Privacy Policy

This Website Privacy Policy (“Privacy Policy”) describes the privacy practices of Pinecone Systems, Inc. and that of its subsidiaries and affiliates (collectively, “Pinecone,” “we,” “us,” or “our”). This Privacy Policy explains how we collect, use, disclose, secure and otherwise process personal information from individuals in connection with our website and any other website that we own or control and which posts or links to this Privacy Policy (collectively, the “Websites”), and the rights and choices available to individuals with respect to their information. Pinecone may provide additional or supplemental privacy policies to individuals for specific products or services that we offer at the time we collect personal information. These supplemental privacy policies will govern how we may process the personal information in the context of the specific product or service.

We have designed the Websites for businesses and they are not intended for personal or household use. Accordingly, we treat all personal information covered by this Privacy Policy, including information about any visitors to our Websites, as pertaining to individuals acting in their capacity as business representatives (including as representatives our enterprise customers), rather than in their personal capacity.

This Privacy Policy does not govern how we may process personal information on behalf of our enterprise customers as part of the Pinecone Services. Please review the Product Privacy Statement to understand how we collect, use and otherwise process customer personal information in connection with our products and services (collectively, the “Hosted Services”).

We provide important information for individuals located in the European Union, European Economic Area, Switzerland and United Kingdom (collectively, “Europe” or “European”) below.

Information Collected

Information Collected Directly from You.

We collect personal information directly from you through your use of our Websites. This information may include:

Business contact data, such as your name, email address, and phone number.
Employment information, such as your employer’s name and job title.
Location information, such as when you authorize our Websites to access your general location information such as city, state or geographic area.
Feedback or correspondence, such as information you provide when you contact us with questions, feedback, or otherwise correspond with us online.
Usage information, such as information about how you use the Websites and interact with us, including information associated with any information you provide when you use any features of the Websites.
Marketing information, such as your preferences for receiving communications from us and details about how you engage with our communications.
Other information that we may collect that is not specifically listed here but that we will use in accordance with this Privacy Policy or as otherwise disclosed at the time of collection.

We may maintain pages about us on social media platforms such as Facebook, LinkedIn, Twitter and other third-party platforms. When you visit or interact with our pages on those platforms, the platform provider’s privacy policy will apply to your interactions and their collection, use and processing of your personal information. You or the platforms may provide us with information through the platforms, and we will treat such information in accordance with this Privacy Policy.

Information that we obtain from other third parties.

We may receive personal information about you from third-party sources. For example, a business partner may share your contact information with us if you have expressed interest in learning specially about our services. We may obtain your personal information from other third parties such as marketing and advertising partners, publicly-available sources and data providers.

Referrals.

Website visitors may have the opportunity to refer contacts to us. You may only submit a referral if you have permission to provide the referral’s contact information to us so that we may contact them.

Automatically Collected Data.

We and our service providers as well as our advertising and business partners may use cookies, beacons, pixel tags and other tracking technologies to automatically log information about you, your computer or mobile device and your activity over time on the Websites, including:

Device Data, such as your computer or mobile device operating system type and version number, manufacturer and model, browser type, screen resolution, IP address, device identifier (such as the Google Advertising ID or Apple ID for Advertising), the website you visited before browsing our Websites and general location information such as city, state or geographic area.
Online Activity Data, such as browsing history, search history, whether you clicked on or opened one of our emails, which of our pages or screens you viewed, how long you spent on a page or screen, navigation paths between pages or screens, information about your activity on a page or screen, access times and duration of access.

Please visit the “Options” section of this Privacy Policy for information on how to disable or opt-out of certain cookies and similar technologies.

Use of Information

We may use your personal information for the following purposes or as otherwise described in this Privacy Policy or at the time of collection:

To operate the Websites. We may use personal information to operate the Websites and to provide related services, including to:

provide, operate and improve the Websites;
provide information about our services and product offerings;
enable security features of the Websites;
understand your needs and interests, and personalize your experience with the Websites and our communications;
respond to your requests, questions and feedback;
protect the security of the Websites and our systems; and
provide you with customer support when needed.

For research and development. We may analyze use of the Websites to evaluate and improve the Websites, including by studying user demographics and use of the Websites. We may use Google Analytics for this purpose.

Advertising. We may also work with third-party advertising partners who use cookies (such as the DoubleClick cookie) and similar technologies to deliver targeted advertising that is displayed on unaffiliated websites, to measure the effectiveness of advertising on behalf of our advertising partners, and to identify the audience most likely to respond to an advertisement. These advertisements are delivered by our advertising partners and may be targeted based on your use of the Websites or your activity elsewhere online.

To comply with law. We may use your personal information as we believe necessary or appropriate to comply with applicable laws, lawful requests, and legal process, such as to respond to subpoenas or requests from government authorities.

