Effective date: June 30, 2023
Below is information about how Adaptive Biotechnologies Corporation collects, uses, and discloses personal information.
- For California Residents
- What personal information do we collect about you?
- For which purposes and on what legal basis do we use your personal information?
- Will we share your personal information with third parties?
- How do we use third-party cookies from third party companies or third-party ad networks?
- Will we transfer your personal information internationally?
- Which rights for you have with respect to the processing of your personal information?
- Do we include links to other websites and third-party programs?
- What data security measures do we apply to protect your personal information?
- How long do we retain your personal information?
- What is the minimum age for individuals whose personal information we process?
- Contact Us
- Additional information for individuals in certain jurisdictions
1. For California Residents
We think transparency is important and want to ensure that you have relevant information about how we collect and use personal information. You can find more information about our practices later in this Policy or at our Notice at Collection overview. Please keep in mind that the actual personal information we collect and how we use it varies depending upon the nature of our relationship and interactions with you. Also, in some cases (such as where required by law), we ask for your consent or give you certain choices prior to collecting or using certain personal information.
- Individuals who access or use of our websites and online services (together, the “Services”) or whose personal information we otherwise receive in providing the Services;
- Individuals that register for our Services, for example an Adaptive Immunosequencing Analyzer user account or a Diagnostics Portal account;
- Our current, former, and prospective clients and business partners;
- Attendees and participants at events or conferences that we host or sponsor;
- Individuals who subscribe to receive news, information, and marketing communications from us; and
- Other individuals that otherwise use our Services, communicate or interact with us.
- The samples and associated personal information that we receive from our institutional clients, as a data processor, or any information generated from such samples;
- The samples and associated personal information that we receive from US study participants from any clinical or research study of which Adaptive is sponsoring, or any information generated from such samples;
- Samples and information that we receive related to our clonoSEQ and T-Detect laboratory and testing services or any other information that is subject to HIPAA, such as samples we receive for testing purposes associated with our laboratory services; this information is subject to our HIPAA Notice of Privacy Practices, as well as our Privacy Notice Addendumfor patients outside of the United States; or
- Job applicants and candidates who apply for employment with us, or to employees and non-employee workers, whose personal information is subject to different privacy notices which are provided to such individuals in the context of their employment or working relationship with Adaptive. You can read more about our privacy practices as an employer in our California Privacy Notice for Employees.
3. What personal information do we collect about you?
Generally, we collect your personal information on a voluntary basis. However, if you decline to provide certain personal information that is marked mandatory, you may not be able to access certain of the Services and/or we may be unable to fully respond to your inquiry.
Information We Collect Directly.
We collect information directly from individuals that use our Services, register for or attend our events or otherwise communicate or interact with us.
For example, we may collect the following information from you:
- Registration and account information: When you register a user account or update your profile information in a service user account, we collect your name and job title, your employer name or other affiliation, and other contact information, and when provided, certain health information.
- Purchases and payment information: If you make a purchase, we collect your name and job title, your employer’s name or other affiliation, contact and shipping information including your email address, credit card or other payment card information, your purchase history (which we sometimes aggregate with similar information from other customers).
- Communications: Including any personal information you enter on our websites, such as when completing a “contact us” form. Additionally, when you email us, call us, or otherwise send us communications, we collect and maintain a record of your contact details, communications and our responses. Also, if you post or submit reviews and comments to us, we may maintain a record of this content, including the location, date, and time of submission.
- Marketing, contests and promotions: Including your business contact information, such as if you sign up to receive news, updates, offers and other marketing communications from us, we may collect your name, email address and other contact information. We may also collect name, email address, and other information when you participate in promotions, events or activities offered by us (collectively, “events”) or submit surveys or feedback to us.
Information Related to Your Usage and Activities Within Our Services.
We collect information or derive information about you via automated means (e.g., using cookies and pixel tags) when you use our website or Services or otherwise interact with us and others.
