Privacy Policy

1 Introduction

This Privacy Policy is meant to help you understand what information we collect, why we collect it, and how you can update, manage, export, and delete your information.

Wedzera provides web-based solutions for question and answer management marketed under the “Komenda” brand.

At Wedzera, it is one of our fundamental values to deliver a great customer experience.

Based upon this philosophy, Wedzera and its affiliated companies and subsidiaries established this privacy policy (“Privacy Statement”) to equip our customers, business partners, other users of the Komenda products, any other webpage or mobile applications that Wedzera operates, or any other location where we post a direct link to this (“Website”) policy with the understanding of the types of information that we collect from and about you when you visit our websites and products, why we collect it, what we do with it, and your ability to control certain uses of it.

We want you to feel informed and comfortable when you visit with us and use our products.

When you visit our Website or use our products, please read the Privacy Statement carefully.

By using or accessing our Website or using our products, you agree to the collection, use, and disclosure of information in accordance with this Privacy Statement.

This Privacy Statement may change from time to time, and your continued use is deemed to be acceptance of such changes.

So, please check this periodically for updates.

2 Data Collection

2.1 Information You Provide to Us.

Wedzera collects information from you when you choose to provide it to us.

As an event attendee, a user, a panelist, a host or an admin, you provide us with your email address or phone number when you register, your name and often your city of residence. Your name and city of residence are identifiers that the host and/or the solution may use when crediting a question to the person who asked it. The email address or phone number is used to authenticate a user to a single method of contact in case the event organizer needs to reach an event attendee/user during the event. The email address or phone number can also be used to log into the Komenda instance for the event, without re-registering. Lastly, you provide us with your questions, any comments you make in the chat feature of Komenda, and the log of your activity in Komenda during the event. Providing any of the above-listed information is optional.

As an event organizer who seeks to administer questions and answers during an event in the Komenda solution, the personal information we collect may include your name, address, email address, telephone number, username, password(s), personal information about yourself, and/or your payment information. We may also require your meeting ID from the meeting provider to associate the Komenda solution to the event itself.

Such information may be required to create your account or to complete your purchase. If you use a third party to create your account or otherwise link to us, we may receive certain information about you from the third party (such as a social network, virtual meeting provider, etc.) based on your registration and privacy settings on that third-party service.

2.2 Information We May Collect.

Wedzera may use cookies, web beacons, web analytics, or other technologies to automatically collect certain information about you when you visit Komenda, utilize other Wedzera products, or otherwise, interact with us.

Please note, these may be first-party cookies or tools, which are hosted within an Wedzera domain name, or third-party cookies or tools, which are hosted by another party. Please reference the Komenda Cookie Policy for further information.

2.3 Information Collected from Other Sources.

Wedzera is only interested in facilitating a good event experience for the audience, the panelists, the host(s) and the event organizer. There is typically no need to obtain additional information about you from other sources, including updated addresses, contact information, demographic information, or other publicly available data.

2.4 Combination of Information.

Wedzera may combine the information it receives from and about you, including personal information, non-personal information, and information collected offline, with information collected from third-party sources.

Wedzera uses customized and proprietary software code to analyze information on how users interact with its products.

3 Data Use

Wedzera may use the information we collect to: (a) Administer or operate Wedzera products, services, or Websites, including completing a transaction, providing you or the event organizer with products or user support, responding to your requests for information, preventing transactional fraud, or otherwise contacting you; (b) Research, address, develop, and improve the usage and operations of the existing or new Wedzera products and services; (c) Protect the security or integrity of the product and our business; and (d) Perform any other functions as otherwise described to you at the point of data collection.

4 Data Sharing

Wedzera may disclose the information we collect from and about you (a) to the event organizer, our third-party service providers, partners, and distributors to enable the service provider, partner, or distributor to perform a business, professional, or technical support function for Wedzera; (b) in association with law enforcement, fraud prevention, a subpoena, or other legal or government investigatory action; (c) as required by law, rule, or regulation; (d) if Wedzera reasonably believes it is required to protect Wedzera, its customers, or the public; or (e) as described to you at the point of collection.

Except as otherwise set forth herein, Wedzera may provide aggregated statistics about users to third parties, but such information will be aggregated so that it does not identify a particular individual or company.

Wedzera is not in the business of selling or renting your personally identifiable information to others and will not share your personally identifiable information with others, except as otherwise described in this Privacy Statement.

Information provided by users, panelists, or hosts in Komenda during an event in the form of chat comments, questions, or any other contributions will be viewable to the other attendees of the event. Wedzera cannot control how others will use information available to them in connection with an event. The event organizer is responsible for setting expectations according to acceptable use of information provided to the event by the organizers and the attendees.

