Privacy Policy

Last updated: July 24, 2025

Say=Do Technologies

Solve - Internal Relationship Management

Privacy Policy

Last updated: July 24, 2025

Introduction

Welcome to the Solve system ("the System") of Say Do Technologies Ltd. ("the Company").

The use of the System is subject to the terms of use of the System and this privacy policy which is part of them.

Please read this privacy policy and the terms of use of the System carefully before using it, as they constitute a binding contract between you and the Company and your use of the System indicates your agreement to them.

Please also return and read them from time to time because their terms may change (we will take care to update in the header of this privacy policy and terms of use the date of the last update made to them).

If you do not agree to the terms of this privacy policy, you must refrain from any use of the System.

Provision and Collection of Personal Information

System Access

Access to the System is made through user accounts.

User accounts are allocated by the organization in which the users work:

An administrative user on behalf of the organization that contracted with the Company ("administrative user") is the one who determines (according to the number of licenses purchased by the organization) which user accounts will be established, the organizational affiliation and the usage permissions of each user.

Deletion, addition or modification of user permissions are made by an administrative user, through management tools in the System or by providing instructions to the Company.

For the purpose of establishing an account, the organization provides the Company with first and last name, email address, mobile phone number, department, sub-department, position and direct manager.

Users can, if they so wish, upload a photo to their personal profile in the System.

The administrative user has access permissions that allow them to see system access and usage made by users in the System, without the ability to see the content of the usage, unless the user shared the content with the administrative user.

A user who has been defined (by the administrative user) as the direct manager of other users has the ability to see actions performed by users for whom they are defined as the direct manager.

The Company does not track users and monitors content that users upload to the System.

The Company collects information regarding the use of the System in an aggregate or statistical manner (without identifying information) for the purpose of operating and improving the System.

The Company collects information regarding access and access attempts to the System and use of the System for security purposes and enforcement of terms of use.

Information Security

The Company implements physical, logical, organizational and technical security measures that are industry standard to prevent unauthorized access, misuse, loss or alteration of information.

Including but not limited to: access controls and permissions, communication encryption (TLS), event monitoring, backups, periodic penetration tests, password policies and more.

Despite our efforts, no system is completely immune. In the event of a serious security incident that includes a real risk to your privacy, we will act in accordance with the law and update the organization/users as required.

Note: The Company is not currently certified according to ISO 27001 standard, and the absence of this certification does not detract from the security efforts we implement in practice.

Information Coverage of This Policy

This policy applies to all use of the system (application, browser, API interfaces, management systems) as well as support inquiries, mailing or other communication with us.

This policy does not apply to the organization's privacy policy, or to third-party systems/services that the organization operates and integrates itself (such as HR systems, BI tools, etc.).

Use of Information

The Company will use the information held by it for the following purposes:

Provision of the System.

Responding to user inquiries, including administrative users and representatives of the organization that contracted with it for use of the System.

For statistical and other uses that are not identified with you (such as: improving the System, adding content and tools, changes, etc.).

Compliance with the provisions of law, regulations and regulation.

Managing legal proceedings and clarifying matters, claims and demands that may lead to legal proceedings.

Prevention of fraud, prevention of bodily harm or property damage.

Security, prevention, clarification and dealing with security incidents and cyber incidents.

Provision of Information to Company Suppliers for the Purpose of Service Provision and Information Transfer

Provision of information to the Company's suppliers or companies related to the Company will be done solely for the purpose of providing the System and while those parties are obligated to maintain confidentiality and use the information only for the purpose of providing the services.

Information Transfer

The Company does not sell or rent personal information to third parties.

The Company will not transfer personal information to third parties without the consent of the data subjects, except in the cases detailed below:

In accordance with the instructions of the administrative user.

Compliance with legal requirements (law including regulatory provisions and guidelines).

Compliance with a judicial order, instruction or order from a competent authority.

In the framework of reorganization, sale of shares or investment activity in the Company and in proximity to contracting for any of the aforementioned purposes.

For the purpose of legal or administrative proceedings.

Insofar as the Company believes that disclosure may help prevent harm to you or others.

To parent companies, subsidiaries, companies related to the Company in the framework of merger or reorganization of the Company's activities and related companies.

Review, Correction and Objection

Requests for review of information, its correction or deletion should be made to the administrative user or the organization's representative.

Since the Company holds personal information on behalf of the organization for the purpose of providing the System to its users, the Company will act, in response to requests for review, correction or deletion of information, in accordance with the instructions of the administrative user.

Policy Changes

We may update this policy from time to time. In case of a material change, we will publish a prominent notice in the application or by registered email. Continued use of the service after the change takes effect will constitute agreement to the updated policy.

Children and Minors

The service is not intended for children under the age of 13, and we do not intend to knowingly collect information from children of this age.

If we learn that we have collected information from a child under the age of 13 without the required parental/guardian consent - we will delete it as soon as possible. Contact us if you believe such a case has occurred.

Ownership Changes and Reorganization

In the event of a merger, acquisition, sale of assets or change of control of the company, personal information may be transferred to the new entity, subject to its commitment to continue to maintain the terms of this policy or more stringent terms.

Documentation and Previous Versions

We will keep documentation of previous policy versions and make them available to the organization upon request.

In case of a contradiction between an English version and a Hebrew version - the Hebrew version is binding (unless otherwise agreed in writing with the organization).

Contact Information

For questions, requests or complaints regarding privacy matters, you can contact us by email admin@solve4.org. We will respond as soon as possible and no later than the timeframe stipulated by law.