Let’s Talk
Let’s Talk

Privacy Policy

Entity: AVA Software Inc., Blue Bell, Pennsylvania, USA (“AVASOFT,” “we,” “us,” or “our”)
1. Purpose of This Policy
  • This Privacy Policy explains how AVASOFT collects, uses, stores, shares, and protects personal and organizational information obtained through our websites, products, professional services, and Microsoft Cloud Solution Provider (CSP) operations.
  • By accessing or using any AVASOFT service, you agree to this Privacy Policy.
2. Scope
  • This Policy applies to:
  • Visitors of avasoft.com and related sub-domains.
  • Customers of AVASOFT CSP, managed services, or software solutions (including AVAHub, AVAMIGRATRON, SuperDesk, SuperDoc, CloudGen, and others).
  • Users whose data AVASOFT processes while providing technical, licensing, or support services.
3. Information We Collect
  • We collect information in the following categories:
  • 3.1 Information You Provide Directly
  • Contact details (name, email address, phone number, company, role)
  • Billing and payment information (when applicable)
  • Support requests and communications
  • Login credentials or tenant information necessary to deliver services
  • 3.2 Information Collected Automatically
  • IP address, browser type, device data, operating system
  • Usage logs and activity within AVASOFT platforms (e.g., AVAHub portal)
  • Cookies and similar technologies to improve user experience
  • 3.3 Information Received from Third Parties
  • Microsoft and other technology partners for license provisioning and tenant management
  • Authorized resellers or distributors (e.g., Lenovo, AppXite) for CSP transactions
  • Credit agencies or business verification providers for contract onboarding
4. How We Use Information
  • AVASOFT uses collected information to:
  • Provision and manage Microsoft subscriptions and cloud licenses.
  • Deliver technical support and customer success services.
  • Operate and enhance our products and websites.
  • Communicate with customers about renewals, billing, and updates.
  • Comply with legal and regulatory requirements.
  • Conduct security and fraud prevention activities.
5. Legal Basis for Processing
  • Where required by law (e.g., GDPR), AVASOFT relies on the following legal bases:
  • Performance of a contract (when delivering CSP services)
  • Legitimate interest (for security and service improvement)
  • Legal obligation (for tax, audit, and compliance records)
  • Consent (for marketing communications where applicable)
6. Data Sharing and Disclosure
  • AVASOFT may share information only as follows:
  • With Microsoft and its affiliates to provision or support cloud services under the Customer’s tenant.
  • With authorized distributors to fulfill CSP orders where required by Microsoft’s program structure.
  • With sub-processors providing infrastructure, billing, security, or analytics services bound by confidentiality agreements.
  • When legally required to respond to lawful requests by public authorities.
  • In connection with a business transfer (merger, acquisition, or sale of assets).
  • AVASOFT does not sell, rent, or lease personal data to third parties.
7. Data Retention
  • We retain information only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal, contractual, and audit requirements. Retention periods vary depending on service type and regulatory obligations.
8. Data Security
  • We apply administrative, technical, and physical controls to protect information against unauthorized access, loss, or misuse.
  • Security measures include encryption, access management, multi-factor authentication, and continuous monitoring of our cloud infrastructure.
  • While we strive for best-in-class security, no system can be completely secure, and AVASOFT cannot guarantee absolute protection.
9. International Data Transfers
  • As a global organization, AVASOFT may transfer and store data in secure data centers within and outside the United States. We ensure appropriate safeguards (such as Standard Contractual Clauses) are in place when transferring personal data internationally.
10. Cookies and Tracking
  • We use cookies and tracking tools to enhance functionality, analyze traffic, and personalize content. Users can control cookie preferences via browser settings.
  • For details, see our Cookie Notice (if published separately).
11. Your Rights
  • Depending on your location and applicable law, you may have the right to:
  • Access and receive a copy of your data.
  • Correct inaccurate information.
  • Request deletion of your data where legally permissible.
  • Restrict or object to processing.
  • Withdraw consent for marketing communications.
  • Requests can be sent to privacy@avasoft.com We respond within applicable legal timeframes.
12. Children’s Privacy
  • AVASOFT does not knowingly collect personal information from children under 13 years of age. If we learn that we have inadvertently collected such information, we will delete it promptly.
13. Third-Party Links
  • Our websites may contain links to external sites not operated by AVASOFT. We are not responsible for the privacy practices of those third parties and encourage you to review their policies before interacting with them.

14. Data Protection Officer and Contact

  • For privacy-related inquiries, data requests, or complaints, contact:
15. Policy Updates
  • We may update this Privacy Policy from time to time to reflect changes in law or business operations. The latest version will always be available at https://www.avasoft.com/privacy-policy.
  • Continued use of our services after updates constitutes your acceptance of the revised Policy.
16. Governing Law
  • This Policy and any disputes arising from it are governed by the laws of the Commonwealth of Pennsylvania, USA.