third parties for industry analysis, demographic profiling, and other similar purposes. We will not share the End User PII collected from one Business with third parties.

We may share and disclose Personal Data to the following types of third parties and for the following purposes:

To customers – We may disclose information to our customers in the form of aggregated, anonymous data about the way the Services have been used to enable us to provide and improve our Services, to provide strategic advice to our customers, and to further and enhance our role as a thought leader in the industry;

To vendors, consultants, and other service providers – We may disclose information to third-party vendors, consultants, business partners, and other service providers in connection with our marketing efforts, or in connection with our general business purposes;

To comply with laws – We may disclose information to a third party where we are legally required to do so in order to comply with any applicable law, regulation, legal process, or governmental request;

To protect our legal rights – We may also disclose information where we believe it necessary in order to protect or exercise, establish or defend our legal rights;

Business transfers – We may share or transfer information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company;

To provide our Services – We use sub-processors in our provision of the VIMDRIVE Services to our customers, such as third-party hosting providers and third-party database support services. Some of these third-party sub-processors may have logical access to data about you, but in all cases, any sub-processor to whom we disclose any information will be subject to a written agreement containing confidentiality protections designed to protect any Personal Data that is shared with them;

To manage events – If you use our Website to register for an event or webinar organized by one of our partners who may be a co-sponsor of the event, we may share your Personal Data with the co-sponsor to the extent this is required to process your registration and ensure your participation in the event; in such instances, our co-sponsor will process the relevant Personal Data as a separate controller and the sponsor’s use and the control over your Personal Data will be governed by the sponsor’s privacy policy;

To advisors – In individual instances, we may share Personal Data with professional advisers acting as processors or joint controllers, including lawyers, bankers, auditors, and insurers based in countries in which we operate, who provide consultancy, banking, legal, insurance, and accounting services, but only to the extent we are legally obliged to share or have a legitimate interest in sharing your Personal Data;

To affiliates – We may share Personal Data with affiliates within the VIMDRIVE group and companies that we may acquire in the future when they are made part of the VIMDRIVE group, to the extent such sharing of data is necessary to fulfill a request you have submitted via our Website or for customer support, marketing, technical operations or account management purposes; and

Publicly shared data – Any Personal Data or other information you choose to submit in communities, forums, blogs, forms or chat rooms on our Website may be read, collected, and used by others who visit these forums, depending on your account settings.

7.4 Information Disclosed for our Protection and the Protection of Others

It is our policy to protect Businesses and End Users from having their privacy violated through abuse of the legal systems, whether by individuals, entities or government and to contest claims that we believe to be invalid under applicable law. However, it is also our policy to cooperate with government and law enforcement officials and private parties. Accordingly, we reserve the right to disclose any information about Businesses or End Users to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary:

to satisfy or comply with any law, regulation or legal process or to respond to lawful requests, including subpoenas, warrants or court orders;

to protect our property, rights and safety and the rights, property and safety of third parties or the public in general; and

to prevent or stop activity we consider to be illegal or unethical. We also may be required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.

We also may be required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.

8. Cross-border Data Transfers

Transferring of personal data out of the European Economic Area (EEA) or US to countries not deemed by the European Commission or US State Laws to provide an adequate level of personal information protection, shall be governed by one of the following safeguards recognized by EU & US data protection legislation respectively.

 

Kindly note that VIMDRIVE will follow appropriate level of protection and deploy all necessary safeguards for transfer of such data that constitutes confidential information and/or Personal Data, additionally such transfers, to any country(s) which do not ensure an adequate level of data protection, VIMDRIVE will ensure that the transfer is through one of the following mechanisms:

In accordance with the EU-US Data Privacy Framework

Data Processing Agreements (DPAs) with Standard Contractual Clauses (SCCs) approved by the European Commission who impose data protection obligations on the parties to the transfer.

For further details, see European Commission Model contracts for the transfer of personal information to third countries. The entity receiving the personal data shall comply with the principles of personal data processing set forth in the agreement.

9. Personal Data Protection:

We take reasonable steps to safeguard the information collected from Businesses or End Users (including PII) from unauthorized access, use, or disclosure. When sensitive information, like login credentials, is entered into our forms, we encrypt the transmission using secure socket layer technology (SSL). However, please note that no method of transmitting or storing information over the Internet is entirely foolproof. Hence, we cannot guarantee absolute security. Should there be any legally required disclosures of breach in security, confidentiality, or integrity of unencrypted electronically stored “personal data,” we will notify affected parties via email or conspicuous posting on our Platform in the shortest possible time, balancing law enforcement needs and measures necessary for system restoration.