- Activity and usage data: We also collect information regarding the pages you visited, links you clicked, searches and activities performed on our website; and date and time stamps associated with your activities on our websites. We may also collect other technical information to help us identify your device for fraud prevention, diagnostic and similar purposes. Please see Section 6 below for more information.
- Location information: We may collect or derive general location information about you, such as through your IP address.
- Other: We may use CCTV and similar tools to monitor and secure our premises, which may lead to the collection of recordings about visitors to our premises. Further, if you contact our customer support services or participate in public events or webinars, we may record these interactions.
Information We Collect from Third Parties.
We may collect personal information about you from third parties we work with such as third-party providers of services to us (e.g., fraud detection, identity verification and security), social networks, advertising networks, analytics providers, event sponsors, joint marketing partners, public records, and our affiliated companies.
- Information from third party platforms related to your posts about or interactions with us on social media services. For information about how these third-party platforms may use and disclose your information, including any information you make public, please consult their respective privacy policies.
- Information from advertising networks or analytics providers related to your viewing of interactions with our ads, marketing or other content.
- Demographic information, updated professional or contact details and similar lead and prospect information from data brokers, public records, and affiliated companies.
4. For which purposes and on what legal bases do we use and process your personal information?
We may collect, use, disclose, and otherwise process your personal information for the purposes described in this section.
A. Legal Bases for Processing Personal Information (where applicable)
Certain laws, including the General Data Protection Regulation (GDPR), require that we inform you of the legal bases for our processing of your personal information. Pursuant to the GDPR (and other similar relevant laws, such as the UK Data Protection Act), we may process personal information for the following legal bases:
- Performance of contract: Processing of your personal information which is required for us to perform obligations or exercise rights under contracts that you may have with us (for example, if you use our Services).
- Compliance with laws: To comply with our legal obligations (for example, maintaining information in accordance with tax, audit, or company law requirements and responding to legal process).
- Our legitimate business interests: In furtherance of our legitimate business interests including:
- to facilitate your participation in interactive features you may choose to use on our websites and Services and to personalize your experience with the Services by presenting content tailored to you.
- to correspond with you, notify you of events or changes to our Services, or otherwise respond to your queries and requests for information, which may include marketing to you.
- to send you advertising material via email, such as surveys and promotions (except where consent is required under applicable laws).
- to provide and personalize the Services.
- for data analysis, audits, fraud monitoring and prevention, and developing new products, enhancing, improving or modifying our websites, identifying usage trends, determining the effectiveness of our promotional campaigns and operating and expanding our business activities.
- to protect and defend our legal rights and interests and those of third parties.
B. Use and Processing of Personal Information
We collect, use, and otherwise process your personal information for the below commercial or business purposes. While the purposes for which we may process personal information will vary depending upon the circumstances, in general we use personal information for the purposes set forth below. Where GDPR or other similar relevant laws apply, we have set forth the legal bases for such processing (see above for further explanation of our legal bases).
