Terms of Use Agreement (ToU)

Last updated: September 6, 2023

Before you setup your account to use the SYNERGi software platform and related services (the "Service"), we ask you to give your express agreement to the provisions of this Terms of Use Agreement ("Terms", "ToU"). By clicking on "I Agree", you are indicating your agreement with the ToU.
The Service is provided by INFORMATION RISK MANAGEMENT LIMITED ("IRM", "us", "we"), a company registered in England and Wales and holding its registered office at:

Information Risk Management,
No 1 Forge End,
Woking,
Surrey,
GU21 6DB

This Terms of Use Agreement (the "Agreement") sets out the legally binding terms for your access and use. By accessing and using the Service you, individually and on behalf of your employer or customer (to whom you provide services), and you agree to be bound by this "Agreement". The Service is defined as your access to SYNERGi and the information you receive from SYNERGi. Any modifications shall be effective upon the update of the Agreement with IRM.
Please read this document carefully. The term "you" as used herein means those individuals and/or entities authorised by the Organisation ("the Customer or Third Party") to use the Service. By continuing to access and use the Service, you are indicating your acceptance to be bound by the terms and conditions of this Agreement between you and IRM.

1. This Service

The Service is provided by IRM to you as an individual authorised by the Customer or Third Party to use the Service; on behalf of the Customer who is a subscriber to the Service. By clicking Yes to this agreement and using this Service and any additional services introduced by IRM and contained within the SYNERGi application constitutes acceptance by you of this Agreement.

It is the customer’s responsibility to manage all user accounts and access to the service.

2. Scope of Use

You agree to use the Service and the Information provided thereon only for the intended and agreed purposes, and not to reproduce, retransmit, disseminate, sell, distribute, republish, broadcast, post, circulate or commercially exploit the Information available on the Service in any manner without the express written consent of IRM, nor to use the Information available on the Service for any unlawful purpose.

You agree to access the Information available on the Service manually by request and not programmatically by macro or other automated means, and to view the Information only as displayed on your terminal screen and not attempt to upload, intercept, extract or otherwise collect and/or record the Information through any technological means.

3. Registration and Account Integrity

As part of your use of the Service, you may need an account to use the Service. An account has or will be provided to you in order to consume the Service, either by IRM or by the company which consumes the service which you supply. It is your responsibility to ensure that the information you provide is accurate, not misleading and relates to your organisation.

3.1 User Accounts

You are responsible for keeping your password and account details secure, these should not be shared with anyone, and you will be solely responsible and liable for any activity that occurs under your username or account.
You agree not to disclose your password to anyone else in your organisation and/or a third party. You must notify us immediately upon becoming aware of any breach of security or unauthorised use of your account.
If for any reason you suspect that your username & password has been disclosed to or obtained by another party you should contact IRM and / or your point of contact in the company which consumes the service which you supply immediately.
Where we provide an organisation with a number of user licenses for the Service these must be adhered to. User licenses cannot be shared between users. A breach of this clause will result in termination of the abused accounts.

4. Cookie Notice

We use cookies on this Site. Cookies are small pieces of information that a website sends to your computer’s web browser while you are viewing a website. By using this Site you agree to the placing of cookies on your device as further explained below.

We only use our own created session cookies to ensure that we give you the best experience on our website. This information is not shared with any third-party or connected to any other information.

We do not collect behavioural, advertising and/or targeting cookies.

If you do not want to receive a cookie from the Site, you may set your browser to refuse cookies or to notify you when you receive a cookie, which you may then refuse upon such notice. To understand how to do this, please consult your browser’s help section.

For further details see our cookie policy from this link: Cookie Policy

5. Privacy Notice

IRM undertakes to not reveal the personal data obtained from your name and email addresses or from your registration on the Site to any third-party.

This information will only be used to give you access to the Services provided on the Site. You have the right to access and modify, complete, update or delete your Personal Data. In order to do so, please contact support@irmsecurity.com.

We have implemented encryption of all data held within Synergi.

IRM does not collect "Sensitive Personal Data" through its Site.

If you have any questions or concerns regarding this Policy or if you consider your Personal Data to be incorrect or wish to have it corrected or deleted, then please either sign-in and update or correct your profile on our Site or notify IRM at the following address: support@irmsecurity.com

IRM does not collect "Sensitive Personal Data" through its Site.

For further details see our privacy policy from this link: Privacy Policy

Note:

"Personal Data" means any information relating to an identified or identifiable natural person; an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his physical, physiological, mental, economic, cultural or social identity.

"Sensitive Personal Data" means Personal Data concerning racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union membership, or concerning health or sex life.

6. Software

Country and City data is sourced from simplemaps https://creativecommons.org/licenses/by/4.0

Privacy Policy

Introduction

This Service is provided by IRM to you as an individual end User authorised by our Customer or a Third Party related to our Customer; on behalf of the Customer who is a subscriber to the Service.

This Policy provides information about how IRM collects, uses, and protects your personal information.

This Policy does not apply to the privacy practices governing the relationship between our Customer and you / your organisation as the end user, including when our Customer uses the application to collect and process personal and organisational (business) information. Such usage is governed by our customers’ privacy policies, over which we have no control.

