Privacy Policy

1. Type of Information

   We collect several different types of information for various purposes to provide and improve Our services to You, which We have grouped into:

   1. “Personal information” includes name, address, date of birth, phone number, e-mail address, gender, and/or identification number.
   2. “User Behavior Data” consists of all activities performed by User within and outside the application related to a project.
   3. “Project Data” includes project identification data, project details, project name, project start date, project expected completion date, and project location.
   4. “Project Performance Data” includes biomass data (e.g. tree biomass by type/species, average biomass by plot, total biomass by project), tree matrics (average tree height by plot, number of trees by species/type), and plot information (total number of plots, size and location of each plot, assigned personnel for each plot).
   5. “Usage of Services” includes frequency of logins to Atmoswatch, features most accessed and duration spent, frequency of data inputs or updates, project interaction patterns, frequency of monitor or update tree metrics, and usage of any automated recommendations or alerts.
   6. “Usage Data” includes Internet Protocol (IP), Internet Device Identity (ID), device operating system, the type of Internet browser You use, unique device identifiers and other diagnostic data.
2. Method of Collecting Personal Information

   We collect personal information from You in various ways:

   1. Information obtained from You

      You may give Us Your Personal Information, Project Data, and/or Project Performance Data, in situations where requested by Us or where required by applicable law, and when interacting with Us directly or by corresponding with Us by telephone, email, chat via Website or through other communication channels. This includes Personal Information You provide when You:

      1. Register, complete the forms, and create an account.
      2. Use Our services and/or Website or enter into transactions and/or agreements with Us (or express an interest in doing so).
      3. Use the service provided by Our business partners.
   2. Information collected whenever You use Our services

      You may give us Usage Data whenever you use and/or visit Our Services by or through any devices.

   3. Information collected from third parties

      In the case that You provide and/or disclose Personal Information of a third party individual, You undertake and warrant Us that You have already obtained properly documented approval from the relevant third-party individual and hereby consent on behalf of such individuals to the collection, use, disclosure, storage, transfer and processing of his/her Personal Information by Us.

3. Cookies

   We use Cookies and similar tracking technologies to track the activity on Our Service and We hold certain information.

   Cookies are files with a small amount of data which may include an anonymous unique identifier. Cookies are sent to Your browser from a website and stored on Your device. Other tracking technologies are also used such as beacons, tags and scripts to collect and track information and to improve and analyze Our Service.

   You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if You do not accept cookies, You may not be able to use some portions of our Service.

   Example of Cookies we use:

   1. Session Cookies: We use Session Cookies to operate Our Service.
   2. Preference Cookies: We use Preference Cookies to remember Your preferences and various settings.
   3. Security Cookies: We use Security Cookies for security purposes.
   4. Advertising Cookies: Advertising Cookies are used to serve You with advertisements that may be relevant to You and Your interests.

We may use Personal Information collected for any of the following purposes as well as for such other purposes as are permitted by applicable law.

1. Where You are a User, We may use Your Personal Information:
   1. To identify, register, and verify Yourself in the event of You creating an account in Our Website.
   2. To contact You through email, telephone calls, or other equivalent forms of electronic communications regarding any information and/or updates with regards to the services We provide, including to notify You of any updates to the Website or changes to the services available.
   3. To maintain, develop, test, enhance and personalize the Website to meet Your needs and preferences as a User.
   4. To monitor and analyze Your activities, projects, search queries, behavior, and demographic data including trends and usage of the different services available on the Website for the purposes of improving the performance and user experience of the services.
   5. To offer or provide services from Our affiliates or partners (as applicable).
   6. To send You direct or targeted marketing communications, such as newsletter or push notifications, including but not limited to via electronic mail, advertisement, surveys, and information on special offers or promotions.
   7. To notify You of new product/service information, special offers and/or other information that We think will interest You.
   8. For any purposes with Your consent.
2. Retention of Data

   We will retain Your Personal Data only for as long as is necessary for the purposes set out in the Privacy Policy. We will retain and use Your Personal Data to the extent necessary to comply with Our legal obligations (for example, if We are required to retain your data to comply with applicable laws), resolve disputes, and enforce Our legal agreements and policies. We will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period, except when this data is used to strengthen the security or to improve the functionality of Our Service, or We are legally obligated to retain this data for longer time periods.

