Orlogix's Privacy Statement


This version
date written : 13 august 2008
there are no previous versions



Identity

This website is called www.orlogix.com. It belongs to and is solely operated by the staff of "ORLOGIX".

"ORLOGIX" is a Registered Business no. 236567 with Republic of Ireland Companies Registration Office http://www.cro.ie/

"NPR SOFTWARE LIMITED" trades as "ORLOGIX"


"NPR SOFTWARE LIMITED" is a Registered Business no. 317770 with Republic of Ireland Companies Registration Office http://www.cro.ie/

"ORLOGIX" was formed in 200? and has been trading continuously since then.

"ORLOGIX" and "NPR SOFTWARE LIMITED"'s Company Registered Office is


B5 Corcanree Business Park,
Dock Road,
Limerick City,
County Limerick,
Republic of Ireland.
map

This is also the current main office and operations center.


This office can be contacted in relation to any matter at the above address or as follows


Telephone - +353 061 123456
Fax - +353 061 123456
Email - info@orlogix.com



Purpose

The primary purpose we gather data is to accept and process orders for our products. The data so gathered is kept to a practical minimum. In particular we do not gather or store credit card numbers during online payment transactions. We pass the customer to our payment processor service provider (www.worldpay.com) who will then perform the financial transaction with the customer and pass the result back us. At no point are we aware of the customers credit card number.

We will use contact information passed back to use from our payment processor service provider to automatically create a login on our site for the customer. This is a technique called 'lazy registration' and we use it to make the customers experience easier by avoiding filling out similar forms twice.

We will use transaction information passed back to use from our payment processor service provider to facilitate any future queries on that transaction either from our internal staff or from the customer themselves. This information does not contain the customers credit card number.

The secondary purpose we gather data is to provide technical support for our products to customers. We will ask the customer for technical details of the product and the technical environment they are attempting to use it in. On some occasions there may be a technically valid reason for that data to include personally identifying data. It is also possible the customer may supply materials such as a log file to use that contains personally identifying data without their direct knowledge. In all such cases we will inform the customer of the possability and only retain data relevent to the technical support issue under consideration.

We may also need to ask the customer to provide proof of purchase of the product if it was purchased though a 3rd party. This data is used to verify that the customer is entitled to technical support and or a refund where applicable.

Following common industry practise of web site logging we also gather detailed statistics on the use of our website for the purpose of analysing visitors behaviour and improving the design of the site. We use our internal server log files and the services of "Google Analytics" (http://www.google.com/analytics/) to gather, store and analyse this data.

"Google Analytics" privacy policy can be read here http://www.google.com/intl/en_ALL/privacy.html

Lastly we will occassionaly use email addresses to send marketing materials. Some of these email addresses will only be added to the mailing list after specific opt-in permission is granted by the owner. Email address owners who request removal from any of our mailing lists will be removed before the next mail is sent out.

Disclosure

We have no plan to disclose any data we gather to any 3rd party except where required by applicable law.

Right of Access

Under section 4 of the Republic of Ireland's "The Data Protection Acts 1988 & 2003" a person has a right to be given a copy of his/her personal data. The procedures to obtain such data are as follows.

Informally, the vast majority of every registered users gathered data will be directly accessible by them when they log into the site.

Formally as a "Subject Access Request" any visitor is welcome to contact is in writing only at the address above with appropriate details of their identity and the requested data. We may charge a fee not exceeding &euro 6.35 and will reply within 40 calendar days of the receipt of such a request.

Right of rectification or erasure.

Under section 6 of the Republic of Ireland's "The Data Protection Acts 1988 & 2003" a person has a right to have his/her personal data corrected, if inaccurate, or erased, if we do not have a legitimate reason for retaining the data. The procedures to obtain such data are as follows.

Informally, the vast majority of every registered users gathered data will be directly accessible and many instances updatable by them when they log into the site. Some corrections and erasures can be made in this way.

Formally as a "Right of rectification or erasure Request" any visitor is welcome to contact is in writing only at the address above with appropriate details of their identity and the requested data. We will not charge a fee and will reply within 40 calendar days of the receipt of such a request.

Extent of data being processed.

In general, all the kinds of data gathered can and may be used in all purposes listed above. In nearly all areas of interaction with the visitor, we believe their experience can be improved through fullest awareness of our previous interactions with them. For instance, even server log data could improve technical support experiences by providing the support analyst with information on what products the customer has bought and what on-line help documents they may already have read. We believe our website should function with nearly as high a quality of service as a real-life attentive, informed and discrete shop assistant.

Right to refuse cookies.

First, What is a cookie ?

Please be aware that even though the communication between your web broswer (Internet Explorer, Firefox, Mozilla, Safari, Opera etc) and a web site may seem continuous in the sense of a normal telephone conversation, it is not in fact. Immediately after every web page loads the webserver (www.orlogix.com) completely forgets about that visit in the sense that if you request a another page from that site (by clicking on a link) it will not recognise you and therefore cannot offer any personal and secure services.

Visiting a web server is like talking to a person who forgets who you are after every single sentance. Obviously if that person was also a bank clerk it would make financial transactions impossible. This is where 'cookies' come in. They resolve this limitation by acting as identity badges so that the server recognises you when you return. Cookie's are much more discrete than normal badges however as each one is only visible to a single server. ie google.com cannot view your orlogix.com cookie and orlogix.com cannot view your google.com cookie or any other cookie.

Although there are other solutions in use to solve the same problem that cookies solve, we have choosen to use cookies because we believe they are the most secure and private of all the alternatives. We dont store any personal information in the cookie itself, it's just a long random list of numbers.

Our site uses cookies to verify the identity of registered users and customers.

Acceptance of our cookie is required to place an order on our site.

Acceptance of our cookie is required to access purchased products which are electronic downloads.

Acceptance of our cookie is only required during actual visits. It may deleted at all other times without effecting the services our site can provide in any way.

Our server activity logging provider "Google Analytics" will also attempt to use cookies. You may disable these without effecting your use of our site.

If you are not comfortable using cookies, you can set your web browser to deny all cookies from orlogix.com and contact us by email, phone or post to make queries, place orders and receive customer service and technical support. We'd be happy to talk to you. Please consult your web browsers help documentation for instrustions on blocking cookies if required.

Security.

We take our security responsibilities seriously, employing the most appropriate physical and technical measures, including staff training and awareness and we review these measures regularly.

Adequate, relevant, not excessive.

We are legally obliged not to hold more data than is necessary for the purpose for which we collect them. Any data in excess of this requirement will either not be requested or, if volunteered, deleted. We review all data supplied/obtained and delete that which is not necessary, or which is no longer necessary.

Retention.

In general we retain customers contact, order and support query information as long as we expect to provide support for their purchased products.We do not request, obtain or retain credit card numbers and thus have no retention policy for them.Other non-sensitive details of credit card transactions are retained on the same time scale as the customers other data.

Complaint resolution mechanism.

If visitors have a complaint they can contact us through any of the above methods and we would be happy to do our best to resolve any issue.

Platform for Privacy Preferences (P3P)

Orlogix are currently evaluting participation in this evolving scheme.