Website Privacy

Why does the company collect and process the site visitor’s Personal Data?

The company uses the site visitor’s Personal data to

1. track the number of website visitors to check if the company’s marketing efforts, in using a website as a marketing tool, are effective and functional;
2. give valuable insight to the marketing team and the web designers to optimize the user experience (UX) by tracking how site visitors interact with the company’s website and by determining the web pages that are frequently visited;
3. give the website designers insight on how to develop a more user-friendly website UI (User Interface);
4. contact the site visitors who sent a message or requested more information regarding the company’s products and services;
5. enable the technical team to conduct a feasibility check to determine the availability of internet infrastructure at the location of the prospective client/site visitor; **
6. speed up the navigation and searching within the company’s website the next time the site visitors reaccess the website;
7. analyze trends, track users’ movement on the website, and gather demographic information of the site visitor (Technical – Log Files);
8. enable the embedded technology on the company’s website to remember the site visitor’s preferences and will serve as a basis for delivering a personalized experience the next time they visit the company website. For more information, refer to the company’s Cookie Policy (https://www.infinivan.com/cookie-policy).

The Company may collect and receive information from its site visitors at several different points on its website. One way of receiving personal information is when site visitors fill up and send their queries, comments, suggestions, complaints, and other information using any of the following web pages

• Subscribe Now (https://www.infinivan.com/business)
• Apply Now (https://www.infinivan.com/residential/guaranteed-plans)
• Contact Us
  Business (https://www.infinivan.com/business/contact-us)
  Residential (https://www.infinivan.com/residential/contact)

Secondly, the Usage Data and Technical Information of the site visitor’s device are tracked and recorded automatically into the logs of the company’s website server.  Examples of Usage and Technical data are discussed below.

Personal Identifiable Information (PII)

The CONTACT US (https://www.infinivan.com/contact-us) webpage will require the site visitors to submit the following information;

• Full name
• Contact number
• Email address

The SUBSCRIPTION webpage (https://www.infinivan.com/business) will require the site visitors to submit the following information

• Full name
• Company name
• Email address
• Address **
• Contact information
• Personal Message

Please note that this information is not automatically gathered or captured from the site visitor’s device. The abovementioned data will only be stored in the company’s system once the site visitor clicks the SUBMIT button.

If the site visitors do not provide us with their email address and/ or Mobile number accurately, the company’s Customer Support may not be in a position to effectively update, inform, and respond to their concerns/ feedback.

Usage Data

Usage Data is collected automatically when browsing the website. This technology produces analytics that tracks how site visitors interact with its website contents by identifying the web pages that they access and frequently visit (for returning site visitors).

These data are helpful both to the marketing team and website developers in establishing relevance to site visitors and an opportunity to continuously improve the website in terms of content, layout, design, and UX.

These data are automatically sent to us by the site visitor’s website browsers.

Technical Information (Web Traffic Data)

In most instances, technical information cannot be readily used to determine the site visitor’s identity. The following is the most common technical information that is collected and converted to analytics/ reports by our website’s embedded technologies.

• IP address
• date and time of access to the website
• length of visits to certain pages
• browser type and version
• browser plug-in types and versions
• operating system
• pages viewed/searched for
• page interaction information (e.g., scrolling, clicks, and mouse-overs)
• page response time
• time zone setting
• download errors
• Media Access Control (MAC) address
• Computer type (Windows, Mac, others)
• screen resolution
• manufacturer and model
• language

The above-mentioned data is collected automatically by most website browsers or through the site visitor’s device.

Cookies

Cookies are text files with small pieces of data often containing a unique identifier, stored by the site visitor’s web browser when they visit a website.

The information that is gathered through cookies is used solely to assist the website designers and developers in improving the website design and function.

The company website is still functional without the retention of cookies. Site visitors may opt to block cookies from this site through their browser settings.

HTTP Cookies.  These cookies are used to identify specific users and improve their web browsing experience by remembering things like their language preferences, etc.

