Aspire System Privacy Policy

Privacy Policy
v1.0 – Effective: April 7, 2025

1. Introduction
This Privacy Policy describes how Maple Technologies LLC (“Company,” “we,” “us,” or “our”) collects, uses, shares, and protects personal data when you (“User”) access and use Aspire (“Service”). By using the Service, you agree to the collection and use of information as outlined in this policy. This Privacy Policy forms part of our Terms of Service and any applicable client agreements.

2. Information We Collect
(a) User Information
When Users register for the Service, we collect personal data including name, email address, phone number, and company information.

(b) Third-Party Data
Users may submit personal data belonging to third parties while using the Service. We process this data solely on behalf of the User’s employer or principal (“Client”) and in accordance with the Client’s instructions. The Client is the data controller; we act as a data processor.

(c) Usage Data
We collect metadata and activity logs related to how Users interact with the Service, including timestamps, accessed records, features used, and error information, for the purpose of improving security, performance, and support.

(d) Cookies and Tracking Technologies
We may use cookies and similar tracking technologies to enhance User experience and analyze usage patterns. You can control cookie preferences through your browser settings.

(e) Automatically Collected Information
We automatically collect technical data such as IP address, browser type, operating system, language settings, device identifiers, pages visited, and timestamps. This information helps us maintain security, detect anomalies, and generate usage analytics.

3. How We Use the Information
Provide, maintain, and improve the Service
Authenticate Users and manage access permissions
Monitor system usage and ensure compliance with Terms of Service
Detect and prevent fraud or unauthorized use
Comply with legal obligations or respond to lawful requests
Notify Users of critical updates or service changes
4. Data Sharing and Disclosure
(a) With Clients
We process Third-Party Data solely on behalf of the Client. Client administrators may have access to User account information.

(b) With Service Providers
We may share personal data with trusted third-party subprocessors who help us operate the Service (e.g., cloud hosting, authentication, analytics, email delivery). These subprocessors are subject to confidentiality and data protection obligations.

(c) For Legal Compliance
We may disclose information to law enforcement or regulatory authorities when required by law, subpoena, or other legal process.

(d) Business Transfers
In the event of a corporate transaction (e.g., merger, acquisition, restructuring), personal data may be transferred as part of that transaction.

5. Data Security
We implement appropriate administrative, technical, and physical controls to safeguard personal data, including but not limited to:

Encryption in transit and at rest
Role-based access controls
Monitoring and logging of system activity
Regular vulnerability assessments and patching
Clients and Users are responsible for maintaining the confidentiality of their login credentials.

6. Data Retention
(a) User Account Data
User data is retained for as long as the account is active or necessary to provide the Service. Where a User has engaged in transactions within the system, identifying information is retained as needed to support audit and compliance under the Client’s contractual agreement.

(b) Third-Party Data
Third-Party Data is retained according to Client instructions, legal obligations, or contractual requirements.

(c) Logs and Analytics
Operational and security logs may be retained for auditing, incident response, and performance optimization.

7. User Rights
Depending on applicable law, Users and Clients may have rights to:

Access their personal data
Correct or update inaccurate data
Request deletion or restriction of processing
Withdraw consent (where applicable)
Object to processing or request data portability
For Third-Party Data, Users must contact their Client. For account-level requests, contact us at in**@********ch.com.

8. International Data Transfers
Our servers are located in the United States. If we transfer personal data to countries without an adequacy decision, we implement safeguards such as Standard Contractual Clauses or other lawful mechanisms.

9. Changes to This Policy
We may update this Privacy Policy periodically. Material changes will be communicated via email or within the Service at least 30 days in advance. Continued use of the Service after changes constitutes acceptance.

10. Contact Information
If you have any questions about this Privacy Policy or wish to exercise your data rights, contact us at:

in**@********ch.com
https://maple-tech.com/contact

11. Access to Your Data
In accordance with applicable laws (e.g., GDPR, CCPA), you may request:

Access to the personal information we hold about you
Details about how we have processed it
Corrections to inaccuracies
Deletion or restriction of your data
To withdraw consent for certain processing
We may verify your identity before fulfilling these requests. To make a request, please email in**@********ch.com or submit via https://www.maple-tech.com/contact.