Política de Privacidad

Effective as from 1 February 2023

At ISL Online, we respect the privacy of our website visitors and users who use our products and services. The purpose of this Privacy Policy is to keep our activities related to the processing of your personal data as transparent as possible, and to give you control over your own personal information. We will always strive to collect and process your personal data in a fair way and to keep it secure and confidential.

Descargar Política de Privacidad

  1. Introducción
  2. Definiciones
  3. Responsable y Encargado del tratamiento
  4. Processing Details
  5. Consent
  6. Menores de edad
  7. Protección de Datos
  8. Visitantes de la página web
  9. Registro
  10. Notificaciones y Boletines informativos
  11. Additional Features
  12. Facturación
  13. Soporte a Clientes
  14. Uso de producto
  15. Transfer of personal data to third countries
  16. Cookies
  17. Contenido de terceros
  18. Nube Privada Administrada
  19. Solución de hospedaje propio
  20. Anonimización y Seudonimización
  21. Versiones previas del producto
  22. Sus derechos
  23. Contacto
  24. Actualización de Política de Privacidad

  1. Introducciónlink

    ISL Online ("we", "us", "our") has prepared this policy to provide information about the collection and processing of personal data when using the products and services offered on the official websites (islonline.com and islonline.net). The main purpose of the ISL Online software is to allow IT professionals and helpdesk technicians ("Operator") to establish remote desktop sessions over the Internet for their business purposes, i.e. to provide technical support to their customers ("Client") remotely or to access unattended remote computers.

    This Privacy Policy describes which personal data we collect at various levels of your engagement with us. This Privacy Policy also describes where your personal data is stored and the security measures we use to protect it.

    We address personal data protection in accordance with the General Data Protection Regulation (EU) 2016/679, which is a European regulation on data protection and privacy (GDPR).

  2. Definicioneslink

    • Controller: means the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data pursuant to Article 4 paragraph 7 of GDPR.
    • Processor: means a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller pursuant to Article 4 paragraph 8 of GDPR.
    • Personal Data: refers to any information that relates to an identified or identifiable natural person pursuant to Article 4 paragraph 1 of GDPR, or any information which can be used to uniquely identify a Website visitor, Operator, Client, or Administrator.
    • Website visitor: refers to any individual visiting our official websites or social media sites for informative purposes only.
    • Operator: refers to any individual registered with an ISL Online account. Typically, this refers to an IT professional or helpdesk technician who offers support to a Client.
    • Client: refers to an End-User who joins remote desktop sessions, usually without any credentials, to receive technical support from Operators.
    • Administrator: refers to a privileged Operator who has permission to manage ISL Online licenses and accounts of other Operators within an organization.

  3. Responsable y Encargado del tratamientolink

    While using ISL Online products and services the legal person collecting, and processing personal data is:

    While providing its services ISL Online assumes both the role of data Controller as well as data Processor regarding different interactions with our customers and the corresponding personal data.

    ISL Online assumes the role of the Controller regarding personal data described in chapters 8-13, with processing details being described in chapter 4.

    ISL Online assumes the role of the Controller regarding personal data described in chapter 14 which pertains to you (Operator).

    ISL Online assumes the role of the Processor regarding personal data described in chapter 14 which pertains to your clients (Client / Person you offer remote support to). Data Processing Agreement (DPA) for our hosted service users is made available, once they log into their account, under My Profile > Other > Data Processing Agreement.

    In addition to ISL Online the processor or sub-processor of personal data may be:

    • el responsable del tratamiento,
    • empresas vinculadas a nosotros (nuestras filiales, de las cuales poseemos participación mayoritaria y, por tanto, no se consideran terceros):
      • ISL Online Limited, 22 Basepoint Business Centre, Rivermead Drive, Westlea, Swindon, Wiltshire, SN5 7EX, United Kingdom
      • ISL Online DACH GmbH, Aargauerstrasse 250, 8048 Zürich, Switzerland
      • ISL Online GmbH, Noetherstrasse 1, D-69115 Heidelberg, Germany
    • Terceros:
      • Distribuidores Autorizados (nuestros distribuidores y comercializadores, que nos ayudan a realizar en nuestro nombre determinadas funciones de atención al cliente, tales como actividades de marketing, ventas, asistencia al cliente y actividades comerciales similares)
      • external contractual service providers which we use in connection with the specific functions of our business process, e.g. Google Analytics

  4. Processing Detailslink

    Processing details in the table below cover the personal data for which ISL Online acts as a controller as described in chapters 8-13.

