Privacy and GDPR Compliance Information
Last Updated: 15 September 2023
This Privacy Statement ("Statement") outlines how BrightMerge LTD ("we," "us," or "our") collects, uses, discloses, and safeguards personal data when you use our Software as a Service (SaaS) platform ("Platform"). We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR).
1. Data Controller
Aviram Hadash
BrightMerge LTD
2nd Floor, 28 Dam Maccabim Blvd.
Modiin, 71700 ISRAEL
2. Data We Collect
We may collect the following types of personal data when you log into our Platform:
User Information: This includes your name, email address, username, and password.
Usage Information: We collect information about how you use our Platform, such as your interactions, settings, and preferences.
Device Information: We may collect information about the device and browser you use to access our Platform, including IP address, browser type, and operating system.
Location Information: We may collect and process location data if you grant us permission through your device settings or browser.
3. How We Use Your Data
We use your personal data for the following purposes:
To provide access to and improve our Platform.
To communicate with you about your account and Platform updates.
To respond to your inquiries and support requests.
To analyze user behavior and improve our services.
To comply with legal obligations and enforce our terms of service.
4. Legal Basis for Processing
We process your personal data based on one or more of the following legal grounds:
Contractual Necessity: Processing is necessary for the performance of a contract with you.
Consent: You have given explicit consent for us to process your data.
Legitimate Interests: Processing is necessary for our legitimate interests, such as improving our services.
Legal Compliance: Processing is necessary to comply with legal obligations.
5. Data Sharing and Disclosure
We may share your personal data with third parties under the following circumstances:
With service providers who assist us in delivering and maintaining our Platform.
To comply with legal obligations or respond to lawful requests from authorities.
In connection with a merger, acquisition, or sale of all or part of our business.
6. International Data Transfers
Your data may be transferred and stored in countries outside of your own, including countries that may not offer the same level of data protection. We take appropriate measures to ensure your data is protected in accordance with applicable data protection laws.
7. Data Retention
We retain your personal data for as long as necessary to fulfill the purposes outlined in this Statement, unless a longer retention period is required or permitted by law.
8. Your Rights
You have rights under GDPR, including the right to access, rectify, erase, or restrict the processing of your personal data. You may also have the right to data portability and to withdraw consent when processing is based on consent.
9. Contact Us
If you have questions or concerns about this Statement, your rights, or the processing of your personal data, please contact us at dataprivacy@brightmerge.com.
10. Changes to this Statement
We may update this Statement from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. Please review this Statement periodically for any updates.
By using our Platform, you agree to the terms outlined in this Privacy Statement.
​
General Data Protection Regulation (GDPR) Compliance Clause
​
1. Introduction
​
This GDPR Compliance Clause ("Clause") outlines how Brightmerge L.T.D. ("we," "us," or "our") collects, processes, and protects personal data in compliance with the General Data Protection Regulation (EU) 2016/679 ("GDPR").
​
2. Personal Data Collection and Processing
​
Brightmerge L.T.D. collects and processes personal data from our users for the purpose of providing our SaaS platform services and improving user experience. Personal data may include, but is not limited to, names, contact information, billing details, and usage data.
​
3. Legal Basis for Processing
​
We process personal data based on the legal grounds of contract performance, legitimate interests, and consent. By using our SaaS platform, users consent to the collection and processing of their personal data as outlined in this Clause.
​
4. Data Subject Rights
​
Users have the right to access, rectify, erase, and restrict the processing of their personal data. Users can exercise these rights by contacting us at [contact email or address]. We will respond to such requests in accordance with GDPR requirements.
​
5. Data Security
​
We implement technical and organizational measures to ensure the security and confidentiality of personal data. However, no data transmission over the internet can be guaranteed as 100% secure. Users acknowledge and accept this risk.
​
6. Data Sharing and Transfers
​
Personal data may be shared with third-party service providers who assist us in delivering our services. We ensure that such providers are GDPR-compliant. We may also transfer personal data to countries outside the European Economic Area (EEA) based on appropriate safeguards.
​
7. Data Retention
​
We retain personal data for as long as necessary to fulfill the purposes outlined in this Clause or as required by applicable laws. Users can request data deletion as described in section 4 above.
​
8. Cookies and Tracking Technologies
​
We use cookies and similar technologies to enhance user experience and gather usage data. Users can manage cookie preferences through their browser settings.
​
9. Changes to this Clause
​
We reserve the right to modify this Clause to reflect changes in our data processing practices. Users will be notified of such changes through our SaaS platform or other appropriate means.
​
10. Contact Information
​
For any GDPR-related inquiries or concerns, users can contact us at dataprivacy@brightmerge.com.
By using our SaaS platform, users acknowledge that they have read, understood, and agreed to the terms of this GDPR Compliance Clause.​