Data & Security

At Qomon, we are committed to protecting your data and helping you stay in compliance with legal obligations and local privacy laws. This includes the General Data Protection Regulation (GDPR), the UK GDPR, and the California Consumer Protection Act (CCPA), amongst various others.

To do so, we utilize a variety of tools and processes which ensure that all data is securely stored, processed and documented. That being said, managing privacy law compliance and security is a never-ending process. With regular developments being made within this ever-evolving area comes with new guidance to follow and new measures to implement. That’s why we’re always improving! 
‍
In this article we’ll be outlining how we process your data to comply with the legal obligations of our customers, and our own.

The Types of Personal Data we handle at Qomon

Firstly, let’s differentiate between the types of personal data we handle by looking at the three main categories we deal with at Qomon (non-exhaustive list):    

Data and Insights Features
At Qomon, we develop data features (CrossAnalysis, ©Insights, etc.) in selected countries to not only allow your organization to easily and quickly make in-depth analyses about a territory, but also to better understand the profiles of your community and trigger your next action. These features are based on a mix of territorial / commercial data (depending on the country) but does not include personal data.
These features operate, directly or indirectly, at the aggregated / anonymized territorial unit level
and not the contact unit level.

How do we Manage your Data and Privacy Law Compliance at Qomon?

1. Separated databases and reduced internal access

‍All data we collect is segmented in accordance with the purpose for which it was collected and the department responsible for collecting it. For example, the sales team’s database is utilized only by the sales team and is not in any way linked or combined with our customer support data or user files. It also exists independently of the databases built by other Qomon departments, and can be accessed only by those within the individual department to which the database applies.

Additionally, as a customer, your main account manager and the CTO of Qomon (if there are any security or technical problems) are the only people who can access your data.
It means access to your personal data is limited to only those who are authorized to process it by virtue of their role. This helps to secure the privacy of your personal data. 

For example, a member of the support team replying to a ticket in our help chat can only see the volunteer or team members name who is contacting support, the organization they are attached to, and the device they are connected with.
‍
2. Secure data storage & backups

‍In accordance with global standards & privacy laws, we are required to responsibly store your personal data. We have endeavored to do this by implementing data storing processes that meet the data storage requirements of the country in which you are based.

We run daily backups of our clients’ data and encrypting the associated data so that no external entity can access it. 
‍

3. Download your data anytime
‍‍‍At Qomon, we are very clear on this: You are the ultimate owner of your personal data, you are entitled to obtain a complete copy of your personal data at any time. In acknowledgement of this, with Qomon, you can download your data whenever you wish. This can be done in a variety of different formats, and allows you to track all your data-related activity with Qomon.
‍

4. Access to the complete editing and deletion history of your contact list
‍
‍‍As a SuperAdmin of a Qomon Space, you can access the complete history of edits made to your contacts. This includes access to a complete history of who has been editing and deleting contacts from your organization.
‍