    Descripción Detalles
    Propósito del tratamiento Permitir el uso de productos y servicios de ISL Online de conformidad con las Condiciones de servicio y el Acuerdo de licencia.
    Duración del tratamiento Duración de la relación contractual, la cual comienza con la creación de una cuenta de usuario.
    Naturaleza del tratamiento
    • Almacenamiento
    • Registro
    • Extracción
    • Recogida
    Tipos de datos personales tratados
    • Nombre y apellidos (opcional)
    • Dirección de correo electrónico (opcional)
    • Direcciones IP
    • Información del dispositivo
    Retención de datos

    Most personal data is collected for as long as is necessary to fulfil the purpose of processing under which it was collected.

    Certain personal information is kept for a longer period in order to comply with European and local legislation.

  5. Menores de edadlink

    It is our belief that children have no requirements for our software and therefore, we do not verify age or obtain parental or guardian consent for any data processing activity. ISL Online software has no age sensitive material, nor should it pose any risk to children.

  6. Protección de Datoslink

    ISL Online Headquarters (XLAB d.o.o.) holds the ISO/IEC 27001:2013 certificate, which proves our commitment to information security. We use the globally recognized ISO 27001 standard as a framework for implementing the information security management systems (ISMS) which helps us keep information assets secure.

    All our servers have disk encryption and are solely managed by the controller's OPS team (system administrators and other privileged access users). Data is encrypted in rest as well as in flight. We have physical and logical access procedures and controls in place, and we conduct training for our employees and contractors in order to enforce conformity with our data protection and privacy policies.

    Utilizamos las tecnologías y los procedimientos administrativos más recientes para salvaguardar sus datos personales. Los servidores de ISL Online están alojados en centros de datos profesionales y de eficacia probada en el sector con instalaciones y equipos modernos, tales como fuentes de alimentación redundantes o de respaldo, conexiones redundantes de comunicación de datos, controles ambientales (por ejemplo, aire acondicionado o extinción de incendios) y dispositivos de seguridad.

    ISL Online's master servers, which hold the data upon which ISL Online acts as a Controller, are located within the European Union in ISO 27001-certified data centers. Session meta-data upon which ISL Online acts as a Processor is replicated across our worldwide network of servers and gets processed in a location selected by our load balancing system, which includes locations outside the EU. Server locations are shown here: About Us.

    Si desea un control total sobre las ubicaciones de los servidores y las transferencias de datos, plantéese obtener una Licencia de servidor (el servicio de ISL Online se aloja en sus servidores y usted es quien lo gestiona) o utilizar una solución de Nube privada administrada (el servicio de ISL Online se aloja en servidores seleccionados según sus preferencias y lo administran profesionales de ISL Online).

  7. Visitantes de la página weblink

    When you visit our website, we collect a limited scope of personal data transmitted to us by your browser. This helps us provide the service as well as improve the user experience. Data collected consists of your IP address and metadata (such as timestamp), technology used (operating system, browser etc.), referrals (website from which the request comes), language and the country of origin.

    Además, nuestros sistemas recogen su dirección IP por motivos de seguridad, para detectar actividades anómalas. Entre otras, las actividades anómalas pueden ser ataques al servicio de nombres de dominio, detección de fraudes y otras actividades que podrían poner en riesgo la seguridad o disponibilidad de nuestros sistemas. Los metadatos, el idioma y el país de origen del navegador se utilizan para servir la versión correcta de nuestro sitio web según la ubicación y el idioma elegidos. Si se obtiene, ISL Online utiliza la dirección de referencia para comprender de dónde proviene el tráfico.

  8. Registrolink

    If you decide to sign up for a free trial of the ISL Online software, we will ask you to provide the following personal information:

    • Correo electrónico
    • Nombre de usuario
    • Nombre completo

    You are only required to provide your email address during the registration process. We process this information to complete the contractual obligation. The username is chosen by you and can be used as an alternative to an Email address when logging into ISL Online products and services. Full name is optional and can be specified to personalize the user experience when using ISL Online products and services.

