Last Updated: November 8, 2024

Privacy Policy

This Privacy Policy (“Privacy Policy”) describes how Evisort Inc., a Workday, Inc. company, and its subsidiaries (“Evisort,” “us,” “we,” or “our”) may collect, use, and share your personal information in connection with any websites and platforms we own and operate that link to this Privacy Policy, and our related services, events, social media pages, and email and other electronic communications (collectively, the “Sites and Services”), and the choices you have with respect to your personal information. Please note, our privacy practices are subject to the applicable laws of the places in which we operate. You will see additional region-specific terms that only apply to customers located in those geographic regions, or as required by applicable laws. This Privacy Policy does not apply to personal information that we may store or maintain as a processor on behalf of the users of our services, where applicable. Evisort reserves the right, at any time, to modify this Privacy Policy. If we modify how we collect, use, or share personal information, we will post the updated Privacy Policy on this page. In some cases, we may notify you about an update by sending you an email, posting a notice about the update on the Sites and Services, or other means as may be required by applicable law. In all cases, your continued use of the Sites and Services following posting or other notification of changes constitutes your acknowledgement of such changes. Please review this Privacy Policy periodically to keep up to date on our most current policies and practices.

Collection of personal information

Personal Information Collected. The table below describes the categories of personal information that we may collect about you. We may also collect other personal information that is not specifically listed here, which we will use as described in this Privacy Policy or as otherwise disclosed at the time of collection.

  • Contact information, such as first and last name, email address, phone number, mailing address, and social media handle.
  • Professional information, such as company name, job title, company location, email, and phone, and other details we may collect about your business or profession.
  • Account information, such as your log-in details, information that you store in your account, and other details about your use of the Sites and Services.
  • Payment information, such as bank account number, credit or debit card number, or financial account details used for payments. All payment processing services connected with your use of the Sites and Services are provided to you by third-party payment processors. Evisort does not access or keep information related to credit cards, banking information, or other sensitive financial information.
  • Order history, such as records of services you have purchased from us.
  • Transaction and billing data, such as payment amounts and payment methods used to complete transactions, and other relevant information about the financial institutions you use to conduct business.
  • Preferences, such as any preferences you set in your account and any marketing or communications preferences.
  • Survey responses, such as the information you provide in response to our surveys, questionnaires, or contests.
  • Communications, such as the information associated with your requests or inquiries, including for support, assistance, or order information, and any feedback you provide when you communicate with us.
  • Online activity information, such as the website you visited before browsing to the Sites and Services, pages or screens you viewed, how long you spent on a page or screen, navigation paths between pages or screens, information about your activity on a page or screen, access times, and duration of access.
  • Device information, such as your computer or mobile device operating system type and version number, wireless carrier, manufacturer and model, browser type, screen resolution, IP address, unique identifiers, and general location information such as city, state, or geographic area.
  • Customer service call recordings.

Unless we specifically request it, we ask that you not provide us with any sensitive personal information (e.g., information related to racial or ethnic origin, political opinions, religion or other beliefs, health, biometrics or genetic characteristics, criminal background or trade union membership) on or through the Sites and Services, or otherwise to us.

We may also collect or create de-identified information from personal information in a manner that it cannot reasonably be used to infer information about, or otherwise be linked to, a particular individual. To the extent that we classify such information as “de-identified,” we commit to maintaining and using such information in a de-identified form and to not attempting to re-identify such information (except for purposes permitted by law).

Sources of Personal Information. We obtain personal information from a variety of sources, including the following sources:

  • Personal Information You Provide. Evisort collects personal information when you voluntarily submit it to us, such as when you fill out a webform, register for an account, or communicate with us.
  • Personal InformationAutomatically Collected. Evisort, our service providers, and our advertising partners may automatically log information about you, your computer, or mobile device, and your activity over time on our Sites and Services and other sites and online services, such as the online activity information and device information listed above. Like many online services, we use cookies and similar technologies to facilitate some of the automatic data collection described above, such as: some text
    • Cookies, which are text files that websites store on a visitor’s device to uniquely identify the visitor’s browser or to store information or settings in the browser for the purpose of helping you navigate between pages efficiently, remembering your preferences, enabling functionality, helping us understand user activity and patterns, and facilitating online advertising.
    • Flash cookies, or locally-stored objects, which are used on websites for purposes similar to cookies but allow storage of a larger amount of data.
    • Web beacons, also known as pixel tags or clear GIFs, which are typically used to demonstrate that a webpage or email was accessed or opened, or that certain content was viewed or clicked, typically to compile statistics about usage of websites and the success of marketing campaigns.
  • Personal Information Obtained from Third Parties. Evisort may receive personal information from third parties, such as our service providers, advertising partners, data analytics partners, operating systems and platforms, social media platforms, event sponsors, publicly available sources, or data providers. We may merge or combine such personal information with the personal information we collect from you directly or automatically.
  • Referrals. Users of the Sites and Services may have the opportunity to refer colleagues or other contacts to us and share their contact information. Please do not provide us with someone’s contact information unless you have their permission to do so.

