Privacy Policy

1. GENERAL

1.1 This privacy policy (“Privacy Policy”) applies when ZADA Solutions Pte, Corporate Registration No. 202111326C, 160 Robinson Road, #14-04 Singapore Business Federation Centre (”ZADA Solutions”) provides a Wallet via the ZADA mobile application (“Service”).

1.2 You have registered as a user of the Service according to the Terms of Use for the Service. This Privacy Policy constitutes an integral part of the Terms of Use.

1.3 You should always feel secure when providing personal data to us. This Privacy Policy is designed to show you how your personal data is processed securely in accordance with applicable legislation.

1.4 When the Service is used, several parties can be involved. This Privacy Policy only applies in relation to the processing performed by ZADA Solutions in its capacity as data controller. Therefore, ZADA Solutions recommends that you also read the privacy policies of the other parties who may be involved in the use of the Service, for example, the parties who provide the services where you can share the credentials stored in your ZADA Wallet.

1.5 In addition to the requirements set forth in the Terms of Use, you must also accept this Privacy Policy in order to use the Service.

2. PERSONAL DATA CONTROLLER AND DATA PROTECTION OFFICER

2.1 ZADA Solutions is the data controller for ZADA Solutions’ processing of your personal data, and is responsible for ensuring that the processing is performed in accordance with applicable legislation.

2.2 To the extent that the Service relates to a Credential, the organisation is the personal data controller for the data they are responsible for about you. For example, this can be in your role as an employee, customer or as member in an organisation. In these cases, ZADA is the personal data processor.

2.3 ZADA Solutions has appointed Mr. Andreas Sigurdsson as the Data Privacy Officer (“Data Privacy Officer”). The Data Privacy Officer’s duty is also to monitor that ZADA Solutions processes personal data in accordance with applicable legislation. Contact information for the Data Protection Officer is [email protected]. +46-723-520535.

3. HOW WE PROCESS YOUR PERSONAL DATA

3.1 ZADA Solutions will process your personal data for the following purposes and for the following legal reasons

  • Creating a ZADA Wallet identified by your phone number and name
  • Sharing your name and phone number to the organisation where you create a secure connection

3.2 You can withdraw your consent regarding ZADA at any time by notifying ZADA Solutions in written form.

3.3 ZADA Solutions shall not process your personal information for automated decision-making or profiling.

3.4 In addition to accepting the Terms of Use and this Privacy Policy, you can choose to give consent for certain personal data processing such as creating a connection with an organisation or sharing a credential with an organisation. The legal basis for us to process this data will be your explicit consent.

3.5 Your digital credentials. Our digital identity technology and digital wallets are designed to provide a secure method for consumers to access and exchange identity-related information (“digital credentials”) when dealing with various organisations, including when they use financial and other services and when purchasing goods and services. These digital credentials are stored in the end-user’s wallet. We host the data through third-party cloud service providers. We also hold encryption keys relating to your encrypted data. Where We provide the data hosting service, users’ data is held on our servers in an encrypted form that does not enable the identification of specific individuals, even by ZADA itself.

3.6 Commercial Communications. To the extent permitted under applicable law, We may use the information We collect or receive from you to communicate directly with you in relation to our services and technologies. Subject, where necessary, to obtaining your consent to receiving such communications. We may also use the information to send you service-related notices (e.g., account verification, technical and security notices).

4. FOR HOW LONG DO WE STORE YOUR PERSONAL DATA?

4.1 Your personal data is stored as long as is needed to fulfil the objectives that require the data to be collected in accordance with this Privacy Policy and to comply with laws and regulatory requirements. Normally your personal data is stored for ten years in order for us to comply with the regulations.

4.2 At any time, you may cancel use of the Service by selecting “Delete account” or a similar function in the Service and block the Service according to the instructions provided by ZADA Solutions. ZADA Solutions does not retain your personal data after you have cancelled use of the Service according to this section 4.2, unless it is required by law or to protect ZADA Solutions’s legitimate interests, for example, in case of a legal proceeding.

5. WHO DO WE SHARE YOUR PERSONAL DATA WITH?

5.1 ZADA Solutions will share your personal data with the parties you consent to sharing with, when identifying yourself with ZADA. These are defined as third parties or specifically for ZADA, Relying Parties as stated in the Terms of Use. If you do not consent to sharing your data, nothing will be shared.

