Privacy

Last updated: June 14, 2022

This is an archived version of the privacy policy. Please click here for the most updated policy.

Indicative, Inc., a Delaware corporation (“Indicative”), is a software technology company that has developed a software as a service platform enabling business clients and prospective clients (“You”, “Your” or “Client”) to (1) collect, organize and synchronize data from apps, web, connected devices, and offline data sources and (2) distribute such data to various service providers, including analytics, monetization, data warehousing and other services. We are a wholly owned subsidiary of mParticle, Inc., a Delaware corporation (“mParticle”). mParticle’s privacy practices may be different than Indicative’s practices. The mParticle privacy policy is available at https://www.mparticle.com/privacypolicy/.

This privacy policy covers Indicative’s privacy practices with respect to the Indicative technology platform (the “Platform”) and associated services (the “Services”), the data we collect from You and Your customers (Your “Customer’s Data”) and the data that we collect from visitors to our websites located at https://www.indicative.com/ (the “Website”). The Website is directed to our Clients and prospective clients, who are generally businesses. Your Customer’s Data is data You have gathered or are responsible for gathering on users that interact with Your product(s) or service(s) and is transmitted to the Platform by You or on account of You in order for us to provide the Services.

1. The Data Collected on You

The data we collect and process about You falls into two categories: data You provide Indicative and data that is automatically collected by usage of Indicative (e.g., by visiting the Website and/or by using the Platform and Services). 

Data collected automatically when You visit the Website

We collect pseudonymous data from visitors to our Websites. This information is not intended to be used by us to identify a particular person or entity, and may include Your IP address, user agent, pages viewed on the Website, browser type, device type, Internet Service Provider, domain name, the time/date of Your visit to our Websites, the referring URL and Your computer or device’s operating system. We record information about visits to the Websites for customer service and product management purposes, to improve the level of service offered on the Websites and to troubleshoot the Websites.

Our websites:

www.indicative.com

app.indicative.com

support.indicative.com

status.indicative.com

https://decidingbydata.com/

Data You Provide as an Indicative Client

When You register for our Services at Indicative, we ask You to provide us with personally identifiable information including You and/or Your representative’s name, email, company, and title. We’ll also ask You to create a password that will enable You to access Your account. Further, if You have purchased a paid version of the Services, You may be asked for a credit card or other billing information. This data is used for:

  1. Client login and identification within the Indicative Platform;
  2. Communication regarding Your support requests and questions;
  3. Communication relating to Indicative product and policy updates; and
  4. Billing, invoicing, and payments.

Customer Data Collected By Indicative

Indicative generates and collects data through regular usage of Indicative. This includes usage data relating to how You interact with the Indicative Platform and Services, Your IP address, user agent, pages viewed on the Platform, browser type, device type, Internet Service Provider, domain name, the time/date of Your login to use the Services, and Your computer or device’s operating system. This data is used to measure and improve Indicative’s product features, to help secure the Platform as well as debug product issues relating to the Platform and Services.

Cookies

Indicative uses cookies for You and Your customers to offer better service to You. Cookies are small text files sent to You or Your customers’ browsers by Indicative and stored on the hard drive of You and Your customers’ computers. Indicative uses cookies to recognize repeat visits from users to log them in automatically, preserve their preferences, or identify and record certain usage patterns. If You or Your customers prefer not to accept cookies from Indicative, You or Your customers may configure the browser’s settings to refuse cookies. Certain aspects of the Service may not function as designed if a user refuses to accept the Indicative cookie.

Indicative is a data processor – we process Customer Data as directed by you and for no other purpose. In order to use our Platform and Services, You need to provide information to Indicative regarding Your Customers. You may accomplish this by:

  1. a programmatic integration;
  2. inclusion of Indicative code (e.g., on Your company website(s) or mobile application(s)) such that it will result in applying a “cookie” to Your customers’ browsers; or
  3. manual transfer by You of Your Customer’s Data directly to Indicative.

While we ask that Clients have the necessary intellectual property rights and adhere to applicable law (including data protection law) with respect to the Customer Data provided to the Platform and Services, Indicative operates as a data processor of such Customer Data. We process Customer Data as directed by each Client and for no other purpose.

2. Data Security

Indicative uses reasonable measures to secure the data it collects, transmits and stores on its servers. Among others, Indicative’s security methods include secured physical access to its data centers, limited and protected access via password, public/private keys, and data encryption, including TLS encryption for data transmission. No method of transmission over the Internet or method of electronic storage is 100% secure; therefore, while Indicative strives to use commercially acceptable means to protect Your information, it cannot guarantee absolute security.

