Legal

Product privacy notice

May 16, 2024

Accessia workplace access, experience and analytics platform - privacy notice

Accessia is building technology to make people and places safer.

We’re serious about privacy and security. We only collect the personal data that we need, we’re transparent about what we do with it, and we’re committed to keeping it safe.

What personal data does Accessia collect?

We collect and store the following personal data for all members of organizations using our platform:

  • Name (or ‘displayName’ for customers using Microsoft Entra ID)
  • Email address (or ‘mail’ for customers using Microsoft Entra ID)
  • ‘id’ (only for customers using Microsoft Entra ID, a unique identifying number)
  • Location data when you are within approximately ten meters of an Accessia location beacon. We never use GPS for location data.
  • History of access through doors that are controlled by the Accessia platform
  • History of logins and certain administrative changes to the platform

We collect and store the following personal data for “visitors” (people who are not members of an Accessia customer organization, but who are invited to a customer’s premises using our platform):

  • Photograph
  • Visitor’s name and email address as supplied to their host
  • History of signing in and out of the organization visited, and of access attempts through doors that are controlled by the Accessia platform for the duration of that visit

We additionally store the mobile device make, model and OS version for any users of the Accessia app.

When does Accessia collect it?

Collection of this data begins when the services are initiated and continues throughout your use of the service.

Why does Accessia collect it?

We collect this data to supply the services purchased from us (this is our legal basis).

Sharing with third parties

The Accessia platform is hosted on Amazon Web Services (AWS). Accessia services are built on software that runs in AWS, and the personal data that we collect is stored in AWS. AWS themselves do not have access to this data, and we do not ask them to process it on our behalf.

We will not share this personal data with any other third parties.

Storage

All personal data is stored in our AWS deployment in the United Kingdom.

Third-party privacy notices

AWS’ data privacy homepage is here: https://aws.amazon.com/compliance/data-privacy/ 

Your rights

Data protection laws give you certain rights. You have the right to:

  • Request access to your personal data
  • Receive a copy of your personal data or have your personal data sent to another entity
  • Lodge a complaint – either with us, or with the UK Information Commissioner’s Office

You may also have the right to:

  • Request that your personal data be corrected or erased
  • Object to its processing or have access to it restricted

To exercise these rights, contact us using the details below. We’ll need to verify your identity before we can act on your request.

Contact

Accessia EMEA Ltd
Boundary House
Cricket Field Road
Uxbridge
UB8 1QG
United Kingdom
dpo@accessia.com