Privacy Policy

Safeguarding your privacy is a priority for Xrev^®. This Privacy Statement delineates the procedures through which Xrev^® handles personal data acquired via websites, products, and services (“applications”), including those disseminated by resellers and other channel partners. It also covers data obtained through in-person and digital events, webinars, surveys, marketing activities, and visits to our premises—collectively referred to as our “offerings.” The terms “Xrev^®,” “we,” or “our” pertain to Xrev^® Technologies Pty Ltd. and other entities within the Xrev^® corporate family linked to this Privacy Statement.

In certain instances, we may provide just-in-time privacy notices to enhance transparency at the moment of data collection. For instance, you might encounter a just-in-time privacy notice explaining a specific data collection program or when registering for an event.

This Privacy Statement elucidates how we process personal data for our internal purposes. Additionally, we process personal data on behalf of our customers under written agreements. It’s essential to note that we do not govern the data processing or protection practices of our customers, which may deviate from those outlined in this Privacy Statement.

The term “personal data” refers to information that identifies, or can reasonably be linked directly or indirectly to, an identifiable person. This excludes information that is anonymous, de-identified, or aggregated, as defined by applicable law. For the purposes of this Privacy Statement, “personal data” and “personal information” share the same meaning and are used interchangeably.

We acquire personal data through various methods. Some personal data is obtained directly from you, while other data is automatically collected or generated based on your interactions with us through our offerings. This includes data gathered through the use of cookies and other tracking technologies. Additionally, we may receive data about you from third parties.

We gather information directly from you when you engage with our services, such as signing up for an account, registering a product, subscribing to our newsletter, participating in events, surveys, or social media interactions, and visiting our premises. The information we collect may include:

• Identifiers: Name, telephone number, physical and/or email addresses, account username, and account password.
• Professional information: Occupation, industry, professional licenses, work experience, employment history, and other qualifications.
• Commercial information: Subscription plans, purchased offerings, events attended, and expressed interests.
• Financial account information: Payment details provided during purchases (credit card information is processed by third-party providers like PayPal and Stripe).
• Education information: Educational background and training records.
• Protected characteristics: Date of birth (where applicable).
• Sensitive information under applicable laws: Usernames, passwords, government identification numbers, and information related to children.
• Visual, audio, and electronic information: Photos, signatures, records of interactions, service details, preferences, and communication preferences.

For purchases made through our websites, credit card information is handled by payment processors (PayPal, Stripe), and we do not store such financial details. Please refer to the privacy notices of our payment processors for more information.

We automatically collect or generate certain personal information about you through your interactions with our offerings. This includes:

• Identifiers: Unique user identifiers, device identifiers, IP addresses, cookie identifiers, information about product licenses, and usernames.
• Internet or electronic network activity information: Website domains visited, activities and offerings used, engagement in posts, discussions, and other interactions, geolocation information, and electronic device details.
• Commercial information: Records of interest in our offerings or completed purchases.
• Sensitive information under applicable laws: Usernames, passwords used to access your account, and precise geolocation information.
• Inferences drawn from personal and offering usage information.

We use technologies like cookies, pixels, and beacons to collect and store information during your use of our applications. You can manage your preferences for Cookies at any time.

We also utilise analytics programs, including third-party tools like Google Analytics, to automatically gather information about your use of our products and services.

Social Networking Data: Our offerings may contain Plugins linking to other company services and platforms. Interactions with Plugins may transfer information to third-party providers. When connected to a social network on a shared device, others may see information displayed in connection with your profile on the social network service or platform. Be mindful of this when using our offerings.

We receive and process information from various sources, including affiliates, third-party sources, business partners, contact databases, enrichment services, channel partners (resellers), marketing service providers, data aggregators, and social networking services (LinkedIn, Facebook). Publicly available sources and licensors also contribute to our data. The personal information categories collected from these sources include:

• Identifiers: Names, phone numbers, and email addresses.
• Professional information: Occupations, industries, professional licenses, work experience, employment histories, and other qualifications.
• Education information: Educational background.
• Commercial information: Events attended or activities participated in.
• Inferences: Derived from usage information, preferences, behaviours, and other attributes.

Per applicable law, we may merge this data with information collected directly to maintain accuracy and provide you with more relevant content, experiences, applications, and offerings.

We collect and utilise your personal information for the following purposes:

• Identity Validation: Necessary to perform our contract with you.
• Service Delivery: Fulfilling contractual obligations, providing insights, and recommendations, including usage analysis for billing or discounts.
• Important Information: Sending crucial details about your account or purchases within our contractual scope.
• Information Requests: Responding to customer inquiries, within the contract or our legitimate interest.
• Security Maintenance: Safeguarding and troubleshooting issues related to our offerings, within the contract or our legitimate interest.
• Anonymisation and Aggregation: Creating anonymous, aggregated, or de-identified data for research and analysis, without attempting re-identification.
• Offering Development and Improvement: Enhancing current and future offerings and user experiences through automated systems and analytics, based on legitimate interests or consent.
• Usage Understanding: Analysing usage patterns and user demographics to enhance offerings and user experience, based on legitimate interests or consent.
• Strategic Decision-Making: Utilising data for strategic business decisions and performance reporting, based on legitimate interests or consent.
• Learning Content and Communication: Sending learning content, tutorials, newsletters, and relevant information to improve customer experience, based on legitimate interests or consent.
• Targeted Advertising: Delivering targeted advertising and promotional offers, based on legitimate interests or consent.
• Detection and Prevention: Identifying and preventing non-valid use, such as fraud and software piracy.
• Enforcement and Compliance: Enforcing legal terms and ensuring compliance with them.
• Legal Compliance: Complying with legal obligations under applicable laws.
• Rights Protection: Protecting the rights, safety, and property of Xrev^®, you, or any third party.
• Consent-Based Processing: Undertaking other purposes with your consent.
• Additional Disclosures: As further described in offerings, supplemental notices, or in our applications.