Required Cookies. Also known as “Strictly Necessary Cookies”, are required to enable the website’s functionality. These cookies are technically essential for the company website to perform its functions properly and effectively. Without these cookies, we may be technically unable to provide the functions which meet user’s requests, such as navigating between the pages.

Functional Cookies. These cookies allow us to analyze site usage to measure and improve its performance.

Session Cookies. These are only stored on the site visitor’s computer for the duration of their session; they disappear when the site visitor closes their web browser.

Advertising Cookies. The company website.

For more information, refer to the company’s Cookie Policy (https://www.infinivan.com/cookie-policy).

Webforms

InfiniVAN Inc. uses webforms forms on this site. As mentioned in Part 3, these forms require site visitors to give their name and contact information.

In addition to the items mentioned in PART 1 of this Website Privacy Notice, the technical information that we collected from the site visitors is used primarily by the technical team to keep the website safe and secure. These data are used for tracking website errors/bugs and for investigations about security or data breaches.

Secondly, these data are used by the Marketing team to improve the website’s UI by updating its layout, design, and overall appearance.

Lastly, these data are used to generate reports/ statistics/ analytics of the company’s website that can be used by both the marketing and Management in identifying usage trends, determining the effectiveness of the company’s promotional campaigns, improving its products and services, and to determine the relevance of its website to target audiences and the general public.

All information collected by domains maintained by InfiniVAN Inc. is stored in secured and 24/7 operational data centers which are kept in a secure environment.

We also store all the site visitor’s data on a password-protected cloud server provided by third-party hosting vendors with whom the company has contracted. The said contractors have established security measures to protect their personal information from unauthorized access, use, or disclosure.

All information will be stored in a database for 1 month (after the company’s Customer Support and Data Management Department has consolidated and prepared the monthly report of the client customer interactions/analyses and after inquiries and requests are acted upon) after which shall be disposed of through permanent deletion.

We safeguard the confidentiality, integrity, and availability of the site visitor’s personal information by maintaining a combination of organizational, physical, and technical security measures based on generally accepted data privacy and information security standards. Among the measures that the company implements are the following:

• Authorized Personnel. To prevent unauthorized access to personal information, only authorized INFINIVAN INC. personnel have access to the company website’s back-end and front-end as well as the abovementioned personal information that the company shares with its third-party provider for analytics, the exchange of which will be facilitated through email.
• Anonymized digital files. All digital files shall be anonymized and we will not keep any form of physical record of these personal files.
• Secured devices. The authorized personnel use devices that have layers of security features (physical security measures, antivirus software, firewall, etc.) every time they access the website host or cloud storage.
• Organizational measures include having an IT Team in Japan and the Philippines that manages and develops the company website; Both have regular employees and are fully aware of the responsibilities and security protocols involving website security;
• Physical measures include having a secured and properly ventilated Data Center room that houses the company’s servers and backup systems;
• Technical measures include having end-to-end encryption, multi-factor authentication on devices that are used to access the servers, and data classification (whenever suitable);
• Back-up measures against natural disasters, power disturbances, external access, and similar threats;

 Responsibility for External Sites:

This website may contain links to the website of the company’s Social Media Accounts and other websites where the company is affiliated/ connected. Some of those websites may be operated by third parties. We provide the links for the site visitor’s convenience, but we do not review, control, or monitor the privacy practices of websites operated by others.

The company is not responsible for the performance of websites operated by third parties or for the site visitor’s business dealings with them. Therefore, whenever the site visitor leaves the InfiniVAN website, it is recommended that they review each website’s privacy practices and make sure to clear/delete the browsing history and cookies of the site visitor’s web browser.

Regularly deleting cookies doesn’t fully eliminate the risk of being exposed to data breach/ leak but it is still a great way to improve the site visitor’s online security and reduce the risk of being a victim of session hijacking.

Personal data processed by the company is not shared with any other party unless such disclosure is allowed under Section 12 or 13 of the DPA.

If site visitors provide us with their personally identifiable information through the company’s website, it shall

• not share, sell, or rent it to a third party, vendor, supplier, and the like;
• not use the site visitor’s contact information to send them announcements or marketing promos;
• not shared with other persons or organizations, unless required or permitted by law or to comply with a legal obligation especially that of the National Privacy Commission.

