Privacy Policy

Rev. K

Published: Apr 24, 2024

This Privacy Policy sets forth the information gathering, use, and dissemination practices of eKare Inc., with respect to www.ekareinc.com and its affiliated web pages, sites, and mobile applications. This privacy policy has been compiled to better serve those who are concerned with how their Personal Information is being used online.

“Personal Information” is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Please read our privacy policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personally Identifiable Information.

“Sensitive Personal Information” includes data about racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union memberships, genetic and biometric data when used for identification purposes, and data about health, sex life, and sexual orientation.

 

Scope

This Privacy Statement applies to the information that we obtain through your use of eKare products and services, including our website (https://ekare.ai), our web and mobile-based tools, social media, communications (collectively, our “Services”). For a current list of the Services and vendors covered by this Privacy Statement, see our Subvendor Directory.

 

Types of Personal Information that We Collect

  • Names
  • Physical address
  • Email addresses
  • Telephone numbers
  • Demographic information
  • Business contact information, including names, email addresses, business addresses, telephone numbers, company name or business affiliation, and title.
  • Identifiers of devices used to access our Services

 

Information that We Collect from and About You

Information that You Provide to Us Voluntarily

Account and Profile Information: We collect information about you when you register for an account, create, or modify your profile. Information we collect includes your name, address, email address, and phone number. You may provide this information directly through our Services or in some cases another user (such as an account administrator) creating an account on your behalf may provide it. If you provide information (including personal information) about someone else, you confirm that you have the authority to act for them and to consent to the collection and use of their personal information as described in this Privacy Policy.

Content: We collect and store content that you create, input, submit, post, upload, transmit, or store while using our Services. Such content may include any personal or other sensitive information submitted using our Services, such as HIPAA protected health information, GDPR sensitive data, and other information such as regulatory compliance materials.

Other submissions: We collect other data that you may submit to our Services or to us directly, such as when you request customer support or communicate with us via email or social media sites.

Information that We Collect Automatically When You Use Our Services

Web Logs and Analytics Information: We record certain information and store it in log files when you interact with our Services. This information may include Internet protocol (IP) or other device addresses or ID numbers as well as browser type, Internet service provider, URLs of referring/exit pages, operating system, date/time stamp, information that you search for, your locale and language preferences, your mobile carrier, and system configuration information. We and our analytics providers, also collect and store analytics information when you use our Services to help us improve our Services.

Cookies and Other Tracking Technologies: We use various technologies to collect information, including cookies that we save to your computer or mobile device. Cookies are small data files stored on your hard drive or in device memory. We use cookies to improve and customize our Services and your experience; to allow you to access and use the Services without re-entering your username or password; and to count visits and understand which areas and features of the Services are most popular. We may also associate the information we store in cookies with personal information you submit while on our Services. You can instruct your browser, by changing its options, to stop accepting cookies or to prompt you before accepting a cookie from websites you visit. If you do not accept cookies, however, you may not be able to use all aspects of our Services.

The following categories might be used on our websites and other online services:

Category 1 — Strictly Necessary Cookies:

These cookies are indispensable for browsing the website and utilizing its features, such as accessing secure areas of the site. Typically, these cookies are first-party session cookies. Without them, services like shopping baskets and e-billing cannot be provided.

Category 2 — Performance Cookies:

These cookies gather information about how you use our websites, such as which pages you visit most frequently. This data helps optimize our websites and enhance their navigational ease. Additionally, these cookies inform affiliates whether you accessed our websites through them and if your visit resulted in the use or purchase of our products or services. However, they do not gather personally identifiable information. All data collected by these cookies is aggregated and therefore anonymous.

Category 3 — Functionality Cookies:

These cookies enable a website to recall your past choices, such as language preferences, desired weather report regions, or your username and password for automatic login.

