Privacy Statement updated as of 25 May 2018, Inc. and its subsidiaries (“Certinia”) are committed to privacy and data protection. This Privacy Statement describes Certinia’s privacy practices and how we use personal information we collect from:

  1. When this Privacy Statement applies
  2. Other websites
  3. What personal information we collect
  4. How we use the personal information we collect
  5. How we use cookies and other website navigational information
  6. Public forums and customer testimonials
  7. How we share your Information
  8. International transfer of information collected and Privacy Shield compliance
  9. How to access, correct, update and request deletion of your information
  10. Data security and integrity
  11. Mobile applications
  12. Policy towards children
  13. Changes to Privacy Statement
  14. Conflicts
  15. How to contact us

1. When this Privacy Statement applies

This Privacy Statement applies to the data collected through the following websites (that link to this Privacy Statement):

These websites are collectively referred to as the “Websites” in this Privacy Statement., inc. and its subsidiaries (“Salesforce”) host the online enterprise resource planning and related applications and services that we sell to our customers (“Services”), as well as some of the systems we use to store and process information we receive from Website Visitors, Attendees, and individuals with whom we interact through email, other messaging systems, or telephone. This means that information submitted to our Services, and some other information Certinia receives from you, is stored and maintained in accordance with Salesforce’s Privacy Statement, which can be viewed here: Our Privacy Statement does not create any obligation on the part of Salesforce.

2. Other websites

Our Websites may contain links to other websites. This Privacy Statement only applies to the Websites referenced above, not to other websites for which our Websites may contain links .

3. What personal information we collect

Certinia collects the following personal information from Visitors, Customers, Attendees and Participants.

When you use our Websites as a Visitor, we may use cookies and other website navigational tools to collect information such as the date and time of your access, your web browser (such as browser type and browser language), your Internet Protocol (“IP”) address, and the actions you take on the Websites (such as the web pages viewed and the links clicked). For further information on our use of cookies and website navigational tools, please refer to Section 5 How we use cookies and other website navigational information.

When you submit or provide information to us, the personal information we collect may include the following:

If you apply for a job at Certinia, we will collect personal information from you, subject to our Job Applicant Privacy Notice.

4. How we use the personal information we collect

Certinia uses the personal information we collect as follows:

Web registration information, telephone prospect information, billing information (except credit card information) and email and messaging information

Credit card information
We use credit card information solely to check the financial qualifications of prospective customers and to collect payment for the Services and events.

Job application information
When you submit your CV or resume to, or apply for a job at, Certinia, we may use the personal information we receive in that process as described in our Job Applicant Privacy Notice.

Website navigational information
Certinia uses website navigational information to operate and improve our Websites. We may also use website navigational information alone or in combination with information collected through web registrations, telephone prospecting, billing information (other than credit card information) and email and other social media messaging information to provide personalized information about us and our Services. For additional information about the use of website navigational information, please click here.

Customer Community

Legitimate interests of Certinia
When you visit our Websites, or provide personal information to us through other means, your information will be used for the legitimate interests of Certinia unless otherwise stated in this Privacy Statement or as part of a separate notice. Certinia may also aggregate your information with data that you separately provide on social media and third-party websites.

Our legitimate interests include:

5. How we use cookies and other website navigational information

Certinia uses cookies to make your interactions on our Websites easy and meaningful. When you access our Websites, our servers send a cookie to your computer. Below is a description of the types of cookies we use and when and how you can control their use.