    For billing purposes, we also ask you to provide the name of the company, address, phone number and similar information which will be needed if you decide to buy a license. You are able to review and change this information at any time (log in to My Account > License > Change Information).

    According to your country of origin and the cookie information, your account information may only be processed by the ISL Online Headquarters, our subsidiaries or Authorized Partners which have signed information sharing agreements with us. These processors have access to the personal data needed only to perform their customer care functions related to ISL Online's products and services and may not use it for any other purpose. You have the power to choose your preferred point of contact at any time (log in to My Account > License > Change Local Partner).

  9. Notificaciones y Boletines informativoslink

    We use internal systems to deliver important system messages and news about the ISL Online products and services to you. Once you sign up for the ISL Online software, we advise you to subscribe to the following two notification types:

    • Automatic Email Notifications (AEN): These are automatic notifications related to your ISL Online account status. For example, our systems will automatically send a message to your email address to notify you when your account expires.
    • Newsletter: Approximately once a month, we send out a newsletter to notify you of important product or service enhancements, security announcements or other information we consider relevant to our users.

    When you subscribe to Automatic Email Notifications or Newsletter, we will send emails to the email address specified in your account. You can change your subscription preference at any time (log in to My Account > My Profile > Change Subscription).

  10. Additional Featureslink

    Some organizations may decide to enable additional features provided by ISL Online to enhance their remote desktop sessions, for example:

    • ISL Pronto, which is a text-chat solution that can be published on their allows Clients to join a remote support session directly from the respective websites.
    • End-of-Session dialogs, which pop up to Operators or Clients once the remote desktop session is finished for the purpose of collecting the users' feedback.
    • Integration into third-party solutions, such as service desk or ticketing products, CRMs, ERPs and other enterprise systems.

    Enabling such additional features may result in collecting text messages (the transcript of the chat between the Operator and the Client) and different free-form inputs related to a remote desktop session and storing this data on ISL Online servers alongside metadata. Chat transcripts are available to Operators and Administrators of the respective organizations.

    ISL Online implores the users to be careful when entering personal or confidential data into session chats, end-of-session dialogs and other places which allow unmoderated user input. This information becomes a subject of data processing; however, it is technically infeasible to exercise your data subject rights upon such data.

    In the case of the integration of ISL Online software into third-party solutions, the chat transcript may be transferred to service desk or ticketing products, CRMs, ERPs or other enterprise systems. We do not control the personal data collected and managed by these enterprise systems. We recommend that you contact the enterprise system providers directly for their privacy and data sharing policies.

  11. Facturaciónlink

    When the organization decides to purchase the ISL Online licenses, those licenses are assigned to a specific ISL Online account. These accounts are normally managed by Administrators (license owners). During the purchasing process, we will collect the information needed for billing and order processing purposes, which may include your name, company name, company address, email address, and telephone number. We will keep purchase orders and invoice records as long as requested by tax authorities. Please refer to the Terms of Service for details.

  12. Soporte a Clienteslink

    When you contact our service desk via live chat, email or phone, we may collect your email address, your name, and your telephone number in order to respond to your inquiry. Your message will also be stored and might be shared with our Authorized Partners in order to provide a prompt and localized customer service to you. Any personal data and other information intentionally or unintentionally provided by you whilst communicating with our support staff will be processed by us based on our legitimate interest to fulfill your support request.

  13. Uso de productolink

    When you register for a free trial, your account will be activated for product use. Upon the registration, and all subsequent successful log in attempts, we will collect your IP and MAC addresses for auditing and licensing purposes.

    Once logged into your account, ISL Online allows you to establish a remote desktop session with a remote computer or mobile device. The session may include different services such as text-chat, screen sharing, video call and file transfer.

    All remote desktop sessions are encrypted using symmetrical AES 256-bit keys. A secure SSL end-to-end tunnel is established between a local and a remote computer or device. This means that even the ISL Online servers cannot decrypt the content of the sessions, but only transfer packets from one side to another. This means that we do not collect any personal data transmitted during remote desktop sessions.

    We use proprietary geoDNS algorithms to distribute sessions to the nearest servers available. This means that users from a particular country are most likely to be connected through one of our servers hosted in that country (if any of our servers are located in that country). For example, the UK users will be almost certain to connect through our UK servers, the German users will be almost certain to connect through our German servers etc.

