Simana is a data processor in the majority of situations.
Some privacy and data protection laws, including the GDPR and CCPA, distinguish between two primary roles when it comes to collecting and processing personal data: data controllers and data processors. Under the CCPA, these are referred to as businesses and service providers, respectively.
A data controller determines the means and purposes for processing personal data, while a data processor is a party that processes data on behalf of the controller.
Simana as a Processor
Where the Service is made available to you through an organisation (e.g. your employer, or an organisation you are working with), that organisation is the administrator of the Service and is responsible for the accounts over which it has control. In these cases, Simana is the processor of personal data (a provider that processes personal data on behalf of or at the direction of a controller, or other similar designation under the law) and our customer (usually a company or organisation) is the controller (the entity that decides how and why information is processed) of the information provided to Simana, via their use of Simana. Customer organisations are governed by the Simana [Customer Terms of Use].
Simana as a Controller
Where you are not provided access to Simana through your employer or another customer organisation, Simana is the controller of personal data. This includes users that are using Simana on a trial basis, are using any free-to-access versions of the software.