|Processing Activity||Legal Basis|
|Providing support and Services: including to provide our Services; to communicate with you about your access to and use of our Services; to respond to your inquiries; to provide troubleshooting, fulfill your orders and requests, process your payments and provide technical support; and for other customer service and support purposes.||Performance of our contract with you (Art. 6(1)(b) GDPR); and our legitimate interests (Art. 6(1)(f) GDPR)|
|Analyzing and improving our business: including to better understand how users access and use our Services, to evaluate and improve our Services and business operations, and to develop new Services; to conduct surveys and other evaluations (such as customer satisfaction surveys); and for other research and analytical purposes.||Our legitimate business interests (Art. 6(1)(f) GDPR) and/or with your consent (Art. 6(1)(a) GDPR)|
|Personalizing content and experiences: including to tailor content we send or display on our websites and other Services; to offer location customization and personalized help and instructions; and to otherwise personalize your experiences.||Our legitimate business interests (Art. 6(1)(f) GDPR) and/or with your consent (Art. 6(1)(a) GDPR)|
|Advertising, marketing, and promotional purposes: including to reach you with more relevant ads and to evaluate, measure, and improve the effectiveness of our ad campaigns; to send you newsletters, offers, or other information we think may interest you; to contact you about our Services or information we think may interest you; and to administer promotions and contests.||Our legitimate business interests (Art. 6(1)(f) GDPR) and/or with your consent (Art. 6(1)(a) GDPR)|
|Planning and managing events: for event planning and management, including registration, attendance, connecting you with other event attendees, and contacting you about relevant events and related services.||Performance of our contract with you (Art. 6(1)(b) GDPR); our legitimate business interests (Art. 6(1)(f) GDPR) and/or with your consent (Art. 6(1)(a) GDPR)|
|Market research and surveys: to administer surveys and questionnaires||Our legitimate business interests (Art. 6(1)(f) GDPR) and/or with your consent (Art. 6(1)(a) GDPR)|
|Securing and protecting our business: including to protect and secure our business operations, assets, Services, network, and information and technology resources; to investigate, prevent, detect and take action regarding fraud, unauthorized access, situations involving potential threats to the rights or safety of any person or third party, or other unauthorized activities or misconduct.||Our legitimate business interests (Art. 6(1)(f) GDPR) and/or compliance with laws (Art. 6(1)(c) GDPR)|
|Defending our legal rights: including to manage and respond to actual and potential legal disputes and claims, and to otherwise establish, defend, or protect our rights or interests, including in the context of anticipated or actual litigation with third parties.||Our legitimate business interests (Art. 6(1)(f) GDPR) and/or compliance with laws (Art. 6(1)(c) GDPR)|
|Auditing, reporting, corporate governance, and internal operations: including relating to financial, tax and accounting audits; audits and assessments of our operations, privacy, security and financial controls, risk, and compliance with legal obligations; our general business, accounting, record keeping, and legal functions; and related to any actual or contemplated merger, acquisition, asset sale or transfer, financing, bankruptcy, or restructuring of all or part of our business.||Our legitimate business interests (Art. 6(1)(f) GDPR) and/or compliance with laws (Art. 6(1)(c) GDPR)|
|Complying with legal obligations: including to comply with the law, our legal obligations and legal process, such as warrants, subpoenas, court orders, and regulatory or law enforcement requests.|
5. Will we share your personal information with third parties?
We may disclose the personal information we collect as set forth in this section.
- Vendors and service providers: To third-party service providers and others who provide us with services such as website hosting, payment processing services, and postal services.
- Event organizers: To third parties involved with events that you register for, to facilitate your participation in those events.
- Business partners: To our business partners in order to perform services you request or authorize, including as set forth in this policy, in accordance with our commercial practices.
- Corporate transactions and restructuring: In connection with planning, due diligence, negotiation and implementation of an actual or potential corporate reorganization, merger, sale, joint venture, transfer, investment transaction, or other disposition of all or any of our business, including in connection with any bankruptcy or similar proceedings.
- Advertising and analytics partners: To third parties that provide advertising, campaign measurement, online and mobile analytics, and related services to us (with your consent, where required by applicable laws). They may use this information to help us better reach individuals with relevant ads and to measure and improve our ad campaigns, or to better understand how individuals interact with our Services. In addition, these third parties may combine the information collected from us and our Services with information collected about you from third-party sites, apps and services, in order to make inferences about you and your interests, to better tailor advertising and content to you across multiple sites, apps, and services, and to collect associated metrics.
- With consent: To third parties for other purposes, with your consent or where you have requested us to disclose your personal information.
Aggregate and De-identified Information.
Our websites may use first party and third-party cookies, pixel tags, plugins and other tools, which are used in order to operate, secure and ensure the proper functionality of the websites and are otherwise necessary to the operation of the website (“necessary cookies”). On some of our websites, we may also use these tools to gather device, usage, and browsing information in order to personalize and improve your experience while using the websites, to improve and measure our advertising campaigns and to better reach users with relevant advertising both on our websites and on third-party websites, and to protect our Services.
