Effective Date: May 10, 2021
Last Updated: Apr 12, 2023
Terminal, Inc. (“Terminal”, “we”, “us”, “our”) is committed to protecting the privacy and security of the personal data we collect from customers and individuals who visit our website (“you”, “your”).
The purpose of this privacy notice is to explain what personal data we collect about you when you use our services, contact us or where we otherwise have a relationship with you.
Although a US-based company, Terminal is subject to multijurisdictional-specific data protection laws, including:
If you are in California, United States, please refer to your California Consumer Privacy Act (“CCPA”) rights in Appendix A.
To assist with our UK, EU and Global data protection compliance, we have appointed a Data Protection Officer, the details of which can be found here.
Please read this privacy notice carefully as it provides important information about how we handle your personal information and your rights. If you have any questions about any aspect of this privacy notice you can contact us at firstname.lastname@example.org.
The personal data we collect depends on the nature of our relationship with you, as set out below.
When you visit our website or make contact with us, we will collect the following personal data:
When you attend Terminal-hosted events or webinars, and you fill in the forms we provide, we collect your personal information during the registration process, such as name, email address, job title, company name, and interest in working at Terminal.
When you complete Terminal surveys, we collect your name, email address, job title, company name, and your responses to our survey questions.
To download our online resources, such as documents and manuals, we collect your name and email address.
To join the Terminal online community, we collect your email address.
When you engage with the chatbot on our website, we collect your name, email address, job title, company name, and any other information or files you choose to include in your message to us.
We collect personal information on our website when you apply for an open position with one of our customers. Please refer to our Job Applicant Privacy Notice for more information.
We also receive the information listed above from information you provide on social media, such as LinkedIn, or through online event registration applications, such as Eventbrite.
We receive information about you from third parties and public sources to help us find potential customers. Information shared about you may include, for example, first and last name, email address, job title, and company name.
Information about you may be collected automatically in the following ways:
For analytics – we use analytic tools, such as Google Analytics, to collect information about your web browser, network and device, as well as web pages you visited before coming to this website, and your IP address. This information may also include details about your use of this website, including clicks, internal links, pages visited, scrolling, searches, and timestamps.
Our website also includes social media sharing buttons and links to enable you to share our content through your preferred social media site or by email direct from one of our web pages. These features may collect your IP address and the page you are visiting on our website and may set a cookie on your device.
When you use one of these buttons or links, you are sharing information to another website or service (such as Twitter or Facebook) and this privacy notice will no longer apply. Please read the privacy notices provided by the particular social media website you are sharing through before posting any personal data using these links.
When providing services to you, we may use your personal data for the following purposes and on the following lawful bases:
|Purpose||Lawful Basis for Processing|
|Responding to correspondence from you.||It is in our legitimate interest to respond to enquiries made via our website, by email, through our social channels or any other means.|
|Sending you information such as product or service information which may be of interest.||If you are an existing customer or have expressed an interest in our products or services, we will rely on legitimate interests to contact you for marketing purposes. You may object to the processing for this purpose by emailing email@example.com. If we have captured your consent for the purposes of marketing, that consent may be withdrawn at any time by emailing firstname.lastname@example.org.|
|Provision of our services||Processing is necessary for performance of the contract between us.|
|Business management, forecasting and statistical purposes||It is our legitimate interest to identify areas for managing current business relationships, develop new products and services, and for managing our business.|
|Maintenance of security and ensuring the health and safety of employees and on-site visitors.||We have a legitimate interest in maintaining secure, safe premises for employees and on-site visitors and to protect company property.|
|Improving our websites and the overall website visitor and user experience||It is our legitimate interest to allow analytics and search engine providers to help improve and optimise our websites|
Where personal data is processed because it is necessary for the performance of an agreement to which you are a party, we will be unable to provide our services without the required information.
Terminal may share your personal data with entities within our group, including those in countries outside the USA, such the UK and European Economic Area (the EU member states plus Norway, Iceland and Liechtenstein) (“EEA”).
We will also share your personal data with trusted third parties who provide us with services relevant to our provision of services to you. This includes our professional advisers, IT service providers, cloud software provider, and other suppliers and sub-contractors.
