We only collect the information you choose to give us, and we process it with your consent, or on another legal basis; we only require the minimum amount of personal information that is necessary to fulfill the purpose of your interaction with us; we don't sell it to third parties; and we only use it as this Privacy Statement describes. If you're visiting us from the EU, please see our global privacy practices: we are compliant with the General Data Protection Regulation (GDPR). No matter where you are, where you live, or what your citizenship is, we provide the same standard of privacy protection to all our users around the world, regardless of their country of origin or location.
Of course, the short version doesn't tell you everything, so please read on for more details!
If you're just browsing the website, we collect the same basic information that most websites collect. We use common internet technologies, such as cookies and web server logs. This is stuff we collect from everybody, whether they have an account or not.
The information we collect about all visitors to our website includes the visitor’s browser type, language preference, referring site, additional websites requested, and the date and time of each visitor request. We also collect potentially personally-identifying information like Internet Protocol (IP) addresses.
We collect this information to better understand how our website visitors use Sonat, and to monitor and protect the security of the website.
If you create an account, we require some basic information at the time of account creation. You will create your own user name and password, and we will ask you for a valid email address. You also have the option to give us more information if you want to, and this may include "User Personal Information."
"User Personal Information" is any information about one of our users which could, alone or together with other information, personally identify him or her. Information such as a user name and password, an email address, a real name, and a photograph are examples of “User Personal Information.” User Personal Information includes Personal Data as defined in the General Data Protection Regulation.
User Personal Information does not include aggregated, non-personally identifying information. We may use aggregated, non-personally identifying information to operate, improve, and optimize our website and service.
Under certain international laws (including GDPR), Sonat is required to notify you about the legal basis on which we process User Personal Information. Sonat processes User Personal Information on the following legal bases:
We do not intentionally collect sensitive personal information, such as social security numbers, genetic data, health information, or religious information. Although Sonat does not request or intentionally collect any sensitive personal information, we realize that you might store this kind of information in your account, such as in a document. If you store any sensitive personal information on our servers, you are responsible for complying with any regulatory controls regarding that data.
If you're a child under the age of 13, you may not have an account on Sonat. Sonat does not knowingly collect information from or direct any of our content specifically to children under 13. If we learn or have reason to suspect that you are a user who is under the age of 13, we will unfortunately have to close your account. Please see our Terms of Service for information about account termination. Other countries may have different minimum age limits, and if you are below the minimum age for providing consent for data collection in your country, you may not use Sonat without obtaining your parents' or legal guardians' consent.
We do not intentionally collect User Personal Information that is stored in your documents or other free-form content inputs. Information in your documents belongs to you (and your organization), and you are responsible for it, as well as for making sure that your content complies with our Terms of Service. Any personal information within a user's document is the responsibility of the organization owner.
Sonat employees do not access unpublished documents and topics unless required to for security reasons, to assist the document owner with a support matter, or to maintain the integrity of the service. Our Terms of Service provides more details.
If your document is published, anyone (including us and unaffiliated third parties) may view its contents. If you have included private or sensitive information in your public repository, such as email addresses or passwords, that information may be indexed by search engines or used by third parties. In addition, while we do not generally search for content in your documents, we may scan our servers for certain tokens or security signatures, or for known active malware.
We do share User Personal Information with your permission, so we can perform services you have requested or communicate on your behalf. Additionally, you may indicate, through your actions on Sonat, that you are willing to share your User Personal Information. For example, if you join an organization, the owner of the organization will have the ability to view your activity in the organization's access log. We will respect your choices.
We do not share, sell, rent, or trade User Personal Information with third parties for their commercial purposes.
We do not host advertising on Sonat. We may occasionally embed content from third party sites, such as YouTube, and that content may include ads. While we try to minimize the amount of ads our embedded content contains, we can't always control what third parties show. Any advertisements on individual Sonat Pages or in Sonat documents are not sponsored by, or tracked by, Sonat.
We do not disclose User Personal Information outside Sonat, except in the situations listed in this section or in the section below on Compelled Disclosure.
We do share certain aggregated, non-personally identifying information with others about how our users, collectively, use Sonat, or how our users respond to our other offerings, such as our conferences or events. However, we do not sell this information to advertisers or marketers.
