DATA PRIVACY POLICY

Updated on 14th March, 2020

PLEASE READ PRIVACY POLICY CAREFULLY BEFORE YOU START USING FRESH PROPOSALS WEBSITE OR APPLICATION SERVICES OR ITS RESOURCES.

Fresh Proposals and www.freshproposals.com (henceforth referred as “WEBSITE” or “WE”, “OUR” or “Us”) are committed to protect privacy of our visitor and users. The privacy policy is referenced and part of our Terms of Services and the part written below is about the guideline, terms and conditions about what data we collect, how we collect and protect it. Fresh Proposals. (“Fresh Proposals” or “FreshProposals” or FreshProposals.com) is very serious about data security as we are well aware that our users (you) care about how the personal information is used. 

By using and continue to use our website and service, you acknowledge and agree to accept the terms of privacy. If you do not accept our privacy practice, you should not use or continue to use Website or our services.

Security and Confidentiality of Personal Information

Fresh Proposals has taken reasonable commercial measures and steps to implement security of data. We follow generally acceptable industry practices to protect personally identifiable information submitted to our website or our services (data-in-transit and data-at-rest). It is your responsibility as well to protect your account by not-disclosing credentials of your account to anyone.

However despite of our best efforts to keep your data secure, there is no method of transmission over internet and digital storage which is 100% secure. Rest assured, we make every effort to protect your personal data, we can not guarantee its unbreakable security.

What Information Do We Collect?

We collect following personal information from you.

When you register your account with us, you must provide first name, last name, valid name of you business, address, phone number. We will ask you to create login information, site name and set password for your account. We do not collect credit card number at Fresh Proposals. We may use competent third party providers to process payment from our customers. 

As you will continue to access and use our service, we may collect business contact information of your colleagues, business partners and customers which you may invite to use the tool along with any business proposal you may create in your account. We may collect IP address of the visitor and users to detect unauthorized access, transactions, manage website, service traffic and collect other analytics on the Website and services.

How Do We Collect The Information?

When you fill up the sign-up form or request information on our website, your information is submitted to us. We may also use “cookies”, small data files, stored on your computer, smartphones. Cookies help you as well as us, to manage your use of our Website. We also use third party tools such as Google Analytics to understand the sources of traffic, patterns of how visitors, users interact with our Website and other services.

Why Do We Collect The Information?

We collect the information about you to

• Uniquely identify visitors and users of the system and offer customized services

We use Cookies, your entered credentials and other analytical tools to

• To recognize you as a regular user and not a new visitor (to avoid display of repeating information)
• To identify who you are (so to allow you to access your account, interest specific information )
• To gauge size of our visitors based on repeat usage of the Website and outreach them based on interests behaviour
• To identify your progress in using the service
• To evaluate the visiting patterns as a part of research tool to understand different usage patterns and make suitable offers
• To conduct technical, user oriented and other research

You can configure your internet browser to notify you when a website uses cookies. This gives you the choice to decide whether you want to accept or reject cookies. If you do not accept cookies, some pages may not render properly and/ or you may not be allowed to visit/ access certain information.

How Do We Propose to Use This Information?

While we collect your information, we make every effort to identify the purpose of using such information. We will use this information as mentioned at the time of collection or as mentioned in the privacy policy, updated from time to time. Wherever we feel it is right to ask for consent, we will reach out to you before using your information for other purpose, or unless it is required by law or authorized to use it.

We will use your information for following purposes.

• To provide sales enablement services such as creating proposals, sending proposals to your contacts, generating analytics for the improvement of sales process
• To improve the Website and our services
• To promote and market our services, resources
• To keep up the professional relationship with you and communicate which may include account verification, security and data protection measures, promoting products, services
• To offer customised services, requesting or collecting your preferences of using our services
• To administer, manage or improve business operations
• To meet authorized, legal, statutory  compliance requirements

Hosted on high performing Google and Amazon clouds (AWS), we assure you that all our customer information is held confidential. We never sell our customer list or our customer information to anyone. All the customer information collected such as name, email address, phone number, website, social media handles, mailing address, billing information or any other information related to third party integrations is collected for the sole purpose of providing best services to our customers and to update them of the improvements to our product and services. 

