SUMMARY OF SITECORE'S PRIVACY POLICY AND WHAT WE'VE UPDATED


At Sitecore, we understand the value of data and the importance of protecting it.

With last year's implementation of General Data Protection Regulation (GDPR), the upcoming California Consumer Privacy Act (CCPA) and many other privacy laws being billed or discussed across the globe, maintaining robust data governance practices is critical to our customers and Sitecore. With these updates in data protection and privacy laws, as well as some changes to our business, we have updated our Privacy Policy here to address these changes. We want to be transparent about the information we collect, and how we process, store and share it, both online and offline.

And, as much as our Privacy Team enjoys reading privacy policies, we know that most people don’t. But we do want you to understand what these changes mean for you, so here’s a summary of what this Privacy Policy covers, and the recent updates we have made, and where you can get further information if you would like it.


What the Privacy Policy covers

  • How Your Information is collected
  • How we use Your Information and why
  • Who we share Your Information with and why
  • How we transfer information across borders
  • Your privacy rights
  • How we keep Your Information secure
  • How you can contact us with any questions

The changes we have made

  • Legal changes – We have updated this version of the Privacy Policy to reflect changes in privacy laws, including the California Consumer Privacy Act (CCPA).
  • More choices and expanded rights– We have included new privacy rights that may be applicable in your jurisdiction, but we have also included more detail on how you can make informed choices and disable features that you may not want.
  • Additional details – So you can understand who you are sharing your information with and why, we explain who Sitecore is and what our company uses data for.
  • Security - More detail on the security measures we utilize to keep your data secure.
  • Simplified – Our Privacy Policy is lengthy and detailed because we want to make sure that we are transparent about what we do. But we also want this to be easy to navigate and read. We have therefore included summary text at the top of each section to make it easier to find what you are looking for.

What we have not changed

While we have made a number of revisions and updates to the Privacy Policy, there are a few things we have not changed.

  • We have not changed our commitment to your privacy –We want you to be able to make informed choices that enable you to direct the use of your own information.
  • We have not changed the way that we collect information about you – But we have increased our transparency at each point of collection of personal information and provided more details in our Privacy Policy about our internal processes.
  • We do not rent or sell your data – We only share your data with third parties, such as vendors, service providers or partners, when we need to do so to enhance your experience of our product and services. These third parties will only have access to personal information if it is necessary for them to complete their service supporting our efforts and will be contractually required to keep it secure.
  • Terms of Use and Cookie Policies still apply – Other terms that we refer to in our Privacy Policy continue to apply.

Your trust is important to us so if you have any questions or comments, we’d like to hear from you. Please reach out to us.

For further information, please visit the Sitecore Trust Center FAQ.

 

 

SITECORE PRIVACY POLICY

EFFECTIVE DATE: January 1, 2020

SITECORE AND YOU

At Sitecore, we understand the value of data and the importance of protecting it. This Sitecore Privacy Policy ("Privacy Policy") sets out details about the information that we collect, and how we process, store and share it, both online and offline.

We urge you to read this Privacy Policy so you can understand Sitecore’s use of your information, Sitecore’s commitment to protecting all data that it receives and how you can be involved in this process. However, if this does not answer all of your questions, or if you have any feedback, we'd like to hear from you here.

This Privacy Policy should be read alongside the Sitecore Terms of Use ("Terms") and the Sitecore Cookie Policy ("Cookie Policy") which are both incorporated here by reference. Unless otherwise defined in this Privacy Policy, defined terms used have the same meaning as in the Terms.

 

WHAT THIS PRIVACY POLICY COVERS

This Privacy Policy is separated into the following sections to help you easily find the information you are looking.