Cookies. A cookie is a small file that we transfer to your computer’s hard drive through your web browser for record-keeping purposes. Some cookies allow us to make it easier for you to navigate our website, while others are used to enable a faster log-in process or to allow us to track your activities while using our website. Most web browsers automatically accept cookies, but if you prefer, you can edit your browser options to block them in the future. The Help portion of the toolbar on most browsers will tell you how to prevent your computer from accepting new cookies, how to have the browser notify you when you receive a new cookie, or how to disable cookies altogether. Some of the Services may not work properly if you disable cookies.
Pixel Tags. Pixel tags (also known as web beacons and clear GIFs) may be used in connection with some websites to, among other things, track the actions of users of the websites (including email recipients), measure the success of our marketing campaigns and compile statistics about usage of the websites and response rates. We and our service providers also use pixel tags in HTML emails to our customers, to help us track email response rates, identify when our emails are viewed, and track whether our emails are forwarded.
Log Files. Most browsers collect certain information, such as your IP address, device type, screen resolution, operating system version, and internet browser type and version. This information is gathered automatically and stored in log files.
Managing Your Cookie Preferences. You can manage your cookie preferences for our websites and opt out of certain cookies as explained below.
- Cookie Settings: On most of our websites, you can review or change your preferences for that website by adjusting your cookie settings.
- Browser controls: In addition, you may block or disable cookies for the device and browser you are using, through your browser settings; however, certain features on our websites may not be available or function properly if you block or disable cookies.
- Do-not-track signals: Please note that our websites do not recognize or respond to any signal which your browser might transmit through the so-called ‘Do Not Track’ feature your browser might have. If you wish to disable cookies on our websites, you should not rely on any ‘Do Not Track’ feature your browser might have.
Please note, that your preferences are applied on a browser and device basis. So, you will need to set your cookie preferences for each browser and device you use to access certain of our websites. Further, if you subsequently delete cookies, your preferences may be lost and need to be reset. Our websites that only use necessary cookies do not include a cookie settings manager.
7. How do we use third-party cookies from third party companies or third-party ad networks?
In addition, we may share certain hashed customer list information, such as email address, (“Custom Lists”) with third parties—such as Facebook, LinkedIn and Google—so that we can better target ads and content to our users and others with similar interests within their services. These third parties use the personal information we provide to help us target ads and to enforce their terms, but we do not permit them to use or share the data we submit with other third-party advertisers.
On our websites that include targeting cookies, you may review, opt out of or update your preferences for third-party advertising tags and cookies on that website, using our Cookie Settings manager, as noted in Section 6 above. In addition, you can opt out of being included in our Custom Lists by submitting a request through our Custom List Settings Portal.
In addition, you can learn more about the information collection practices and “opt-out” procedures of many third-party ad companies by visiting www.aboutads.info/choices (US), or www.youradchoices.ca/choices/ (Canada), or www.youronlinechoices.com (EU).
8. Will we transfer your personal information internationally?
Adaptive is located in the United States. If you are located outside the United States—such as in the European Economic Area (EEA), the United Kingdom (UK), or Switzerland—and you submit personal information to Adaptive, that information will be transferred to the United States and other jurisdictions in which we or our vendors operate. The data protection laws in these jurisdictions may not be equivalent to those in your jurisdiction of residence. Adaptive will take steps to ensure that your personal information is subject to appropriate safeguards, including, where required, by implementing appropriate adequacy measures, such as the EU standard contractual clauses (as approved by the European Commission) for the transfer of personal data to processors established in third countries. The current form for the standard contractual clauses can be found at https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en. For additional information regarding the mechanism under which your personal data is transferred outside of the EEA/UK, you may contact us as set forth below, in Section 16 – Contact Us.
9. Which rights do you have with respect to the processing of your personal information?
Subject to applicable law, Adaptive gives individuals several ways to access, amend, and exercise their choices and rights regarding their personal information, as set forth in this section.
