Privacy Policy
TABLE OF CONTENTS
Last updated: [03] May 2023
Information Systems Asset Management, Inc. (ISAM) respects your right to privacy. This Privacy Notice explains who we are, how we collect, share and use personal data about you and how you can exercise your privacy rights. This Privacy Notice only applies to personal data that we collect through our website at https://www.isamgroup.com (“Website”).
If you have any questions or concerns about our use of your personal data, then please contact us using the contact details under the “How to contact us” heading below.
Quick Links
We recommend that you read this Privacy Notice in full to ensure you are completely informed about your personal data.
Table of contents
- What does Information Systems Asset Management, Inc. do?
- Personal data we collect, why and our legal basis
- Who we share your personal data with
- Cookies and similar tracking technology
- How we keep your personal data secure
- International data transfers
- Data retention
- Your data protection rights
- Updates to this Privacy Notice
- How to contact us
1. What does Information Systems Asset Management, Inc. do?
ISAM is an information technology asset management company, headquartered in the United States. Our consulting services help organisations reduce costs and compliance risk associated with their IT assets.
For more information about ISAM, please see the “About Us” section of our Website.
2. Personal data we collect, why and our legal basis
The personal data we collect from you, either directly or indirectly, will depend on how you interact with us and with our Website. The table below sets out examples of the personal information we collect and the ground on which we process this information.
In general, we will use the personal information we collect from you only for the purposes described in this Privacy Notice or for purposes that we explain to you at the time we collect your personal information.
Purpose/Activity |
Type of data |
Lawful basis for processing including basis of legitimate interest |
Information that you provide directly. We collect personal data directly from you when you choose to provide us with this information online. Certain parts of our Website ask you to provide personal data, for example when you engage with the contact us form or if you sign up to receive newsletters or other marketing materials from us |
||
To contact individuals: (a) who have expressed an interest in our services by submitting a contact us form; or (b) to handle other contact and support requests |
Identity and Contact Data including your name, company, job title, email address, telephone number and selected appointment time. |
· Necessary for our legitimate interests (to grow our business, keep our records updated and to engage with our customers) · Performance of a contract with you |
To manage our relationship with you including: (a) Notifying you about changes to our terms or privacy notice (b) Communicating with you about the services (c) When you complete one of our questionnaires |
Identity and Contact Data including your name, company, job title, email address and telephone number.
Communications Data including your feedback on our services or the performance of our Website and other communications with you (including any queries you raise with us through our website).
Advertising and Marketing Data preferences in relation to receiving marketing materials from us, communication preferences and your preferences for particular services.
Questionnaire Data such as any personal data included within your questionnaire responses. |
· Performance of a contract with you · Necessary to comply with a legal obligation · Necessary for our legitimate interests (to keep our records updated and to study how customers use our products/services and to run our questionnaires) |
To make suggestions and recommendations to you or contact prospective customers about services, sector developments and events we think may be of interest to you |
Identity and Contact Data including your name, company, job title, email address and telephone number.
Communications Data including your feedback on our services or the performance of our Website and other communications with you (including any queries you raise, with us through our website)
Questionnaire Data such as any personal data included within your questionnaire responses.
Advertising and Marketing Data preferences in relation to receiving marketing materials from us, communication preferences and your preferences for particular services. |
· Necessary for our legitimate interests (to develop our services and grow our business) (where consent is not required by marketing laws) · If required by law, we seek consent before sending marketing materials to individuals and, in such cases, consent is our lawful basis for sending marketing to you. |
Information that we collect indirectly. We collect your personal data indirectly, including through automated means from your device when you use our Website. Some of the information we collect indirectly is captured using cookies and other tracking technologies, as explained further in the "Cookies and similar tracking technology" section below. |
||
To use data analytics to improve our website, products/services, marketing, customer relationships and experiences |
Device Data collected using tags and pixels, including your IP address, your ISP, and the browser you use to visit our Website, device type, unique device identification numbers or other identifiers.
|
· Necessary for our legitimate interests (to define types of customers for our products and services, to keep our website updated and relevant, to develop our business, to inform our marketing strategy and for the security and running of our website) (where consent is not required by marketing laws) · If required by law, we seek consent before sending marketing materials to individuals and, in such cases, consent is our lawful basis for sending marketing to you. |
To administer and protect our Website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data) |
3. Who we share your personal data with
We share your personal data with the following categories of recipients:
- third party service providers and partners who provide data processing services to us as necessary to provide you with our services (to support the delivery of, provide functionality on, or help to enhance the security of our Website), or who otherwise process personal data for purposes described in this Privacy Notice. We work with the following types of third-party service providers: (i) Google Analytics to capture data about our Web visitors and (ii) HubSpot hosts our Website and captures data when visitors land on our Website which allows us to understand their behavior better. Google Analytics falls into the category of Analytics-as-a-Service (AaaS) and is a platform that collects data from our website and apps to create reports that provide insights into our business. HubSpot is a CRM platform consisting of five premium products which include marketing hub, sales hub, service hub, CMS hub and Operations hub - built on top of a collection of foundational features and tools.
