CharterDesk Application Privacy Statement
1. Use of the Subscription Service
A. The SoHo Dragon Subscription Service
B. Use of data By Our Services
Our CharterDesk customers use the CharterDesk Application Subscription Service only to book meetings in their O365 environment. When customers use this Subscription Service, SoHo does not control or collect the content of actual booking meetings or collect any personal user data other than:
- Email address
- Number of floors related to the tenant subscription
- O365 Tenant ID
The CharterDesk functionality is controlled and saved in the user’s browser, NOT in SoHo’s hosted environment. Booking information is controlled by the user’s browser policies, disclosed, and protected by their organization’s O365 privacy policies in their environment.
2. How we Share Information we Collect
A. With Service Providers
We do not. This isn’t our business model
B. In accordance with Compelled Disclosure
We reserve the right to use or disclose your collected Personal Data if required by law or if we reasonably believe that use or disclosure is necessary to protect our rights.
(1) O365 Integration
By using the ‘O365 Integration’ with the CharterDesk will grant the SoHo access to the customer’s MS Graph API. There is no access to user passwords, server information, email metadata, or message bodies.
(2) Azure Integration
The is no integration with the customer Azure environment.
(3) Data Practices and Service Data
We do not automatically collect metrics and information about how Users interact with and use the Subscription Service.
3. Data Subject Requests
You may request the deletion of your email address or Subscription Service by sending a request here.
4. Data Retention
SoHo does not collect any booking data. User Data collected during your use of the Subscription Service is retained as long as you have a Paid Subscription and/or remain an active customer in our system. Your data is deleted upon your written request or after an established period following the termination of all customer agreements. In general, Customer Data is deleted after your paid Subscription ends and your portal becomes inactive.
5. How We Transfer Data We Collect Internationally?
We do not. This comes from your tenant MS Graph endpoint.
Privacy Shield Notice
With respect to personal data received or transferred pursuant to the Privacy Shield Framework, SoHo Dragon is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, SoHo Dragon may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. You may direct any inquiries or complaints related to our Privacy Shield compliance here.