Marketing preferences. You may opt out of marketing emails by using the unsubscribe option in each marketing email we send to you. If you opt out of direct marketing communications, we may to the extent permitted by applicable law still send you non-promotional communications, such as those about your account or our ongoing business relationship. In addition, you can opt out of being included in our Custom Lists by submitting a request through our Custom List Settings Portal.
Cookie settings. On our websites that include targeting cookies, you may review, opt out of or update your preferences for third-party advertising tags and cookies on that website, using our Cookie Settings manager, as noted in Section 7 above.
Access, amendment and deletion. You may request to review, make amendments, have deleted, or otherwise exercise your rights, under applicable privacy laws, over your personal information that we hold, subject to certain limitations under applicable law. You may submit a request to us related to your personal information by utilizing our Data Subject Request Portal or emailing us at email@example.com. Please note that we may maintain copies of information that you have updated, modified, or deleted, in our business records and in the normal course of our business operations, as permitted or required by applicable law. Your access to or correction of your personal information is subject to applicable legal restrictions and the availability of such information. Further, we may take reasonable steps to verify your identity before granting such access or making corrections.
We may not always be able to fully address your request, for example if it would impact the duty of confidentiality that we owe to others, if we are legally entitled to deal with the request in a different way, or if relevant exemptions apply to some or all of the personal information subject to the request.
- EEA/UK: If you are located in the EEA/UK, please review Section 17 A. GDPR – EEA/UKbelow for information about data subject rights under the GDPR and UK Data Protection Act.
- California: If you are a California resident, please review Section 17 – CCPA –California Residents for additional information for California residents, about their rights under the CCPA.
- Other US States: If you are a Connecticut, Colorado, Utah or Virginia resident, please review Section 17 C. – Residents in Other US Jurisdictions.
10. Do we include links to other websites and third-party programs?
11. What data security measures do we apply to protect your personal information?
We have implemented security measures designed to protect the personal information we collect from unauthorized access or disclosure, including technical and organizational security measures designed to safeguard and secure the personal information we collect. Despite this, data security cannot always be guaranteed. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of your account has been compromised), please immediately notify us at firstname.lastname@example.org. In addition, you or anyone on your behalf are specifically requested not to send to us any health information or other sensitive personal information via email or via our external website outside of information related to the purchasing of T-Detect; for information related to our clonoSEQ services, such information may be submitted in Adaptive’s secure Diagnostics Portal.
12. How long do we retain your personal information?
13. What is the minimum age for individuals whose personal information we process?
Our websites are directed towards adults. We do not knowingly collect or use any personal information from children under the age of sixteen (16) on our websites, and if we become aware that we have collected such information we will take steps to delete it.
16. Contact Us
You may also contact us via postal mail at:
Adaptive Biotechnologies Corporation
Attn: Adaptive Legal Department
Privacy and Data Protection Officer
1165 Eastlake Avenue East,
Seattle, Washington 98102, USA
17. Additional information for individuals in certain jurisdictions
A. GDPR Rights – EEA/UK
To the extent that the GDPR or the UK Data Protection Act applies to Adaptive’s processing of your personal information, you may, subject to applicable law, have the following rights in relation to your personal information:
- To obtain from us confirmation as to whether personal information concerning you is being processed, and where that is the case, to request access to the personal information. The accessed information includes – among others – the purposes of the processing, the categories of personal information concerned, and the recipients or categories of recipient to whom the personal information have been or will be disclosed. You have the right to obtain a copy of the personal information undergoing processing. For further copies requested by you, we may charge a reasonable fee based on administrative costs;
- To correct any personal information that we hold about you;
- To have your personal information deleted under certain circumstances unless continued processing is necessary by law;
- To have the processing of your personal information restricted where you dispute its accuracy, if you think its processing is unlawful, or if you otherwise object to its processing, or when Adaptive no longer needs your personal information and you need it in relation to a legal claim;
- To receive copies of your personal information we have obtained from you in a structured, commonly used, and machine readable format and to reuse it elsewhere or to ask us to transfer it to a third party of your choice, under certain circumstances;
- To object at any time to any processing of your personal information which has our legitimate interests as its legal basis. You may exercise this right without incurring any costs. If you raise an objection, we have an opportunity to demonstrate that we have compelling legitimate interests which override your rights and freedoms. The right to object does not exist, in particular, if the processing of your personal information is necessary to take steps prior to entering into a contract or to perform a contract already concluded;
- To request that we change the manner in which we contact you for direct marketing purposes. You can request that we do not transfer your personal information to unaffiliated third parties for the purposes of direct marketing or any other purposes;
- To obtain a copy of, or reference to, the safeguards under which your personal information is transferred outside the EU/EEA/UK. We may redact data transfer agreements to protect commercial terms;
- To complain to your national data protection regulator if you feel that any of your personal information is not being processed in accordance with the GDPR or UK law; and
- To withdraw your consent, where the processing of your personal information is based on consent (see Section 5 above); if you withdraw your consent, Adaptive will, without affecting the lawfulness of our processing prior to the withdrawal of your consent, stop processing your personal information, unless we have another legal basis for doing so.
