Important Information: Please read this Statement carefully as we have recently updated it.
Last Updated: March 10, 2022
This Privacy Notice explains the information practices and policies of Brytemap, Inc. (“Brytemap”)This Privacy Notice describes how we collect, use, and disclose Personal Information of: (a) individuals (i.e., employees or other staff users) of business partners or clients such as our dispensary customers (collectively “clients”) that use our managed information technology services; (b) individuals (i.e., employees or other staff users) of any prospective business partners or clients; and/or (c) any visitors to any websites owned by Brytemap (“Brytemap Websites”).
For the purposes of this Privacy Notice, the terms “we”, “us” and “our” refer to Brytemap and “you” refers to you, anyone whose information we process for the purposes above. “Personal Information” means information that relates to an identified or identifiable person such as a name, address, phone number, username, email address, and password, it might also include information such as an IP address and/or other online identifiers and information related to a device (see “Cookies or Similar Technologies” section.
This Privacy Notice does not reflect the privacy policies or practices of our clients or any other third party. Brytemap is not responsible for the privacy policies or practices of any client, end-clients of clients, or another third party.
Brytemap is an IT software company that empowers companies in the legal cannabis industry, to achieve success as a grower, retailers, medical facilities, and processers. Brytemap enables our customers to drive business efficiency with business automation, compliance management, and data management capabilities (collectively, the “Services”).
In using our Services, our clients may backup and/or store or otherwise process business or other information or allow us to have access to such information, including Personal Information on our Services (“Client Information”).
In providing our Services, we process Client Information on behalf of and under the direction and instruction of our applicable Client. It is the responsibility of Brytemap’s Client (or its end client if any) to ensure that the Client Information that it collects backups, stores, or otherwise processes or allows us to access through the client’s use of Brytemap’s Services has been legally collected and is processed in accordance with applicable data protection laws. If you have any questions about the handling of Client Information or if you want to submit any requests for access to, correction, amendment, or deletion of Client Information, please address your concerns to the applicable Client.
Brytemap does use limited Personal Information collected via the Services and the Brytemap Websites for our own purposes, as described in this Privacy Notice.
We primarily collect, access, use, and share Personal Information where necessary for us to market and provide Services to our clients and in the ordinary course of running our business, including through the receipt of communications such as emails, website inquiries, and telephone calls.
Personal Information Collected through Our Services and Brytemap Websites
We may collect Personal Information through our Services and Brytemap Websites in the following ways:
Information That You Provide to Us Voluntarily
General Contact Information. We collect any Personal Information that you voluntarily provide to us when you visit a Brytemap Website or when you subscribe for or enquire about any of our Services. For example, if you submit a sales inquiry or subscribe for a newsletter via a Brytemap Website web form or request additional information or contact from Brytemap via email, you will provide us with certain Personal Information, which may include names, company name, address, and email address.
In addition, if you choose to communicate with us via a web form, email, or telephone, we will keep a copy of our communication together with your email address or phone number and our responses.
Personal Information That We Collect Automatically
Device-related Information. When you visit any Brytemap Website or use our Services, we collect Personal Information from your device, including IP address, device type, unique device identification numbers, browser-type, broad geographic location (e.g. country or city-level location), the date and time of use of our Services, the date and time of an event on the client’s IT systems, system logs, and technical attributes about the device or a web browser. This Personal Information enables us to better understand the use of our Brytemap Websites and Services. Some of this Personal Information may be collected using cookies and similar tracking technology, as explained further under the heading “Cookies or Similar Technologies” below.
Cookies or Similar Technologies
If you have arrived at any Brytemap Website by clicking on a banner ad for one of Brytemap’s products or services, a session cookie may be used. This cookie contains an identification number for the advertisement that you clicked on, and it helps Brytemap determine which of its ads attracts the most visitors. If you choose to request further information from us about Brytemap’s products and services, the Personal Information that you provide in that request will be linked to the Personal Information in the session cookie.
In order to better understand how our sites are used, Brytemap Websites may also use persistent cookies along with other Personal Information collected in our servers’ files (e.g., IP Addresses, referring URLs, etc.). Each browser is different, so you should check your browser’s “Help” menu to learn how to change your cookie preferences. If you reject or block cookies, Brytemap Websites may not function as intended.
Personal Information That We Obtain from Third Party Sources
Commercially Available Personal Information. Brytemap may also collect Personal Information from commercially available sources but only where we are legally permitted to do so. Such Personal Information may include names, addresses, email addresses, and demographic data. The Personal Information Brytemap collects from these commercial sources may be combined and cross-referenced with Personal Information we collect through the Services. We use this Personal Information for communications purposes to provide direct marketing materials for our business customers or prospects.
From time to time, we may also ask our partners or clients to voluntarily provide us with the email addresses of contacts of other organizations, so they too can benefit from the various products and services offered by Brytemap and Brytemap’s trusted affiliates. Where we do, we will confirm that they have permission to pass on these details to us.