Use of personal information

Evisort’s primary purpose in collecting personal information is to provide the services that you request. We also use personal information for the purposes set forth below and as otherwise described in this Privacy Policy or at the time of collection.

To Provide the Sites and Services. We may use personal information to provide our Sites and Services and operate our business. For example, we use personal information to:

  • Process your transactions ,including granting access to our platform;
  • Establish, manage, monitor, and maintain your account;
  • Improve and personalize your experience on or with the Sites and Services;
  • Verify your identity or determine your eligibility for offers and promotions;
  • Communicate with you, including providing notices about your account or transaction (e.g.,confirmations, invoices, technical notices, updates, and security alerts) and responding to any of your requests, feedback, or questions;
  • Provide any contests, surveys, sweepstakes, or other promotions you participate in;
  • Provide training and ensure quality assurance;  
  • Provide maintenance and support; and
  • Fulfill any other purpose for which you provide personal information.

Research and Development. We use personal information for research and development purposes, including to study and improve the Sites and Services and our business, and to develop new features, functionality, and services. As part of these activities, we create diagnostic and usage-related information and data from the use, performance and operation of the Sites and Services that may include, but is not limited to, usage patterns, traffic logs, and user engagement with the Sites and Services.

Direct Marketing. We may send you Evisort-related or other direct marketing communications as permitted by law, including materials, updates, information, special offers, and promotional material from us and our business partners. You may opt-out of our marketing communications as described in the “YOUR CHOICES” section below.

Interest-Based Advertising. We work with third-party advertising companies and social media companies to help us advertise our business and to display ads for our services. These companies may use cookies and similar technologies to collect information about you (including the online activity information and device information described above in the section called “Personal Information Automatically Collected”) over time across our Sites and Services and other websites and services or your interaction with our emails, and use that information to serve ads that they think will interest you. In addition, some of these companies may use hashed customer lists that we share with them to deliver ads to you and to similar users on their platforms. You can learn more about your choices for limiting interest-based advertising in the “YOUR CHOICES” section below.

For Compliance, Fraud Prevention, and Safety. We may use personal information and disclose it to law enforcement, government authorities, and private parties as we believe necessary or appropriate to: (a) maintain the safety, security, and integrity of the Sites and Services, business, databases, and other technology assets; (b) protect our, your, or others’ rights, privacy, safety or property (including by making and defending legal claims); (c) audit our internal processes for compliance with legal and contractual requirements and internal policies; (d) enforce the terms and conditions that govern the Sites and Services; and (e) prevent, identify, investigate, and deter fraudulent, harmful, unauthorized, unethical or illegal activity, including cyberattacks and identity theft. We will also use personal information as we believe necessary or appropriate to comply with applicable laws, lawful requests, and legal process, such as to respond to subpoenas or requests from government authorities.

With Your Consent. We will disclose your personal information in accordance with your prior direction or, in some cases, we may specifically ask you for your consent to collect, use, or share your personal information, such as when required by law.

Sharing of personal information

In addition to the specific situations discussed elsewhere in this Privacy Policy or at the point of collection, Evisort may share your personal information with the following entities or persons:

Related Companies. We may share your personal information with our affiliates, subsidiaries, and other related companies.

Service Providers. We may share your personal information with third parties who perform services on our behalf that are necessary for the orderly operation of our business. For example, we work with service providers that help us perform website hosting, maintenance services, database management, analytics, fraud protection, marketing, customer relationship management, finances, and other purposes.

Advertising Partners. We may also share personal information with third parties who we partner with for advertising campaigns or that collect information about your activity on the Sites and Services for the purposes described in the “Interest-Based Advertising” section above.

Joint Marketing Partners. We may also share your personal information with other partners in order to provide you with content and other features through the Sites and Services.

Professional Advisors. We may share personal information with persons, companies, or professional firms providing Evisort with advice and consulting in accounting, administrative, legal, tax, financial, debt collection, and other matters.