  1. Who We Are: This section details the Sitecore entities, subsidiaries and affiliates governed by this Privacy Policy and how information is shared internally at Sitecore.
  2. How we Process and Handle Data: This section gives general information on how we handle data, including information we receive from you.
  3. Sitecore Websites: This section describes the type of data collected from the Sitecore Sites.
  4. Marketing Activities: This section explains that from time to time, Sitecore will reach out to you in a variety of ways to tell you about products, services and other information we believe is relevant to you.
  5. Our Customer Relationships: This section describes the type of data collected through the services that we provide to our customers and users. In order to use certain services, including our product support services, as a representative of an organization which is a Sitecore customer you might need to have a user account and password.
  6. Processing Your Personal Information: This section details the lawful basis on which we process the information we collect.
  7. How We Keep Your Information Secure: This section details how Sitecore secures the data that it collects, processes and stores.
  8. Storage and Retention of Your Information: This section explains how Sitecore stores data and how long we will keep it.
  9. Cross-Border Transfers of Information and the Privacy Shield: Sitecore is a global company so this section explains how we transfer data that is shared internationally.
  10. What is Not Covered in This Policy: This section identifies the areas that are outside the scope of this Privacy Policy and are addressed in other Sitecore policies.
  11. Your Privacy Rights: This section outlines how you may exercise any rights you may have under the applicable law of your jurisdiction.
  12. Updates and How to Contact Us: This section outlines how we communicate changes to this Privacy Policy, as well as how you may contact us regarding any questions or issues with respect to anything contained within this Privacy Policy, including how to initiate a complaint or dispute about how your information is being processed or handled by Sitecore.

SECTION 1. WHO WE ARE

In this Privacy Policy, the words “our,” “us,” “we,” and “Sitecore” refer to Sitecore Holding II A/S, a Danish limited liability company (CVR. No. 37624071) and our subsidiaries and affiliate entities worldwide, including Stylelabs, Inc. and Hedgehog Development LLC. Sitecore is a global leader in experience management software tools that combine content management, commerce, and customer insights. Sitecore products are used to empower marketers to deliver personalized content in real time and at scale across every channel in the consumer lifecycle.

We collect and use information about our web site visitors (Section 3) and those that interact with our products and services (Sections 4 and 5) in order to manage your relationship with Sitecore and to better serve you by personalizing your experience and how you connect with us.

 

SECTION 2. HOW WE PROCESS AND HANDLE DATA

The information we collect from you depends on the nature of your relationship with us or your interaction with Sitecore’s products, services, websites and marketing events and communications. The information we collect from You (“Your Information”) may include both Personal Information and Other Information, as detailed below.

Personal Information. “Personal Information” follows the definitions under applicable law and includes “Personal Data", such as contact and business information (such as name, title, email address), account information, license information, payment information, information from third parties, social media data and any other unique identifying information. For a detailed understanding, please see Your Information.

Other Information. For the purposes of this Privacy Policy, “Other Information” is any information that does not independently reveal your specific identity or does not directly relate to an identifiable individual. Examples include an IP address, browser type, browser language, browsing data, device information, time and date of requests, login activity and cookies. Gathering this information helps us to ensure that our websites and other services work correctly and support our visitor and customer analysis.

Cookies and Similar Technologies. As further described in our Cookie Policy, cookies are small text files containing information that is sent to us from your computer or mobile device. They are unique to your account or browser. We use cookies and similar technologies (such as web beacons, device identifiers, pixels and ad tags) to recognize you and track your activity across different Sitecore services and devices. We use cookies to collect information about the way that visitors use Sitecore Sites, to support the features and functionality of those Sites, and to personalize your experience when you use them. We use pixel tags and cookies so that we can determine interest in particular topics on our Site and improve the effectiveness of our communications.

You can control cookies and other technologies in your browser settings. You can also disable or block the use of cookies and similar technologies that track your behavior on the websites of others for third party advertising.

In some instances, we may combine Other Information with Personal Information, such as deriving geographical location from your IP address and combining website browsing data about your usage of the Sitecore services with your name. If we combine Other Information with Personal Information, we will treat the combined information as Personal Information.

You are not required to share the Personal Information that we request. However, if you choose not to share such information, in some cases we might not be able to provide you with the Sitecore services, allow you to access certain specialized features of the Sitecore services or be able to effectively respond to any queries you may have.

Sitecore will never collect more of your Personal Information than is necessary for the intended purpose of processing that information. Some of the uses of Personal Information listed in sections 2, 3 and 4 may not be mandatory and can be controlled by you.

Please see the Your Privacy Rights section below to learn more about how you can control the information Sitecore processes about you.

 

SECTION 3: SITECORE WEBSITES

Sitecore maintains control of the data provided to, collected by or for, or processed in connection to the Sitecore Sites, as defined in the Terms. We gather information about visitors to both our password-protected websites and our various publicly accessible websites, including the Sitecore.com website, various Sitecore blogs, event pages and other websites where this Privacy Policy is posted.

