Who we are
Unito is a software-as-a-service company headquartered in Ho Chi Minh City, Viet Nam, we offer a suite of technology services and features that enable marketers to connect, activated and otherwise process their customer data.
Purpose of this privacy policy
At Unito, we are committed to protecting your data. We also work very hard at being transparent about the information we hold about you and our customers. Using data allows us to develop a better understanding of how you and other users interact with our communications, and in turn to provide you with relevant and timely information about the work that we do. Data also helps us to engage with our current and potential customers, as applicable (“Customers”).
Unito collects personal data in the course of its business. The definition of personal data varies depending on the laws where you are located. For example, in the European Union (EU), personal data is defined broadly, and would include data that may be used to contact or identify a person (e.g., email, telephone number), as well as pseudonymous data that is generally only able to identify a computer, browser or a mobile device. The state of California and other U.S. States have also adopted a broad definition of personal information. We will explain the different types of personal data below, and will try to be clear when we’re describing our use of each throughout this Privacy Policy (this “Policy”).
The purpose of this Policy is to explain how information is collected, used and processed by Unito, including how such information:
- is treated for recruiting purposes;
- is collected from our Customers; and
- is collected, used and disclosed via the Platform.
Our objective is to give you a clear explanation about how we collect and process your information through your use of our websites, including any data you may provide through this website and when you sign up to our newsletters, register for an event or ask us to get in touch with you.
It is important that you read this Policy together with any other notices we may provide on specific occasions when we are collecting or processing information about you, so that you are aware of how and why we are using your information. This Policy supplements our other policies and is not intended to override them.
If you have any questions, please contact our Data Protection Officer using the contact details at the end of this Policy.
How we collect your data
We collect different information about you in a number of ways:
Information you give us
When you sign up to our newsletters, request marketing materials, register for an event or sign into the Platform, we will store the PII you give to us, such as your name and email address.
Automated technologies or interactions
When you visit our Sites, some information is automatically collected. This may include information such as the operating system running on your device, internet protocol address, access times, browser type and language, and the website you visited before visiting our Sites. In many jurisdictions, this type of pseudonymous information is considered personal data. In this Policy, we’ll refer to this type of pseudonymous information as “Pseudonymous Personal Data.”
We automatically collect information using “cookies” and Web beacons. Cookies are small data files stored on your hard drive by a website and web beacons are electronic images that may be used on our Sites or in our emails. Among other things, cookies help us improve our Sites, our marketing activities, and your experience. We use cookies to see which areas and features are popular and to count visits to our Sites. Most web browsers are set to accept cookies by default. If you prefer, you can choose to set your browser to remove cookies and/or to reject cookies. If you choose to remove cookies or reject cookies, this could affect certain features or services of our Sites. For more information about cookies and web beacons, please visit http://www.allaboutcookies.org.
Unito does not sell data via the Platform and therefore does not take action in response to “Do Not Track” browser signals from users.
How we may use your information
We will only use your information when the law allows us to. Most commonly, we will use your information in the following circumstances:
- Where we need to perform the contract we are about to enter into or have entered into with you (e.g., where we process your email address in order to access our systems or for billing purposes);
- Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests;
- Where we need to comply with a legal or regulatory obligation; and
- Where we have your consent before using information; provided that you have the right to withdraw consent to marketing at any time by contacting us, and you can find the relevant contact details at the end of this Policy.
Purposes for which we will use your PII and other personal data
We use the information we collect primarily to provide, maintain, protect and improve our current products, to develop new ones and to manage Customer accounts and human resources functions.
We use PII for the general purpose it was provided.
For example, if you ask a question about our products and services, we may send you an email in response, and might even have a salesperson contact you to gauge your interest in learning more about the Platform.
In general, we may use your information to:
- Improve the Platform, Sites and how we operate our business;
- Understand and enhance your experience using our Sites, products and Platform;
- Provide and deliver products and services you request;
- Respond to your comments or questions and allow our team to provide service;
- Send you related information, including confirmations, invoices, technical notices, updates, security alerts and support and administrative messages;
- Communicate with you about promotions, upcoming events and news about products and services offered by Unito and our selected Partners;
- Link or combine it with other information we get from third parties, to help understand your needs and provide you with better service; and
- Protect, investigate and deter against fraudulent, unauthorized or illegal activity.
Marketing communications
We aim to communicate with you about the work that we do in ways that you find relevant, timely, respectful, and never excessive. To do this, we use data that we have stored about you, such as which events you have booked for in the past, as well as any contact preferences you may have told us about.
