Effective as of October 5, 2022
ThoughtSpot, Inc. and its subsidiaries (collectively “ThoughtSpot”, “we” or “us”) is committed to protecting your privacy and providing you with a positive experience on our websites and in using our products and services.
This Privacy Statement only covers our privacy practices with respect to the collection, use, and disclosure of Personal Information obtained: (i) through the ThoughtSpot websites that link to this Privacy Statement ("Website"); (ii) in connection with your purchase and use of our software products (“Solutions”) and related support and professional services (“Services”); and (iii) in connection with events hosted by us where we collect information from registrants and attendees (“Events”). This Privacy Statement does not cover any data stored in the ThoughtSpot Solution.
For the purposes of this Privacy Statement:
If you have any questions or concerns about our use of your Personal Information, please contact us using the contact details provided at the bottom of this Privacy Statement.
The types of Personal Information we collect will depend upon your interactions with ThoughtSpot. We may collect information directly from you when you use our Websites and purchase or use our Solutions and Services. We may also collect information from trusted third-party sources and engage third parties to collect Personal Information to assist us. The types of information we collect from you may include the following:
In some instances, ThoughtSpot and the third parties we engage may automatically collect data through cookies, web logs, web beacons, and other similar applications. For detailed information, please see our Cookies Policy.
We may use your Personal Information for the purposes of operating our business, delivering, improving, and customizing our Websites, selling our Solutions and Services, sending marketing and other communications related to our business, and for other legitimate purposes permitted by applicable law. Some of the ways we may use Personal Information include:
We may also use information we collect about our Customers and Partners for billing and contracting purposes.
If you are from the European Economic Area (“EEA”), our legal basis for collecting and using the Personal Information described above will depend on the Personal Information concerned and the specific context in which we collect it.
However, we will normally collect Personal Information from you only where we have your consent to do so, where we need the Personal Information to perform a contract with you, or where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms. In some cases, we may also have a legal obligation to collect Personal Information from you.
You can edit your communication preferences at any time. See Controlling Your Personal Information below.
We may share your Personal Information with third parties for the purposes of operating our business, selling, delivering and improving our Solutions and Services, sending marketing and other communications related to our business, and for other legitimate purposes permitted by applicable law or otherwise with your consent.
We may share Personal Information in the following ways:
We do not sell Personal Information nor do we rent or trade Personal Information collected through the Website with third parties for their promotional purposes.
We may obtain additional information through Mobile Applications that you download to your mobile device (“Device”). “Mobile Applications” means applications downloaded by an authorized user of our mobile software application to a mobile device. Mobile Applications we provide may obtain, collect or access information from your Device in connection with your use of the Solutions, and are designed to interoperate with the Solutions; for instance, to provide you with access to information within the Solutions.
In order to provide and operate the Mobile Applications, we need certain information from you. For example, we ask you to provide some Personal Information, such as login credentials to access and use the Solutions through the Mobile Applications. We may only be able to collect or access this information if the Device settings allow it, so you should always review our Mobile Applications settings under the Device settings menu to determine the access restrictions for the Mobile Applications. The Mobile Applications also provide location information to us by way of the internet protocol addresses from which you access the Mobile Applications.
Our Mobile Applications may also provide us with information regarding your Device, such as the Device model, manufacturer, and operating system. We may also collect Device event information, such as error logs and crashes related to our Mobile Applications, which allows us to provide a better experience to you. In addition, we may use information collected by our Mobile Applications to enforce our rights arising from contracts we enter into with you.
In addition, to provide this Mobile Application, we work with our group companies and certain partners and service providers who may have access to your information.
We implement physical, administrative, and technical safeguards designed to protect your Personal Information from unauthorized access, use, or disclosure. We also contractually require that our service providers protect such information from unauthorized access, use, and disclosure. However, you should know that no company, including ThoughtSpot, can fully eliminate security risks associated with Personal Information. Further, the Internet cannot be guaranteed to be 100% secure, and we cannot ensure or warrant the security of any Personal Information you provide to us.
We will retain your Personal Information as needed to fulfill the purposes for which it was collected. We will retain and use your Personal Information as necessary to comply with our business requirements, legal obligations, resolve disputes, protect our assets, and enforce our agreements. When we have no ongoing legitimate business need to process your Personal Information, we will either delete it, anonymize it or securely store your Personal Information and isolate it from any further processing until deletion is possible.