Details of the information we collect through our Sites, and how we process it, are below:

Information you provide to us. We may collect identifiers and Personal Information about you, for example, when you request a free trial or demo or contact us via our Sites, through our websites, online forms, online chat and Email. When you communicate with Sitecore, we will store all communications we receive unless otherwise requested by you. If you are submitting information on behalf of another individual, you are responsible for obtaining appropriate consent, including consent to share and transfer any Personal Information across borders.

Information we collect automatically. We may collect internet or other electronic network activity, geolocation data and draw inferences based on the information collected to personalize your experience with the Sites.

  • Log data. As with most internet technology services, our servers automatically collect information when you access or use our Sites and record it in log files. This log may include IP address, usage data, browser type, the date and time the Site was accessed, and language preferences cookies (if enabled).
  • Device Information. Sitecore collects data about devices accessing the Sites, which may include the type of device, device settings, application IDs, and unique identifiers. Whether we collect any or all of this information will depend on the type of device used and how it has been configured by you.
  • Location Information. We receive data from you and other third parties that helps us to track an approximate device location. We may use, for example, an IP address detected by your browser or device to determine device location. We may also collect information from devices in accordance with the consent process provided by your device.
  • Third Parties. We use and permit select third parties to use automatic data collection tools to collect information using website tracking technologies such as cookies, web beacons, embedded URS, pixels, widgets, buttons or other similar technologies. These can be disabled by you.

How we use that data. We may use the information collected for the following purposes:

  • To improve the operation of the Sites
  • To engage in research and development of the Sites and Sitecore’s product offerings
  • To conduct ordinary business operations such as sales, marketing, support, education and training
  • To engage in corporate reporting and management
  • To recruit employees for Sitecore
  • To conduct market research
  • To maintain a safe and trusted environment for Sitecore employees, customers, Site visitors and members of the public
  • To conduct other similar uses pertaining to the Sitecore Sites.

How we share that data. We may share the information collected for the following purposes:

  • Sharing with Sitecore Affiliates. We may share your information with our Sitecore entities worldwide for the purposes described in this Privacy Policy. As part of our company, our Sitecore entities are subject to this Privacy Policy, and our internal privacy policies and data protection requirements are regularly communicated to all of our employees as part of our mandatory compliance training.
  • Sharing with third party service providers. We retain third party service providers to manage or support certain aspects of our business. These third party service providers may be located globally and may provide services to us such as website hosting, data analysis, advertising and marketing services, data hosting, live-chat and helpdesk services, providing information technology infrastructure, customer service, email delivery, credit card processing, auditing and other similar services. Our third party service providers are contractually bound to safeguard any Personal Information they receive from us and they are prohibited from using such Personal Information for any purpose other than to perform the services as instructed by Sitecore.
  • Sharing with ad technology providers. We may provide information we collect to ad technology providers so that they may recognize your devices and deliver interest-based content to you. The information may include your name, postal address, email, device ID, or other identifier in encrypted form. The providers may process the information in hashed or anonymized form. These providers may collect additional information from you, such as your IP address and information about your browser or operating system; may combine information about you with information from other companies in data sharing cooperatives in which we participate; and may place or recognize their own unique cookie on your browser. These cookies may contain demographic or other data in an anonymized form. Additionally, we allow direct advertisers and other third parties (such as select retail partners) to place cookies on our Sites to allow them to show you advertisements both on and off the Sitecore Sites. We may use remarketing tags (e.g., Google, DoubleClick, Twitter) to allow our partners to advertise products which you have browsed on our site. However, we do not share any information with these advertisers and third parties that will directly identify you. By clicking on those advertisements, you are communicating with those advertisers and other third parties directly (including the ad networks, ad-serving companies, and other service providers they may in turn use).
  • Engaging in corporate transactions. Circumstances may arise where we may buy or sell assets or businesses as part of a sale, merger or change in control of Sitecore. In such transactions, we may disclose or transfer your information, in accordance with this Privacy Policy, to prospective or actual purchasers or receive your information from sellers. Any entity which buys us or part of our business will have the right to continue to use the information we have collected and stored, but only in the manner set out in this Privacy Policy.
  • Complying with law / protecting legal rights. We may be required to disclose your information to comply with applicable laws (including laws outside of your country of residence), regulations, court orders, government and law enforcement requests, including national security or other law enforcement requirements. Additionally, if we reasonably believe that it is necessary or appropriate, we reserve the right to use or disclose your information to allow us to pursue available claims or remedies and protect our legal rights, property or the safety of our employees, users or others, to the extent allowed by applicable law. This includes exchanging information with companies and organizations for the purposes of fraud detection.

