General Information

When does this Privacy Statement apply?

This Privacy Statement applies to information that can be used to identify you (“Personal Data”) and that you provide to Innthink Technologies or which is derived from the Personal Data as outlined below.

Who is the Data Controller?

The data controller of www.massistcrm.com is Innthink Technologies, B-715&719, Logix Cyber Park, Sec 62, Block C, Noida. Where a Privacy policy acknowledgement form is presented on this website and The MAssist, the data controller is The Data Protection Officer and it is displayed on the individual registration form’s privacy statement. Innthink Technologies’s data protection officer can be reached at dpo@massistcrm.com.

What Personal Data does Innthink Technologies collect?

In the normal course of business, Innthink Technologies collects Personal Data such as contact information (e.g., name, address, phone number, email address, your employer, etc).

Why does Innthink Technologies need your Personal Data?

Innthink Technologies requires your personal data to provide you with access to MAssist’s services, to comply with contractual and statutory obligations. Although we do not ask for any personal data from the user and the data is provided by the clients for giving full access of our application services.

How long will Innthink Technologies store my Personal Data?

Innthink Technologies will only store your Personal Data for as long as it is required for the performance of contractual obligations, to make its services available to you, and to fulfill the purposes outlined in this Privacy Statement.

What are your data protection rights?

You can request from Innthink Technologies access at any time to information about which Personal Data Innthink Technologies processes about you and the correction or deletion of such Personal Data. Please note, however, that Innthink Technologies can or will delete your Personal Data only if there is no statutory obligation or prevailing right of Innthink Technologies to retain it. Kindly note further that if you request that Innthink Technologies deletes your Personal Data, you will not be able to continue to use any Innthink Technologies service that requires Innthink Technologies’s use of your Personal Data. If you are Innthink Technologies user, you should request for Deletion of your Personal data/account through your Employer only.

How can you exercise your data protection rights?

To exercise your data protection rights, please direct your request to dpo@massistcrm.com. Please indicate the following details: your full name, your Employer and the right(s) you wish to exercise.

How will Innthink Technologies verify requests to exercise data protection rights?

Innthink Technologies will take steps to verify your identity to a reasonable degree of certainty before it will process the data protection right you want to exercise. When feasible, Innthink Technologies will match Personal Data provided in your request to exercise your rights with information already maintained by Innthink Technologies. This could include matching two or more data points that are already maintained by Innthink Technologies.

Innthink Technologies will decline to process requests that are manifestly unfounded, excessive, fraudulent, or are not otherwise required by local law.

Processing based on a statutory permission

Why does Innthink Technologies need to use my Personal Data and on what legal basis is Innthink Technologies using it? Providing the requested services. Innthink Technologies requires your Personal Data to deliver services that you order under a contract with Innthink Technologies, to establish a contract for goods or services between you and Innthink Technologies, and to send you invoices for ordered services.

Why does Innthink Technologies need to use my Personal Data and on what legal basis is Innthink Technologies using it? Providing the requested services. Innthink Technologies requires your Personal Data to deliver services that you order under a contract with Innthink Technologies, to establish a contract for goods or services between you and Innthink Technologies, and to send you invoices for ordered services.

Innthink Technologies can use your Personal Data based on its legitimate interest (Article 6 para. 1 lit. f GDPR) as follows:

  • Fraud and Legal Claims. If required, Innthink Technologies will use your Personal Data for the purposes of preventing or prosecuting criminal activities such as fraud and to assert or defend against legal claims.
  • Questionnaires and surveys. Innthink Technologies could invite you to participate in questionnaires and surveys. Any personal data collected in connection with such questionnaires or surveys may be used by Innthink Technologies to improve its products and services
  • Contract performance. If you purchase or intend to purchase goods or services from Innthink Technologies on behalf of a corporate customer or otherwise be the nominated contact person for the business relationship between a corporate customer (a “Customer Contact”) and Innthink Technologies, Innthink Technologies will use your Personal Data for this purpose. This includes, for the avoidance of doubt, such steps which are required for establishing the relevant business relationship. In case that an existing Customer Contact informs Innthink Technologies that You are their replacement, Innthink Technologies will, from the point in time of such notification, consider You to be the relevant Customer Contact for the respective customer until you object as further set out below.
  • Creation of anonymized data sets. Innthink Technologies will anonymize Personal Data provided under this Privacy Statement to create anonymized data sets, which will then be used to improve its and its affiliates’ products and services.
  • To keep you up-to-date or request feedback. Within an existing business relationship between you and Innthink Technologies, Innthink Technologies might inform you, about its products or services (including Features and funtionalities) which are similar or relate to such products and services you have already purchased or used from Innthink Technologies.
  • You can at any time object to Innthink Technologies’s use of your Personal Data as set forth above. In this case, Innthink Technologies will carefully review your objection and cease further use of the relevant information, subject to Innthink Technologies’s compelling legitimate grounds for continued use of the information, which override your interest in objecting, or if Innthink Technologies requires the information for the establishment, exercise or defense of legal claims.
  • Processing under applicable national laws. If the applicable national law allows Innthink Technologies to do so, Innthink Technologies will use information about you for a business purpose, some of which is Personal Data:
  • To contact you to discuss further your interest in Innthink Technologies services and offerings
  • To help Innthink Technologies create, develop, operate, deliver, and improve Innthink Technologies services, products, content, and advertising, and to improve, upgrade, or enhance the service or device that is owned, manufactured, manufactured for, or controlled by Innthink Technologies
  • To provide more personalized information to you
  • For loss prevention
  • For account and network security purposes
  • For internal purposes such as auditing, analysis, and research to improve Innthink Technologies’s products or services
  • To verify your identity and determine appropriate services
  • To assert or defend against legal claims
  • To detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, and to prosecute those responsible for that activity
  • To debug to identify and repair errors that impair existing intended functionality
  • Undertaking internal research for technological development and demonstration

Processing based on consent.

In the following cases, Innthink Technologies will process your Personal Data if you granted prior consent to the specific proposed processing of your Personal Data (Article 6 para. 1 lit. a GDPR).

Profiles. Innthink Technologies offers you the option to use services, including to view tutorials or take trainings, that require you to register and allow you to create a user profile. User profiles provide the option to display personal information about you, including but not limited to your name, photo, address, email, telephone number, personal interests, and skills. Profile data is processed to personalize the interaction with other users to foster the quality of communication and collaboration via such services. The provision of any such information about you as well as the decision to share information with other services is at your free will and based on the consent that you grant.

IP Address Collection

When a Innthink Technologies’s customer sends a survey to an individual, Innthink Technologies may collect IP addresses from survey respondents. The purpose of collecting this information is to prevent and protect against fraud and malicious activity, and to ensure the security of the website, app or cloud service of Innthink Technologies.

In accordance with the disclosure requirements under the CCPA, Innthink Technologies is exempt from providing a notice to opt-out because it does not and will not sell your Personal Data.

Sub-processor List

Innthink Technologies currently uses the subprocessors detailed in the Data Processing Addendum, the link can be found below.

Cookie Policy

To learn more about how we use these and your choices in relation to these tracking technologies, please refer to our Cookie Policy.

Data Retention

Customer data is retained for as long as the account is in active status. Data enters an “expired” state when the account is voluntarily closed. Expired account data will be retained for 45 days. After this period, the account and related data will be removed. Customers that wish to voluntarily close their account should download their data manually or cloud storage prior to closing their account.

If a customer wishes to manually backup their data in a suspended account, then they must ensure that their account is brought back to good standing so that the user interface will be available for their use. After 45 days, the suspended account will be closed and the data will enter the “expired” state and it will be permanently removed.