Effective as of September 15, 2016.
Janrain, Inc. (“Janrain”) is committed to protecting the privacy of individuals who visit our websites and individuals whose personal information we may receive through the use of the Janrain Customer Identity and Access Management platform and related services provided to our Clients.
This privacy statement describes our practices regarding the personal information we collect on and through our websites which link to this privacy statement. This privacy statement also describes – under the heading “Client Data” – our role and practices in connection with personal information we may host on behalf of our SaaS Clients.
As a visitor to this website, your privacy remains under your control. We want you to have the information you need to make your own decisions regarding your privacy in the context of your interaction with Janrain websites.
The use of personal data collected through our services shall be limited to the purpose of providing the services for which we have been engaged by our Clients.
EU-U.S. Privacy Shield
Janrain participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework. Janrain is committed to subjecting all personal data received from European Union (EU) member countries, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List: https://www.privacyshield.gov/list.
Janrain is responsible for the processing of personal data it receives, under the Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Janrain complies with the Privacy Shield Principles for all onward transfers of personal data from the EU, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the Privacy Shield Framework, Janrain is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission.
In certain situations, Janrain may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
Under certain conditions, more fully described on the Privacy Shield website [https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint], you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
U.S. – Swiss Safe Harbor Framework
Janrain complies with the U.S. – Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use and retention of personal data from Switzerland. Janrain has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Safe Harbor program, and to view Janrain’s certification, please visit https://safeharbor.export.gov/swisslist.aspx.
This Privacy Statement covers the information practices of Janrain websites sites that link to this Privacy Statement, including http://www.janrain.com; http://janrain.com/; http://trust.janrain.com/; https://rpxnow.com/privacy; and https://janraincapture.com/. These websites are hosted in the United States.
Our websites may contain links to non-Janrain websites. We are not responsible for the information practices or the content of such other websites. We invite you to review the privacy statements of those other websites to understand their information.
By providing personal information to our websites, you consent to its use in accordance with this Privacy Statement and, if you live outside the U.S., you consent to the transfer of such information to the U.S. In particular, we post testimonials on Janrain’s websites that contain information such as Client names and titles. Salesforce.com obtains the consent of each Client prior to posting any information on such a list or posting testimonials. If you wish to update or delete your testimonial, you can contact us at email@example.com.
We receive and store any information you enter on our Website or give us in any other way. This information may include (a) your name, email address, and other personal information; (b) your interaction with website features; (c) transaction-related information, such as, when you download software from us; and (d) information you provide us when you contact us for assistance.
As is true of most websites, we gather certain information automatically. This information may include Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring/exit pages, the files viewed on our site (e.g., HTML pages, graphics, etc.), operating system, date/time stamp, and/or clickstream data to analyze trends in the aggregate and administer the site.
We partner with third parties to manage our advertising on other sites. Our third party partners may use technologies such as cookies to gather information about your activities on this site and other sites in order to provide you advertising based upon your browsing activities and interests. If you wish not to have this information used for the purpose of serving you interest-based ads, you may opt-out by clicking here (or if located in the European Union click here). Please note this does not opt you out of being served ads. You will continue to receive generic ads.
There are different ways you can prevent your online activity being tracked. One of those is setting a preference in your browser that alerts websites you visit that you do not want them to collect certain information about you. This is referred to as a Do-Not-Track (“DNT”) signal. Please note that our websites may not recognize or take action in response to DNT signals from web browsers. At this time, there is no universally-accepted standard for what a company should do when a DNT signal is detected. In the event a final standard is established, we will assess how to appropriately respond to these signals.
For more detailed information about cookies, Do-Not-Track and other tracking technologies, please visit allaboutcookies.org and allaboutdnt.com.
You can log in to our Site using social identity providers such as Facebook, Google +, or an Open ID provider. These services will authenticate your identity and provide you the option to share certain personal information with us such as your name and email address to pre-populate our sign up form.
Our site also includes social media features, such as the Facebook Like button and widgets, such as the Share this button or interactive mini-programs that run on our site. These features may collect your IP address, which page you are visiting on our site, and may set a cookie to enable the feature to function properly. Social media features and Widgets are either hosted by a third party or hosted directly on our Site. Your interactions with these features are governed by the privacy statement of the company providing it.
We may use your information (a) to deliver our website services and features desired by you (including any customization features requested by you), (b) to improve our services for you, (c) to personalize content and offers that may be of interest to you, (d) to respond to your inquiries, and (e) to fulfill your request for products or services. If provided, we may use your email address to contact you from time to time.
We share information that identifies you only as described below and with subsidiaries we control that follow the same practices described in this Privacy Statement. We do not sell your personal information to third parties.
. Third Party Service Providers: We may retain other companies and individuals to perform functions on our behalf, such as sending email, removing repetitive and inaccurate information from customer lists, analyzing data, processing credit cards, and providing marketing assistance. They have access to personal information needed to perform their functions, but may not use it for other purposes.
. Some of our pages utilize framing techniques to serve content to and from our partners while preserving the look and feel of our site. Please be aware that you are providing your personal information to these third parties and not to Janrain.
. Protecting Others and Ourselves: We will disclose your personal information as required by law, such as to comply with a subpoena, or similar legal process and if we believe disclosure is necessary to protect our rights, property, or safety, our customer, or others. In particular, we may cooperate with law enforcement agencies in any official investigation and disclose your personal information to the relevant agency in doing so.
. Business Transfer: We reserve the right to transfer your personal information in the event Janrain, Inc. or substantially all of our assets are acquired. You will be notified via email and/or a prominent notice on our Website of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.
. In certain situations, Janrain may be required to disclose personal data in response to lwaful requests by public authorities, including to meet national security or law enforcement requirements.