We will send product updates, special offers or promotional notices via mail, email or voice broadcast, from time to time, to our customers and prospects who have expressed interest and requested such information. The customer/ prospect can always opt out from receiving such offers/ notifications by following the opt out link on the specific communication or by contacting Fresh Proposals directly.

How Do We Share Personal Information

We do not rent or sell your personal information to third parties.

• We may however share your information with third parties to offer services to you such as payment gateway. Since we do not process credit card data, we do not collect your credit card information. We use third party payment gateway providers to process payments and these vendors need to use your information to carry out the business function such as payment.
• Based on your request, we may export and share your information with third party providers for application-integration purpose such as helpdesk, support, chatting application.
• We may collect, aggregate and share your information in anonymous manner with third party vendors to improve our Website and services
• We may share your personal information as required by law with investigating agencies or if we believe it is necessary to disclose the information to protect our rights and/or to comply with legal process involving our business, website or service.
• We may share your personal information if we believe it is required to stop, prevent or uncover illegal activities, suspected fraud or abuse of our Website, Service or anything that may cause threat physical safety of our employees, associated third party vendors
• We may transfer your personal information with third party in the event of change of ownership of website, services or business. We will inform you via email, in the event of change of ownership or change of control of personal information.

Accessing Your Personal Information

You can access, review, update and request deletion of your personal information with us. To access your personal information with us, you can simply login to your Fresh Proposals account and update it. In case you do not have active Fresh Proposals account, we need your written request via email. 

Upon receiving your request, we will take commercially reasonable steps and time to provide you way to access your personal information. We may ask for reasonable fee to cover the cost of providing access and removing information.

Securing Your Data

Infrastructure

• Fresh Proposals is hosted its: website, application & database in world class secure server environment (hosted and professionally managed by Amazon Web Service, a recognized leader in application hosting) that uses a dedicated firewall to prevent interference with outside intruders. Amazon’s AWS (Amazon Web Services) cloud architecture is certified as SAS70 Type II facility & it has also achieved ISO 27001 certification – known for reliable security measures. Please visit http://aws.amazon.com/security/ for more details.
• We backup data regularly to a different server!
• We are 100% committed to security and investing in the best technology and infrastructure

Server Security

• All devices and software used in order to access the server are protected by encrypted passwords and accessible only through encrypted communication mode
• Application security model prevents customer data cross-over and ensures complete customer data segregation and privacy

Application Security

[A] Encrypted Password
User authentication is controlled via unique and valid username and password combination.

[B] Role Based Access
For logged in users, all access within Fresh Proposals is permission based – there are 3 types of roles available (Administrator, Proposal Writer, Viewer) and these four types of roles define the level of access to set of proposal. For more details please refer to help guide of respective Fresh Proposals application.

[C] 256-bit SSL

• Fresh Proposals application is 256-bit SSL encryption-enabled. What this means is that the data that you send between your computer and the Fresh Proposals server is encrypted. It’s like sending a coded message. If you bank online or use eCommerce sites then you have already used SSL. SSL will make it very difficult for unauthorized people to view information traveling between your computer and the Fresh Proposals server.
• Above security model is reapplied with every request and enforced for the entire duration of the session. 256 bit RSA Encryption and Secure Socket Layer (SSL) protects your data using both server authentication and data encryption.
• Fresh Proposals does not use “cookies” to store other confidential information and have implemented advanced security methods based on dynamic data and encoded session IDs.

Data Security & Backup
Application security model prevents customer data cross-over and ensures complete customer data segregation and privacy
Customer data is segmented from the Application layer providing additional security buffers 

People Processes

• Designing and running data center infrastructure requires not just technology, but a disciplined approach to processes. This includes policies about escalation, management, knowledge sharing, risk, as well as the day to day operations.
• Select Employees Access. Only employees with the highest clearance have access to our data center data. Employee access is logged and passwords are strictly regulated. We limit access to customer data to only a select few of these employees who need such access to provide support and troubleshooting on our customers’ behalf.
• Audits: Audits are regularly performed and the whole process is reviewed by management

Update to Privacy Policy

We may update privacy policy at any time, at our discretion without prior notification. We encourage you to periodically check privacy policy for changes.