Journyx Privacy Statement

This Privacy Statement describes the information that Journyx, Inc. and/or our Affiliates (“Journyx”, “we”, “our”) collects about you when you visit our websites or enter information into our software service(s), how we will use the information we collect, other parties with whom we may share the information, and your choices and rights with respect to the information that we collect or obtain. “Affiliate” means any entity that directly or indirectly controls, is controlled by, or is under common control with Journyx, Inc.

Personal information we collect may be stored and processed in the United States, the European Union, or in any other country where our Affiliates or third-party service providers maintain facilities. We follow applicable data protection laws when transferring personal information.

This Privacy Statement distinguishes between two categories of personal information:

  • Personal information of customers or potential customers of our offerings (“Services”), such as business contact information, which we refer to here as “Customer Account Information,” and
  • Personal information of our customers’ end users who use our Services, which includes the information end users enter into the Services, or information about end users that our customers enter into the Services (“Customer Services Data”), and information we process relating to the usage of the Services by customers and their end users (“Customer Usage Data”).

This Privacy Statement also distinguishes between our public-facing websites, which provide information about our offerings and related information of interest, and the Journyx Services, which are separate from our websites and available only to customers and prospective customers.

Controller and Processor Roles

Certain data protection and privacy laws differentiate between a “controller” and a “processor” of personal information. A controller decides why and how to process personal information. A processor processes personal information on behalf of, and under the instructions of, a controller.

Purpose of the Processing

When we process Customer Account Information, we act as a controller. We use the information to further our legitimate interests to understand who our customers and potential customers are and their interest in our Services and other offerings, to manage our relationship with our customers, to carry out necessary business operations such as accounting, taxes, and compliance, and to detect, prevent or investigate security incidents, fraud or misuse of our Services.

When we process Customer Services Data, we act as a processor to our customer, the controller, under the terms of our contractual agreement with our customer.

When we process Customer Usage Data, we may do so either as a processor under our customer’s instructions, or as an independent controller as required to carry out the necessary functions to provide the Services and to comply with applicable law. We will process Customer Usage Data as a controller to carry our functions such as accounting, tax, billing, audit and compliance; to provide, optimize and maintain the Services and security; to investigate fraud, spam, wrongful or unlawful use of the Services; and as required by applicable law or regulation and in accordance with our contractual agreement.

If you are an end user of one of our customers, that customer can provide more information about the personal information they are collecting and using in the Services.

Personal Information in the Journyx Services

Information Our Customers Submit to the Services

Journyx does not have a direct relationship with the end users of the Services.

Customer Services Data may contain personal information about a customer’s end users; the information entered into the Services is determined by the customer, as the controller. Journyx processes the data on our customers’ behalf. Customer Usage Data relate to customers’ and customer’s end users usage of the Services.

Journyx customers and their end users may input Customer Services Data into the Journyx Services. Journyx will use the data only in accordance with the contractual agreement between Journyx and the customer, or as may be required by law.  Customer Services Data are owned by the customer, and not Journyx. Customers are responsible for complying with applicable regulations and laws that govern their collection and use of data, including providing notice, disclosure, and/or obtaining consent before transferring the data to Journyx for processing.

If you are an end user of the Journyx Services, your use is governed by your organization’s policies. Your privacy questions or concerns should be directed to your organization’s Journyx administrators.

Location of the Services Data Processing

We process Customer Services Data and Customer Usage Data in processing facilities located either in the United States or in the European Union, depending on the terms of our agreement with the customer.

Personal Information Collected by Journyx Outside the Services

Information You Share with Us Directly

On our websites, you may choose to provide us with personal information, such as your name, email address, company information, or telephone number. Some areas of our websites, such as the Journyx User Community, require that you have an account with a username and password. As part of your account in these website areas, you may choose to provide us with additional information.

Certain website features may enable you to submit requests to us. A “Contact Us” form, for example, allows you to request information or assistance from us. We will request from you the information necessary to fulfill your request. If you sign up to receive ongoing marketing communications from Journyx, you can choose to opt out of further communications through a preferences page; this page is also available using the “Unsubscribe” link included with marketing email messages.

If you register, on our website or by other means, to attend a Journyx-sponsored event, we will require information such as your name, email address, company name, or other contact information. For certain kinds of events, we may also require you to provide billing information (such as billing name and address).

When you provide personal information to Journyx directly outside the Journyx Services, such as on our website, by phone, by email or other means, you consent to the processing and transfer of your personal information within the United States and elsewhere worldwide.

Information We Collect Automatically on Our Websites

When you visit our websites, including our web forms, Journyx or our service providers acting on our behalf may use website tracking technologies to observe your computer and connection information (such as an IP address), activities, interactions, preferences, and other information relating to your use of our websites. We may also use cookies, log files, and similar technologies to collect information about the pages you visit, links you click, and other actions you take when accessing our websites, services, or emails. We use this information to operate and improve the Journyx websites, personalize the visitor experience, and to better understand how visitors find and use the websites.

Where permitted by law, or with your consent, we also use your contact information and/or information about your activity on our websites to send you information that we believe may be of interest to you. Such information may include newsletters, or product and event announcements.

