SoftTrain Cloud - Schedule 4 (Data processing information)

Terms and Conditions
Schedule 1 (Acceptable Use Policy)
Schedule 2 (Availability SLA)
Schedule 3 (Support SLA)
Schedule 4 (Data processing information)

1.	Categories of data subject

The employees and individual subcontractors of the Customer

2.	Types of Personal Data

Names, postal addresses, email addresses, telephone numbers and call recordings.

3.	Purposes of processing

(a)	Informing the employees and individual subcontractors of the Customer of Access Credentials to the Hosted Services.

(b)	Informing the employees and individual subcontractors of the Customer regarding Support Services.

(c)	For employees and individual subcontractor of the Customer as part of the Online Purchase Process.

(d)	Providing the employee and individual subcontractors of the Customer with reports generated by the Hosted Services.

(e)	Hosting call recordings which contain personal data of the Customer.

4.	Security measures for Personal Data

(a)	All Hosted Services have valid SSL certificates issued by trusted authorities

(b)	Access to the Personal Data is restricted to specific employees of the Provider and only used for the Purposes of processing in Clause 3.

For details relating to data security, please see the following link which forms part of the Terms and Conditions

Data Security

5.	Sub-processors of Personal Data

(a)	Microsoft Azure: Cloud infrastructure for our Hosted Services. Personal Data may be made available for Support Services

(b)	Wildix: Private Branch Exchange (PBX) provider used by our Hosted Services. Personal Data may be made available for Support Services unless the Customer providers express written refusal prohibiting such access.

(c)	Stripe: Payment gateway provider for our Hosted Services. Billing-specific Personal Data of the Customer (names, postal addresses, emails and telephone numbers) will be made available for billing and invoicing purposes

6.	Third-Party Platforms

The Customer accepts that the Provider shall not be held responsible or liable for any data stored, transmitted, or processed via the Third Party Services. The use of the Third Party Services is subject to the Third Party Services' own terms and conditions, and the Provider disclaims all responsibility for the management, security, or integrity of data within the Third Party Services.