Privacy Policy

Last updated: March 2023

 

1. Overview

EngageRocket Pte Ltd., doing business as EngageRocket, (“EngageRocket,” “we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains who we are, how we collect, use and share Personal information about you and how you can exercise your privacy rights. This Privacy Policy describes (unless a different privacy notice is displayed) our privacy practices regarding the personal information we collect from individuals in the usual course of business, including when you:

  • Visit any of our websites or applications (such as https://engagerocket.co/); visit our social media pages; use our services on an integrated third-party platform (such as Microsoft Teams), receive communications from us; or register for, attend and/or otherwise take part in any of our events, tutorials, webinars or contests (collectively “Visitors”); and

  • Register to or otherwise use any of the EngageRocket Services as an applicant, team member or employee of one of our Customers (collectively “Users”), when we act as a controller of your Personal Information.

“You” may, depending on the context, be a Visitor or a User of one or more of the EngageRocket Services.  

This Privacy Policy does not apply to Personal Information relating to EngageRocket’s employment or recruitment-related activities. For purposes of this Privacy Policy, “Personal Information” means any information relating to an identified or identifiable individual (e.g., name, address, email address, or phone number)

 

2. EngageRocket as a Service Provider

EngageRocket’s Customers are organizations who use our services to help them manage their employees’ performance and engagement. We process personal information in these services only according to our Customer’s and their Users’ instructions (as defined in our Customer agreements). If you have questions about Personal Information you have entered into the EngageRocket Services used by one of our Customers, or want to exercise any of your rights regarding your Personal Information, our Customer contract requires that we redirect your inquiry back to that Customer. This Privacy Policy does not apply to the Personal Information we process as a service provider or processor on behalf of our Customers.  

We are not responsible for the privacy or security practices of our Customers, which may differ from those set out in this Privacy Policy. Please review the relevant Customer’s privacy policy to understand more about their data processing activities.

 

3. Privacy Principles

EngageRocket follows these principles in order to protect your privacy:

  • We do not collect any more Personal Information than is necessary to provide the Services or to fulfill our legitimate business purposes;

  • We only use your Personal Information for the purposes we specify in this Privacy Policy, unless you are notified otherwise;      

  • We do not keep your Personal Information after it is no longer needed; and

  • Other than as specified in this Privacy Policy, we do not share your Personal Information with third parties and are not in the business of selling your Personal Information.

4. What Information do we Collect?

The information we collect depends on the ways you interact with EngageRocket and the choices you make (including your privacy settings), the products and features you use, your location and applicable law.

 

(I) Information You Provide to Us

Visitors

‍When a Visitor to our website contacts us and/or registers for information, content or an event sponsored by EngageRocket, we will collect certain personal information so that we may fulfill the Visitor’s request or keep in touch with them in connection with our sales and marketing activities (always in accordance with a Visitor’s marketing preferences). The Personal Information we collect and we may have collected in the past twelve (12) months include:

  • Identifiers, such as your name and business e-mail address;

  • Professional or employment-related information, such as company name, job level, functional role and title;

  • Inferences, such as your contact preferences; and

  • Any other information you provide to us when completing any “free text” boxes in our forms or when you interact with us in the context of troubleshooting and support.

 

‍‍Users

‍If you are a User, you (or your team administrator) may provide certain Personal Information to us through the EngageRocket Services – for example, when you register for a EngageRocket account to access and use our Services, when you consult with customer support or send us an email or communicate with us in any way (for example, to make a support request).

The Personal Information we collect may include:

  • Business information (such as your name, job title, the person you report to, phone number, email address and country);

  • Marketing information (such as your contact preferences);

  • Account log-in credentials (such as your email or username and password when you sign up for an account with us and the unique User/ team ID assigned to you in our systems);

  • Troubleshooting and support data (which is data you provide or we otherwise access in connection with support queries we receive from you. This may include, for example, contact or authentication data, the content of your chats and other communications with EngageRocket, and the product or service you are using related to your help inquiry); and

  • Billing information (including your credit card numbers and associated identifiers, billing address and background information, but only where you pay for the EngageRocket Services).

If you ever communicate directly with us, we will maintain a record of those communications and responses.

