Last Modified: March 29, 2023
If you reside in the European Economic Area, the United Kingdom, and Switzerland, Alkemics SAS is the controller for your personal data. For all other individuals, Salsify, Inc. is the controller for your personal data. For Customer Account Management where the contracting entity is Alkemics SAS, Alkemics SAS and Salsify, Inc are joint controllers. For Customer Account Management where the contracting entity is Salsify Inc, Salsify, Inc is data controller.
Our Site may contain links to third-party websites and services that are not owned or controlled by Salsify. We are not responsible for the privacy practices or the content of third-party websites, services and advertisements, and you visit them at your own risk.
We may receive and/or collect Personal Data in the following ways:
4.1 Personal Data You Provide To Us On Our Site.
If you send us a "Contact Us" request or feedback, or in connection with setting up an account on our Site, or if you use any of our free tools, or when you download any of our content, you may be required to provide us with certain information that may constitute Personal Data, such as:
4.2 Personal data that we obtain from our Customer Account Management activities. We may collect the following Personal Data for account management purposes related to the sale of Salsify SaaS platform or professional services:
4.3 Personal data that we obtain from Third-Party Sources
Salsify may also collect, in compliance with applicable data privacy laws, business contact information about you from other sources including third parties from whom we have purchased business contact information and from publicly accessible websites, such as your company’s website, professional network services, or press releases. We may combine this information with Personal Data provided by you. This helps us update, expand, and analyse our records, identify new customers, and create more tailored advertising to provide services that may be of interest to you.
We may collect your Personal Data from partners who may receive this data when you use their services.
When you attend an event or a webinar where Salsify is a participating vendor, your Personal Data may be shared with Salsify by the event organiser.
Business contact information may include:
4.4 Personal data that we obtain as part as planning and managing events and webinars
If you register to attend an event or a webinar sponsored by Salsify, we may require certain data, including:
4.5. Personal data that we collect automatically:
The information inside our log files includes internet protocol (“IP”) addresses, type of browser, Internet Service Provider (ISP), date/time stamp, referring/exit pages, clicked pages and any other information your browser may send to us. For more information, please refer to our Cookies Notice.
We collect and process your Personal Data for the following purposes and we rely on the following legal bases:
5.1 Performance of a contract:
5.2 Salsify’s legitimate interest.
We use your Personal Data in our legitimate interest, including for:
5.3 Your consent
With the exception of strictly necessary cookies which are always on when you visit our Site. On your first visit to the site, we will tell you about our other types of cookies and ask you to choose which cookies we can use. You can always edit your preferences by clicking on the “Manage Cookie Preferences” link above.
In some cases, we may ask you for your consent to process your Personal Data, such as when we need your consent for marketing purposes. Please note that we may also rely on legitimate interest to process your Personal Data for this purpose (subject to applicable law).
In some cases, we may ask for your consent to share your Personal Data with our Business partners and Event sponsors (please see sections 6.3 and 6.4 for more information) (subject to applicable law).
5.4 Statutory obligations
6.1 Sharing data with our subsidiaries
We may share Personal Data with other Salsify affiliates to provide services on our behalf.
6.2. Our Third-Party Service Providers.
We transfer Personal Data to our third-party service providers to perform tasks on our behalf and to assist us in achieving the purposes listed above. These third-party service providers may use data we provide to them only as instructed by us.
For a list of our main service providers and the types of services they provide to us, please see this page and please also refer to our Cookies Notice. We only give them the parts of your Personal Data that they need. And we make it clear to them that they must keep your personal data safe and only use it for those specific services.
6.3. Business Partners.
From time to time, we may partner with other companies to jointly offer products or services. If you purchase or specifically express interest in a jointly offered product or service from us, we may share Personal Data collected in connection with your purchase or expression of interest with our partners. The use of your Personal Data by the Business Partners will be in accordance with their own privacy policies.
6.4 Event sponsors.
If you attend an event or webinar organised by us, we may share your Personal Data with sponsors of the event or participating vendors. If required by applicable law, we may ask for your consent to such sharing via the registration form. The use of your Personal Data by the Event Sponsors will be in accordance with their own privacy policies.
6.5. In the event of merger, sale, or change of control.
6.6. Other Disclosures.
We reserve the right to retain any Personal Data as long as the Personal Data are needed to: (i) fulfill the purposes that are described in Section 5 (How we use the information we collect), and (ii) comply with applicable law.
When we no longer need to process or retain Personal Data, we will delete or anonymise this information, or, where that is not possible (e.g. because they were stored in backups), we will store them securely and place them beyond the scope of subsequent processing activity until it is possible to delete them.
Depending where you are located, you may have certain legal rights over the personal data we process about you, subject to local privacy laws. These may include the right to:
Please note that the exercise of these rights is not absolute and may be restricted on legal grounds, or on the grounds of legitimate interest (e.g. customer disputes).
We will promptly review all such requests in accordance with applicable laws.