5 Data Storage

Wedzera operates globally, using the Internet to collect and process your information necessarily involves the transmission and storage of data on an international basis.

Therefore, by using our Website, our products, and communicating electronically with us, you acknowledge our processing of your information in this way.

We may transfer your personal information to our global locations or to destinations of our storage facilities and/or our third-party providers, including to countries outside the European Economic Area (EEA).

Your personal information may be stored on servers in a global location. It may also be processed by staff operating outside of the EEA, who work for us or one of our suppliers.

Some of these locations may have data protection standards that are different from those in your country. For EEA residents, we have taken commercially reasonable measures to ensure that your personal information is treated securely and in accordance with this Privacy Statement.

Additionally, your personal information may be subject to the laws of other countries, where the data protection and other laws may differ from those of your country of residence.

Your personal information may be disclosed in response to inquiries or requests from government authorities in the countries in which we operate.

In practice, Komenda does not retain the comments and questions from a given event beyond maintaining user accounts that utilizes the user’s name and email address or phone number to facilitate future login into the Komenda system without re-registering. The event organizer may save information from the event (such as the questions asked or the comments in chat), but will then store that information according to the organizer’s own data management practices and procedures. All the event data (questions, comments, activity log, etc.) is expunged when the event organizer resets the Komenda instance to prepare it for a subsequent event.

Apart from user login credentials, the duration of data storage in Komenda is a function of the distance in time between one event and a future event that follows it. User login credentials are maintained as long as the event organizer maintains an active instance of the Komenda solution.

6 Marketing Choices

In practice, Wedzera does not utilize user contact information from its clients’ events for its own marketing purposes. If a user independently subscribes to a Komenda, Mukana, or Wedzera product or website for the purposes of joining a mailing list, the user may be contacted by Wedzera.

In the case that individuals independently subscribe to a newsletter, Wedzera may periodically send you emails with information regarding Wedzera, its products, or its partners. If you no longer wish to continue receiving such information, please click the “unsubscribe” link available at the bottom of the relevant email.

You can also contact Wedzera at data-protection@wedzera.com and let Wedzera know that you no longer wish to receive such information. Alternatively, you can reply to an email from Wedzera and type “REMOVE” in the subject line.

7 Public Forums

Any information that you may disclose on community forums or other public areas of the Website (“User Contribution”) becomes public information, and you are solely responsible for your User Contributions.

Wedzera has no responsibility for any information, including personally identifiable information, that you choose to submit in these forums.

We do encourage you to exercise caution when disclosing personal information in these public areas, as Wedzera has no control over who has access to or how they might utilize said information.

Additionally, Wedzera is not responsible for any circumvention by third parties of any privacy setting or security measures contained on the Website or in the Komenda product.

Even after removal, your User Contributions may remain viewable in cached or archived pages or may have been copied or stored by other Website users.

Proper access and use of information on the Website, including User Contributions, is governed by this Privacy Statement and the Terms of Use relating thereto.

Any known or suspected violations should be reported at data-protection@wedzera.com.

8 Third-Party Sites

The Website may include links to third-party websites for your convenience and information only. Wedzera does not own or control these third-party websites.

Wedzera is not responsible for the availability, content, data collection, utilization of data, use of cookies, or otherwise on the third-party websites, and any data that you choose to give to unrelated third parties is not covered by this Privacy Statement.

We encourage you to review the privacy policy of any company before submitting any information to them. If you have any questions about how such third parties’ privacy and data use practices, you should contact such third parties directly.

9 How to Update and Access Information

Certain areas of this Product Website will require you to provide certain personal information. It is your responsibility to provide the most recent available and accurate information. Additionally, please inform Wedzera of any change of name, location, or other information that you would like reflected in our records.

If you have created an account on the Product Website, you may update certain information in your account profile, or you may request that Wedzera update, modify, or delete your registered information by contacting us at data-protection@wedzera.com.

You have the right, subject to certain exemptions, to obtain a copy of any personal data we hold about you and to correct any inaccuracies in such data. If you wish to avail yourself of any of these rights, please contact us at data-protection@wedzera.com.

While we will strive to accommodate your request, we may reject a request to satisfy our legal obligations, resolve disputes, enforce our agreements, where we have a legitimate reason to do so, or where the request may impose a risk on the privacy of others, is unreasonable, repetitive, or requires disproportionate technical effort.

10 Security

Wedzera and its affiliate companies and third-party vendors use commercially reasonable security measures, such as physical access controls, encryption, firewalls, and network monitoring, and strives to safeguard information concerning and submitted by users.

Despite the security measures employed by Wedzera, users should be aware that it is impossible to guarantee absolute security with respect to electronic information, and the User agrees and accepts the risks associated with the same.