For compliance, fraud prevention and safety. We may use your personal information and disclose it to law enforcement, government authorities, and private parties as we believe necessary or appropriate to: (a) protect our, your or others’ rights, privacy, safety or property (including by making and defending legal claims); (b) enforce the terms and conditions that govern the Websites; and © protect, investigate and deter against fraudulent, harmful, unauthorized, unethical or illegal activity.

With your consent. In some cases, we may specifically ask for your consent to collect, use or share your personal information, such as when required by law.

To create anonymous, aggregated or de-identified data. We may create anonymous, aggregated or de-identified data from your personal information and other individuals whose personal information we collect, by removing the information that makes the data personally identifiable to you. We may use and share such anonymous, aggregated or de-identified data for any purpose we deem appropriate, such as to maintain and improve the Website.

To send you marketing and promotional communications. We may send you Pinecone-related marketing and promotional communications about the products or services that we offer. You will have the ability to opt-out of our marketing and promotional communications as described in the “Options” section below.

We may share personal information with the following categories of recipients:

Service providers. We may share your personal information with third-party companies and individuals that provide services on our behalf or help us operate the Websites (such as customer support, hosting, analytics, email delivery, marketing and database management services).

Advertising partners. We may enable advertising partners to automatically collect information directly from our Websites for targeted marketing purposes.

Professional advisors. We may share your personal information with professional advisors, such as lawyers, auditors, bankers and insurers, where necessary in the course of the professional services that they render to us.

Authorities and others. We may share your personal information with law enforcement, government authorities, and private parties, as we believe in good faith to be necessary or appropriate for the compliance, fraud prevention and safety purposes described above.

Business transferees. We may share your personal information with relevant participants in business transactions (or potential transactions) involving a corporate divestiture, merger, consolidation, acquisition, reorganization, sale or other disposition of all or any portion of the business or assets of, or equity interests in, (including, in connection with a bankruptcy or similar proceedings).

Options

Access or update information. If your personal information changes, or if you no longer desire to have a relationship with us, you may correct or update by emailing privacy@pinecone.io. We will respond to your request within a reasonable timeframe.

Cookies & browser web storage. Most browsers let you remove or reject cookies. To do this, follow the instructions in your browser settings. To prevent the use of Google Analytics relating to your use of our Websites, you can download and install the browser plug-in available here. Many browsers accept cookies by default until you change your settings. Please note that if you set your browser to disable cookies, the Websites may not work properly. Similarly, your browser settings may allow you to clear your browser web storage.

Targeted online advertising. Some of the business partners that collect information about users’ activities on or through the Websites may be members of organizations or programs that provide choices to individuals regarding the use of their browsing behavior for purposes of targeted advertising. Users may opt out of receiving targeted advertising by:

Blocking cookies in your browser. Most browsers let you remove or reject cookies, including cookies used for interest-based advertising. To do this, follow the instructions in your browser settings. Many browsers accept cookies by default until you change your settings. For more information about cookies, including how to see what cookies have been set on your device and how to manage and delete them, visit www.allaboutcookies.org.
Blocking advertising ID use in your mobile settings. Your mobile device settings may provide functionality to limit use of the advertising ID associated with your mobile device for interest-based advertising purposes.
Using privacy plug-ins or browsers. You can block our websites from setting cookies used for interest-based ads by using a browser with privacy features, like Brave, or installing browser plugins like Privacy Badger, Ghostery or uBlock Origin, and configuring them to block third party cookies/trackers.
Platform opt-outs. The following advertising partners offer opt-out features that let you opt-out of use of your information for interest-based advertising:
- Google: https://adssettings.google.com

Do Not Track. Some Internet browsers may be configured to send “Do Not Track” signals to the online services that you visit. We currently do not respond to “Do Not Track” or similar signals. To find out more about “Do Not Track,” please visit http://www.allaboutdnt.com.

Opt out of marketing communications. If at any time you wish to opt-out of our marketing and promotional emails, you may click the “unsubscribe” link in the email or otherwise contact us at privacy@pinecone.io. It may take up to 10 business days before you stop receiving promotional emails. This opt-out does not apply to operational communications, for example, confirmation emails and you may continue to receive service-related and other non-marketing emails.

Information about Children

Our Websites are not directed to children under 16. If a parent or guardian becomes aware that his or her child has provided us with information without their consent, he or she should contact us at privacy@pinecone.io. We will delete such information from our files as soon as reasonably practicable.

Security

We maintain various physical, electronic and procedural safeguards designed to protect the personal information we collect. However, security risk is inherent in all internet and information technologies and we cannot guarantee the security of personal information.

Third-Party Websites

The Websites may contain links to websites and other online services operated by third parties. These links are not an endorsement of, or representation that we are affiliated with, any third-party and we cannot control, and take no responsibility for, the content or privacy practices of such third-party websites or online services operated by third parties. We encourage you to review the privacy policy and any other applicable terms for such third-party websites or online services operated by third parties.

