Privacy Notice

Cedar247 (referred to as “Cedar247,” “we,” or “our”) is committed to protecting the personal data we process. This privacy notice explains why we collect personal data and what we do with it when we act as the controller of personal data. Within Cedar247 and its entities, the data controller will be Cedar247 Ltd and/or the Cedar247 entities with which you have a relationship.

We process individuals’ personal data for various reasons. When we refer to “you,” this includes our customers, staff members, job applicants, potential customers, customers’ employees, authorized representatives, and other relevant parties.

By personal data, we mean data defined under the General Data Protection Regulation (“GDPR”) (and/or any successor or equivalent legislation in the UK). According to GDPR, personal data includes any information relating to an identified or identifiable natural person. This encompasses both direct identifiers like names and indirect identifiers such as device data and online identifiers.

We may amend this privacy notice from time to time. Any changes will be posted on our websites so that you will always be aware of how we use your personal information.

1. What information do we process?
Personal data is typically collected directly from you or generated as part of using our services and products. Additional information may sometimes be required to verify or update your data. The categories of personal data processed depend on your relationship with us.

Personal data we may collect includes:

  • Identification information: such as your name.
  • Contact information: such as phone numbers and addresses, including postal addresses.
  • Payment information.
  • Interaction information: like communications related to customer relationships, cooperation, or job applications.
  • Agreement information: such as customer agreements, employment contracts, or supplier agreements.
  • Device information: like device identifiers (UUID), device models, or timestamps.
  • Information from visual materials: like visual material of spaces you provide to us.
  • Special Categories of Personal Data: such as employee sick leave certificates.
  • User-provided preferences and interest information: such as observed data from service use.
  • Permissions and consents: like consent for processing location data.
  • Survey and research data.

I) Information you provide to us
We collect information you provide directly, such as your name, email address, and phone number when creating an account or becoming a customer. We may also collect other data you submit to us, including visual material or messages sent through our digital channels.

II) Information collected from visual material
We gather data from spaces scanned using our applications. This includes details like indoor geometry or appliance information. Cedar247 can analyze basic indoor geometry from the provided visual materials and note the appliances in the scanned space.

III) Information from using our service
We track how you use our services, including content engagement, and the duration of activities. We also collect data from devices you use, with permissions granted through device settings.

IV) Data from third parties
We may collect personal data from publicly available sources or other external sources, including government registers, social media, and third-party data providers. We take steps to ensure these third parties are legally permitted to share this information. This data may include demographics, device information (like IP addresses), location, and online behavioral data.

2. Purposes and legal bases for processing personal data
Processing may be necessary to fulfill a contract with you or to take steps at your request before entering a contract. Examples include:

  • Service registration and enablement: for example, when you become a Cedar247 customer.
  • Service use: including customer support, communication, surveys, complaint handling, system maintenance, and updates.
  • Contractual compliance: such as fulfilling obligations under cooperation agreements or employment contracts.

Processing may also be necessary for our legitimate interests or based on your consent, including:

  • Communication: like newsletters for customers, potential customers, or job applicants.
  • Service analysis and development: for example, analyzing data to improve products and services.
  • Advertising and marketing: utilizing third-party advertising platforms, targeting offerings to customers’ preferences, and using lookalike audiences.

We also process data to comply with legal obligations, such as:

  • Fraud prevention.
  • Accounting and tax compliance.
  • Regulatory reporting.
  • Employment law compliance.

In certain situations, we may ask for consent to process specific data, including for electronic direct marketing or processing sensitive data. You may withdraw consent if given.

3. How long do we retain your information?
The storage duration varies based on the data type and processing purpose. Cedar247 retains personal data as long as we have an ongoing legitimate business need. When your relationship with us ends, we will delete your account data unless retention is required by law.

4. How is personal data shared?
We may share personal data in situations where a service is processing it on our behalf or with other entities, including:

4.1 Service providers
We work with third-party companies that help provide and improve our Service. For example, our site is protected by reCAPTCHA (subject to Google Privacy Policy and Terms of Service), and we may share data with other third parties like payment processors. You may request an updated list of third-party services we use.

4.2 Third-party Advertising and Marketing
For digital marketing, we may share your data with third-party advertising platforms. Data used for marketing includes hashed email addresses or phone numbers to help reach or exclude you from specific campaigns.

4.3 For research purposes
Personal data may be shared for scientific research under applicable data protection laws.

4.4 For legal reasons
Cedar247 may disclose your data as needed to comply with legal requirements or to address fraud, security, or technical issues.

4.5 Within Cedar247 and Clear Capital
Personal data may be shared within our corporate group for purposes defined in this notice.

4.6 Other legitimate reasons
With your consent, we may disclose data to partners relevant to products or services you choose.

5. Transfers of personal data
Cedar247 operates globally, with entities in the US, Finland, and Vietnam. For cross-border transfers, we use appropriate safeguards, such as EU-approved standard contractual clauses.

6. Children
Our services are not directed at children, and users must be at least 18 years old.

7. Cookies
Cookies are small text files on a visitor’s device used to maintain sessions, remember preferences, and compile visitor statistics on Cedar247’s websites. Cookies also support marketing and chat services. For more information, please review our Cookie Notice.

8. Your rights
The GDPR grants data subjects several rights, including:

  • Right of access and rectification: to access and correct personal data.
  • Right to data erasure: to request the deletion of personal data unless legal obligations prevent it.
  • Right to object: to object to data processing for purposes other than legal obligations or service provision, including direct marketing.
  • Right to restrict processing: to request that data processing be limited to storage under certain conditions.
  • Right to data portability: to receive your data in a structured format for transfer to another controller.

9. Contact Information
To exercise your rights, contact Cedar247. The extent of rights is subject to legal basis, and identification may be required.

The controller is the Cedar247 entity you have a contractual or business relationship with.

Contact information: legal@cedar247.com

Right to lodge a complaint
If you believe data processing violates applicable law, you may lodge a complaint with the relevant authority. In Finland, this is the Data Protection Ombudsman.

10. Additional Information for California Residents
California’s CCPA and CPRA laws grant residents rights, including accessing personal data, understanding processing activities, and requesting data deletion. California residents may exercise their rights by following instructions in Section 8. Authorized agents acting on behalf of California residents must provide written authorization from the consumer.

We may need to verify your identity and residency to complete your request.

©2024 Copyright by Cedar247. All rights reserved.
Payments: