Privacy Policy

InfiniVAN Inc.

Statement of Policy (The Company’s Commitment)

 Data Privacy Policy Statement

InfiniVAN Inc. (InfiniVAN Inc.), referred to as “we”, “us”, “the Company”, or “PIC”, Data Privacy Policy Statement.

InfiniVAN Inc. respects and values the data privacy rights of its customers, employees, suppliers, and business partners. In collecting, processing, and storing personal information and sensitive personal information (collectively “Personal Data”), it adheres to the general principles of transparency, legitimate purpose, and proportionality in the gathering and processing of Personal Data.

InfiniVAN Inc. has adopted this Policy with due regard to the fundamental principles governing its Data Privacy Policies and procedures in processing Personal Data.

InfiniVAN Inc.’s Data Privacy Policies comply and are consistent with the Republic Act No. 10173, also known as the Data Privacy Act of 2012, its Implementing Rules and Regulations, and other relevant laws and policies, including the issuances of the National Privacy Commission. The Data Privacy Policies also adhere to the globally accepted principles of data privacy and protection. In case of conflict, Philippines laws on data privacy take precedence over the globally accepted principles on data privacy and protection.

The terms and phrases used in the Data Privacy Policies have the same meaning as the terms used in RA 10173.

InfiniVAN Inc. adheres to these principles in processing Personal Data:

  1. Transparency.
    The Data Subjects will be informed of the nature, purpose, and extent of the processing of the Personal Data collected, the rights of the Data Subject and how it can be exercised, and identifying InfiniVAN Inc. as the Personal Information Controller (PIC).
  2. Legitimate Purpose.
    Personal Data is collected for legitimate purposes made known to the Data Subject at the time of collection.
  3. Proportionality.
    Personal Data will be processed in relation to the declared and specified purpose at the time of collection.
COLLECTION OF PERSONAL DATA

At the time of collection of Personal Data, InfiniVAN Inc. will:

  • Secure the documented consent of the Data Subjects allowing InfiniVAN Inc. to collect, process, store, and process their Personal Data;
  • Collect the Personal Data that are relevant to the declared purpose;
  • Inform Data Subjects of the purpose of collection and the period of processing, storage, and destruction;
  • Inform Data Subjects of their rights over their Personal Data and how to enforce the same.
PROCESSING OF PERSONAL INFORMATION

Collected Personal Data will be used to process transactions, comply with relevant laws and regulations, and for the accomplishment of documentation purposes. Failure to provide the necessary Personal Data means that InfiniVAN Inc. may not be able to continue to provide the requested services or comply with its contractual and legal obligations.

In processing the Personal Data, InfiniVAN Inc. will:

  • Uphold the rights of the Data Subjects
  • Process the Personal Data consistent with the declared purposes and in a manner that ensures the privacy of the Personal Data
  • Keep Personal Data accurate and updated
STORAGE, RETENTION, SHARING AND DESTRUCTION OF PERSONAL INFORMATION

InfiniVAN Inc. will ensure that the collected Personal Data is protected from possible accidental or unlawful destruction, alteration, or disclosure, as well as against any unlawful processing.

InfiniVAN Inc. will implement reasonable and appropriate physical, technical, and organizational measures for the protection of Personal Data.

ORGANIZATIONAL SECURITY MEASURES.

InfiniVAN Inc. has designated CARLO GUTIERREZ as its Data Protection Officer (“DPO”). The DPO oversees the company’s compliance with the Data Privacy laws, rules, and regulations, the globally accepted principles and- internationally accepted best practices, and other related policies.

PHYSICAL SECURITY MEASURES.

InfiniVAN Inc. must implement security measures to protect the Personal Data that it collects, processes, retains, stores, and disposes of.

TECHNICAL SECURITY MEASURES

InfiniVAN Inc. will implement technical security measures to prevent and detect security breaches.

BREACH AND SECURITY INCIDENTS

InfiniVAN Inc. has developed and implemented, and will continuously update, its policies and procedures for the management of personal data breaches, including security incidents.

  1. INQUIRIES AND COMPLAINTS

InfiniVAN Inc. recognizes the right of Data Subjects to reasonable access to their Personal Data being processed, including the right to dispute the inaccuracy or error in the Personal Data, right to request the suspension, withdrawal, blocking, removal, or destruction of Personal Data, and right to complain and be indemnified for damages sustained due to inaccurate, incomplete, outdated, false, unlawfully obtained or unauthorized use of Personal Data.

PROCEDURE FOR INQUIRY AND COMPLAINTS.

