Citus Data Privacy Policy

Citus Data, Inc. ("Citus Data") appreciates you using our products and services. We provide this Privacy Policy to inform you about how we collect, use, and handle your personally identifying information (or "PII") when you use our websites ("Websites"), and our software and services ("Services") as follows.

Last Updated: December 19, 2018

Website Visitors and Service Users: Like many managed service operators, we collect non-personally identifying information of the sort that web browsers and servers typically make available, such as the browser type, language preference, device type, referring site, and the date and time of each visitor request, and we store it in log files. Your devices (depending on their settings) may also transmit location information to the Services.

We may also collect statistics about the behavior of visitors to our Websites and our Services, as well as potentially personally identifying information like Internet Protocol (“IP”) addresses. Our purpose in collecting such information is to better understand how our visitors use the Websites and Services, and to improve the Websites and Services. We do not disclose such statistics and IP address information other than under the circumstances described further below.

Your Account with Our Services: Citus Data collects information like your name, email address, phone number, payment info, and physical address when you set up your account with our Services.

Your Data with Our Services: When you use Citus Data Services, we store, process, and transmit your files (including data, photos, documents, and emails) and information related to them. This will make it easy for you to do things like share your information, send emails, and invite others to use the Services.

Cookies and other technologies: We and our partners (including analytics providers) use various technologies to collect and store information when you use our Websites and our Services, and this may include using cookies, beacons, tags, or similar technologies to identify your browser or device, and to analyze trends, track users’ movements around the website and the service, and to gather information about our visitors and users.

A cookie is a string of information that a website stores on a visitor’s computer, and that the visitor’s browser provides to the website each time the visitor returns. Cookies are used to make websites work more effectively and efficiently: we use cookies to help identify and track visitors, their usage of our Websites and Services, and their preferences. No personally identifiable information is stored within cookies; however, details are below to describe the cookies Citus Data and its service providers use, and to explain why they are used.

We use both session ID cookies and persistent cookies. A session ID cookie expires when you close your browser. A persistent cookie remains on your hard drive for an extended period of time. If you do not wish to have cookies placed on your computers, you should set your browsers to refuse cookies before using our services, with the drawback that certain or all of the features of our services may not function properly without the aid of cookies.

Use of Cookies by Citus Data: The cookies used by Citus Data Websites and Services that store your non-personally identifying data and provide service to you are managed by either Citus Data or by 3rd party services, including:

  • Google Analytics: Google Analytics cookies are used to collect information about how website visitors use our Websites and Services. We use the information to compile reports and to help us improve the user experience of our Websites and Services. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from, and the pages they visited.
  • Citus Data cookies: These cookies allow Citus Data to deliver different content based on your visitor status and provide you extra functionality.
  • Marketo: Marketo cookies are used to improve our marketing efforts and help us make sure we’re providing the right type of useful information on our Websites.
  • Google Tag Manager: GTM uses cookies in order to deliver functionality to visitors of our Websites.
  • Drift: Drift cookies enable us to chat with you on our Websites and make sure we can follow-up with you to give you useful information.
  • LinkedIn: LinkedIn cookies are used to improve the relevance and quality of Citus Data content that you see on LinkedIn.
  • Heap: Heap cookies are used to collect information about how website visitors use our Websites and Services. We use the information to help us improve the user experience of our Websites and Services. The cookies collect information in an anonymous form.
  • Google Ads: DoubleClick by Google and Google Analytics Audiences use cookies to improve the relevance of advertising to visitors of our Websites.
  • YouTube: YouTube drops cookies on their player for videos that are embedded on our Website pages. While we have no control over these cookies, they may include information to measure the number and behavior of YouTube viewers, and information about current viewing video settings as well as a personal identification token, if you are logged into YouTube.

Behavioral Targeting/Retargeting: We may partner with one or more third-party ad networks to either display advertising on our Websites or to manage our advertising on other sites. Our ad network partners use cookies and web beacons to collect non-personally identifying information about your activities on this and other websites to provide you targeted advertising based upon your interests. If you wish to learn more about your advertising choices and how to opt out of behavioral targeting and interest-based advertising, click here (https://www.networkadvertising.org/choices/) or if located in the European Union, click here (https://www.youronlinechoices.eu/).

Customer and User Quotes and Testimonials: We display personal testimonials of satisfied customers and users on our Websites in addition to other endorsements. With your consent we may post your personal testimonial with your name and/or with your bio picture. If you wish to update or delete your testimonial, you can contact us at [email protected]

Social Media Widgets: The Websites and the Services may include social media features, such as the Twitter button, and widgets, such as the Share this button or interactive mini-programs. These features may collect your IP address, which page you are visiting on the Websites, and may set a cookie to enable the feature to function properly. Social media features and widgets are either hosted by a third party or hosted directly on the Websites or the Services. Your interactions with these features are governed by the privacy policy of the company providing it.

USAGE AND SHARING OF DATA: We may share information as outlined below, but we won’t sell it to advertisers or other third-parties.

Citus Data Employees, Contractors, and Agents: Citus Data uses third parties to help us provide, improve, protect, and promote our Websites and our Services. These third parties are described above in the Use of Cookies section of this policy. In addition to those providers we utilize Stripe for payment processing. To operate the Citus database as a service we leverage Heroku and Amazon Web Services as data sub-processors. These third parties will access your information only to perform tasks on our behalf and in compliance with this Privacy Policy. Your account administrator and Citus Data support personnel may have the ability to access and control your Citus Data account.

