OpenSign GDPR Policy

At OpenSign, we are committed to protecting your personal data and complying with the General Data Protection Regulation (GDPR). This policy outlines how we handle your data in accordance with GDPR requirements. By using OpenSign, you agree to the terms outlined in this policy. Please read carefully.

1. Data Controller

• OpenSign is the data controller responsible for your personal data. Our contact details are provided at the end of this policy.

2. Data Collection and Processing

• We collect and process personal data only for specific, explicit, and legitimate purposes. This includes data you provide during registration, such as your name, email address, and payment details for subscription plans.
• We ensure that the data collected is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.

3. Legal Basis for Processing

• We process your personal data based on the following legal grounds:
  • Contractual Necessity: To fulfill our contractual obligations to you, such as providing our digital signage services.
  • Legitimate Interests: To improve our services and ensure the security of our platform.
  • Consent: Where you have provided explicit consent for specific data processing activities.

4. Data Security

• We implement robust security measures to protect your personal data, including encryption, secure access controls, and regular security audits.
• We adhere to zero trust principles, continuously verifying and authenticating access to our systems and data.

5. Data Retention

• We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations.
• When data is no longer needed, we securely delete or anonymize it.

6. Your Rights

• Under GDPR, you have the following rights regarding your personal data:
  • Right to Access: You can request access to your personal data and obtain a copy of it.
  • Right to Rectification: You can request correction of inaccurate or incomplete data.
  • Right to Erasure: You can request deletion of your personal data under certain conditions.
  • Right to Restriction: You can request restriction of processing under certain conditions.
  • Right to Data Portability: You can request transfer of your data to another organization.
  • Right to Object: You can object to the processing of your data under certain conditions.
  • Right to Withdraw Consent: You can withdraw your consent at any time for data processing activities based on consent.

7. Data Sharing

• We do not sell your personal data to third parties. We may share your data with trusted service providers who assist us in delivering our services, but only under strict confidentiality agreements.

8. International Data Transfers

• If we transfer your personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect your data in accordance with GDPR requirements.

9. Cookies and Tracking

• We use cookies and similar tracking technologies to enhance your experience on our platform. You can manage your cookie preferences through your browser settings.

10. Changes to This Policy

• We may update this GDPR Policy from time to time. If there are any changes, we will notify you promptly and provide clear information on how these changes affect you.

11. Contact Us

• If you have any questions or concerns about our GDPR Policy or your personal data, please contact us at support@opensign.com.

Thank you for trusting OpenSign with your digital signage needs. We are committed to protecting your personal data and complying with GDPR requirements.