Caspio Privacy Policy

This Privacy Policy explains how Caspio Inc. (“Caspio”), located at 1286 Kifer Road, Suite 107, Sunnyvale, CA 94086 USA, collects, uses, and discloses information, including Personal Data, in connection with Caspio’s websites, products, Services, and communications with you.

This Privacy Policy does not apply to Customer Data that Caspio processes on behalf of its customers, which is governed by the Caspio Data Processing Agreement. Capitalized terms not otherwise defined herein shall have the meanings ascribed to them in the Caspio Terms of Service.

INFORMATION WE COLLECT

When you visit our websites, register for the Service, communicate with us, or request information about the Service, we may request that you provide Personal Data. Audio and video calls with Caspio may be recorded with prior notice. In some cases, if you do not provide sufficient Personal Data, we may not be able to provide all of our products and Services.

PERSONAL DATA

Caspio collects Personal Data such as name, title, phone number, email address, mailing address, and IP address. When you sign up for a paid Service, Caspio collects billing information through PCI-compliant third-party payment processors; Caspio does not directly store credit card numbers. Caspio may also receive Personal Data from business partners or other third-party sources.

NAVIGATIONAL INFORMATION

Caspio automatically collects navigational information such as browser type, referrer page, domain name, access time, entry page, exit page, operating system type, and search engine keywords used.

DEVICE INFORMATION

Caspio may collect device information such as mobile device identifiers, hardware model, operating system version, and screen resolution.

LOG DATA

Caspio automatically collects server log data, including request timestamps, error logs, and API call logs, for security, debugging, and performance monitoring purposes.

ACCOUNT USAGE DATA

Caspio collects information about how you use the Service, including feature usage, login frequency, session duration, and platform activity. This data is used to improve the Service and inform product development.

COOKIES AND OTHER TRACKING TECHNOLOGIES

Caspio and its third-party partners, such as advertising and analytics providers, use cookies and other tracking mechanisms (web beacons, device identifiers, and similar technologies) to recognize you across websites and provide certain functionality. Caspio uses cookies and similar technologies to administer its websites, monitor behavioral trends to improve content and Services, and protect the security of the Service. For more information, including how to opt out of certain cookies and tracking technologies, please see Caspio’s Cookie Policy at https://www.caspio.com/cookie-policy.

The Caspio Platform uses cookies tied to Personal Data for essential operation, such as maintaining the security of authenticated user sessions. Disabling these cookies at the browser level is not recommended, as certain features may not function as designed.

SINGLE SIGN-ON AND IDENTITY PROVIDERS

If you log in to the Service through a third-party identity provider (e.g., Google, Microsoft), Caspio may receive profile information from that provider in accordance with your settings and that provider’s policies.

SURVEYS

From time to time, Caspio may invite you to participate in an online survey. These surveys may collect Personal Data such as name and email and may request additional profile information. Survey results are used internally to improve the Service and for marketing purposes.

TESTIMONIALS

With your consent, Caspio may post your testimonial along with your name, company, title, logo, or profile photo on Caspio’s website and social media channels. Caspio may also excerpt or adapt testimonial content for use in marketing materials. You may withdraw your consent and request removal of your testimonial from Caspio-controlled channels at any time by contacting Caspio.

PODCASTS AND MEDIA

With your consent, Caspio may record, publish, and distribute audio or video interviews about your use of the Service, including your name, likeness, voice, company, and title, across Caspio’s website, social media channels, and third-party platforms. Caspio may also create and publish excerpts, quotes, or clips derived from such content for marketing purposes. You may withdraw your consent and request removal of such content from Caspio-controlled channels at any time by contacting Caspio.

COMMUNITY AND SUPPORT

If you participate in Caspio’s community forums, submit support tickets, or use Caspio’s customer portals (such as for professional services), Caspio collects the information you provide, including your name, contact details, and the content of your submissions.

EVENTS AND WEBINARS

If you register for a Caspio-hosted event, webinar, or conference, Caspio collects registration information such as name, email, company, and title.