We do share User Personal Information with a limited number of third party vendors who process it on our behalf to provide or improve our service, and who have agreed to privacy restrictions similar to our own Privacy Statement by signing data protection agreements. Our vendors perform services such as payment processing, customer support ticketing, network data transmission, and other similar services. When we transfer your data to our vendors, we remain responsible for it. While Sonat processes all User Personal Information in the United States, our third party vendors may process data outside of the United States or the European Union.
We do share aggregated, non-personally identifying information with third parties.
We may share User Personal Information if we are involved in a merger, sale, or acquisition. If any such change of ownership happens, we will ensure that it is under terms that preserve the confidentiality of User Personal Information, and we will notify you on our website or by email before any transfer of your User Personal Information. The organization receiving any User Personal Information will have to honor any promises we have made in our Privacy Statement or in our Terms of Service.
Much of Sonat is public-facing. If your content is public-facing, third parties may access and use it in compliance with our Terms of Service, such as by viewing your documents or pulling data via our API. We do not sell that content; it is yours. However, we do allow third parties, such as research organizations or archives, to compile public-facing Sonat information. Other third parties, such as data brokers, have been known to scrape Sonat and compile data as well.
Your Personal Information, associated with your content, could be gathered by third parties in these compilations of Sonat data. If you do not want your Personal Information to appear in third parties’ compilations of data, please do not make your Personal Information publicly available.
If you would like to compile Sonat data, you must comply with our Terms of Service regarding [scraping and privacy, and you may only use any public-facing Personal Information you gather for the purpose for which our user has authorized it. For example, where a Sonat user has made an email address public-facing for the purpose of identification and attribution, do not use that email address for commercial advertising. We expect you to reasonably secure any Personal Information you have gathered from Sonat, and to respond promptly to complaints, removal requests, and "do not contact" requests from Sonat or Sonat users.
Similarly, projects on Sonat may include publicly available Personal Information collected as part of the collaborative process. In the event that a Sonat project contains publicly available Personal Information that does not belong to Sonat users, we will only use that Personal Information for the limited purpose for which it was collected, and we will secure that Personal Information as we would secure any User Personal Information. If you have a complaint about any Personal Information on Sonat, please see our section on resolving complaints.
You have the option of enabling or adding third party applications, known as "Developer Products," to your account. These Developer Products are not necessary for your use of Sonat. We will share your User Personal Information to third parties when you ask us to; however, you are responsible for your use of the third party Developer Product and for the amount of User Personal Information you choose to share with it.
You also have the option of adding applications from Sonat, such as a Desktop app, a Mobile app, or other account features, to your account. These applications each have their own terms and may collect different kinds of User Personal Information; however, all Sonat applications are subject to this Privacy Statement, and we will always collect the minimum amount of User Personal Information necessary, and use it only for the purpose for which you have given it to us.
If you're already a Sonat user, you may access, update, alter, or delete your basic user profile information by editing your user profile or contacting support@sonat.com. You can control the information we collect about you by limiting what information is in your profile, by updating out of date information, or by contacting support@sonat.com.
Generally, Sonat will retain User Personal Information for as long as your account is active or as needed to provide you services.
We may retain certain User Personal Information indefinitely, unless you delete it or request its deletion. For example, we don’t automatically delete inactive user accounts, so unless you choose to delete your account, we will retain your account information indefinitely.
If you would like to cancel your account or delete your User Personal Information, you may do so in your user profile. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements, but barring legal requirements, we will delete your full profile (within reason) within 90 days. You may contact support@sonat.com to request the erasure of the data we process on the basis of consent within 30 days.
Sonat uses cookies to make interactions with our service easy and meaningful. We use cookies (and similar technologies, like HTML5 localStorage) to keep you logged in, remember your preferences, and provide information for future development of Sonat. We also use cookies to identify a device, for security reasons. By using our website, you agree that we can place these types of cookies on your computer or device. If you disable your browser or device’s ability to accept cookies, you will not be able to log in or use Sonat’s services.