Data protection is a key concern for IRM which has been placing this matter as a priority for long. Hence, transparency regarding the way we process the personal data we collect is a commitment for us. The information provided below intends to provide you all relevant information in relation to the collection and processing of information which may be collected through this application.

What data do we collect and how?

We collect details such as your name and organisation email address, and role within that organisation and optionally you can provide details of your language and business telephone number. We collect this when your user account is created by a member of your organisation. We also collect the answers to a number of security questions when you first register your account.

How will we use your data?

In order to access and use the Synergi application and receive email notifications from the system.

How is the data Stored?

The information is stored in an encrypted database.

The security question answers are stored as a hashed string which cannot be converted back to plain text or anything readable.

Some settings are stored in the browser’s local storage.

How long do we keep your data?

We will keep your personal data as long as we have a contractual and/or business relationship with our Customer or as long as our Customer has authorised you to access the Service.

It is our Customer’s responsibility to manage all user accounts and access to the service, and to determine the data retention policy and period. The log information we may collect for security, maintenance and improvement purposes will not be kept longer than the data retention period set by the Customer in the General Settings of the instance, except where needed for a period of time, in which IRM pursues legitimate business interests or must comply with legal obligations.

Sharing of your Personal Data

We do not share your personal data with any other organisations, companies or groups.

Your rights

In any case, you have the right to access your personal data.

You can also request that your personal data be rectified or deleted. You are entitled as well to object to the processing of your personal data or to request restriction thereof. In addition, you have the right to ask for receiving your personal data in a structured and standard format.

In case of any such request or complaint, please send an email to support@irmsecurity.com. You can also contact our Data Protection Officer by sending an email to the following address: DP@irmsecurity.com

In any case, you also have the right to lodge a complaint with the competent data protection authority.

Data security and integrity

IRM uses various technological and procedural security measures in order to protect the personal data we collect, use or transfer from loss, misuse, alteration or destruction.

Cookie Policy

What is a cookie?

A cookie is a small text file that is downloaded onto your device when you access a website.

What do cookies do?

It allows the website to recognise your device and store some information about your preferences or past actions in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site. In short, cookies help us to provide you with a good experience when you browse our website and also allows us to improve our website.

Are all cookies the same?

Not exactly.

Cookies may differ depending on their duration or on their origin.

1. There are 2 types of duration for cookies:

Session cookies which are temporary and will only be stored in the memory of your browser while it is open. As soon as the browser is closed, the cookie will be removed from your its history.
Persistent cookies which have an expiration date stuck to them. These cookies are not removed when the browser is closed but are removed after the expiry date is reached. These durations are set in accordance with the purpose served by the cookies. You can also manually delete these cookies.

2. Cookies can originate from different sources:

First-party cookies are created by the website you are visiting.
Third-party cookies are created by third-party vendors and placed by the website owner for different purposes.

You can find more information about cookies, including how to see what cookies have been set on your device and how to manage and delete them, at www.aboutcookies.org and www.youronlinechoices.eu.

Web beacons

Web beacons (also known as internet tags, pixel tags and clear GIFs) are typically transparent graphic images placed on a website. Web beacons are used in combination with cookies to consider the actions of our website's visitors. We may use beacons to obtain information such as the IP address of the machine that downloaded the page on which the beacon appears or the URL of the page on which the beacon appears, the time the page was consulted, and the version of browser used to visit the page.

IP addresses and URLs

An IP address is a unique identifier that certain devices use to identify and communicate over the Internet. When you visit our website, we may view the IP address of the device used to connect to the internet via the aforementioned web beacons. This information is used to determine the general physical location of the device. We may use this information to change the way we present our sites to enhance your visit.

A URL (uniform resource locator) is a unique identifier or address for each resource on the internet. For instance, it is the address for the web page that you are visiting. We will use this information to see which pages are visited and the way that you navigate through our website.

How do I change my cookie settings?

We do recommend that you leave the cookies active to enjoy the fullest experience on our website. Please be aware that choosing not to enable certain types of cookies may impact your experience of the website and the availability of some services.

Alternatively, most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set, visit www.aboutcookies.org or www.allaboutcookies.org.

Find out how to manage cookies on popular browsers:

Google Chrome
Microsoft Edge
Mozilla Firefox
Microsoft Internet Explorer
Opera
Apple Safari
To find information relating to other browsers, visit the browser developer's website.

To opt out of being tracked by Google Analytics across all websites, visit https://tools.google.com/dlpage/gaoptout.

What types of cookies do we use?

We DO NOT use Marketing cookies. These cookies track your online activity to help advertisers deliver more relevant advertising or to limit how many times you see an ad. These cookies can share that information with other organizations or advertisers. These are persistent cookies and almost always of third-party provenance.

We DO use the following types of cookies, and have listed them in the table below. Note that some cookies are generated dynamically in the session and so we cannot provide a name for them:

Strictly Necessary Cookies
- These cookies are essential for you to browse the website and use its features.
Preference Cookies
- Also known as "functionality cookies" these cookies allow a website to remember choices you have made in the past.
Statistical Cookies
- Also known as "performance cookies" these cookies collect information about how you use a website, like which pages you visited and which links you clicked on. None of this information can be used to identify you. It is all aggregated and, therefore, anonymized. Their sole purpose is to improve website functions.

Cookie Name

Domain

Description

Expiry

Type

CSSAG