Privacy policy for IntraActive Pling

The IntraActive Pling privacy policy outlines how the IntraActive team utilises the personal data you leave behind when using the IntraActive Pling product.

“Intranet product” and “the product” refers to the IntraActive Intranet product in SharePoint and Microsoft Teams.

“Azure” refers to Microsoft Azure in Ireland that IntraActive uses and that belongs to Fellowmind.

This privacy policy applies to the Intranet product and does not include Microsoft 365 or Microsoft Teams.

Cookies

The product saves a cookie to keep authentication persistent. Authentication through Microsoft 365 is used and the cookie does not contain any personal information but is only a technical cookie required to authenticate to the IntraActive API and Microsoft Graph.

By using the product you implicitly consent to cookies being saved. As the product is not a public website but instead an app in Microsoft Teams and SharePoint, it is exempted from EU regulations about cookie notices.

Log data

Log data intended for diagnostics is collected while using the product. It may contain usernames as well as the content that is added to the product through the user interface. It will also include technical data such as browser version and ip address.

This information is automatically removed after 90 days and cannot be removed before this time.

Company data

When signing up for using the product, we store your tenant name in our database and other company information in our CRM system.

User data

When a user authenticates with the product, the user name is stored in Azure.

Content

The content added to the product is saved in the customers own instance of SharePoint Online in Microsoft 365.

A copy of some data may be stored in Azure to ensure performance. This data may be automatically removed at any time.

Encryption

All data is encrypted in transit with industry standard TSL (SSL/HTTPS) and encrypted at rest. This includes images and videos.

International data transfer

Data resides within EU by default while being processed by the IntraActive API.

However, when an authorized user is requesting data, then this data is transferred to the client where-ever it may be. Use of the product outside EU constitutes and implicit request to transfer data outside the EU.

Delete your data

Log data will be automatically deleted after 90 days.

Other types of data can be deleted upon request by cancelling your subscription to IntraActive Intranet and deleting the product from your tenant.