PractiTest Privacy Policy

We, at H.S. PractiTest Ltd. (“PractiTest, we, our or us”), are committed to respecting our customers’ and their users’ privacy, protecting their personal information and making sure it is used properly by us.

PractiTest provides this Privacy Policy to inform you of our policies and procedures regarding the collection, use and disclosure of personal information we receive when you visit www.practitest.com (including any subdomains of this site or other sites owned by or operated on behalf of PractiTest, (the “Site”) and when you use any part of our services or software via our Site or otherwise (collectively, the “Services”).

This Policy applies only to information that you provide to us through the Site or the Services or when you access or use any content appearing on the Site or made available through the Services, or that we collect on your behalf as part of the Services.

This Privacy Policy explains our privacy practices for processing personal information on our web site and services. We process personal information as described in this Policy.

You can access our full Privacy Policy below to help you understand how we use your personal information. In it, we explain in more detail the types of personal information we collect, how we collect it, the legal basis of collection, what we may use it for, who we may share it with, what our retention periods and are and what are your rights in relation to the personal information we collect.

Within the Privacy Policy you will find some specific examples of why and how we use your personal information. If you have further questions please contact legal@practitest.com.

1. When does this Privacy Policy apply

This Privacy Policy concerns the following categories of information that we collect when providing the Services:

  1. Personal Information about you that we collect when you visit our Site;
  2. Personal Information about you, including your representatives, that we collect, use, or otherwise process regarding your relationship with us as a customer or potential customer;
  3. Personal Information we receive through the Services, if and to the extent that we will have access to such information for the purpose of providing the Services and/or such information will be stored with us or on our behalf (for example, where we provide our customers with cloud services).
  4. Non-Personal Information provided to us or received by us in the framework and in connection with the Services.

2. This Privacy Policy does not apply to our services that have separate privacy policy that do not adopt this Policy

3. The Information that we Collect

Personal Information that you provide us

In order to enable your use of the Services, we will ask you to provide us with certain personal information that can be used to contact or identify you and administer your account. Such personal information may include, but is not limited to, your name, company name, email address, role, password, telephone number and your time zone.

Personal Information that we collect or generate

In addition to the information you provide to us, we may collect additional personal information. This includes but is not limited to: your contact history when you, or someone on your behalf, contacts us; your password for using the Services; your IP address usually at the first time user log in and accept our Service Terms and Conditions.

If you visit our Site, whether or not you are a registered account user, we use common internet technologies, such as first party cookies and web server logs (apache) and regular logs of our application (rails). In addition we use logs about business usage. The information we collect about all visitors to our Site includes, but is not limited to, the visitor's browser type, language preference, referring site, the date and time of each visitor request, and the IP address.
We also collect statistics usage about users of our Services, such as what function they used in the Services, how many times, etc.

Cookies

We use “cookies” to collect information, including your computer’s Internet Protocol address or your time zone. A cookie is a small data file that we transfer to your computer’s hard disk for record-keeping purposes. We use “persistent cookies”, which are stored on your device even after termination of a browsing session, to save your username and login credentials for future logins to the Site. We use “session cookies”, which remain only as long as a browsing session is active, to enable certain features of the Service, to better understand how you interact with the Services and to monitor web traffic routing on the Site and aggregate usage of the Services. You can instruct your browser, by changing its options, to stop accepting cookies or to prompt you before accepting a cookie from the website you visit. If you do not accept cookies, however, you may not be able to use all portions of the Site or all functionality of the Services.

In addition to the categories of personal information described above, we will also process further anonymized information and data that is not processed by reference to a specific individual. When you access the Site or use the Services, we may collect the following:

Anonymized Information:

In addition to the categories of personal information described above, we will also process further anonymized information and data that is not processed by reference to a specific individual. When you access the Site or use the Services, we may collect the following:

- Information that your browser sends whenever you visit the Site or Services (“Log Data”). This Log Data may include, but is not limited to, your browser type, the web page you were visiting before you came to the Site and information you search for on the Site;

- When using Services, you may upload or input content into the Services that in under your control, including but not limited to: software test definitions, requirements, test Sets, tests results, tests scripts, issues encountered during tests. Such content is not intended to include personal information.