Physical records shall be disposed of through shredding, while digital files shall be anonymized. In all instances, the company’s manner of disposal shall ensure that the personal information shall no longer be retrieved, processed, or accessed by unauthorized persons.

Part 5 of this policy discussed storage and retention. After the legitimate purpose of the collected personal data has been served, all will be permanently deleted from the system including those that are saved on the company’s backup storage system.

Under the DPA, all site visitors have the right to be informed regarding the processing of their personal information that was collected from them.

Right to be informed means that the data subject has the right to know whether their personal data shall be, are being, or have been processed, including the existence of automated decision-making and profiling.

Right to access involves being able to compel any entity possessing any personal data to provide the data subject with a description of such data in its possession, as well as the purposes for which they are to be or are being processed. This must be complied with in an easy-to-access format, accompanied by a description in plain language. The data subject has the right to request information regarding the designation, name or identity, and address of the PIC’s data protection officer (DPO).

Right to object to the processing of the data subject’s personal data where such processing is based on consent or legitimate interest. They can also object to the processing of their personal data for direct marketing, profiling, or in cases of automated processing. It grants the data subject the choice of refusing to consent, as well as the choice to withdraw consent, as regards collection and processing.

Right to erasure or blocking allows the data subject to suspend, withdraw, or order the blocking, removal, or destruction of his or her personal information from the personal information controller’s filing system in both live and backup systems.

Right to rectify, allows the data subject the right to dispute the inaccuracy or error in their personal data and have the PIC correct the same within a reasonable period of time.

Right to data portability enables the data subject to obtain and electronically move, copy, or transfer personal data for further use.

Right to file a complaint with the National Privacy Commission if the data subject’s personal information has been misused, maliciously disclosed, or improperly disposed of or if any of their data privacy rights have been violated.

 Right to damages entitles the subject to be indemnified for any damages sustained due to inaccurate, incomplete, outdated, false, unlawfully obtained, or unauthorized use of the site visitor’s personal data, taking into account any violation of their right and freedoms as a data subject.

Should the site visitors wish to exercise these or if they have some questions relating to the company’s data protection efforts, they may call the company’s phone number that is published on the company’s website or contact InfiniVAN Inc. Data Protection Officer at:

dpo@infinvan.com
+63-7368-5232
InfiniVAN Inc.
17^th Floor ORE Central, 31st St., corner 9th Avenue, Bonifacio Global City, Taguig City, (NCR) Philippines

As Personal Information Controller (PIC), the company will inform all concerned data subjects of any breaches or compromises involving their personal data. The security of the site visitor’s Personal Data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While We strive to use commercially and legally acceptable means to protect the personal data of the company’s site visitors, we cannot guarantee its absolute security.

We care about the privacy of children. We encourage all parents and guardians to check and monitor the children’s online activities.

The company does not collect the information from anyone under the legal age.

Applicable law may give parents the right to review, correct, update, suppress, restrict, and/or delete personal data that our website has collected from their children, or to refuse to permit further collection, use, or disclosure of such data. They may send a message through the  “Contact Us” webpage or send an email to dpo@infinivan.com.

If we notice that we have collected personal data from anyone under the legal age without verification of parental consent, we will take steps to remove that information immediately from the company’s website server and other backup storage.

The last revision of this Website Privacy Notice was last 04 April 2022.

The company, through its Data Protection Office, may, from time to time, update this Privacy Statement to reflect the change(s) in the law and/or standards of InfiniVAN Inc. The company will post the updates/ changes on the homepage for the information and reference of the company’s visitors. However, any modification is effective immediately upon posting on this website.

If the site visitor has suggestions about the company’s Website Privacy Notice, they can contact the above-mentioned DPO details.

This document is governed by the Provisions of R.A. 10173, the Data Privacy Act of 2012, and its rules and regulations.

Stay safe online and we hope you enjoyed your visit to InfiniVAN Inc.’s website.