Gmail Integration for Salesforce and Dynamics 365 PRIVACY POLICY LAST MODIFIED: MARCH 12, 2019 2019
Introduction Welcome to Gmail Integration for Salesforce and Dynamics 365, a service provided by Akvelon, collectively referred to as "Gmail Integration for Salesforce and Dynamics 365","Akvelon", "Product", "Extension" "Service", "Application" "we", "our" and "us". Your privacy is important to us, so the goal of this policy is to be transparent about what information Akvelon collects, uses, and shares. By using the Application you are consenting to the use of your information in the manner set out in this Privacy Policy. If you do not agree to any of the provisions of this Privacy Policy, you should not use the Gmail Integration for Salesforce and Dynamics 365. If you have any questions or concerns, you can contact us at gmail.support@akvelon.com. Please note that this Privacy Policy only applies to the Gmail Integration for Salesforce and Dynamics 365. Akvelon integrates with 3rd party applications, like Dynamics 365 or Salesforce which enable you to share information. Akvelon is not responsible for the privacy practices of 3rd Parties and we recommend that you review the privacy policies for each before using the Application. Information we collect We only collect information that is critical to the delivery of our Services to you, our customer. All of the information collected directly by us is listed below: Gmail Email address for licensing purposes and to identify people within the same organization Dynamics 365 and Salesforce username and ID used to connect Gmail account and your Salesforce or Dynamics 365 account in order to deliver our Service Oauth token used to connect to your Gmail account for the purposes of using our Application Salesforce or Dynamics 365 Token used connecting to your Salesforce or Dynamics 365 account Salesforce or Dynamics 365 Instance URL used to connect to you to your instance of Salesforce or Dynamics 365 Dynamics 365 or Salesforce Organization Name - used to identify the company for licensing purposes and administration of company accounts Other data needed for administration and licensing: o Installation date o Expiration date o Number of seats in organization o Number of active and inactive users
o License type For details on information collected by third party applications please refer to their individual Privacy Policies available via their websites. Providing our services CRM (Salesforce or Dynamics 365) To provide our Services, we require access to the data in the customer s CRM system to provide search, load, match, update and create records. This includes access to CRM entities allowed by CRM itself (profile, contact, lead, opportunity, account, activity, custom objects, and others). Gmail/Calendar/Contacts To provide our Services we require access to the data held in the customers email systems (Gmail) to provide ability to track emails from Gmail to CRM. List of permissions needed to deliver core functionality: Access to email/event for read/display/synchronization against matching CRM records Access to read and create Google contacts need this functionality to automatically create Google contacts when synchronize events from CRM. Read access needed in order to connect CRM events to existing contact and to not create duplicates. Send access for sending email to support team and request a quote using your Gmail account Users profile information is accessed to display configuration information to the end users and administrators Users can revoke our access to their CRM/Gmail/Calendar/Contacts system at any time, although of course if they do so we will not be able to continue to provide the Akvelon services. User created content Akvelon stores meta data (attributes to track and sync your data on your behalf) about email, calendar, task and contacts. We use this information in order to store user s settings, interact with CRM and provide core functionality. Akvelon does not store your CRM proprietary information, but uses record ID s in order to provide the service. Security of your personal information Company secures your personal information from unauthorized access, use or disclosure. Company secures the personally identifiable information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use or disclosure. All interaction between the Application and CRM occurs over a secure HTTPS connection.
Granting permission If you're installing the Application in a Chrome web browser, you'll see a notice about granting the Extension permission to get access to Google API. Without your explicit authorization, we cannot access your CRM data. After installing the product, you ll be asked to sign in to CRM. Please note: we can t do anything you can t do. For example, if you don t have access to read Leads in CRM, you won t be able to track emails against Leads in CRM Gmail Integration List of Gmail and Google API scopes Scope openid email profile https://www.googleapis.com/auth/contacts https://www.googleapis.com/auth/gmail.compose https://www.googleapis.com/auth/gmail.readonly https://www.googleapis.com/auth/chromewebstore.readonly https://www.googleapis.com/auth/tasks.readonly https://www.googleapis.com/auth/calendar.events https://www.googleapis.com/auth/calendar.settings.readonly https://www.googleapis.com/auth/calendar.readonly Level of access and justification In order to use OAuth for Gmail. User ID, so we can identify you. Used to connect CRM username and Gmail username for License purposes In order to use OAuth for Gmail See, edit, download, and permanently delete your contacts. need this functionality to automatically create Google contacts when synchronize events from CRM. Read access needed in order to connect CRM events to existing contact and to not create duplicates. Create, read, update, and delete drafts. Send messages and drafts. Used to sending email to support team and request a quote using your Gmail account. Read all resources and their metadata no write operations. Used for core functionality to get info about, email body, from/to, attachment, subject, thread and reply ID, etc. to add this data into CRM. Local storage for Chrome browse. Used for caching data to improve overall performance Read-only access to tasks. View and edit events on all your calendars. Used for calendar sync functionality. View your Calendar settings. Used for calendar sync functionality. View calendar resources on your domain. Used for calendar sync functionality.
