1. Introduction

At PRAI Inc., we respect the privacy of our users and are committed to protecting it through our compliance with this policy. This policy describes the types of information we may collect from you or that you may provide when you visit our website PRAI.co and our practices for collecting, using, maintaining, protecting, and disclosing that information.

2. Information We Collect

We may collect several types of information from and about users of our website, including:

a. Personal Information: Name, postal address, email address, telephone number, or any other identifier by which you may be contacted online or offline.

b. Non-Personal Information: About your internet connection, the equipment you use to access our website, and usage details.

c. Information from Third Parties: We may receive information about you from third parties such as marketing partners and social media platforms.

3. How We Use Your Information

We use the information that we collect about you or that you provide to us, including any personal information:

a. To provide, maintain, personalize, and improve our website.

b. To communicate with you, including to respond to your comments or questions, and to send you updates, security alerts, and support messages.

c. To protect our rights or property, or the safety of our users or the public.

d. For any other purpose disclosed to you in connection with our services.

4. Disclosure of Your Information

We do not share your personal information with any companies, organizations, or individuals outside of PRAI Inc., except in the following cases:

a. With your consent.

b. For legal reasons.

c. To enforce our terms and conditions.

d. To protect the rights, property, or safety of PRAI Inc., our customers, or others.

5. Data Security

We have implemented measures designed to secure your personal information from accidental loss and from unauthorized access, use, alteration, and disclosure. However, the transmission of information via the internet is not completely secure, and we cannot guarantee the security of your personal information transmitted to our website.

6. Data Retention

We will retain your personal information for the period necessary to fulfill the purposes outlined in this Privacy Policy unless a longer retention period is required or permitted by law.

7. Changes to Our Privacy Policy

We may update our privacy policy from time to time. If we make changes, we will notify you by revising the date at the top of the policy and, in some cases, we may provide you with additional notice.

8. Contact Information

To ask questions or comment about this privacy policy and our privacy practices, contact us at: support@prai.us

At PRAI Inc., we're committed to facilitating the accessibility and usability of our website, PRAI.co, for everyone. PRAI Inc. aims to comply with all applicable standards, including the World Wide Web Consortium's Web Content Accessibility Guidelines 2.1 up to Level AA (WCAG 2.1 AA). PRAI Inc. is proud of the efforts that we have completed and that are in-progress to ensure that our website is accessible to everyone.
If you experience any difficulty in accessing any part of this website, please feel free to call us at +1-347-790-1115 or email us at support@prai.us and we will work with you to provide the information or service you seek through an alternate communication method that is accessible for you consistent with applicable law (for example, through telephone support).

1. Policy Statement

PRAI ("the Company") is committed to protecting the privacy and security of personal data collected through its website. This Data Protection Policy outlines the guidelines and procedures for the collection, use, storage, and disclosure of personal data to ensure compliance with applicable data protection laws, regulations, and industry best practices.

2. Scope

This policy applies to all personal data collected through the Company's website and governs the actions of PRAI, its employees, contractors, and third-party service providers involved in website operations.

3. Data Collection and Use

3.1. Lawful Basis for Data Processing

Personal data will be collected and processed only on a lawful basis, including consent, contract performance, legal obligations, legitimate interests, or to protect vital interests of the data subjects.

3.2. Data Minimization

The Company will collect only the personal data that is necessary for the specified purposes. Unnecessary or excessive data collection will be avoided.

3.3. Purpose Limitation

Personal data will be collected and used only for specified and legitimate purposes, such as responding to inquiries, providing requested services, or improving user experience. Personal data will not be used for purposes incompatible with the original intent of collection.

3.4. Data Retention

Personal data will be retained only for the duration necessary to fulfill the purposes for which it was collected, unless longer retention is required by law or contractual obligations. Please refer to the Company's Data Retention and Destruction Policy for specific retention periods.

4. Data Security

4.1. Confidentiality and Access Control

The Company will implement appropriate technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, or destruction. Access to personal data will be restricted to authorized personnel who require access for legitimate purposes.

4.2. Data Encryption

Sensitive personal data, both at rest and in transit, will be encrypted using industry-standard encryption algorithms and protocols to safeguard confidentiality.

