Page Comparison

2.1

Does APP organization entity providing the option of dealing anonymously or by pseudonym for the individuals?

No. Octopus BI don’t collect data to provide the service. Octopus BI clients provide the data required to carry out data analytics required by the client.

NA

Does APP organization entity ensure that, if applicable, individuals are made aware of their opportunity to deal anonymously or by pseudonym with the entity? (If anonymity or pseudonymity is the default setting, this does not apply)

No. Octopus BI don’t collect data to provide the service. Octopus BI clients provide the data required to carry out data analytics required by the client.

NA

Does APP organization entity required to collect personal data in order to deliver a service to a individual?

No. Octopus BI don’t collect data to provide the service. Octopus BI clients provide the data required to carry out data analytics required by the client.

FC

Does APP organization entity enable individuals to exercise greater control over their personal information and decide how much personal information will be shared or revealed to others?

Yes, on the website

FC

2.2

Does APP organization entity ensure that no more personal information collected than is required to facilitate the dealing with an individual?

Yes, on the website

FC

3.1, 3.2

Does APP entity only collect personal information which is reasonably necessary for one or more of the entity’s functions or activities?

YESYes. Octopus BI mainly collects PI from it’s clients for analytical purposes and the client has the authority to provide the PI information to Octopus BI. Octopus BI cannot directly contact the client.

FC

Collecting sensitive information

3.3

Does APP entity collects sensitive information? If yes, then APP entity express consent of the individual before you collect sensitive data?

YESYes. Octopus BI mainly collects sensitive PI from it’s clients for analytical purposes and the client has the authority to provide the PI information to Octopus BI. Octopus BI cannot directly contact the client.

FC

Does APP entity only collect sensitive information which is reasonably necessary for one or more of the entity’s functions or activities?

Octopus BI mainly collects sensitive PI from it’s clients for analytical purposes and the client has the authority to provide the PI information to Octopus BI. Octopus BI cannot directly contact the client.

FC

Collecting information from third parties

3.6

Does APP entity collects data from third parties? If Yes, Does entity considered whether it is unreasonable or impracticable to obtain the personal data directly from the individual?

YESYes. Octopus BI mainly collects PI from it’s clients for analytical purposes and the client has the authority to provide the PI information to Octopus BI. Octopus BI cannot directly contact the client.

FC

4.1

Does APP entity received any personal data that entity have not specifically requested from an individual?

Octopus BI will get personal data from a client. The client will have authority to provide that PI to Octopus BI. Octopus BI will not collect or distribute any personal data unless it’s provided or requested by our client.

FC

4.3

If APP entity have received any personal data from an individual that entity did not request, does entity have procedures in place to either destroy or deidentify the data?

YESYes. If requested by the client in writing.

FC

5.1

When APP entity collects personal information about an individual does take reasonable steps either to notify the individual of certain matters or to ensure the individual is aware of those matters

Education institute data: Octopus BI will always be guided by the direction given by the client with their PI. Octopus BI will not disclose any client data unless the client requests this in writing.

CRM marketing data: Octopus BI will not disclose any data to 3rd party companies ( Local or overseas). Octopus BI take the consent when a prospective client fills out a form to sign up for Octopus BI services.

3rd party application:

AWS/ Google GCP or any other 3rd party applications used by Octopus BI is covered by a similar laws as the APP.

FC

5.2

Does APP entity’s notification statement include following contents?

• APP entity’s identity and contact details

• The fact and circumstances of collection

• Whether the collection is required or authorised by law

• The purposes of collection

• The consequences if personal information is not collected

• The entity’s usual disclosures of personal information of the kind collected by the entity

• Whether the entity is likely to disclose personal information to overseas recipients, and if practicable, the countries where they are located

Currently Octopus BI working on this notification statement.

IP