Privacy A/B Testing
How would you rate the visual design of this page? *
How would you like to rate the content layout of this page? *

Privacy Notice | Effective October 16, 2020

Onetrust Privacy Policy

Introduction

OneTrust (“OneTrust,” “we” or “us”) offers a privacy, security and third-party risk technology platform, and hosts and attends events globally. We also own and operate several websites (e.g.onetrust.com and dataguidance.com) (individually, “Website” and collectively the “Websites”). This privacy notice aims to inform you about how we collect, use, disclose and store information about you when you:

  • interact or use our Websites, including downloading materials from our resources page or requesting a demo,
  • register and/or attend any of our events (e.g. PrivacyConnect and PrivacyTech), webinars, or the conferences we attend (collectively “Events”), and
  • if you use any of our products, services or applications (including any trial) (collectively the “Services”) in any manner.

What information does OneTrust collect?

We gather various types of information, including information that identifies or may identify you as an individual (“Personal Information”) as explained in more details below.

Information You Provide to Us:

Information We Automatically Collect:

How do we use the information?

Websites or Events:

Services:

How do we share and disclose information to third parties?

We share and disclose information (including Personal Information) about our customers in the following limited circumstances:

Vendors, consultants and other service providers:

Event Sponsors:

Business Transfers:

OneTrust Group Companies:

Disclosures for National Security or Law Enforcement:

Security

We use appropriate technical, organizational and administrative security measures to protect any information we hold in our records from loss, misuse, and unauthorized access, disclosure, alteration and destruction.

ISO/IEC 27001:2013 and 27701:2019 Certified

SOC 2

Cookies and Other Tracking Technologies

A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information. Those cookies are set by us and called first party cookies. Depending on which of our Websites you are visiting, we may also use third party cookies – which are cookies from a domain different than the domain of the website you are visiting – for our advertising and marketing efforts, as well as to understand your browsing of the Website (for example, which page you visit or how long you stay on each page).
More specifically, we use cookies and other tracking technologies for the following purposes:

  • Assisting you in navigation;
  • Assisting in registration to our events, login, and your ability to provide feedback;
  • Analyzing your use of our products, services or applications;
  • Assisting with our promotional and marketing efforts (including behavioral advertising).

Below is a detailed list of the cookies we use on our Websites. Our Websites are scanned with our cookie scanning tool regularly to maintain a list as accurate as possible. We classify cookies in the following categories:

  • Strictly Necessary Cookies
  • Performance Cookies
  • Functional Cookies
  • Targeting Cookies

You can opt-out of each cookie category (except strictly necessary cookies) by clicking on the “cookie settings” button at the bottom of the page or in the applicable Website Cookie Notice. While this Privacy Notice covers all Websites, Services and Events, each cookie notice you will find on one of our Websites applies to that Website only and also does not apply to our Services.

Google Analytics:

Your Privacy Rights

What choices do I have?

Cookies

Marketing Communications

How Can I Exercise My Data Subject Rights?

If you would like to access, review, update, rectify, and delete any Personal Information we hold about you, or exercise any other data subject right available to you under the EU General Data Protection Regulation (GDPR), you can either click the “Exercise your Rights” link available on the top left of our Privacy Notice, or fill out this Web Form. Our privacy team will examine your request and respond to you as quickly as possible.
Please note that we may still use any aggregated and de-identified Personal Information that does not identify any individual, and may also retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

California residents

California residents have specific rights under the California Consumer Privacy Act (‘CCPA’). For more information and to exercise your rights, please see the section headed “The California Consumer Privacy Act” below.
If you are a resident of the European Economic Area or the United Kingdom, please see the section below headed “Additional Information for users in the European Economic Area and in the United Kingdom” for further information about your privacy rights.

International Data Transfers

Personal Information you submit on the Websites or through the Services may be sent to the United States and processed by us there or in other countries, on our service providers’ cloud servers. We will always protect your information in accordance with this Privacy Notice wherever it is processed. The CookiePro Service is hosted in Microsoft Azure’s data centers in Germany. For other OneTrust Services, you may choose to have the Service hosted in the E.U. or another region.

Information for users in the European Economic Area (“EEA”) or in the United Kingdom (“UK”)

Additional privacy measures for users in the European Economic Area (“EEA”), United Kingdom (“UK”) and Switzerland

OneTrust LLC is self-certified to the EU-US Privacy Shield Framework

OneTrust LLC is self-certified to the Swiss-U.S. Privacy Shield Framework

The California Consumer Privacy Act

Under the California Consumer Privacy Act (‘CCPA’), California residents have certain rights regarding the personal information that businesses have about them. This includes the rights to request access or deletion of your personal information, as well as the right to direct a business to stop selling your personal information.

Personal Information We Collect

Why We Collect Your Personal Information

How We Collect Your Personal Information

With Whom We Share and Sell Your Personal Information

The Right to Opt-out of Sale

Right to Request Disclosure

Right to Request Deletion

The Right to Non-Discrimination

Contact Information

California and Delaware “Do Not Track” Disclosures

California and Delaware law require OneTrust to indicate whether it honors “Do Not Track” settings in your browser concerning targeted advertising. OneTrust adheres to the standards set out in this Privacy Notice and does not monitor or respond to Do Not Track browser requests.

Children

We do not knowingly collect or solicit personal information from anyone under the age of 13. If you are under 13, please do not attempt to register for the Services or send any Personal Information about yourself to us. If we learn that we have collected Personal Information from a child under age 13, we will delete that information as quickly as possible. If you believe that a child under 13 may have provided us Personal Information, please contact us at [email protected]

Linked Websites

For your convenience, hyperlinks may be posted on the Websites that link to other websites (the “Linked Sites”). We are not responsible for, and this Privacy Notice does not apply to, the privacy practices of any Linked Sites or of any companies that we do not own or control. Linked Sites may collect information in addition to that which we collect on the Websites. We do not endorse any of these Linked Sites, the services or products described or offered on such Linked Sites, or any of the content contained on the Linked Sites. We encourage you to seek out and read the privacy notice of each Linked Site that you visit to understand how the information that is collected about you is used and protected.

Changes to the Privacy Notice

We’re constantly trying to improve our Websites and Services, so we may need to change this Privacy Notice from time to time as well. We will alert you to material changes by, for example, placing a notice on our Websites and/or by sending you an email (if you have registered your e-mail details with us) when we are required to do so by applicable law. You can see when this Privacy Notice was last updated by checking the date at the top of this page. You are responsible for periodically reviewing this Privacy Notice.

Contact Us

For Customers: Please contact the OneTrust entity identified in your order form.
Controller Details

Atlanta, GA, USA (Co-Headquarters)
1200 Abernathy Rd NE, Building 600
Atlanta, GA 30328
United States
+1 (844) 847-7154
London, England (Co-Headquarters)
Dixon House
1 Lloyd’s Avenue
London, EC3N 3DQ
+44 (800) 011-9778

Data Protection Officer
Andrew Clearwater
Email Address: [email protected]
If you have questions, requests or concerns regarding your privacy and rights, please let us know how we can help.

Onetrust All Rights Reserved