We may present links in a format that enables us to keep track of whether these links have been followed.

Links to Other Websites:

We may present links in a format that enables us to keep track of whether these links have been followed.

This Policy applies only to the Services. We do not exercise control over websites that provide information, or over banners, other advertisements or links from within the Site or the Services. These other sites may place their own cookies or other files on your computer, collect data or solicit personal information from you. Other websites follow different rules regarding the use or disclosure of the personal information that you submit. We encourage you to read the privacy policies and other terms of the other websites.

Third Party Sites:

This Policy applies only to the Services. We do not exercise control over websites that provide information, or over banners, other advertisements or links from within the Site or the Services. These other sites may place their own cookies or other files on your computer, collect data or solicit personal information from you. Other websites follow different rules regarding the use or disclosure of the personal information that you submit. We encourage you to read the privacy policies and other terms of the other websites.

4. How We Use Personal Information

Personal information is used for the following purposes: (i) to provide the Services, (ii) to administer your use of the Services and any accounts you may have with us, (iii) to personalize your experience, (iv) to provide to you service announcements, (v) to enforce our Terms and Conditions, policies and other contractual arrangements, to comply with court orders and warrants, and prevent misuse of the Services, and to take any action in any legal dispute and proceeding, (vi) to resolve any disputes between users of the Site or customers and us, (vii) for the technical administration and troubleshooting of the Services and to provide support and maintain the Services, (viii) communicate with you and contact you to obtain feedback from you regarding the Services; (ix) to better understand our potential customers and to monitor and protect the security of the Site, (x) disclose to third party vendors, service providers, contractors or agents who perform functions on our behalf with respect to the Services; (xi) enable the Service’s tools and features, and (xii) as otherwise authorized by you.

We may use your email address to contact you when necessary, including in order to send you reminders, offers and to provide you information and notices about the Services. Note that we may include commercial, advertising and marketing information, whether by email, SMS, fax or other communication means, subject to receiving your prior written consent (if required under applicable law). If you decide at any time that you no longer wish to receive such marketing announcements, information or offers, please follow the unsubscribe instructions provided in the communication to opt out. We use anonymous information for the above purposes and in addition, in order to (i) monitor and analyze use of the Services and for the technical administration of the Site, (ii) improve the Site and the Services, (iii) generate and derive useful data and information concerning the interests, characteristics and website use behavior of our users, and (iv) for legitimate business purposes including for testing, development, improvement, control and operation of the Services.

5. Information Sharing and Disclosure

We may share aggregated information generated as a result of your use of the Services, with third parties for industry analysis, demographic profiling, other commercial purposes and to deliver targeted advertising about other products and services. Any aggregated information shared in these contexts will not contain your personal information.

Anonymous Information

We may share aggregated information generated as a result of your use of the Services, with third parties for industry analysis, demographic profiling, other commercial purposes and to deliver targeted advertising about other products and services. Any aggregated information shared in these contexts will not contain your personal information.

We may employ third party companies and individuals to facilitate the Services, to provide the Services on our behalf and to perform services related to administration of the Services or the Site (including, without limitation, bill and credit card payment processing, maintenance, hosting and database management services and administration). These third parties have access to your personal information only to perform these tasks on our behalf and are obligated to comply with this Policy.

Service Providers

We may employ third party companies and individuals to facilitate the Services, to provide the Services on our behalf and to perform services related to administration of the Services or the Site (including, without limitation, bill and credit card payment processing, maintenance, hosting and database management services and administration). These third parties have access to your personal information only to perform these tasks on our behalf and are obligated to comply with this Policy.

We cooperate with government and law enforcement officials and private parties to enforce and comply with the law. We will disclose any information about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate to respond to claims and legal process (including but not limited to subpoenas), to protect our or a third party – property and rights, to protect the safety of the public or any person, or to prevent or stop any activity we may consider to be, or to pose a risk of being, illegal, unethical, inappropriate or legally actionable.