. With Your Consent: Other than as stated above, we will not disclose or provide your personal information to a third party without your explicit consent for us to do so.
. As a visitor to our website you can always choose not to provide us with personal information when requested, although it may be required for you to take full advantage of our website offerings.
. You may manage your receipt of marketing and non-transactional communications by clicking on the “unsubscribe” link located on the bottom of our marketing emails. Additionally, you may specify your communications preferences at http://www1.janrain.com/UnsubscribePage.html. Customers, however, cannot opt out of receiving transactional emails related to their account.
Janrain uses a secure infrastructure, industry standard technology, and appropriate technical and operational safeguards designed to protect the security, confidentiality, and integrity of data submitted to Janrain. When you enter sensitive information (such as login credential or credit card number) on our forms, we encrypt the transmission of that information using secure socket layer technology (SSL).
The security of your personal information also depends on your protection of your account. Please do not disclose your website login credentials to unauthorized people. Also, be sure to sign off when finished using a shared computer. If you have any other questions about the security of our websites, please contact us using the contact information provided below in the “Contacting Us” section.
Janrain collects information under the direction of its Clients, and has no direct relationship with the individuals whose personal data it processes. If you are a customer of one of our Clients and would no longer like to be contacted by one of our Clients that use our service, please contact the Client that you interact with directly. We may transfer personal information to companies that help us provide our service. Transfers to subsequent third parties are covered by the service agreements with our Clients.
An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data should direct his query to the Janrain’s Client (the data controller). If requested to remove data we will respond within a reasonable timeframe.
We will retain personal data we process on behalf of our Clients for as long as needed to provide services to our Client. Janrain will retain this personal information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
Notice and Choice: Individuals may submit personal information to our customers through the use of the website registration and login services we provide to our Clients. (Some of these services may have a notice that they are “powered by Janrain”). This personal information is submitted with notice to, and the consent of, the individual user via identity providers’ permission screens, or voluntarily provided by the user at registration. Once Janrain has successfully facilitated the transmission of personal information to a Client’s database that is not hosted by Janrain, it is that Clients’s responsibility to guard the personal information against unauthorized access or transmission.
Our Role Processing and Protecting Client Data: As part of our Janrain Customer Identity and Access Management Platform, we may receive and host on our Clients’ behalf such personal information and other data a customer may provide to us for hosting (collectively, “Client Data”). Our Clients are the data controllers of Client Data. As the processors of personal information on behalf of our customers, we follow their instructions with respect to the information they control. In doing so, we implement appropriate technical, physical and administrative measures against unauthorized processing of such information and against loss, destruction of, or damage to, personal information. We do not determine how our Clients use Client Data, and we will not access or disclose it except as directed or agreed to by our customers or required by law.
Accessing, Correcting, Amending, or Deleting Personal Information: If you are an individual seeking access to, or who would like to correct, amend, or delete your personal information which Janrain may be storing on behalf of our Client, you should direct your request to the applicable Janrain Client acting as the data controller for such information. Clients may access, and delete Client Data, including an individual record, via an application provider interface or API. If requested to remove/access data we will respond within 30 days. Following the deletion of personal information in a database we host, the related backup data will be deleted, generally within 30 days. Janrain will retain this personal information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
Cookies Related to Our Social Login Service
The following table shows how cookies are placed on user browsers in connection with our Social Login service. Each is required to deliver critical functionality or complete the users’ service requests.
An individual using our Single Sign On service will have three cookies placed on his or her browser: session_id; visited; and janrain_sso_checked <domainspecifier>. These cookies are required to enable the service.
To assist our Clients and partners, and to market our services, we may disclose anonymous, aggregated, statistical information related to the use of our services by some or all of our Clients and their users. Such information will not contain any personal information or identify any customer or user of our services.
We do not sell our services to children and children are not eligible to use our websites. If we learn that somehow personal information from a child under 13 has been collected on or through our website, we will delete the information.
Some of our website offers publicly accessible blogs. You should be aware that any information you provide in this area may be read, collected, and used by others who access them. You can request the removal of your personal information from our blog or community forum, by contacting us at firstname.lastname@example.org. In some cases, we may not be able to remove your personal information, in which case we will let you know if we are unable to do so and why.
Upon request, we will provide you with information about whether we hold, or process on behalf of a third party, any of your personal information. To request this information please contact us by writing to VP, Privacy, Janrain, Inc., 519 SW 3rd Ave., Suite 200, Portland, OR 97204 USA and provide your name, address, and email address, so that we have sufficient detail to respond to your inquiry. If you have established a Janrain account or submitted information to us on our website, you may submit your inquiry to email@example.com. If you do, please provide your name, address, and email address and, if applicable, account information.
If you purchase a service from our website and create an account, you may later access, update, or delete your information on the service dashboard or by contacting us at firstname.lastname@example.org. To update Billing Information you can contact our Finance department or submit a ticket to support.janrain.com. We will respond to your access request within 30 days.
We will retain your information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
From time to time we may update this Privacy Statement. If we do, we will update the “effective date” at the top of the Privacy Statement. If we make an update with changes that are materially less restrictive regarding our use and disclosure of your information, we will provide prior notice of such changes by posting notice on our website at the top of the then current Privacy Statement 30 days before the effective date of the update. You should visit this page periodically to review any such changes to the Privacy Statement. Your continued use of this website or our service and/or continued provision of information to us will be subject to the terms of the then-current Privacy Statement.
Questions regarding this Privacy Statement or about information practices of Janrain websites should be directed by email to email@example.com or by mailing Janrain, Inc.
Attn: Privacy, 519 SW 3rd Ave., Suite 200, Portland, OR 97204