Privacy Policy

1. Information We Collect

Information You Provide to Us

We collect information you provide directly to us when using IncidentCore, including:

• Account Information: Name, email address, username, password, department, and job title when you create or update your account.
• Incident Reports: All information in incident reports including customer details, account information, transaction data, and incident descriptions.
• Support Communications: Messages, issue descriptions, screenshots, and contact details when you communicate with our support team.
• Platform Communications: Content of messages, comments, and other communications sent through our system.

Information We Collect Automatically

When you use IncidentCore, we automatically collect:

• Log Information: Access times, pages viewed, IP address, browser type, operating system, and referring pages.
• Device Information: Hardware model, operating system version, unique device identifiers, and mobile network information.
• Usage Information: Features used, search queries, and other actions taken on the platform.
• Location Information: General location derived from your IP address when you access our system.

Cookies and Similar Technologies

We use various types of cookies to improve your experience:

• Essential Cookies: Required for the platform to function properly and cannot be disabled.
• Performance Cookies: Help us understand how visitors interact with our platform.
• Functionality Cookies: Enable enhanced functionality and personalization.
• Security Cookies: Help identify and prevent security risks and unauthorized access.

2. How We Use Your Information

We use your information to:

• Provide, maintain, and improve IncidentCore platform services
• Process and manage incident reports and customer data
• Send important communications about incidents, updates, and security alerts
• Monitor usage trends and analyze platform performance
• Detect, investigate, and prevent security incidents and fraudulent activities
• Protect the rights, privacy, safety, and property of IncidentCore and its users
• Comply with legal obligations and regulatory requirements
• Personalize and improve your user experience
• Conduct internal operations including troubleshooting, data analysis, and research
• Enforce our terms of service and policies

Legal Bases for Processing

We process your information based on:

• Contract Performance: To fulfill our service obligations to you
• Legitimate Interests: For service improvement, fraud prevention, and system security
• Legal Compliance: To meet applicable laws and regulatory requirements
• Consent: Where specifically required by law for certain processing activities

3. How We Share Your Information

We may share your information in these circumstances:

• Within IncidentCore: With different departments and affiliates for purposes consistent with this policy
• Service Providers: With trusted vendors and consultants who assist in our operations
• Legal Requirements: When required by law, regulation, or to protect rights and safety
• Regulatory Authorities: With regulators and auditors for compliance purposes
• With Consent: When you have explicitly agreed to share with third parties
• Business Transfers: In connection with mergers, acquisitions, or asset sales

Data Aggregation and Anonymization

We may share aggregated or anonymized information that cannot identify you for analytical, statistical, or research purposes.

4. Data Security

We implement comprehensive security measures including:

• Encryption: All sensitive data is encrypted both in transit and at rest
• Access Controls: Strict authentication and authorization procedures
• Security Assessments: Regular penetration testing and vulnerability assessments
• Employee Training: Comprehensive data protection and security training programs
• Incident Response: Dedicated plans for addressing potential security breaches
• Physical Security: Multi-layered protection for data centers and facilities

Important: While we implement industry-standard security measures, no system is completely secure. We cannot guarantee absolute security but commit to promptly addressing any security incidents.

5. Data Retention

We retain your information as long as necessary for:

• Fulfilling the purposes for which it was collected
• Meeting legal, regulatory, accounting, or reporting requirements
• Resolving disputes and enforcing agreements
• Maintaining system security and preventing fraud

Retention Factors

We consider these factors when determining retention periods:

• Amount, nature, and sensitivity of the information
• Potential risk of harm from unauthorized use or disclosure
• Processing purposes and alternative means to achieve them
• Applicable legal, regulatory, and contractual requirements

6. Your Privacy Rights

Depending on your location, you may have these rights regarding your personal information:

• Access: Request access to your personal information we maintain
• Correction: Request correction of incomplete or inaccurate information
• Deletion: Request deletion of your personal information (subject to exceptions)
• Restriction: Request restriction of processing under certain circumstances
• Data Portability: Request your information in a portable format
• Objection: Object to processing based on our legitimate interests
• Withdraw Consent: Withdraw consent where we rely on it for processing

Exercising Your Rights

To exercise these rights, contact us using the information in the Contact section. We may need to verify your identity and will respond within applicable legal timeframes.

7. International Data Transfers

IncidentCore operates globally, and your information may be processed in various countries with different data protection laws.

Transfer Safeguards

When transferring personal information internationally, we use these safeguards:

• Standard contractual clauses approved by relevant authorities
• Binding corporate rules and certification mechanisms
• Explicit consent for specific transfers where required
• Technical and organizational measures for data protection during transfer

8. Changes to this Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. When we make material changes, we will notify you by:

• Posting the updated policy on our platform
• Updating the "Last Updated" date
• Sending email notifications to registered users
• Displaying prominent notices on IncidentCore

We encourage regular review of this Privacy Policy to stay informed about our information practices.

9. Children's Privacy

IncidentCore is designed for users aged 18 and above or the legal age for data processing consent in their jurisdiction. We do not knowingly collect personal information from children under 18.

If we become aware of collecting information from a child under 18, we will promptly delete such information from our systems.

10. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

For platform-specific inquiries:

We will respond to your inquiry within 30 days or as required by applicable law.