- any competent law enforcement body, regulatory, government agency, court or other third party (such as our professional advisers) where we believe disclosure is necessary (i) as a matter of applicable law or regulation, (ii) to exercise, establish or defend our legal rights, or (iii) to protect your vital interests or those of any other person;
- a buyer (and its agents and advisers) in connection with any actual or proposed purchase, merger or acquisition of any part of our business, provided that we inform the buyer it must use your personal data only for the purposes disclosed in this Privacy Notice; or
- any other person with your consent to the disclosure.
4. Cookies and similar tracking technology
We use cookies and similar tracking technology (collectively, “Cookies”) to collect and use personal data about you, including to serve interest based advertising. For further information about the types of Cookies we use, why, and how you can control Cookies, please see our Cookie Notice and .
5. How we keep your personal data secure
We use appropriate technical and organisational measures to protect the personal data that we collect and process about you. The measures are designed to provide a level of security appropriate to the risk of processing. All communications between a web client and HubSpot servers are protected using TLS (1.0, 1.1, 1.2) protocol encryption using 2048 bit keys. Communications between HubSpot services are protected by using Virtual Private Networks and encrypted network protocols. Data is encrypted at rest to help protect against unauthorized access.
6. International data transfers
Your personal data may be transferred to, and processed in countries other than the country in which you are resident. These countries may have data protection laws that are different to the laws of your country (and, in some cases, may not be as protective).
Specifically, we are located in the U.S. and our Website servers are located in the United States East region or AWS in the Germany region. Our third party service providers and partners operate around the world. This means that when we collect your personal data we will process it in any of these countries.
Where personal data is transferred to countries and territories outside the European Economic Area and the UK, we do so in compliance with applicable data protection laws.
7. Data retention
We retain the personal data we collect from you where we have an ongoing legitimate business need to do so (for example, to provide you with a service you have requested or to comply with applicable legal, tax or accounting requirements).
When we have no ongoing legitimate business need or legal reason to process your personal data, we will either delete or anonymise it or, if this is not possible (for example, because your personal data has been stored in backup archives), then we will securely store your personal data and isolate it from any further processing until deletion is possible.
8. Your data protection rights
Individuals located in the UK and EEA have the following data protection rights. To exercise any of them see specific instructions below or contact us using the contact details provided under the “How to contact us” heading below.
- You may access, correct, update or request deletion of your personal data.
- You can object to processing of your personal data, ask us to restrict processing of your personal data or request portability of your personal data, (i.e. your data to be transferred in a readable and standardised format.
- You have the right to opt-out of marketing communications we send you at any time. You can exercise this right by clicking on the “unsubscribe” or “opt-out” link in the marketing e-mails we send you. To opt-out of other forms of marketing (such as postal marketing or telemarketing), please contact us using the contact details provided under the “How to contact us” heading below. If you choose to opt out of marketing communications, we may still send you non-promotional emails, such as emails about your account or our ongoing business relations.
- If we have collected and processed your personal data with your consent, then you can withdraw your consent at any time by using the contact details provided under the “How to contact us” heading below. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your personal data conducted in reliance on lawful processing grounds other than consent.
- You have the right to complain to a supervisory authority about our collection and use of your personal data. For more information, please contact your local supervisory authority. Contact details for supervisory authorities in Europe are available here and for the UK here. Certain supervisory authorities may require that you exhaust our own internal complaints process before looking into your complaint.
We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws.
9. Updates to this Privacy Notice
We may update this Privacy Notice from time to time in response to changing legal, regulatory, technical or business developments. When we update our Privacy Notice, we will take appropriate measures to inform you, consistent with the significance of the changes we make. We will obtain your consent to any material Privacy Notice changes if, and where, required by applicable data protection laws.
You can see when this Privacy Notice was last updated by checking the “last updated” date displayed at the top of this Privacy Notice.
10. How to contact us
If you have any questions or concerns about our use of your personal data, please contact us using the following details:
Location: 4152 North River Run, Minneapolis, MN 55378
Email: info@isamgroup.com
Phone: 866-530-ISAM (4726)
The data controller of your personal data is Information Systems Asset Management, Inc.