Information that We Collect from Other Sources

Information provided by other individuals: While using our Services, individuals may provide information about another individual, or an authorized user (such as an account administrator) creating an account on your behalf may provide information about You. When one individual provides us with information (including personal information) about another individual, we assume that the individual has permission and authority to do so and to consent on behalf of that individual to the collection and use of personal information as described in this Privacy Policy. Please contact us immediately at support@ekareinc.com if you become aware of an individual providing us with personal information about another individual without being authorized to do so, and we will act consistently with this Privacy Policy.

Information that We Receive About You From Our Customers

Our customers and their designated users use our Services to develop, establish, implement, and maintain secure application and database deployment environments for processing sensitive data, including personal information and sensitive personal information. While using our Services, our customers may create, input, submit, post, upload, transmit, or store personal information that they have collected from individuals. During the course of our business relationship, we may need to access a customer’s account and the information it contains to provide support for our Services.

Our customers and prospective customers are responsible for complying with all applicable federal, state, local, and international laws and regulations regarding notice, disclosure, consent, and transfer of personal information, prior to providing that personal information to eKare.

 

Why We Collect Information from and About You

We will not use your personal information for anything other than the following lawful purposes:

To establish and maintain contractual relationships with our customers:

  • To establish relationships with new customers
  • To fulfill our obligations to current customers
  • To contact customers regarding account-related issues and business communications relating to the Services, including technical notices, updates, security alerts, and administrative messages
  • To enable individuals to access and use our Services.

To comply with our legal obligations:

  • To comply with legal obligations, including but not limited to complying with tax and financial reporting requirements.
  • To comply with incident monitoring, reporting, assessment, and notification requirements
  • To comply with other applicable criminal and civil law and regulatory requirements under federal, state, and international law

To provide services and information that you request and consent to receive:

  • To provide customer service and support
  • To communicate with you, including responding to your comments, questions, and requests regarding our Services
  • To process and complete transactions, and send you related information, including purchase confirmations and invoices
  • To provide direct marketing, email, and other distributed information distribution

To fulfill our other legitimate interests to the extent that they are not overridden by individual interests, fundamental rights, or freedoms:

  • To administer, operate, maintain, and secure our website and Services.
  • To monitor and analyze trends, usage, and activities in connection with our Services
  • To investigate and prevent fraudulent transactions, unauthorized access to our Services, and other illegal activities
  • To verify compliance with our internal policies and procedures
  • For accounting, recordkeeping, backup, and administrative purposes
  • To customize and improve the content of our communications, websites, and social media accounts
  • To educate and train our workforce in data protection and customer support
  • To provide, operate, maintain, improve, personalize, and promote our Services
  • To develop new products, services, features, and functionality
  • To market our products and services (first-party marketing only; we do not provide personal information for use in marketing any non-eKare, third-party goods or services)

We collect only the minimum amount of personal data that is necessary to provide and improve our services. We do not collect any personal data beyond what is required to deliver and improve our services per our data minimization policy. By only gathering the minimum data needed, we aim to adhere to data minimization principles and respect your privacy.”

 

How do we protect your information?

We employ a combination of organizational, technical, and physical measures to safeguard your personal data. Our approach takes into account the sensitivity of the personal data and the manner of processing, as well as potential threats.

  • We solely provide articles and information and do not request any purchases or payments for the services offered on our platform. We never solicit credit card numbers.
  • We do not utilize Malware Scanning.

Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.

  • We implement a variety of security measures when a user enters, submits, or accesses their information to maintain the safety of your personal information.
  • All transactions are processed through a gateway provider and are not stored or processed on our servers.

In the event of a data breach, our organization is committed to taking prompt and appropriate action. We will diligently investigate the breach, assess its impact, and take necessary steps to mitigate any potential harm. Additionally, we will notify relevant parties, including affected individuals and regulatory authorities, within a reasonable timeframe, as required by applicable laws and regulations.