Data Subjects may inquire or request information regarding any matter relating to the processing of their Personal Data in the custody of the company, including the data privacy and security policies implemented to ensure the protection of their Personal Information.

For inquiries and complaints, specify your concern and contact details and contact InfiniVAN Inc. through any of the following:

  1. Send an email to dpo@infinivan.com.ph
  2. Call telephone no. +632 7368-5232 local 5071
  3. Send a letter to 17th Floor, ORE Central Building, 31st Street corner 9th Avenue., Bonifacio Global City, Taguig City, Metro Manila, Philippines; Attention to Data Protection Officer

InfiniVAN Inc. will acknowledge receipt of the communication within one (1) day and will reply to the query within three (3) days, from receipt of the email.

Lastly, please note that this privacy policy does not govern the collection and use of information by companies that InfiniVAN Inc. does not manage/control, nor by individuals not employed or managed by the company. This website may contain links to other websites not maintained or managed by InfiniVAN Inc. Such third-party websites are subject to their data protection and privacy practices, and visitors are encouraged to examine the privacy policies of those websites.

By accessing the website, the site visitors expressly acknowledge that they have read, understood, and hereby agree to all the policies of this document.

InfiniVAN Inc.

WEBSITE PRIVACY NOTICE

Thank you for visiting the InfiniVAN Inc. website!

This Website Privacy Notice applies to the official website of InfiniVAN Inc., www.infinivan.com (the company website).

This Website Privacy Notice aims to inform site visitors about their rights regarding their personal information and notify them of how their personal information is being collected, processed, used, stored, and disposed of every time they browse/ visit the company website.

Why does the company collect and process the site visitor’s Personal Data?

The company uses the site visitor’s Personal data to

  1. track the number of website visitors to check if the company’s marketing efforts, in using a website as a marketing tool, are effective and functional;
  2. give valuable insight to the marketing team and the web designers to optimize the user experience (UX) by tracking how site visitors interact with the company’s website and by determining the web pages that are frequently visited;
  3. give the website designers insight on how to develop a more user-friendly website UI (User Interface);
  4. contact the site visitors who sent a message or requested more information regarding the company’s products and services;
  5. enable the technical team to conduct a feasibility check to determine the availability of internet infrastructure at the location of the prospective client/site visitor; **
  6. speed up the navigation and searching within the company’s website the next time the site visitors reaccess the website;
  7. analyze trends, track users’ movement on the website, and gather demographic information of the site visitor (Technical – Log Files);
  8. enable the embedded technology on the company’s website to remember the site visitor’s preferences and will serve as a basis for delivering a personalized experience the next time they visit the company website. For more information, refer to the company’s Cookie Policy (https://www.infinivan.com/cookie-policy).

The Company may collect and receive information from its site visitors at several different points on its website. One way of receiving personal information is when site visitors fill up and send their queries, comments, suggestions, complaints, and other information using any of the following web pages

Secondly, the Usage Data and Technical Information of the site visitor’s device are tracked and recorded automatically into the logs of the company’s website server.  Examples of Usage and Technical data are discussed below.

Personal Identifiable Information (PII)

The CONTACT US (https://www.infinivan.com/contact-us) webpage will require the site visitors to submit the following information;

  • Full name
  • Contact number
  • Email address

The SUBSCRIPTION webpage (https://www.infinivan.com/business) will require the site visitors to submit the following information

  • Full name
  • Company name
  • Email address
  • Address **
  • Contact information
  • Personal Message

Please note that this information is not automatically gathered or captured from the site visitor’s device. The abovementioned data will only be stored in the company’s system once the site visitor clicks the SUBMIT button.

If the site visitors do not provide us with their email address and/ or Mobile number accurately, the company’s Customer Support may not be in a position to effectively update, inform, and respond to their concerns/ feedback.

Usage Data

Usage Data is collected automatically when browsing the website. This technology produces analytics that tracks how site visitors interact with its website contents by identifying the web pages that they access and frequently visit (for returning site visitors).

These data are helpful both to the marketing team and website developers in establishing relevance to site visitors and an opportunity to continuously improve the website in terms of content, layout, design, and UX.

These data are automatically sent to us by the site visitor’s website browsers.

Technical Information (Web Traffic Data)

In most instances, technical information cannot be readily used to determine the site visitor’s identity. The following is the most common technical information that is collected and converted to analytics/ reports by our website’s embedded technologies.

