Privacy Policy

Last Updated: August, 2024

This Privacy Policy includes important information about your personal data and we encourage you to read it carefully.

Welcome

EnterpriseOnDemand "EoD" (we) provides Saas based solution. Individuals and businesses of all sizes use our Solution and services to facilitate their service procurement process.

This Privacy Policy (“Policy”) describes the Personal Data we collect, how we use and share it, along with details on how you can reach out to us with privacy-related inquiries.

Additionally, the Policy outlines your rights as a data subject and choices you have, including the right to object to certain usages of your Personal Data by us.

In this Policy, “EoD”, “we”, “our,” or “us” refers to the EoD entity responsible for the collection, use, and handling of Personal Data as described in this document. Depending on your jurisdiction, the specific EoD entity accountable for your Personal Data might vary. “Personal Data” refers to any information associated with an identified or identifiable individual, which can include data that you provide to us, and we collect about you during your interaction with our Services (such as device information, IP address, etc.).“Services” refer to the products and services provided by EoD under the EoD Services Agreement and the EoD Consumer Terms of Service. This may include devices and applications provided by EoD. Our “Business Services” are services that we provide to entities (“Business Users”) that directly and indirectly provide us with “End Customer” Personal Data in connection with their own business operations and activities. Our “End User Services” are those that EoD provides directly to individuals for their personal use. “Sites” refer to app.enterpriseondemand.ai and other EoD websites, apps, and online services. Collectively, we refer to Sites, Business Services, and End User Services as “Services.”

Depending on the context, “you” might be an End Customer, End User, Representative, or Visitor.

In this Policy, “Transaction Data” refers to data collected and used by EoD to facilitate transactions you request. Some Transaction Data is Personal Data and may include: your name, email address, contact number, billing and shipping address, and in some instances, information about what was purchased.

Depending on the activity, EoD assumes the role of a “data controller” and/or “data processor” (or “service provider”) based on the activity. For more details about our role, the specific EoD entity responsible under this

  1. Personal Data we collect and how we use and share it

    1. End Users

      1. How we use and share Personal Data of End Users

        • Services. We use and share your Personal Data to provide the End User Services to you, which includes support, personalization (such as language preferences and setting choices), and communication about our End User Services (such as communicating Policy updates and information about our Services). For example, EoD may use cookies and similar technologies or the data you provide to our Business Users (such as when you input your email address on a Business User’s website) to recognize you and help you use Link when visiting our Business User’s website.
        • Our Business Users. When you use Link to make payments, we share your Transaction Data with the Business Users you choose to do business with. Furthermore, when you opt to connect your bank account with EoD, you can also direct EoD to share your account information with Business Users you do business with. Please note that these Business Users have their own privacy policies, which should describe how they use the information shared with them.
        • Fraud Detection and Loss Prevention. We use your Personal Data collected across our Services to detect fraud and prevent financial losses for you, us, and our Business Users. 
        • Advertising. We may use your Personal Data to assess your eligibility for, and offer you, other End User Services or promote existing End User Services. Where allowed by law (including with your opt-in consent where required), we use and share End User Personal Data with others so that we may market our End User Services to you, including through interest-based advertising. We do not transfer your Personal Data to third parties in exchange for payment, but we may provide your data to third party partners, such as advertising partners, analytics providers, and social networks, who assist us in advertising our Services to you. 

    2. End Customers

      EoD provides various Business Services to our Business Users, Business Users are responsible for ensuring that the privacy rights of their End Customers are respected, including obtaining appropriate consents and making disclosures about their own data collection and use associated with their products and services. If you're an End Customer, please refer to the privacy policy of the Business User you're doing business with for its privacy practices, choices, and controls.

      1. Personal Data we collect about End Customers

        • Transaction Data. If you're an End Customer making payments to, receiving refunds from, initiating a purchase or donation, or otherwise transacting with our Business User, whether in-person or online, we receive your Transaction Data. 

      2. How we use and share Personal Data of End Customers

        • To provide our Business Services to our Business Users, we use and share End Customers' Personal Data with them. Where allowed, we also use End Customers' Personal Data for EoD’s own purposes such as enhancing security, improving and offering our Business Services, and preventing fraud, loss, and other damages, as described further below.Payment processing and accounting. We may also use your Personal Data to provide and improve our Business Services.