Type of CookieDescriptionManage Settings
Required Cookies
(sometimes also known as session cookies)
Required cookies enable you to navigate our Websites and use their features, such as accessing secure areas of the Websites and using our Services.If you have chosen to identify yourself to Certinia, we may place on your browser cookies containing an encrypted, unique identifier. These cookies allow us to uniquely identify you when you are logged into the Websites and Services and to process your online transactions and requests.Because required cookies are essential to operate Certinia’s Websites and the Services, you cannot opt out of these cookies.
Functionality CookiesFunctionality cookies allow our Websites and Services to remember information you have entered or choices you make (such as your username, language, or your region) and provide enhanced, more personal features. These cookies also enable you to optimize your use of our Websites and Services after logging in.When you visit our Websites, purchase Services or provide us with personal information, a unique identifier is assigned to you. This unique identifier is associated with a functionality cookie that we place on your web browser. We are especially careful about the security and confidentiality of the information stored in functionality cookies. For example, we do not store account numbers or passwords in functionality cookies.We may use information from required (sometimes called session) cookies and functionality cookies in combination with web registration information, telephone prospect information, billing information (other than credit card information) and email and messaging information to provide you with information about us and our Services.To learn how to opt out of performance cookies using your browser settings click here.If you disable your web browser’s ability to accept cookies, some features of the Websites and/or Services may become unavailable to you.
Targeting/advertising cookiesCertinia engages third parties to track and analyze non-personally identifiable usage and volume statistical information from individuals who visit our Websites, like Google Analytics for website analytics.We may also use other third-party cookies to track and analyze usage and volume statistical information from Website users, Service users, and Attendees, to provide enhanced interactions and more relevant communications, and to track the performance of our advertisements. The information provided to third parties does not include personal information, but this information may be re-associated with personal information after we receive it.Certinia also contracts with third-party advertising networks that collect IP addresses, hashed email address (meaning a one way method of converting the email address into a hashed value or “hash,” where only the hash is stored), and other information from Web beacons (see below) on our Websites and in our Services, from emails, and from third-party Websites. Ad networks follow your online activities over time and across different sites or other online services by collecting website navigational information through automated means, including through the use of cookies. These technologies may recognize you across the different devices you use, such as a desktop or laptop computer, smartphone or tablet. Third parties use this information to provide advertisements about products and services tailored to your interests. You may see these advertisements on other Websites or mobile applications on any of your devices. This process also helps us manage and track the effectiveness of our marketing efforts.Third parties, with whom Certinia partners to provide certain features on our Websites or to display advertising based upon your Web browsing activity, use Flash cookies to collect and store information. Flash cookies are different from browser cookies because of the amount of, type of, and way that data is stored.You may opt-out of third party cookies from Google Analytics through their website.
To learn more about advertising networks and your ability to opt out of collection by certain third parties, please visit the opt-out pages of the Network Advertising InitiativeAbout Ad’s, or Your Online Choices (Europe only).
Opting out will not prevent you from seeing ads, but those ads will likely be less relevant because they won’t be tailored to your interests. The ads might, for instance, be randomly generated or based on the web page you are visiting.
To learn more about managing Flash cookies, click here.

Salesforce cookies
Our Services run on the Salesforce platform. Therefore, Salesforce collects website navigational information from you when you use our Services. The website navigational information collected by Salesforce, and how they use it, are described here.

Certinia allows AdRoll to collect hashed versions of your email address that you enter on our Websites (meaning a one way method of converting the email address into a hashed value or “hash” and only this hash is stored). These hashed emails are used by AdRoll as an additional identifier to help them better target ads for advertisers, including across multiple devices or browsers. They use this data to help their advertisers identify and serve ads to you that are more relevant to you. They also use this data to operate, improve and enhance their services, including enhancing the data points they or their advertising partners have about a particular user, browser, or device, or to target, optimize, cap, or synchronize advertising.

Web beacons
Certinia uses web beacons alone or with cookies to compile information about your use of our Websites and interaction with our emails. Web beacons are clear electronic images that can recognize certain types of information on your computer, such as cookies, when you viewed a particular website tied to the web beacon, and a description of a Website tied to the web beacon. For example, we may place web beacons in marketing emails that notify us when you click on a link in the email that directs you to one of our Websites. Certinia uses web beacons to operate and improve our Websites and email communications.

Log data
When you use our Websites, Certinia may receive information (“Log Data”) such as your IP address, browser type, operating system, the referring web page, pages visited, location, mobile carrier, device information (including device and application IDs), search terms, and cookie information. We receive Log Data when you interact with our Websites or our email notifications. We use Log Data to provide and improve our Services, and to improve our Websites and our marketing.

IP addresses
When you visit our Websites, we collect your Internet Protocol (“IP”) addresses to track and aggregate non-personally identifiable information. For example, we use your IP addresses to monitor the geographical regions from which you visit our Websites.