How we use information we collect Without your explicit authorization, CRM Gmail Integration cannot access your CRM data. You authorize CRM Gmail Integration by signing into CRM with your CRM username and password. This authentication process is entirely managed by CRM. No user-sensitive information is stored. We use credentials to sign in your CRM organization and get necessary information to provide main functionality of the CRM Gmail Integration app: o Pull information about your activities and display this data in the CRM Gmail Integration sidebar o Look for existing entities in CRM and track email against them o Create new entities and activities is CRM using metadata (list of available entities) o Sync CRM appointments with Google calendar We collect Gmail profile information in order to perform license management. We collect the e-mail addresses of those who communicate with us via e-mail. Gmail account is being used as a sender when sending emails with logs to support team. This can be done only by user request. We also might use e-mail addresses for marketing purposes to improve the service we deliver to our customers. We use list of calendars related to user s Gmail account to display list of calendars in the Calendar sync section. Log data needed for support team We collect information on client s side about browser version you use for the Application, as well as your settings, browser information, connection type and CRM URL. Additionally, we log the date and time you access our services, as well as any error or crash data. Your log data helps us troubleshoot errors on client side. We do not have access to this information until you send a request to Akvelon support team through the extension UI. The information you provide to our team, including any troubleshooting documentation or screen shots, are saved as part of your support history. We use this information to resolve any issues you are having, relay feedback to our team, respond to your comments and requests, and confirm your purchases and refunds. Data security Akvelon takes data security very seriously and implements the industry s best practices and policies. We take all reasonable measures to protect your information, and to prevent any kind of unauthorized access, misuse, loss, or disclosure.
Akvelon uses Microsoft Azure platform and deploys some of the highest security measures to ensure data security; 256 Bit encryption for data in transit, AES for encrypting data at rest, and automated data masking to protect personally identifiable information. Data retention Akvelon stores your information for as long as your account is active, and for a reasonable period thereafter, in case you decide to use our services again. International data transfers Akvelon collects information internationally, and uses hosting and cloud computing infrastructure located primarily in the United States to transfer, process and store information. Your data rights and choices The following is a summary of choices you can make to exercise your data rights: Opt out of promotional communications You have the right to opt out of receiving any promotional communication. To unsubscribe from our newsletter, or other promotional emails, use the link at the bottom of the message. You can also contact us directly to have your information removed from our promotional contact list. Please note that, even if you unsubscribe, you will continue to receive non-promotional, transactional messages regarding your account and other essential services. Right to be forgotten You have the right to be forgotten which means that, at any time, you can request that Akvelon permanently delete all applicable data records, including your profile information, both personal and financial, along with any user-created content. In some cases, we may need to retain partial information to fulfil our legal responsibilities, or to complete ongoing financial transactions. Data portability You have the right, at any time, to request and receive the information that you have provided to Akvelon. We will provide you with your information, in a machine-readable format, so that you can make use of it in other contexts, or with other service providers.
Request that we stop using your information Even if you have previously consented to our Terms of Service and Privacy Policy, you have the right, at any time, to change your mind and object to the collection, use, and processing of your personal information. Additionally, you are under no contractual obligation to continue to provide any information to Akvelon. However, we require certain information in order to provide you with our services. Therefore, if you disagree with the terms of this Privacy Policy or our Terms of Service, you should stop using Akvelon, and contact us so that we may delete your information. Changes Akvelon Inc. may periodically update this Policy. The most current version of the policy will always be here. Questions Any questions about this Privacy Policy should be addressed to gmail.support@akvelon.com. For more information on this or any other of our Policies, please contact us at: gmail.support@akvelon.com 3120 139th Avenue SE, Suite 100 Bellevue, WA 98005 Tel: +1 (206) 905-4626