This Privacy Notice covers the privacy practices that CPA Global and its affiliates (“CPA Global”, “we”) employ when CPA Global customers (“Customers”, “you”) and your agents, clients and representatives (“Authorised Users”) use IPR Control, our client web portal application (“the Portal”). CPA Global established this privacy notice specifically for the Customers with access to the Portal to outline the use of your firm’s data (“Customer Data”) including any personal data which may be made available to us in the course of providing services to you.
Personal Information CPA Global processes
In the normal course of using the Portal, Customers and their Authorised Users will input user information into the CPA Global systems. For Patrawin Customers, Customer Data may also be sourced from their instance of the product and made available to view to them, their Authorised Users and clients in the Portal. Such Customer Data may include the following types of personal data: system user and inventor names and personal identifiers including, but not limited to: name, user ID, address and email address (as applicable) and other types of information that the Customer allows access to Authorised Users and which the Customer and Authorised Users record in the Portal .
CPA Global will only use Customer Data on the basis of processing being necessary for the provision of the services and may access your information to:
Provide the service for which the Customer has engaged CPA Global e.g. processing patent renewals and payment orders
CPA Global may process Customer Data, including any personal data, but does not control your collection or use. If you provide any personal data to CPA Global, you are responsible for providing any notices and/or obtaining any consents necessary for CPA Global to access, use, retain and transfer personal data as specified in this notice.The Portal itself is hosted on behalf of CPA Global by Real Time Services (RTS) AB (registered office: Högbergsgatan 35, 11620 Stockholm). RTS processes any information on the system under CPA Global’s strict instruction and has no direct control over the personal data on the system.
An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data, should direct his or her query to the CPA Global Customer (the data controller) or directly to CPA Global if renewal data is published on IRP Control by CPA Global. CPA Global will refer any request for disclosure of personal data by a law enforcement authority to the Customer. CPA Global may, where it concludes that it is legally obligated to do so, disclose personal data to law enforcement or other government authorities. CPA Global will notify Customer of such request unless prohibited by law.
Accessing the Service
Customers and their Authorised Users may access the Portal directly through a URL unique to their individual tenant. Customers are responsible for their own access management controls including levels of access to the data on the Portal and what information is made available to their Authorised Users.
Customer Data on IPR Control is sourced directly from the Customer instance of Patrawin in accordance to rules and levels of access prescribed by the Customer, including retention and deletion of data. If CPA Global provide renewal services for the customer or the customer´s clients, relevant renewal data can also be presented on the portal from CPA Global. CPA Global retains Customer Data according to the timeframes set forth in the relevant agreement with its Customers.
The security of Customer Data, including personal data, is very important to CPA Global. CPA Global maintains a comprehensive, written information security program that contains industry standard, administrative, technical, and physical safeguards designed to prevent unauthorized access to Customer Data.
CPA Global may transfer and access your firm’s data globally as required for the purposes specified above. CPA Global is a global corporation and has developed global data security practices designed to ensure that your personal information is appropriately protected. Please note, that personal information may be transferred, accessed and stored globally as necessary in accordance with this privacy notice.
Where CPA Global establishes that a transfer of personal data to a third country is required, CPA Global will determine to put in place adequate safeguards to protect personal data and ensure it is transferred in accordance with applicable law.
CPA Global will transfer personal data in accordance with applicable privacy law and complies with both the EU-US Privacy Shield Framework and the Swiss-US Privacy Shield Framework as set forth by the US Department of Commerce, please refer to CPA Global Privacy Shield Policy.
If you have any questions, concerns or requests regarding the handling of your personal data please contact Compliance@cpaglobal.com