REFERRALS

Caspio may invite you to participate in a referral program. If you choose to refer a colleague or friend, we will ask you for their name and email address, which you represent you are authorized to provide.

SOCIAL MEDIA

If you interact with Caspio on social media platforms, Caspio may have access to information you make publicly available through those platforms, such as your name, profile, and the content of your interactions. Caspio does not actively collect or aggregate Personal Data from social media.

JOB APPLICANTS

If you apply for a position at Caspio, we collect information you provide in connection with your application, including name, contact information, resume, and employment history. Job applicant data is used solely for recruitment purposes.

USE OF AI TOOLS

Caspio may use AI tools to analyze collected data for purposes of improving the Service, support, and communications. Caspio does not use Customer Data to train, improve, or fine-tune any machine learning or artificial intelligence model, whether operated by Caspio or any third party. Caspio does not use AI tools to make automated decisions that produce legal or similarly significant effects on you without human review.

HOW WE USE YOUR INFORMATION

PROVIDING AND IMPROVING THE SERVICE

Caspio uses your information to operate, maintain, and improve the Service, including to provide customer support, process transactions, manage your Account, and respond to your requests.

COMMUNICATIONS AND MARKETING

Caspio uses your information to communicate with you about product updates, service incidents, and other operational matters. With your consent, Caspio may also send you marketing communications about the Service, events, and other offerings. You may opt out of marketing communications at any time.

ANALYTICS AND PRODUCT DEVELOPMENT

Caspio uses account usage data, navigational information, log data, and survey results to analyze trends, measure the effectiveness of the Service, and inform product development. Caspio may use AI tools to analyze collected data for these purposes.

SECURITY AND FRAUD PREVENTION

Caspio uses log data, device information, and navigational information to detect and prevent security threats, fraud, abuse, and unauthorized access to the Service.

CUSTOMER SUPPORT AND COMMUNITY

Caspio uses information provided through support tickets, customer portals, and community forums to resolve issues, improve support processes, and maintain community resources.

EVENTS AND WEBINARS

Caspio uses registration information to manage event logistics, communicate with attendees, and improve future events.

RECRUITMENT

Caspio uses job applicant data solely to evaluate candidates, manage the hiring process, and comply with applicable employment laws.

LEGAL COMPLIANCE

Caspio may use your information as necessary to comply with applicable laws, respond to legal process, or enforce our agreements. Caspio reserves the right to disclose information if required by law or valid order of a court or other governmental authority.

LEGAL BASIS FOR PROCESSING (EEA/UK)

Where applicable data protection laws require a legal basis for processing Personal Data: (a) processing related to providing the Service, managing your Account, or entering into a contract is based on contractual necessity; (b) processing of marketing communications is based on your consent; (c) processing for security, fraud prevention, product improvement, analytics, and protecting our legal interests is based on Caspio’s legitimate interests, which are not overridden by your data protection rights.

INFORMATION WE SHARE

Caspio will not rent, sell, or share Personal Data about you with third parties except to provide the Service, when we otherwise have your permission, or under the following circumstances:

SERVICE PROVIDERS

Caspio may disclose Personal Data to third-party service providers that work on our behalf to provide the Service, such as infrastructure hosting, payment processing, analytics, and event management platforms. These service providers process data at our instruction and pursuant to contracts requiring them to provide a level of privacy protection equivalent to this Privacy Policy.

PARTNERS AND RESELLERS

Caspio may transfer your Personal Data to a Partner or authorized reseller when necessary to provide you with a service or product you have requested through that Partner or reseller.

ADVERTISING AND ANALYTICS

Caspio may share data with advertising and analytics partners for purposes of remarketing and measuring the effectiveness of our marketing campaigns. Where required by law, such sharing is subject to your consent.

AI PROVIDERS

Caspio may share data with third-party AI providers for purposes of analysis and service improvement. If Personal Data is shared with AI providers, Caspio will ensure appropriate contractual protections are in place and will update this Privacy Policy accordingly.

