We endeavor to introduce to you how we process your Personal Information in this Policy, please be sure to read carefully and thoroughly understand this Policy, especially the bold terms which you should pay more attention to, and then start using it after confirming that you fully understand it. If you do not agree with the practice described in this Policy, you may still browse our websites, but may not use certain functions on our websites.
If you have any questions, comments, or suggestions about the content of this Policy, you can contact our Data Compliance Officer by emailing email@example.com.
This Policy will help you understand the following information:
When you visit our website (www.cenobots.com、www.cz-robots.com, hereinafter referred to as “Cenobots Website”) or register for any services on Cenobots Website, we request that you provide Personal Information about yourself, and we collect Navigational Information. You are also free to explore Cenobots Website without providing any Personal Information about yourself.
This Policy applies to all services at Cenobots Website, which includes, in particular:
Generally, we don’t collect the so-called “Sensitive Information” which refers to credit or debit card numbers, financial account numbers or wire instructions, government-issued identification numbers (such as Social Security numbers, passport numbers), biometric information, personal health information (or other information protected under any applicable health data protection laws), personal information of children protected under any child data protection laws, and any other information or combinations of information that falls within the definition of “special categories of data” under the GDPR, “Sensitive Personal Information” under the CA Privacy Acts, or any other applicable law relating to privacy and data protection. Cenobots Website is not intended for or targeted at children under 16 or minors under applicable laws, and we do not knowingly or intentionally collect personal information about children under 16 or minors under applicable laws. In case you claim to delete any personal information about children under 16 or minors that might be collected by us, please contact our Data Compliance Officer.
This Policy does not apply to services provided to you by other third parties.
Below is a list of our Cenobots affiliates within which the data collected via the Cenobots Website will be processed.
|Legal Entities of Cenobots
|Data Controller or Data Processor
|Purpose of Data Processing
|CZ ROBOTS PTE. LTD.
|Services & Support
|987 SERANGOON ROAD SINGAPORE 328147
|Hangzhou Cenozoic Robotics Co., Ltd
|Services & Support
When you browse Cenobots Website, leave messages online, apply to download whitepapers or any documents, or use live chat on the Cenobots Website, you may provide us with your basic information, including Category (1): your name, your country or region, the name of your organization (business duration, enterprise scale, main business, major products), your position, the industry you are engaged in, your specific ideas and needs; and Category (2) contact information (e-mail, contact phone number).
The e-mail address you submitted is used as one of the contact methods specified between you and the Cenobots Website to receive relevant business notifications (such as new products launch, service changes, sending regular email direct marketing advertisements, etc.).
The information you provide in Category (1) of this article will help us better understand your service requirements for the Cenobots Website so that the Cenobots Website can promote and introduce products to you in a targeted manner. Cenobots Website may use the above methods you provide in Category (2) of this article is used to send you marketing materials and conduct business communications with you or follow up for business contact.
You are free to explore Cenobots Website without providing any Personal Information about yourself. If you only need to use basic services such as page browsing on the Cenobots Website, you do not need to provide the above information. In respect of such marketing advertisements as stated in Category (2) above, you also have the right to change the scope of your authorization and consent under this Policy (see Section 7: How You Access and Control Your Personal Information).
Your Personal Information provided by you and/or collected by us will be used by us for the following purposes:
Personal Information collected by Cenobots via Website will be stored first in the United States by default and may be stored and processed in your region or in any other country where Cenobots or its affiliates, subsidiaries, or service providers operate facilities based on your choice.
Cenobots maintains major data centers in the United States and Germany. Typically, the primary storage location is in the customer’s region or the United States or Germany, often with a backup to a data center in another region. The storage location(s) are chosen to operate efficiently, improve performance, and create redundancies to protect the data in the event of an outage or other problem. We take steps to process the data that we collect under this Policy according to this Policy’s provisions and the requirements of applicable law.
We may share Personal Information within Cenobots-controlled affiliates and subsidiaries for the purposes we described under Section 2.