Please note that we may rely on applicable exemptions under EU, Member State, or UK law in order to deny part or all of your request. If we do so, we will inform you when responding to your request.
EU / UK Representative. Adaptive has representatives established in the EU and UK to comply with EU and UK law. You can contact our EU and UK representatives using the following information:
· EU Representative:
· UK Representative:
B. CCPA – California Residents
In this subsection, we provide additional information for California residents, as required under California privacy laws, including the California Consumer Privacy Act (CCPA) and the California Consumer Rights Act (CPRA), which requires that we provide California residents certain specific information about how we handle their personal information, whether collected online or offline, and the rights California residents have related to their personal information. Below, we provide information as required under California privacy laws, including the CCPA. This subsection does not address or apply to our handling of publicly available information made lawfully available by state or federal governments or other personal information that is subject to an exemption under Section 1798.145(c) – (f) of the CCPA.
i. For what purposes do we use personal information? Generally, we use and disclose personal information for the following purposes:
- Providing support and Services and operating our websites;
- Analyzing and improving our business;
- Personalizing content and experiences;
- Advertising, marketing and promotional purposes;
- Planning and managing events;
- Market research and surveys;
- Securing and protecting our business;
- Defending our legal rights;
- Auditing, reporting, corporate governance, and internal operations; and
- Complying with legal obligations.
ii. Which categories of personal information do we collect, and to which third parties do we disclose it for a business or commercial purpose?
Our collection, use, disclosure, and other processing of personal information about a California resident will vary depending upon the circumstances and nature of our interactions or relationship with such resident. The table below sets out, generally, the categories of personal information (as defined by the CCPA) we collect about California residents and how we may disclose such personal information to third parties for a business or commercial purpose.
Categories and Description of Personal Information Collected
Categories of Third Parties to Whom We May Disclose this Information for a Business or Commercial Purpose
Includes direct identifiers, such as a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, government identifiers, and other similar identifiers.
Includes paper and electronic customer records containing personal information (such as name, contact information) that individuals provide us in order to obtain our products and services. For example, this may include information collected when an individual register for an account or enters into an agreement with us related to our services.
Includes characteristics of protected classifications under US state or federal laws, such as race, sex, age, and disability, such as disability information and medical conditions (e.g., which we may collect in order to make available appropriate accommodations for events and other activities we host).
Includes records of personal property, products or Services purchased, obtained, or considered, or other purchasing or use histories or tendencies.
Internet or other electronic network activity information
Includes browsing history, clickstream data, search history, and information regarding a resident’s interaction with an internet website, application, or advertisement, including access logs and other usage data related to your use of any company websites, applications or other online services.
Includes precise location information.
Professional and employment information
Includes professional or employment-related information (such as current and former employer(s) and position(s), business contact information and professional memberships).
Information about an individual’s education history.
Audio, video and other electronic data
Includes audio, electronic, visual, thermal, olfactory, or similar information, such as, thermal screenings and CCTV/video footage
Profiles and Inferences
Includes inferences drawn from personal information to create a profile reflecting a resident’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, or aptitudes.