 

How we can share your data

There will be times when we need to share your personal data with third parties. We will only disclose your personal data to:

  • third party service providers and partners who assist and enable us to use the personal data to, for example, support delivery of or provide functionality on the website or services, or to market or promote our goods and services to you
  • regulators, law enforcement bodies, government agencies, courts or other third parties where we think it’s necessary to comply with applicable laws or regulations, or to exercise, establish or defend our legal rights. Where possible and appropriate, we will notify you of this type of disclosure
  • an actual or potential buyer (and its agents and advisers) in connection with an actual or proposed purchase, merger or acquisition of any part of our business
  • other people where we have your consent.

 

How long we keep your data

At eKare, we store your personal data on our servers and those of third-party cloud-based services in the United States and other countries. We keep this data for the duration of your business relationship with us and for a period afterward for account recovery and historical purposes. We delete personal data when it’s no longer needed for these purposes unless required otherwise by law or to fulfill our contractual obligations or legitimate interests, respond to inquiries, or address legal matters.

 

Your rights

It’s your personal data and you have certain rights relating to it. When it comes to marketing communications, you can ask us not to send you these at any time – just follow the unsubscribe instructions contained in the marketing communication, or send your request to support@ekareinc.com.

You also have rights to:

  • Right to access: know what personal data we hold about you, and to make sure it’s correct and up to date
  • (Right to be forgotten): request a copy of your personal data, or ask us to restrict processing your personal data or delete it
  • Right to rectification: The right to request corrections to your personal data if it is inaccurate or incomplete.
  • Right to object to our continued processing of your personal data
  • Right to restrict processing: The right to request the restriction or suppression of personal data processing under certain circumstances, such as when the accuracy of the data is contested or the processing is unlawful.
  • Right to data portability – You have the right to request that Our Company transfer the data that we have collected to another organization, or directly to you, under certain conditions.

You can exercise these rights at any time by sending an email to support@ekareinc.com.

If you’re not happy with how we are processing your personal data, please let us know by sending an email to support@ekareinc.com. We will review and investigate your complaint, and try to get back to you within a reasonable time frame. You can also complain to your local data protection authority. They will be able to advise you how to submit a complaint.

 

International Data Transfer

eKare Inc. safeguards personal data received in the United States from the United Kingdom (“UK”), European Union, or European Economic Area (“EU”) which is regulated by the (UK) GDPR. We are committed to protecting such GDPR Personal Data in accordance with our obligations under applicable law, such as GDPR Articles 45 to 50, and the Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement and Liability.

eKare Inc. complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. eKare Inc. has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. eKare Inc. has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) Program, and to view our certification, please visit https://www.dataprivacyframework.gov/

 

Choice

When eKare collects Personal Data directly from you, the company offers opportunity for you to choose whether your Personal Data may be (i) disclosed to third-party Controllers, or (ii) used for a purpose that is materially different from the purposes for which the information was originally collected or subsequently authorized by you. To the extent required by the DPF Principles, eKare obtains opt-in consent for certain uses and disclosures of Sensitive Data. You may contact eKare as indicated below regarding the company’s use or disclosure of Personal Data. Unless eKare offers you an appropriate choice, the company uses Personal Data only for purposes that are materially the same as those indicated in this Privacy Policy.

When eKare maintains Personal Data about subjects with whom eKare does not have a direct relationship because eKare obtained or maintains the subject’ data as a Processor, eKare’s Customers are responsible for providing the relevant subjects with certain choices with respect to the Customers’ use or disclosure of the subject’s Personal Data.

 

California Online Privacy Protection Act

CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law’s reach stretches well beyond California to require any person or company in the United States (and conceivably the world) that operates websites collecting Personally Identifiable Information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals or companies with whom it is being shared.

According to CalOPPA, we agree to the following:

  • Users can visit our site anonymously.
  • Once this privacy policy is created, we will add a link to it on our home page or as a minimum, on the first significant page after entering our website.
  • Our Privacy Policy link includes the word ‘Privacy’ and can easily be found on the page specified above.
  • We do not sell and have not sold Personal Information in the preceding 12 months, as “sale” is defined in the CCPA.  We do not sell the Personal Information of minors under 16 years of age.