For example, a customer leaves an inquiry via our website to Cenobots and may need technical support from certain subsidiaries of Cenobots. The contact of the inquiry will be shared with certain subsidiaries of Cenobots.
When we share information about you within and among Cenobots Entities, we will use Standard Contractual Data Protection Clauses, which have been approved by the European Commission besides technical safety measures described under Section 5 of this Policy.
We also share Personal Information with vendors or agents working on our behalf for the purposes described under Section 2 in this Policy. For example, companies we’ve hired to provide customer service support may need access to Personal Information to provide those functions. In such cases, these companies must abide by our data privacy and security requirements and are not allowed to use the Personal Information they receive from us for any other purpose.
We will only share your Personal Information for legitimate, proper, necessary, specific, and clear purposes, and we will only share Personal Information necessary to provide the service. Our partners are not authorized to use shared Personal Information for any other purpose.
Currently, our authorized partners include the following types: customers, suppliers, service providers, and other partners. We will send information to suppliers, service providers, and other partners who provide support for our business. Such support includes providing basic technical services, providing consultations, analyses based on anonymized data, and other professional services. For companies, organizations, and individuals with whom we share Personal Information, we will sign strict confidentiality agreements and information protection agreements with them, requiring them to process Personal Information in accordance with our instructions, this Policy, and any other relevant confidentiality and security measures.
[Hyperlinked URL titled “List of Involved Third Parties (Customers, Suppliers, Service Providers, and Other Partners)”
Cenobots adheres to the principles of the EU-U.S. Privacy Shield Framework and Swiss-U.S. Privacy Shield Framework. We are committed to subjecting all Personal Information received from European Union (EU) member countries, the United Kingdom and Switzerland, in reliance on the Privacy Shield Frameworks and to the Framework’s applicable Principles, while we are aware that the EU-U.S. Privacy Shield Framework as a legal basis for transfers of Personal Information has been challenged and struck down in light of the judgment of the Court of Justice of the EU in Case C-311/18.
As regards, the complaint and remedies approach you may be entitled to under the EU-U.S. Privacy Shield Framework and Swiss-U.S. Privacy Shield Framework, please refer to the U.S. Department of Commerce’s Privacy Shield website at https://www.privacyshield.gov.
We may disclose your Personal Information to comply with applicable law or respond to valid legal processes, including from law enforcement or other government agencies.
In principle, your Personal Information collected via Cenobots Website will be stored in the regions of your choice for this Policy.
In Principle, Cenobots will not conduct cross-border transfer unless it satisfies the following conditions:
The European Commission has determined that certain countries outside of the European Economic Area (EEA) adequately protect Personal Information. You can review current European Commission adequacy decisions [ https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_en]. To transfer data from the EEA to other countries, such as the United States, we comply with legal frameworks that establish an equivalent level of protection with EU law. Please refer to Sections 9, 10, and 11 for specific issues including data transfer in different jurisdictions and regions.
We attach much significance to safeguarding and security of your Personal Information. We strive to take all reasonable and feasible measures to protect your Personal Information by deploying industry-standard security measures, to protect the Personal Information provide and prevent data breaches, data leaks, unauthorized access or public disclosure, misuse, unauthorized modification, damage, or loss.
We will take reasonable and feasible measures to try to avoid collecting irrelevant Personal Information. We will only retain your Personal Information for the time as long as necessary to achieve the purpose stated in this Policy unless an extension of the retention period is required or permitted by law. We are aware that the Internet environment is not 100% secure, and we will do our best to ensure the security of any information you provided to us.
Cenobots use the following security measures endeavoring to secure your Personal Information in rest, transit, and storage including but not limited to
The “Personal Information Breach” is defined as “a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, Personal Information transmitted, stored, or otherwise processed”. If a Personal Information Breach happens, we will promptly inform you of the requirements of laws and regulations:
We will promptly inform you about the event by email, letter, phone, push notification, etc. When it is difficult to inform users of the information one by one, we will announce a reasonable and effective way.
At the same time, we will proactively report the disposition of the Personal Information breach in accordance with the requirements of regulatory authorities.
