Theta Lake Privacy Policy

Theta Lake, Inc. (“Theta Lake,” “we,” or “our”) takes the privacy of your information very seriously. This Privacy Policy (“Policy”) explains what information we collect from customers, prospects, and users of our services (“Customer,” “you,” or “your”), what we use it for, and the few situations in which we share it with others.

Please read this Policy carefully. It applies to all interactions you have with Theta Lake’s products and services, including the Theta Lake Security and Compliance Suite and this website (“Services”).  Agreements you execute with Theta Lake may contain more specific privacy provisions, and in that event, those agreements will control.  If you have any questions about this Policy, please contact us using the information provided below.

Personal Information Theta Lake Collects

We collect the following personal information to provide and maintain our Services.

Website and Events.  If you are interacting with us on this website by entering personal information or requesting details, we collect personal information you provide such as email address, phone number, employer, job title, resumes for job applications, and other professional details.  Theta Lake may also collect this type of personal information at in-person or online events.

Cookies.  Theta Lake use technologies like cookies and pixel tags to provide, improve, protect, and promote our website. For example, cookies help us with things like remembering your username for your next visit. You can set your browser to not accept cookies, but this may limit your ability to use the Services. We may also use third-party service providers that set cookies and similar technologies to promote Theta Lake services through retargeting. You can learn more about how cookies and similar technologies work, as well as how to opt out of the use of them for advertising purposes, here.

Theta Lake Security and Compliance Suite.  We collect personal information as part of your use of the Theta Lake Security and Compliance Suite and to provide customer support.  This includes the personal information you provide to us as a customer like data from collaboration or chat platforms, login and profile personal information (name, employer, job title, email address, and username), computer information (IP address, browser, device), and usage information (review status, comments, suggestions about Service improvements, and annotations) to make use of the Services, which is more fully described in your agreement for those Services.

We sometimes contact people who don’t have a Theta Lake account.  If you receive an email and no longer wish to be contacted by Theta Lake, you can unsubscribe and remove yourself from our contact list via the message itself.

In certain circumstances, if you decline to provide your personal information or ask us to delete it, we may be unable to continue to provide relevant Services or related support.

Processing Data

Theta Lake processes your personal information:

  • to provide and maintain the Services pursuant to its agreements;
  • in furtherance of its legitimate interests in operating Services and our business;
  • with consent;
  • to comply with applicable law, legal process, or regulation;
  • to protect any person from death or serious bodily injury; and
  • to carry out a task in the public interest.

Examples of Theta Lake’s personal information processing activities include to:

  • Provide and maintain the Theta Lake Security and Compliance Suite as outlined in a relevant agreement;
  • Provide support and troubleshooting for the Theta Lake Security and Compliance Suite;
  • Recordkeeping for the proper and necessary administration of our business;
  • Responding to unsolicited communication from you to which we believe you would expect a response;
  • Communicate with you by email, postal mail, telephone, or mobile devices about promotions, upcoming events, and news about products and services offered by Theta Lake and our selected partners;
  • Enforce our terms and conditions; and
  • Protect and assert the legal rights of any party.

Disclosure of Personal Information

With your consent, Theta Lake may share personal information with our partners to promote jointly hosted events and for marketing purposes.  Theta Lake may share personal information with our affiliated companies, such as our UK-incorporated Theta Lake entity, or in connection with a merger, joint venture, or sale of all or part of our business as part of a related transaction. Theta Lake will only disclose personal information if we have your consent, to comply with legal requirements, to provide you with and support Services as requested, as part of partner marketing activities, or to investigate violations or suspected violations of our terms of use and policies.

To provide the Theta Lake Security and Compliance Suite, Theta Lake relies on trusted third-party subprocessors with whom it maintains agreements that contain relevant confidentiality, privacy, and security provisions.  A list subprocessors is available on Theta Lake’s support portal.

Theta Lake does not sell information to third parties.

Security and Retention of Data

Theta Lake has a team dedicated to keeping personal information secure and testing for vulnerabilities. Theta Lake develops features to keep personal information safe and its Security and Compliance Suite encrypts data in transit and at rest and includes optional security controls like two-factor authentication.

Theta Lake conducts an annual SOC 2, Type 2 audit.  See our “Secure by Design” webpage for an overview of Theta Lake’s security practices.

Theta Lake retains personal information only for as long as is necessary to fulfill the business purpose it was collected. We retain and use your personal information, consistent with this Policy, for as long as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. In certain circumstances we may retain personal information after you have closed your account for legal, internal compliance and audit, and recordkeeping purposes.

Customers have control over data retention settings in the Theta Lake Security and Compliance Suite, and can apply multiple retention periods to their data.  Theta Lake retains data backups for business continuity and disaster recovery purposes.

Control of and Access to Your Data

With respect to the personal information Theta Lake collects, you can ask us to:

  • Validate whether personal information about you is being processed;
  • Request details about how we process personal information;
  • Correct, update or delete personal information that we maintain; and
  • Withdraw your consent allowing us to process your personal information or restrict the way we process it.

Theta Lake offers self-service capabilities in the Security and Compliance Suite to facilitate search, retrieval, updating, and preservation of personal information.  Requests related to personal information collected from the website or conferences can be submitted using the contact details provided below or, for Theta Lake customers, pursuant to the protocols that may be outlined in your agreement.

Transfers of Personal Information

Theta Lake enters into a Data Processing Addendum, including Standard Contractual Clauses, with relevant customers, subprocessors, and others to facilitate cross-border transfer of personal information consistent with European Union and United Kingdom standards.  Agreements are further modified on an as needed basis to comply with other global privacy laws and regulations.

Changes to the Privacy Statement

Our company may amend this Privacy Statement from time to time. In the event there are material changes, we will highlight those changes on this webpage and, if necessary, send emails alerting users about changes.

Contacting Us

Individuals with inquiries or complaints regarding this Policy should contact Theta Lake at:

privacy@thetalake.com

or

Theta Lake, Inc.

1221 Chapala St Suite 6

Santa Barbara, CA, 93101

 

Last Updated: March 17, 2021.