Compliance with Laws and Law Enforcement

We cooperate with government and law enforcement officials and private parties to enforce and comply with the law. We will disclose any information about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate to respond to claims and legal process (including but not limited to subpoenas), to protect our or a third party – property and rights, to protect the safety of the public or any person, or to prevent or stop any activity we may consider to be, or to pose a risk of being, illegal, unethical, inappropriate or legally actionable.

We may transfer or otherwise share some or all of our assets, including among others your personal information and anonymous information, in connection with a merger, acquisition, reorganization or sale of all or substantially all of our shares or assets, or in the event of our bankruptcy.

Business Transfers

We may transfer or otherwise share some or all of our assets, including among others your personal information and anonymous information, in connection with a merger, acquisition, reorganization or sale of all or substantially all of our shares or assets, or in the event of our bankruptcy.

6. Legal Basis for use of the information

We will only process personal information where we have a legal basis to do so. The legal basis will depend on the reason or reasons we collected and need to use your personal information. In almost all cases the legal basis will be:

a) To provide the Services and otherwise perform our agreement we have with you.

b) There is a legitimate interest to use the personal information in relation to our Services.

c) To comply with a legal obligation.

d) Because you consented to us using the personal information for a particular purpose.

More information on each legal basis is provided below.
More information on the basis of processing:

a) Processing personal information is required for performing an agreement to which you are a party and rendering the Services or in order to take steps at your request before entering an agreement, for example:  (1) We must process your user’s personal information collected by the Services in order to create your account; (2) We need information about your user’s e-mail in order to send Service notices.

b) Processing the personal information is required for fulfilling our or a third party’s legitimate interests, for example:  (1) we retain historical information about you and the users to defend ourselves in legal procedures; (2) we collect information about use of our Site in order to identify and prevent its abuse; (3) we record conversations with customers calling the Customer Service Centre in order to monitor and improve service quality provided by the Centre.

c) Processing the personal information is necessary in order to fulfil a legal obligation that applies to us, for example:  for some services we may need to obtain a governmental license in certain jurisdictions, and collecting certain personal information may be required for that purpose.

d) You consent to the processing of personal information for one or more specific purposes, for example: to the extent that you consent, we will send you newsletters with updates. In cases where the legal basis for processing personal information is your or your users’ consent, you and your user have the right at any time to withdraw the consent given to process personal information by sending an email to the following email address: legal@practitest.com. It is hereby clarified that if you or your users withdraw consent as noted, it is possible that we will not be able to provide you with some of the Services you ordered or to provide them in the manner intended, and you accept such outcome.

It is hereby clarified that the legal bases detailed above are the legal bases for actions to process personal information, carried out by us in accordance with the GDPR. If processing of personal information is subject to other applicable laws, then the legal basis for processing personal information may differ according to those applicable laws.

7. Your Rights

In all of the above cases in which we collect, use or store your personal information, you may have the following rights and, in most cases, you can exercise them free of charge. At any time, you may contact us at: legal@practitest.com and request to know what personal information we keep about you. We will make good-faith efforts to locate the data that you request to access. Under your right of access, you may obtain confirmation from us of whether we are processing personal data related to you, receive a copy of that data, so that you could verify its accuracy and the lawfulness of its processing, and if entitled under the applicable law – also request the correction, amendment or deletion of the data if it is inaccurate, incomplete, outdated or processed in violation of applicable law.

However, we may retain certain information as deemed required by us in accordance with applicable laws, or for legitimate business reasons, for the duration as required under applicable laws. In addition, we may delete any personal information pursuant to our policies as then in effect. When you ask us to exercise any of your rights under this Policy and the applicable law, we may need to ask you to provide us certain credentials to make sure that you are who you claim you are, to avoid disclosure to you of personal information related to others and to ask you questions to better understand the nature and scope of data that you request to access. We may redact from the data which we will make available to you, any personal information related to others.