Social media features
Certinia’s Websites may use social media features, such as the Facebook ‘like’ button (“Social Media Features”). These features may collect your IP address and which page you are visiting on our Website, and may set a cookie to enable the feature to function properly. You may be given the option by such Social Media Features to post information about your activities on our Website to a profile page of yours that is provided by a third party social media network in order to share with others within your network. Social Media Features are either hosted by a third party or hosted directly on our website. Your interactions with these features are governed by the privacy policy of the company providing the relevant Social Media Features.

Do not track
Currently, various browsers – including Chrome, Internet Explorer, Firefox, and Safari – offer a “do not track” or “DNT” option that relies on a technology known as a DNT header. A DNT header sends a signal to Websites visited by the user about the user’s browser DNT preference setting. You can view your browser’s DNT setting here.

6. Public forums and customer testimonials

Certinia may provide bulletin boards, blogs, or chat rooms on our Websites. Any personal information you choose to submit in such a forum may be read, collected, or used by others who visit these forums, and may be used as described in this Privacy Statement. We are not responsible for the personal information you choose to submit in these forums.

We post a list of Customers and testimonials on our Websites that contain information such as our Customers’ names and titles. We obtain the consent of each Customer prior to posting any information on such a list or posting testimonials.

7. How we share your Information

Certinia does not share, sell, rent, or trade personal information with third parties for their promotional purposes. However, we may share or disclose your personal information under the following circumstances:

Your consent
We may share or disclose your information at your direction.

Certinia affiliates
Certinia will share the information we collect with our affiliated companies in order to work with them, to manage our relationships with our Customers and prospects, to provide and invoice for the Services, and to provide information to our Customers and prospects about our Services and events.

Data entered into our Services by our customers is stored by Salesforce. Salesforce’s use and disclosure of that data is described here. We also provide to Salesforce our customers’ billing data (but not credit card information) and information about our Services purchased by our customers, to enable Salesforce to provide and invoice Certinia for the Salesforce platform services underlying the Services, and, if needed, to assist Certinia in providing customer support.

Other service providers
We share Customers’ billing name and address, and credit card number with payment services providers to process payments; prevent, detect and investigate fraud or other prohibited activities; facilitate dispute resolution such as chargebacks or refunds; and for other purposes associated with the acceptance of credit or debit cards. Certinia may share information about Visitors, Customers, Participants and Attendees with third party social networking and media websites, such as Facebook and LinkedIn, for marketing and advertising on those websites.

Business partners
From time to time, Certinia may partner with other companies to offer products or services. If you purchase or specifically express interest in a jointly-offered product or service we jointly offer with another company, we may share data about you collected in connection with your purchase or expression of interest with that other company. We do not control our business partners’ use of your personal information, and their use of the information will be subject to their own privacy policies. If you do not wish your information to be shared in this manner, you must opt not to purchase or specifically express interest in a jointly offered product or service.

Certinia does not share with our business partners information we receive about you through your registration for or attendance of events unless: (1) you specifically opt in to such sharing via an event registration form; (2) you attend a jointly run event (3) you attend an event and allow Certinia or any of its business partners and/or their designees to scan your attendee badge. If you do not wish your information to be shared in this manner, do not to opt in via event registration forms, do not attend jointly run events and you must not allow your badge to be scanned at our events. If you choose to share your information with business partners in the manners described above, your information will be subject to the business partners’ respective privacy statements.

Law and harm
Notwithstanding anything to the contrary in this Privacy Statement, we may preserve or disclose your information if we believe that it is reasonably necessary to comply with a law, regulation or a legal request; to protect the safety of any person; to address fraud, security or technical issues; or to protect our rights or property. However, nothing in this Privacy Statement is intended to limit any legal defenses or objections that you may have to a third party’s request to disclose your information, including a government’s request for the same.

Change of control
In the event that Certinia is involved in a bankruptcy, merger, acquisition, reorganization or sale of assets, your information may be sold or transferred as part of that transaction. This Privacy Statement will apply to your information as transferred to the new entity.

Third parties
Certinia does not authorize the collection of personal information by third parties through advertising technologies deployed on our websites, nor do we share personal information collected from our Websites with any third parties, except as provided in this Privacy Statement.