   In the event Your personal data has been shared with third parties, You agree that the retention of Your personal data will follow the retention policy of the respective third parties. Furthermore, You also agree that if there is any unauthorized retention of Your personal data by third parties to which We have shared Your data, You agree to release and indemnify Us from any claims, losses, liabilities, expenses, and other related matters

1. Share or Disclose Personal Information

   We may disclose personal information that We collect, or You provide in the event:

   1. Disclosure for Law Enforcement. Under certain circumstances, We may be required to disclose Your Personal Data if required to do so by law or in particular in relation to the national defense and security, law enforcement process, state administration, financial services sector supervision, payment system and financial system stability, and/or other activities required in response to valid requests by public authorities.
   2. Business Transaction. If We or Our subsidiaries are involved in a merger, acquisition or asset sale, your Personal Data may be transferred.
   3. Other Cases. We may disclose Your information also to Our subsidiaries and affiliates; to contractors, service providers, and other third parties We use to support our business; to fulfill the purpose for which You provide it; for the purpose of including Your company’s logo on Our Website; for any other purpose disclosed by Us when You provide the information; with Your consent in any other cases; and if We believe disclosure is necessary or appropriate to protect the rights, property, or safety of the company, Our customers, or others.
2. Transfer Data

   Your information, including Personal Data, may be transferred to – and maintained on – computer(s) or any device located outside of Your state, province, country or other governmental jurisdiction where the data protection laws may differ from those of Your jurisdiction. If You are located outside Indonesia and choose to provide information to Us, please note that We transfer the data, including Personal Data, to Indonesia and process it there. Your consent to this Privacy Policy followed by Your submission of such information represents Your agreement to that transfer.

   Fairatmos will take all the steps reasonably necessary to ensure that Your data is treated securely and in accordance with the Privacy Policy and no transfer of Your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of Your data and other personal information. In the event that it is necessary to transfer data to a country that does not have adequate controls in place including the security of Your data and other Personal Information, We will obtain further consent from You as the Personal Data owner.

1. Security of Data

   The security of Your data is of utmost importance to Us, and We will resort to every reasonable effort to protect Your data against access, collection, use, and/or disclosure by unauthorized parties. Nevertheless, it must be conveyed that there is no transmission of information that is absolutely secure due to the nature of the data in the web. Therefore, You agree that We will do Our best to safeguard Your data including use the best practice, as well as understand that the non-absolute security against unlawful actions by unauthorized parties are remain in the existence. As a form of accountability, Fairatmos will notify You promptly in the event of a personal data protection failure.

2. Complaints regarding personal data security

   If You have concerns about Fairatmos handling and/or protection of Your Personal Data or if You believe that Your data privacy has been violated, You can contact Fairatmos by providing Your identity and complaint. In order to follow up on such complaints, Fairatmos will investigate Your complaints and make efforts to respond to the complaints within a reasonable period of time from the receipt of the complaint submitted by Yourself.

1. Your Data Protection Rights Under Indonesia Personal Data Protection Law

   If You are a resident of Indonesia, You have certain data protection rights, covered by Personal Data Protection Law No. 27 of 2022 or simply known as Indonesia personal data protection law.

   In certain circumstances, You have the following data protection rights:

   1. The right of information. You have the right to obtain information about the interest and the purposes of the request and use of personal data.
   2. The right of rectification. You have the right to have Your information rectified if that information is inaccurate or incomplete.
   3. The right to termination. You have the right to terminate data processing, delete, and erase Your personal information.
   4. The right to data portability. You have the right to be provided with a copy of Your Personal Data.
   5. The right to object. You have the right to object to Our processing of Your Personal Data.
   6. The right of restriction. You have the right to request that We restrict the processing of Your Personal Information.
   7. The right to withdraw consent. You also have the right to withdraw Your consent at any time where We rely on Your consent to process Your Personal Information.
2. Your Data Protection Rights Under General Data Protection Regulation ("GDPR")

   If You are a resident of the European Union and/or European Economic Area (“EEA”), You have certain data protection rights, covered by GDPR. We aim to take reasonable steps to allow You to correct, amend, delete, or limit the use of Your Personal Data.

   In certain circumstances, You have the following data protection rights:

   1. The right to access, update or to delete the information We have on You.
   2. The right of rectification. You have the right to have Your information rectified if that information is inaccurate or incomplete.
   3. The right to object. You have the right to object to Our processing of Your Personal Data.
   4. The right of restriction. You have the right to request that We restrict the processing of Your Personal Information.
   5. The right to data portability. You have the right to be provided with a copy of your Personal Data in a structured, machine-readable and commonly used format.
   6. The right to withdraw consent. You also have the right to withdraw Your consent at any time where We rely on Your consent to process Your Personal Information.

   Please note that We may ask You to verify Your identity before responding to such requests. Please note, We may not able to provide Service without some necessary data.

   You have the right to complain to a Data Protection Authority about Our collection and use of Your Personal Data. For more information, please contact Your local data protection authority in the EEA.

3. California Online Privacy Protection Act ("CPRA")

   CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law’s reach stretches well beyond California to require a person or company in the United States (and conceivable the world) that operates websites collecting personally identifiable information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals with whom it is being shared, and to comply with this policy.