In addition to the uses described in this section, there may be other uses for the information we collect, which we would disclose to you at the time of collection.

Other Information We Collect

We may collect personal information from publicly-available sources so we can better understand our customers and prospective customers. We may use publicly-available information from services like LinkedIn, or obtain information about your company from third party providers to better understand the customer base and markets we serve, such as industry, company size, and website URLs.

Mobile Application

The mobile app is an interface to the Journyx Services and does not operate separately from the Services. The personal information end users submit to the mobile app is Customer Services Data that we will process in accordance with our contractual agreement with the customer.

If you use the Journyx mobile application, Journyx may obtain information from or access data stored on your mobile device to deliver requested application services and to improve our mobile applications. For example, when you are using a Journyx mobile application, we may access your camera to allow you to upload photographs to the Journyx Services. Journyx may also collect information from your usage of the mobile application to monitor usage statistics and for security purposes.

To make the Services available to you through the mobile app, we will collect other information from your mobile device, such as how often you use the application, the username you use to login to the application, the type of device and its operating system version, the events that occur within the application, aggregated usage, performance data, and where the application was downloaded from.

Your device may have a biometric authentication feature native to the device. If you use such a feature to authenticate to the mobile app, the app will receive only confirmation of authentication. The biometric information remains entirely within your device and is not collected by the mobile app or transmitted to the Journyx Services.

When and Why We Share Personal Information

Journyx does not sell your personal information to third parties, or allow it to be used by third parties for their own marketing purposes unless you give us your consent to do this.

Compliance with legal obligations. We may disclose our customers’ or their end users’ personal information to a third party if: (i) we believe disclosure is compelled by applicable law, regulation, legal process, or government request (such as a law enforcement request), (ii) to enforce our agreements and policies, (iii) to protect the security or integrity of our products and services, (iv) to protect ourselves, our other customers, or the public from harm or illegal activities, or (v) to respond to an emergency which we believe in good faith requires that we disclose information to assist in preventing death or serious bodily injury. If Journyx is required by law to disclose your or your end users personal information, we will notify you of the disclosure requirement unless prohibited by law.

Business transfers. If Journyx goes through a business transition, such as a merger, acquisition, or sale of all or a portion of its assets, your personal information may be among the assets transferred.

Other Journyx group entities. We may share your personal information within our group of companies, such as subsidiaries of Journyx, Inc., who will only use the information as described in this notice.

Service providers or consultants. We may share information with third parties contracted to provide services on our behalf. These third-party service providers may use information we provide to them only in accordance with our instructions and contractual obligations that appropriately safeguard information.

Subprocessors. Certain third parties are sub-processors who assist Journyx in providing the Journyx Services, like our infrastructure provider, for example. Our sub-processors process personal information only on our instructions; we instruct and contractually oblige sub-processors in accordance with applicable law and the terms of our contractual agreements with customers.

Information providers. We may offer information or events jointly with third parties or partners, such as webinars, whitepaper downloads, or other services related to our products and services. We may share your contact information and information about your interests in such offerings or services with these parties to communicate with you about Journyx.

Badge scanning.  If you have your badge scanned at events we participate in or sponsor, your information will be shared with us, as well as with any partner or third party participating in that event. Your information may be shared with the entity sponsoring your attendance at the event. For example, we may use the information to understand who attended an event session, and potentially follow up with you on relevant products or services. If you do not want your information shared with Journyx or our partners in this manner, do not have your badge scanned. If your badge is scanned by a partner or a third party at an event, your information will be governed by that party’s privacy notice.

Security

Journyx takes reasonable and appropriate technical and organizational security measures to protect personal information from loss, unauthorized access, theft, and unintentional disclosure, modification, or destruction. We take measures to ensure service providers that process personal information on our behalf have appropriate controls in place.

The security of your password or your other forms of authentication is your responsibility. We recommend our customers enable two-factor authorization for user access to the Journyx Services.

We may suspend your use of a website without notice, pending an investigation, if any security breach is suspected.

Journyx User Community

You may post comments or questions in a user community forum on our websites. Your participation in a forum requires that you provide create a profile using your personal information. Information you provide in these public areas can be read and collected by others who access them. The content of postings by participants in an online forum reflect the participant’s own views, and not the opinion of Journyx.

Tracking Technologies and Targeted Advertising

Journyx or our service providers may observe your computer and connection information (such as an IP address), activities, interactions, preferences, and other information relating to your use of the Journyx websites. We may collect and store this information, and may also combine this information with other personal information provided to Journyx.

Journyx and our service providers use cookies and other technologies, such as web beacons, tags, and scripts on our websites, and in some of our email communications. These technologies allow us to track email effectiveness, analyze web traffic, provide interest-based advertising, improve our products and services, and tailor content to your preferences.

You may use your browser’s settings to modify its handling of certain tracking technologies. Some tracking technologies require additional steps to manage or remove. Some of these technologies may operate across all of your browsers. For additional information about the cookies Journyx uses on our sites, and to manage your preferences, please click the cookie settings button in the footer of our website.