Public and non-personal information
We may share or disclose your non-private, aggregated or otherwise non-personal information, such as your comments or posts to our public forums, including our blogs and bulletin boards or your chat messages in our chat rooms.

Contracts and liability
If you are a resident of the EU or Switzerland, Certinia will not transfer your personal information to any third party except under a contract with the third party that restricts the third party’s access, use and disclosure of personal information in compliance with our Privacy Shield obligations, and Certinia may be liable if the third party fails to meet those obligations and we are responsible for the event giving rise to damage.

8. International transfer of information collected and Privacy Shield compliance

Certinia primarily stores personal information described in this Privacy Statement in the United States. To facilitate our global operations, we may transfer such information to and from and access it from around the world, including other countries in which we have operations. A list of our global offices is available here. Irrespective of which country you reside in or supply information from, you authorize us to use your information in the United States and any other country where we operate. This Privacy Statement shall apply even if we transfer your personal data to other countries.

Certinia complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework, as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States. Certinia has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this Privacy Statement and the Privacy Shield Principles, the Privacy Shield Principles shall govern. Certinia’s commitments under the Privacy Shield are subject to the investigatory and enforcement powers of the United States Federal Trade Commission. To learn more about the Privacy Shield program, and to view our certification, please visit

If you have questions or complaints regarding Certinia’s Privacy Statement or associated practices, please contact us at [email protected]. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at Certinia will cooperate with JAMS pursuant to the JAMS International Mediation Rules, which are accessible on the JAMS website at If neither Certinia nor our third-party dispute resolution process resolves your complaint, you may have the possibility to engage in binding arbitration through the Privacy Shield Panel.

9. How to access, correct, update and request deletion of your information

Certinia may retain your information for a period of time consistent with the original purpose of collection. For instance, we may retain your information during the time in which you have an account to use our Websites or Services and for a reasonable period of time afterward. We also may retain your information during the period of time needed for Certinia to pursue our legitimate interests, conduct audits, comply with our legal obligations, resolve disputes and enforce our agreements.

Access, correcting and updating
You may request to access, review, correct, modify or delete any of the personal information that you have previously provided to us through our Websites and Services or that we have otherwise collected about you as described in this Privacy Statement.

If you are a user of our Services, you may generally update your user settings, profile, or organization’s settings by logging into the applicable Service with your username and password and editing your settings or profile (you may require administrator privileges, or may need to contact your administrator, to update some settings). If you are contacting us on behalf of a Certinia customer and wish to update the customer’s billing information, discontinue the customer’s account, and/or request return or deletion of data submitted by or for the customer to our Services (“Customer Data”), please contact your account representative, your Certinia customer support contact, or [email protected].

For all other requests to access, review, correct, modify or delete personal information, you may email us at [email protected] or write to us at the address under “How to contact us” below. If your request concerns personal information being processed in Services, you should first send your request to the Customer for which you believe we may be processing your personal information. If you are an employee of a Certinia customer, you should first contact your employer’s Certinia administrator for assistance in correcting or updating your information.

If you are an individual residing in the EEA and Switzerland, you have the following rights for personal information processed outside of our Services:

If you are an individual residing in the EEA and Switzerland, you have the following rights for personal information processed in our Services. Certinia customers may use the Services to host their Customer Data, which may include personal information of their customers. Our contracts with our Customers limit our access to Customer Data, including personal information contained in the Customer Data. If you believe Certinia may be processing personal information relating to you in our Services:

10. Data security and integrity

Certinia uses robust security measures to protect your personal information from unauthorized access, maintain data accuracy, and help ensure the appropriate use of your personal information. Click here for more information about the security of the Services.

We currently store Customer Data in the Salesforce platform. Click here for information about the security of the Salesforce platform. The Salesforce platform is our primary system of record for web registration information, telephone prospect information, billing information (except credit card information), email and messaging information; however, these types of information are also stored in other systems.

Please contact us immediately [email protected] if you have reason to believe that your interaction with us is no longer secure.

