1. Introduction

OC Compliance (“Company,” “we,” “us,” or “our”) is committed to protecting the privacy and security of the personal data we collect, process, and store in connection with our conduct risk compliance software. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or otherwise interact with us. It also informs you of your rights regarding your personal data under applicable laws.

2. Who We Are

OC Compliance is a B2B software company providing risk compliance solutions. Our registered office is located at 30 N Gould Street, Sheridan, Wy82801, USA. For any queries related to this Privacy Policy or your personal data, you can contact us at hello@occompliance.com.

3. Information We Collect

We collect personal data from you in various ways, including:

Information You Provide Directly: When you contact us, fill out a form, register for an account, subscribe to our services, or otherwise interact with us, you provide us with personal data. This may include your name, email address, phone number, company name, job title, and other contact details. 

Information We Collect Automatically: When you visit our website, we may automatically collect certain information about your device and usage patterns, such as IP address, browser type, operating system, referring URLs, and pages visited.

Information From Third Parties: We may receive information about you from third parties, for example; Google/Microsoft (application register/login), which may include contact details, employment information, or other relevant data.

All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.

4. How We Use Your Information

We use your personal data for the following purposes:

To Provide and Manage Our Services: We process your data to deliver our compliance software solutions, manage your account, and respond to your inquiries or requests.

For Marketing and Communication: With your consent, we may use your contact details to send you information about our products, services, updates, and events that may interest you.

For Legal and Compliance Purposes: We may use your data to comply with legal obligations, enforce our terms and conditions, or protect the rights, property, or safety of OC Compliance, our clients, or others.

To Improve Our Services: We may analyze usage data to enhance our software, user experience, and customer support.

5. Legal Basis for Processing

We process your personal data based on one or more of the following legal grounds:

Performance of a Contract: When we need to process your data to fulfill our contractual obligations to you.

Legitimate Interests: When processing is necessary for our legitimate business interests, provided these interests are not overridden by your rights and freedoms.

Consent: When you have given us explicit consent to process your data for a specific purpose.

Legal Obligation: When we need to process your data to comply with a legal requirement.

6. How We Share Your Information

We may share your personal data with third parties in the following circumstances:

Service Providers: We may share your data with third-party vendors, service providers, and partners who perform services on our behalf, such as [insert specific types of service providers, e.g., cloud hosting providers, analytics services]. These parties are contractually obligated to keep your data secure and use it only for the purposes specified by us.

Legal Requirements: We may disclose your data if required by law, such as to comply with a subpoena or other legal process, or to protect our rights.

Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred to the new owner.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, use, alteration, or disclosure. These measures include encryption of data in transit and at rest, regular security audits, and employee training on data protection. However, no data transmission over the internet or storage system can be guaranteed to be 100% secure. If you have any concerns about the security of your data, please contact us.

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. Our typical retention periods are:

• Account information: For the duration of your active account plus up to 1 year after account closure
• Marketing information: Until you unsubscribe or request deletion
• Financial records: As required by applicable tax and accounting laws

Once your data is no longer needed, we will securely delete or anonymize it.

9. Your Rights

You have the following rights regarding your personal data:

• Right to Access: You may request a copy of the personal data we hold about you.
• Right to Rectification: You may request corrections to any inaccurate or incomplete data.
• Right to Erasure: You may request the deletion of your personal data, subject to certain legal exceptions.
• Right to Restrict Processing: You may request that we limit the processing of your data under certain conditions.
• Right to Data Portability: You may request to receive your data in a structured, commonly used, and machine-readable format.
• Right to Object: You may object to the processing of your data for certain purposes, such as direct marketing.
• Right to Withdraw Consent: Where processing is based on consent, you may withdraw your consent at any time.

To exercise any of these rights, please contact us at hello@occompliance.com. We will respond to your request within 30 days as required by applicable law.

10. International Data Transfers

Your personal data may be transferred to, and processed in, countries other than your own. These countries may have data protection laws that differ from those in your country. We ensure that appropriate safeguards are in place to protect your data during such transfers, including the use of Standard Contractual Clauses, Binding Corporate Rules, or other lawful transfer mechanisms approved by the European Commission or relevant data protection authorities.

11. Cookies and Tracking Technologies

We use cookies and similar technologies to collect information about your use of our website and services. You can manage your cookie preferences through your browser settings. For more details, please refer to our Cookie Policy.

12. Children’s Privacy

Our services are not intended for use by children under the age of 16. We do not knowingly collect personal data from children under 16. If you become aware that a child has provided us with personal data, please contact us, and we will take steps to delete such information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal obligations. We will notify you of any significant changes by posting the updated policy on our website with a revised effective date and, where appropriate, by email or other means.

14. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

OCC Services LLC (T/A OC Compliance)

30 N Gould Street, Sheridan, WY82801, USA.

Email: hello@occompliance.com

Data Protection Officer: John O’Connor

Supervisory Authority: If you are located in the European Economic Area and believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local data protection authority.