At Avaletta, we take privacy very seriously.
Avaletta collects your personal information
Avaletta is a provider of beautiful online accounting software that’s simple, smart, and secure and gives business owners and their advisors real-time visibility of a business’ financial position.
The Service involves the storage of Data about a company or individual. That Data can include personal information. “Personal information” is information about an identifiable individual, and may include information such as the individual’s name, email address, telephone number, bank account details, taxation details, and accounting and financial information.
Data security and privacy as core concern of Avaletta
- Access protection – Avaletta users identify themselves with a username (their own email address) and password. This access protection is realized by Microsoft.NET Forms-Based Security. This means that, for the complete Avaletta website, access security is enforced automatically ‘by design and by default’.
- Transport security – All traffic between your PC and Avaletta’s servers is encrypted by the SSL encryption technology (1024 bit RSA encryption). This means that all data that passes over the internet (such as passwords and financial data) are protected from ‘eavesdropping’ on the data traffic on the internet.
- Digital server security – Avaletta’s servers are located behind a sophisticated Basewall firewall to prevent unauthorized access via the internet. Because the servers are used exclusively for hosting the Avaletta environment, the firewall is configured so strict that almost all traffic is blocked from the internet.
Physical security – Avaletta uses the public Web Services cloud from Amazon. Amazon is the leader in cloud infrastructure. Avaletta’s servers are located in the datacenters of Amazon Europe. The data is stored with Amazon in Dublin, Ireland, and therefore within the EU and its laws and regulations.
Backup – Every night, there is a backup created of each individual Avaletta administration. Also, this backup is copied and stored in another data center, located at a different place. This means that, in all the possible calamities, the continuity of the stored data is optimally guaranteed. All database backups within the last seven days can be retrieved.
Avaletta may collect personal information directly from you when you:
- register to use the Service,
- use the Service,
- visit our Website.
you can always choose not to provide your personal information to Avaletta, but it may mean that we are unable to provide you with the Service.
Avaletta collects, holds, and uses your personal information for limited purposes
Avaletta collects clients’ personal information so that we can provide our clients with the service and any related services the client may request. In doing so, Avaletta may use the personal information we have collected from the client for purposes related to the services including to:
- Verify identity,
- Administer the Service,
- Notify clients of new or changed services offered in relation to the service,
- Carry out marketing or training relating to the Service,
- Assist with the resolution of technical support issues or other issues relating to the Service,
- Comply with laws and regulations in applicable jurisdictions, and
- Communicate with the client.
By using the service of Avaletta, clients’ consent to personal information being collected, held and used in this way and for any other use the client authorize. Avaletta will only use clients’ personal information for the purposes described in this Policy or with the client express permission.
It is the clients’ responsibility to keep passwords to our service safe. Client should notify us as soon as possible if the client become aware of any misuse of passwords, and immediately change the password within the Service or via the “Forgotten Password” process.
Avaletta can aggregate your non-personally identifiable data
By using our services, the client agrees that Avaletta can access, aggregate and use non-personally identifiable data Avaletta has collected from the client. This data will in no way identify the client or any other individual.
Avaletta may use this aggregated non-personally identifiable data to:
- Assist us to better understand how our customers are using the Service,
- Provide our customers with further information regarding the uses and benefits of the Service,
- Enhance small business productivity, including by creating useful business insights from that aggregated data and allowing clients’ to benchmark business’ performance against that aggregated data, and
- Otherwise to improve the Service.
Avaletta takes steps to protect your personal information
Avaletta is committed to protecting the security of your personal information and we take all reasonable precautions to protect it from unauthorized access, modification or disclosure. Personal information is stored on secure servers that have SSL Certificates issued by leading certificate authorities Entrust & GTE Cybertrust, and all Data transferred between client and our services is encrypted.
However, the Internet is not in itself a secure environment and we cannot give an absolute assurance that your information will be secure at all times. Transmission of personal information over the Internet is at your own risk and you should only enter, or instruct the entering of, personal information to the service within a secure environment.
We will advise clients’ at the first reasonable opportunity upon discovering or being advised of a security breach where personal information is lost, stolen, accessed, used, disclosed, copied, modified, or disposed of by any unauthorized persons or in any unauthorized manner.
Avaletta only discloses your Personal Information in limited circumstances
Avaletta will only disclose personal information clients have provided to us to entities outside the Avaletta group of companies if it is necessary and appropriate to facilitate the purpose for which personal information was collected pursuant to this Policy, including the provision of the Service.
Avaletta not otherwise disclose personal information to a third party unless clients’ have provided express consent. However, client should be aware that Avaletta may be required to disclose personal information without consent in order to comply with any court orders, subpoenas, or other legal process or investigation including by tax authorities, if such disclosure is required by law. Where possible and appropriate, we will notify if we are required by law to disclose personal information.
You may request access to your personal information
It is the client responsibility to ensure that the personal information provided to us is accurate, complete and up-to-date. Client may request access to the information we hold, or request that we update or correct any personal information we hold, by setting out this request in writing and sending it to us at firstname.lastname@example.org.
Avaletta will process this request as soon as reasonably practicable, provided we are not otherwise prevented from doing so on legal grounds. If we are unable to meet this request, we will let know why.
We’ll only keep your personal information for as long as we require it for the purposes of providing clients’ with the service. However, we may also be required to keep some personal information for specified periods of time, for example under certain laws relating to corporations, money laundering, and financial reporting legislation.
In providing our service, Avaletta utilizes “cookies”. A cookie is a small text file that is stored on the computer for record-keeping purposes. A cookie does not identify personally or contain any other information about you but it does identify the computer.
We and some of our affiliates and third-party service providers may use a combination of “persistent cookies” (cookies that remain on your hard drive for an extended period of time) and “session ID cookies” (cookies that expire when you close your browser) on the Website to, for example, track overall site usage, and track and report on your use and interaction with ad impressions and ad services.
Client can set your browser to notify when client receive a cookie so that there is an opportunity to either accept or reject it in each instance. However, client should note that refusing cookies may have a negative impact on the functionality and usability of the Website.
We do not respond to or honor “Do Not Track” requests at this time.
Client can opt-out of any email communications
Avaletta sends billing information, product information, Service updates and Service notifications to you via email. Our emails will contain clear and obvious instructions describing how client can choose to be removed from any mailing list not essential to the Service. Avaletta will remove clients’ at their request.
Avaletta and Personal Information
Avaaletta takes the protection of personal information seriously. We have adopted the General Data Protection Regulation (GDPR) in order to redesign our programme for data protection and data security. The new European legislation has been incorporated into our internal procedures, the training of our staff and the design of our processes, systems and relevant (internal) documentation.
This policy may be updated from time to time
Avaletta reserves the right to change this Policy at any time, and any amended Policy is effective upon posting to this Website. Avaletta will make every effort to communicate any significant changes to you via email or notification via the Service. Clients’ continued use of the Service will be deemed acceptance of any amended Policy.
Last updated: April 2018