11. Mobile applications

In addition to information gathered through the other media described in this Privacy Statement, Certinia may obtain information through mobile applications that our Customers or their authorized individual users download to, and run on, their mobile devices. Mobile applications we provide may obtain information from, or access data stored on, users’ devices to provide services related to the relevant mobile application. For example, a mobile application may: access a camera on a user’s device to enable the user to upload photographs to our Services; access the call history on a user’s device to enable the user to upload that information to our Services; access calendar information on a user’s device to enable the user to match meeting attendees with contacts submitted by the user to the Services; access the geographic location of a user’s device to enable the user to identify contacts submitted by the user to the Services who are nearby; or access contact information on a user’s device to enable the user to sync contact information between the information that is stored on the user’s device and the information that is submitted to the Services. Information obtained through mobile application services may include information obtained in preparation for anticipated updates to those services. Mobile applications may transmit information to and from devices to provide the mobile application services.

Mobile applications may provide us and with information related to users’ use of the mobile application services, information regarding users’ computer systems, and information regarding users’ interaction with mobile applications, which we and may use to provide and improve the mobile application services. For example, all actions taken in a mobile application may be logged, along with associated information (such as the time of day when each action was taken). We and may also share anonymous data about these actions with third party providers of analytics services. In addition, if a user downloads a Certinia mobile application after clicking on a third-party mobile advertisement for the mobile application or for us, the third-party advertiser may provide us with information, such as the user’s device identification information, which we may use to track the performance of our advertising campaigns.

Customers may configure our mobile application services, and the information accessed or obtained by the mobile application on a user’s device may be affected by the Customer’s configuration. In addition, if a Customer purchases more than one Service from us, a mobile application may be designed to interoperate with those Services; for instance, to provide a user with access to information from any or all of those Services or to provide information from a user’s device to any or all of those Services. Information accessed or obtained by the mobile application on a user’s device may be accessible to the customer and its organization, depending on the intended functionality of the mobile application.

Notices and contractual terms related to a particular mobile application may be found in the end user license agreement or relevant terms of service for that application. We encourage you to review the end user license agreement or relevant terms of service related to any mobile applications you download, install, use, or otherwise interact with. The mobile application’s access to information through a user’s device does not cause that information to be “Customer Data” under Certinia’s Master Subscription Agreement with the customer or under this Privacy Statement, except as follows: To the extent that a user uses a mobile application to submit electronic data and information to a customer account on our Services pursuant to the customer’s Master Subscription Agreement with us, that information constitutes “Customer Data” as defined in that agreement, and the provisions of that agreement with respect to privacy and security of that data will apply.

12. Policy towards children

Our Websites, events, training and Services are not directed to persons under age 13 (US and elsewhere) or under age 16 (EU and Switzerland), and we do not knowingly collect personal information from children under the age of 13 (US and elsewhere) or under age 16 (EU and Switzerland). If you become aware that your child has provided Certinia with personal information without your consent, please contact us at [email protected].

13. Changes to Privacy Statement

We may revise this Privacy Statement from time to time. The most current version of the Privacy Statement will govern our use of your information and will always be at If we make a change to this Privacy Statement that, in our sole discretion, materially reduces or prejudices your rights or protections, we will notify you via email to the email address associated with your account if you have an account and by posting a prominent notice on our website for the 30 days prior to the effective date of such change. By continuing to access or use our Websites after those changes become effective, you agree to be bound by the revised Privacy Statement.

Archive of Prior Statements

14. Conflicts

This Privacy Statement may not apply to the extent it conflicts with other controlling terms and conditions (such as, for example, a Master Subscription Agreement for our Services between Certinia and you or your organization) or applicable law or regulation.

15. How to contact us

If you have questions regarding this Privacy Statement or if you wish to exercise your rights of access, rectification, erasure, restriction of processing, data portability, objection to automated decision-making please contact us:

by email at [email protected]

by mail/post to:

US, Canada and ANZ:, Inc.
Attn: Privacy Officer
595 Market Street, Suite 2000
San Francisco, California 94105
United States of America

Certinia UK Limited
Attn: Privacy Officer
Cardale Park
2 Beckwith Head Road,
North Yorkshire,
HG3 1RY,
United Kingdom

We are committed to working with you to obtain a fair resolution of any complaint or concern about privacy. If, however, you believe that we have not been able to assist with your complaint or concern, and you are located in the EEA or Switzerland, you have the right to lodge a complaint with the competent supervisory authority.