  2. More ways we collect, use, and share Personal Data

    In addition to the ways described above, we also process your Personal Data as follows:

    1. Collection of Personal Data

      • Online Activity. Depending on the Service used and how our Business Services are implemented by the Business Users, we may collect information related to:

        • The devices and browsers you use across our Sites and third party websites, apps, and other online services (“Third Party Sites”).
        • Usage data associated with those devices and browsers and your engagement with our Services, including data elements like IP address, plug-ins, language preference, time spent on Sites and Third Party Sites, pages visited, links clicked, payment methods used, and the pages that led you to our Sites and Third Party Sites. We also collect activity indicators, such as mouse activity indicators, to help us detect fraud.

      • Communication and Engagement Information. We also collect information you choose to share with us through various channels, such as support tickets, emails, or social media. If you respond to emails or surveys from EoD, we collect your email address, name, and any other data you opt to include in your email or responses. If you engage with us over the phone, we collect your phone number and any other information you might provide during the call. Additionally, we collect your engagement data, like your registration for, attendance at, or viewing of EoD events and any other interactions with EoD personnel.

      • Forums and Discussion Groups. If our Sites allow posting of content, we collect Personal Data that you provide in connection with the post.

    2. Use of Personal Data.

      Besides the use of Personal Data described above, we use Personal Data in the ways listed below:

      • Improving and Developing our Services. We use analytics on our Sites to help us understand your use of our Sites and Services and diagnose technical issues. We also collect and process Personal Data throughout our various Services, whether you are an End User, End Customer, Representative, or Visitor, to improve our Services, develop new Services, and support our efforts to make our Services more relevant and useful to you. Communications. We use the contact information we have about you to deliver our Services, which may involve sending codes via SMS for your authentication.If you are an End User, Representative, or Visitor, we may communicate with you using the contact information we have about you to provide information about our Services and our affiliates’ services, invite you to participate in our events, surveys, or user research, or otherwise communicate with you for marketing purposes, in compliance with applicable law, including any consent or opt-out requirements. For example, when you provide your contact information to us or when we collect your business contact details through participation at trade shows or other events, we may use this data to follow up with you regarding an event, provide information requested about our Services, and include you in our marketing information campaigns. Where permitted under applicable law, we may record our calls with you to provide our Services, comply with our legal obligations, perform research and quality assurance, as well as for training purposes.

      • Social Media and Promotions. If you opt to submit Personal Data to engage in an offer, program, or promotion, we use the Personal Data you provide to manage the offer, program, or promotion. We also use the Personal Data you provide, along with the Personal Data you make available on social media platforms, for marketing purposes, unless we are not permitted to do so.

      • Fraud Prevention and Security. We collect and use Personal Data to help us identify and manage activities that could be fraudulent or harmful across our Services, enable our fraud detection Business Services, and secure our Services and transactions against unauthorized access, use, alteration or misappropriation of Personal Data, information, and funds. As part of the fraud prevention, detection, security monitoring, and compliance efforts for EoD and its Business Users, we collect information from third parties (such as credit bureaus) and via the Services we offer. In some instances, we may also collect information about you directly from you, or from our Business Users, Financial Partners, and other third parties for the same purposes. Furthermore, to protect our Services, we may receive details such as IP addresses and other identifying data about potential security threats from third parties. Such information helps us verify identities, conduct credit checks where lawfully permitted, and prevent fraud. Additionally, we might use technology to evaluate the potential risk of fraud associated with individuals seeking to procure our Business Services or arising from attempted transactions by an End Customer or End User with our Business Users or Financial Partners.

      • Compliance with Legal Obligations. We use Personal Data to meet our contractual and legal obligations related to anti-money laundering, Know-Your-Customer ("KYC") laws, anti-terrorism activities, safeguarding vulnerable customers, export control, and prohibition of doing business with restricted persons or in certain business fields, among other legal obligations. For example, we may monitor transaction patterns and other online signals and use those insights to identify fraud, money laundering, and other harmful activity that could affect EoD, our Financial Partners, End Users, our Business Users and others. . Ensuring safety, security, and compliance for our Services is a key priority for us, and collecting and utilizing Personal Data is crucial to this effort.

      • Minors. Our Services are not directed to children under the age of 13, and we request that they do not provide Personal Data to seek Services directly from EoD. In certain countries, we may impose higher age limits as required by applicable law.

    3. Sharing of Personal Data.

      Besides the sharing of Personal Data described above, we share Personal Data in the ways listed below:

      • EoD Affiliates. We share Personal Data with other EoD-affiliated entities for purposes identified in this Policy.

