INCO is a contact management and distribution service and its core functionality is distributing customer company's internal contact list to authorized employees. However, INCO does not use the contact information itself in any other way except for distributing contacts to authorized company employees. ALL communication is encrypted using HTTPS, no user passwords are stored in either INCO service nor user's device.
Contact information (the list of contacts and data associated with contacts) is controlled by customer company via service configuration. Access to contact information is also controlled by customer company as employees authenticate with their Windows domain accounts.
If an application crash occurs, we will log username, device information and IP address of the device for the sole purpose of crash analytics with the goal of improving our service by finding and fixing the cause of the crash.
If an unsuccessful login attemp occurs, we will log username which was entered and IP address for the purpose of security incident monitoring, this is primarily ment for customer's IT security staff.