background

Privacy Policy

Gate Software - Privacy Policy

  • Gate Software LogoGate Software

About Our Privacy Policy

Gate Software takes every measure to safeguard your privacy. Therefore, we only process data that we need for our services and handle the information we have collected about you and your use of our services with care. GateSoftware is ISO 27001 certified. Our ISO 27001 management system ensures optimal security of digital systems and privacy for all users.

We never provide your data for commercial purposes to third parties. This privacy policy applies to the use of the website and the services provided by GateSoftware. The effective date of these terms is 01/04/2021, and publishing a new version invalidates all previous versions.

If you have any questions about our privacy policy, you can contact our privacy officer. You will find the contact details at the end of our privacy policy.

What personal data do we collect?

When you visit our website, use our services, or contact us, we may collect the following personal data:

  • Name and contact details (email address, phone number)
  • Company information
  • Technical data (IP address, browser type, device information)
  • Usage data (how you interact with our website and services)
  • Communication data (your correspondence with us)

How do we use your personal data?

We use your personal data for the following purposes:

  • To provide and improve our services
  • To communicate with you about our services
  • To comply with legal obligations
  • To protect our legitimate business interests

All processing of personal data is done in accordance with applicable data protection laws.

Cookies

A cookie was originally a text file on the website visitor's computer. It was a way to store data for a subsequent visit to the website, such as a customer number or the last viewed article. Cookies are very useful; for example, a smart TV uses cookies to store the login information for services like Netflix so you don't have to log in again at each session.

Gate Software only uses Google Analytics for analytical purposes. These cookies are used to collect statistics about the use of the website or mobile application, such as: the date and time of the visit, the duration of the session, the pages or screens visited, or the number of visitors.

No consent is required for necessary cookies, nor for analytical cookies if they have little impact on privacy.

Data Security

We take appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

Our ISO 27001 certification demonstrates our commitment to maintaining the highest standards of information security.

Third-Party Authentication (OAuth 2.0)

Our applications offer the option to sign in using third-party authentication providers, specifically Google and Microsoft, through the industry-standard OAuth 2.0 protocol. When you choose to authenticate via one of these providers, we want you to understand exactly how your data is handled.

What data we access

When you authenticate through Google or Microsoft, we request only the minimum information necessary for authentication and account identification:

  • Your name (as registered with the provider)
  • Your email address
  • Your profile identifier (a unique account ID)

We do not request access to your contacts, calendar, files, photos, or any other data stored with Google or Microsoft. We only request scopes that are strictly necessary for authentication purposes.

How we use this data

The information obtained through OAuth authentication is used exclusively for the following purposes:

  • Verifying your identity and authenticating your access to our application
  • Creating and maintaining your user account within our system
  • Communicating with you regarding your account and our services, only with your explicit consent

What we do NOT do with your data

Gate Software firmly commits to the following restrictions regarding data obtained through Google and Microsoft OAuth:

  • We do not sell, rent, or lease your data to any third party, including advertisers, data brokers, or information resellers
  • We do not use your data for advertising, retargeting, or any form of marketing profiling
  • We do not use your data for creditworthiness assessments or lending determinations
  • We do not use your data for surveillance or tracking purposes
  • We do not transfer your data to third parties unless strictly required for providing the service you requested, for security purposes, or to comply with applicable law
  • We do not collect, store, or use your data without your prior, informed, and explicit consent

Google API Services — Limited Use Disclosure

Gate Software's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. This means that data obtained from Google APIs is used only to provide or improve user-facing features that are prominent in our application. We do not allow humans to read your data unless you have given explicit affirmative consent, it is necessary for security purposes, or it is required to comply with applicable law.

Microsoft Identity Platform Compliance

Our integration with Microsoft authentication complies with the Microsoft Identity Platform policies and the Microsoft Graph permissions model. We request only the minimum required permissions and handle all data in accordance with Microsoft's data protection requirements and applicable GDPR legislation.

Your consent and control

Authentication via Google or Microsoft is entirely voluntary. You may choose alternative authentication methods where available. When you authenticate via OAuth, the provider (Google or Microsoft) will clearly display which permissions are being requested before you grant access. You may revoke access at any time through your Google Account settings (myaccount.google.com) or Microsoft Account settings (account.microsoft.com).

Gate Software respects your privacy and will never collect, process, or use your personal data obtained through third-party authentication providers without your explicit, informed, and written consent. Any changes to how we use data obtained through these providers will require renewed consent from you before any new processing takes place.

GDPR legal basis

The processing of personal data obtained through OAuth authentication is based on Article 6(1)(a) of the General Data Protection Regulation (GDPR) — your explicit consent. You have the right to withdraw this consent at any time without affecting the lawfulness of processing carried out prior to the withdrawal. To withdraw consent or request deletion of your authentication data, please contact our privacy officer using the contact details below.

Your Rights

Under data protection law, you have rights including:

  • Your right of access
  • Your right to rectification
  • Your right to erasure
  • Your right to restriction of processing
  • Your right to data portability
  • Your right to object

To exercise any of these rights, please contact our privacy officer.

Contact Information

If you have any questions about this privacy policy or our data practices, please contact us at:

Gate Software
Ellen Pankhurststraat 1A 52032MD Tilburg
info@gatesoftware.nl
+31 85 130 4880