Other Service Users: Our Services display information like your name and email address to other users in places like your user profile and sharing notifications. Certain features let you make additional information available to other users.

Third Party Applications: You can also choose to give third parties access to your information and your account for the Services—for example, via Citus Data APIs. Just remember that their use of your information will be governed by their privacy policies and terms.

Bulletin Boards / Chat Rooms: If you use a bulletin board or chat room associated with the Websites or the Services, you should be aware that any personally identifiable information you submit there can be read, collected, or used by other users of these forums and others who have access to the archive, and could be used to send you unsolicited messages. We are not responsible for the personally identifiable information you choose to submit in these forums.

Law Enforcement: We may disclose your information to third parties if we determine that such disclosure is reasonably necessary to (a) comply with the law; (b) protect any person from death or serious bodily injury; (c) prevent fraud or abuse of Citus Data or our users; or (d) protect Citus Data’s property rights.

Our users’ data should receive the same legal protections regardless of whether it’s stored on our services or on their home computer’s hard drive, therefore we abide by the following Government Request Principles when receiving, scrutinizing, and responding to government requests for our users’ data:

  • Be transparent,
  • Fight blanket requests,
  • Protect all users, and
  • Provide trusted services.

Security: For our Services, we have a team dedicated to keeping your information secure, and we take precautions to ensure the security of your PII. We follow generally accepted standards to protect the PII submitted to us, both during transmission and once we receive it. We also continue to work on features to keep your information safe in addition to things like two-factor authentication and encryption of backup files.

That said, like any managed service provider, we cannot guarantee that unauthorized third parties or unauthorized personnel will not gain access to your PII despite our efforts. You should note that in using the Websites and the Services, your information will travel through third-party infrastructures which are not under our control.

Retention of Information: For users of our Services, we will retain information and PII you store on our Services for as long as we need it to provide you the Services.

If you delete your account with our Services, we'll also delete this information. But please note: (1) there might be some latency in deleting this information from our servers and back-up storage; and (2) we may retain this information if necessary to comply with our legal obligations, resolve disputes, or enforce our agreements; and (3) where our customer for the Services is an organization and you are accessing and using the Service as an authorized representative of that organization, references to "you" and the like in this Privacy Policy generally refer to the customer organization, not individual end users. In such cases, we receive and process information under the direction of our customer. If you as an individual seek to delete an account or to delete inaccurate data, you should direct your query to the applicable customer organization, and we will respond to the customer’s request within a reasonable timeframe. In the event that you direct your query to us directly, please provide us with the name of the customer organization that controls your data.

Opt-Out Policy: If, at any time after providing us with your PII, you change your mind about receiving information from us or about the use of information volunteered by you, please send us a request at [email protected] specifying your new choice. You may also choose to stop receiving our technical newsletter, product updates, marketing emails, and invitations by following the unsubscribe instructions included in these emails.

PRIVACY SHIELD STATEMENT

Citus Data complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries (and Iceland, Liechtenstein, and Norway) and Switzerland transferred to the United States pursuant to Privacy Shield. Citus Data has certified that it adheres to the Privacy Shield Principles with respect to such data. If there is any conflict between the policies in this privacy policy and data subject rights under the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification page, please visit https://www.privacyshield.gov/.

Subject to FTC & Liability Citus Data is subject to the investigative and enforcement authority of the Federal Trade Commission (FTC). Citus Data’s accountability for personal data that it receives in the United States under the Privacy Shield and subsequently transfers to a third party is described in the Privacy Shield Principles. In particular, Citus Data remains responsible and liable under the Privacy Shield Principles if third-party agents that it engages to process the personal data on its behalf do so in a manner inconsistent with the Principles, unless Citus Data proves that it is not responsible for the event giving rise to the damage.

Access & Choice: Pursuant to the Privacy Shield Frameworks, EU and Swiss individuals have the right to obtain our confirmation of whether we maintain personal information relating to you in the United States. Upon request, we will provide you with access to the personal information that we hold about you. You may also correct, amend, or delete the personal information we hold about you. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data transferred to the United States under Privacy Shield, should direct their query to [email protected] If requested to remove data, we will respond within a reasonable timeframe.

We will provide an individual opt-out choice, or opt-in for sensitive data, before we share your data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. To request to limit the use and disclosure of your personal information, please submit a written request to [email protected]

In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

Dispute Resolution: In compliance with the Privacy Shield Principles, Citus Data commits to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to Privacy Shield. European Union and Swiss individuals with Privacy Shield inquiries or complaints should first contact Citus Data at [email protected]

Citus Data has further committed to refer unresolved privacy complaints under the Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://www.privacyshield.gov/article?id=ANNEX-I-introduction for more information and to file a complaint. This service is provided free of charge to you.

If your Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction.

Changes: Our Privacy Policy may change from time to time. We will not reduce your rights under this Privacy Policy without notifying you. We will post any privacy policy changes on this page and, if the changes are significant, we will provide a more prominent notice (including, for certain services, email notification of privacy policy changes). We will also keep prior versions of this Privacy Policy in an archive for your review.

Contact: If you have questions or concerns about this Privacy Policy, contact us at [email protected]