 

SECTION 4: MARKETING ACTIVITIES

Sitecore maintains control of the data provided to, or collected by or for, or processed in connection with certain marketing activities, such as email communications, webinars, conferences and events. We and our third party service providers may collect information in the following ways:

Details of the information we collect through our marketing activities, and how we process it, are below:

Information you provide to us. In addition to information submitted to Sitecore through our Sites, for example when you register for a webinar, subscribe to our email newsletter or download content (such as Sitecore whitepapers), we may also collect information from you offline, such as when you attend our events in person or during phone calls with sales representatives. This may include identifiers and contact information, Personal Information, professional or employment-related information, internet or other electronic network activity information, and any inferences which may be drawn from the above information.

Information we acquire from a third party. To enhance Sitecore's ability to provide relevant marketing, offers, and services to you, we may receive information about you from third parties, such as public databases, partners, lead generation services, and social media platforms. We also collect information from other sources to help us correct or supplement our records such as customer enrichment services, improve the quality or personalization of our services to you and to verify your identification in instances of suspected fraud or identity theft. This may include identifiers and contact information, Personal Information, professional or employment-related information, internet or other electronic network activity information, and any inferences which may be drawn from the above information. In each instance we will only accept information from third parties where those third parties can demonstrate they have received all necessary consents to share such information with us.

How we use that data. We may use information that is collected through our marketing activities in the same way we use information collected through our Sites, as well as for the following purposes:

  • To verify your identity if required (for example, for payment of a ticket to a Sitecore event)
  • To tailor marketing to your interests, or to recommend products and services that may be of interest to you
  • To contact you with business, marketing and sales communications that you have agreed to receive such as newsletters, announcements, and special offers
  • To contact you to notify you of upcoming events that you have registered for (via email, text message or other communication channel where you have agreed to receive notifications)
  • To update and improve Sitecore services and product offerings
  • To engage in corporate reporting and management
  • To conduct market research
  • To conduct other similar uses pertaining to the Sitecore’s Marketing Activities

How we share that data. We may share information that is collected through our marketing activities in the same way we share information collected through our Sites, as well as for the following purposes:

  • Communicating with you regarding a Sitecore Event. We or our partners may communicate with you about events hosted or co-sponsored by Sitecore or one or more of our partners. These communications may include information about the event's content, logistics, payment, updates, or requests for additional information related to your event registration. After the event, Sitecore may contact you about the event and our related products and services and may share information about your attendance with other third parties. Sitecore may also share your information with designated event sponsors or partners who may then send you communications related to your event attendance.
    Please note that, during events, our partners or conference sponsors may directly request that you provide them with information about you at their conference booths or presentations. You should review their privacy policies to learn how they use information they collect. Each event may include additional privacy protection practices and terms unique to that event, included in attendee guidebooks, the event website or sponsorship agreements.
  • Engaging in advertising. We may provide you with personalized promotional offers (in accordance with your privacy preferences regarding Sitecore services and other selected partner websites). For example, you might see an advertisement on a partner site for a product that you have recently viewed on a Sitecore Site. This may involve the use of cookies. We also partner with third parties to display advertising within the Sitecore services and we contract with service providers to place advertisements on websites owned by third parties. Sometimes this will be achieved by sharing your Personal Information as described in the Cookie Policy.

 

SECTION 5: OUR CUSTOMER RELATIONSHIPS

Sitecore provides direct training and technical support through our existing customer relationships, as well as educational and marketing services to certain partners and prospective customers through secure, password-protected portals. In these relationships, where the data is still controlled by you (the customer, partner, prospective customer), Sitecore is a processor. Sitecore collects, processes and stores information throughout these processes, as follows:

What data we collect and how we collect it. Information customers and certain users provide directly through password protected portals. We collect data as registration details from you when an account is set up. We will collect the data that you share with Sitecore in the product, as based on your organization’s configuration of the Sitecore product. We also collect data through customer and product support portals when a helpdesk ticket is submitted. As part of the product support process, customers must consent to the processing and transfer by our support team of the data they submit, including any of the customer’s end user data they may submit in the support process. This may include identifiers and contact information, Personal Information, professional or employment-related information, internet or other electronic network activity information, commercial information and any inferences drawn from the above information.