All such third parties are required to take appropriate security measures to protect your personal data in line with our policies. We do not allow our third-party service providers to use your personal data for their own purposes. We only permit them to process your personal data for specified purposes and in accordance with our instructions. Our service providers may process your personal data outside the USA, UK and EEA.
Where we transfer the personal data of UK or EU citizens to countries outside the UK or EEA, we will only do so where the country we are transferring to is recognised by the UK or the European Commission as providing adequate data protection standards, or other appropriate safeguards are in place to ensure protection of your personal data. Appropriate safeguards include the UK International Data Transfer Agreement (“IDTA”) or the EU Standard Contractual Clauses (“SCCs”) with supplementary measures (where appropriate).
It is possible that we may be required to share your data to comply with applicable laws or with valid legal processes, such as in response to a court order or with government or law enforcement agencies.
We will retain your personal data for as long as is necessary to provide you with our services and for a reasonable period thereafter to enable us to meet our contractual and legal obligations and to deal with complaints and claims.
For more information on our specific retention periods for your personal data, please contact us at email@example.com.
At the end of the retention period, your personal data will be securely deleted or anonymised, for example by aggregation with other data, so that it can be used in a non-identifiable way for statistical analysis and business planning.
We implement appropriate technical and organisational measures to protect the personal data we process from unauthorised disclosure, use, alteration or destruction. These measures include internal policies, training, using cryptography where appropriate and implementing least privilege access control.
You have the following rights in respect of your personal data:
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
If you wish to exercise your rights, please contact us at firstname.lastname@example.org.
You also have the right to lodge a complaint with the relevant supervisory authority, via their respective websites.
If you have any questions regarding this privacy notice or wish to exercise any of your data protection rights, please email us at email@example.com.
We may update this notice (and any supplemental privacy notice), from time to time as shown at the top of the document. We will notify of the changes where required by applicable law to do so.
You can be provided with previous versions of this notice by emailing firstname.lastname@example.org.
California Consumer Privacy Act (“CCPA”)
This Appendix A (“Appendix”) applies to California residents and outlines your rights regarding the processing of the personal data we hold about you under the California Consumer Privacy Act (“CCPA”).
Terminal, Inc. (“Terminal”) are responsible for determining the purposes and means of processing your data when:
Please refer to the ‘Personal data we collect’ and the ‘Purposes for which we use personal data and the legal basis’ sections in our main Privacy Notice to learn more about the personal data we collect and use.
In summary,we collect the following categories of personal data as classified under the CCPA:
Personal data does not include publicly available information. ‘Publicly available’ means information that is lawfully made available from federal, state, or local government records. ‘Publicly available’ does not mean biometric information collected by a business about a consumer without the consumer’s knowledge.
Terminal shares your personal information with service providers such as technology service providers and other business partners as part of our business practices and to provide you with our Services.
Please see the ‘Sharing your data’ section in our Notice for additional details on how we disclose your personal information with selected recipients for specific purposes.
Terminal does not sell your personal data to advertisers or other third parties.
In summary, Terminal share the following categories of information as classified under the CCPA:
In addition to the rights mentioned in our main Privacy Notice, the CCPA provides California consumers with the following additional rights:
You can exercise any of your rights by emailing email@example.com. You may also authorize an individual to submit a verifiable consumer request relating to your personal information.
To help protect your privacy and maintain security, we take steps to verify your identity before responding to requests. To verify your identity and confirm the personal data relates to you, we may ask you to confirm your identity.
If you wish to use an authorized agent to submit a request on your behalf, you must provide the authorized agent written permission signed by you, the customer. We may deny a request from an authorized agent if the agent cannot provide your signed permission demonstrating that they have been authorized to act on your behalf.
Generally, we will respond to your rights request within one month of receipt, however the CCPA allows us to respond within 45 days. Your request and choices may be limited in certain cases, for example, if fulfilling your request is not permitted by law or if we have compelling legitimate interests to refuse your request.
If you have any questions about this Appendix, this Privacy Notice, your rights, or data protection in general, please contact us at firstname.lastname@example.org.