   According to CalOPPA, We and you agree to the following:

   1. User can visit our site anonymously.
   2. Our Privacy Policy link includes the word “Privacy”, and can easily be found on the home page of our website
   3. User will be notified of any privacy policy changes on Our privacy policy page;
   4. User is able to change their personal information by emailing Us.

   Our Policy on “Do Not Track” Signals:

   We honor Do Not Track signals and do not track, plant cookies, or use advertising when a Do Not Track browser mechanism is in place. Do Not Track is a preference You can set in Your web browser to inform websites that You do not want to be tracked.

   You can enable or disable Do Not Track by visiting the preferences or settings page of Your web browser.

4. California Consumer Privacy Act ("CCPA")

   If you are a California resident, You are entitled to learn what data We collect about You, ask to delete Your data and not to sell (share) it. To exercise Your data protection rights, You can make certain requests and ask Us:

   1. What personal information we have about you. If You make this request, We will return to you:
      1. The categories of personal information We have collected about You.
      2. The categories of sources from which We collect Your Personal Information.
      3. The business or commercial purpose for collecting or selling Your personal information.
      4. The categories of third parties with whom We share Personal Information.
      5. The specific pieces of Personal Information We have collected about You.
      6. A list of categories of Personal Information that We have sold, along with the category of any other company We sold it to. If We have not sold Your Personal Information, We will inform You of that fact.
      7. A list of categories of Personal Information that We have disclosed for a business purpose, along with the category of any other company We shared it with.

      Please note that You are entitled to ask Us to provide You with this information up to two times in a rolling twelve-month period. When You make this request, the information provided may be limited to the personal information We collected about You in the previous 12 months.

   2. To delete Your Personal Information. If You make this request, We will delete the Personal Information We hold about You as of the date of Your request from Our records and direct any service providers to do the same. In some cases, deletion may be accomplished through de-identification of the information. If You choose to delete Your Personal Information, You may not be able to use certain functions that require Your Personal Information to operate.

   3. To stop selling Your Personal Information. We don’t sell or rent Your Personal Information to any third parties for any purpose. We do not sell Your Personal Information for monetary consideration. However, under some circumstances, a transfer of Personal Information to a third party, or within Our family of companies, without monetary consideration may be considered a “sale” under California law. You are the only owner of Your Personal Data and can request disclosure or deletion at any time.

      If You submit a request to stop selling Your Personal Information, we will stop making such transfers.

      Please note that if You ask Us to delete or stop selling Your data, it may impact Your experience with Us, and You may not be able to participate in certain programs or membership services which require the usage of Your Personal Information to function. But in no circumstances, We will discriminate against You for exercising Your rights.

   Your data protection rights, described above, are covered by the CCPA. To find out more, visit the official California Legislative Information website. The CCPA took effect on 01/01/2020.

We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page. We will let You know via email and/or a prominent notice on Our Service, prior to the change becoming effective and update “effective date” at the top of the Privacy Policy. You agree to review the Privacy Policy periodically for any changes. Changes to the Privacy Policy are effective when they are posted on this page.

1. Service Providers

   We may employ third party companies and individuals to facilitate Our Service, provide Service on Our behalf, perform Service-related services or assist Us in analyzing how our Service is used. These third parties have access to Your Personal Data only to perform these tasks on Our behalf and are obligated not to disclose or use it for any other purpose.

2. Analytics

   You agree that we may use third-party Service Providers to monitor and analyze the use of Our Service.

3. CI/CD Tools

   You agree that We may use third-party Service Providers to automate the development process of Our Service.

4. Behavioral Remarketing

   We may use remarketing services to advertise on third party websites to You after You visited Our Service. We and Our third-party vendors Use Cookies to inform, optimize and serve ads based on Your past visits to Our Service.

5. Payments

   We may provide paid products and/or services within Service. In that case, We use third-party services for payment processing (e.g. payment processors). We will not store or collect Your payment card details, unless agreed otherwise. That information is provided directly to Our third-party payment processors whose use of Your Personal Information is governed by their privacy policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.

6. Link to Other Sites

   Our Service may contain links to other sites that are not operated by Us. If You click a third party link, You will be directed to that third party’s site. You agree to review the privacy policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policy(s) or practices of any third party sites or services.

7. Children’s Privacy

   Our Service are not intended for use by children under the age of 18 (“Child” or “Children”). We do not knowingly collect personally identifiable information from Children under 18. If You become aware that a Child has provided Us with Personal Data, please contact Us. If We become aware that We have collected Personal Data from Children without verification of parental consent, We take steps to remove that information from Our servers.

If you have questions, complaints, requests, and/or other matters related to Your Personal Data or regarding the Privacy Policy, please contact Us by email: customercare@fairatmos.com.