Effective: 21st June 2024
This Moro Cloud Privacy Statement (“Statement”) applies to the information that Datahub Integrated Solutions LLC (“Moro”) collects and you or your employer (collectively, “Customer”) provide to Moro in connection with Customer’s use of Moro Cloud Services. “This Cloud Privacy statement” is supplemental to the “Moro Privacy Notice”.
Customer’s use of the Moro Cloud Services is subject to the Master Services Agreement- Cloud available at Legal Terms & Conditions | Morohub, (“Agreement”). To the extent this Statement contains terms and conditions that differ from those contained in the Agreement, the Agreement shall control.
By using Moro Cloud Services, Customer acknowledges that Customer has read and understood this Privacy Statement and Customer agrees to be bound by its terms and conditions. Moro Hub may occasionally update this, Statement. Customer’s continued use of Moro Cloud Services will signify Customer’s agreement and acceptance to any such changes.
“Personal Data” means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
“Processing” means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
“Sub-processor” means any processor engaged by the Data Importer or by any other sub-processor of the Data Importer who agrees to receive from the Data Importer or from any other sub-processor of the Data Importer Personal Data exclusively intended for processing activities to be carried out on behalf of the Data Exporter after the transfer in accordance with its instructions, the terms of the Clauses and the terms of the written subcontract.
Customer Data” means:
For purposes of clarity, Customer Content does not include Non-Content Data, and Non-Content Data does not include Customer Content.
Moro is a Data Processor of Customer Content. Customer controls and owns all right, title, and interest in and to Customer Content and Moro obtains no rights to the Customer Content. Customer is solely responsible for the uploading, sharing, withdrawal, management, and deletion of Customer Content. Customer might grant Moro limited access to Customer Content solely to provide and support Moro Cloud Services & Managed Services to and for Customer and Customer end users. Customer represents and warrants to Moro that: (1) Customer owns Customer Content; (2) and Customer Content, and Customer’s end-users’ use of Customer Content and Moro Cloud Services, does not violate this Privacy Statement or applicable data protection laws and regulations.
Moro collects, controls, and processes Non-Content Data to provide Moro Cloud Services and to support overall service delivery of Moro Cloud Service, Managed Services & Managed Security services including business, operational, and security purposes.
Moro will only use Customer Content if permitted by Customer solely to provide Customer Moro Cloud Services. Moro will not use Customer Content for any advertising or similar commercial purposes.
Moro periodically upgrades or changes Moro Cloud Services to provide customers with new features and enhancements. Moro communicates such upgrades or changes to customers. Changes to Moro Cloud Services may increase the capabilities of the service and ways in which Customer Content can be processed.
Non-Content Data includes data, configuration, and usage information about customer's Moro Cloud Services tenant, Moro Devices, Moro Client Applications, and users that is transmitted or generated when using Moro Products. Non-Content Data includes the following:
Customer Entity and User Data includes personal and non-personal data regarding Customer's Moro Cloud Services tenant configuration and users. Moro uses Customer Entity and User Data to: (1) provide Moro Cloud Services, including, without limitation, user authentication and authorization functionality; (2) improve the quality of Moro Products or provide enhanced functionality and features; (3) contact Customer to provide information about its account, tenant, subscriptions, billing, and updates to Moro Cloud Services, including, without limitation, information about new features, security, and other technical issues; and
Customer Entity and User Service Interaction Data includes data regarding Customers' interactions with Moro Cloud Services and Moro Client Applications. Moro uses Customer Entity and User Service Interaction Data to improve the quality of Moro Products and provide enhanced functionality and features.
Moro uses Service Operations and Security Data to provide service operations and monitoring.
Moro uses Account Data to provide Moro Cloud Services, manage Customer's accounts, and communicate with Customer. Customer may unsubscribe from promotional communications at any time.
Moro uses Support Data to resolve Customer’s support incident, and to operate, improve, and personalize Moro Products. If Customer shares Customer Content to Moro in a support scenario, the Customer Content will be treated as Support Data but will only be used for resolving support incidents.
Moro may provide support through Service desk via phone or email.
Moro maintains list of the names and locations of all Sub-processors. If you are a current Moro Cloud Services customer with a data processing agreement in place with Moro, you may reach out to Moro Cloud representative (Key Account manager or Service Delivery Manager) for information on Moro Sub-processors.
