Privacy Policy Applications Platform

Privacy Policy for Applications Platform

Orbis Software Ltd. T/A Codeless Platforms respects your online time and privacy. Orbis Software Ltd. T/A Codeless Platforms never sells or rents email addresses or customer information to third parties. Information provided is only used by Orbis Software Ltd. T/A Codeless Platforms and its authorised dealer network. Survey information is used for Orbis Software Ltd. T/A Codeless Platforms internal marketing usage only. Customer information will not be used for the purpose of broadcasting unsolicited email bulletins.

General Data Protection Policy – How We Store and Use Data

Orbis Software Ltd. T/A Codeless Platforms (“we”) hold personal data about our employees, clients, suppliers and other individuals for a variety of business purposes. Our General Data Protection Policy sets out how we seek to protect personal data and ensure that customers and staff understand the rules governing their use of personal data. This policy requires staff to ensure that the Data Protection Officer (DPO) be consulted before any significant new data processing activity is initiated to ensure that relevant compliance steps are addressed. You can download and view the Policy here.

Cookie Policy

We use a number of different cookies on the Applications Platform and the Applications Platform Outlook Add-in. A cookie is a small file containing a string of characters that is sent to your computer when you visit a website. When you visit the website again, the cookie allows that site to recognise your browser. Cookies may store user preferences and other information. You can reset your browser to refuse all cookies or to indicate when a cookie is being sent. However, some website features or services may not function properly without cookies. To find out how to control or delete them, we recommend you visit www.aboutcookies.org for detailed guidance.

The following table describes the cookies we use on Applications Platform and the Applications Platform Outlook Add-in and what we use them for. Currently, we operate an ‘implied consent’ policy which means that we assume you are happy with this usage. If you are not happy, then you should either not use Applications Platform or Applications Platform Outlook Add-in, or you should delete Applications Platform cookies having visited the site or the Add-in, or you should browse the site or use the Add-in using your browser’s anonymous usage setting (called “Incognito” in Chrome, “InPrivate” for Internet Explorer, “Private Browsing” in Firefox and Safari etc.)

Cookie Name & Purpose

CookiePurpose
CSRFTOKENStores system generated CSRF token for Portals and UI logins used internally to counter CSRF attacks.
RBAuthRequestIDIdentifier of the SAML authentication request used during SAML response validation to authorize the flow.
languageSelected language code from login page to be used for the user logging in to the system.
c
  • Customer identifier for the user login to be used internally.
  • Customer identifier for the user attempting to access master portal from tenant account like “Account settings”.
queryStringRequest data received in the incoming request during Kerberos authentication used internally post successful authentication.
RBSamlInfoUrlSAML authentication information related to the user used internally post successful authentication.
loginNameLogin name during login flow if “Remember Me” is checked in login page. Used in subsequent login flows to authenticate user.
xUser identifier for the user attempting to access master portal from tenant account like “Account Settings”.
sessionIdSystem generated session identifier for UI, Support, Test-drive login scenarios.
RBGuestPortalSessionSystem generated portal session identifier used to track operations of un-authenticated(guest) user on portal pages.
seedObjDefIdSelected object definition identifier in seed records record selector popup remembered for showing the selection for the duration of the logged in user session for subsequent record selector operations.
googleStateSystem generated unique code used during Google response validation to authorize the flow.
reportIdReport identifier to store the report id which is then used to render the selected report on UI.
lastAppIdApplication identifier of the application last visited by the logged in user.
lastTabIdTab identifier of the tab last visited by the logged in user.
themeSelected theme from the theme preview dropdown for rendering UI pages in the selected theme for the entire duration of the preview phase.
oldUIFlag maintained to render UI pages in the Classic mode. Only for dev use & never used in production setups.
rtlFlag maintained to render UI pages in RTL mode. Only for dev use & never used in production setups.
deletedRecordCountMaintains deleted records count to show up against the “Recycle bin” option on the side bar for logged in user.
searchDefIdSelected object definition identifier in Global search widget remembered for showing the selection for the duration of the logged in user session for subsequent search operations.
demoFieldsLayoutFlag maintained to render UI forms in a specified field layout mode. Only for dev use & never used in production setups.
portalSessionSystem generated portal session identifier used to track operations of authenticated user on portal pages.
RSessionIdSystem generated session identifier for JSDO based mobile login flows.
userHasMultiTenantSet if logged in user is part of multiple tenants in the instance.
rootUrlThe URL of the component in which the user is logged into.
RBMarketplaceSessionInfoSession info of the logged in user to be used by Marketplace authentication flow.
samlLoginSet with the customer identifier of the logged in user if the login was based on SAML authentication.
CustomLoginURL to return to post UI logout in cases of Custom login feature. This is only application to the Hosted cloud setup.
authProfileIdSystem generated identifier to identify the authentication profile used to authenticate the user during the login flow.
returnURLThe URL to return to post UI logout.
previewModeMaintains the preview mode chosen from live preview to render the UI pages. Only for dev use & never used in production setups.
previewDeviceTypeMaintains the preview device type chosen from live preview to render the UI pages. Only for dev use & never used in production setups.
ctRemembers this computer and skip security questions on subsequent UI login flows if “Remember Me” is checked in login page.
{userId}_{custId}-{userLangCode}Maintains the timestamp at which the localization settings were cached at client-side during UI page generation. This cookie is invalidated when localization settings are modified via setup links so that the modified localization changes can be cached for use again.
rb.newui.sessionResetTimeMaintains timestamp of the last UI session reset time computed during interaction with the server.
objectUpdateTimeTime taken to perform an operation on the record once the request reaches the server.
lastPageTabStores the last active tab per page.
ajaxCallsCountMaintains the current active number of Ajax calls on the Outlook Add-in
objectListMaintains the list of Objects in the tenant when configuring the Outlook Add-in settings