In order to ensure the normal operation of the Cenobots Website, get an easier access experience for you, and make recommendations that may interest you to you, we store small data files called Cookies on your computer or mobile device. Cookies usually contain identifiers, site names, and some numbers and characters. We can only read Cookies provided on the Cenobots Website.
You can manage Cookies according to your preferences, or you can clear all Cookies saved on your computer. Most web browsers have a function that blocks Cookies. But if you do this, you need to change user settings every time you visit Cenobots Website. To learn more about changing your browser settings, visit the settings page for your browser.
In addition to Cookies, we use other similar technologies such as web beacons and pixel tags on the Cenobots Website. For example, the email we send you may contain an address link to the content of the Cenobots Website. If you click on the link, we will track the click to help us understand your product or service preferences so that we can proactively improve the customer service experience. A web beacon is usually a transparent image embedded in a website or email. With the help of the pixel tags in the email, we can know whether the email is opened. If you do not want your activity to be tracked in this way, you can unsubscribe from our mailing list at any time.
You have certain rights in relation to the Personal Information we hold about you. Some of these rights only apply in certain circumstances as set out in more detail below. We set out how you can exercise those rights. Please note that we will require you to verify your identity before responding to any requests to exercise your rights. Please send your request to our Data Compliance Officer at firstname.lastname@example.org as stated in Section 13.
You have the right to request access, correction, updates, or deletion of your Personal Information. You can object to the processing of your Personal Information, ask us to restrict the processing of your Personal Information, or request portability of your Personal Information. If we have collected and processed your personal information with your consent, then you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted before your withdrawal, nor will it affect the processing of your Personal Information conducted in reliance on lawful processing grounds other than consent.
In respect of your deletion request, the following aspects shall be considered:
Please note, however, that we may retain the Personal Information when processing is necessary. In such case, we will inform you accordingly, in particular, when:
Where you have requested that we delete your Personal Information that we have made public and there are grounds for deletion, we will use reasonable steps and try to inform others that are displaying the Personal Information or providing links to the Personal Information to erase it too.
In some business functions, we may only make decisions based on non-manual automatic decision-making mechanisms including information systems, algorithms, etc. If these decisions significantly affect your legal rights, you can ask us to explain.
For security reasons, you may need to provide a written request or prove your identity otherwise. We may ask you to verify your identity before processing your request.
For your reasonable request, we do not charge fees in principle, but for repeated requests that exceed a reasonable limit, we will charge a certain cost depending on the conditions. For those requests that are unreasonably repetitive, require excessive technical means (for example, need to develop new systems or fundamentally change existing practices), pose risks to the legitimate rights and interests of others, or are very impractical (for example, involving information stored on backup tapes), those requests may be rejected by us.
We will not be able to respond to your request in the following situations:
In the event that we are unable to respond to your request, we will give you an appropriate explanation.
The Cenobots Website may link to other websites or applications that we do not own or control (such as YouTube, LinkedIn, Facebook, and Twitter, collectively referred to as “external websites”). Such links do not constitute our endorsement of these external sites. We provide these links to you only for your convenience and are not responsible for the content of such external websites.
If you are an individual in the European Union (EU) whose Personal Information we process in relation to either our offer of goods or services to you or our monitoring of your behavior in the EU (“EU Users”), the following additional provisions may also apply to you.
Your Personal Information may be processed by us, and our trusted third-party suppliers outside of the European Economic Area (EEA), including in countries where data protection and privacy laws or regulations may not be equivalent to, or as protective as, the data protection and privacy laws and regulations in the EEA.
In accordance with applicable data protection and privacy laws and regulations, we will implement appropriate measures to ensure that your Personal Information remains protected and secure when it is transferred outside of the EEA to a jurisdiction other than one that is recognized by the European Commission as having an adequate level of protection of Personal Information. These measures include (where applicable) transferring pursuant to data transfer agreements implementing Standard Contractual Clauses (SCC) recommended by the European Commission. If you would like further information, you can contact us by sending an email to our Data Compliance Officer at email@example.com.