Moro will not disclose Customer Content except as compelled by a court or administrative body or required by any law or regulation. Moro will notify Customer if any disclosure request is received for Customer Content (to the extent permitted by law or regulation).
Customer can access Customer's tenant to manage Customer Content.
Moro will work with Customers to provide access to Personal Data about Customer that Moro or Sub-processors holds. Moro will also take reasonable steps to enable Customers to correct, amend, or delete Personal Data that is demonstrated to be inaccurate.
If at any time after registering an account on Moro Cloud Services you desire to update Personal Data you have shared with us, change your mind about sharing Personal Data with us, desire to cancel your Customer account, or request that Moro no longer use provided Personal Data to provide you services, please contact us at “support@morohub.com”. We will retain and use Personal Data for as long as needed to provide you services, comply with our legal obligations, resolve disputes, and enforce our agreements.
Certain data processing is determined by Customer based on Moro Product usage, Customer network or device configuration, and administrative settings made available with Moro Cloud Services or Moro Client Applications:
Moro is committed to help protect the security of Customer Data. Moro has established and implemented policies, programs, and procedures that are commercially reasonable and in compliance with applicable industry practices, including administrative, technical and physical safeguards to protect the confidentiality, integrity and security of Customer Content and Non-Content Data against unauthorized access, use, modification, disclosure, or other misuse.
Moro will take appropriate steps to ensure compliance with the data security measures by its employees, contractors, and Sub-processors, to the extent applicable to the respective scope of performance.
Moro protects all Customer Content and Non-Content Data with strong logical access control mechanisms to ensure only users with appropriate business needs have access to data.
Moro logically isolates Customer Content. Multi-Tenant Model is utilized, Customer Content for an authenticated customer will not be displayed to another customer (unless Customers explicitly create a sharing relationship between their tenants or shared data between themselves).
Moro personnel are required to conduct themselves in a manner consistent with applicable law, the company’s guidelines regarding confidentiality, business ethics, acceptable usage, and professional standards. Moro performs security awareness training for employees. Moro personnel undergo background screening check to the extent legally permissible and in accordance with applicable local labor laws and statutory regulations.
If Moro becomes aware that Customer Data has been accessed, disclosed, altered, or destroyed by an unlawful or unauthorized party, Moro will notify relevant authorities and affected customers.
Moro will notify Customer administrators registered on Moro Cloud Services. Authorities will be notified through Moro's established channels and timelines. The notification will reasonably explain known facts, actions that have been taken, and make commitments regarding subsequent updates.
Evidence may be retrieved and downloaded by Customer from Moro Cloud Services to move data to an alternative information system. Evidence audit trails and system reports may also be downloaded in various industry-standard, non-proprietary formats.
In the event Customer’s access to Moro Cloud Services is terminated, Moro will delete Customer Content based on the request received from the customer for decommissioning. Moro has no obligation to maintain or provide any Customer Content after the decommissioning period and thereafter, unless legally prohibited. Upon written request, Moro will provide written proof that all Customer Content has been successfully deleted and removed from Moro Cloud Services.
Company shall store and retain all your Customer content and non-content data alongside supplementary information on the Company’s systems and cloud servers located in the UAE. If we are required to transfer your personal information outside UAE, in such a case, we will comply with our obligations for protecting your personal obligations as required under the applicable laws.
Moro data retention will be in accordance with applicable laws and regulations. Moro's data retention relates to Moro's Non-Content data. Moro's data retention measures instruct for the secure disposal of Non-Content Data when such data is no longer necessary for the delivery and support of Moro product and services and in accordance with applicable regulations. Customer is responsible for adhering to its own retention policies and procedures.
Moro Hub complies with its Cloud Privacy Statement in providing the Cloud Services. The Cloud Privacy Statement is subject to change and updated from time to time. The most recent version of this privacy statement will be available in this web page. By accessing, using, and providing information to or through the Cloud Services, you acknowledge that you have reviewed and accepted our Cloud Privacy Statement, and you consent to all actions taken by us with respect to your information in compliance with the then-current version of our Cloud Privacy Statement.
Moro commits to resolve complaints about Customer privacy and use of Moro Products. Complaints surrounding this can be directed to Customer's local Moro representative (Key Account Manager or Service delivery manager) or support@Morohub.com.