6. YOUR RIGHTS

6.1 ZADA Solutions, in its capacity as the data controller, is responsible for ensuring that your personal data is processed in accordance with applicable law.

6.2 ZADA Solutions shall, at your request or on its own initiative, correct, de-identify, delete or complete information that is determined to be incorrect, incomplete or misleading.

6.3 You have the right to require from ZADA Solutions access, correction or deletion of your personal data (for example, if deletion is required according to applicable legislation), request restrictions on the continued processing of your personal data as well as the right to object to data processing (for example, if you question whether the personal data is correct or if the processing is legal). ZADA Solutions shall notify each recipient regarding which personal data has been removed according to item 5 above if any corrections or deletions of the information as well as restrictions on further processing of the information occur according to item 6.

6.4 You are entitled to data portability, in other words, the right under certain circumstances to receive and transfer your personal data to another data controller in a structured, generally usable and machine-readable format.

6.5 ZADA Solutions may process your personal data for direct marketing to you if you have consented to this. If you do not want ZADA Solutions to use your personal data for direct marketing, you have the right to provide written notification of this to ZADA Solutions at any time. Once ZADA Solutions has received your notification, ZADA Solutions shall cease processing your personal data for marketing purposes.

6.6 Once per calendar year, you are entitled to obtain an extract from the registry of ZADA Solutions, free of charge with a signed, written request, indicating which personal data about you has been recorded, the purposes of processing the data and the recipients who have received the data or will receive the data. You are also entitled to receive information in the extract from the registry regarding where the data was collected, if the personal data was not collected from you directly, the occurrence of automated decision-making (including profiling) as well as the anticipated period during which the data will be stored or the criteria that are used to determine this period. Furthermore, you are also entitled, with the abstract from the registry, to receive information about your other rights as specified in section 6.

6.7 You are entitled to submit complaints regarding ZADA Solutions’s processing of your personal data to your national data protection authority.

7. CHILDREN’S PERSONAL DATA

Children have the right to protection when using e-services, and a verified age check may restrict unwanted access to services directed at children. Children’s personal data is extra sensitive and ZADA provides children with clear information about what the service entails. ZADA continuously improves information, controls and protective measures adapted for children as well as guardians’ opportunities to give consent and manage the Service for their children.

ZADA is available for children from the age of eight, with the guardian’s consent to the processing of the children´s personal data. Children from the age of 13 may, according to current data protection legislation, give their own consent.

If you as a guardian become aware that your child has submitted information to ZADA and have objections or comments, you can contact us at the specified contact information.

8. PROTECTION OF YOUR PERSONAL DATA

You should always feel secure when providing personal data to us. Therefore, ZADA Solutions has taken the necessary safety precautions to protect your personal data from unauthorised access, modification and deletion.

For security purposes, we perform register maintenance, which means that we block and establish a blocking list of deceased users who can no longer use the services, and to prevent others from using the Services in the name of such users.

9. COOKIES

ZADA Solutions uses techniques similar to cookies to provide certain functions in the app. The information is stored in the form of a file containing the users encrypted session status (during an ongoing session) as well as the user settings that improve the user experience before a user is authenticated for the app (which are saved between sessions). For example, the information is used to remember the selected language for the app. This information is not provided to third parties. If you no longer want ZADA Solutions to store or collect the information, you must cancel your use of the Service according to section 4.2 above.

10. CHANGES TO THIS PRIVACY POLICY

ZADA Solutions has the right to change this Privacy Policy at any time. The latest and current version is published on the ZADA Solutions website, www.zada.io. In the event of significant changes in this policy, ZADA Solutions will inform you in an appropriate manner, for example through information in the ZADA mobile application, via email or via a notification in ZADA.

If you do not accept the changed terms, you have the right to terminate the agreement with ZADA Solutions before the changes take effect. You terminate the agreement by following the instructions in section 4.2 above.

11. CONTACT INFORMATION

Please do not hesitate to contact ZADA Solutions if you have any questions about this Privacy Policy, the processing of your personal information or if you would like an extract from the registry. ZADA Solutions’s contact information can be found under section 2 above.