At MYST, privacy matters. MYST respects the privacy of its Clients and other individuals with whom MYST has business interactions
This policy is global, applying to all MYST locations. It applies to personal information regardless of format. For example, the policy applies to computerized records and electronic information as well as paper-based files.
It is also applicable to all personal information that is collected, maintained or processed by MYST. The concepts enumerated in this policy will guide MYST’ selection and expectations of its Clients, partners, agents and/or contractors to whom MYST transfers and relies on for processing of personal information.
What Information We Collect or Process
MYST processes and in certain situations collects personal information as needed to deliver its Products and Services and manage its business. When collecting personal information, MYST does so in a reasonable and lawful manner.
The types of information and the purposes for which MYST collects or processes personal information may include:
MYST uses such personal information only for relevant, appropriate, and customary purposes. MYST will not share or disclose personal information for purposes other than as described herein. The following are examples of some of the personal information MYST may process.
Business Contact Information:
MYST may collect and use personal information about individual contacts of Clients and others who access MYST public websites, knowledge bases, forums, ticket systems, or provide personal information through other means. Such information may include but is not limited to account information, first/last name, company name, title and responsibilities, work email address, work mailing address, telephone numbers, login information, device identifiers, as well as additional information provided by such individuals in the course of receiving Products and Services from MYST and/or requesting information about MYST. We will use such information for the purposes of providing Products and Services, support, conducting data analytics and product assessments and related activities, and providing information regarding MYST Products and Services.
Indirect End User’s CPNI:
MYST acts as a data processor with regard to indirect end user personal information, and our Clients act as the data controller of such data. In the course of MYST’ processing and protection of such data, use will be in conformity with the data controller’s instructions.
Direct End User’s CPNI:
MYST typically collects and processes direct end user (eg: Clients, vendors, and partners) personal information for the purposes of providing Products and Services, support, conducting data analytics and managing product performance.
Messaging, Voicemail, Video and Media Files:
MYST may provide Products and Services that facilitate the recording and storage of audio and video by way of features such as but not limited to voicemail, call and conference recording. Users may elect to store or record personal information within these resources at their discretion.
Anonymized, Non-Identifying Voice and Traffic Data
MYST may use anonymized, non-identifying data collected from use of our Products and Services. This anonymized, non-identifying data may be used to enhance such items, but is not limited to, voice activation, improve traffic analysis algorithms and techniques, and recognition algorithms. This processing is executed under applicable terms and supports MYST’ legitimate interests in tuning, maintaining and enhancing these Products and Services.
How We Collect Information
We collect information in various ways, including the following:
When you use one of our Products or Services, MYST collects and stores certain information that you provide directly. We also collect information about your use of the Products and Services.
Cookies and Similar Collection Methods
MYST also collects technical information about your usage of the Products and Services, and we use various technologies to collect information about cookies, IP addresses, device type and device identifiers, application state and the date and time of activity with our Products and Services, and other similar information. MYST may associate this information with your user identification and/or account number for our internal use.
Other Passive Site Tracking
Websites may also utilize Internet Protocol (IP) addresses and log files to identify network and server concerns and problems. MYST also utilizes web beacons and other passive tracking mechanisms to perform standard website traffic analysis in a similar manner to how we utilize cookies.
Credit Card Information
MYST only collects credit card information in order to bill for purchased or subscribed to Products and Services. MYST utilizes third-party credit card payment processing agents (where these agents are required to implement reasonable and appropriate measures to protect and secure this information from loss or misuse) solely for the purpose of processing payments for those Products and Services purchased or subscribed to. These payment processors use of your personal information is governed by their privacy policies, as well as adhering to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like American Express, Visa, Mastercard and Discover.
HOW DOES MYST UTILIZE COOKIES
General Information about Cookies
A cookie (also known as an HTTP cookie, web cookie, or browser cookie) is a small piece of data sent from a website and stored in a user’s web browser while the user is browsing that website. Every time the user loads the website, the browser sends the cookie back to the server to notify the website of the user’s previous activity. Cookies were designed to be a reliable mechanism for websites to remember useful information (such as items in a shopping cart) or to record the user’s browsing activity (including clicking particular or specific buttons, logging in or recording which pages were visited by the user as far back as months or years ago).