 

Job Applicants

If you apply for employment with EngageRocket, we collect certain personal information from you in relation to your application and candidacy for employment.

‍‍

(ii) Information We Collect Automatically

Visitors

‍As is true of most websites, when you visit our sites or interact with our emails, we gather certain technical information from your browser or device automatically and store it in log files.  In some (but not all) countries, including countries in the European Economic Area (“EEA”), UK and Switzerland, this information is considered  Personal Information under data protection laws. To the extent that this automatically-collected data includes, or is linked to, Personal Information, we will treat the data in accordance with this Privacy Policy.  

This information we collect includes:

  • Identifiers, such as your internet protocol (IP) addresses and browser type; and

  • ‍Internet or other electronic network activity, such as your internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and clickstream data.

We use this information to analyze trends, to improve and personalize our marketing activities and websites, to administer our websites and guarantee their security and continued proper functioning, to track Visitors’ movements around the website and to gather non-identifiable, demographic information about our user base as a whole. We may link this automatically-collected data to Personal Information provided by Visitors, or to other publicly available information hosted on the internet, so that we can better gauge our Visitors’ needs and provide specific information to best serve them.

In some cases, we may use cookies and related technologies to collect or manage certain information from your browser and computer. Please see the  below for more information.

 

‍Users

When you use or interact with the EngageRocket Services, we automatically collect or receive certain information through our Services (for example in log files) and through other technologies (such as cookies) about your device and usage of the EngageRocket Services. In some (but not all) countries, including countries in the European Economic Area (“EEA”), UK and Switzerland, this information is considered ‘personal data’ under data protection laws. Please see the section on Cookies below for more information.

The information we collect includes:

  • Log and usage data, which is service-related, diagnostic, usage and performance information our servers automatically collect when you access or use the EngageRocket Services and which we record in log files. This log data may include the Internet Protocol (IP) address, device information, browser type and settings and information about your activity in the Services (such as the date/ time stamps associated with your usage, pages and files viewed, searches and other actions you take (for example, which features you use)), device event information (such as system activity, error reports and hardware settings)

  • ‍Device data, such as information about your computer, phone, tablet or other device you use to access the EngageRocket Services. This device data may include information such as your IP address (or proxy server), device and application identification numbers, location, browser type, hardware model, Internet service provider and/or mobile carrier, operating system and system configuration information. If you are using our mobile app, we may also collect information about the phone network associated with your mobile device, your mobile device’s operating system or platform, the type of mobile device you use, your mobile device’s unique device ID and information about the features of our mobile app you accessed.

  • ‍Location data, such as information about your device’s location, which can be either precise or imprecise. How much of this information we collect depends on the type and settings of the device you use to access the EngageRocket Services. For example, we may use GPS and other technologies to collect geolocation data that tells us your current location (based on your IP address).  You can opt out of allowing us to collect this information either by refusing access to the information or by disabling your Location setting on your device. Note however, if you choose to opt out, you may not be able to use certain aspects of the EngageRocket Services.


This information is used to:

  • maintain the security of the EngageRocket Services;

  • provide necessary functionality;

  • improve performance of our Services;

  • assess and improve your experience of the EngageRocket Services;

  • review compliance with applicable usage terms;

  • identify future opportunities for development of the EngageRocket Services;

  • assess capacity requirements;

  • identify customer opportunities and for the security of EngageRocket generally (in addition to the security of the EngageRocket Services); and

  • analyze overall trends, to help us provide and improve the EngageRocket Services, and to improve their security and proper functioning. ‍

(iii) Information We Collect from Third Parties

‍In order to enhance our ability to provide relevant marketing, offers and services to you and update our records, we may obtain information about you from other sources, such as public databases, joint marketing partners, affiliate programs, data providers, social media platforms, as well as from other third parties. This information may include your: mailing address, job title, functional role, business email, phone numbers, intent data (or user behavior data), IP addresses, social media profiles, social media URLs and custom profile. We process this data for the purposes of: updating our records; targeted advertising; event promotion; optimizing our sites and the EngageRocket Services; for our sales and marketing activities, including to send marketing emails.

5. Cookies and Similar Tracking Technologies

EngageRocket uses a technology called “cookies” to store session information. A cookie is a small amount of data, which often includes an anonymous unique identifier, which is sent to your browser from a website’s computers and stored on your computer’s hard drive. 