If processing relies on your consent, you can withdraw it at any time, and your withdrawal won’t affect prior processing. When processing is based on legitimate interests, you may have the right to object based on your specific circumstances. Failure to provide data required for legal compliance or contract fulfillment may impede or delay our obligations. For more details, refer to “What Rights and Choices Do You Have?” below.

We disclose the categories of information mentioned above to the following categories of entities:

• Service Providers: This includes vendors, consultants, contractors, and other service providers who perform various business functions on our behalf. They may handle marketing, sales, consulting, communications, software maintenance and support, analytics, social media, market research, auditing for valid use, license compliance, security, user verification, localisation, and payment processing. Service providers process information under contractual terms that limit their use of your data.
• Social Networking Services and Platforms: We may share information with social networking services, platforms, or publicly if you choose to connect or share information through these services.
• Legal Obligations: We disclose information to individuals or entities as required by law, such as pursuant to a subpoena or court order.
• Law Enforcement and Legal Counsel: Information may be shared with law enforcement, legal counsel, or other necessary parties when reasonably necessary to comply with applicable laws, regulations, legal processes, government requests, prevent or respond to fraud or software piracy, and protect the rights, property, or safety of Xrev^®, our customers, and the public.
• Business Transactions: Information may be shared with parties involved in business transactions, including the sale, merger, consolidation, acquisition, change in control, transfer of substantial assets, bankruptcy, or reorganisation, and any subsequent integration.
• With Your Consent or Direction: We may share your personal information with other parties when we have your consent or as directed by you for any requested or permitted purposes.

Additionally, we may share aggregate, anonymous, or de-identified demographic, statistical, and other information about the use of our offerings with third parties for marketing, analytics, planning, and other purposes. This information will not specifically identify any particular user.

We employ a combination of reasonable and appropriate physical, organisational, administrative, and technological measures to safeguard your data against unauthorised access, use, loss, alteration, destruction, modification, or other malicious actions.

Our security protocols include the following measures:

• Physical Security: Implementing measures to secure physical access to facilities where data is stored.
• Organisational Controls: Establishing organisational policies and procedures to govern data protection practices and ensure compliance.
• Administrative Safeguards: Employing administrative measures to limit access to personal data to employees, contractors, and agents of Xrev^® strictly based on job responsibilities. Access is granted only to those who require the data to perform their assigned functions.
• Technological Protections: Utilising technological safeguards to protect data integrity, confidentiality, and availability. This includes encryption, firewalls, secure socket layer (SSL) technology, and other industry-standard security measures.

By implementing these security measures, we strive to maintain the confidentiality and integrity of your personal data, ensuring it is handled with the utmost care and protection.

As a user, you have certain rights and choices regarding your personal data:

• Access and Management: You can access, update, delete, or receive a copy of your personal data by logging into your Xrev^® account. If you don’t have an account, you can submit a deletion request.
• Consent Withdrawal: If we process your personal data based on your consent, you have the right to withdraw that consent at any time.
• Retention of Data: We may retain certain data for legal and internal business purposes. Upon request, we can provide a copy of the personal data in your account. Identity verification may be required.
• Additional Rights: Depending on your jurisdiction, you may have additional rights, including the right to object to processing, have your data blocked or anonymised, transfer your data to a third party, opt-out of marketing communications, opt-out of certain disclosures to third parties, opt-out of targeted advertising, and more.
• Limitations: Some rights may be limited by local law. For instance, we may need to retain data for transaction completion, legal compliance, or other business purposes.
• Contacting Us: To exercise your rights, contact us. If we process data on behalf of our customers, we may refer your request to them, cooperating as per any contractual arrangements.

Please note that you won’t be denied services for exercising your rights, but there might be variations in service levels or pricing as allowed by law. If you’re dissatisfied, you can lodge a complaint with the relevant data protection authority or appeal our decisions regarding your requests.

At Xrev^®, we prioritise the secure storage and responsible retention of your personal data:

• Server Locations: Your personal data and content are stored on our servers and those of our service providers. As these servers are located globally, your data may be transferred across borders and stored outside your country or region.
• Data Retention Duration: We retain your personal data for a period that is reasonably necessary, permitted, and proportionate to the purpose for which it was collected. This includes providing the requested offerings, legal defence, and compliance with legal obligations.
• Retention Criteria: Our retention period is determined based on factors such as the duration of our relationship, the nature and sensitivity of the processed data, legal obligations, the risk of harm from unauthorised disclosure, and alternative means to achieve processing purposes.
• Backup and Business Continuity: Copies of data may persist for additional time for backup and business continuity purposes.
• Technical and Legal Constraints: There might be instances where we are unable to fully delete, anonymise, or de-identify your personal data. This can be due to technical, legal, regulatory compliance, or other operational reasons.

Our commitment is to balance the need for data retention with your privacy and security, ensuring compliance with applicable laws and regulations.

In the course of providing our services, Xrev^® may transfer personal data to countries outside the European Economic Area (EEA) or other regions with data protection laws that may differ from those of your jurisdiction. Xrev^® ensures that such transfers are conducted in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Xrev^® relies on Standard Contractual Clauses (SCCs) approved by the European Commission or other appropriate safeguards to establish a legal basis for the cross-border transfer of personal data.

If you have any questions or require further information regarding the safeguards in place for the collection, use, protection, storage and retention of personal data, please contact our Data Protection Officer using the contact link below.