Privacy policy

This policy sets out:


(1)  the infor­ma­tion we col­lect about you when you visit our web­si­te, use our pro­ducts or ser­vices, or otherwi­se inte­ract with us;

(2)  how we use, sha­re, sto­re, and secu­re the infor­ma­tion; and

(3)  how you may access and cont­rol the information.

In this policy, “Emvi­sa­ge” or “we” refers to Emvi­sa­ge of Level 15 470 Col­lins Street Mel­bour­ne (Austra­lian Com­pa­ny Num­ber (ACN) 605 744 545) and “Plat­form” means our web­si­te at https://www.emvisage.com/ and our softwa­re, name­ly Emvisage.

In this policy, “per­so­nal infor­ma­tion” refers to any data, infor­ma­tion, or com­bi­na­tion of data and infor­ma­tion that is pro­vi­ded by you to us, or through your use of our pro­ducts or ser­vices, that rela­tes to an iden­ti­fiable individual.

1 What infor­ma­tion we col­lect about you
1.1 We col­lect the fol­lowing types of infor­ma­tion about you:

(a)  account and pro­fi­le infor­ma­tion that you pro­vi­de when you regis­ter for an account or sign up for our pro­ducts or ser­vices, for example Email, Pho­ne Num­ber, Name, User­na­me, Com­pa­ny (col­lec­ti­ve­ly, “Account Data”);

(b)  infor­ma­tion you pro­vi­de through sup­port chan­nels, for example when you report a problem to us or inte­ract with our sup­port team, inclu­ding any con­tact infor­ma­tion, docu­men­ta­tion, or screens­hots (col­lec­ti­ve­ly, “Sup­port Data”);

©  con­tent you pro­vi­de through use of our pro­ducts or ser­vices, for example Com­ments (col­lec­ti­ve­ly, “User Con­tent”);

(d)  com­mu­nica­tion, mar­ke­ting, and other pre­fe­rences that you set when you set up your account or pro­fi­le (col­lec­ti­ve­ly, “Pre­fe­rence Data”);

(e)  infor­ma­tion about your device or con­nec­tion, for example Time-Zone Set­tings, Inter­net Brow­ser, Brow­ser Ope­ra­ting Sys­tem and Plat­form and infor­ma­tion we col­lect through coo­kies and other data col­lec­tion tech­no­lo­gies (plea­se read our Coo­kies Policy for details) (col­lec­ti­ve­ly, “Tech­nical Data”); and

(f) Infor­ma­tion about your use of or visit to our Plat­form, for example­Last Login (col­lec­ti­ve­ly, “Usa­ge Data”). Plug-in Types and Pro­tocol Type (IP) and Address Ver­sion Versions

1.2  We col­lect the abo­ve infor­ma­tion when you pro­vi­de it to us or when you use or visit our Plat­form. We may also recei­ve infor­ma­tion about you from other sources, including:

(a) our per­son­nel, agents, advi­sors, con­sul­tants, and cont­rac­tors based in Austra­lia in con­nec­tion with our ope­ra­tions or ser­vices, for example our staff enga­ged in the ful­fil­ment of your order, proces­sing of your pay­ment, and pro­vi­sion of sup­port services;

1.3  We do not col­lect sen­si­ti­ve data or special cate­go­ry data about you. This inclu­des details about your race, eth­nic ori­gin, poli­tics, reli­gion, tra­de union mem­bers­hip, gene­tics, bio­met­rics, health, or sexual orientation.


2 How we use infor­ma­tion we collect

2.1  We only use your per­so­nal infor­ma­tion whe­re the law allows us to. We use your personal

infor­ma­tion only where:

(a)  we need to per­form the cont­ract we have ente­red into (or are about to enter into) with you, inclu­ding to ope­ra­te our pro­ducts or ser­vices, to pro­vi­de cus­to­mer sup­port and per­so­na­li­sed fea­tu­res, and to pro­tect the safe­ty and secu­ri­ty of our Platform;

(b)  it satis­fies a legi­ti­ma­te inte­rest which is not over­rid­den by your fun­da­men­tal rights or data pro­tec­tion inte­rests, for example for research and deve­lop­ment, and in order to pro­tect our legal rights and interests

©  you’­ve given us con­sent to do so for a speci­fic pur­po­se, for example we may send you direct mar­ke­ting mate­rials or publish your infor­ma­tion as part of our tes­ti­mo­nials or cus­to­mer sto­ries to pro­mo­te our pro­ducts or ser­vices with your per­mis­sion; or

(d)  we need to comply with a legal or regu­la­to­ry obligation.