  • IP address
  • date and time of access to the website
  • length of visits to certain pages
  • browser type and version
  • browser plug-in types and versions
  • operating system
  • pages viewed/searched for
  • page interaction information (e.g., scrolling, clicks, and mouse-overs)
  • page response time
  • time zone setting
  • download errors
  • Media Access Control (MAC) address
  • Computer type (Windows, Mac, others)
  • screen resolution
  • manufacturer and model
  • language

The above-mentioned data is collected automatically by most website browsers or through the site visitor’s device.

Cookies

Cookies are text files with small pieces of data often containing a unique identifier, stored by the site visitor’s web browser when they visit a website.

The information that is gathered through cookies is used solely to assist the website designers and developers in improving the website design and function.

The company website is still functional without the retention of cookies. Site visitors may opt to block cookies from this site through their browser settings.

HTTP Cookies.  These cookies are used to identify specific users and improve their web browsing experience by remembering things like their language preferences, etc.

Required Cookies. Also known as “Strictly Necessary Cookies”, are required to enable the website’s functionality. These cookies are technically essential for the company website to perform its functions properly and effectively. Without these cookies, we may be technically unable to provide the functions which meet user’s requests, such as navigating between the pages.

Functional Cookies. These cookies allow us to analyze site usage to measure and improve its performance.

Session Cookies. These are only stored on the site visitor’s computer for the duration of their session; they disappear when the site visitor closes their web browser.

Advertising Cookies. The company website.

For more information, refer to the company’s Cookie Policy (https://www.infinivan.com/cookie-policy).

Webforms

InfiniVAN Inc. uses webforms forms on this site. As mentioned in Part 3, these forms require site visitors to give their name and contact information.

In addition to the items mentioned in PART 1 of this Website Privacy Notice, the technical information that we collected from the site visitors is used primarily by the technical team to keep the website safe and secure. These data are used for tracking website errors/bugs and for investigations about security or data breaches.

Secondly, these data are used by the Marketing team to improve the website’s UI by updating its layout, design, and overall appearance.

Lastly, these data are used to generate reports/ statistics/ analytics of the company’s website that can be used by both the marketing and Management in identifying usage trends, determining the effectiveness of the company’s promotional campaigns, improving its products and services, and to determine the relevance of its website to target audiences and the general public.

All information collected by domains maintained by InfiniVAN Inc. is stored in secured and 24/7 operational data centers which are kept in a secure environment.

We also store all the site visitor’s data on a password-protected cloud server provided by third-party hosting vendors with whom the company has contracted. The said contractors have established security measures to protect their personal information from unauthorized access, use, or disclosure.

All information will be stored in a database for 1 month (after the company’s Customer Support and Data Management Department has consolidated and prepared the monthly report of the client customer interactions/analyses and after inquiries and requests are acted upon) after which shall be disposed of through permanent deletion.

We safeguard the confidentiality, integrity, and availability of the site visitor’s personal information by maintaining a combination of organizational, physical, and technical security measures based on generally accepted data privacy and information security standards. Among the measures that the company implements are the following:

  • Authorized Personnel. To prevent unauthorized access to personal information, only authorized INFINIVAN INC. personnel have access to the company website’s back-end and front-end as well as the abovementioned personal information that the company shares with its third-party provider for analytics, the exchange of which will be facilitated through email.
  • Anonymized digital files. All digital files shall be anonymized and we will not keep any form of physical record of these personal files.
  • Secured devices. The authorized personnel use devices that have layers of security features (physical security measures, antivirus software, firewall, etc.) every time they access the website host or cloud storage.
  • Organizational measures include having an IT Team in Japan and the Philippines that manages and develops the company website; Both have regular employees and are fully aware of the responsibilities and security protocols involving website security;
  • Physical measures include having a secured and properly ventilated Data Center room that houses the company’s servers and backup systems;
  • Technical measures include having end-to-end encryption, multi-factor authentication on devices that are used to access the servers, and data classification (whenever suitable);
  • Back-up measures against natural disasters, power disturbances, external access, and similar threats;

 Responsibility for External Sites:

This website may contain links to the website of the company’s Social Media Accounts and other websites where the company is affiliated/ connected. Some of those websites may be operated by third parties. We provide the links for the site visitor’s convenience, but we do not review, control, or monitor the privacy practices of websites operated by others.

The company is not responsible for the performance of websites operated by third parties or for the site visitor’s business dealings with them. Therefore, whenever the site visitor leaves the InfiniVAN website, it is recommended that they review each website’s privacy practices and make sure to clear/delete the browsing history and cookies of the site visitor’s web browser.