Information collected automatically. We may automatically collect information through our services in the same way we automatically collect information through our Sites.

Anonymized, aggregated data. In addition to the information you provide to us and which we collect automatically, Sitecore also collects anonymous and aggregated information about how Sitecore's services are used, to better design and operate our Sites. As part of our operations we might also anonymize or pseudonymize your information for regulatory compliance, market analysis and other Sitecore business purposes.

How we use that data. Sitecore collects and uses customer information as necessary for the adequate performance of the contract between you as a customer and Sitecore, and in accordance with any instructions received and the applicable contract terms. We use customer, partner and prospective customer information collected through our password-protected portals in a number of ways.

Using account generated data. Sitecore will use account generated data in furtherance of our legitimate interests in operating the Sitecore Sites. We may use information that is collected through our customer relationships in the same way we use information collected through our Sites and Marketing Activities, as well as for the following purposes:

  • To verify your identity if required (for example, for security reasons to gain access to an account)
  • To prevent fraudulent activities, such as fraudulent purchases
  • To monitor use of the product to ensure compliance with Sitecore’s Terms of Use
  • To provide customer support services, problem solution support and enhancing your customer experience – we use the data (which can include communications with Sitecore employees through our Customer Success team) to investigate, respond to and resolve complaints and service issues
  • To monitor license compliance
  • To provide transaction support, including fulfilment of purchased licenses and to communicate with you about those requests
  • To provide notification of bug fixes and security patches
  • To personalize service offerings and advertise to you any products which may be relevant and of interest
  • To review and respond to queries or feedback that you may provide to us
  • Credit Card information using third party processors for purchased training/events
  • To monitor calls for training and providing support purposes
  • To conduct other similar uses pertaining to our relationships with Sitecore’s customers.

How we share that data. We may share information that is collected through our customer relationships in the same way we share information collected through our Sites, as well as for the following purposes:

  • Sharing with Sitecore partners. Sitecore regularly engages third party technology and implementation partners for joint sales or product promotions. Such activities will always reference the partners involved. We contract with our partners for these activities and our partners may have access to your Personal Information, and either Sitecore or our partners may use that information to provide you with sales or product promotion information, further subject to such partners’ own privacy policies.

 

SECTION 6. PROCESSING YOUR PERSONAL INFORMATION

We will only collect and process your Personal Information in the ways described in this Privacy Policy when we have a reason to do so. In accordance with applicable laws, Sitecore relies on the following reasons for processing Personal Information:

  • Consent (where you have given consent). We process certain Personal Information based on the consent you provided when you submitted your information. Where we rely on your consent, you have the right to withdraw or decline your consent at any time, such as consenting to receive marketing communications.
  • Contract (where processing is necessary for the performance of a contract with you, i.e. to deliver the Sitecore product or services you or your organization have purchased). When information is processed under contract, you are able to terminate the contract at any time and request that information be returned to you and/or deleted.
  • Legitimate interests of Sitecore or any third parties (where we rely on legitimate interests, you have the right to object at any time). Legitimate interests include enabling us to conduct internal business services, such as audits, mergers and acquisitions, reporting, and improving our products and services. Personal Information will only be processed on these grounds when doing so does not outweigh your rights.
  • Compliance with laws (where we are required to process information to comply with applicable laws). If we ask you to provide Personal Information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your Personal Information is mandatory or not (as well as the possible consequences if you do not provide your information).

 

SECTION 7. HOW WE KEEP YOUR INFORMATION SECURE

We have implemented and maintain technical, administrative and physical security measures designed to protect Your Information from unauthorized access, disclosure, misuse, alteration, accidental loss or destruction. To demonstrate our commitment to protecting Your Information, Sitecore maintains a number of compliance certifications in accordance with strict regulatory and industry standards. To learn more about current practices and policies regarding security and confidentiality of the Services, please visit our Trust Center.