3. Disclosure and Sharing of Data, Onward Transfer

There are certain circumstances under which we may disclose information to third parties. These are as follows:

  • With third-party agents or vendors who work on our behalf as sub-processors, provided such third parties agree to adhere to the same privacy principles as Indicative;
  • With  service partners, such as companies that we think offer complementary services as Indicative provided such partners agree to adhere to the same privacy principles as Indicative (e.g., marketing events at industry trade shows) where we have Your permission; 
  • Clients may request that we send their data to partners, provided that each Client determines which partners to use (if any) and what data gets transferred subject to each Client’s privacy policy; 
  • To protect the rights and property of Indicative, our agents, employees, partners, vendors, Clients and their customers and others including enforcement of our agreements, policies and terms of use;
  • In an emergency, including protection of the personal safety of any person;
  • For the purposes of a business deal (or negotiation of a business deal) involving sale or transfer of all or a part of our business or assets (business deals may include, for example, any merger, financing, acquisition, divestiture or bankruptcy transaction or proceeding); and
  • As required in response to a lawful request by public authorities, including meeting of national security or law enforcement requirements.

In cases of onward transfer to third parties of data of EU or Swiss resident received pursuant to the EU-US and Swiss-US Privacy Shield, Indicative is responsible for the processing of personal information it receives under the Privacy Shield and subsequently transfers to a third party acting as an agent on its behalf. Indicative shall remain liable under the Privacy Shield principles if its agent processes such personal information in a manner inconsistent with the Privacy Shield principles, unless the organization proves that it is not responsible for the event giving rise to the damage.

Indicative reserves the right to aggregate the data we process (“Aggregate Data”) so that it is no longer considered personal data under applicable law. This Aggregate Data will not identify You or any Client company name as the source of any data.

4. Data Retention

We will only retain Your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of Your personal data, the purposes for which we process Your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

As a data processor, we act upon the instructions of our Clients. As such, You determine the data retention period for Your Customer’s Data as it relates to our processing activities on the Platform.

5. International Data Transfers

Indicative processes data in the United States. Indicative reserves the right to transfer data including Your Customer’s Data into the United States for processing. Indicative provides customers with transfer tools such as the EU Model Clauses to meet the data protection and security requirements for our customers that operate in the European Union, and other international transfers of Your Customer’s Data.

Indicative complies with the EU-U.S. & Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. Indicative has certified to the Department of Commerce that it adheres to the Privacy Shield Principles (“Principles”). If there is any conflict between the terms in this privacy policy and the Principles, the Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/.

Indicative is responsible for the processing of personal information it receives, under each Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Indicative complies with the Principles for all onward transfers of personal information from the EU, including the onward transfer liability provisions.

In compliance with the Principles, Indicative commits to resolve complaints about our collection or use of Your personal information. EU or Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Indicative at: support@indicative.com.

With respect to personal information received or transferred pursuant to each Privacy Shield Framework, Indicative is subject to the regulatory enforcement powers of the US Federal Trade Commission.

Indicative has further committed to refer unresolved privacy complaints under the Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://bbbprograms.org/privacy-shield-complaints/ for more information and to file a complaint. This service is provided free of charge to you. 

If your Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction

6. Your Rights

California Data Subjects

The California Consumer Privacy Act (CCPA) provides additional privacy protections for California consumers, including: (a) the right to see what data we have about You, Your computer or device (i.e., the right to know), (b) the right to delete the data we have about You, Your computer or device (i.e., the right to delete) and (c) the right to opt-out of the sale to certain third parties (i.e., the right to opt-out from sales of Your information). Indicative uses the same process to honor CCPA rights of access and deletion that we use for GDPR rights for EU and Swiss data subjects. That process is described below.

We do not discriminate against You if You exercise any of the above rights. Moreover, we may not be able to honor a right if doing so would violate applicable law. Indicative may transfer data to third parties pursuant to operating our Website and as such are considered to have sold data over the past twelve months pursuant to the CCPA. You may view the entities collected data via the Website and any choices provided by viewing our Cookie Policy. We do not sell data via our Platform or Services.

Under the CCPA, Your request to see the personal information that we have about You may include: (1) specific pieces of personal information that we may have about You; (2) categories of personal information we have collected about You; (3) categories of sources from which the personal information is collected; (4) categories of personal information that we sold or disclosed for a business purpose about You; (5) categories of third parties to whom the personal information was sold or disclosed for a business purpose under the CCPA; and (6) the business or commercial purpose for collecting or selling personal information. 

As required by the CCPA, You may make an access or deletion request via an authorized agent by having such agent follow the process below. Please note that we will request any authorized agent demonstrate that they have been authorized by You to make a request on Your behalf, and we will attempt to verify Your request. We require any authorized agents to provide us with contact details such as an email address and phone number so that we may ensure a timely response to the consumer.

Individuals who have provided information directly to one of Indicative’s Clients must send follow-up requests to access or delete such information to that particular Indicative Client – as we take our instructions from each Client with respect to each Client’s Customer’s Data.

If You have any questions, or to make a CCPA access or deletion request, please contact Indicative at privacy@mparticle.com, via the toll-free number at (888) 441-2022 or via the postal addresses at the bottom of this privacy policy.

