PRIVACY STATEMENT
- Introduction
Your privacy and trust are important to us. This Privacy Statement explains how TechTarget, Inc. (“TechTarget,” “we”, “us” or “our”) collects, handles, stores and protects Personal Data (e.g., any information relating to an identified or identifiable natural person including, by way of example, an individual’s name, contact information, title, job function, country, and employer) about you in the context of our Priority Engine service. It also provides information about your rights and about how you can contact us if you have questions. As a corporate subscriber to Priority Engine (the “Service”), you can access the Services through our website, including https://itda2.techtarget.com/, and through APIs or integrations with third party tools. This Privacy Statement governs your access of the Service, regardless of how you access it, and by using our Service you agree to the collection, transfer, processing, storage, disclosure and other uses described herein.
- Contact Information
If you have any questions about this Privacy Statement, please contact your Account Manager or our Privacy Office.
- Full name of legal entity: TechTarget, Inc., a Delaware corporation
- To contact TechTarget’s Data Protection Officer email [email protected] or mail a letter addressed to the “TechTarget Data Protection Officer” at the below address.
- Privacy Office Email address: [email protected]
- Postal address: 275 Grove Street, Newton, Massachusetts USA 02466
To submit a privacy rights request, please contact us at the below email address:
[email protected]
- What Personal Data and other Information do we collect and store, and how is it collected?
Personal Data You Provide to Us. The types of Personal Data collected this way may include your name, email address, and title, job function, location (country) provided by you when using our Service, browser/mobile device information, account credentials and other information for authentication and access purposes, and employer and corporate account holder information (which may include name of entity, industry, and organization size).
Log Data. When you use the Service, we (ourselves or by way of the use of third party services) automatically record some information from your device, its software, and your activity using the Services, which can sometimes be correlated with Personal Data and so associated with you. This may include your device’s Internet Protocol (“IP”) address, browser type, information you search for using our Service, date and time stamps associated with your activities using our Services, system configuration information, and other interactions with the Service.
Cookies. We use Cookies, Clear GIFs, Web Beacons, Tracking Technologies or other similar solutions (“Tracking Technologies”) to collect or receive certain information when you visit or use a TechTarget Priority Engine or otherwise interact with content from us. These Tracking Technologies may include first party cookies (i.e., those placed by the website being visited) and third party cookies (i.e., those placed by a website other than the one being visited), local shared objects (commonly referred to as “Flash Cookies” or “HTML 5 Cookies”) and tracking pixels (including transparent or clear gifs). You can learn more about how TechTarget handles cookies and the types of cookies we use, by clicking here and choosing subsection “c. Cookies and Other Tracking Data”.
Geo-Location Information. Some devices allow applications to access real-time location-based information (for example, GPS). As of the effective date of this Privacy Statement, we do not have a mobile application and do not collect such information from your mobile device at any time while you use our Services, but we may do so in the future with your consent to improve our Services. Please note, however, that some of the information we collect from a device, for example IP address, can sometimes be used to approximate a device’s location.
- If you fail to provide your Personal Data
Where we need to collect your Personal Data by law, or in order to perform a contract we have with you or your employer or are trying to enter into with you or your employer and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into (for example, to provide you with our Services).
- How do we use information we collect?
(a) We will only use your Personal Data when the law allows us to do so. We may process your Personal Data upon more than one lawful ground depending on the specific purpose for which we are using your data. Most commonly, we will use your Personal Data in the following circumstances (i) where we need to do so to perform a contract we have entered into with you, or to take steps at your request before entering into such a contract. This applies particularly where we use your Personal Data to administer your use of the Service, (ii) where it is necessary for a legitimate interest and your interests and fundamental rights do not override those interests. A legitimate interest means the interest of our business in conducting and managing our business to enable us to give you the best service and the best and most secure experience. This applies particularly where we use your Personal Data to better understand your needs and interests, to improve our Service, to personalize and improve your experience, to provide or offer Service updates and other product announcements or otherwise to do anything with your Personal Data that we consider to be necessary for our legitimate interests (and typically also to be for the benefit of our users and therefore also for your benefit, whether directly or indirectly), and (iii) where we need to comply with a legal or regulatory obligation.
(b) Your Personal Data is or may be used: (i) to set up an account and profile for you and to enable you to access Services securely; (ii) to administer your use of the Service and to provide and improve our Service; (iii) to better understand your needs and interests; (iv) to personalize and improve your experience; (v) to provide or offer Service updates and product announcements; (vi) to develop, test and evaluate potential new products and features; (vii) to enable you, your manager, and other authorized personnel to track and report upon your use of the Service which may include Priority Engine usage data combined with other employee performance statistics provided by our clients (viii) to monitor certain aspects of your usage of the Service; (ix) to create logs, ranking, and other statistical information related to your activity in the Service; and (x) for other product and business related purposes. If you no longer wish to receive communications from us, please follow the “unsubscribe” instructions provided in any of those communications. When you contact us, we may keep a record of your communication to help solve any issues you might be facing. If you send us a request (for example via a support email or via an Account Manager or Representative).
(c) We aggregate the log data gathered from use of our Services. If data collected from you is aggregated in this way, you can no longer be identified from it. We use this aggregated information for the above purposes and to monitor and analyze use of the Service, for the Service’s technical administration, to increase our Service’s functionality and user-friendliness, and to verify users have the authorization needed for the Service to process their requests.
(d) We may occasionally send you emails to tell you about new features, solicit your feedback, or to update you about what’s going on with TechTarget and our products and services. We strive to provide you with choices regarding use of your Personal Data in relation to such emails and will provide you with an opportunity to unsubscribe from such communications whenever we send you such communications.