We regularly review our security procedures to maintain the confidentiality, integrity, availability and resilience of all data both online and offline. These security procedures and measures vary based on the sensitivity of the information that we collect, process and store and the current state of technology but include firewalls, data encryption, physical access controls and information access authorization controls. We take steps to regularly monitor our systems for vulnerabilities and to ensure that we only share information with those who need to know it.

However, no website or internet transmission is completely secure. While we strive to protect your data, we cannot guarantee that unauthorized access, hacking, data loss or a data breach will never occur, and we cannot warrant the security of any information that you provide to us. You are responsible for securing and maintaining the privacy of any password(s) and account registration information uses with Sitecore and verifying that the information we maintain about you is accurate and current. We are not responsible for protecting any information that we share with a third party based on an account connection that you have authorized.

We require that our third party service providers and partners agree to keep the information we share with them confidential and to use the information only to perform their obligations in the agreements we have in place with them. Sitecore has implemented internal policies to ensure that such parties are required under contract to maintain privacy and security protections which are at least as consistent with our own policies and practices.

We maintain a list of our current sub-processors of Personal Information and keep the Sitecore Trust Center updated with security and related information.

 

SECTION 8. STORAGE AND RETENTION OF YOUR INFORMATION

Sitecore is a global company and your information is stored on regional servers depending on your location and the locations of the servers of the companies we hire to provide services to us based on contractual requirements.

We will retain your Personal Information for the length of time needed to fulfill the purposes outlined in this Privacy Policy unless a longer retention period is required or permitted by law, or unless the information is deleted pursuant to the exercise of your rights. We may also retain cached or archived copies of information provided to us. The deletion of your Personal Information and other use of our Sites may result in the deletion and/or de-identification of Other Information that is retained by us.

 

SECTION 9. CROSS BORDER TRANSFERS OF INFORMATION AND THE PRIVACY SHIELD

Sitecore has entered into and executed an agreement for the international transfer of personal information within the Sitecore group of companies ("Intra-Company Agreement") which governs the processing of your Personal Information by Sitecore entities. The Intra-Company Agreement also incorporates the European Union Model Clauses requirements for transfers of your Personal Information.

Sitecore is a global company with business processes, management structures and technical systems that cross-national borders. This means that your Personal Information may be transferred internally to Sitecore Affiliates and externally to third parties (including partners and service providers) across international borders for the purposes described in this Privacy Policy. Sitecore transfers data only in accordance with legally approved transfer mechanisms that are appropriate under applicable data protection laws, including the European Union Model Clauses and the Privacy Shield. For further information on the Privacy Shield program or our Privacy Shield certification, please see how we comply with the as detailed in our Privacy Shield Statement. Once the United Kingdom is no longer a European Union Member State, Sitecore shall continue to comply with the Privacy Shield program, or any successor framework that may be applicable to the UK.

 

SECTION 10. WHAT IS NOT COVERED IN THIS POLICY

Please note that this Privacy Policy applies only to your relationship with Sitecore through your use of Sitecore’s Sites, products, services, events, trainings, communications, and marketing and advertising activities.

Sitecore Partners who provide implementation and other solution services may also gather information and you should consult those other parties' privacy policies as appropriate as they may be applicable to you.

Please also note that in using our services, we may provide links to other websites or third parties to directly provide information relevant to your use of Sitecore products. We will provide notice of when we do this. Any interactions you have with these websites are beyond the control of Sitecore. The Site provides links to websites and access to content, products and services of third parties, including users, advertisers, partners and sponsors of the Site, and such third party websites, content, products or services are governed by the respective third party’s website terms and conditions of use.

If you are a job candidate, please refer to our Recruitment Privacy Policy available through the Jobvite portal on our careers page.

If you are a Sitecore employee, please refer to our Employee Privacy Policy available on the Sitecore intranet.

 

SECTION 11. YOUR PRIVACY RIGHTS

We provide you the ability to exercise certain controls and choices regarding our collection, use and sharing of your information.

Please be aware that, if you do not allow us to collect your information from you, we may not be able to deliver certain products and services to you, and some of the Sitecore services may not be able to take account of your interests and preferences.