Sensitive personal information
As an employer and/or prospective employer, assigned work location, contract holder or holder of other employer-like relationship, we may collect certain sensitive information about you. You can read more about our privacy practices as an employer in our California Privacy Notice for Employees.
iii. What categories of personal information may be sold or shared with third parties?
The CCPA defines a “sale” as disclosing or making available personal information to a third party in exchange for monetary or other valuable consideration and “sharing” broadly includes disclosing or making available personal information to a third party for purposes of cross-context behavioral advertising. While we do not disclose personal information to third parties in exchange for monetary compensation, we may disclose or make available to third-party ad companies (e.g., through third-party cookies and pixel tags on our websites) identifiers and internet and other electronic activity information in order to improve and measure our ad campaigns and reach customers and potential customers with more relevant ads and content. Where relevant, users can opt out of such third-party tags and cookies, other than those that are “necessary”, by adjusting their cookie settings. Our Cookie Preference Manager is also accessible through the “Do Not Sell or Share My Personal Info (CA Residents)” link in the footer of our website.
iv. From which sources do we collect personal information?
We have collected the above categories of personal information from the following sources:
- Directly from you
- Service providers
- Advisors and agents
- Government entities and law enforcement
- Our affiliates and subsidiaries
- Event organizers
- Business partners who provide services you request
- Advertising networks
- Analytics providers
- Social networks
- Internet service providers
- Operating systems and platforms
v. For which purposes do we collect and use personal information?
As described in more detail in Section 4, we collect, use and otherwise process the above personal information in order to provide our Services to you, respond to and fulfil your orders and requests, as otherwise directed or consented to by you, and for the following business or commercial purposes:
- Providing support and Services and operating our websites;
- Analyzing and improving our business;
- Personalizing content and experiences;
- Advertising, marketing and promotional purposes;
- Planning and managing events;
- Research and surveys;
- Securing and protecting our business;
- Defending our legal rights;
- Auditing, reporting, corporate governance, and internal operations; and
- Complying with legal obligations.
Notwithstanding the above, we only use and disclose sensitive personal information as authorized pursuant to the CCPA (section 7027 of the CCPA regulations (Cal. Code. Regs., tit. 11, § 7027 (2022)) and in accordance with other relevant laws to which we are subject. Accordingly, we will only use and disclose sensitive personal information as reasonably necessary (i) to perform our services requested by you, (ii) to help ensure security and integrity, including to prevent, detect, and investigate security incidents, (iii) to detect, prevent and respond to malicious, fraudulent, deceptive, or illegal conduct, (iv) to verify or maintain the quality and safety of our services, (v) for compliance with our legal and regulatory obligations, (vi) to our service providers who perform services on our behalf, and (vii) for purposes other than inferring characteristics about you.
vi. Who may we disclose your personal information to?
As described in more detail in Section 5, we may disclose your personal information for the purposes described above, in order to provide our Services to you, to respond to and fulfil your orders and requests, as otherwise directed or consented to by you, and as follows:
- To vendors and service providers;
- To event organizers;
- To business partners;
- To Adaptive affiliates and subsidiaries;
- For corporate transactions and restructuring;
- To third parties due to legal obligations;
- To protect us and others;
- To Advertising and analytics partners;
- With consent or where you have requested us to disclose your personal information.
vii. What rights apply to California residents?
California law grants California residents certain rights as set forth below.
- Opt-Out of Sales and Sharing: California residents have the right to opt-out of our sale and sharing of their personal information. We do not sell or share personal information about residents who we know are younger than 16 years old without opt-in consent.
- Limit Uses and Disclosures of Sensitive Personal Information: To the extent sensitive personal information is governed by the CCPA, California residents have the right to limit our use or disclosure of sensitive personal information to those authorized by the CCPA.
- Request to Correct: California residents have the right to correct inaccurate personal information that we maintain about them.