In instances where we collect Protected Health Information as defined by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), we may de-identify such information using the HIPAA Safe Harbor method or HIPAA Expert Determination method. Once this information is de-identified, it is no longer considered personal information, and we may use it in the same manner as other non-personal information. Any entities to whom we sell or disclose de-identified Protected Health Information are prohibited from attempting to re-identify it

 

COPPA (Children Online Privacy Protection Act)

When it comes to the collection of personal information from children under the age of 13 years old, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States’ consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.

We do not specifically market to children under the age of 13 years old.

 

Fair Information Practices

The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:

  • We will notify you via email
  • Within 7 business days

We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.

 

CAN SPAM Act

The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.

To be in accordance with CANSPAM, we agree to the following:

  • Not use false or misleading subjects or email addresses.
  • Identify the message as an advertisement in some reasonable way.
  • Include the physical address of our business or site headquarters.
  • Monitor third-party email marketing services for compliance, if one is used.
  • Honor opt-out/unsubscribe requests quickly.
  • Allow users to unsubscribe by using the link at the bottom of each email.

 

Recourse, Enforcement, and Liability

We strive to resolve all complaints about privacy and the collection or use of customer information. If you have a complaint, please send an e-mail to dpo@ekareinc.com.

You may file a complaint concerning eKare’s processing of their Personal Data. eKare will take steps to remedy issues arising out of its alleged failure to comply with the DPF Principles. You may contact eKare as specified below about complaints regarding the company’s Personal Data practices.

Additionally, you have the right to file a complaint with your local data protection or privacy agency or supervisory authority.  In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, eKare commits to refer unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU- U.S. DPF and the Swiss-U.S. DPF to ICDR-AAA, an alternative dispute resolution provider based in the United States.

Following the dispute resolution process, ICDR-AAA or you may refer the matter to the U.S. Federal Trade Commission (FTC), which has DPF investigatory and enforcement powers over eKare. You have the possibility, under certain conditions, to invoke binding arbitration for complaints regarding DPF compliance not resolved by any other of the DPF mechanisms.  For additional information, please visit: Data Privacy Framework

In the context of an onward transfer, eKare has a responsibility for processing of personal information it receives under the DPF Program and subsequently transfers to a third party acting as an agent on its behalf. eKare shall remain liable under the DPF Principles if its agent processes such personal information in a manner inconsistent with the DPF Principles, unless eKare proves that it is not responsible for the event giving rise to the damage.

 

Updates and Amendments

We may update and amend this Privacy Policy from time to time by posting an amended version on the Site. The amended version will be effective as of the date it is published. We will provide prior notice if we believe any substantial changes are involved via any of the communication means available to us or via the Site. This includes any changes to the purposes for which we collect, use or share personal data. After such notice period, all amendments shall be deemed accepted by you.

 

Data Protection Officer

eKare Inc. has a Data Protection Officer, for monitoring and advising on eKare’s ongoing privacy compliance and serving as a point of contact on privacy matters for data subjects and supervisory authorities. If you have any comments or questions regarding our Privacy Policy, if you have any concerns regarding your privacy, or if you wish to make a complaint about how your Personal Data is being processed by eKare, you can contact our DPO at dpo@ekareinc.com.

 

Contacting Us

If there are any questions regarding this privacy policy, you may contact us using the information below.

3040 Williams Drive Ste 610
Fairfax, Virginia 22031
United States
www.ekare.ai
support@ekareinc.com
+1 844-443-5273

 

Our EU Representative

eKare Europe BV
Lireweg 74 B
2153 PH | Nieuw-Vennep
The Netherlands
Telephone: +31 (0)20 765 36 09
Email: info@ekare.eu