How We Use Personal Information Collected through Our Services and Brytemap Websites
To Serve Our Clients. We use the personal information we collect, to provide our Services to the Clients on whose behalf we are acting. For example, in order to provide technical support, we may contact a user (such as employees or staff members) of Brytemap’s Clients using any contact information provided to us.
To Serve You. We use the Personal Information to respond to any request or query directed to us (for example through web forms or email), to provide you/your organization with our products and services, and to manage our relationship with you. For example, we, address any inquiries or complaints you may have, endeavor to improve the Services we provide or provide you with information about other products and services we offer that we think you may be interested in.
For Direct Marketing. If we have the right to do so, we will use your Personal Information for the purposes of direct marketing communications to your organization, such as by adding your contact and other details to a marketing database. Where we do, we will provide you with an opportunity to opt-out in accordance with section III.
For Internal and Service-Related Purposes. We may use any Personal Information we collect through the Services and/or any Brytemap Websites for internal and service-related purposes, including providing it to third parties as necessary to allow us to provide the Services, maintain or improve Brytemap Website security, and/or invoicing for example.
Anonymized and Aggregate Data. From time to time, we will aggregate Personal Information collected through our Services for analytics purposes, product improvement purposes, and other service-related purposes.
How We May Disclose Personal Information Collected through Our Services and Brytemap Websites
We may share Personal Information with the following categories of recipients and/or in the following circumstances:
With Third-Party Vendors and Service Providers. As appropriate, we may share Personal Information with our vendors and/or service providers in connection with the provision or marketing of the Services, Brytemap Websites. These third parties have access to Personal Information to the extent necessary to permit them to do their jobs, however, they are bound by confidentiality agreements before any Personal Information is provided to them, and they are restricted from using the Personal Information for other purposes.
As Required by Law and Similar Disclosures. We may disclose Personal Information: if we believe it is necessary: to comply with national security or law enforcement requests and legal processes, such as a court order or subpoena; to respond to your requests; to prevent or address fraud, security, or technical issues; or to protect our property or other legal rights or the rights or property of others, or to protect the vital interests of others.
Merger, Sale, or Other Asset Transfers. If we are involved in a potential or actual merger, acquisition, financing, reorganization, bankruptcy, receivership, sale of company assets, or transition of service to another provider Personal Information collected through the Services or Brytemap Websites (or both) may be sold or transferred as part of such a transaction, as permitted by law and/or contract.
Other than as stated in this Privacy Notice, we will not release Personal Information to unaffiliated third parties, and we will not cross-reference Personal Information collected through one Client’s use of our Services with that of any other Client or entity.
How We Use Personal Information Collected For Targeted Advertising.
You have the option to restrict the use of Personal Information for targeted advertising and to opt-out of receiving targeted ads.
You can control whether companies serve you targeted advertising by visiting the Digital Advertising Alliance website and using its opt-out: http://www.aboutads.info/choices/ (U.S.)
As an alternative to the DAA opt-out, you can also elect to block browser cookies from first parties (such as those from our website) and browser cookies from third parties (such as advertisers) by using the cookie blocking options built into your browser software. If you block browser cookies, some parts of Brytemap Websites may not function correctly. Also, blocking cookies will not stop third-parties from collecting IP addresses, data stored in “Flash” cookies, and certain other types of technical information that may uniquely identify your browser.
Social Network Widgets. Brytemap Websites may include social network sharing widgets that provide Personal Information to their associated social networks or third parties about your interactions with Brytemap Websites that you visit, even if you do not click on or otherwise interact with the plug-in or widget. Personal information may be transmitted from your browser and may include an identifier assigned by the social network or third party, information about your browser type, operating system, device type, IP address, and the URL of the web page where the widget appears. If you use social network tools or visit social networking sites, you should read their privacy disclosures, to learn what information they collect, use, and share.
How do we transfer and store your Personal Information?
Brytemap Websites Services and systems use servers located in the United States. If you are located outside of the United States, the Personal Data we collect will be processed and stored in the United States, a jurisdiction in which the data protection and privacy laws may not offer the same level of protection as those in the country where you are located.
Access, Integrity, Retention, and Choices
Personal information of clients’ clients
Please note that if you are an end-user of one of our Clients’ customers whose Personal Information we may backup or otherwise process in providing Services to our clients, you must submit any requests for access to, correction, amendment, or deletion of your Personal Information, to the Client’s customer.
Access, Correction & Deletion of my Personal Information
If you wish to request access to, correction, or deletion of Personal Information you have submitted through the Brytemap Websites, you can log into your account or contact Brytemap at support@Brytemap.com.
Data Integrity and Purpose Limitation
Brytemap will use Personal Information only for the purpose of or in ways compatible with the purposes for which it was collected.