We use both session ID cookies and persistent cookies. A “session ID cookie” expires when you close your browser. We use session ID cookies to track your login status. This cookie is only ever transmitted over HTTPS. A “persistent cookie” remains on your hard drive for an extended period of time. We use persistent cookies to determine from where you were referred to our website, as well as the last user ID that you used to log in. EngageRocket may set and access EngageRocket cookies on your computer; cookies are required to use the EngageRocket Services. 

You can learn more about the cookies we use on our site in our Cookie Declaration. If you would like to change your choices about what cookies EngageRocket uses, in your browser settings you can elect to delete all cookies, or just cookies placed by specific websites. Many browsers provide directions for managing cookies in their “help” or other user support directories (for example, this information provided by Google for managing cookies in Chrome). 

You can also click here for more information about cookies, including how to disable them. If you disable cookies, you may still use our website, but your ability to use some areas of our website, such as contests or surveys, will be limited.  

Google Analytics: We use cookies served by Google Analytics to collect limited data directly from Service Users browsers to enable us to better understand your use of the Services, including making use of the demographics and interests reports services of Google Analytics. Further information on how Google collects and uses this data can be found at www.google.com/policies/privacy/partners/. You can opt-out of all Google supported analytics within the Services by visiting https://tools.google.com/dpage/gaoptout.  

We also partner with third-party ad networks to manage our advertising on other sites and with third-party analytics companies to assist us with analyzing the use of our own website. These third-party companies use cookies, web beacons, pixel tags, and related technologies to collect information about your activities on this and other websites to provide you targeted advertising based upon your interests and to provide measurement and analytic services.  

To learn more about third-party advertising, and to opt out of certain ad-targeting activities, please visit: preferences-mgr.truste.com, aboutads.info/choices, and youronlinechoices.com

‍“DO NOT TRACK” SETTING 

Currently, various browsers offer a “do not track” or “DNT” option which sends a signal to websites’ visited by a user about the user’s browser DNT preference setting. EngageRocket does not currently respond to browsers’ DNT signals with respect to the website, in part, because no common industry standard for DNT has been adopted by industry groups, technology companies or regulators, including no consistent standard of interpreting user intent. EngageRocket takes privacy and meaningful choice seriously and will make efforts to continue to monitor developments around DNT browser technology and the implementation of a standard.

6. How do we use your Personal Information?

EngageRocket processes personal information for the following business and commercial purposes, and if you are a resident in the EEA or UK, on the legal basis identified below:

  • Providing our websites and EngageRocket Services: In reliance on our legitimate interest, we process your personal information to operate and administer our websites, and to provide, operate, and maintain the EngageRocket Services;

  • ‍Communicating with you about the EngageRocket Services: We may send you service, technical and other administrative or technical email, messages and other types of notifications(such as distribution and product updates and product patches and fixes) in reliance on our legitimate interests in administering the EngageRocket Services and providing certain features. These communications are considered part of the EngageRocket Services and in most cases you cannot opt-out of them.  If an opt-out is available, you will find that option within the communication itself;

  • ‍Providing necessary functionality: We process your personal information in reliance on our legitimate interest to provide you with the necessary functionality required during your use of our websites and EngageRocket Services.

  • ‍Transactional considerations: We process your personal information to complete transactions, and send you related information, including purchase confirmations and invoices, to perform our contract with you and to the extent necessary in reliance on our legitimate interest;

  • ‍Handling contact and support requests: If you fill out a “Contact Us” web form or request support as a User, or if you contact us by other means including via a phone call, we process your Personal Information to perform our contract with you and/or (if we have not entered into a contract with you) to the extent it is necessary for our legitimate interest in fulfilling your requests and communicating with you;

  • ‍Administering Events: We process your personal information to plan and host events or webinars for which you have registered or that you attend, including sending related communications to you, billing, registration and to connect you with other event attendees, to perform of our contract with you, or to the extent necessary for our legitimate interests in fulfilling your requests to attend any such events;