Salsify operates as a global business and may transfer, store, or process your Personal Data in a country outside your jurisdiction, including countries outside the European Economic Area (“EEA”), Switzerland and the United Kingdom (“UK”). Therefore, your Personal Data may be processed in countries or jurisdictions that are not subject to an adequacy decision by the European Commission or your local legislature or regulator, and that may not provide for the same level of data protection.
The security of Personal Data is important to us. We take appropriate technical and organisational measures that provide a level of security appropriate to the risk of processing your personal data We follow generally accepted industry standards to protect the Personal Data submitted to us, both during transmission and in storage. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect Personal Data, we cannot guarantee its absolute security.
Our Site is not intended for children under the age of 18. Accordingly, we do not intend to collect Personal Data from anyone we know to be under 18 years of age.
If you have any questions, comments or concerns regarding our privacy practices, please contact us using the following contact details depending on your geographic location:
If you reside in the USA:
Email us at to firstname.lastname@example.org
Write to us at 101 Federal St #2600, Boston, MA 02110, United States
If you reside in the European Economic Area, the United Kingdom and Switzerland:
Email us at DPO@Salsify.com.
Write to us at Legal Department, Alkemics, 7 RUE DE MADRID, 75008 PARIS, FRANCE.
Data Protection Officer : Justine de Saulieu
If you are residing in any other location:
Email us at email@example.com
Write to us at 101 Federal St #2600, Boston, MA 02110, United States
If you are a California resident, the California Consumer Privacy Act, California Civil Code Sections 1798.83-1798.84 (“CCPA”) permits you to request information, no more than once per calendar year, regarding the disclosure of your Personal Data by Salsify to third parties, including for the third parties’ direct marketing purposes. Furthermore, California residents have the following rights with respect to Personal Data we may have collected about them:
(i) Requests to Know
You have the right to request that we disclose to you:
You may submit a request to know via this form. The delivery of our response may take place electronically or by mail. We are not required to respond to requests to know more than twice in a 12-month period
(ii) Requests to Delete or Correct
You have the right to request that we delete any Personal Data about you that we have collected, or correct Personal Data that we have about you that is inaccurate. Upon receiving a verified request to delete personal data, we will do so unless otherwise authorized by law. You may submit a request to delete Personal Data via this form.
(iii) Authorized Agents
You may designate an authorized agent to make requests on your behalf. You must provide an authorized agent written permission to submit a request on your behalf, and we may require that you verify your identity directly with us. Alternatively, an authorized agent that has been provided power of attorney pursuant to Probate Code sections 4000-4465 may submit a request on your behalf.
(iv) Methods for Submitting Consumer Requests and Our Response to Requests
You may submit a request to know and requests to delete Personal Data about you via:
via email at firstname.lastname@example.org
Write to us:
101 Federal Street, Suite 2600
Boston, MA 02110
Attn: Privacy Department
Upon receipt of a request, we may ask you for additional information to verify your identity. Any additional information you provide will be used only to verify your identity and not for any other purpose.
We will acknowledge the receipt of your request within ten (10) business days of receipt. Subject to our ability to verify your identity, we will respond to your request within 45 calendar days of receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing. In order to protect your privacy and the security of Personal Data about you, we verify your request by asking for additional identifying information appropriate in the circumstances.
If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option.
Any disclosures we provide will only cover the 12-month period preceding the verifiable consumer request's receipt. The response we provide will also explain the reasons we cannot comply with a request, if applicable.
We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
(v) The Right to Non-Discrimination
You have the right not to be discriminated against for the exercise of your California privacy rights described above.
(vi) Selling and Sharing of Personal Data
Salsify may use your Personal Data for the purposes described in Section 4 of this Policy, and may share your Personal Data as further described in Section 5. of this Policy. California law places certain obligations on businesses that “sell” Personal Data to third parties or “share” Personal Data with third parties for “cross-context behavioral advertising” as those terms are defined under the CCPA. We do not “sell” or “share” the Personal Data covered by this Policy and have not done so in the twelve months prior to the effective date of this Policy. Consequently, we do not have a Do Not Sell My Info-functionality on the Site.
(viii) Sensitive Personal Data
Some Personal Data may be considered sensitive personal information under certain privacy laws, including the California Consumer Privacy Act (“CCPA”). Sensitive personal information may include, for example, government-issued identification number, information relating to a person's race or ethnic origin, political opinions or religious beliefs, physical or mental health or condition, sexual orientation, or trade union membership. It may include information about an individual's criminal offenses or convictions, as well as any other information deemed sensitive under applicable data protection laws.
The CPPA provides consumers with the “right to limit” the use of their sensitive personal information to certain business purposes. Salsify does not request sensitive personal information in connection with the use of its Sites.
(iv) How We Respond to Do Not Track Signals
Salsify does not track Site users over time and across third party websites to provide targeted advertising. Accordingly, we do not currently respond or take any action with respect to web browser "do not track" signals or other mechanisms that provide consumers the ability to exercise choice regarding the collection of Personal Data about an individual consumer's online activities over time and across third-party web sites or online services.