Our marketing emails permit you to "opt-out" of or “unsubscribe” from receiving further marketing emails. Certain jurisdictions, for example the EEA and California, provide their residents certain privacy rights under applicable law, including, as applicable, the right to object to or restrict the processing of Personal Information, to transfer Personal Information (data portability), to delete your Personal Information, or to request that we correct any inaccuracies or otherwise update your Personal Information.
You may contact us to exercise your rights using the contact details in the section titled “How to Contact Us” below. We will respond to such requests in accordance with the requirements of applicable data protection laws. Please note that in order to fulfil your request, we may need you to provide certain information to verify your identity.
These choices do not apply to service notifications or other required communications that are considered part of the Solutions or Services, which you may receive periodically unless you stop using or cancel the Solution or Services in accordance with its terms and conditions. Moreover, certain Personal Information may be exempt from such requests in certain circumstances, which may include circumstances where we need to keep processing your Personal Information for our legitimate interests or to comply with a legal obligation.
Event registrants and attendees may update their user profiles for Events we host by logging into the applicable event website or registration page.
Like many websites, ThoughtSpot uses automatic data collection tools, such as cookies, embedded web links, and web beacons. “Cookies” are small text files that we and others may place in users' computer browsers to store their preferences. "Web beacons" or “pixel tags” are small pieces of code placed on a web page or within the body of an email to monitor the behavior and collect data about the users viewing a web page or viewing or opening an email.
While some internet browsers offer a “do not track” or “DNT” option that lets you tell websites that you do not want to have your online activities tracked, these features are not yet uniform and there is no common standard adopted by industry groups, technology companies, or regulators. Therefore, we do not currently commit to responding to browsers’ DNT signals with respect to our websites. ThoughtSpot takes privacy and meaningful choice seriously and will make efforts to continue to monitor developments around DNT browser technology and the implementation of a standard.
ThoughtSpot stores and processes any information collected in in: (i) any country where we have facilities, (ii) any country in which we engage service providers; or (iii) any country where Events are held. A list of ThoughtSpot global offices is available here.
If you are a user from the EEA, we will protect your Personal Information when it is transferred outside of the EEA by:
If you require further information about our international transfers of Personal Information, please contact us using the contact details in the section titled “How to Contact Us” below.
The California Consumer Privacy Act (“CCPA”) requires businesses to provide additional disclosures of California consumer rights relating to the sharing of, access to, and deletion of Personal Information that is collected. We may share Personal Information with third parties or allow them to collect Personal Information as described in this Privacy Statement. We may share or disclose the Personal Information listed in the section above titled “Collection of Your Personal Information” our business purposes.
California consumers have a right to request information about the collection of your Personal Information, and access to and deletion of your Personal Information under the CCPA. We do not sell the Personal Information of California consumers and do not discriminate in response to privacy rights requests.
If you are a California consumer and you or your authorized agent would like to exercise your privacy rights, please contact us using the contact details in the section titled “How to Contact Us” below. We may need to verify your identity and place of residence before completing your rights request.
We may provide links to other third-party websites and services that are outside our control and not covered by this Privacy Statement. We encourage you to review the privacy statements posted on those websites (and all websites) you visit.
Forums and Chat Rooms
We offer you the ability to post information and exchange ideas through our websites and other services such as ThoughtSpot Community.
If you participate in the ThoughtSpot Community or other discussion forum or chat room on a ThoughtSpot Website, you should be aware that the information you provide there (i.e. your public profile) will be made broadly available to others, and could be used to contact you, send you unsolicited messages, or for purposes neither ThoughtSpot nor you have control over. ThoughtSpot will not be responsible in the event that you disclose Personal Information in your posts, through our public services or during any other communication with other Website users.
ThoughtSpot does not knowingly collect Personal Information from children without appropriate parental or guardian consent. If you believe that we may have collected Personal Information from someone under the applicable age of consent in your country without proper consent, please let us know using the methods described in the How to Contact Us section and we will take appropriate measures to investigate and address the issue promptly.
Changes to this Privacy Statement
ThoughtSpot may modify or update this Privacy Statement from time to time to reflect the changes in our business and practices, and so you should review this page periodically. When we change the Privacy Statement in a material manner we will let you know and update the ‘effective date’ at the top of this page.
How to Contact Us
If you have any questions about this Privacy Statement or our privacy practices, please email us at [email protected],
call us at (800) 508-7008, or write to us at:
Attn: General Counsel
1900 Camden Ave, Suite 101
San Jose, CA 95124