We keep Personal Information we need to provide our Services only for as long as we have a valid business purpose, in accordance with applicable law and our Client agreements. For example, we retain Personal Information for as long as it is needed to provide you with Services you have requested or to comply with applicable legal, tax, or accounting requirements.
When we have no ongoing legitimate business need to process your Personal Information, we will delete it. If immediate deletion is not possible (for example, because your Personal Information has been stored in backup archives), then we will securely store your Personal Information and isolate it from any further processing until deletion is possible or unless as otherwise required by law.
We include an “unsubscribe” hyperlink in Brytemap marketing emails for those users who wish to stop receiving email communication from Brytemap. The hyperlink will connect to one of the Brytemap Websites, which will confirm the email address that has been automatically unsubscribed and will no longer receive emails from Brytemap.
We take steps to ensure that Personal Information is treated securely and in accordance with this Privacy Notice which includes appropriate technical and organizational measures. These measures are designed to provide a level of security appropriate to the risk of processing your Personal Information. However, neither the Internet nor any form of electronic storage can be guaranteed to be 100% secure, and we cannot ensure or warrant the security of any Personal Information provided to us.
Legal Basis for processing your Personal Information
Our legal basis for collecting and using the Personal Information described above will depend on the Personal Information concerned and the specific context in which we collect it. We l normally collect Personal Information from you only where we need the Personal Information to perform our contract for our Services with our Clients, where the processing is in our legitimate interests (provided these interests are not overridden by your data protection interests or fundamental rights and freedoms), or otherwise if we have your consent to do so. In some cases, we may also have a legal obligation to collect Personal Information from you, such as KYC checks or tax information.
If we ask you to provide Personal Information to comply with a legal requirement or to contact you, we will make this clear at the relevant time and advise you whether the provision of your Personal Information is mandatory or not (as well as of the possible consequences if you do not provide your Personal Information). Similarly, if we collect and use your Personal Information in reliance on our legitimate interests (or those of any third party), we will make clear to you at the relevant time what those legitimate interests are and before doing so will ensure that we have considered your rights and interests
If you have questions about or need further information concerning the legal basis on which we collect and use your Personal Information, please contact us at firstname.lastname@example.org
You may have the following data protection rights which you may exercise at any time by using the contact details provided under the “Complaints and How to Contact Us” section below:
- You may access, correct, update or request deletion of your Personal Information;
You can object to the processing of your Personal Information, ask us to restrict the processing of your Personal Information, or request the portability of your Personal Information.
- You have the right to opt-out of marketing communications we send you at any time. In addition to using our contact details below, for email marketing communications you can exercise this right by clicking on the “unsubscribe” or “opt-out” link in the marketing e-mails we send you.
- Similarly, if we have collected and processed your Personal Information on the basis of your consent, then you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect the processing of your Personal Information conducted in reliance on lawful processing grounds other than consent.
- You have the right to complain to a data protection authority about our collection and use of your Personal Information. For more information, please contact your local data protection authority.
We will respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws.
Please note, if you are an individual whose personal information Brytemap processes as a “data processor”, for example, to provide services on behalf of its Clients, you must contact the relevant data controller of your Personal Information in order to exercise your rights. This might be one of our Clients or one of our Clients’ customers.
We do not knowingly collect, store, or use information from children, including those under the age of 21. If you are under the age of 21, you may not submit any information through the Brytemap Websites or Services. If you have reason to believe that a child under the age of 21 has provided information to us through the Brytemap Websites or Services, please contact us and we will endeavor to delete that information from our databases.
Do Not Track
The Brytemap Websites currently do not respond to “Do Not Track” (DNT) signals and operate as described in this Privacy Notice whether or not a DNT signal is received.
Your California Privacy Rights (California Residents Only)
Under Section 1798.83 of the California Civil Code, residents of California have the right to request from a business, with whom the California resident has an established business relationship, certain information with respect to the types of Personal Data the business shares with third parties for those third parties direct marketing purposes, and the identities of the third parties with whom the business has shared such data during the immediately preceding calendar year.
To exercise your rights, you may make one request each year by emailing us at email@example.com with “Request for California Privacy Information” on the subject line and in the body of your message. Be sure to provide in the request sufficient information to properly identify you and/ or the members of your family.
Brytemap processes certain personal information as a business under the California Consumer Privacy Act (CCPA). This personal information relates to business transactions within the scope of Section 1798.145(n) of the CCPA. [California residents have limited rights under the CCPA in connection with this personal data. Brytemap offers the right to opt-out of the sale of this personal information on the Brytemap websites.]
Changes to This Privacy Notice
We may update this Privacy Notice to reflect changes to our information practices from time to time. If we decide to change this Privacy Notice, we will post the changes on this page so visitors to the Brytemap Website and our clients and the users of their IT systems are aware of our practices, and we will change the “Last Updated” date above. If we make a material change to our information practices, such as to how we use Personal Information, we will make reasonable efforts to provide notice on our website and/or through our clients and obtain consent to any such uses as may be required by law.