Daycos Privacy Compliance Policy
Daycos Data Protection and Privacy Compliance Statement
At Daycos, we’re dedicated to safeguarding personal data and ensuring compliance with all regulations within the jurisdictions of operations. Specifically, Daycos complies with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
General Commitment: We are committed to transparency, accountability, and ensuring the responsible collection and management of personal data. Daycos works very hard to limit the information we collect from our users and collect only information needed to provide services. Where possible we delete or anonymize personal information when it is no longer needed. Our engineers consider privacy and security when building any new application or feature, and we believe that your information belongs to you. Daycos will refuse to share any of your personal information with a Third-Party unless you give us permission, or we are legally required. When we are legally required, we will inform you in advance unless we are legally forbidden. Daycos provides timely responses to privacy-related questions we receive.
Consumer and Data Subject Rights
At Daycos, we respect and uphold your rights regarding your personal data. Our policies ensure that you can exercise these rights easily and transparently.
Rights Under GDPR (For EU Residents)
Access: You have the right to know what personal data we hold about you.
Rectification: If your data is incorrect or incomplete, you can ask us to correct it.
Erasure: You can request the deletion of your data when it’s no longer needed.
Restriction: Under certain conditions, you can ask us to temporarily stop processing your data.
Portability: You have the right to receive your data in a format that allows you to easily transfer it to another service.
Object to Processing: You may object to the processing of your data based on your specific situation.
Rights Under CCPA (For California Residents)
Know Your Data: Discover what personal data we collect, use, share, or sell.
Opt-Out of Sale: You can direct us not to sell your personal data.
Deletion Request: You have the right to ask for the deletion of your personal data.
Exercising Your Rights
Making a Request: To exercise any of these rights, please contact us using the details provided at the end of this policy.
Verification: For your security, we will verify your identity before processing your request. Please use the email address associated with your account when contacting us.
No Discrimination: Exercising these rights will not result in unfair treatment or penalties from Daycos.
Daycos is dedicated to ensuring that you can exercise your rights smoothly and effectively. If you have any questions or concerns regarding your data rights, please do not hesitate to contact us.
Data Collection and Use
Transparent and Responsible Data Management
At Daycos, we believe in being transparent about the personal data we collect, the purposes for which we collect it, and the parties with whom it might be shared.
Purposes of Data Collection
Contractual Obligations: We collect and process your information to fulfill our commitments under contracts with you, such as when you sign up for our services.
Legitimate Business Interests: Additionally, we use your data for legitimate business interests, which include but are not limited to:
Fraud Prevention: To protect against fraud and security risks.
Customer Support: To respond to your queries and provide customer assistance.
Service Improvement: To enhance the quality and functionality of our products and services.
Analytics and Reporting: For internal analysis to improve our business strategies.
Feature Testing: To test and introduce new features or services.
Marketing and Communication: To assist in our marketing efforts and communicate with you effectively.
Balancing Interests with Privacy
Considered Approach: In processing your personal information for these purposes, we carefully weigh the potential impact on your privacy rights. We only proceed when we believe that our legitimate interests are not overridden by your rights and interests.
Through this approach, Daycos ensures that your personal data is handled responsibly and with respect for your privacy. We are dedicated to upholding these principles in every aspect of our data collection and use.
Opt-Out & Data Sale
Daycos believes you should be able to control your personal information. Depending on how you use Daycos or its services, you may have the right to request access to, correct, amend, delete, restrict, or object to certain uses of your personal information (for example, direct marketing). Please note that if you send us a request relating to your personal information, we must verify your identity before we can respond.
Please email us from the email address we have on file for you. If you email us from a different email address, we cannot determine if the request is coming from you and will not be able to accommodate your request.
If you are not happy with our response to a request, you can contact us to resolve the issue. You also have the right to contact your local data protection or privacy authority at any time.
GDPR: When consent is our lawful basis for processing, individuals can withdraw consent at any time.
CCPA: We provide Californians an accessible method to opt-out of the sale of their personal data, usually via a “Do Not Sell My Personal Information” communication.
Commitment to Protecting Your Information
At Daycos, safeguarding your personal data is a top priority. We have implemented a comprehensive suite of security measures designed to protect your data against unauthorized access, disclosure, alteration, or destruction.
Our Security Measures
Protection: Our security infrastructure includes advanced technology and best practices in data security to ensure the highest level of protection for your personal information.
Continuous Monitoring: We continuously monitor our systems for potential vulnerabilities and attacks, and we regularly update our security practices in response to emerging threats.
Handling Data Breaches
Incident Response Plan: In the unlikely event of a data breach, we have a incident response plan in place. This includes promptly notifying affected individuals and taking immediate steps to mitigate any potential harm.
Transparency: We commit to transparency in our communication regarding any data security incidents, while also respecting legal and regulatory requirements.
Regular Assessments: Our data storage and systems that process financial information undergo regular assessments by independent auditors to ensure their security and integrity.
Acknowledgment of Limitations
Understanding the Risks: We recognize that no method of electronic storage or transmission over the internet is entirely secure. While we strive to use commercially acceptable means to protect your personal data, absolute security cannot be guaranteed.
Your Role in Data Security
User Responsibility: We also encourage you to take proactive steps in protecting your own data. This includes using strong passwords and being cautious with the information you share online.
Daycos is dedicated to maintaining the highest standard of data security. We continuously evolve our security practices to address new challenges and protect your personal information in the digital world.
Ensuring Compliance and Protecting Your Data
At Daycos, we understand that safeguarding your personal data extends beyond our direct operations. It is crucial that our third-party vendors, who may handle or have access to your data, adhere to the same high standards of data protection that we commit to.
Vendor Selection and Vetting Process
Strict Vetting: We rigorously vet each third-party vendor to ensure their data protection policies and practices align with GDPR, CCPA, and our own high standards.
Continuous Monitoring: Our relationship with these vendors includes ongoing monitoring to ensure continued compliance.
Data Protection in Vendor Contracts
Contractual Obligations: Our agreements with third-party vendors include specific clauses mandating compliance with data protection laws. This includes requirements for data security, processing limitations, and immediate notification in the event of a data breach.
Audit Rights: We reserve the right to audit our vendors to verify compliance with data protection obligations.
Transparency and Accountability
List of Vendors: For transparency, a list of our primary third-party vendors can be made available upon request. This list details the nature of their services and the type of data they process.
Your Rights: Your rights under GDPR and CCPA extend to the data handled by our third-party vendors. You have the right to know how your data is being used and to object to or restrict processing.
Responding to Data Breaches
Incident Response: In the unlikely event of a data breach at one of our third-party vendors, we will take immediate action in line with our data breach protocol to mitigate any potential harm.
By enforcing these stringent standards with our third-party vendors, Daycos ensures that your personal data is protected consistently, regardless of where it is processed.
Training & Awareness:
Our team receives regular training on all applicable privacy compliance regulations, processes, and procedures to ensure awareness and understanding of the regulations and their implications.
Policy Review and Updates:
Our data protection policies and practices undergo regular review to ensure compliance with both GDPR and CCPA and any other applicable privacy regulations as demanded within jurisdictions of operation.
For any inquiries, concerns, or requests about our data protection efforts, GDPR, or CCPA compliance, please contact us at
ATTN: Chief Technology Officer
1500 Riverside Blvd.
Norfolk NE, 68701 United States
firstname.lastname@example.org or email@example.com as applicable.
Effective as of 12/1/2018. Updates to our data protection practices will be reflected in this statement and posted on our website.
Last Revised January 1, 2024.