      • Service Providers or Processors. In order to provide, communicate, market, and advertise our Services, we depend on service providers. These providers offer critical services spanning from providing cloud infrastructure, conducting analytics for the assessment of speed, accuracy, and/or security of our Services, verifying identities, to providing customer service and audit functions. We authorize these service providers to use or disclose the Personal Data we make available to them to perform services on our behalf and comply with relevant legal obligations. We mandate these service providers to contractually commit to ensuring the security and confidentiality of the Personal Data they process on our behalf. The majority of our service providers are based in the European Union, the United States of America, and India. 

      • Financial Partners. We share Personal Data with certain Financial Partners to provide Services to Business Users seeking such Services as well as offer certain Services in conjunction with these Financial Partners. For instance, we share certain Personal Data about Representatives, such as loan repayment data and contact information, with institutional investors who purchase or provide credit that's secured through the Capital loans we've extended to the Business Users they are associated with.

      • Others with Consent. In some situations, we may not offer a service, but instead refer you to others (like professional service firms that we partner with to deliver the Atlas Service). In these instances, we will disclose the identity of the third party and the information to be shared with them, and seek your consent to share the information.

      • Corporate Transactions. If we enter or intend to enter a transaction that modifies the structure of our business, such as a reorganization, merger, sale, joint venture, assignment, transfer, change of control, or other disposition of all or part of our business, assets, or stock, we may share Personal Data with third parties in connection with such transaction. Any other entity that buys us or part of our business will have the right to continue to use your Personal Data, but subject to the terms of this Policy.

      • Compliance and Harm Prevention. We share Personal Data when we believe it is necessary to comply with applicable law; to abide by rules imposed by Financial Partners in connection with the use of their payment method; enforce our contractual rights; secure and protect the Services, rights, privacy, safety, and property of EoD, you, and others, including against malicious or fraudulent activity; and to respond to valid legal requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities, which may include authorities outside your country of residence.

  3. Legal bases for processing Personal Data

    For purposes of the General Data Protection Regulation and other applicable data protection laws, we rely on a number of legal bases to process your Personal Data.

      • Contractual and Pre-Contractual Business Relationships. We process Personal Data to enter into business relationships with prospective Business Users and End Users and fulfill our respective contractual obligations with them. These processing activities include:

        • Creation and management of EoD accounts and EoD account credentials, including the assessment of applications to initiate or expand the use of our Services;

    2. Legal Compliance. We process Personal Data to verify the identities of individuals and entities to comply with obligations related to fraud monitoring, prevention, and detection, laws associated with identifying and reporting illicit and illegal activities. 

    3. Consent. We may rely on consent or explicit consent to collect and process Personal Data regarding our interactions with you and the provision of our Services such as Link and Identity. When we process your Personal Data based on your consent, you have the right to withdraw your consent at any time, and such a withdrawal will not impact the legality of processing performed based on the consent prior to its withdrawal.

    4. Substantial Public Interest. We may process special categories of Personal Data, as defined by the GDPR, when such processing is necessary for reasons of substantial public interest and consistent with applicable law, such as when we conduct politically-exposed person checks. We may also process Personal Data related to criminal convictions and offenses when such processing is authorized by applicable law, such as when we conduct sanctions screening to comply with AML and KYC obligations.

  4. Your rights and choices

    Depending on your location and subject to applicable law, you may have choices regarding our collection, use, and disclosure of your Personal Data:

    1. Opting out of receiving electronic communications from us

      If you wish to stop receiving marketing-related emails from us, you can opt-out by clicking the unsubscribe link included in such emails. We'll try to process your request(s) as quickly as reasonably practicable. However, it's important to note that even if you opt out of receiving marketing-related emails from us, we retain the right to communicate with you about the Services you receive (like support and important legal notices) and our Business Users might still send you messages or instruct us to send you messages on their behalf.

