GDPR for Joint Action Analytics software platform

Updated on 14/09/2022

Introduction

This GDPR policy (hereinafter referred to as the “Policy”) describes how the Joint Action Analytics IT software platform (hereinafter referred to as “us”, “we” or “our”) collects and stores personal data in connection with the purchase of the product and associated services.

Joint Action Analytics has developed a unique analysis platform for mapping the quality of cross-functional collaboration and for creating an overview of organizations’ most complex tasks. The analysis platform Joint Action Analytics is license-based software together with Joint Action Learning, which is a module for strategic advice for development. With the Joint Action Community, we bring together public actors for the exchange of learning across organisations.

The analysis platform is a Software-as-a-Service solution (SaaS) that only requires a browser, and is thus easy to get started with in the organization.

Joint Action Analytics is designed in such a way that no personal data, sensitive information or other types of data are processed. Joint Action Analytics is registered as a data owner/controller, and for that reason Joint Action Analytics doesn’t make a data processing agreements with our customers or business partners. As a data owner/controller, this means that we store data for our customers in order to realize and fulfill the use of our products and services. This assessment has been carried out in accordance with Data Protection Authority’s guidance on data owners/controllers and data processors.

GDPR for Joint Action Analytics software platform

Retention of personal data is an important area of Joint Action Analytics. We are at the forefront of data security legislation and only use the latest versions of systems. Joint Action Analytics is GDPR compliant according to current legislation. The company complies with the requirements of the international standard, ISO27001, regarding information security. We have systems and procedures in our organization which ensure that your data is stored securely. In the coming sections, you can read more about personal data, anonymity, policies in Joint Action Analytics.

Personal data & Joint Action Analytics

Joint Action Analytics’ questionnaire surveys contain general personal data. Therefore, it is important for us to make the storage of personal data safe for you, where only the most necessary people have access to your respondents’ data. Therefore, only certified users of the Joint Action Analytics IT software platform will have access to data in the questionnaire surveys, as well as system administrators at Joint Action Analytics.

Anonymity

Surveys made in Joint Action Analytics are done in complete anonymity, which means that there is no personally identifiable data in the analyses. Data is instead attributed to departments’ relational capacity, and the data is associated with a random respondent ID.
You must be aware that if there is only one employee in a department, it will be possible to attribute data to that person.

Access permissions in the IT solution

System administrator
Selected employees in Joint Action Analytics, whose purpose is to provide support, guidance and advice to the individual customer.

Certified user
Certified and trained user of the Joint Action Analytics IT software platform.

Respondent
Respondents who participate in answering surveys.

Citizens do not have access to the system.
A detailed system description can be sent by agreement.

Control

Every month, the Data Protection Officer (DPO) at Joint Action Analytics controls the list of rights and access to the software platform.
User and access management is assigned and controlled internally in the Joint Action Analytics software platform. Users receive login information for Joint Action Analytics software platform via e-mail, where they enter a personal password.

Browser

Joint Action Analytics software platform consists of a web application that is accessed via browser. We recommend having the latest updated browser version.
Browsers with which the software platform is compatible: Google Chrome, Safari, Microsoft Edge, Firefox.

Communication

We communicate with our users via email, phone and online meeting solutions to ensure training and education of the analysis tool, as well as ongoing support and advice.

Logs

The software platform contains action logs and is not available to customers.

Security

We use HTTPS for the domain and SSL certificate for the website. Contact us for further information.
Joint Action Analytics follows international standards for password security and recommendations from the national Center for Cyber ​​Security and the Norwegian Data Protection Authority.

Hosting

We are hosted with Microsoft Azure. Contact us for further information.

Policies regarding the use of IT

Joint Action Analytics has an IT security policy, Procedure description for handling breaches of personal data security, Erasure policy, Personal data policy. Contact us for further information.

Annual control

Joint Action Analytics conducts an annual self-control of GDPR and IT security.

All policies are checked and reviewed annually.

Contact

Contact us for further information, clarification, questions or comments on the above policies and procedures.
Mail: kontakt@joint-action.dk, Tel. +45 70 60 50 97.