Your choices. In accordance with applicable law, you may be entitled to exercise your rights and choices as follows:

  • Account settings. You may update your profile, your account and any related information at any time to ensure that information is up-to-date or delete inaccuracies, further details here.
  • Devices and browsers. Some of our mobile services use your device’s location information. You can adjust the setting of your mobile device at any time to control whether your device communicates this location information.
  • Communications from Sitecore. We may use your information to communicate with you by email, including sending you transactional or marketing emails. Sitecore enables you to opt out of marketing communications. Some communications you may receive from us are not considered marketing emails, such as communications related to product download, sales transactions, software updates and other support-related information, patches and fixes, security alerts, events for which you have registered, disclosures to comply with legal requirements, and (where permitted by law) quality assurance surveys. Such transactional emails are not subject to general opt-out. Some additional communications you may receive from our partners may also not be subject to general-opt out, including product alerts, updates, and other notices related to partner status. You can tell us to stop sending you marketing emails by clicking the unsubscribe link included at the bottom of Sitecore’s marketing emails or updating your preferences here. If you have any issues unsubscribing, you may contact us directly through here.
  • Cookies. Some web browsers (including mobile web browsers) provide settings that allow you to control or reject cookies or to alert you when a cookie is placed on your computer, tablet or mobile device. Although you are not required to accept cookies, if you block or reject them, you may not have access to all features or functionalities available through our services. Please go to our Cookie Policy to learn more on how you can manage your cookie preferences or opt out of cookies and other website data collection tools.

Additionally, depending on where you are located, you may have other privacy rights, including in Europe and California, more details available here. You may exercise your rights above by contacting us at privacy@sitecore.com and we will review your request in accordance with applicable laws. We will need to verify your identity to process your request and we reserve the right to confirm residency in the applicable jurisdiction granting such rights. We cannot process your request if you do not provide us with sufficient detail to allow us to understand and respond to it. You may also designate an authorized agent to exercise these rights on your behalf. Please note that in such cases, we will require the agent to provide proof that you have authorized it to act on your behalf, and we may need you to verify your identity directly with us. In certain cases, we may be required or permitted by law to deny your request.

Privacy relating to minors. As a company focused on serving the needs of businesses, Sitecore does not promote or market the Sitecore services to minors and we do not knowingly collect information from minors as defined by applicable law. If you believe we have any information from or about anyone under the age of 13, please contact us so that we can take steps to delete that information as quickly as possible.

 

SECTION 12. UPDATES AND HOW TO CONTACT US

Updates to this privacy statement. From time to time, we may change this Privacy Policy to accommodate new technologies, industry practices, regulatory requirements or to reflect any changes in how we process information. Any changes to this Privacy Policy will be effective when we post the revised Privacy Policy on this website. The Effective Date at the top of this Privacy Policy states when this Privacy Policy came into effect and serves as notice of any updates. Your use of the Sitecore Site or Content provided following these changes means you accept the revised Privacy Policy. To see prior versions of our privacy policy, please click here.

Contact us. If you believe your Personal Information has been used in a way that is not consistent with this Privacy Policy or your specified preferences, or if you have further questions related to this Privacy Policy or Sitecore’s Privacy Shield certification, we encourage you to please contact our Privacy Team at the address below or by emailing: privacy@sitecore.com

Written inquiries may be addressed to our Chief Legal Officer at:

Chief Legal Officer
Sitecore
101 California Street
Suite 1600
San Francisco, CA 94111

Phone: +1 415 380 0600
Fax: +1 415 380 0730

Complaints and dispute resolution. For European residents, we have chosen the EU Data Protection Authorities (EU DPAs) to serve as an independent recourse mechanism for dispute resolution arising from collection, use, and retention of Personal Information transferred from EU member countries and the United Kingdom to the United States.

In compliance with the Privacy Shield Principles, Sitecore commits to resolve complaints about our collection or use of your Personal Information. EU and Swiss individuals with inquiries or complaints regarding our Privacy Shield certification or privacy practices should first contact us at privacy@sitecore.com

Sitecore has further committed to cooperating and complying with relevant authorities with regard to the transfer of data from the EU and Switzerland. If you feel that you have not received a timely or satisfactory response from us to your question or complaint, you may contact your local EU DPA here or, for Swiss individuals, the Swiss Federal Data Protection and Information Commissioner (FDPIC) here (at no cost to you) for more information or to file a complaint. In certain circumstances, the Privacy Shield Framework provides the right to invoke binding arbitration to resolve complaints not resolved by other means, as described in Annex I to the Privacy Shield Principles.