Law Enforcement, Government Authorities, and Private Parties. Under certain circumstances, we may be required to disclose personal information to law enforcement, government authorities, and other parties if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency). We may also disclose personal information in the good faith belief that such action is necessary to comply with a legal obligation or for the purposes described above in the section titled “For Compliance, Fraud Prevention, and Safety.”

Business Transaction Participants. We may disclose personal information to third parties in connection with any business transaction (or potential transaction) involving a merger, acquisition, sale of shares or assets, financing, consolidation, reorganization, divestiture, or dissolution of all or a portion of our business (including in connection with a bankruptcy or similar proceedings).

International transfers of personal information

Evisort is based in the United States, and we have service providers in the United States and potentially other countries. Your personal information may be collected, used, and stored in these countries or other locations outside of your home country. Privacy laws in the locations where we handle your personal information may not be as protective as the privacy laws in your home country. By providing your personal information, where applicable law permits, you specifically and expressly consent to such transfer and processing and the collection, use, and disclosure set forth herein.

Users located in Europe can view more informationabout cross-border transfers in the section below titled “Notice to European Users.”

Choices about your personal information

You can make the following choices regarding your personal information:

Review and Request Changes to Your Personal Information. We rely on you to update and correct the personal information contained in your account. Note that we may keep historical information in our backup files as permitted by law. If the Sites and Services do not permit you to update or correct certain personal information, please submit a request to us using the contact information listed at the end of this Privacy Policy.

Marketing Emails. You may opt-out of marketing-related emails by clicking the “unsubscribe” link at the bottom of the email or by contacting us as described below. You may still receive service-related communications, such as those about your account, to fulfill orders for offers you have requested, or deliver notifications directly to you through the Sites and Services.

Text Messages. We may offer communications via text messages sent by Evisort or any of our service providers, such as for customer service or account-related purposes. To stop receiving text messages from us, reply STOP to any text message you receive from us, or send your request and mobile telephone number to the email address listed at the end of this Privacy Policy. Note that we may send you a message to confirm receipt of your STOP request.

Marketing Mailings. You may stop receiving promotional postal mail at any time by contacting us as provided at the end of this Privacy Policy.

Cookies. Most browsers let you remove and/or stop accepting cookies from the websites you visit. To do this, follow the instructions in your browser’s settings. Many browsers accept cookies by default until you change your settings.  If you do not accept cookies, however, you may not be able to use all functionality of the Sites and Services and they may not work properly.

You can also limit the use of your information for interest-based advertising by clicking to manage cookies.  If you opt out of interest-based advertisements, you will still see advertisements online but they may be less relevant to you. Many preferences described in this section must be set on each device or browser for which you want them to apply.

Do Not Track. Some browsers may be configured to send “Do Not Track” signals to the online services that you visit. The Sites and Services currently do not respond to “Do Not Track” or similar signals. To find out more about “Do Not Track,” please visit http://www.allaboutdnt.com.

Children's Privacy

The Sites and Services are not intended for use by anyone under the age of 16, and we do not knowingly collect personal information from children under 16.

Security of Personal Information

No method of transmission over the Internet, or method of electronic storage, is fully secure. While we use reasonable efforts to protect your personal information from the risks presented by unauthorized access or acquisition, we cannot guarantee the security of your personal information.

Retention of Personal Information

We will retain your personal information for as long as necessary to fulfill the purpose of collection, including for the purposes of satisfying any legal, accounting, or reporting requirements, to establish and defend legal claims, for fraud prevention purposes, or as long as required to meet our legal obligations. To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which we process your personal information and whether we can achieve those purposes through other means, and the applicable legal requirements.

Third Party Websites and Services

The Sites and Services may contain links to other websites and online services operated by third parties. These links are not an endorsement of, or representation that we are affiliated with, any third party. In addition, our content may be included on web pages or online services that are not associated with us. We do not control third party websites or online services, and we are not responsible for their actions. Other websites and services follow different rules regarding the collection, use, and sharing of your personal information. We encourage you to read the privacy policies of the other websites and online services you use.

Notice to California Residents

This section applies only to California residents and supplements the practices described in this Privacy Policy. It describes how we collect, use, sell, share, and retain personal information of California residents, and their rights with respect to their personal information. For purposes of this section “personal information” has the meaning given in the California Consumer Privacy Act of 2018, as amended (the “CCPA”), but does not include information exempted from the scope of the CCPA. In some cases, we may provide a different privacy notice to certain categories of California residents, in which case that notice will apply instead of this section.