      • Your data protection rights

        Depending on your location and subject to applicable law, you may have the following rights regarding the Personal Data we control about you:

        • The right to request confirmation of whether EoD is processing Personal Data associated with you, and if so, request access to that Personal Data
        • The right to request that EoD rectify or update your Personal Data if it's inaccurate, incomplete, or outdated;
        • The right to request that EoD erase your Personal Data in certain circumstances as provided by law
        • The right to request that EoD restrict the use of your Personal Data in certain circumstances, such as while EoD is considering another request you've submitted (for instance, a request that EoD update your Personal Data);
        • The right to request that we export the Personal Data we hold about you to another company, provided it's technically feasible;
        • The right to withdraw your consent if your Personal Data is being processed based on your previous consent;
        • The right to object to the processing of your Personal Data if we are processing your data based on our legitimate interests; unless there are compelling legitimate grounds or the processing is necessary for legal reasons, we will cease processing your Personal Data upon receiving your objection 
        • The right not to be discriminated against for exercising these rights; and 
        • The right to appeal any decision by EoD relating to these rights by contacting EoD’s Data Protection Officer (“DPO”) at hello@enterprise-ondemand.ai.

      You may have additional rights, depending on applicable law, over your Personal Data. For example, see the Jurisdiction-specific provisions section under United States below.

  5. Security and Retention

    We make reasonable efforts to provide a level of security appropriate to the risk associated with the processing of your Personal Data. We maintain organizational, technical, and administrative measures designed to protect the Personal Data covered by this Policy from unauthorized access, destruction, loss, alteration, or misuse. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure.

    We encourage you to assist us in protecting your Personal Data. If you hold a EoD account, you can do so by using a strong password, safeguarding your password against unauthorized use, and avoiding using identical login credentials you use for other services or accounts for your EoD account. If you suspect that your interaction with us is no longer secure (for instance, you believe that your EoD account's security has been compromised), please contact us immediately.

    We retain your Personal Data for as long as we continue to provide the Services to you or our Business Users, or for a period in which we reasonably foresee continuing to provide the Services. Even after we stop providing Services directly to you or to a Business User that you're doing business with, and even after you close your EoD account or complete a transaction with a Business User, we may continue to retain your Personal Data to:

    • Comply with our legal and regulatory obligations;
    • Enable fraud monitoring, detection, and prevention activities; and
    • Comply with our tax, accounting, and financial reporting obligations, including when such retention is required by our contractual agreements with our Financial Partners (and where data retention is mandated by the payment methods you've used).

    In cases where we keep your Personal Data, we do so in accordance with any limitation periods and record retention obligations imposed by applicable law.

  6. International Data Transfers

    As a global business, it's sometimes necessary for us to transfer your Personal Data to countries other than your own, including the United States. These countries might have data protection regulations that are different from those in your country. When transferring data across borders, we take measures to comply with applicable data protection laws related to such transfer. In certain situations, we may be required to disclose Personal Data in response to lawful requests from officials, such as law enforcement or security authorities.

    When a data transfer mechanism is mandated by applicable law, we employ one or more of the following:

    We retain your Personal Data for as long as we continue to provide the Services to you or our Business Users, or for a period in which we reasonably foresee continuing to provide the Services. Even after we stop providing Services directly to you or to a Business User that you're doing business with, and even after you close your EoD account or complete a transaction with a Business User, we may continue to retain your Personal Data to:

    • Transfers to certain countries or recipients that are recognized as having an adequate level of protection for Personal Data under applicable law.
    • EU Standard Contractual Clauses approved by the European Commission and the UK International Data Transfer Addendum issued by the Information Commissioner’s Office. You can obtain a copy of the relevant Standard Contractual Clauses.
    • Other lawful methods available to us under applicable law.

    EoD, Inc. complies with the EU-U.S. Data Privacy Framework (“EU-U.S. DPF”), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework as set forth by the U.S. Department of Commerce and as applicable.

  7. Jurisdiction-specific provisions

    EoD’s Chief Privacy Officer is the person in charge of personal information.  You may contact them via email at hello@enterprise-ondemand.ai.  When EoD collects Personal Data belonging to users When EoD relies on service providers to process Personal Data as described herein, those service providers may also be located outside of India.

    You have the right to request access or rectification of the Personal Data EoD holds related to you or to withdraw any consent given to the processing of such personal data. You may exercise those rights by contacting EoD’s Chief Privacy Officer at hello@enterprise-ondemand.ai. If you are an End Customer, you should contact the Business User with which you transacted to exercise your rights.

  8. Contact us

    If you have any questions or complaints about this Policy, please contact us hello@enterprise-ondemand.ai. If you are an End Customer (i.e., an individual doing business or transacting with a Business User), please refer to the privacy policy or notice of the Business User for information regarding the Business User’s privacy practices, choices and controls, or contact the Business User directly.

Website deisgn and developed by Everything Design.