Should you suspect security issues, receive suspicious emails purportedly from VIMDRIVE employees, or encounter fake websites claiming affiliation with us, please contact us at contact@vimdrive.com.

10. Privacy by Design:

We’ve integrated a process to embed privacy proactively during initial planning and throughout the development of new processes, services, technologies, or platforms involving Personal Data Processing. We’ve considered technical and organizational measures like optional data masking, encryption, and data minimization to enhance privacy.

Moreover, we ensure that Personal Data collected or processed is adequate, relevant, and limited to the necessary purposes.

11. Links to Other Sites:

Our Service may feature links to other websites and services. Any information provided on or to a third-party website or service is subject to that party’s privacy policy. Our Privacy Policy doesn’t apply to these external sites or services, and we are not liable for their content, privacy, or security practices. We recommend thorough review of the privacy policies of other accessed websites and services.

12. Social Media Features:

Our Platform includes Social Media Features like Facebook buttons and widgets such as the “Share” button. These features may gather your IP address and page visits, possibly setting a cookie for proper functionality. Social Media Features can be hosted by a third party or directly on our Platform, governed by the providing company’s privacy policy.

13. Our Policy Toward Children:

Our Service isn’t aimed at children under 13, and VIMDRIVE users must not be under 13. We don’t target any part of our service to children under 13, and we’ll delete accounts or data of users we believe are under 13, adhering to the Children’s Online Privacy Protection Act. If a parent or guardian discovers their child has provided us with personally identifiable information without consent, please contact us at contact@vimdrive.com.

14. Your Rights

14.1 Handling of Data Subject Rights as a Data Processor by using APIs

VIMDRIVE processes the Personal Data of End Users on behalf of our Customers (Businesses) and operates as a Data Processor for these Businesses, acting as the Data Controller. When functioning as a Data Processor, VIMDRIVE handles Personal Data as directed by the Customers and does not directly control or own the processed Personal Data. The responsibility for compliance with regulations or laws, including notice, disclosure, or obtaining consent before transferring data to VIMDRIVE for further processing, rests with the Customers.

Attendees of an event seeking access, correction, or deletion of their data should contact the Customer directly. VIMDRIVE supports Customers in handling data subject requests received by them through respective APIs. For detailed information on how we manage data subject requests shared by the Customer, please refer to the Developer Guide.

Should the Customer request VIMDRIVE to delete, rectify, or access an Attendee’s Personal Data to comply with Applicable Data Protection Laws, VIMDRIVE will process this request within the necessary timeframe under the Applicable Data Protection Laws using appropriate APIs.

14.1.1 For End Users:

As a service provider handling data on behalf of Businesses, any requests from European Users to exercise their rights under the European General Data Protection Regulation (“GDPR”)—including access, rectification, erasure, or restriction—must be channelled to VIMDRIVE through the Business. Businesses can directly inform VIMDRIVE about these requests. For further details, please refer to this article.

Additionally, VIMDRIVE facilitates functionalities enabling Businesses to adhere to specific controls concerning User data privacy rights. Businesses can utilize the VIMDRIVE SDK to mark that a particular User has requested the cessation of their data processing by VIMDRIVE. In such cases, VIMDRIVE will discontinue processing engagement data on behalf of the Business for that specific User.

14.1.2 For Businesses:

Businesses using the VIMDRIVE Service and residing within the European Union have the right to request confirmation of VIMDRIVE processing their data, access to this information, or the ability to request rectification, deletion, or restriction of this data processing. For any such requests, please reach out to us via email at contact@vimdrive.com.

Please note that VIMDRIVE will refrain from processing a Data Subject request that aims to alter information leading to inaccuracies, fraudulence, misrepresentation, or violations of any law or legal statute. In such cases, we will notify the Customer about the legal obligations preventing us from fulfilling the request.

14.2 Handling of Data Subject Rights as a Data Controller:

For VIMDRIVE employees, candidates, and visitors of the VIMDRIVE website, VIMDRIVE Inc. is the controller of your personal information for purposes of European data protection legislation.

Data Privacy and data protection laws give you certain rights regarding your personal information. You may ask us to take the following actions in relation to the personal information that we hold as a Data Controller –

Access: To provide the personal information we hold for you

Rectify: To rectify the incorrect personal information, we are holding for you

Delete: To erase the personal information.

Transfer: Send a machine-readable copy of your personal information to you or a third party of your choice.

Restrict: To restrict the processing of your personal information.

Object: To object the processing of your personal information

Opt-out: Once you opt-out, we shall stop sending you direct marketing communications. You may continue to receive Service-related and other non-marketing emails.