Information collected about your web browsing behavior, such as the pages you have visited or the searches you have conducted, may be used by online advertising to display more relevant advertisements and content to you on non-Journyx websites. The information used for targeted advertising may come from Journyx or through third-party ad networks.

How to Make Choices about Your Personal Information

Information We Need to Respond to Your Inquiry

If you inquire of us about your personal information, we will need to collect certain information from you to respond to your inquiry and, in some cases, to verify your identity before we can provide a response or disclose personal information.

How to Inquire and Make Choices

Customer Services Data. If you are a Journyx customer, end users that you authorize to do so can make various choices about the personal information contained in your Customer Services Data, using the self-services features of the Services. Certain Services features and reports may not work as intended if you delete or modify information. To understand the impact of your choices, consult the documentation provided with the Services. Customers may have obligations under applicable law that limit these choices; understanding and complying with such obligations is the responsibility of the customer.

If you are an end user of the Services, you must contact your employer or your organization’s Journyx Services administrator to inquire about your choices with respect to your personal information within the Services. Customers may request our assistance with their end user’s choices about personal information that cannot be accommodated by the self-service features of the Services by contacting us at privacy@journyx.com.

Customer Account Information. You may contact us at privacy@journyx.com to access, correct or request removal of your personal information that is part of the Customer Account Information. Journyx has a legitimate need to ensure that Customer Account Information remains sufficient for us to exercise our rights and obligations under our contractual agreements with our customers. For example, we must retain contact information sufficient to permit us to bill our customers for our services. Therefore, Journyx may request from a customer additional or alternate personal information such as contact information for billing purposes. To the extent possible within our contractual rights and obligations, we will assist you in making such choices.

Marketing or other information.  If you are not our customer or a customer’s end user, and you wish to inquire about access or make choices about deletion or correction of your personal information that we may process for marketing purposes, you may contact us at privacy@journyx.com.

Opt-Out Choices

To opt out of marketing email communications, you may use the Unsubscribe link in the email to opt out or modify your preferences. To opt out of other, non-email marketing communications, or to be added to our Do Not Call list, you may contact marketing@journyx.com.

To opt out of targeted advertising, please click here (if you are located in Switzerland or the European Union, please click here). Please note, this does not opt you out of being served advertising. You will continue to receive generic ads.

Opt-out choices are not available for communications necessary to fulfill the terms of the agreement between Journyx and our customers, including accounting, customer support, and product communications, among others.

Do Not Track

Journyx does not currently respond to browser Do Not Track (DNT) signals. We will continue to monitor the progress of a DNT standard as it develops.

Our Retention of Personal Information

Customer Services Data entered into the Journyx Services is retained in accordance with the agreement between the Journyx customer and Journyx. This means we retain the data for a certain amount of time beyond termination of the agreement, after which time the data are removed.

Journyx will store Customer Account Information as long as needed to provide customers with our services and to operate our business. If you ask Journyx to delete specific personal information from your Customer Account Information, we will honor the request unless such deletion prevents us from carrying out necessary business functions, like billing, calculating taxes, or conducting required audits.

Changes to This Privacy Statement

We reserve the right to change or update this Privacy Statement at any time. Changes to the Privacy Statement will be posted on this website. We encourage you to periodically review this Privacy Statement for any changes. For new users, changes or updates are effective upon posting. For existing users, changes or updates are effective 30 days after posting.

European Personal Information Privacy

Visitors to Our Websites

Journyx will process your personal information for our legitimate interests, or, when necessary, with your express consent. You have the right to withdraw your consent thereafter at any time. Your withdrawal of consent will not affect the lawfulness of the processing prior to your withdrawal. You have the right to request access to and rectification or erasure of your personal information.  You have the right to restrict or object to processing. You have the right to data portability, under certain circumstances. You have the right to lodge a complaint with a data protection supervisory authority if you believe that we have not complied with the requirements of the EU General Data Protection Regulation (GDPR) with regard to your personal information.

Customers of the Journyx Services

Journyx will process the personal information of our customers’ end users in the European Economic Area under the terms of our contractual agreement, which includes privacy and data protection obligations. Customers may, prior to entering into or renewing a Services agreement with Journyx, choose to have us process their Customer Services Data in processing facilities located in the European Union. Customers may also enter into additional terms with Journyx regarding cross-border data transfer mechanisms under EU privacy regulations.

Contacting Journyx

You may contact us with any questions about this Privacy Statement. You may contact us if you want to update, change, unsubscribe, or request removal or deletion of your information at any time after providing your personal information to us, or if you would like to assert any of the rights discussed above. Please direct your request to privacy@journyx.com or by regular mail addressed to the contact listed below. Journyx will respond to your request within a reasonable timeframe.

Journyx, Inc.
Attn: Privacy
7600 Burnet Road
Suite 300
Austin, Texas 78757

If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request. You also have the right to lodge a complaint with the relevant EU data protection authority, United Kingdom data protection authority, or the Swiss Federal Data Protection and Information Commissioner, as applicable.

Last Updated: September 27, 2021