Effective as of December 15, 2017.
Janrain, Inc. (“Janrain”) is committed to protecting the privacy of individuals who visit our websites and individuals whose personal information we may receive through the use of the Janrain Customer Identity and Access Management platform and related services provided to our Clients.
This privacy statement describes our practices regarding the personal information we collect, use, share and secure on and through our websites which link to this privacy statement. This privacy statement also describes – under the heading “Client Data” – our role and practices in connection with personal information we may host on behalf of our SaaS Clients. It also describes your choices regarding the use, access and correction of your personal information.
As a visitor to this website, your privacy remains under your control. We want you to have the information you need to make your own decisions regarding your privacy in the context of your interaction with Janrain websites.
The use of personal data collected through our services shall be limited to the purpose of providing the services for which we have been engaged by our Clients.
EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield
Janrain participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework. Janrain is committed to subjecting all personal data received from European Union (EU) member countries and Switzerland, respectively, in reliance on each Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Frameworks, and to view our certification, visit the U.S. Department of Commerce’s Privacy Shield List: https://www.privacyshield.gov/list.
Janrain is responsible for the processing of personal data it receives, under each Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Janrain complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the Privacy Shield Frameworks, Janrain is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission.
In certain situations, Janrain may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
Under certain conditions, more fully described on the Privacy Shield website [https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint], you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.
This Privacy Statement covers the information practices of Janrain websites sites that link to this Privacy Statement, including http://www.janrain.com; http://janrain.com/; http://trust.janrain.com/; https://rpxnow.com/privacy; and https://janraincapture.com/. These websites are hosted in the United States.
Our websites may contain links to non-Janrain websites. We are not responsible for the information practices or the content of such other websites. We invite you to review the privacy statements of those other websites to understand their information.
By providing personal information to our websites, you consent to its use in accordance with this Privacy Statement and, if you live outside the U.S., you consent to the transfer of such information to the U.S. In particular, we post testimonials on Janrain’s websites that contain information such as Client names and titles. Salesforce.com obtains the consent of each Client prior to posting any information on such a list or posting testimonials. If you wish to update or delete your testimonial, you can contact us at firstname.lastname@example.org.
We receive and store any information you enter on our Website or give us in any other way. This information may include (a) your name, email address, job title and other personal information; (b) your interaction with website features; (c) transaction-related information, such as, when you download software from us; and (d) information you provide us when you contact us for assistance.
As is true of most websites, we gather certain information automatically. This information may include Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring/exit pages, the files viewed on our site (e.g., HTML pages, graphics, etc.), operating system, date/time stamp, and/or clickstream data to analyze trends in the aggregate and administer the site.
We partner with third parties to manage our advertising on other sites. Our third party partners may use technologies such as cookies to gather information about your activities on this site and other sites in order to provide you advertising based upon your browsing activities and interests. If you wish not to have this information used for the purpose of serving you interest-based ads, you may opt-out by clicking here (or if located in the European Union click here). Please note this does not opt you out of being served ads. You will continue to receive generic ads.
There are different ways you can prevent your online activity being tracked. One of those is setting a preference in your browser that alerts websites you visit that you do not want them to collect certain information about you. This is referred to as a Do-Not-Track (“DNT”) signal. Please note that our websites may not recognize or take action in response to DNT signals from web browsers. At this time, there is no universally-accepted standard for what a company should do when a DNT signal is detected. In the event a final standard is established, we will assess how to appropriately respond to these signals.
For more detailed information about cookies, Do-Not-Track and other tracking technologies, please visit allaboutcookies.org and allaboutdnt.com.
You can log in to our Site using social identity providers such as Facebook, Google +, or an Open ID provider. These services will authenticate your identity and provide you the option to share certain personal information with us such as your name and email address to pre-populate our sign up form.
Our site also includes social media features, such as the Facebook Like button and widgets, such as the Share this button or interactive mini-programs that run on our site. These features may collect your IP address, which page you are visiting on our site, and may set a cookie to enable the feature to function properly. Social media features and Widgets are either hosted by a third party or hosted directly on our Site. Your interactions with these features are governed by the privacy statement of the company providing it.
We may receive information about you from other sources, including publicly available databases or third parties from whom we have purchased data, and combine this data with information we already have about you. This helps us update, expand and analyze our records, identify new customers, and provide products and services that may be of interest to you. If you provide us personal information about others, or if others give us your information, we will only use that information for the specific reason for which it was provided to us.
Examples of the types of personal information that may be obtained from public sources or purchased from third parties and combined with information we already have about you, may include:
Purchased marketing data about prospective our customers from third parties that is combined with information we already have about you, to create more tailored marketing advertising and products.
We may use your information (a) to deliver our website services and features desired by you (including any customization features requested by you), (b) to improve our services for you, (c) to personalize content and offers that may be of interest to you, (d) to respond to your inquiries, and (e) to fulfill your request for products or services. If provided, we may use your email address to contact you from time to time.
We share information that identifies you only as described below and with subsidiaries we control that follow the same practices described in this Privacy Statement. We do not sell your personal information to third parties.
Janrain uses a secure infrastructure, industry standard technology, and appropriate technical and operational safeguards designed to protect the security, confidentiality, and integrity of data submitted to Janrain. When you enter sensitive information (such as login credential or credit card number) on our forms, we encrypt the transmission of that information using secure socket layer technology (SSL).
