Privacy Policy

1. Data controller

Controller: Prysma Software, with a place of business in the Argentine Republic. General purposes: providing the Sentinel service, support, security, legal compliance, and legitimate product improvement. Contact us via channels published on the site or in the dashboard.

2. Data we process

We process identifying and contact data for account representatives and organizational users; credentials and access logs; operational data generated through dashboard use; and real-time or near-real-time geolocation associated with field devices and units when the customer enables such features.

We may also process IP addresses, technical logs, diagnostics, and metadata required for security, audit, and service continuity.

3. Purposes and legal bases

• Performance of the SaaS agreement and customer organization administration.
• Legitimate interests in information security, fraud prevention, and service improvement, balanced against data subjects’ rights.
• Compliance with legal obligations (e.g. valid administrative or court orders).
• Consent where required for optional communications or non-essential features.

4. Real-time geolocation

Location data is processed to display units on maps, histories, alerts, and operational safety features. Accuracy depends on device, connectivity, and customer configuration. The customer must inform field personnel and, where applicable, comply with employment or contractor law.

5. Encryption and security

We implement technical and organizational measures appropriate to risk, including AES-256 encryption for sensitive data in transit and, where applicable, at rest, plus role-based access control, logical segregation between organizations (multi-tenant), and infrastructure hardening.

No system is invulnerable; customers must protect credentials, endpoints, and internal access policies.

6. No sale of personal data

We do not sell or rent personal data to third parties for their independent marketing. We do not treat workers’ location data as a commodity. We may use infrastructure subprocessors (e.g. hosting, maps, payment gateway) under data-processing and confidentiality commitments.

7. Retention and transfers

We retain data as long as necessary for the purpose, dispute resolution, and legal obligations. International transfers, if any, rely on standard contractual clauses or other recognized mechanisms where the destination lacks adequate protection.

8. Data subject rights

Data subjects may request access, rectification, update, erasure, objection or restriction of processing, and portability where applicable. EEA residents may exercise rights with Prysma and, where relevant, with their local supervisory authority.

To exercise rights, use the contact published in the dashboard or site; we may request identity verification.

9. Minors

The service is aimed at organizations and must not be used to profile minors without a valid legal and parental basis under applicable law.

10. Changes

We may update this Policy by publishing a new version with an effective date. Please review it periodically.