External Web Services

We use a number of external web services on the Applications Platform site, mostly to display content within our web pages. For example; to show videos we use Vimeo and YouTube. This is not an exhaustive or complete list of the services we use, or might use in the future, when embedding content, but these are the most common. We cannot prevent these sites, or external domains, from collecting information on your usage of this embedded content. If you are not logged in to these external services then they will not know who you are but are likely to gather anonymous usage information e.g. number of views, plays, loads etc. You should check the respective policies of each of these sites to see how exactly they use your information and to find out how to opt out, or delete, such information.

Email Tracking

Some emails that we send you have no tracking in at all e.g. service emails. Other emails we send we put in tracking so that we can tell how much traffic those emails send to our site e.g. our newsletter and occasional promotional updates. Some emails we can track, at an individual level, whether the user has opened and clicked on the email. We rarely use the latter information at a personal level, rather we use it to understand open and click rates on our emails to try and improve them. Sometimes we do use the personal information e.g. to re-email people who didn’t click the first time. If you want to be sure that none of your email activity is tracked, then you should opt out of Orbis Software Ltd. T/A Codeless Platforms emails.

Contact and Registration Forms

If you choose to send an enquiry on our site through the Contact Us or the Registration Form, or correspond with us in any electronic way, you will need to pass personal data to Orbis Software Ltd. T/A Codeless Platforms. This data will be used for the service you have requested together with related information campaigns about the service demanded.

Our Use of Your Information

We use personally identifiable information about you so that you can login and use Applications Platform and the Applications Platform Outlook Add-in and to improve our marketing and promotional efforts, to statistically analyse site usage, to improve and customise our content. We believe this allows us to improve our site and better tailor it to meet our users’ needs. Any of your Personal Information is stored in our databases.

We use your email address to send you newsletters or other communications (for example, product promotions). Out of respect for our users we offer an opt-out in every single email campaign that we send. You can find this link in the bottom of each email campaign.

The personal data we collect about you mayinclude information such as:

First Name
Last Name
Email Address
Your Address
Your Phone Number
Information about your computer (e.g. your IP address, geographical location and browser type)

We will process (collect, store and use) the information you provide in a manner compatible with the EU’s General Data Protection Regulation (GDPR). We will endeavor to keep your information accurate and up to date, and not keep it for longer than is necessary. We are required to retain information in accordance with the law such information is provided. How long certain kind of personal data should be kept may also be governed by specific business-sector requirements and agreed practices. Personal data may be held in addition to these periods depending on individual business needs.

At a specific level:

  • We use personally identifiable information about you to authenticate you to Applications Platform and the Applications Platform Outlook Add-in, send you important information and notifications regarding the operation of Applications Platform and the Applications Platform Outlook Add-in, your tenancy, improve our marketing and promotional efforts, to statistically analyse platform usage, to improve and customiseour content. We believe this allows us to improve our platform and better tailor it to meet our users’ needs. Any of your Personal Information is stored in our databases, our retention policies are outlined in this document.
  • We use your email address to send you newsletters or other communications (for example, product promotions, system notifications). Out of respect for our users we offer an opt-out in every single marketing and promotional campaign that we send. This does not include important notifications regarding the platform and your tenancy. You can find this link in the bottom of each email campaign.

Our Disclosure of Your Information

We do not sell or rent any personally identifiable information about you to any third party.

By way of example (without limiting the foregoing), we may be forced to disclose information to the government or third parties under certain circumstances, or third parties may unlawfully intercept or access transmissions or private communications. We can (and you authorise us to) disclose any information about you to law enforcement or other government officials as we, in our sole discretion, believe necessary or appropriate, in connection with an investigation of fraud, Intellectual Property Rights infringements, or other activity that is illegal or may expose us to legal liability.

Changes to Policy

This privacy policy does not cover the links within this site linking to other sites.

We may edit this policy from time to time. If we make any substantial changes, we will notify you by email. It is up to you whether you then continue to use Applications Platform following such changes. However, it is assumed that you accept such changes if you continue to use the site and services. If you do not accept such changes then you should stop using Applications Platform and the Applications Platform Outlook Add-in.

Contacting Us

If you have any concerns or enquiries regarding the handling of data and how we use it, then please contact our Data Protection Officer who will respond to your request. Email: dpo@codelessplatforms.com