Personal Information Collected and Purposes of Collection and Use. The list below summarizes the personal information we collect, or have collected in the 12 months preceding the last updated date of this Privacy Policy, by reference to the categories specified in the CCPA. Examples in the list refer to the types of personal information described in the section titled “COLLECTION OF PERSONAL INFORMATION.”

  • Identifiers, such as contact information and referral information.
  • Customer Records, such as account information, payment information, order history, transaction and billing data, and communications.
  • Commercial Information, such as account information, order history, preferences, and survey responses.
  • Internet or Network Activity, such as online activity information and device information.
  • Audio, Electronic, Visual, or Similar Information, such as customer service call recordings.
  • Professional Information.
  • Inferences, such as inferences drawn from the personal information identified above to create a profile reflecting your preferences, characteristics, behavior.

We collect these categories of personal information as described in the section titled “Sources of Personal Information.”

The purposes, including the specific business and commercial purposes, for which we collect and use these categories of personal information are described in the section titled “USE OF PERSONAL INFORMATION.”

To the extent that we may collect sensitive personal information (as defined under the CCPA), we only use or disclose it for purposes permitted under the CCPA (e.g., to provide the Sites and Services, detect security incidences and prevent fraud, and to verify and maintain the quality of the Sites and Services). We do not collect or use sensitive personal information for the purpose of inferring characteristics about California residents.

Personal Information Disclosed for a Business Purpose, “Sold,” or “Shared.” Each of the categories of personal information listed above may have been disclosed for business purposes in the preceding 12 months to any of the third parties set forth in this Privacy Policy under the section titled “SHARING OF PERSONAL INFORMATION.”

The CCPA defines a “sale” of personal information to mean when a business discloses a California resident’s personal information to a third party for monetary or other valuable consideration. Where a business discloses personal information for purposes of cross-context behavioral advertising, whether or not for monetary or other valuable consideration, it qualifies as “sharing” under the CCPA.

In the 12 months preceding the last updated date of this Privacy Policy, we have “sold” or “shared” Internet or Network Activity to our advertising partners for purposes of advertising our Sites and Services (including tracking the success of our advertising campaigns), measuring activity on the Sites and Services, and for interest-based advertising, each as further described in this Privacy Policy under the section titled “USE OF PERSONAL INFORMATION.” We do not knowingly “sell” or “share” the personal information of California residents under 16 years of age.

Your California Privacy Rights. As a California resident, in addition to the choices described elsewhere in this Privacy Policy, you have the rights listed below. Please note, these rights are not absolute, and, in some cases, we may not be able to respond to your request, such as when a legal exemption applies or if we are not able to verify your identity.

  • Right to Know/Access. You can request the following information about how we have collected and used your personal information:some text
    • The categories of personal information we collected;
    • The categories of sources from which we collected personal information;
    • The business or commercial purpose for collecting, selling, or sharing (as applicable) that personal information;
    • The categories of third parties with whom we disclose personal information; and
    • A copy of the personal information that we collected about you.
  • Right to Delete. You can request that we delete the personal information we collected from you.
  • Right to Correct. You can request that we correct inaccurate personal information that we maintain about you.
  • Right to Opt-Out ofSales/Sharing. If we “sell” or “share” your personal information, you can opt-out.
  • Right to Limit. You have the right to ask us to limit the use or disclosure of your sensitive personal
  • Right to Nondiscrimination. You are entitled to exercise the rights described above without receiving discriminatory treatment.

How to Exercise Your Rights. You may exercise the rights described above as follows:

  • Know/Access, Delete, or Correct. You may exercise these California privacy rights by submitting your request through our Request Portal.
  • Opt-Out of Sales/Sharing. You may request to opt-out out of “sales” or “sharing” of your personal information through the use of cookies by changing your preferences at the link at the bottom of the website titled, “.”

If you direct us not to sell/share your personal information, we will consider it a request pursuant to California’s “Shine the Light” law to stop sharing your personal information covered by that law with third parties for their direct marketing purposes.

We reserve the right to confirm your California residence to process your requests and will need to confirm your identity to process your requests to exercise your right to know/access, delete, and correct. This is a security measure to, for example, help ensure we do not disclose information to a person who is not entitled to receive it. The identity verification process may vary depending on how you submit your request.

Consistent with California law, you may designate an authorized agent to make a request on your behalf. If you do so, we may require proof of your identification, the authorized agent’s proof of identification, and any other information that we may request in order to verify the request, including evidence of valid permission for the authorized agent to act on your behalf. We cannot process your request if you do not provide us with sufficient detail to allow us to understand and respond to it.