    However, we do collect, store, and process metadata of the remote desktop sessions. This is needed for the legitimate purpose of enabling access to the ISL Online products and services explicitly requested by you. The list of metadata stored on ISL Online's servers may include the following personal data collected from your device as well as the device to which you are connecting.

    From your device / pertaining to you, we may collect the following:

    • Nombre de usuario
    • Correo electrónico
    • Dirección IP
    • Direcciones MAC

    From the device you are connecting / pertaining to the person you are supporting, we may collect the following:

    • Dirección IP
    • Direcciones MAC

    ISL Online processes the personal data of the people you are supporting upon your request and according to your instructions, thus ISL Online assumes the role of data processor. A data processing agreement (DPA) is available to you once you log in at islonline.com under "My Profile" section.

    A detailed list of basic session parameters (metadata) is available in our Security Statement.

  14. Transfer of personal data to third countrieslink

    ISL Online utilizes a grid of servers worldwide to provide our hosted service. A distributed data allocation allows us to guarantee 24/7 availability and reliability of the remote desktop software as a service around the globe.

    While (personal) data outside of the European Union, ISL Online uses the following safeguards and measures to ensure adequate protection of data:

    • All data is encrypted in flight and at rest, with ISL Online being the only entity to possess the encryption/decryption keys;
    • ISL Online has obtained and maintains the ISO 27001 certification;
    • In cases where data export to a third country is not covered by Adequacy Decision, ISL Online relies on Standard Contractual Clauses signed with selected providers.

    You can request information about the data stored about you via the contact details provided in Chapter 3.

  15. Cookieslink

    Our websites use cookies, which are small text files that are placed on your computer upon your visit. Cookies are widely used in order to allow websites to work, or to work more efficiently. Besides the essential and functional cookies that are either required for the service to work correctly or improve the experience of the user, ISL Online uses some third-party cookies, which you can opt out from. Please refer to our Cookies Policy for more details.

  16. Contenido de terceroslink

    • Análisis web

      • Google Analytics

        Google Analytics is used by ISL Online to track specific page usage on our website and consequently optimize webpage layout and workflow. Google Analytics is used in the anonymized mode, which means that the last octet of an IP address is removed to prevent user identification. More information can be found in Google's Privacy Policy.

      • Google Tag Manager

        Google Tag Manager is used by ISL Online to support the usage of Google Analytics. The Google Tag Manager system itself does not collect any user information. More information can be found in Google's Privacy Policy.

      • Google AdSense

        Google AdSense is used on ISL Online webpages. AdSense places a DoubleClick cookie on your device which allows Google and its partners to serve user-based ads. More information can be found in Google's Privacy Policy.

      • Leadfeeder

        Leadfeeder is used on ISL Online webpages to identify organizations visiting our websites. The system is implemented in anonymized mode (last octet of visiting IP is removed) to further limit the amount of information collected and make it impossible to uniquely identify a user. More information can be found in LeadFeeder's Privacy Policy.

    • reCAPTCHA

      reCAPTCHA is used by ISL Online to protect our websites from abuse. It uses advanced risk analysis techniques to tell bots and humans apart. More information regarding reCAPTCHA can be found here: https://developers.google.com/recaptcha/. reCAPTCHA system additionally utilizes and sets the NID cookie. Please refer to our Cookies Policy for details.

    • Servicios de terceros

      To provide the services and improve our official websites, we may engage the services of third-party vendors, such as Vimeo, YouTube and Google Maps. In the process of supplying such website services through our official website, these third-party vendors may collect your IP or other information provided by your browser.

      Aparte de deshabilitar cookies de terceros, escapan del control de ISL Online la determinación y disposición del modo en que dichos terceros conservarán y tratarán sus datos personales. Las solicitudes para ejercer sus derechos respecto al tratamiento de datos personales se deben remitir directamente a los respectivos terceros.

    • Sitios de Redes Sociales

      Our official websites feature social media plugins like Facebook, Twitter, and LinkedIn, to enable you to share information with others. If you are logged into a social media site while visiting our website, the social plugins may allow that social media website to receive information that you have visited our website and to share information about your activities on our website with other users of their social media website. We do not control any of the content from the social media plugins. We recommend that you contact those sites directly for their privacy and data sharing policies.

