Data Management and Accessibility Policies:
● Privacy Policy ● Accessibility Policy ● Data Protection Policy ● Data Retention and Destruction PolicyPRAI Inc. Data Privacy Policy
Last Updated: April 14, 2023
1. Introduction
At PRAI Inc., we respect the privacy of our users and are committed to protecting it through our compliance with this policy. This policy describes the types of information we may collect from you or that you may provide when you visit our website PRAI.co and our practices for collecting, using, maintaining, protecting, and disclosing that information.
2. Information We Collect
We may collect several types of information from and about users of our website, including:
a. Personal Information: Name, postal address, email address, telephone number, or any other identifier by which you may be contacted online or offline.
b. Non-Personal Information: About your internet connection, the equipment you use to access our website, and usage details.
c. Information from Third Parties: We may receive information about you from third parties such as marketing partners and social media platforms.
3. How We Use Your Information
We use the information that we collect about you or that you provide to us, including any personal information:
a. To provide, maintain, personalize, and improve our website.
b. To communicate with you, including to respond to your comments or questions, and to send you updates, security alerts, and support messages.
c. To protect our rights or property, or the safety of our users or the public.
d. For any other purpose disclosed to you in connection with our services.
4. Disclosure of Your Information
We do not share your personal information with any companies, organizations, or individuals outside of PRAI Inc., except in the following cases:
a. With your consent.
b. For legal reasons.
c. To enforce our terms and conditions.
d. To protect the rights, property, or safety of PRAI Inc., our customers, or others.
5. Data Security
We have implemented measures designed to secure your personal information from accidental loss and from unauthorized access, use, alteration, and disclosure. However, the transmission of information via the internet is not completely secure, and we cannot guarantee the security of your personal information transmitted to our website.
6. Data Retention
We will retain your personal information for the period necessary to fulfill the purposes outlined in this Privacy Policy unless a longer retention period is required or permitted by law.
7. Changes to Our Privacy Policy
We may update our privacy policy from time to time. If we make changes, we will notify you by revising the date at the top of the policy and, in some cases, we may provide you with additional notice.
8. Contact Information
To ask questions or comment about this privacy policy and our privacy practices, contact us at: support@prai.us
PRAI Inc. Website Accessibility Policy
Last Updated: April 14, 2023
At PRAI Inc., we're committed to facilitating the accessibility and usability of our website, PRAI.co, for everyone. PRAI Inc. aims to comply with all applicable standards, including the World Wide Web Consortium's Web Content Accessibility Guidelines 2.1 up to Level AA (WCAG 2.1 AA). PRAI Inc. is proud of the efforts that we have completed and that are in-progress to ensure that our website is accessible to everyone.
If you experience any difficulty in accessing any part of this website, please feel free to call us at +1-347-790-1115 or email us at support@prai.us and we will work with you to provide the information or service you seek through an alternate communication method that is accessible for you consistent with applicable law (for example, through telephone support).
1.
Standards ComplianceWe aim to make our website compliant with all relevant standards and guidelines. This includes WCAG 2.1 AA and Section 508 of the Rehabilitation Act.
2.
Alternative AccessIf you have trouble accessing any part of our website, we have staff ready to assist you. We can provide information over the phone or via email to ensure you have the information you need.
3.
Continual MaintenanceAccessibility is not a one-time goal. We view it as an ongoing commitment. As such, we continually update and monitor our website to ensure its continued compliance with the latest standards and guidelines.
4.
FeedbackWe welcome your feedback on the accessibility of PRAI.co. Please let us know if you encounter accessibility barriers on PRAI.co by contacting us at support@prai.us.
5.
Accessible FeaturesWe have implemented several features to make our website easy to use for all users. This includes text alternatives for any non-text content, captions and other alternatives for multimedia, and consistent navigation across our website.
6.
Assistive TechnologyOur website is compatible with popular assistive technologies including screen readers and screen magnifiers.
This policy will be reviewed and updated on an annual basis. Your patience and understanding are appreciated as we continue to strive to make our website as accessible as possible to a wider audience.
Data Protection Policy
Last Updated: April 14, 2023
1. Policy Statement
PRAI ("the Company") is committed to protecting the privacy and security of personal data collected through its website. This Data Protection Policy outlines the guidelines and procedures for the collection, use, storage, and disclosure of personal data to ensure compliance with applicable data protection laws, regulations, and industry best practices.
2. Scope
This policy applies to all personal data collected through the Company's website and governs the actions of PRAI, its employees, contractors, and third-party service providers involved in website operations.
3. Data Collection and Use
3.1. Lawful Basis for Data Processing
Personal data will be collected and processed only on a lawful basis, including consent, contract performance, legal obligations, legitimate interests, or to protect vital interests of the data subjects.
3.2. Data Minimization
The Company will collect only the personal data that is necessary for the specified purposes. Unnecessary or excessive data collection will be avoided.
3.3. Purpose Limitation
Personal data will be collected and used only for specified and legitimate purposes, such as responding to inquiries, providing requested services, or improving user experience. Personal data will not be used for purposes incompatible with the original intent of collection.
