How Does ManagedMethods Handle Data?

ManagedMethods finds it important to keep information safe and secure.

ManagedMethods uses the data to set up, administer and provide the ManagedMethods Service for organizations.

All data that is stored is done so using Google Cloud Platform services which are encrypted with AES-256. The data that we store is almost entirely meta-data such as file/email names, id's, modification dates, etc.

The only user data ManagedMethods stores is small sections (100 characters) of content that surround matched risk keywords or regex patterns that our product has been configured to flag. This is stored for displaying the risk context to you through the platform.

All scanning of user data is done in RAM and is soon thereafter purged. Any stored data is only retained for 90 days.

ManagedMethods shares information with other related services to process data for system functionality.

We only share necessary data to our partners and service providers.

For more information on the partners and service providers we work with please send a request to our customer support team at [email protected].

ManagedMethods collects and stores data to better monitor and maintain performance. Information may include things such as system health and availability, CPU and disk utilization over time, etc.

Your email address and personal information will not be distributed or shared with any third parties outside ManagedMethods.

Sections of the ManagedMethods platform and Website contain function to collect personal information including names and email addresses.

During Customer Support events personally identifiable information may be present and viewed by the product support staff.

ManagedMethods may in any event use and disclose information given a legal obligation through law, subpoena or legal process.

Data Use of Your Google User:

If you provide the ManagedMethods app access to your Google data, the App’s use of that data will be subject to these additional restrictions.

ManagedMethods app will only use access to read, write, modify or control your G Suite data for platform feature and functionality.

The app will not use your data for serving advertisements.

For further details on how ManagedMethods uses each Google scope: Click Here

For further information on how Google handles data and privacy: Click Here

Use of Education and Children Data:

ManagedMethods adheres to the laws of the State of Colorado for Student Data Transparency and Security Act. Passed as HB16-1423 then signed into law on June 10, 2016 in addition to the United States Family Educational Rights and Privacy Act of 1974.

ManagedMethods is committed to maintaining the security and confidentiality of student records. We do not retain or store user generated content.

We do not use information from student(s) records for any purpose other than what is needed to effectivity run the platform.

In the event of an unauthorized disclosure of a student’s records, ManagedMethods will promptly notify user(s) and keep them fully informed until the incident is resolved. Unless specifically directed not to provide such notification by law enforcement officials.

ManagedMethods will purge or ammonize personal information when it's no longer needed.

ManagedMethods agrees to work with educational institutions to ensure compliance with FERPA.

ManagedMethods prohibits using information in student records to engage in any sort of targeted advertising.

Data Security:

ManagedMethods follows generally accepted industry standards to protect any personally identifiable information submitted to us. However, due to the nature of Internet communications and evolving technologies, unauthorized entry or use, hardware or software failure, and other factors, the security of Customer Data may be compromised at any time.

No method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, we cannot guarantee the absolute security of personally identifiable information and disclaim any assurance that such information will remain free from loss, misuse, or alteration by third parties who, despite our efforts, obtain unauthorized access.

If ManagedMethods becomes aware of any systems security breach by an unauthorized party we will comply with relevant state and other data breach laws.

We will notify IT administrators of any breach resulting in unauthorized release of data electronically, at minimum, and without unreasonable delay so that you can take appropriate steps. The notification will include the date of the breach, the types of information that were subject to the breach, general description of what occurred, and the steps ManagedMethods is taking to address the breach.

We will retain your information for as long as your account is active or as needed to provide you services. Please contact ManagedMethods if you wish to cancel your account or request that we no longer use your information to provide you services.

If you wish to access, modify, or delete other personal information that you have provided to ManagedMethods, such as your address, please contact us at [email protected] for assistance.

ManagedMethods does not own the rights to any user data.

Users of the platform shall retain possession of the data at all times.

ManagedMethods shall implement daily backups of user Data for the purpose of service recovery in the event of unrecoverable failure. Except in the case the Customer specifically requests to disable the automated backup procedure. Note these backup files are also considered Customer data.

Customer grant ManagedMethods the limited non exclusive right to preform an automated content scan of data stored within the Customer's Cloud Provider solely for the purpose of providing the service to end users.

Customer grant ManagedMethods the limited non-exclusive right to view, modify, collect and use the Customer Data to create meta-data derived from Customer Data (which may include, by way of example, file encryption, file modification dates, audit trails, and the number of times a file has been accessed) (“Customer Meta-Data”), solely for the purpose of providing the services to Customer.

Customer grants ManagedMethods the right to collect and use anonymized generic statistical information derived from such Customer Meta-Data (but not derived from the Customer Data directly) and aggregate it with statistical information from other customers (“Non-Identifiable Aggregated Data”) solely for providing and improving its services.

Customer agrees that ManagedMethods shall own all right, title, and interest in any such Non-Identifiable Aggregated Data. For purposes of greater clarity, ManagedMethods will not store any Customer Data, except to the extent that it constitutes Customer Meta-Data.

As between ManagedMethods and Customer, Customer is solely responsible for the content, quality and accuracy of Customer Data, for securing any necessary approvals for ManagedMethods’ use of the Customer Data as provided for herein, and for ensuring that the Customer Data as made available by Customer complies with applicable laws and regulations. ManagedMethods is not responsible for Customer Data once it leaves the ManagedMethods Service, including by way of example, if Customer downloads a report from the Service to a Customer personal computer.