Utilization of Cookies
A visit to a page on https://myst.ky (or other MYST website) may generate the following types of cookie(s):
Anonymous Analytics Cookies
Every time a user visits a MYST’ website, software provided by another organization (such as Google Analytics) generates an ‘anonymous analytics cookie’. These cookies can tell us whether you have visited the site before. Your browser will inform us if you have these cookies and, if you don’t, our website generates new ones. This allows MYST to track how many individual users we have and how often they visit the site. Unless you are signed in to https://myst.ky (or any other MYST website), we cannot use these cookies to identify individuals. We use these cookies to gather statistics: for example, the number of visits to a page. If you are logged in to the MYST website, we will also be provided the details you gave to us for this, such as but not limited to your username and email address.
When you register with a MYST website, such as cbdsaleskit.com, MYST generates cookies that inform us whether you are signed in or not. Our servers use these cookies to determine which account you are signed in with and whether you are allowed access to a particular Product or Service.
Advertising (Ad) Cookies
These cookies allow MYST to know whether you’ve seen a specific ad or the type of ad, and for how long you have viewed it. We also utilize cookies to help us direct targeted advertising.
Other Third-Party Cookies
On some pages of our websites, other organizations may also set their own anonymous cookies. They do this to track the success of their products and/or services, or to customize the experience for you. Because of how cookies function, our websites cannot access these Third-Party cookies, nor can the other organization access the data in cookies MYST uses on our websites. For example, when you share an article or post using a social media sharing button (Facebook, LinkedIn or other social media outlets) on https://myst.ky, the social network that has created the button will record that you have done this.
How Do I Turn Cookies Off
It is usually possible to stop your browser accepting cookies, or to stop it accepting cookies from a specific website. Most modern browsers allow you to change your cookie settings. You can usually find these settings in the ‘options’ or ‘preferences’ menu of your browser. To understand these settings, you can use the ‘Help’ option in your browser for more details. It is solely your responsibility to stop cookies in your browser.
VENDORS, SUPPLIERS AND SUBCONTRACTORS
MYST may collect personal information about individuals who are employed by our suppliers and vendors. This business contact and payment information is strictly used to administer existing and future business arrangements.
Additional personal information may be collected, processed and disclosed for the purposes for which it was collected and for legal compliance purposes, including regulatory reporting, investigation of allegations of wrongdoing, and the management and defense of legal claims and actions, and compliance with subpoenas, court orders and other legal obligations. For example, we may collect information about individuals that visit our office or other facilities. When we do collect data, such collection shall be relevant, proportionate and limited to the purposes for which they are processed.
How We Use the Information We Collect
We use your information primarily and as necessary to provide you with the various MYST Products and Services, including but not limited to one or more of the following ways: to create your accounts and allow use of our Products, to provide technical support and respond to Client inquiries, to prevent fraud or potentially illegal activities, enforce our other agreements with you, to notify Clients of application updates, and to inform Clients about new products or promotional offers.
MYST recognizes that for some sensitive information, affirmative express consent from individuals is required and must be obtained if such information is to be (i) disclosed to a third party or (ii) processed for a purpose other than those for which it was originally collected or subsequently authorized by the individuals through the exercise of opt-in choice. In addition, MYST shall treat as sensitive any personal information received from a third party where the third party identifies and treats it as sensitive.
If you have created a user profile on any MYST service portal, you may access and revise the personal information in your user profile when you log into your account. In general, these portals will only require minimal personal information that is necessary to provide and administer the service.
If you provide us with your email address or other business contact information to enable us to provide communications and information to you, we may use the information for providing such communications including delivery of press releases and other MYST marketing materials. You may request to no longer receive MYST marketing communications by following the “unsubscribe” instructions in emails from MYST or by sending a request to the contact identified below.
In the rare and unlikely event that MYST wishes to use an individual’s personal information for a purpose that is materially different from the purpose(s) for which it was originally collected or subsequently authorized by the individuals, MYST will seek consent in advance as required by applicable law.
Sharing Your Information
We may disclose or report information that individually identifies Clients, Subscribers or devices in certain circumstances, such as:
(i) if we have a good faith belief that we are required to disclose the information in response to a valid legal process (for example, a court order, search warrant or subpoena, or to defend or respond to legal actions, and as otherwise authorized by law, or in response to lawful requests by public authorities, including to meet national security or law enforcement requirements); (ii) to satisfy applicable laws, (iii) if we believe that the Products and Services are being used in an unauthorized, unlawful or abusive manner, such as to commit a crime, including to report such criminal activity or to exchange information with other companies and organizations for the purposes of fraud protection and credit risk reduction, (iv) if we have a good faith belief that there is an emergency that poses a threat to the health or safety of a person or the general public, (v) in order to protect the rights or property of MYST, including enforcement of our Intellectual Property Rights and terms of the Agreement(s), and (vi) for all other purposes with your consent. We may also provide your information to third party companies to perform services on our behalf, including but not limited to payment processing, data analysis, message delivery, hosting services, customer service, and marketing.