  • ‍Developing and improving our websites and services:  We process your Personal Information to analyze trends and to track your usage of and interactions with our websites. marketing activities and EngageRocket Services to the extent it is necessary for our legitimate interest in developing, improving and troubleshooting our websites, marketing activities and the EngageRocket Services and providing you with more relevant content and service offerings, or where necessary, in reliance on your consent;

  • ‍Sending marketing communications: We will process your Personal Information for marketing purposes in accordance with your preferences, such as to communicate with you via email, SMS or telephone about services, features, surveys, newsletters, promotions or events we think may be of interest to you and/or to provide other news or information about EngageRocket and/or our select partners, in each case in reliance on our legitimate interest in conducting direct marketing or where necessary with your consent. Please see the “Your Privacy Rights” section below, to learn how you can control the processing of your Personal Information by EngageRocket for marketing purposes;

  • ‍Displaying personalized advertisements and content: We process your Personal Information to conduct marketing research, advertise to you, provide personalized information about us on and off our websites and to provide other personalized content based upon your activities and interests to the extent it is necessary for our legitimate interest in supporting our marketing activities or advertising the EngageRocket Services or, where necessary, to the extent you have provided your prior consent (please see the “Your Privacy Rights” section, below, to learn how you can control how the processing of your Personal Information for personalized advertising purposes);

  • To the extent necessary for our legitimate interests in promoting the safety and security of our websites and services, we use your Personal Information to investigate and prevent fraudulent transactions, unauthorized access to the websites, EngageRocket Services, and other illegal activities;‍

  • For our business purposes, such as data analysis, audits, fraud monitoring and prevention, developing new products and features, enhancing, improving or modifying our products and services, identifying usage trends and expanding our business activities in reliance on our legitimate interests; and

  • ‍Complying with legal obligations: We process your Personal Information when cooperating with public and government authorities, courts or regulators in accordance with our legal obligations under applicable laws to the extent this requires the processing or disclosure of Personal Information to protect our rights or is necessary for our legitimate interest in protecting against misuse or abuse of our websites, the EngageRocket Services, protecting personal property or safety, pursuing remedies available to us and limiting our damages, complying with judicial proceedings, court orders or legal processes or to respond to lawful requests.‍

  • Reviewing compliance with applicable usage terms: We process your Personal Information to review compliance with our contract with you or your organization (where applicable) to the extent that it is in our legitimate interest to ensure adherence to the relevant terms; and‍

  • Other purposes: We will process your Personal Information for other purposes about which we notify you in advance, or for which we receive your consent.

7. What Information We Share or Disclose to Others?

EngageRocket will not share Personal Information, or otherwise make your Personal Information available to any other parties except as provided in this Privacy Policy. Parties with whom we may share your Personal Information, pursuant to any applicable agreements, include:

  • Event Co-Sponsors: If you sign up for an event or content that is co-hosted by EngageRocket and one of its partners or co-sponsors, your  Personal Information may be shared with that partner or co-sponsor. Please see our partner or co-sponsors’ privacy policies for further information about how they use Personal Information.

  • Legal or regulatory bodies and agencies: EngageRocket will share your information, including Personal Information, in order to respond to investigations, court orders, legal processes, or to investigate prevent or take action regarding illegal activities, suspected fraud, or situations involving potential threats to the physical safety of any person, violations of EngageRocket’s Terms of Service, or as otherwise required by law. If EngageRocket is required by law or an order of a court of competent jurisdiction to disclose your information, EngageRocket will promptly notify you of this requirement, if permitted by the court or applicable law, so that you may seek a protective order or other appropriate relief.

  • Service providers: In order to provide our websites, the EngageRocket Services to you and undertake our marketing and business activities, it may be necessary for us to disclose your information to contracted third parties and service provider partners who perform certain functions on our behalf.  Examples include payment providers (to authorize, record, settle and clear payment card transactions); cloud hosting providers (to provide data storage and processing services); communications providers (to process new queries and to manage our emails); and analytics companies to perform analysis. These third-party service providers or vendors may use data we provide to them only as instructed by EngageRocket.

  • Business transfers: If EngageRocket is involved in a merger, acquisition, or sale of all or apportion of its assets, Personal Information may be transferred to the acquiring person or entity, in which case you will be notified via email and/or a prominent notice on our website of any such change in ownership or uses of Personal Information, as well as any choices you may have regarding Personal Information.