You will not have to pay a fee to access your personal information (or to exercise any of the other rights).  However, we may charge a reasonable fee or decline to comply with your request if your request is clearly unfounded, repetitive, or excessive.

We try to respond to all legitimate requests to know/access, delete, and correct within 45 days of your request. Occasionally it may take us longer than 45 days to respond, for instance if your request is particularly complex or you have made a number of requests. In this case, we will notify you of the delay, and may continue to update you regarding the progress of our response.

Notice to European Users

The information provided in this section applies only to individuals in the European Economic Area and the United Kingdom (collectively, “Europe”). Except as otherwise specified, references to “personal information” in this Privacy Policy are equivalent to “personal data” governed by European data protection legislation.

Legal Bases for Processing. The legal bases of our processing of your personal information as described in this Privacy Policy will depend on the type of personal information and the specific context in which we process it. However, the legal bases we typically rely on are set out in the table below. We rely on our legitimate interests as our legal basis only where those interests are not overridden by the impact on you (unless we have your consent or our processing is otherwise required or permitted by law).

 

Processing Purpose (as described above in the “Use of Personal Information” section) Legal Basis
To Provide the Sites and Services Processing is necessary to perform the contract governing our operation of the Sites and Services, or to take steps that you request prior to engaging our services. Where we cannot process your personal information as required to operate the Sites and Services on the grounds of contractual necessity, we process your personal information for this purpose based on our legitimate interests as further described in this Privacy Policy.
Research and Development Processing is based on our legitimate interests in performing research and development as described in this Privacy Policy.
Direct Marketing & Interest-Based Advertising

Processing is based on your consent where that consent is required by applicable law. Where we rely on your consent you have the right to withdraw it any time in the manner indicated when you consented or via the relevant Sites and Services.

Where such consent is not required by applicable law, we process your personal information for this purpose based on our legitimate interests in promoting our business and providing you with tailored, relevant content.

For Compliance, Fraud Prevention, and Safety Processing is necessary to comply with our legal obligations or based on our legitimate interests in protecting our or others’ rights, privacy, safety, or property.
With Your Consent Processing is based on your consent. Where we rely on your consent you have the right to withdraw it any time in the manner indicated when you consent or via the relevant Sites and Services.

Use for New Purposes. We may use your personal information for reasons not described in this Privacy Policy where permitted by law and the reason is compatible with the purpose for which we collected it. If we need to use your personal information for an unrelated purpose, we will notify you and explain the applicable legal basis.

Your Rights. European data protection laws may give you certain rights regarding your personal information. You may ask us to take the following actions in relation to your personal information that we hold:

  • Access. Provide you with information about our processing of your personal information and give you access to your personal information.
  • Correct. Update or correct inaccuracies in your personal information.
  • Delete. Delete your personal information.
  • Port. Transfer a machine-readable copy of your personal information to you or a third party of your choice.
  • Restrict. Restrict the processing of your personal information.
  • Object. Object to our reliance on our legitimate interests as the basis of our processing of your personal information that impacts your rights.

You may submit these requests by submitting a request through our Request Portal. We may request specific information from you to help us confirm your identity and process your request. Applicable law may require or permit us to decline your request. If we decline your request, we will tell you why, subject to legal restrictions. If you would like to submit a complaint about our use of your personal information or our response to your requests regarding your personal information, you may contact us or submit a complaint to the data protection regulator in your jurisdiction. In the European Economic Area, you can find your data protection regulator here. In the United Kingdom, you can find your data protection regulator here.

Cross-Border Data Transfer. If we transfer your personal information to a country outside of Europe such that we are required to apply additional safeguards to your personal information under European data protection laws, we will do so. Please contact us through our Request Portal for further information about any such transfers or the specific safeguards applied.

Contacting Us

If you reside in the EEA, the UK, or Switzerland, Workday Limited in Ireland is the controller for your personal information, and Workday (UK) Limited is its representative in the UK.

For all other individuals, Workday, Inc. is the controller for your personal information.

If you have any questions about this Privacy Policy, or wish to exercise your rights, please submit your request through our Request Portal. You may also contact us at one of the mailing addresses below:

Workday, Inc.
Attn.: Privacy
6110 Stoneridge Mall Road
Pleasanton, CA 94588
USA
Workday Limited
Attn.: Privacy
Kings Building
May Lane
Dublin 7
Ireland
Workday (UK) Limited
Attn.: Privacy
7th Floor
1 Finsbury Avenue
London, EC2M 2PF
United Kingdom

If you have an unresolved privacy or data use concern that we have not addressed satisfactorily or you wish to appeal, please contact our U.S.-based third-party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.