Effective Date: May 10, 2021
Last Updated: Feb 1, 2024
Terminal, Inc. and its international subsidiaries (“Terminal”, “we”, “us”, “our”), of 1 Letterman Dr, Building C3500, San Fransisco, California, 94129, is committed to protecting the privacy and security of the personal data we collect from customers and individuals who visit our website (“you”, “your”).
The purpose of this privacy notice is to explain what personal data we collect about you when you contact us, use our services, or where we otherwise have a relationship with you.
Although a US-based company, Terminal is subject to multijurisdictional data protection laws, including:
If you are in California, United States, please refer to your California Consumer Privacy Act (“CCPA”) and the California Privacy Rights Act (“CPRA”) rights in Appendix A.
To assist with our UK, EU and Global data protection compliance, we have appointed a Data Protection Officer, the details of which can be found here.
Please read this privacy notice carefully as it provides important information about how we handle your personal information and your rights. If you have any questions about any aspect of this privacy notice, you can contact us at firstname.lastname@example.org.
The personal data we collect depends on the nature of our relationship with you, as set out below.
When you make contact or visit our website, we may collect the following categories of personal data:
When you attend Terminal-hosted events or webinars, and you fill in the forms we provide, we collect your personal information during the registration process, such as name, email address, job title, company name, and interest in working at Terminal.
When you complete Terminal surveys, we collect your name, email address, job title, company name, and your responses to our survey questions.
To download our online resources, such as documents and manuals, we collect your name and email address.
To join the Terminal online community, we collect your email address.
When you engage with the chatbot on our website, we collect your name, email address, job title, company name, and any other information or files you choose to include in your message to us.
We collect personal information on our website when you apply for an open position with one of our customers. Please refer to our Job Applicant Privacy Notice for more information.
We also receive the information listed above from information you provide on social media, such as LinkedIn, or through online event registration applications, such as Eventbrite.
We receive information about you from third parties and public sources to help us find potential customers. Information shared about you may include, for example, first and last name, email address, job title, and company name.
Information about you may be collected automatically in the following ways:
For analytics – we use analytic tools, such as Google Analytics, to collect information about your web browser, network and device, as well as web pages you visited before coming to this website, and your IP address. This information may also include details about your use of this website, including clicks, internal links, pages visited, scrolling, searches, and timestamps.
Our website also includes social media sharing buttons and links to enable you to share our content through your preferred social media site or by email direct from one of our web pages. These features may collect your IP address and the page you are visiting on our website and may set a cookie on your device.
When you use one of these buttons or links, you are sharing information to another website or service (such as Twitter or Facebook) and this privacy notice will no longer apply. Please read the privacy notices provided by the particular social media website you are sharing through before posting any personal data using these links.
When providing services to you, we may use your personal data for the following purposes and on the following lawful bases:
|Lawful Basis for Processing
|Responding to correspondence from you.
|It is in our legitimate interest to respond to enquiries made via our website, by email, through our social channels or any other means.
|Sending you information such as product or service information which may be of interest.
|If you are an existing customer or have expressed an interest in our products or services, we will rely on legitimate interests to contact you for marketing purposes. You may object to the processing for this purpose by emailing email@example.com. If we have captured your consent for the purposes of marketing, that consent may be withdrawn at any time by emailing firstname.lastname@example.org.
|Provision of our services
|Processing is necessary for performance of the contract between us.
|Business management, forecasting and statistical purposes
|It is our legitimate interest to identify areas for managing current business relationships, develop new products and services, and for managing our business.
|Maintenance of security and ensuring the health and safety of employees and on-site visitors.
|We have a legitimate interest in maintaining secure, safe premises for employees and on-site visitors and to protect company property.
|Improving our websites and the overall website visitor and user experience
|It is our legitimate interest to allow analytics and search engine providers to help improve and optimize our websites.
|Improving our websites and the overall website visitor and user experience
Where personal data is processed because it is necessary for the performance of an agreement to which you are a party, we will be unable to provide our services without the required information.
Terminal may share your personal data with entities within our group, including those in countries outside the USA, such the UK and European Economic Area (the EU member states plus Norway, Iceland and Liechtenstein) (“EEA”).
We will also share your personal data with trusted third parties who provide us with services relevant to our provision of services to you. This includes our professional advisers, IT service providers, cloud software provider, and other suppliers and sub-contractors.
All such third parties are required to take appropriate security measures to protect your personal data in line with our policies. We do not allow our third-party service providers to use your personal data for their own purposes. We only permit them to process your personal data for specified purposes and in accordance with our instructions. Our service providers may process your personal data outside the USA, UK and EEA.
Where we transfer the personal data of UK or EU citizens to countries outside the UK or EEA, we will only do so where the country we are transferring to is recognised by the UK or the European Commission as providing adequate data protection standards, or other appropriate safeguards are in place to ensure protection of your personal data. Appropriate safeguards include the UK International Data Transfer Agreement (“IDTA”) or the EU Standard Contractual Clauses (“SCCs”) with supplementary measures (where appropriate).
It is possible that we may be required to share your data to comply with applicable laws or with valid legal processes, such as in response to a court order or with government or law enforcement agencies.
We will retain your personal data for as long as is necessary to provide you with our services and for a reasonable period thereafter to enable us to meet our contractual and legal obligations and to deal with complaints and claims.
For more information on our specific retention periods for your personal data, please contact us at email@example.com.
At the end of the retention period, your personal data will be securely deleted or anonymised, for example by aggregation with other data, so that it can be used in a non-identifiable way for statistical analysis and business planning.
We implement appropriate technical and organisational measures to protect the personal data we process from unauthorised disclosure, use, alteration or destruction. These measures include internal policies, training, using cryptography where appropriate and implementing least privilege access control.
You have the following rights in respect of your personal data:
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
If you wish to exercise your rights, please contact us at firstname.lastname@example.org.
You also have the right to lodge a complaint with the relevant supervisory authority, via their respective websites.
If you have any questions regarding this privacy notice or wish to exercise any of your data protection rights, please email us at email@example.com.
We may update this notice (and any supplemental privacy notice), from time to time as shown at the top of the document. We will notify of the changes where required by applicable law to do so.
You can be provided with previous versions of this notice by emailing firstname.lastname@example.org.