Effective date: Aug 18, 2021
Personal Information the Anaplan Platform Processes
In the normal course of using the Platform, each Client user must provide an email address, which will serve as a username for login and authentication purposes, and a contact point for Platform related messages.
Clients will input electronic data into the Anaplan systems (“Client Data”). The use of information collected through the Platform is limited to the purpose of providing the service for which the Client engaged Anaplan. Anaplan may access Client Data for the purposes of providing the Platform, preventing or addressing service or technical problems, responding to support issues, responding to Client’s instructions or as may be required by law, in accordance with the relevant agreement between Client and Anaplan.
Anaplan processes Client Data under the direction of its Clients, and has no direct control or ownership of such personal data. Clients are responsible for complying with any regulations or laws that require providing notice, disclosure and/or obtaining consent prior to transferring the Client Data to Anaplan for processing purposes. We may transfer personal information to companies that help us provide our service. A list of our sub-processors is available upon request and can be found at Subprocessors . Transfers of personal data to third parties are covered by the service agreements with our Clients and sub-processors.
Anaplan acknowledges that you have the right to access your personal information. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data, should direct his or her question to the applicable Client (the data controller). If the Client requests Anaplan to remove the personal data to comply with data protection regulations, Anaplan will assist Client with or perform such removal in accordance with Client’s instructions and subject to Anaplan’s ability to access data as needed to respond to the request. Anaplan will refer any request for disclosure of personal data by a law enforcement authority to the Client. Anaplan may, where it concludes that it is legally obligated to do so, disclose personal data to law enforcement or other government authorities. Anaplan will notify Client of such request unless prohibited by law.
Accessing the Platform
Clients and their authorized users may access the Platform directly by login on the Anaplan website, or may elect to use internal launch pages for single sign on or other purposes. Clients input information for processing and storage as they use the Platform. Clients may also configure the Platform to allow authorized end users to input information directly into the Platform.
Anaplan retains Client Data according to the timeframes set forth in the relevant agreement with its Clients. We will retain personal data we process on behalf of our Clients for as long as needed to provide services to our Client. Anaplan will retain this personal information as necessary to comply with our legal obligations, resolve disputes and enforce our agreements.
As a global organization, data we collect may be transferred internationally throughout Anaplan’s worldwide organization. We will not sell individual information and will share it only as outlined in this Policy. We may share your information with service providers such as our hosting provider, or email service provider. These companies are authorized to use your personal information only as necessary to provide these services to us. Before you submit any personal information, we will notify you as to why we are asking for specific information and it is up to you whether or not you want to provide it.
We may disclose your personal information as required by law, such as to comply with a subpoena, or similar legal process and when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request or to any third party with your consent to do so. We will have no duty to notify you of such compliance with local law where applicable.
Subject to the terms set forth in the relevant agreement with its Clients, if Anaplan is involved in a merger, acquisition, or sale of all or a portion of its assets, you will be notified via email and/or a prominent notice on our Websites of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.
Anaplan will not use or share your personal information in ways unrelated to those described above without first notifying you and offering you a choice as to whether or not we may use your personal Information in a different manner.
The security of Client Data, including personal data, is very important to Anaplan. Anaplan maintains a comprehensive written information security program that contains administrative, technical, and physical safeguards designed to prevent unauthorized access to Client Data. Additional information about the security features of the Platform can be found in the relevant agreements between Anaplan and its Clients.
As is true of most websites, we gather certain information automatically. This information may include Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring/exit pages, the files viewed on our site (e.g. HTML pages, graphics, etc.), operating system, date/time stamp, and/or clickstream data to analyze trends in the aggregate and administer the site.
When you get access to the Platform, you may also have access to community sites that allow you to subscribe using your email address and post information under your user name. As a user, you can request deletion of your community profile by sending an email to [email protected].
EU-U.S. Privacy Shield
EU-U.S. Transfer of Personal Data
Anaplan, Inc. is responsible for the processing of EU personal data it receives pursuant to the European Commission’s Standard Contract Clauses, which are incorporated into Anaplan’s Data Processing Addendum.
While Anaplan also adheres to the EU-U.S. Privacy Shield and the Swiss-US Privacy Shield Frameworks, Anaplan no longer relies on the Privacy Shield Frameworks as a legal basis for transfers of personal data in light of invalidation by the Court of Justice of the European Union and the Federal Data Protection and Information Commissioner (FDPIC) of Switzerland. For more information, visit the U.S. Department of Commerce’s Privacy Shield List and https://www.privacyshield.gov/Program-Overview.
With respect to personal data received or transferred pursuant to the Privacy Shield Framework, Anaplan, Inc. is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission AND/OR the U.S. Department of Transportation. In certain situations, Anaplan, Inc. may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
Under certain conditions, more fully described on the Privacy Shield website – https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
Changes to this Policy
We are interested in maintaining your privacy and creating a valuable resource for you to use.
50 Hawthorne St.
San Francisco, CA 94105 United States
Contact us at [email protected]