EU, UK, Brazil, and Swiss Individuals

Indicative acknowledges that EU, UK, Swiss and Brazil individuals have certain legal rights including the right to complain to a local supervisory authority (e.g., the ICO in the UK) and the right to access the personal data that we maintain about them. An EU, UK, Swiss or Brazil individual who seeks access, or who seeks to correct, amend, or delete inaccurate data, should direct their query to privacy@mparticle.com. If requested to remove data, we will respond within the legally mandated time. (In the EEA, Indicative generally responds within 30 days). Please note that Indicative is a processor of the data contained on the Platform. If You seek to exercise data subject access rights for data processed via the Platform, we ask that You reach out to Indicative’s Clients directly as the controllers of that data.

Under these circumstances, You have rights under data protection laws in relation to Your personal data, as follows:

a) Request access to Your personal data

You have a right to request a copy of the personal data that we hold about You. Please use the contact details at the end of this policy if You would like to exercise this right, or any of the rights listed below. If You are a European resident and consider our use of Your personal data to be unlawful, You have the right to lodge a complaint with the relevant supervisory authority.

b) Request correction of Your personal data

You have the right to request that we correct the personal data we hold about You, although we may need to verify the accuracy of the new information You provide to us as well as possibly Your identity, depending upon Your request.

c) Request erasure of Your personal data

You have the right to request that we delete or remove personal data where there is no good reason for us continuing to process it. Please note that we may not always be able to comply with Your request for erasure if there are specific legal reasons- which will be notified to You at the time of Your request.

d) Object to processing of Your personal data

You have the right to object to the processing of Your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about Your particular situation which makes You want to object to processing on this ground as You feel it impacts on Your fundamental rights and freedoms. You also have the right to object where we are processing Your personal data for direct marketing purposes. In some cases, we may demonstrate that we have compelling legitimate grounds to process Your information which override Your rights and freedoms.

e) Request restriction of processing Your personal data

You have the right to request that we suspend the processing of Your personal data in the following scenarios: (a) if You want us to establish the data’s accuracy; (b) where our use of the data is unlawful but You do not want us to erase it; (c) where You need us to hold the data even if we no longer require it as You need it to establish, exercise or defend legal claims; or (d) You have objected to our use of Your data but we need to verify whether we have overriding legitimate grounds to use it.

f) Request transfer of Your personal data

You have the right to request that the personal data we hold about You is transferred to You or to a third party. We will provide to You, or a third party You have chosen, Your personal data in a structured, commonly used, machine-readable format. Please note that this right only applies to automated information which You initially provided consent for us to use or where we used the information to perform a contract with You.

g) Right to withdraw consent

In circumstances where we are relying on Your consent to process Your personal data, You have the right to withdraw Your consent at any time. However, this will not affect the lawfulness of any processing carried out before You withdraw Your consent. If You withdraw Your consent, we may not be able to provide certain products or services to You. We will advise You if this is the case at the time You withdraw Your consent.

Please also note the following:

No fee usually required

You will not have to pay a fee to access Your personal data (or to exercise any of the other rights). However, under EU law, we may charge a reasonable fee if Your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with Your request in these circumstances.

What we may need from You

We may need to request specific information from You to help us confirm Your identity and ensure Your right to access Your personal data (or to exercise any of Your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact You to ask You for further information in relation to Your request to speed up our response.

Time limit to respond

We try to respond to all legitimate requests within one month unless a shorter time period is required by applicable law. Occasionally it may take us longer than a month if Your request is particularly complex or You have made a number of requests. In this case, we will notify You and keep You updated.

Access to Your data

If You are an Indicative Client, You may contact Your client success manager within Indicative (if applicable) or via the settings page when You are logged into Indicative’s Platform. If those options do not work, please reach out to Indicative at privacy@mparticle.com to see the information we have stored, such as Your name, email, address or phone number. You can also contact us by email to request to see this information.

If You are a job applicant or a vendor or partner of Indicative and have provided this kind of information, You can also contact us via e-mail to request to see the information we have in our systems.

Your information choices and changes

You may opt out of receiving promotional emails from Indicative by following the instructions in those emails. If You opt out, we may still send You non-promotional emails, such as emails about Your Indicative projects or our ongoing business relationship. An individual wishing to limit the use or sharing of their data should contact email privacy@mparticle.com.

Individuals who have provided information directly to one of Indicative’s customers must send follow-up requests to change or delete such information to that particular Indicative customer.

7. Contacting Indicative

You can contact Indicative by reaching out to privacy@mparticle.com. To contact our Data Protection Officer, please reach out to privacy@mparticle.com

You may contact us by mail: 

 

mParticle Privacy Office

257 Park Ave South, 9th Floor

New York, NY 10010

8. Changes to the Privacy Policy

Indicative will not change the Privacy Policy without providing notice prior to the effective date of such changes and will provide such notice here. If we make any changes to this Policy, we will change the “Last Updated” date above.  You agree that your continued use of our Website and/or Platform after such changes to our privacy practice have been published will constitute your acceptance of such revised Policy.