2.2  If you have given us con­sent to use your per­so­nal infor­ma­tion for a speci­fic pur­po­se, you have the right to with­draw your con­sent any time by con­tac­ting us (plea­se refer to para­graph 9 for con­tact infor­ma­tion), but plea­se note this will not affect any use of your infor­ma­tion that has alrea­dy taken place.

2.3  We do not sha­re your per­so­nal infor­ma­tion with any com­pa­ny out­si­de our group for mar­ke­ting pur­po­se, unless with your express speci­fic con­sent to do so.

2.4  For visi­tors to or users of our Plat­form who are loca­ted in the Euro­pean Union, we have set out our legal bases for proces­sing your infor­ma­tion in the Legal Bases Table at the end of this policy.


3 How we sha­re infor­ma­tion we collect

3.1 We sha­re infor­ma­tion with third par­ties that help us ope­ra­te, pro­vi­de, sup­port, impro­ve, and mar­ket our pro­ducts and ser­vices, for example third-par­ty ser­vice pro­vi­ders who pro­vi­de Amazon Web Ser­vices Google Analytics .

3.2  Third-par­ty ser­vice pro­vi­ders have access to your per­so­nal infor­ma­tion only for the pur­po­se of per­for­ming their ser­vices and in compliance with applicable laws and regu­la­tions. We requi­re the­se third-par­ty ser­vice pro­vi­ders to main­tain con­fi­den­tia­li­ty and secu­ri­ty of all per­so­nal infor­ma­tion that they process on our behalf and to imple­ment and main­tain rea­so­nable secu­ri­ty mea­su­res to pro­tect the con­fi­den­tia­li­ty, integri­ty, and avai­la­bi­li­ty of your per­so­nal information.

3.3  We take rea­so­nable steps to con­firm that all third-par­ty ser­vice pro­vi­ders that we enga­ge process per­so­nal infor­ma­tion in the man­ner that pro­vi­des at least the same level of pro­tec­tion as is pro­vi­ded under this policy. Whe­re any third-par­ty pro­vi­der is unable to satis­fy our requi­re­ments, we will requi­re them to noti­fy us imme­dia­te­ly and we will take rea­so­nable steps to pre­vent or stop non-compliant processing.

3.4  We may sha­re per­so­nal infor­ma­tion on aggre­ga­ted or de-iden­ti­fied basis with third par­ties for research and ana­ly­sis, pro­fi­ling, and simi­lar pur­po­ses to help us impro­ve our pro­ducts and services.

3.5  If you use any third-par­ty softwa­re in con­nec­tion with our pro­ducts or ser­vices, for example any third-par­ty softwa­re that our Plat­form inte­gra­tes with, you might give the third-par­ty softwa­re pro­vi­der access to your account and infor­ma­tion. Policies and proce­du­res of third-par­ty softwa­re pro­vi­ders are not cont­rol­led by us, and this policy does not cover how your infor­ma­tion is col­lec­ted or used by third-par­ty softwa­re pro­vi­ders. We encou­ra­ge you to review the pri­vacy policies of third-par­ty softwa­re pro­vi­ders befo­re you use the third-par­ty software.

3.6  Our Plat­form may con­tain links to third-par­ty web­si­tes over which we have no cont­rol. If you fol­low a link to any of the­se web­si­tes or sub­mit infor­ma­tion to them, your infor­ma­tion will be gover­ned by their policies. We encou­ra­ge you to review the pri­vacy policies of third-par­ty web­si­tes befo­re you sub­mit infor­ma­tion to them.

3.7  We may sha­re your infor­ma­tion with govern­ment and law enforce­ment officials to comply with applicable laws or regu­la­tions, for example when we res­pond to claims, legal proces­ses, law enforce­ment, or natio­nal secu­ri­ty requests.

3.8  If we are acqui­red by a third par­ty as a result of a mer­ger, acqui­si­tion, or busi­ness trans­fer, your per­so­nal infor­ma­tion may be disclo­sed and/or trans­fer­red to a third par­ty in con­nec­tion with such tran­sac­tion. We will noti­fy you if such tran­sac­tion takes place and inform you of any choices you may have regar­ding your information.


