Introduction

At iotopia, we are committed to protecting the privacy and security of the data collected through our platform. This Privacy Policy explains how we handle, store, and use the data collected via the Urban IQ Network Management Portal, in compliance with applicable laws and regulations.

We want to assure all users that while we process certain sensitive information, none of the data we collect is personally identifiable.

Scope

This Privacy Policy applies to all data collected, stored, and processed through Urban IQ, including:

• Network Monitoring and Alerting Data: Information on network performance and alerts, some of which may be sensitive.

• Managed Device Monitoring Data: Data from devices connected to the network managed via Urban IQ.

• Audience Measurement Data: Aggregated, anonymized crowd analytics, including gender and age demographics.

Data Collection and Usage

Types of Data Collected

Urban IQ collects the following types of information:

• Network Data: Metrics on network health, performance, and alert triggers.

• Device Data: Operational data from managed devices.

• Audience Analytics: Aggregated crowd data, such as estimated gender and age demographics, generated without identifying individuals.

Purpose of Data Collection

We collect this data to:

• Monitor and manage network performance effectively.

• Enable proactive issue detection and resolution through alerting.

• Provide audience insights to improve operational and business decisions.

Data Anonymization

All audience measurement data is aggregated and anonymized to ensure no personally identifiable information (PII) is collected or processed.

Data Storage and Security

Secure Data Storage

All data collected by Urban IQ is stored in secure databases hosted at the AWS Sydney Data Centre.

AWS provides industry-leading security standards to protect data at rest and in transit.

Security Measures

Urban IQ implements robust security measures to safeguard data, including:

•Data encryption (at rest and in transit).

•Secure access controls with Two-Factor Authentication (2FA).

•Regular security audits and compliance checks.

Retention Policy

We retain data only for as long as necessary to fulfill its purpose or comply with legal requirements.

Anonymized data may be retained longer for analytical purposes.

Data Separation and Customer Privacy

Urban IQ is a multi-tenant platform hosting multiple customers. We are deeply committed to ensuring data privacy and maintaining strict separation between customer environments.

Dedicated Connectivity

•Each customer’s network connectivity is established through dedicated Cloud Hosted Routers, ensuring a secure and isolated connection.

•No connectivity resources are shared between customers, which reduces the risk of cross-tenant data exposure.

Logical and Physical Data Separation

•Customer data is stored in separate logical data stores to prevent unauthorized access or overlap.

•We use advanced isolation mechanisms within our hosted environment to ensure robust tenant segregation.

Respect for Customer Privacy

•Urban IQ strictly adheres to privacy principles and applies rigorous measures to protect each customer’s sensitive data.

•Our platform is regularly tested to ensure compliance with best practices for data security and privacy in multi-tenant systems.

This commitment underscores our respect for customer data privacy and our dedication to maintaining trust.

Data Sharing

We do not sell or share data with third parties, except:

•When required by law or regulatory authorities.

•To trusted service providers who support our platform’s functionality (e.g., cloud hosting), under strict confidentiality agreements.

Audience measurement data is shared in aggregated formats only, ensuring no individuals can be identified.

Data Breach Notification

Urban IQ is committed to responding promptly and transparently in the event of a data breach. If a breach occurs, we will:

1. Contain the Breach: Immediately take steps to secure our systems and limit further exposure.

2. Assess the Impact: Evaluate the nature and scope of the breach, including any potential risks to the data we manage.

3. Notify Customers:

We will notify affected customers as soon as possible, providing clear details about the breach, including:

▪The nature of the breach.

▪The data affected.

▪ Actions we have taken to address the breach.

▪ Recommendations for mitigating risks (e.g., updating passwords, monitoring systems).

Notifications will be sent via email or other direct communication channels.

4. Report to Authorities: If required by law, we will notify relevant regulatory bodies, such as the

Office of the Australian Information Commissioner (OAIC).

5. Follow-Up Actions: Conduct a full investigation to identify the root cause and implement measures to prevent future breaches.

8. User Rights

While Urban IQ does not process personally identifiable data, we respect user rights and

transparency. Users and stakeholders can:

•Request information about how their data is handled.

•Report concerns regarding data security or privacy.

For inquiries or concerns, contact us at:

•Email: contact@iotopia.com.au

Compliance with Privacy Laws

Urban IQ complies with relevant privacy regulations, including the Australian Privacy Act. We are committed to maintaining the highest standards in handling sensitive and anonymized data.

Updates to This Policy

We may update this Privacy Policy to reflect changes in our platform or legal requirements. We’ll notify

users of significant updates and ensure continued transparency in our practices.