We may also transfer your Personal Information outside of the EEA. Examples include where we need to transfer your Personal Information: (a) to perform a contract with you (or to take steps before the contract at your request); (b) perform a contract in your interests; or © in relation to legal claims.
You have the right to receive a copy of certain Personal Information we collect from you. This comprises any Personal Information we process on the basis of your consent (e.g., your profile). You have the right to receive this information in a structured, commonly used, and machine-readable format. You also have the right to request that we transfer that Personal Information to another party. You can exercise your right to export your data by using our web form or send an email to firstname.lastname@example.org, stating at least your first and last name and your request.
If you wish for us to transfer the Personal Information to a third party, please ensure to provide the contacts detail of that third party. Note that we can only do so where it is technically feasible. We are not responsible for the security of the Personal Information or its processing once received by a third party. We also may not provide you with certain Personal Information if providing it would interfere with another’s rights (e.g. where providing the Personal Information we hold about you would reveal information about another person or our trade secrets or intellectual property).
Please note for other matters not covered in this Policy, we will protect your legitimate rights in regard to your Personal Information according to relevant provisions of applicable laws and regulations in the EU, e.g. the General Data Protection Regulation for EEA.
You have the right to ask us to restrict the processing of your personal information in certain circumstances. For example, you can request that we limit the way in which we use your “Personal Data” (as defined by the GDPR) if you are concerned about the accuracy of the Personal Information or how it is being used. You can exercise your right by using our web form or sending an email to email@example.com, stating at least your first and last name and your request.
You have the right to object to the processing of your personal information in certain circumstances. Where it is appropriate that we comply with your request, we will stop processing your information for the use you have objected to. You can exercise your right by using our web form or sending an email to firstname.lastname@example.org, stating at least your first and last name and your request.
You have the right to withdraw your consent at any time. However, the withdrawal of your consent shall not affect our lawfulness of processing based on consent before your withdrawal. You can exercise your right by using our web form or sending an email to email@example.com, stating at least your first and last name and your request.
We work to high standards when it comes to processing your personal information. If you have queries or concerns, please contact us and we’ll respond. You can exercise your right by using our web form or send email to firstname.lastname@example.org, stating at least your first and last name and your request.
If you remain dissatisfied, you have the right to lodge a complaint with a competent data protection supervisory authority.
If you are a California resident whose Personal Information we process in relation to either our offer of goods or services to you or our monitoring of your behavior in California (“CA Users”), the following additional provisions also apply to you. To comply with our obligations under the [CCPA]/[CA Privacy Acts], we are providing you with this notice of our practices and your rights for your Personal Information. If you are a CA User, in the event any of our practices or your rights in this Section 10 conflict with any other parts of this Policy, this Section 10 shall control. If you have any questions about our practices and your rights with respect to the [CCPA]/[CA Privacy Acts], please contact our Data Compliance Officer by mailing email@example.com.
We collect Personal Information, which for CA Users means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably link, directly or indirectly, with CA Users. Personal Information for CA Users does not include (i) publicly available information from government records, (ii) anonymized or aggregated consumer information, or (iii) information excluded from the [CCPA]/[CA Privacy Act]’s scope, such as health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 and the California Confidentiality of Medical Information Act or information covered by certain sector-specific privacy laws including the Fair Credit Reporting Act, the Gramm-Leach-Bliley Act, the California Financial Information Privacy Act, and the Driver’s Privacy Protection Act of 1994.
For the detailed Personal Information categories we collect and process please refer to Section 2 of this Policy.
In addition to our uses outlined in Section 2 of this Policy, we may use or disclose the Personal Information we collect from CA Users for one or more of the following purposes:
We will not collect additional categories of Personal Information or use the Personal Information we collected for materially different, unrelated, or incompatible purposes without providing you notice.
We will not retain your personal information for longer than reasonably necessary for the purposes described above. Our standard retention practices with respect to your Personal Information are outlined below.