  • ‍Advertising partners: We may partner with third party advertising networks, exchanges and social media platforms to display advertising on our websites or to manage and service advertising on other sites and we may share Personal Information with them for this purpose. Please see the section above “Cookies and Other Similar Technology” for further information.

8. Links To Third Party Websites

Our website includes links to other websites whose privacy practices may differ from those of EngageRocket. If you submit information to any of those sites, your information is governed by the privacy policies that apply to those sites. We encourage you to carefully read the privacy policy of any website you visit.

9. How We Protect Your Information

All of your Personal Information remains private and confidential. The security of your Personal Information is important to us. When you enter sensitive information (such as a credit card number) on our order forms, we encrypt the transmission of that information using secure socket layer technology (SSL).

EngageRocket maintains a comprehensive written information security program that complies with applicable law and generally accepted industry standards. Our program includes appropriate administrative, technical and physical safeguards, procedures and practices to protect Personal Information submitted to us, both during transmission and once we receive it. No method of transmission over the Internet, or method of electronic storage, however, is 100% secure. Therefore, we cannot guarantee its absolute security. If you have any questions about security on our website, the EngageRocket® web application owned and operated by EngageRocket, or the EngageRocket Services, please contact us using the contact information below.

EngageRocket and its representatives will never request your account credentials. You should never share your EngageRocket account information, including your username and password, with anyone else. We recommend that you use a unique password for your EngageRocket account that is not associated with other websites. You should check your EngageRocket account regularly to ensure that your Personal Information has not been tampered with or altered. Any suspicious activity regarding your account, including automated messages or calls from parties you cannot identify, should be reported to your site administrator and EngageRocket using the contact information below.

10. Your Privacy Rights

When EngageRocket is acting as a controller, depending on your location, your jurisdiction, and applicable law, you may have the rights below with regard to the Personal Information we control about you. We will respond to your requests within the appropriate timeline under applicable law. Please note, however, that the rights described below are not absolute and, depending on applicable law or in certain cases, may be subject to conditions or limitations. In responding to any request to disclose/delete, EngageRocket shall maintain a record of the requests as required under applicable law.

  • The right of access, or the right to know, means that you have the right to request that we disclose what Personal Information we have collected, used and disclosed about you. You can do so at any time by contacting us using the contact details provided under the “How to Contact Us” heading below. If you are located in California, under the CCPA you have the right to request to know:

    • The specific pieces of personal information we have collected about you;

    • The categories of personal information we have collected, used, and/or disclosed about you; 

    • The categories of sources from which we have collected personal information about you;

    • business and/or commercial purposes for collecting and disclosing your personal information; and

    • the categories of third parties with whom your personal information has been disclosed or shared.

  • The right of deletion means that you have the right to request that we delete Personal Information collected or maintained by us, subject to certain exceptions. As mentioned above, you can do so at any time by contacting us using the contact details provided under the ”How to Contact Us ” heading below.

  • The right to non-discrimination means that you will not receive any discriminatory treatment when you exercise one of your privacy rights, and EngageRocket will not discriminate against an individual for exercising any rights under the CCPA or other applicable privacy law, including, but not limited to, (a) denying goods or its professional services, (b) charging different prices or rates (including discounts/penalties) not directly related to the value provided to EngageRocket for personal information, or (c) suggesting an individual will receive a different rate/price or level of quality of goods/professional services.

  • The right to opt-out, if you are located in California under the CCPA, means you can opt-out of the sale or certain sharing of your personal information by submitting a request at hello@engagerocket.co. Note that EngageRocket does not sell personal information, though in certain instances EngageRocket does share personal information as described in this Privacy Policy.

  • You can also ask us to correct or update your Personal Information; object to the processing of your personal information; ask us to restrict processing of your Personal Information or request the portability of your Personal Information. Again, you can exercise these rights by contacting us using the contact details provided under the “How to Contact Us” heading below

  • While you cannot opt out of service-related emails if you are an account holder, as this is an essential part of the EngageRocket Services, you have the right to opt-out of marketing communications we send you at any time. You can exercise this right by clicking on the “unsubscribe” or “opt-out” link in the marketing e-mails we send you, or you can contact us using the contact information below.