3.4. Data Retention
Personal data will be retained only for the duration necessary to fulfill the purposes for which it was collected, unless longer retention is required by law or contractual obligations. Please refer to the Company's Data Retention and Destruction Policy for specific retention periods.
4. Data Security
4.1. Confidentiality and Access Control
The Company will implement appropriate technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, or destruction. Access to personal data will be restricted to authorized personnel who require access for legitimate purposes.
4.2. Data Encryption
Sensitive personal data, both at rest and in transit, will be encrypted using industry-standard encryption algorithms and protocols to safeguard confidentiality.
4.3. Security Incident Response
The Company will maintain an incident response plan to promptly and effectively respond to and mitigate any security incidents involving personal data breaches or unauthorized access. Users are encouraged to report any suspected security incidents to the designated personnel.
5. Data Sharing and Disclosure
5.1. Third-Party Service Providers
When engaging third-party service providers that process personal data on behalf of the Company, appropriate contractual agreements will be established to ensure they meet data protection requirements and adhere to this policy.
5.2. Legal Requirements
The Company may disclose personal data when required to do so by law, regulation, or legal process.
6. Data Subject Rights
The Company acknowledges and respects the rights of individuals regarding their personal data. Users have the right to access, rectify, erase, restrict processing, object to processing, and portability of their personal data. Requests related to data subject rights should be submitted in accordance with the Company's Data Subject Rights Procedure.
7. Cookies and Tracking Technologies
The Company's website may use cookies or other tracking technologies to enhance user experience and gather information about website usage. Users can manage their cookie preferences through browser settings.
8. Policy Review
This Data Protection Policy for the Website will be reviewed and updated at least once a year or as required to ensure continued relevance and compliance with changing data protection laws, regulations, and industry standards.
For any questions or concerns regarding this policy or the handling of personal data on the Company's website, please contact the Company's Data Protection Officer at support@prai.us.
Data Retention and Destruction Policy
Last Updated: April 14, 2023
1. Policy Statement
PRAI ("the Company") is committed to maintaining the privacy and security of data in its possession. This Data Retention and Destruction Policy outlines the guidelines and procedures for the retention and disposal of data to ensure compliance with applicable laws, regulations, and industry best practices.
2. Scope
This policy applies to all employees, contractors, and third-party service providers who handle or have access to sensitive data owned or controlled by PRAI.
3. Data Retention Guidelines
3.1. Types of Data
The Company categorizes data into different types based on its sensitivity and legal requirements. The retention periods for each data type are as follows:
a) Personally Identifiable Information (PII): PII refers to any data that can identify an individual, such as name, address, Social Security number, or contact information. PII will be retained for a minimum period required by applicable laws or regulations or until the data is no longer necessary for the purpose for which it was collected.
b) Financial Data: Financial data, including payment card information, bank account details, or other sensitive financial information, will be retained as required by applicable laws, regulations, and industry standards.
c) Employee Data: Employee data, including employment records, performance evaluations, payroll information, and benefits, will be retained for the duration specified by local labor laws and regulations.
d) Operational Data: Operational data, such as logs, system monitoring data, and audit trails, may be retained for a period necessary for operational purposes, security audits, and troubleshooting.
3.2. Retention Periods
The retention periods specified above are the minimum periods for which the data should be retained. If a longer retention period is required by contractual obligations, legal, or regulatory requirements, the longer period will take precedence.
4. Data Destruction Procedures
4.1. Destruction Methods
The Company will use secure methods to dispose of data in a manner that prevents unauthorized access or recovery. Acceptable data destruction methods may include physical destruction (shredding, pulverizing), secure erasure (using approved software tools to overwrite data), or degaussing (for magnetic media).
4.2. Disposal of Physical Media
Physical media, including hard drives, USB drives, and paper documents containing sensitive data, will be disposed of securely by authorized personnel using approved disposal methods. Destruction records will be maintained to demonstrate proper disposal.
4.3. Secure Erasure of Electronic Data
Electronic data, including files, databases, and backups, will be securely erased using industry-recognized data destruction tools. Erasure procedures should ensure that data cannot be recovered by unauthorized parties.
5. Responsibilities
5.1. Employees and Contractors
All employees and contractors are responsible for adhering to this Data Retention and Destruction Policy. They must ensure that data is retained and disposed of in accordance with the defined guidelines and procedures.
5.2. Information Security Officer
The Information Security Officer (ISO) or designated personnel will oversee and enforce compliance with this policy. The ISO will periodically review and update the policy as needed to ensure its effectiveness and alignment with changing legal and regulatory requirements.
6. Policy Non-Compliance
Failure to comply with this Data Retention and Destruction Policy may result in disciplinary action, up to and including termination of employment or contract. Non-compliance may also lead to legal and financial consequences for the Company.
7. Policy Review
This Data Retention and Destruction Policy will be reviewed and updated at least once a year or as required to ensure continued relevance and compliance with changing laws, regulations, and industry standards.
For any questions or concerns regarding this policy, please contact the Company's Data Protection Officer at
support@prai.us
.