11 Children under the Age of 16

This Website or product is not intended for children under 16 years of age. No one under age 16 may provide any personal information to or on the Website; Wedzera does not knowingly collect personal information from children under 16.

If you are under 16, please do not register on the Website, make any purchases through the Website, or send any information about yourself to us.

If you believe that information from or about a child under 16 is in our possession, please contact us at data-protection@wedzera.com.

12 Questions

If you have any questions about this Privacy Statement or our data handling practices, you may contact us at data-protection@wedzera.com.

In order for us to properly respond to you, you will need to provide us with sufficient details regarding your question.

We will contact you if we require any additional information from you.

13 Modifications to this Privacy Statement

Wedzera reserves the right to review, modify, and update this Privacy Statement and will note the date of its most recent revision.

In the event Wedzera updates or modifies this Privacy Statement, Wedzera shall endeavor to post such updates or modifications in the Komenda product and on the Wedzera website for reference following any such modifications.

If we update or modify the Privacy Statement in a material way, we will utilize commercially reasonable efforts to make it available in the then-available product interface.

Last updated 09 October 2022

Data Retention, Protection and Security

14 Introduction

When you use Wedzera services, you’re trusting us with your information.

We understand that this is a big responsibility, and we work hard to protect your information and put you in control.

You can request that we export for you the most recent version of the information that we have for you. That said, the only persistent information on you that we retain is your screen name, and the optional email address or phone number and location. All comments and questions are deleted when the event organizer resets the instance and prepares the Komenda solution for an upcoming event. Alternatively you may request that we delete all data from your Account altogether at any time.

You can also request that we export a copy of the content in your Account if you want to back it up or use it with a service outside of us.

14.1 Data Protection Rights

As a client or customer of Wedzera, the GDPR gives you protection rights and assures better access to your personal data. You have all of the following rights. To exercise any of the following rights, simply include in your email message to data-protection@wedzera.com which of these rights you’d like to exercise, and we’ll support you as quickly as we are able.

Right to rectification

Right to be forgotten

Right to portability

Right to object

Right of access

Other

14.2 Consent to our Privacy Policy

By submitting a request, you agree to our Privacy Policy, and with the stipulations therein of how this web application stores and handles your data.

14.3 GDPR

Our Third Party Vendors are compliant with the GDPR (General Data Protection Regulation) - specifically Firebase and AWS.

14.4 Support Communications

Communication you send us via email will be captured in Wedzera’s email account. History of these communications can be provided upon request.

15 Security

15.1 ISO and SOC Compliance

Komenda is an HTML based application served over HTTPS and data connections via WSS to firebase realtime database. The Komenda Zoom App is a Node.js app which communicates with Zoom via the Zoom Apps SDK. All data is encrypted in transit and at rest.

Privacy and security at Firebase is also significant, with completion of the ISO 27001, SOC 1, SOC 2 and SOC 3 evaluation processes for many services, and ISO 27018 and ISO 27019 certification completed for a subset of those services. More detailed information is available at the link above.

15.2 Payment Processing

The beta release of Komenda Mukana does not yet have payment processing functionality incorporated into the Zoom App itself. All payments are handled outside of Komenda according to license agreement and conventional invoice terms.

15.3 Physical and logical access control

The Komenda Mukana solution is a cloud-native web application hosted on Google’s Firebase and Amazon’s AWS EC2 data center infrastructures. We do not have our own data centers, favoring the layered security model deployed by both of these companies that includes significant physical protections, including electronic access cards, vehicle perimeter blockades, biometric access, alarms, metal detectors, perimeter fencing, etc. Wedzera representatives do not have access to these physical data centers.

Appropriately selected Wedzera representatives are the designated administrators of the Komenda Mukana infrastructure.

15.4 Data Encryption

15.5 API Authentication

Komenda Mukana’s API uses Firebase auth tokens for authentication. The user account is authenticated with the API by passing Firebase authentication tokens using the auth header.

15.6 Incident and Vulnerability Reporting

If you have a concern regarding a potential vulnerability, please contact us at data-protection@wedzera.com. We take all disclosures and concerns seriously. You may expect to receive acknowledgment of receipt of your disclosure within 48 hours. We will work with you to keep you periodically informed of the progress of our investigation and/or resolution.

If what you need to disclose is of a sensitive nature and you wish to encrypt your disclosure, please contact us with that request. We will work with you to accommodate any concerns you may have.

Komenda Cookie Policy

We do not utilize cookies in the Komenda solution beyond what Firebase employs. Information on what cookies Firebase deploys can be found at https://firebase.google.com/docs/auth/admin/manage-cookies.

Last updated 09 October 2022