  • Similarly, if we have collected and processed your Personal Information with your consent, then you can withdraw your consent at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your Personal Information conducted in reliance on lawful processing grounds other than consent

  • You have the right to complain to a data protection authority about our collection and use of your Personal Information. For more information, please contact your local data protection authority.

  • EngageRocket does not engage in any automated decision making with User Personal Information.

If your Personal Information has been submitted to us by or on behalf of our Customer (your employer) and you wish to exercise any rights you may have under applicable data protection laws, please inquire with the applicable Customer directly. For more information on how your employer uses your Personal Information, please see your employer’s privacy policy.

11. California Consumer Privacy Act (CCPA) Sale of Personal Information Notice

As mentioned above, EngageRocket may provide third parties with certain personal information to provide or improve our products and services, for example to deliver products or services at your request. In such cases, we require those third parties to handle the information in accordance with applicable laws and regulations. 

EngageRocket does not sell personal information to third parties (pursuant to California Civil Code § 1798.100–1798.199, also known as the California Consumer Privacy Act of 2018) – EngageRocket is not a data broker and does not offer or disclose personal information on the open market, nor does EngageRocket share personal information with third parties for their direct marketing purposes (pursuant to California Civil Code Sec.1798.83). 

In some instances, EngageRocket may disclose limited personal information with some of its advertising partners for our advertising purposes as described in Section 8 above. 

12. How to Contact Us

You can exercise your rights yourself or depending on your country or state, you may be able to designate an authorized agent to exercise these rights on your behalf. Please note that to protect your personal information, we will verify your identity by a method appropriate to the type of request you are making. For example, this could include sending an email to an account on record, or asking you to identify a recent transaction or communication. We may also request that your authorized agent sign a declaration under the penalty of perjury attesting to their designation as your authorized agent, and that they have written permission from you to make requests on your behalf. We may also need to verify your authorized agent’s identity to protect your personal information.

Please send us an email at hello@engagerocket.co, if you would like to:

  • Access this policy in an alternative format;

  • Exercise your rights;

  • Contact EngageRocket’s Data Protection Officer;

  • Learn more about your rights or our privacy practices;

  • Designate an authorized agent to make a request on your behalf; or

  • For questions related to this Privacy Policy, or about any of your rights

13. Data Retention

We will retain your Personal Information for as long as is necessary to fulfill the services that you have requested, comply with any laws or regulations, resolve disputes, and enforce our agreements, unless we receive a verified request under an applicable privacy law for earlier deletion of such Personal Information. Where permitted under applicable law, EngageRocket may retain your data longer for a legitimate business interest where business benefit is not outweighed by your personal rights and freedoms. Data entered into the EngageRocket Services and processed on behalf of our Customers as a service provider or processor is retained in accordance with any applicable agreement between EngageRocket and its Customer.

14. Information About Minors

Our website and services are not targeted at children under sixteen (16) years of age. As such, EngageRocket does not process or disclose Personal Information of minors under sixteen years of age. If you believe we have collected personal information about a child under sixteen, please contact us using the How to Contact Us Section above.

15. Updates to this Privacy Policy

EngageRocket may update this Privacy Policy from time to time and will notify account holders of significant changes in the way we treat any Personal Information, by sending a notice to the primary email address specified in your EngageRocket account. We may also place a prominent notice on our website. We encourage you to periodically review this page for the latest information on our privacy practices.

16. International Data Transfers

Your personal information may be transferred to, and processed in the United States and in any other country where EngageRocket or its affiliates, subsidiaries or third party service providers maintain facilities or personnel. These countries may have data protection laws that are different to the laws of your country (and, in some cases, may not be as protective). We follow applicable data protection laws when transferring personal data. If you are resident in or a visitor from the EEA, United Kingdom or Switzerland, we will protect your Personal Information when it is transferred outside of such locations by processing it in a territory which the European Commission has determined provides an adequate level of protection for Personal Information; or otherwise implementing appropriate safeguards to protect your Personal Information, including through the use of Standard Contractual Clauses or another lawful transfer mechanism approved by the European Commission. 

 

Have more questions? We’re here to help, so don't hesitate to contact us.
© 2023 EngageRocket Pte. Ltd.