We use consent or in some cases, legitimate interest as the legal basis for communications by email and for the collection of PII in the context of our sales and marketing activities where we have evaluated that our interests are not overridden by your fundamental rights. We will give you an opportunity to opt out of receiving electronic communications. If you do not opt out, we will provide you with an option to unsubscribe or manage your preferences in every email that we send you subsequently. Alternatively, you can use the contact details at the end of this Policy to update your contact preferences.
Security of your information
We take reasonable steps to help protect your information in an effort to prevent loss, misuse, unauthorized access, disclosure, alteration and destruction.
We have put in place appropriate safeguards (both in terms of our procedures and the technology we use) to keep your information as secure as possible. We will ensure that any third parties we use for processing your information do the same and that they will only process your information on our instructions. The third parties will also be subject to a duty of confidentiality.
It is your responsibility to protect your usernames and passwords to help prevent anyone from accessing or abusing your accounts and services. You should not use or reuse the same passwords you use with other accounts as your password for our services. No security or encryption method can be guaranteed to protect information from hackers or human error. Information we collect may be stored or processed on computers located in any country where we do business.
Data Localization, Onward Transfer
Unito may store and process PII in the cloud like AWS, GCP or OCI. By using the Platform as a Customer, you consent to this transfer of your information. unless you’ve selected a data localization option.
Data retention
We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
For the Platform:
Unito retains Customer data for the retention period set forth in the applicable agreement between Unito and the Customer, typically 12 months, and Unito will delete Customer data promptly following either party’s termination of the applicable agreement or earlier if directed by the Customer.
We retain User level data on the Platform as directed by our Customers and for a reasonable time thereafter for audit purposes and as otherwise required by law.
Your legal rights
Data Subjects Request
Individuals who have provided information directly to one of Unito must send follow-up requests to access or delete such information to that particular Unito Customer.
If you have any questions, or to make an access, deletion or similar privacy request outlined above, please contact Unito at contact@unitohub.com or via the postal addresses at the bottom of this Policy.
Under these circumstances, you have rights under data protection laws in relation to your personal data, as follows:
a) Request access to your personal data
You have a right to request a copy of the personal data that we hold about you. Please use the contact details at the end of this Policy if you would like to exercise this right, or any of the rights listed below. If you are a European resident and consider our use of your personal data to be unlawful, you have the right to lodge a complaint with the relevant supervisory authority.
b) Request correction of your personal data
You have the right to request that we correct the personal data we hold about you, although we may need to verify the accuracy of the new information you provide to us as well as possibly your identity, depending upon your request.
c) Request erasure of your personal data
You have the right to request that we delete or remove personal data where there is no good reason for us continuing to process it. Please note that we may not always be able to comply with your request for erasure if there are specific legal reasons, which will be notified to you at the time of your request.
d) Object to processing of your personal data
You have the right to object to the processing of your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation that makes you want to object to processing on this ground as you feel it impacts your fundamental rights and freedoms. You also have the right to object where we are processing your personal data for direct marketing purposes, when we are disclosing your personal data to a third party, or where the personal data is used for purposes that are materially different from the purpose(s) for which it was originally collected or subsequently authorized by you. In some cases, we may demonstrate that we have compelling legitimate grounds to process your information that override your rights and freedoms, or we are unable to unilaterally address your concerns where we are acting on the written instructions of our Customer, who is the Controller of your personal data.
e) Request restriction of processing your personal data
You have the right to request that we suspend the processing of your personal data in the following scenarios: (a) if you want us to establish the data’s accuracy; (b) where our use of the data is unlawful but you do not want us to erase it; (c) where you need us to hold the data even if we no longer require it as you need it to establish, exercise or defend legal claims; or (d) you have objected to our use of your data but we need to verify whether we have overriding legitimate grounds to use it.
f) Request transfer of your personal data
You have the right to request that the personal data we hold about you is transferred to you or to a third party. We will provide to you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. Please note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.
g) Right to withdraw consent
In circumstances where we are relying on your consent to process your personal data, you have the right to withdraw your consent at any time. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent.
h) Rights related to automated decision making
You have the right to learn more about and request to not to be subject to a decision based solely on automated processing where it has a legal or similarly serious effect.
What we may need from you
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
Time limit to respond
We try to respond to all legitimate requests within one month unless a shorter time period is required by applicable law. Occasionally, it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated
Notification of changes to our privacy policy
Unito may change this Policy from time to time. If we make any changes to this Policy, we will change the “Last Updated” date above. All historical versions of the Privacy can be found at the end of this page.
You agree that your continued use of our Sites and/or Platform after such changes to our privacy practice have been published will constitute your acceptance of such revised Policy.
Please visit this section of our website periodically in order to keep up to date with changes in this Policy.
Contact details and further information
Please also contact us if you have any questions about the information we hold about you, or to change your contact preferences with us at the following email address: contact@unitohub.com.