Regularly deleting cookies doesn’t fully eliminate the risk of being exposed to data breach/ leak but it is still a great way to improve the site visitor’s online security and reduce the risk of being a victim of session hijacking.

Personal data processed by the company is not shared with any other party unless such disclosure is allowed under Section 12 or 13 of the DPA.

If site visitors provide us with their personally identifiable information through the company’s website, it shall

  • not share, sell, or rent it to a third party, vendor, supplier, and the like;
  • not use the site visitor’s contact information to send them announcements or marketing promos;
  • not shared with other persons or organizations, unless required or permitted by law or to comply with a legal obligation especially that of the National Privacy Commission.

Physical records shall be disposed of through shredding, while digital files shall be anonymized. In all instances, the company’s manner of disposal shall ensure that the personal information shall no longer be retrieved, processed, or accessed by unauthorized persons.

Part 5 of this policy discussed storage and retention. After the legitimate purpose of the collected personal data has been served, all will be permanently deleted from the system including those that are saved on the company’s backup storage system.

Under the DPA, all site visitors have the right to be informed regarding the processing of their personal information that was collected from them.

Right to be informed means that the data subject has the right to know whether their personal data shall be, are being, or have been processed, including the existence of automated decision-making and profiling.

Right to access involves being able to compel any entity possessing any personal data to provide the data subject with a description of such data in its possession, as well as the purposes for which they are to be or are being processed. This must be complied with in an easy-to-access format, accompanied by a description in plain language. The data subject has the right to request information regarding the designation, name or identity, and address of the PIC’s data protection officer (DPO).

Right to object to the processing of the data subject’s personal data where such processing is based on consent or legitimate interest. They can also object to the processing of their personal data for direct marketing, profiling, or in cases of automated processing. It grants the data subject the choice of refusing to consent, as well as the choice to withdraw consent, as regards collection and processing.

Right to erasure or blocking allows the data subject to suspend, withdraw, or order the blocking, removal, or destruction of his or her personal information from the personal information controller’s filing system in both live and backup systems.

Right to rectify, allows the data subject the right to dispute the inaccuracy or error in their personal data and have the PIC correct the same within a reasonable period of time.

Right to data portability enables the data subject to obtain and electronically move, copy, or transfer personal data for further use.

Right to file a complaint with the National Privacy Commission if the data subject’s personal information has been misused, maliciously disclosed, or improperly disposed of or if any of their data privacy rights have been violated.

 Right to damages entitles the subject to be indemnified for any damages sustained due to inaccurate, incomplete, outdated, false, unlawfully obtained, or unauthorized use of the site visitor’s personal data, taking into account any violation of their right and freedoms as a data subject.

Should the site visitors wish to exercise these or if they have some questions relating to the company’s data protection efforts, they may call the company’s phone number that is published on the company’s website or contact InfiniVAN Inc. Data Protection Officer at:

dpo@infinvan.com
+63-7368-5232
InfiniVAN Inc.
17th Floor ORE Central, 31st St., corner 9th Avenue, Bonifacio Global City, Taguig City, (NCR) Philippines

As Personal Information Controller (PIC), the company will inform all concerned data subjects of any breaches or compromises involving their personal data. The security of the site visitor’s Personal Data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While We strive to use commercially and legally acceptable means to protect the personal data of the company’s site visitors, we cannot guarantee its absolute security.

We care about the privacy of children. We encourage all parents and guardians to check and monitor the children’s online activities.

The company does not collect the information from anyone under the legal age.

Applicable law may give parents the right to review, correct, update, suppress, restrict, and/or delete personal data that our website has collected from their children, or to refuse to permit further collection, use, or disclosure of such data. They may send a message through the  “Contact Us” webpage or send an email to dpo@infinivan.com.

If we notice that we have collected personal data from anyone under the legal age without verification of parental consent, we will take steps to remove that information immediately from the company’s website server and other backup storage.

The last revision of this Website Privacy Notice was last 04 April 2022.

The company, through its Data Protection Office, may, from time to time, update this Privacy Statement to reflect the change(s) in the law and/or standards of InfiniVAN Inc. The company will post the updates/ changes on the homepage for the information and reference of the company’s visitors. However, any modification is effective immediately upon posting on this website.

If the site visitor has suggestions about the company’s Website Privacy Notice, they can contact the above-mentioned DPO details.

This document is governed by the Provisions of R.A. 10173, the Data Privacy Act of 2012, and its rules and regulations.

Stay safe online and we hope you enjoyed your visit to InfiniVAN Inc.’s website.