The security of your personal information also depends on your protection of your account. Please do not disclose your website login credentials to unauthorized people. Also, be sure to sign off when finished using a shared computer. If you have any other questions about the security of our websites, please contact us using the contact information provided below in the “Contacting Us” section.
Janrain acknowledges that you have the right to access your personal information. Janrain collects information under the direction of its Clients, and has no direct relationship with the individuals whose personal data it processes. If you are a customer of one of our Clients and would no longer like to be contacted by one of our Clients that use our service, please contact the Client that you interact with directly. We may transfer personal information to companies that help us provide our service. Transfers to subsequent third parties are covered by the service agreements with our Clients.
We will retain personal data we process on behalf of our Clients for as long as needed to provide services to our Client. Janrain will retain this personal information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
Notice and Choice: Individuals may submit personal information to our customers through the use of the website registration and login services we provide to our Clients. (Some of these services may have a notice that they are “powered by Janrain”). This personal information is submitted with notice to, and the consent of, the individual user via identity providers’ permission screens, or voluntarily provided by the user at registration. Once Janrain has successfully facilitated the transmission of personal information to a Client’s database that is not hosted by Janrain, it is that Clients’s responsibility to guard the personal information against unauthorized access or transmission.
Our Role Processing and Protecting Client Data: As part of our Janrain Customer Identity and Access Management Platform, we may receive and host on our Clients’ behalf such personal information and other data a customer may provide to us for hosting (collectively, “Client Data”). Our Clients are the data controllers of Client Data. As the processors of personal information on behalf of our customers, we follow their instructions with respect to the information they control. In doing so, we implement appropriate technical, physical and administrative measures against unauthorized processing of such information and against loss, destruction of, or damage to, personal information. We do not determine how our Clients use Client Data, and we will not access or disclose it except as directed or agreed to by our customers or required by law.
Accessing, Correcting, Amending, or Deleting Personal Information: If you are an individual seeking access to, or who would like to correct, amend, or delete your personal information which Janrain may be storing on behalf of our Client, you should direct your request to the applicable Janrain Client acting as the data controller for such information. Clients may access, and delete Client Data, including an individual record, via an application provider interface or API. If requested to remove/access data we will respond within 30 days. Following the deletion of personal information in a database we host, the related backup data will be deleted, generally within 10 days. Janrain will retain this personal information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
Cookies Related to Our Social Login Service
The following table shows how cookies are placed on user browsers in connection with our Social Login service. Each is required to deliver critical functionality or complete the users’ service requests.
|Type||Cookie Name||Created||Stored Data||Usage|
|Session||login_tab||When the user clicks on a social sign-in link||Identity provider name or identifier||Records which identity provider has been selected by the user, for use during the transaction|
|Session||expected_tab||After a successful social sign-in transaction||Identity provider name or identifier||Records which identity provider has successfully authenticated the user, for use during the transaction|
|Permanent||welcome_info_name||After a successful social sign-in transaction||Display name of user as returned by identity provider||Retrieves a display name for providing visual confirmation to end user|
An individual using our Single Sign On service will have three cookies placed on his or her browser: session_id; visited; and janrain_sso_checked <domainspecifier>. These cookies are required to enable the service.
To assist our Clients and partners, and to market our services, we may disclose anonymous, aggregated, statistical information related to the use of our services by some or all of our Clients and their users. Such information will not contain any personal information or identify any customer or user of our services.
We do not sell our services to children and children are not eligible to use our websites. If we learn that somehow personal information from a child under 13 has been collected on or through our website, we will delete the information.
Some of our website offers publicly accessible blogs. You should be aware that any information you provide in this area may be read, collected, and used by others who access them. You can request the removal of your personal information from our blog or community forum, by contacting us at email@example.com. In some cases, we may not be able to remove your personal information, in which case we will let you know if we are unable to do so and why.
Upon request, we will provide you with information about whether we hold, or process on behalf of a third party, any of your personal information. To request this information please contact us by writing to VP, Privacy, Janrain, Inc., 1233 NW 12th Ave, Suite 150 Portland OR 97209 USA and provide your name, address, and email address, so that we have sufficient detail to respond to your inquiry. If you have established a Janrain account or submitted information to us on our website, you may submit your inquiry to firstname.lastname@example.org. If you do, please provide your name, address, and email address and, if applicable, account information.
If you purchase a service from our website and create an account, you may later access, update, or delete your information on the service dashboard or by contacting us at email@example.com. To update Billing Information you can contact our Finance department or submit a ticket to support.janrain.com. We will respond to your access request within 30 days.
We will retain your information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
From time to time we may update this Privacy Statement. If we do, we will update the “effective date” at the top of the Privacy Statement. If we make an update with changes that are materially less restrictive regarding our use and disclosure of your information, we will provide prior notice of such changes by posting notice on our website at the top of the then current Privacy Statement 30 days before the effective date of the update. You should visit this page periodically to review any such changes to the Privacy Statement. Your continued use of this website or our service and/or continued provision of information to us will be subject to the terms of the then-current Privacy Statement.
Questions regarding this Privacy Statement or about information practices of Janrain websites should be directed by email to firstname.lastname@example.org or by mailing Janrain, Inc.
Attn: Privacy, 1233 NW 12th Ave, Suite 150 Portland OR 97209