Dr. Pitt is a chat bot that makes working more enjoyable! It does so, by sending employees questions regarding their day-to-day work activities. These questions can be scheduled by the HR department of a customer in portal accessed through a web-application. In this application, the results of these questions are visualized as well. Furthermore, HR can upload company specific documents in this portal. Employees can ask Dr. Pitt questions about these documents.
What is the hosting environment or service model used to run your app?
Hybrid
Which hosting cloud providers does the app use?
Azure, Aws
Customer support contact.
info@dr-pitt.com
Questions
Questions or updates to any of the information you see here? Contact us!
How the app handles data
This information has been provided by Intense B.V. about how this app collects and stores organizational data and the control that your organization will have over the data the app collects.
Information
Response
Does the app or underlying infrastructure process any data relating to a Microsoft customer or their device?
Yes
What data is processed by your app?
tenantID, userID, username, useremail
Does the app support TLS 1.1 or higher?
Yes
Does the app or underlying infrastructure store any Microsoft customer data?
Yes
What data is stored in your databases?
Questions asked by the chatbot, and answered by the end user. Questions asked by the end user, and answered by the Chatbot. Furtermore, the userID is anonimized using encryption. The encryption key is stored in Azure Key Vault. The key to decrypt is not stored.
If underlying infastructure processes or stores Microsoft customer data, where is this data geographically stored?
Sweden
Do you have an established data rentention and disposal process?
Yes
How long is data retained after account termination?
Less than 30days
Do you have an established data access management process?
Yes
Do you transfer customer data or customer content to third parties or sub-processors?
Yes
Do you have data sharing agreements in place with any third party service you share Microsoft customer data with?
No
Questions
Questions or updates to any of the information you see here? Contact us!
Does the app perform automated decision making, including profiling that could have a legal effect or similar impact?
No
Does the app process customer data for a secondary purpose not described in the privacy notice (i.e. marketing, analytics)?
No
Do you process special categories of sensitive data (i.e. racial or ethnic origin, political opinion, religious or philosophical beliefs, genetic or biometric data, health data) or categories of data subject to breach notification laws?
Yes
Does the app collect or process data from minors (i.e., individuals under the age of 16)?
No
Does the app have capabilities to delete an individual's personal data upon request?
Yes
Does the app have capabilities to restrict or limit the processing of an individual's personal data upon request?
N/A
Does the app provide individuals the ability to correct or update their personal data?
No
Are regular data security and privacy reviews performed (for example, Data Protection Impact Assessments or privacy risk assessments) to identify risks related to the processing of personal data for the app?
Yes
Questions
Questions or updates to any of the information you see here? Contact us!
Information
Response
Does your application integrate with Microsoft identity platform (Microsoft Entra ID) for single-sign on, API access, etc.?
No
Does your app support Continuous Access Evaluation (CAE)
N/A
Does your app store any credentials in code?
No
Apps and add-ins for Microsoft 365 might use additional Microsoft APIs outside of Microsoft Graph. Does your app or add-in use additional Microsoft APIs?
No
This application does not use Microsoft Graph.
This application does not have Additional APIs.
Questions
Questions or updates to any of the information you see here? Contact us!