4 How we sto­re and secu­re infor­ma­tion we collect

4.1 We use data hos­ting ser­vice pro­vi­ders based in Austra­lia to host the infor­ma­tion we collect.

4.2  We have adop­ted the fol­lowing mea­su­res to pro­tect the secu­ri­ty and integri­ty of your per­so­nal information:

(a)  infor­ma­tion is enc­ryp­ted using TLS/SSL technology;

(b)  your account is password-pro­tec­ted, with the requirement(s) that Password must be at least 8 cha­rac­ters, with at least one capi­tal let­ter, one num­ber, and one non- alp­ha­nu­me­ric symbol;

©  access to your per­so­nal infor­ma­tion is restric­ted to per­son­nel or ser­vice pro­vi­ders on a strict­ly need-to-know basis, who will only process your infor­ma­tion on our instruc­tions and who are sub­ject to a duty of con­fi­den­tia­li­ty; and

(d)  our infor­ma­tion col­lec­tion, sto­ra­ge, and proces­sing prac­tices are reviewed regularly.

4.3  We have put in place proce­du­res to deal with any sus­pec­ted pri­vacy breach and will noti­fy you and any applicable regu­la­tor of a breach whe­re we are legal­ly requi­red to do so.

4.4  Whi­le we imple­ment safe­guards desig­ned to pro­tect your infor­ma­tion, plea­se note that no trans­mis­sion of infor­ma­tion on the Inter­net is comple­te­ly secu­re. We can­not gua­ran­tee that your infor­ma­tion, during trans­mis­sion through the Inter­net or whi­le sto­red on our sys­tems or proces­sed by us, is abso­lu­te­ly safe and secure.

4.5  We only retain per­so­nal infor­ma­tion for so long as it is rea­so­nably neces­sa­ry to ful­fil the pur­po­ses we col­lec­ted it for, inclu­ding for the pur­po­ses of satis­fying any legal, accoun­ting, or repor­ting requi­re­ments. After such time, we will dele­te or ano­ny­mi­se your infor­ma­tion, or if this is not pos­sible, we will secu­re­ly sto­re your infor­ma­tion and iso­la­te it from furt­her use. We perio­dical­ly review the basis and appropria­te­ness of our data reten­tion policy.


5 How we trans­fer infor­ma­tion internationally

5.1  We col­lect infor­ma­tion glo­bal­ly and pri­ma­ri­ly sto­re that infor­ma­tion in Austra­lia. We trans­fer, process, and sto­re your infor­ma­tion out­si­de your count­ry of resi­dence whe­re we or our ser­vice pro­vi­ders ope­ra­te for the pur­po­se of pro­vi­ding our pro­ducts and ser­vices to you.

5.2  Some of the count­ries in which our com­pa­nies or ser­vice pro­vi­ders are loca­ted may not have the pri­vacy and data pro­tec­tion laws that are equi­va­lent to tho­se in your count­ry of resi­dence. When we sha­re infor­ma­tion with the­se com­pa­nies or ser­vice pro­vi­ders, we make use of cont­rac­tual clauses, cor­po­ra­te rules, and other appropria­te mec­ha­nisms to safe­guard the trans­fer of information.

6 Your rights

6.1 You have the right to:

(a)  be infor­med of what we do with your per­so­nal information;

(b)  request a copy of per­so­nal infor­ma­tion we hold about you;

© requi­re us to cor­rect any inaccu­racy or error in any per­so­nal infor­ma­tion we hold about you;

(d)  request era­su­re of your per­so­nal infor­ma­tion (note, howe­ver, that we may not always be able to comply with your request of era­su­re for record kee­ping pur­po­ses, to comple­te tran­sac­tions, or to comply with our legal obligations);

(e)  object to or restrict the proces­sing by us of your per­so­nal infor­ma­tion (inclu­ding for mar­ke­ting purposes);

(f)  request to recei­ve some of your per­so­nal infor­ma­tion in a struc­tu­red, com­mon­ly used, and mac­hi­ne rea­dable for­mat, and request that we trans­fer such infor­ma­tion to anot­her par­ty; and

(g)  with­draw your con­sent at any time whe­re we are relying on con­sent to process your per­so­nal infor­ma­tion (alt­hough this will not affect the law­ful­ness of any proces­sing car­ried out befo­re you with­draw your consent).

6.2 You may opt out of recei­ving mar­ke­ting mate­rials from us by using the unsubsc­ri­be link in our com­mu­nica­tions. Plea­se note, howe­ver, that even if you opt out from recei­ving mar­ke­ting mate­rials from us, you will con­ti­nue to recei­ve noti­fica­tions or infor­ma­tion from us that are neces­sa­ry for the use of our pro­ducts or services.

6.3  As a secu­ri­ty mea­su­re, we may need speci­fic infor­ma­tion from you to help us con­firm your iden­ti­ty when proces­sing your pri­vacy requests or when you exerci­se your rights.

