Privacy policy for Esker Australia 

Date of publication: 03-19-2025

Esker is a global cloud platform built to unlock strategic value for Finance, Procurement and Customer Service professionals, and strengthen collaboration between companies by automating the cash conversion cycle. Respecting individual privacy, Esker values the trust of its customers, employees, users, and business partners. The company adheres to the highest ethical standards in its practices.

When you use our services, or communicate with our sales, marketing or support teams, you are sharing information with us. The purpose of this privacy policy (“Policy”) is to inform visitors and users of Esker’s websites about how we collect, use and protect your personal data, who we share it with, and your rights with regard to your personal data. This Privacy Policy applies to any Esker website for non-US users. For US users, the privacy policy is located here.

By interacting with Esker, you agree to the terms outlined below.

THE PERSONAL DATA WE COLLECT AND HOW WE COLLECT IT

At Esker, safeguarding your privacy is a fundamental commitment we uphold with utmost diligence and care. Personal data means any information that enables a person to be identified either directly or indirectly.

When you visit the Esker Websites, we collect the following types of personal data:

• Personal identity data (first and last names)

• Professional data (job title, department, company name)

• Contact data (phone and fax numbers, email address)

• Location data (IP address, home address, work address)

• Connection data (cookies) for visitors to our website, the conditions of which are defined in our cookies policy.

Personal Information is collected by Esker in various scenarios, particularly including:

• Creating a user account on the Esker Websites.

• Submitting employment applications to Esker Human Resources.

• Registering for webcasts.

• Completing information requests or document download forms on the Esker Websites.
• Participating in surveys, evaluations, promotions, contests, giveaways, or online chats.
• Submitting questions or comments to Esker.

• Signing a contract for Esker services.

• Subscribing to Esker’s blog.
• Attending conventions, trade shows, and expositions.

THE USE AND PURPOSES OF PROCESSING PERSONAL DATA

At Esker, we handle your personal data with care and transparency. We only use your personal data to carry out the processing for which it was collected, namely for:

• Creating your Esker account, allowing you to authenticate and access our services securely.

• Responding to your requests for information or documentation in connection with Esker, in particular financial communications and investor/shareholder relations.

• Conducting marketing activities, including issuing newsletters, product information, and event invitations.

• Processing your application if you apply for a position through our website as part of our recruitment campaigns.

• Sending information relative to your account and Esker products you or your company has purchased.

• Customizing and facilitating your navigation on Esker’s Websites.

• Maintaining and improving our website, we analyze usage patterns, troubleshoot issues, and optimize performance.

RESTRICTED ACCESS TO PERSONAL DATA AND LIMITED RETENTION OF PERSONAL DATA

Access to personal data is strictly reserved for Esker employees who require it for processing purposes. These employes may come from various department, including marketing and human resources. They are bound by strict confidentiality obligations and awareness protocols. Failure to meet this obligation can result in disciplinary action, up to and including dismissal.

We do not store personal data beyond the time necessary to fulfil the purpose(s) for which it was collected, in accordance with applicable legal and regulatory limits. In particular :

• Data collected from a form fill or a tradeshow is kept for 3 years, renewed each time you interact with Esker

• Data relating to a candidate is kept for 2 years

• Connection data (cookies) is kept for 1 year

• Data collected through the contract that you or your company has signed with Esker is kept for a period of 5 years from the end of the relationship

TRANSFER AND SHARING OF PERSONAL DATA

As part of our international operations, we may receive and transfer your personal data in countries outside the European Economic Area (EEA) while guaranteeing a high level of data protection.

Any transfer of your personal data outside the EEA is ensured by Esker through the signing of standard contractual clauses in order to protect your data in accordance with the requirements of European regulations, considered to be the most effective and protective tool in the world.

For the execution of certain processes, we may communicate the personal data we have collected with our subsidiaries, partners and suppliers for the purposes of providing Esker Services, administration and hosting of our IT systems, marketing and advertising our services. In this respect, we require them to comply with data transfer obligations.

SECURITY AND CONFIDENTIALITY OF PERSONAL DATA

Esker implements all the necessary security measures to protect personal data against unauthorized access, modification, disclosure or destruction. Additionally, all our employees are aware of and trained on this Policy.

We hold our partners and subsidiaries to maintain the same high standard of protection for your personal data as we do. Esker’s security measures are continuously evaluated and updated to meet new threats and challenges or new legal requirements in the countries where we operate.

YOUR RIGHTS REGARDING YOUR PERSONAL DATA

In accordance with applicable laws and regulations, your rights include: access, rectification, deletion, limitation, opposition, and filing a complaint to an independent regulatory body whose mission is to ensure that data privacy law is applied; and where applicable: portability, withdrawal of consent, and organization of your personal data in the event of death.

To exercise your rights, contact us at the following address: euprivacy@esker.com.

THOSE RESPONSIBLE FOR ESKER’S POLICY

Esker is committed to respecting and protecting personal data. To ensure the proper application of the rules defined for the security of personal data, Esker has designated:

• A Data Protection Officer (DPO) who ensures compliance with applicable data privacy regulations within Esker, oversees the teams during process implementation, provides assistance with requests related to the protection of personal data, informs and educates employees.

• A Chief Information Security Officer (CISO) who oversees the management of information security at Esker. This person assists teams with security topics and educates employees.

This Policy may be modified from time to time to conform to changes in technology, industry practices or to comply with regulatory requirements.