We provide a web page on cookies and tracking that describes the cookies we set, the needs we have for those cookies, and the types of cookies they are (temporary or permanent). It also lists our third party analytics and service providers and details exactly which parts of our website we permit them to track.
We use a number of third party analytics and service providers to help us evaluate our users' use of Sonat; compile statistical reports on activity; and improve our content and website performance. We only use these third party analytics providers on certain areas of our website, and all of them have signed data protection agreements with us that limit the type of personal information they can collect and the purpose for which they can process the information. In addition, we use our own internal analytics software to provide features and improve our content and performance.
We do not currently respond to your browser's Do Not Track signal, and we do not permit third parties other than our analytics and service providers to track Sonat users' activity over time on Sonat. We do not track your online browsing activity on other online services over time.
Sonat takes all measures reasonably necessary to protect User Personal Information from unauthorized access, alteration, or destruction; maintain data accuracy; and help ensure the appropriate use of User Personal Information.
In the event of a data breach that affects your User Personal Information, we will act promptly to mitigate the impact of a breach and notify any affected users.
Transmission of data on Sonat is encrypted using HTTPS, and SSL/TLS. Data are stored and encrypted by trusted third-party cloud providers (such as Google Cloud or Amazon AWS).
No method of transmission, or method of electronic storage, is 100% secure. Therefore, we cannot guarantee its absolute security.
We store and process the information that we collect in the United States in accordance with this Privacy Statement (our subprocessors may store and process data outside the United States). However, we understand that we have users from different countries and regions with different privacy expectations, and we try to meet those needs even when the United States does not have the same privacy framework as other countries'.
We provide the same standard of privacy protection — as described in this Privacy Statement — to all our users around the world, regardless of their country of origin or location, and we are proud of the levels of notice, choice, accountability, security, data integrity, access, and recourse we provide. We have appointed a Privacy Counsel and we work hard to comply with the applicable data privacy laws wherever we do business, and we also expect to appoint a Data Protection Officer to oversee our compliance efforts. Additionally, if our vendors or affiliates have access to User Personal Information, they must sign agreements that require them to comply with our privacy policies and with applicable data privacy laws.
In particular:
Sonat may disclose personally-identifying information or other information we collect about you to law enforcement in response to a valid subpoena, court order, warrant, or similar government order, or when we believe in good faith that disclosure is reasonably necessary to protect our property or rights, or those of third parties or the public at large.
In complying with court orders and similar legal processes, Sonat strives for transparency. When permitted, we will make a reasonable effort to notify users of any disclosure of their information, unless we are prohibited by law or court order from doing so, or in rare, exigent circumstances.
We will use your email address to communicate with you, if you've said that's okay, and only for the reasons you’ve said that’s okay. For example, if you contact our Support team with a request, we will respond to you via email. You have a lot of control over how your email address is used and shared on and through Sonat. You may manage your communication preferences in your user profile.
Depending on your email settings, Sonat may occasionally send notification emails about changes in a document you’re contributing to, new features, requests for feedback, important policy changes, or offer customer support. We also send marketing emails, but only with your consent, if you opt-in to our list. There's an unsubscribe link located at the bottom of each of the marketing emails we send you. Please note that you can not opt-out of receiving important communications from us, such as emails from our Support team or system emails, but you can configure your notifications settings in your profile.
Our emails might contain a pixel tag, which is a small, clear image that can tell us whether or not you have opened an email and what your IP address is. We use this pixel tag to make our email more effective for you and to make sure we’re not sending you unwanted email.
If you have concerns about the way Sonat is handling your User Personal Information, please let us know immediately. We want to help. You can email us directly at privacy@sonat.com with the subject line "Privacy Concerns." We will respond promptly — within 45 days at the latest.
Although most changes are likely to be minor, Sonat may change our Privacy Statement from time to time. We will provide notification to Users of material changes to this Privacy Statement through our Website at least 30 days prior to the change taking effect by posting a notice on our home page or sending email to the primary email address specified in your Sonat account. We will also update our Site Policy document, which tracks all changes to this policy. For changes to this Privacy Statement that do not affect your rights, we encourage visitors to check our Site Policy document frequently.
Questions regarding Sonat's Privacy Statement or information practices should be directed to our support@sonat.com.