We may disclose your Personal Information to our service providers for our business purposes. When we disclose your Personal Information for a business purpose, we enter into a contract with the recipient to safeguard your Personal Information in compliance with the [CCPA]/[CA Privacy Acts]. In the preceding twelve (12) months, we have disclosed the following categories of Personal Information to our service providers for our business purposes:
In the preceding twelve (12) months, we have not sold any Personal Information or shared any Personal Information with third parties for cross-context behavior advertising.
The CCPA provides CA Users with specific rights regarding their Personal Information. An authorized agent may exercise these rights on a CA User’s behalf. If an authorized agent submits a request with respect to your Personal Information, we require you to:
You have the right to request that we disclose certain information to you about our collection and use of your Personal Information over the past twelve (12) months. Once we receive and confirm your request in accordance with Section 7© of this Policy, we will disclose to you:
We do not sell your Personal Information [or share your Personal Information for cross-context behavior advertising]. Thus, we do not offer opt-outs to the sale [and sharing] of Personal Information. However, we provide you with the right to access and control your Personal Information specified in Section 7 of this Policy.
You have the right to restrict us from providing your Personal Information to third parties for cross-context behavioral advertising. Cross-context behavioral advertising is the targeting of advertising to you based on your Personal Information obtained from your activity across businesses, distinctly branded websites, applications, or services other than our own. To restrict us from sharing your Personal Information with third parties for cross-context behavioral advertising, you or an authorized agent may submit a request to us by visiting the following link:
[Hyperlink URL titled “DO NOT SHARE MY PERSONAL INFORMATION FOR CROSS-CONTEXT BEHAVIORAL ADVERTISING”]
Once you request, we do not share your Personal Information for cross-context behavioral advertising, we will stop providing your Personal Information to third parties for the purpose of cross-context behavioral advertising.
You do not need an account with us to request we do not share your Personal Information for cross-context behavioral advertising. We will only use the Personal Information provided in such a request to comply with the request.
You have the right to limit the use or disclosure of your Sensitive Personal Information, as defined under the CA Privacy Acts and including such information outlined in Section 1 of this Policy, to only those necessary to provide our goods or services at any time. To exercise the right to limit the use and disclosure of your Sensitive Personal Information, you or an authorized agent may submit a request to us by visiting the following link:
[Hyperlinked URL titled “LIMIT THE USE AND DISCLOSURE OF MY SENSITIVE PERSONAL INFORMATION”]
Once you request that we limit the use and disclosure of your Sensitive Personal Information, we shall not use or disclose your Sensitive Personal Information for any other purposes without first receiving your consent.
You do not need an account with us to request we limit the use and disclosure of your Sensitive Personal Information. We will only use Personal Information provided in a limitation request to review and comply with the request.
We will not discriminate against you for exercising any of your rights under the CCPA. Unless permitted by the CCPA, we will not:
We endeavor to respond to a request in accordance with Section 7© of this Policy within forty-five (45) calendar days of its receipt. If we require more time (up to forty-five (45) days), we will inform you of the reason and extension period in writing. We will send you confirmation of receipt of any request in accordance with Section 7© of this Policy within ten (10) business days of its receipt.
If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically at your option.
Any disclosures we provide will only cover the twelve (12) month period preceding the request. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your Personal Information that is readily usable and should allow you to transmit the information from us to another entity without hindrance.
We do not charge a fee to process or respond to your request in accordance with Section 7© of this policy unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
Provided you use Cenobots Website in the People’s Republic of China, pursuant to the Personal Information Protection Law of the People’s Republic of China (“PIPL”), Cenobots will undertake the following additional responsibilities as Data Controller or Data Processor:
If you have any questions, comments, or suggestions regarding this Policy, please contact our Data Compliance Officer by mailing at firstname.lastname@example.org. We will respond to your request to change, correct, or delete your Personal Information within a reasonable timeframe and notify you of the action we have taken.
You also have the right to complain to a national or international data protection authority about our collection and use of your Personal Information. Please refer to the contact details of such data protection authorities accordingly.