- Disclosure or Sharing of Your Information
We will not share your information with any third parties without your permission; however, we may be required to share certain information if required to comply with a law, regulation or legal demand or if we are involved in a merger, acquisition, or sale of all or a portion of our business or assets, your information may be transferred as part of that transaction.
We may provide your information to certain employees, service providers, contractors, and third parties who require access to this information for the provision of our Services, for data storage, data processing, and other similar or related data activities, and to support functions related to the operation of our Services. We attempt to limit the information or level of access that we provide to these parties to what is reasonably sufficient for them to carry out their responsibilities and we do so in accordance with our information security and privacy practices, policies and procedures. These parties may be located in the United States, the European Economic Area (EEA), and other geographic regions.
By using the Services, you consent to the transfer of such information to these parties for processing.
- International Transfers
TechTarget complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. TechTarget has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of Personal Data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF. TechTarget has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of Personal Data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
TechTarget, Inc. and BrightTALK Inc. are adhering to the DPF Principles. The Federal Trade Commission has jurisdiction over TechTarget and BrightTALK’s compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF).
TechTarget receives Personal Data about individuals in the EU, UK and Switzerland, including website visitors, members, service providers, contractors, and other third parties. The Personal Data collected, its purposes, its uses, and the third parties to whom we disclose such data are described in Section 3 and Section 6 above. TechTarget remains responsible for all onward transfers of Personal Data from the EU, UK, and Switzerland to third parties who process Personal Data in a manner inconsistent with the DPF, unless TechTarget can provide that we are not responsible for the event giving rise to the damage.
The U.S. Federal Trade Commission has jurisdiction over our compliance with the DPF. In certain situations, we may be required to disclose Personal Data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
EU, UK, and Swiss individuals with inquiries or complaints regarding our handling of Personal Data received in reliance on the DPF or otherwise wishing to access their Personal Data, limit its use and disclosure, or exercise other applicable data privacy rights should first contact us using one of the contact methods provided in Section 11 “Your Legal Rights” below.
In compliance with the DPF, TechTarget commits to refer unresolved complaints concerning our handling of Personal Data received in reliance on the DPF to JAMS, an alternative dispute resolution provider based in the United States. If you do not receive timely acknowledgment of your DPF-related complaint from us, or if we have not addressed your DPF-related complaint to your satisfaction, please visit https://www.jamsadr.com/dpf-dispute-resolution for more information or to file a complaint. The services of JAMS are provided at no cost to you.
If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. For more information regarding your right to binding arbitration please see Annex I of the DPF, available on the DPF website.
This policy may be amended or modified from time to time consistent with the DPF.
- Data Security
We have put in place appropriate technical and organizational security measures intended to prevent your Personal Data from being lost, misused or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your Personal Data to those who have a business need to know. These individuals will only process your Personal Data in accordance with our instructions and are subject to a duty of confidentiality.
- Data and File Retention
(a) We will retain your Personal Data and other information received or otherwise provided as part of our Services for as long as your account is active or as needed to provide you the Services. Once your corporate subscription is terminated, your Personal Data will be deleted from the Services within six (6) months from the last active user key from your organization. We may, however, retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. Consistent with these requirements, we will try to delete your information quickly upon request. Please note, however, that there might be latency in deleting information from our servers and backed-up versions might exist after deletion. This section only applies to the Personal Data you or your employer provides us to provide you the Services and does not apply to Personal Data processed by us through other lawful grounds.
(b) In some circumstances we may we may anonymize your Personal Data (change it so that it can no longer be associated with you) for research or statistical purposes, or for purposes of aggregating it with other information in connection with improving our Services, in which case we may use this information indefinitely without further notice to you. We may retain your email address on opt-out lists and audit trails required to prove compliance with laws and regulations and to ensure compliance with such laws and regulations going forward.
- Third Party Applications
This Privacy Statement applies to our Services but excludes services that have separate privacy policies that do not incorporate this Privacy Statement and services offered by other companies or individuals, including products or websites that may be displayed or linked to you in our Services. Before using those services, please make sure you understand the separate privacy policies that may relate to them.
- Your Legal Rights
You may have rights under certain data protection laws in relation to your Personal Data. These rights include the right to access, rectify, erase, transfer (data portability), restrict, or object to use of your Personal Data under the General Data Protection Regulation (GDPR), and the right to access, delete, transfer (data portability), correct your Personal Data, the right to object to the sale or sharing of your Personal Data, and to not to be discriminated or retaliated against if you are a California Consumer under the California Consumer Privacy Act (CCPA) as amended by CPRA. These rights are not absolute and they do not apply in all cases. In response to a request, we may ask you to verify your identity and to provide additional information to help us to understand your request. If we do not comply with your request, whether in whole or in part, we will explain why. In order to exercise your rights please use one of the following web forms: EU and UK GDPR Rights Request Form, General Privacy Rights Request Form, or the California Consumer Rights Request Form.
You can learn more about your UK, Swiss, and GDPR Privacy Rights by clicking here.
You can learn more about your CCPA Privacy Rights by clicking here.
To review TechTarget’s overall privacy policy in its entirety, click here.
Privacy Statement Changes
Our Privacy Statement may change from time to time. We will generally provide a summary of any changes to this policy and, if the changes are significant, we will provide a more prominent notice through the Service or Service access page or by email.
Effective: May 13, 2019
Last Updated: May 1, 2024