8. Security

We are concerned with safeguarding your information. We employ a variety of measures (such as reasonable physical, technical and organizational measures, administrative processes and technical audits) designed to protect your personal information from damages, loss, unauthorized access or use and disclosure. These measures provide sound industry standard security. However, although we make efforts to protect your privacy, we cannot guarantee that the Services will be immune from any wrongdoings, malfunctions, unlawful interceptions or access, or other kinds of abuse and misuse.

You should take steps to protect against unauthorized access to your password, phone, and computer by, among other things, signing off after using a shared computer, choosing a robust password that nobody else knows or can easily guess, and keeping your log-in and password private. In addition, you should take steps to protect against unauthorized access to personal information stored on your premises as well as defining limited access rights to such information on a need to know basis. If you receive an e-mail asking you to update your personal information, do not reply and please contact us at legal@practitest.com.

9. Data Retention

We retain different types of information for different periods, depending on the purposes for processing the information, our legitimate business purposes as well as pursuant to legal requirements under the applicable law. We may retain personal information for as long as necessary to support the collection and the use purposes of this Policy and for other legitimate business purposes, For example, for storing information for documentation, for managing internet security for legal proceeding and for text purposes. We may store non-personal aggregate information without time limit. In any event as long as you use the Services, we will retain information about you, unless we are legally required to delete it, or if you seek to exercise your rights to delete the information.

10. International Processing or Transfer

If we use third party providers for certain services, your information may be stored, processed, maintained or transferred outside of your state, where the privacy laws may not be as protective as those in your jurisdiction. If you are located in a jurisdiction where transfer of your personal information to another jurisdiction requires your consent, then you provide us your express and unambiguous consent to such transfer or the storage, processing or maintenance of the information in other jurisdictions by using the Services. By using the Services you also confirm that you have obtained the required consents from your users.

Where the GDPR applies and we transfer personal information to another country outside the European Union, we will ensure that it is protected and transferred in a manner consistent with legal requirements. In relation to data being transferred outside of Europe, for example, this may be done in one of the following ways: to a country approved as offering an adequate level of protection; to a recipient that has signed up to a contract based on “model contractual clauses”; where the recipient is located in the US and is certified under the EU-US Privacy Shield; in other circumstances that the law may permit us to otherwise transfer your personal information outside Europe.

11. Our Policy Towards Children

If you are under the age of 16, you may not use our Services. We do not knowingly collect personal information from minors under the age of 16. Insofar as personal information may be collected based on your consent, the data subject must be above the age of 16 (or above the age of 13 if this is the legal requirement in your country). If these age requirements are not met, you are required to obtain the consent of the parent or guardian to provide and process information in accordance with this Policy; lacking such consent, we will not supply you with Services. If we become aware that a minor has provided us with personal information, we will delete such information as soon as possible.

12. Changes to this Privacy Policy

This Policy may be amended or updated from time to time. If we make any material changes to this Policy, we will post a notice of these changes on the Site and in this Policy. Material changes will be effective thirty (30) days after the notice was initially posted; all other changes will be effective seven (7) days after the notice was initially posted. You are advised to consult this Policy regularly for any changes. If you would like to be notified by email if and when material changes are made to this Policy, please send an email to legal@practitest.com.

Your continued use of the Services following such notice shall constitute your consent to any changes made and a waiver of any claim or demand in relation to such changes. If you do not agree to the new or different terms, you should not use and are free to discontinue using the Services.

13. Applicable Law and Dispute Resolution

This Privacy Policy shall be governed by and construed in accordance with the laws of the state of Israel, excluding its choice of law principals. Disputes arising in connection with this Privacy Policy shall be subject to the exclusive jurisdiction of the competent courts in Tel-Aviv, Israel.

14. Contacting Us

If you have any concerns or questions about this Policy, please contact us at legal@practitest.com. We work hard to handle your information responsibly. If you are unhappy about the way we do this, please contact us and we will make good-faith efforts to address your concerns.

Copyright © 2018, H.S. PractiTest Ltd.. All rights reserved.
Last Updated: August 23, 2018