LEGAL REQUIREMENTS

Caspio may disclose Personal Data if required by law, court order, or lawful request by public authorities, including to meet national security or law enforcement requirements. Where permitted by applicable law, Caspio will provide you with notice and an opportunity to challenge such request prior to disclosure.

ENFORCEMENT

Caspio may disclose Personal Data as necessary to enforce its agreements, investigate potential violations, or protect Caspio’s legal rights.

SAFETY

Caspio may disclose Personal Data under exigent circumstances to protect the personal safety of our customers or the public.

CHANGE OF CONTROL

If Caspio or its assets are acquired, merged, or undergo any other change of control, Personal Data may be one of the assets transferred. The acquiring party will be bound by the privacy commitments in this Privacy Policy.

AGGREGATED AND DE-IDENTIFIED DATA

Caspio may share aggregated or de-identified data that cannot reasonably be used to identify you. Such data is not subject to the restrictions in this Privacy Policy.

CUSTOMER RESPONSIBILITIES

If you use the Caspio Platform to collect, process, or store Personal Data from your own End Users, you are the data controller for that data. You are responsible for maintaining your own privacy policy, obtaining any required consents from your End Users, and complying with all applicable data protection laws. Caspio’s processing of such data on your behalf is governed by the Data Processing Agreement.

YOUR DATA RIGHTS

If you are a registered Caspio Account user, you can access, change, and delete your Personal Data at any time by signing into your Account and editing your profile. If you are unable to sign into your Account, reset your password or contact Caspio Support. Caspio takes steps to verify your identity before granting access to your Account or Personal Data.

Subject to applicable law, you may have the following rights regarding your Personal Data:

• Request access to your Personal Data
• Request correction of inaccurate Personal Data
• Request deletion of your Personal Data
• Object to or request restriction of processing
• Request portability of your Personal Data
• Request to opt out of the sharing of your Personal Data for targeted advertising purposes
• Withdraw consent to processing at any time, without affecting the lawfulness of processing that occurred prior to withdrawal
• File a complaint with a data protection authority
• Not receive discriminatory treatment for exercising your rights

To exercise any of these rights, contact Caspio at https://www.caspio.com/contact-caspio-privacy or by mail to Caspio, Inc., Attention: Privacy, 1286 Kifer Road, Suite 107, Sunnyvale, CA 94086 USA. Caspio will respond to requests within 30 days of receipt. You may designate an authorized agent to submit a request on your behalf, subject to Caspio’s verification of the agent’s authority.

Requests may be restricted where fulfilling the request would compromise Personal Data about another individual, or where Caspio is permitted or required by law to retain the information.

If Personal Data pertaining to you has been submitted to Caspio by a Caspio customer, please direct your request to that customer. Caspio will respond to the customer’s request within 30 days.

YOUR COMMUNICATION CHOICES

You may manage your receipt of marketing communications from Caspio by clicking the “Email Preferences” link at the bottom of Caspio marketing emails, by replying or texting “STOP” to Caspio SMS communications, or by contacting us at https://www.caspio.com/contact-caspio-privacy. Caspio reserves the right to send Account-related communications, such as service announcements and administrative messages, which are not subject to opt-out.

INTERNATIONAL DATA TRANSFERS

Caspio offices and Services are globally dispersed, and your Personal Data may be transferred to and processed in countries other than the country in which it was originally collected. Caspio takes the necessary steps to ensure the protection of international transfers in compliance with applicable data protection laws.

DATA PRIVACY FRAMEWORK

Caspio complies with the EU-U.S. Data Privacy Framework (“EU-U.S. DPF”), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (“Swiss-U.S. DPF”), as set forth by the U.S. Department of Commerce. Caspio has certified to the U.S. Department of Commerce that it adheres to the principles of each of these frameworks with regard to the processing of Personal Data received from the European Union, the United Kingdom (and Gibraltar), and Switzerland. If there is any conflict between the terms of this Privacy Policy and the DPF Principles, the Principles shall govern. To learn more about the DPF program and to view Caspio’s certification, please visit https://www.dataprivacyframework.gov/.