6.4  Any request under para­graph 6.1 will nor­mal­ly be addres­sed free of char­ge. Howe­ver, we may char­ge a rea­so­nable admi­ni­stra­tion fee if your request is clear­ly unfoun­ded, repe­ti­ti­ve, or excessive.

6.5  We will res­pond to all legi­ti­ma­te requests wit­hin one (1) month. Occa­sio­nal­ly, it may take us lon­ger than a month if your request is par­ticu­lar­ly complex or if you have made a num­ber of requests.

7 Chan­ges to this policy

7.1 We may amend this policy from time to time by pos­ting the upda­ted policy on our Plat­form. By con­ti­nuing to use our Plat­form after the chan­ges come into effect, you agree to be bound by the revi­sed policy.

8 Policy towards children

8.1 Our pro­ducts and ser­vices are not direc­ted to indi­vi­duals under 18. We do not knowingly col­lect per­so­nal infor­ma­tion from indi­vi­duals under 18. If we beco­me awa­re that an indi­vi­dual under 18 has pro­vi­ded us with per­so­nal infor­ma­tion, we will take steps to dele­te such infor­ma­tion. Con­tact us if you belie­ve that we have mis­ta­ken­ly or unin­ten­tio­nal­ly col­lec­ted infor­ma­tion from an indi­vi­dual under 18.

9 Con­tact us

9.1  Plea­se con­tact us at marc.mathieu@emvisage.com or sub­mit any writ­ten request to:

Level 15 470 Col­lins Street Mel­bour­ne Attn: Infor­ma­tion Secu­ri­ty Officer

9.2  Plea­se con­tact us in the first ins­tance if you have any ques­tions or concerns. If you have unre­sol­ved concerns, you have the right to file a complaint with a data pro­tec­tion aut­ho­ri­ty in the count­ry whe­re you live or work or whe­re you feel your rights have been infringed.


Last upda­ted: 25 Februa­ry 2020


Coo­kies are small text files that are placed on your device by a web ser­ver when you access our Plat­form. We use coo­kies to iden­ti­fy your access and moni­tor usa­ge and web traf­fic on our Plat­form to cus­to­mi­se and impro­ve our pro­ducts and services.

We use both per­sis­tent coo­kies and ses­sion coo­kies. A per­sis­tent coo­kie stays in your brow­ser and will be read by us when you return to our Site or a part­ner site that uses our ser­vices. Ses­sion coo­kies only last for as long as the ses­sion lasts (usual­ly the cur­rent visit to a web­si­te or a brow­ser session).

We use the fol­lowing types of cookies:

(a) Strict­ly neces­sa­ry coo­kies – the­se are coo­kies that are requi­red for the ope­ra­tion of our site. They inclu­de, for example, coo­kies that enable you to log into secu­re areas of our website.

(b) Analytical/performance coo­kies – the­se allow us to recog­ni­se and count the num­ber of visi­tors and to see how visi­tors move around our Site when they are using it. This helps us to impro­ve the way our site works, for example, by ensu­ring that users are easi­ly fin­ding what they are loo­king for.

© Func­tio­na­li­ty coo­kies – the­se are used to recog­ni­se you when you return to our site.

(d) Tar­ge­ting coo­kies – the­se coo­kies record your visit to our site, the pages you have visi­ted, and the links you have followed.

You can block coo­kies by acti­va­ting the set­ting on your brow­ser that allows you to refuse the use of all or some coo­kies. Howe­ver, if you do so, you may not be able to access all or parts of our site.


Proces­sing pur­po­se

Type of data processed

Legal basis

To regis­ter you as a user on our Platform

Account Data

To per­form our cont­ract with you

To enable you to use our pro­ducts and services

Account Data, Tran­sac­tion Data, Sup­port Data, Tech­nical Data [and User Content]

To per­form our cont­ract with you

To noti­fy you about chan­ges to our pro­ducts, ser­vices, or terms

Account Data

To per­form our cont­ract with you

To admi­nis­ter and main­tain safe­ty and secu­ri­ty of our Platform

Tech­nical Data

To per­form our cont­ract with you

To stu­dy usa­ge of our pro­ducts or services

Tran­sac­tion Data, Sup­port Data, Tech­nical Data, Usa­ge Data

Legi­ti­ma­te inte­rest to impro­ve our Plat­form, pro­ducts, and services

To gat­her feed­back on our pro­ducts, ser­vices, or features

Account Data

Legi­ti­ma­te inte­rest to impro­ve our Plat­form, pro­ducts, and services

To pro­vi­de infor­ma­tion on pro­ducts or ser­vices that may be of inte­rest to you

Account Data, Pre­fe­rence Data

Con­sent, which you may with­draw any time