    • Blog

      Beside the official websites, we use a blog to publish the content created by us. The blog is hosted by WordPress.com, which offers features like "Subscribe to blog" and "Reply to a blog post". We do not control the personal data collected and managed by these blog features. If you wish to use these features and have any concerns, we recommend that you contact WordPress.com directly for their privacy and data sharing policies.

    • Enlaces a otras páginas web

      Our official websites contain links to other websites. The fact that we link to a website is not an endorsement, authorization or representation of our affiliation to that third party. We do not exercise control over third party websites. We recommend that you contact those sites directly for their privacy and data sharing policies.

  17. Nube Privada Administradalink

    To organizations which wish to use the cloud solution but want to have total control over the locations of the ISL Online servers hosting their data and remote desktop connections, we offer a special plan called Managed Private Cloud (MPC). This allows users to enjoy all the benefits of cloud computing in a PRIVATE cloud, without investing in hardware or human resources (sysops) for setting up, configuring, monitoring and maintaining the system. Please Contact Us for details.

  18. Solución de hospedaje propiolink

    To most security delicate organizations such as banks, national agencies or corporate environments, we offer the self-hosted models (Server License, Private Cloud). With these models, the ISL Online system is installed onto the server(s) hosted by those organizations. In this case, all remote desktop connections are established through the server(s) controlled by those organizations. As the self-hosted installation is a stand-alone system, where all data (including metadata) remains in a closed corporate environment, the organization is responsible for the administration of the server(s) and for protecting personal data of their users (Operators and Clients). If you are using a self-hosted system and have concerns, inquiries or requests related to your personal data, you need to contact Administrators of those respective organizations. ISL Online helps the organizations using our self-hosted system to meet personal data protection requirements by tailoring the ISL Online products to their needs. Please Contact Us for details.

  19. Anonimización y Seudonimizaciónlink

    We strive to minimize the collection of your personal data. A vast majority of data collected by ISL Online is anonymized, stripped of any identifiable information, which makes it impossible to derive insights into a discrete individual. On the other hand, the personal data we do collect and store may be pseudonymized:

    • por petición explícita de usted, o
    • de acuerdo a los periodos de retención establecidos.

    You have the right to be forgotten. Pseudonymization means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately. Your personal data will be rendered in such a way that it would be nearly impossible to reidentify you.

    We use reasonable efforts and deidentification techniques to pseudonymize your personal data. We provide pseudonymization support tools to Administrators of self-hosted systems.

  20. Versiones previas del productolink

    La información proporcionada en la presente Política de privacidad se basa en las versiones de productos de ISL Online oficialmente disponibles en la sección "Descargas" de nuestro sitio web oficial en la fecha de entrada en vigor de la presente Política de privacidad o en fechas posteriores, y no rige para versiones anteriores ni versiones beta.

  21. Sus derechoslink

    Todo/a interesado/a cuyos datos personales tratemos puede, en cualquier momento:

    • Conocer qué tipos de datos personales obran en nuestro poder, cómo los obtuvimos, cómo los protegemos y cómo los tratamos.
    • Solicitar una copia de los datos personales sobre él/ella que obren en nuestro poder.
    • Rectificar/completar partes incorrectas/incompletas de los datos personales sobre él/ella que obren en nuestro poder.
    • Solicitar la supresión de los datos personales sobre él/ella que obren en nuestro poder.
    • Restringir el tratamiento de los datos personales sobre él/ella que obren en nuestro poder u oponerse a este.
    • Solicitar la transmisión de sus datos personales a un tercero.

    You can lodge a complaint directly with us via the contact details provided in Chapter 3 or with a relevant data protection supervisory authority:

    • Information Commissioner of the Republic of Slovenia
    • Dunajska cesta 22
    • SI-1000 Ljubljana

  22. Contactolink

    Si tiene alguna otra pregunta sobre la recogida y el tratamiento de sus datos personales, póngase en contacto con nuestro Delegado de protección de datos escribiendo a dataprotection@islonline.com.

  23. Actualización de Política de Privacidadlink

    This privacy policy has last been updated on the date written at the top of the document. We reserve the right to change or supplement this Privacy Policy at any time. Any changes will be posted on this website along with the date when they become effective. We urge you to monitor this website to stay abreast of any changes. If the modifications materially alter your rights or obligations thereunder, we will notify you of the change.

Descargar Política de Privacidad