4.3. Security Incident Response

The Company will maintain an incident response plan to promptly and effectively respond to and mitigate any security incidents involving personal data breaches or unauthorized access. Users are encouraged to report any suspected security incidents to the designated personnel.

5. Data Sharing and Disclosure

5.1. Third-Party Service Providers

When engaging third-party service providers that process personal data on behalf of the Company, appropriate contractual agreements will be established to ensure they meet data protection requirements and adhere to this policy.

5.2. Legal Requirements

The Company may disclose personal data when required to do so by law, regulation, or legal process.

6. Data Subject Rights

The Company acknowledges and respects the rights of individuals regarding their personal data. Users have the right to access, rectify, erase, restrict processing, object to processing, and portability of their personal data. Requests related to data subject rights should be submitted in accordance with the Company's Data Subject Rights Procedure.

7. Cookies and Tracking Technologies

The Company's website may use cookies or other tracking technologies to enhance user experience and gather information about website usage. Users can manage their cookie preferences through browser settings.

8. Policy Review

This Data Protection Policy for the Website will be reviewed and updated at least once a year or as required to ensure continued relevance and compliance with changing data protection laws, regulations, and industry standards.

1. Policy Statement

PRAI ("the Company") is committed to maintaining the privacy and security of data in its possession. This Data Retention and Destruction Policy outlines the guidelines and procedures for the retention and disposal of data to ensure compliance with applicable laws, regulations, and industry best practices.

2. Scope

This policy applies to all employees, contractors, and third-party service providers who handle or have access to sensitive data owned or controlled by PRAI.

3. Data Retention Guidelines

3.1. Types of Data

The Company categorizes data into different types based on its sensitivity and legal requirements. The retention periods for each data type are as follows:
a) Personally Identifiable Information (PII): PII refers to any data that can identify an individual, such as name, address, Social Security number, or contact information. PII will be retained for a minimum period required by applicable laws or regulations or until the data is no longer necessary for the purpose for which it was collected.
b) Financial Data: Financial data, including payment card information, bank account details, or other sensitive financial information, will be retained as required by applicable laws, regulations, and industry standards.
c) Employee Data: Employee data, including employment records, performance evaluations, payroll information, and benefits, will be retained for the duration specified by local labor laws and regulations.
d) Operational Data: Operational data, such as logs, system monitoring data, and audit trails, may be retained for a period necessary for operational purposes, security audits, and troubleshooting.

3.2. Retention Periods

The retention periods specified above are the minimum periods for which the data should be retained. If a longer retention period is required by contractual obligations, legal, or regulatory requirements, the longer period will take precedence.

4. Data Destruction Procedures

4.1. Destruction Methods

The Company will use secure methods to dispose of data in a manner that prevents unauthorized access or recovery. Acceptable data destruction methods may include physical destruction (shredding, pulverizing), secure erasure (using approved software tools to overwrite data), or degaussing (for magnetic media).

4.2. Disposal of Physical Media

Physical media, including hard drives, USB drives, and paper documents containing sensitive data, will be disposed of securely by authorized personnel using approved disposal methods. Destruction records will be maintained to demonstrate proper disposal.

4.3. Secure Erasure of Electronic Data

Electronic data, including files, databases, and backups, will be securely erased using industry-recognized data destruction tools. Erasure procedures should ensure that data cannot be recovered by unauthorized parties.

5. Responsibilities

5.1. Employees and Contractors

All employees and contractors are responsible for adhering to this Data Retention and Destruction Policy. They must ensure that data is retained and disposed of in accordance with the defined guidelines and procedures.

5.2. Information Security Officer

The Information Security Officer (ISO) or designated personnel will oversee and enforce compliance with this policy. The ISO will periodically review and update the policy as needed to ensure its effectiveness and alignment with changing legal and regulatory requirements.

6. Policy Non-Compliance

Failure to comply with this Data Retention and Destruction Policy may result in disciplinary action, up to and including termination of employment or contract. Non-compliance may also lead to legal and financial consequences for the Company.

7. Policy Review

This Data Retention and Destruction Policy will be reviewed and updated at least once a year or as required to ensure continued relevance and compliance with changing laws, regulations, and industry standards.