Data Subjects can opt-out or withdraw their consent by filling the ‘Data Subject Rights’ form available on the cookie banner or in the ‘Privacy Settings’ section at the footer of the website. The Data Subject will then be shared with a ‘Consent Withdrawal Form’ Template which needs to be filled and shared to contact@vimdrive.com.

VIMDRIVE shall record any request to withdraw or change consent in a similar way to the recording of the consent itself.

14.3 Exercising your Rights

You can submit your data subject rights requests by email to contact@vimdrive.com. We may require some information to authenticate your request. We may reject your request as applicable under law in which case we will inform you of the legal basis for rejecting your request. Once we receive your request, we shall acknowledge your request and share the appropriate form/template, which you need to fill and share it to us on contact@vimdrive.com. If you would like to submit a complaint about our use of your personal information or response to your requests regarding your personal information, you may contact us at contact@vimdrive.com.

14.4 Use for a new purpose:

We may use your personal information for reasons not described in this Privacy Policy where permitted by law and the reason is compatible with the purpose for which we collected it. If we need to use your personal information for an unrelated purpose, we will notify you and explain the applicable legal basis.

15. Response Timing

We endeavour to respond to a verifiable consumer request within 1 calendar month of its receipt. If we require more time (more than 1 calendar month), we will inform you of the reason and extension period in writing. If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option.

16. Data Retention

We will only retain your personal information for as long as necessary to fulfil the purposes we collected it for Legal and regulatory retention requirements may include retaining information for the following:

Audit and accounting purposes

Statutory data retention terms

The handling of disputes

and the establishment, exercise, or defense of legal claims in countries where we do business.

We retain any contractual relationship information for administrative purposes, legal and regulatory retention requirements, defending VIMDRIVE rights, and to manage VIMDRIVE’s relationship with you. The information that is provided in a supplementary privacy policy may provide more detailed information on applicable data retention terms.

17. Processing of Personal Data & Sensitive Personal Data

Depending on your use/interaction with us, we may collect/store/transfer/analyse/delete the following categories of Personal Information from you including but not limited to Name, Email ID, Phone Number, Company Name, etc.

As a Data Controller, VIMDRIVE does not collect any sensitive personal data (e.g. credit card data). As a Data Processor, if the Business collects any sensitive personal data such as financial and/or health information and shares it with us, it is up to the Business’s discretion, and they shall ensure to provide applicable safeguards in line with their privacy policy.

18. Response to Personal Data Breach Incidents

When we learn of a suspected or actual personal data breach, the Data Protection Officer (DPO) shall lead the investigation along with the Data Privacy team and Information Security team to perform an internal investigation and take appropriate remedial measures in a timely manner, according to the Data Breach Reporting and Notification Policy. Where there is any risk to the rights and freedoms of data subjects, we will notify the relevant data protection authorities/EU representative without undue delay and, when possible, within 72 hours.

These cases shall be managed based on the Information Security Incident Response Procedure & Data Breach Management procedure, which provides the process of handling information security & privacy incidents.

19. Audit and Accountability

The Data Privacy team is responsible for auditing how well business departments implement this Policy.

Any employee who violates this Policy will be subject to disciplinary action and the employee may also be subject to civil or criminal liabilities if his or her conduct violates laws or regulations.

20. Cookies

The VIMDRIVE Website utilizes “cookies,” small text files containing unique identifiers transferred to your computer via your web browser, either by us, our partners, or third-party analytics providers. These cookies aid in comprehending our visitors’ interests, allowing us to enhance our services and website functionality.

We employ cookies to recognize your browser, track your navigation on our website, and monitor entry points to registration forms—such as blog or newsletter subscriptions, or mailing campaigns—to assess the effectiveness of specific marketing endeavours. VIMDRIVE uses Google Analytics to monitor the performance of particular marketing campaigns and within select products. This enables third-party service providers to tailor advertisements across various touchpoints on our behalf. These service providers may collect your IP address and non-personally identifiable information, excluding personal or contact details.

These cookies offer statistical insights into our website usage and its performance. You have the option to block cookies by adjusting settings in your internet browser or declining our website’s cookies upon entry.

21. Legal Notice

VIMDRIVE may need to disclose personal information to legal authorities for compliance, fraud investigation, statutory purposes or for other legal activities as per the local laws and government request.

22. Contact Us

We provide easily accessible information via our Platform or on request. If You have any questions or requests related to this Policy or Your Personal Information, please contact us at the following contact details: contact@vimdrive.com if you have any questions about our Privacy Policy.

23. Changes to this Privacy Policy

We may update this Policy from time to time. You are advised to review the updated Policy periodically for any changes. Changes to this Policy are effective when they are posted on this page and any modifications can be ascertained by referring to the date that is displayed at the top of the page marked as, “ Last updated”.