KVS Inc Privacy Policy

1) Definitions

• Service: The KVS Inc Mobile Device Management (MDM) platform.
• Personal Data: Refers to information related to an identifiable individual, either directly or indirectly, through data held by us or likely to be held.
• Usage Data: Automatically collected information generated through interaction with the Service or its underlying infrastructure (e.g., duration of site visits).
• Data Controller: The individual or entity responsible for determining the purposes and means of processing Personal Data.
• Processing: Any operation performed on Personal Data, such as collection, storage, modification, use, access, transfer, or deletion. This includes all variations of the term such as “Processed” or “Process.”
• Data Processor (or Service Provider): An individual or organization that processes Personal Data on behalf of the Data Controller. We may engage Service Providers to improve the efficiency of our data handling.
• Sub-processor: A subcontractor appointed by us or our affiliates to assist in delivering the Subscription Services. This may include third parties or affiliated entities, excluding KVS Inc employees or consultants.
• Data Subject (or User): Any living individual who uses our Service and is the subject of Personal Data.
• Personal Data Breach: A breach of security that results in accidental or unlawful access, disclosure, alteration, loss, or destruction of Personal Data that we or our subcontractors process. This excludes failed access attempts or attacks that do not compromise data integrity (e.g., failed logins, port scans, DDoS attacks).

2) What is Personal Data?

The concept of “personal data” is central to GDPR compliance. It refers to any detail that can identify a specific individual. This includes data such as names, email addresses, phone numbers, physical addresses, IP addresses, location data, cookie identifiers, images, and may extend to demographic or behavioral information when associated with an individual. Information such as email interactions or website usage data can also be considered personal if it can be linked to a specific user.

3) The Information We Collect

A. Personal data you provide, for which KVS Inc acts as the Data Controller:

• Account Information: Includes email address, full name, license count, subscription expiration, company name, address, phone number, billing contact, and Google API contact email.
  • Purpose: To deliver account-related services including authentication, billing, and access to Google APIs.
  • Storage Period: Deleted 6 months after account termination to allow error recovery. Billing contact data may be retained for up to 5 years for record-keeping, if relevant.

B. Automatically collected data for which KVS Inc is the Data Controller:

• Dashboard Activity Logs:
  • Purpose: To monitor account usage and maintain security.
  • Storage Period: Retained for 6 months post-account deletion, or up to 2 years after subscription ends.
• Google API Company Identifier:
  • Purpose: To enable Google API services as part of the platform functionality.
  • Storage Period: Deleted 6 months after account removal, or 2 years post-subscription.
• Device Information: Includes manufacturer, technical identifiers, IP, SIM info (ICCID, IMEI, phone number), OS version, GPS status, app data, and system signature.
  • Purpose: To monitor and manage registered devices effectively.
  • Storage Period: Deleted upon device reset; anonymized 6 months after account deletion or 2 years after subscription termination.

C. Customer-provided personal data for which KVS Inc acts as a Data Processor (refer to our DPA):

• Manager Contact Details: Email address of account administrators.
  • Purpose: To provide admin login access and maintain security.
  • Storage Period: Deleted when manager is removed by the customer; otherwise, stored for 6 months post-account deletion or 2 years after subscription ends.
• Device Naming: Custom device names.
  • Purpose: To associate devices with specific users.
  • Storage Period: Removed upon device reset; anonymized 6 months after account deletion or 2 years after subscription ends.
• Wi-Fi Network Details: Includes SSID, password, and EAP certificates.
  • Purpose: To configure and allow secure Wi-Fi access for corporate devices.
  • Storage Period: Removed when network is deleted; 6 months after account closure or 2 years post-subscription.
• Device Policies: Configuration settings applied to device groups.
  • Purpose: To enforce consistent controls across enrolled devices.
  • Storage Period: Removed upon policy deletion; anonymized 6 months after account deletion or 2 years after subscription end.
• User Information: Name, email, directory name, assigned devices, and custom field data.
  • Purpose: To assign and manage user-specific devices.
  • Storage Period: Deleted upon user removal by the customer; anonymized 6 months after account deletion or 2 years post-subscription.
• Private Application Data: Information used to manage internal apps outside Google Play.
  • Purpose: To deploy and manage private enterprise applications.
  • Storage Period: Deleted upon app removal; 6 months after account closure or 2 years following subscription end.

D. Location Data

We may collect and store device location data (up to the last 50 location points), but only if you have granted permission. This information is used to enable specific location-based features of our Service.

Note: Location tracking is intended solely for use on company-owned devices. If you've been invited by your organization to set up a work profile on your personal device, we do not access or collect any personal data outside of that work profile. You may choose not to enable location tracking during setup or disable it at any time.

4) Personal vs. Company-Owned Devices

If your organization invites you to configure a work profile on your personal mobile device, KVS Inc does not access or collect data related to your personal use outside of that work profile.

5) Why We Process Personal Data

• To Deliver and Enhance the Subscription Service: We use your account details and associated data to provide access to our platform. For instance, the email used during registration helps us create your user account. We also track how the Service is used to improve its functionality and user experience.
• To Ensure Security and Protect Users: Account data is used to investigate suspicious activities and prevent unauthorized access or misuse. It may also be used for verifying identities, complying with legal requirements, and safeguarding user accounts.
• To Provide Technical Support: Our authorized support team may access your dashboard via secure credentials to help troubleshoot issues. We will never request your password. You may opt out of this access, though it may limit our ability to assist you.
• To Keep You Informed: We may contact you through email or in-app messages regarding billing, feature updates, event invitations, legal notices, newsletters, or service-related announcements.
• To Improve Customer Interactions: We may monitor emails or calls for quality control, employee training, fraud detection, and compliance purposes.
• To Support Social Media Features: Our website may offer social sharing tools (e.g., LinkedIn, YouTube), which may collect IP addresses and usage data. These are managed by third-party services under their own privacy policies.

6) How We Protect Your Data

We are committed to maintaining the privacy and integrity of your personal information. We implement physical, electronic, and procedural security measures to help safeguard your data. Access is limited to authorized personnel and processors who need the information to support our Service.

We use a combination of security technologies and best practices to protect against unauthorized access, use, or disclosure. All personal data is protected using appropriate administrative, technical, and physical controls. For more details on our security practices, please visit the KVS Inc security page.

7) Cookies Usage

Cookies are small text files stored by your browser to help websites function effectively. They enable essential site features, remember your preferences, and support analytics and marketing efforts. Required cookies ensure secure and smooth navigation, while optional cookies help tailor the experience, gather usage insights, or deliver relevant ads.

You may disable cookies at any time, except those essential to Service operation. Disabling certain cookies may impact functionality or usability of our website or application.

8) Policy Updates

This Privacy Policy may be revised periodically. Any updates will be posted on this page. We encourage you to review it regularly, as continued use of our Service implies your agreement with any changes.