OVERSIGHT

The Federal Trade Commission has jurisdiction over Caspio’s compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF.

ONWARD TRANSFERS

Caspio may share Personal Data with third-party service providers as described in the Information We Share section. Caspio maintains contracts with these providers restricting their access, use, and disclosure of Personal Data in compliance with DPF obligations, including onward transfer provisions. Caspio remains liable if such providers fail to meet those obligations and Caspio is responsible for the event giving rise to the damage.

DISPUTE RESOLUTION

In compliance with the DPF, Caspio commits to refer unresolved complaints concerning its handling of Personal Data received in reliance on the DPF to JAMS, an alternative dispute resolution provider based in the United States. If you do not receive timely acknowledgment of your complaint, or if Caspio has not addressed your complaint to your satisfaction, please visit https://www.jamsadr.com/dpf-dispute-resolution for more information or to file a complaint. The services of JAMS are provided at no cost to you.

For residual complaints not fully or partially resolved by other means, you may be able to invoke binding arbitration as set forth in Annex I of the DPF Principles by delivering notice to Caspio and following the procedures and conditions set forth therein.

DATA SECURITY AND INTEGRITY

Caspio uses robust security measures to protect Personal Data both during transmission and at rest. All information transferred within the Caspio Platform, applications deployed from Customer Accounts, and Caspio’s websites is served through a secure connection (HTTPS). Caspio has implemented physical, technical, and administrative safeguards to protect Personal Data from unauthorized access, use, disclosure, and destruction. However, no method of transmission over the Internet or method of electronic storage is 100% secure, and Caspio cannot guarantee the absolute security of your Personal Data.

DATA RETENTION

Caspio retains Personal Data for as long as necessary to fulfill the purposes for which it was collected, including to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements.

When an Account is terminated, Caspio deletes Customer Data from its production environment in accordance with its data retention policies. Certain data may be retained in anonymized or aggregated form for reporting and analysis purposes. Backup copies are retained and deleted in accordance with Caspio’s backup retention schedule.

For marketing and communications data, Caspio retains Personal Data until you opt out or until Caspio determines there is no longer an active engagement, after which the data is deleted.

Caspio regularly reviews its retention practices and policies to ensure compliance with applicable data protection laws.

CHILDREN AND PRIVACY

The Service is intended for adults. Caspio does not intentionally or knowingly collect Personal Data from children as defined by applicable law, and we request that children not submit any Personal Data to us. If you become aware that a child has provided Personal Data to Caspio, please contact us at https://www.caspio.com/contact-caspio-privacy and Caspio will take steps to delete such information.

THIRD-PARTY LINKS

The Service and Caspio’s websites may contain links to third-party websites, services, or resources. Caspio is not responsible for the privacy practices or content of any third-party sites. We encourage you to review the privacy policies of any third-party site you visit.

PRIVACY SIGNALS

Caspio honors Global Privacy Control (GPC) signals as a valid opt-out of the sharing of Personal Data for targeted advertising purposes, where required by applicable law. For more information about GPC, visit https://globalprivacycontrol.org.

CHANGES TO THE PRIVACY POLICY

Caspio reserves the right to update this Privacy Policy at any time to reflect changes to our data practices. If Caspio makes material changes to the manner in which Personal Data is processed, Caspio will notify users via email and post a notice on our website and Services prior to the changes taking effect. The “Last updated” date at the top of this Privacy Policy indicates when it was most recently revised.

CONTACT CASPIO

To comment or ask questions about this Privacy Policy and our data practices, or if you need to update, change, or remove your information, contact us at https://www.caspio.com/contact-caspio-privacy or at the address below:

Caspio, Inc.
ATTN: Privacy
1286 Kifer Road, Suite 107,
Sunnyvale, CA 94086 USA
privacy@caspio.com