International Data Transfers

We are headquartered in the United States and may have service providers in other countries, and your personal information may be transferred to the United States or other locations outside of your state, province, or country where privacy laws may not be as protective as those in your state, province, or country.

European users should read the important information provided in the “Notice to European Users” section to learn more about transfer of personal information outside of Europe.

Privacy Policy Updates

We reserve the right to modify this Privacy Policy at any time. If we make material changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy and posting it on the Websites. If required by law, we will also provide notification of changes in another way that we believe is reasonably likely to reach you, such as via email or another manner through the Websites.

Any modifications to this Privacy Policy will be effective upon our posting the modified version (or as otherwise indicated at the time of posting). In all cases, your continued use of the Websites after the effective date of any modified Privacy Policy indicates your acceptance of the modified Privacy Policy.

Contact

If you have any further questions concerning this Privacy Policy, or would like to request to correct, update, or delete such information, please contact privacy@pinecone.io or mail us at:

Pinecone Systems, Inc.
400 Concar Drive
San Mateo, CA 94402

Notice to European Users

The information provided in this “Notice to European Users” section applies only to individuals in Europe.

Personal information. References to “personal information” in this Privacy Policy are equivalent to “personal data” governed by European data protection laws.

Controller and EU Representative. Pinecone Systems, Inc. is the controller of your personal information covered by this Privacy Policy for purposes of European data protection laws.

Legal bases for processing. We use your personal information only as permitted by law. Our legal bases for processing the personal information described in this Privacy Policy are described in the table below.

Processing purpose (click link for details) Details regarding each processing purpose listed below are provided in the section above titled “Use of Personal Information”.	Legal basis
To operate the Websites	Processing is necessary to perform the contract governing our provision of services to you or to take steps that you request prior to entering an agreement for our services. If we have not entered into a contract with you, we process your personal information based on our legitimate interest in providing our services (including our Website) to you.
For research and development To send you marketing and promotional communications For compliance, fraud prevention and safety	These activities constitute our legitimate interests. We do not use your personal information for these activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law).
To comply with law	Processing is necessary to comply with our legal obligations.
With your consent	Processing is based on your consent. Where we rely on your consent you have the right to withdraw it any time in the manner indicated when you consented.

Use for new purposes. We may use your personal information for reasons not described in this Privacy Policy where permitted by law and the reason is compatible with the purpose for which we collected it. If we need to use your personal information for an unrelated purpose, we will notify you and explain the applicable legal basis.

Sensitive personal information

We ask that you not provide us with any sensitive personal information (e.g., information related to racial or ethnic origin, political opinions, religion or other beliefs, health, biometrics or genetic characteristics, criminal background or trade union membership) on or through the Websites, or otherwise to us. If you provide us with any sensitive personal information when you use the Websites, you must consent to our processing and use of such sensitive personal information in accordance with this Privacy Policy. If you do not consent to our processing and use of such sensitive personal information, you must not submit such sensitive personal information through our Websites.

Retention

We retain personal information for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements, to establish or defend legal claims, or for fraud prevention purposes. To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which we process your personal information and whether we can achieve those purposes through other means, and the applicable legal requirements. When we no longer require the personal information we have collected about you, we will either delete or anonymize it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible. If we anonymize your personal information (so that it can no longer be associated with you), we may use this information indefinitely without further notice to you.

Your rights

European data protection laws give you certain rights regarding your personal information. If you are located within Europe, you may ask us to take the following actions in relation to your personal information that we hold:

Access. Provide you with information about our processing of your personal information and give you access to your personal information.
Correct. Update or correct inaccuracies in your personal information.
Delete. Delete your personal information.
Transfer. Transfer a machine-readable copy of your personal information to you or a third party of your choice.
Restrict. Restrict the processing of your personal information.
Object. Object to our reliance on our legitimate interests as the basis of our processing of your personal information that impacts your rights.

You may submit these requests by email to privacy@pinecone.io or our postal address provided above. We may request specific information from you to help us confirm your identity and process your request. Applicable law may require or permit us to decline your request. If we decline your request, we will tell you why, subject to legal restrictions. If you would like to submit a complaint about our use of your personal information or our response to your requests regarding your personal information, you may contact us or submit a complaint to the data protection regulator in your jurisdiction. You can find your data protection regulator here.

Cross-Border Data Transfer

If we transfer your personal information out of Europe to a country not deemed by the European Commission to provide an adequate level of personal information protection, the transfer will be performed:

Pursuant to the recipient’s compliance with standard contractual clauses, or Binding Corporate Rules;
Pursuant to the consent of the individual to whom the personal information pertains; or
As otherwise permitted by applicable European requirements.

You may contact us if you want further information on the specific mechanism used by us when transferring your personal information out of Europe.