If MYST enters into a merger, acquisition or sale of all or a portion of its assets or business, Client and Subscriber information, including personal information, will also be transferred as part of or in connection with the transaction as per applicable law.
In general, personal information may be shared within MYST, where legally permitted for reasonable and appropriate corporate purposes. However, even within MYST, we restrict access to personal information to those employees, agents, or contractors who need access to carry out their assigned functions.
MYST uses vendors and partners for a variety of business purposes, such as to help us develop, deploy and invoice for the various Products and Services we provide. We share information with those vendors and partners when it is necessary for them to perform work on our behalf. MYST requires that these vendors and partners protect the customer information we provide to them and limit their use of such information to their respective processing activity. MYST will only transfer or provide direct access to personal information covered by this policy to third parties that have made a commitment to respect the privacy rights of the data subject; limit processing of personal information to comply with data controller instructions; and provided MYST contractual assurances that they will provide at least the same level of privacy protection as is required by applicable privacy laws.
Security of Your Information
We implement security measures we believe are reasonable to protect your information. It is important that you protect and maintain the security of your account and you need to immediately notify us of any unauthorized use of your account. Remember, no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot and do not guarantee its absolute security.
Protecting Personal Information
Transfer of Data
Your information, including personal information, may be transferred to, and maintained on, computers, servers or other data storage located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction. If you reside outside the United States and choose to provide information to MYST, please note that we transfer the data, including personal information, to the United States and process it there.
Retention of Data
Personal information collected by MYST will be retained for as long as necessary and legally permitted for the purposes for which it was collected, to provide you with Products and Services, enforce our legal agreements and policies and to conduct our legitimate business interests or where otherwise required by law.
MYST employs reasonable means to keep personal information accurate, complete, and current, as needed for the purposes for which it was collected.
How to Access and Update Your Information
We generally provide individuals with an opportunity to examine their own personal information, confirm the accuracy and completeness of their personal information, and have their personal information updated, if appropriate.
The ability of an individual to access his or her personal information is not unlimited, however. An individual’s ability to access personal information may be limited, for example, where (i) the burden or expense of providing access would be unreasonable or disproportionate to the risks to the individual’s privacy, (ii) the information should not be disclosed due to legal or security reasons or to protect confidential commercial information; or (iii) providing access would compromise the privacy of another person.
If you have created a user profile on a portal, you may also access and revise the personal information in your user profile when you log into your account.
Individuals who wish to access or update their personal information not accessible via a portal should direct such communications to MYST Legal Department at:
Third-Party Websites, Plugins or Widgets
Health Insurance Portability and Accountability Act
The Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) is United States legislation that provides data privacy and security provisions for safeguarding medical information. Client acknowledges and agrees that unless the MYST Products and Services description expressly states otherwise, the Products and Services do not comply with the requirements of the Health Insurance Portability and Accountability Act, as amended, and its implemented regulations. Unless the Products and Services description expressly states otherwise, Client agrees that it will not use the Products and Services to create, receive, transmit, maintain, store, use, disclose, or otherwise cause the Products and Services to handle Protected Health Information (“PHI”) as defined under HIPAA. Client retains complete and full responsibility to ensure that the Products and Services are only applied to use-case scenarios where the Products and Services do provide the necessary level of security and privacy protections. CLIENT’S AGREEMENT TO THIS PROVISION IS A MATERIAL CONDITION OF MAKING THE PRODUCTS AND SERVICES AVAILABLE TO CLIENT. In addition to any indemnity requirements in these Terms, Client shall indemnify, defend and hold harmless Company, Company Affiliates and all of the directors, officers, managers, partners, employees, agents, representatives, heirs, successors and assigns of Company and each of Company’s Affiliates against all actions, claims, losses, penalties, fines, assessments, administrative costs, credit protection costs, damages and expenses (including reasonable attorneys’ fees) arising out of Client’s violation of the provisions of this section, caused in whole or in part by any act or omission of Client, or of anyone employed by or acting as a subcontractor, representative or agent of Client. Any limitation on liability set forth in the terms of the Master Services Agreement or any other agreement between Company or its Affiliates and Client shall not apply to Client’s liability under this provision.
PO Box 30396
Grand Cayman, Cayman Islands KY1-1202