Like any cloud based offering, Totango understands that by using our services you are entrusting us with business critical and sensitive information. As such, we take serious measures, technical and procedural, to ensure data is kept secure and private and within your control.
EU-U.S. Privacy Shield & Swiss – U.S. Privacy Shield
Totango, INC. Participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework. Totango, INC is committed to subjecting all personal data received from European Union (EU) member countries and Switzerland, respectively, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List. [https://www.privacyshield.gov/list]
Totango, INC is responsible for the processing of personal data it receives, under the Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Totango, INC complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the Privacy Shield Framework, Totango, INC is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, Totango, INC may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://www.jamsadr.com/eu-us-privacy-shield.
Under certain conditions, more fully described on the Privacy Shield website [https://www.privacyshield.gov], you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
It’s your data. At your request, we will provide you a full digital copy of your data and/or permanently remove all copies of it from our databases. You can request this at any time, from the first moment you signup for free trial, throughout your subscription and after. You decide what information to store in your Totango data-store, what parameters and for which accounts.We will never use your data without your permission. We will not sell, resell or otherwise share your data with 3rd parties, either before, during or after your subscription with us. From time to time, Totango compiles industry wide benchmarks for the benefit of the online software community. These are always aggregated benchmarks, conducted from anonymized versions of customer data and cannot be linked back to individual accounts. You can decide to opt-out from these benchmarks at any time.Your data is secure with Totango. Totango follows generally accepted industry standards to keep your data safe & secure. Communications to and from Totango are encrypted using state of the art SSL technology. Additionally we provide application-layer security features to further anonymize your sensitive data.
Totango Service Description:
We provide the Service in order to enable our Customers to collect information about their End Users’ activities on our Customer’s web service and/or other software services offering (“Customer Service”) and to provide our Customers with a global view of those activities.
What Information We Collect and How We Collect It.
As the provider of the Service, we receive and/or collect data, which may contain Personally Identifiable Information, in the following ways:As the provider of the Service, we receive and/or collect data, which may contain Personally Identifiable Information, in the following ways:
3.1. Customer Account Information. As part of the Service, we may collect or obtain information (including Personally Identifiable Information) that a Customer provides about itself, such as the Customer’s account name, and email address, company information and related information about its personnel (“Customer Data”).
3.2. End User Data. As part of the Service, a Customer may provide us with data, including Personally Identifiable Information, such as a user’s email address to store on the Customer’s behalf about an End User in connection with the End User’s use of the Customer Service (“End User Data”). Totango has no direct relationship with the individuals whose personal data it processes. We work with our Customers to help them provide notice to their End Users concerning the purpose for which Personally Identifiable Information is collected. We may transfer Personally Identifiable Information to companies that help us provide our Service. Transfers to subsequent third parties are covered by the service agreements with our Customers.
3.4. Cookies and Other Tracking Technologies. Technologies such as: cookies, beacons, tags and scripts are used by Totango and our partners e.g. marketing partners, affiliates, or analytics or service providers e.g. online customer support provider, etc. These technologies are used in analyzing trends, administering the site, tracking users’ movements around the site and to gather demographic information about our user base as a whole. We may receive reports based on the use of these technologies by these companies on an individual as well as aggregated basis.
3.5. Analytics / Log Files. As is true of most web sites, we gather certain information automatically using Analytics technology and store it in log files. This information includes internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and clickstream data. We use this information, which does not identify individual users, to analyze trends, to administer the site, to track users’ movements around the site and to gather demographic information about our user base as a whole. We do not link this automatically-collected data to personally identifiable information.
4. The Way We Use Information.
4.1. We will use the Customer Data of a Customer to provide and improve our Service to the Customer, to contact the Customer, and to identify and authenticate the Customer’s access to our services that the Customer is authorized to access.4.2. We will store End User Data on behalf of the related Customer in order to provide the Service to that Customer.
4.6. We will retain your information for as long as your account is active. We reserve the right to retain any Personally Identifiable Information, End User Data we process on behalf of our Customers and other Service- related data for such time as we are providing the Service to the Customer to which the information relates and for a reasonable time thereafter. We will retain and use information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
4.7. If your Personally Identifiable Information changes, or if you no longer desire our Service, you may correct, update or amend by making the change in your account/profile settings page or by emailing our Customer Support. We will respond to your request to access within 30 days. Totango has no direct relationship with the individual End Users’ personal data it may processes. An individual who seeks access, or who seeks to correct, amend, delete inaccurate data or withdraw consent for further contact should direct his query to the Totango Customer they deal with directly. If the Customer requests Totango to remove the data, we will respond to their request within 30 days. In any event, we will delete or amend any Customer’s or End User’s Personally Identifiable Information that we are storing if we receive a written request to do so. Any such request should be addressed to firstname.lastname@example.org and include sufficient information for Totango to identify the Customer or End User and the information to delete or amend.Upon request Totango INC will provide you with information about whether we hold any of your personal information. You may access, correct, or request deletion of your personal information by contacting us at email@example.com. We will respond to your request within a reasonable timeframe.
4.8. Email Opt-Out. If you wish to subscribe to our newsletter(s), (accessable from our blog page) we will use your name and email address to send the newsletter to you. Out of respect for your privacy, you may choose to stop receiving our newsletter or marketing emails by following the unsubscribe instructions included in these emails, accessing the email preferences in your account settings page or you can contact us at firstname.lastname@example.org.
4.9. Notwithstanding the foregoing, we may disclose Personally Identifiable Information or any information that we receive in connection with the Service if we have a good faith belief that disclosure of such information is helpful or reasonably necessary to (i) comply with any applicable law, regulation, legal process or governmental request; or (ii) protect against harm to the rights, property or safety of Totango, our Customers, End Users, or the public.
In certain situations, Totango may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. We may use Information (defined below), or disclose it to third party service providers, to provide, improve and/or develop the Service. From time to time, we may disclose Information as part of our participation in an industry wide benchmark for the benefit of the online software community. Each Customer may opt-out from such benchmarks at any time by emailing us at email@example.com.
The Service is not structured to attract children under the age of 18. Accordingly, we do not intend to collect Personally Identifiable Information from anyone we know to be under 18 years.
In the Event of Merger, Sale, or Change of Control.
The security of Personally Identifiable Information is important to us. We follow generally accepted industry standards to protect the Personally Identifiable Information submitted to us, both during transmission and once we receive it.We use SSL technology to encrypt data (such as your credit card information) during transmission, and we also employ application-layer security features to further secure sensitive data. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect Personally Identifiable Information, we cannot guarantee its absolute security.
10.Single Sign on.
On certain pages of our site, such as the support forum or the careers page, you can access their functionality by using an authentication service such as Twitter, Google or “Apply with Linkedin”. These services will authenticate your identity and provide you the option to share certain Personally Identifiable Information with us such as your name and email address. Services like these may give you the option to post information about your activities on this Web site to your profile page to share with others within your network.
11.Social Media Widgets.
We display personal testimonials of satisfied customers on our site in addition to other endorsements. With your consent we may post your testimonial along with your name. If you wish to update or delete your testimonial, you can contact us at firstname.lastname@example.org.
13.Links to 3rd Party Sites.
1200 Park Place
San Mateo, CA 94403
Effective Date: November 10, 2017