- Request to Delete:Subject to certain exceptions, California residents have the right to, at no charge, request deletion of their personal information that we have collected about them and to have such personal information deleted, except where an exemption applies.
- Request to Know/Access: California residents have the right to request and, subject to certain exemptions, receive a copy of the specific pieces of personal information that we have collected about them and to receive information about how we have handled their personal information in the prior 12 months, including the:
- categories of personal information collected;
- categories of sources of personal information;
- business and/or commercial purposes for collecting and selling their personal information;
- categories of third parties to whom we have disclosed or shared their personal information;
- categories of personal information that we have disclosed or shared with a third party for a business or commercial purpose; and
- categories of third parties to whom the residents’ personal information has been sold and the specific categories of personal information sold to each category of third party.
California residents may make a Request to Know/Access up to twice every 12 months.
- Right to Non-discrimination: California residents have the right not to be subject to discriminatory treatment for exercising their rights under the CCPA.
Submitting Requests. California consumers (or their authorized agents) may submit verifiable Requests to Know/Access, Requests to Correct and Requests to Delete by submitting a request to us online through our Data Subject Request Portal. You may also submit a request to us by phone at (888) 552-8988 (US Toll Free). We will respond to California residents’ requests as required by the CCPA.
You must complete all required fields on our webform (or otherwise provide us with this information via phone). We will take steps to verify your request by matching the information provided by you with the information we have in our records. If we are unable to adequately verify a request, we will notify the requestor. In some cases, we may request additional information in order to verify your request or where necessary to process your request. Authorized agents may initiate a request on behalf of another individual online using our webform; authorized agents will be required to provide proof of their authorization and we may also require that the relevant consumer directly verify their identity and the authority of the authorized agent.
Request to Opt-Out. You may exercise their right to opt out by clicking the “Do Not Sell link in the footer of our websites; and by adjusting their Cookie Settings.
Cookie Settings. In addition, our website responds to global privacy control—or “GPC”—signals, which means that if we detect that your browser is communicating a GPC signal, we will process that as a request to opt that particular browser and device out of sales and sharing (i.e., via cookies and tracking tools) on our website. Note that if you come back to our website from a different device or use a different browser on the same device, you will need to opt out (or set GPC for) that browser and device as well. More information about GPC is available at: https://globalprivacycontrol.org/.
Please note, that our websites that include only necessary cookies do not include a Cookie Settings manager.
For more information about our privacy practices, you may contact us as set forth in the Contact Us section above.
vii. What rights apply to residents of other US states?
Residents of certain states (including Connecticut, Colorado, Utah and Virginia) have additional rights under applicable privacy laws, subject to certain limitations, which may include:
- Correction: The right to correct inaccuracies in their personal information, taking into account the nature and purposes of the processing of the personal information.
- Deletion: To delete their personal information provided to or obtained by us.
- Access: To confirm whether we are processing their personal information and to obtain a copy of their personal information in a portable and, to the extent technically feasible, readily usable format.
- Opt-Out: To opt out of certain types of processing, including:
- to opt out of the “sale” of their personal information;
- to opt out of targeted advertising by us; and
- to opt out of any processing of personal information for purposes of making decisions that produce legal or similarly significant effects.
You may submit a request to exercise most of your privacy rights under U.S. state privacy online using our Data Subject Requests Portal (See Section 9. Your Privacy Choices for additional information about the privacy choices we provide and how to exercise them.). To fill out the form, you must provide the information requested at the prompt. This information may change depending on the jurisdiction in which you reside, who you are, and the nature of your request. You may also submit a request to exercise your privacy rights by contacting us at email@example.com. Colorado residents may also contact us by phone using our US toll free number, available at (888) 552-8988. You may be contacted to provide additional information or to clarify the scope of your request if necessary to help facilitate the resolution of your request. We will respond to your request as required under the applicable privacy law(s). In certain states, you may appeal our decision by contacting firstname.lastname@example.org. You have the right to have an appropriate authorized agent submit the request on your behalf.