Effective Date: May 29, 2019
Respect for the privacy of your information is extremely important to Blameless and we do our best to keep things simple while maintaining compliance with relevant privacy regulation. This Privacy Notice (“Privacy Notice”) explains how Blameless, Inc. (“Blameless”) information is collected, used and disclosed and applies to information collected when you use or access our online or mobile websites (such as https://www.blameless.com/), products, services, or applications (collectively, the “Blameless Services”). This policy also applies to other interactions or communications with Blameless Inc., examples include, but are not limited to email interactions or attendance at in person events.
We may change this Privacy Notice from time to time. In the event we make changes, we will notify you by revising the “Last Updated” date at the top of this Privacy Notice. If there are significant changes to this Privacy Notice, we will attempt to notify you directly by email or provide information via our home page prior to changes becoming effective. We encourage you to review our Privacy Notice whenever you use Blameless Services to stay informed of ways you can protect your privacy. If you disagree with any changes to this Privacy Notice, you will need to deactivate your account with us and stop using the Blameless Services. Your use of any Blameless Services after posting of such changes shall constitute your consent to such changes.
We may collect certain user information, personal information, or sensitive personal information in the following ways:
Using or registering via a website: We collect information you provide to us, including when you visit our websites, register and/or use one of the Blameless Services.
Information We Collect When You Use the Blameless Services: When you access or use the Blameless Services, we may collect the following information about you:
You may opt out of behaviorally targeted ads anytime by deleting your browser’s cookies. In addition, you may opt-out of interest-based advertising from some third-party partners by visiting http://preferences-mgr.truste.com/, http://www.youronlinechoices.eu, or the third-party provider’s websites.
Please note that opting-out will only prevent targeted ads so you may continue to see generic (non-targeted ads) after you opt-out.
Information We Collect From Other Sources: We may also obtain information from third parties and combine that with information we collect through the Blameless Services. For example, we may have access to certain information from a third-party social media service if you create or log into your online account through the service or otherwise provide us with access to information from the service. Any access that we may have to such information from a third-party social media service is in accordance with the privacy notice and authorization procedures determined by the social media service. We protect data obtained from third parties according to the practices described in this policy, plus any additional restrictions imposed by the source of the data.
Do Not Track: Some browsers offer a “do not track” (“DNT”) option. Because no common industry or legal standard for DNT has been adopted by industry groups, technology companies or regulators, we do not respond to DNT signals. We will make efforts to continue to monitor developments around DNT browser technology and the implementation of a standard.
By accessing or using the Blameless Services or otherwise providing information to us, you consent to the processing and transfer of information in and to the U.S. and other countries and territories, which may have different privacy laws from your country of residence.
Blameless remains responsible for personal information that is shared under the Onward Transfer Principle of EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield with third parties for external processing on our behalf as described in the “Sharing and Disclosure of Information” section.
We may use the information collected for the limited purpose of providing the Blameless Service and related functionality and services, as described in this Privacy Notice and as permitted by applicable laws. These limited purposes include circumstances where it is necessary to provide or fulfill Services requested by or for you or where you have given us your express consent.
The information may be used to perform a variety of purposes, including to:
We will not share personal information about you or any “Customer SRE Logs” with any third parties except as described in this Privacy Notice or in connection with the Blameless Services. For example, we may share personal information about you including as follows:
Blameless has committed to treat Personal information received from the EU subject to Privacy Shield Principles. Blameless participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework.
Blameless is currently undergoing the process for EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield self-certification and expects to receive a link to its EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield in the near future.
Blameless takes security seriously and implements reasonable measures to protect your information from unauthorized access, loss, misuse, disclosure, unauthorized alteration and unauthorized destruction. To report a security concern or if you have a question about security, you may submit to firstname.lastname@example.org.
Account Information and Retention. You may update or delete information associated with your account at any time by logging in and updating your online account. In addition, you may reach out directly to our privacy team at email@example.com. Blameless will retain information required to comply with privacy requests, manage active accounts, is required by law, required to resolve disputes or enforce our agreements. We will retain personal data we process on behalf of our customers as directed by paying customers. We may also retain copies of your information for disaster recovery purposes. We will respond to your privacy access request within 45 days.
Upon request, Blameless will provide you with information about whether we are aware of any instance of your personal data, or if we process on behalf of a third party, any of your personal information. To request this information, contact us at firstname.lastname@example.org.
Blameless newsletters and marketing emails include the option to opt-out of receiving any further emails. You may also opt-out of receiving specific promotional emails by emailing email@example.com. Blameless may still send non-promotional communications such as security alerts, product updates, or notices related to our ongoing business relationship.
Cookies: Most web browsers allow users to remove or reject browser cookies or prompt the user before installing a cookie. Please note that disabling or adding a prompt before installing a cookie may impact the user experience.
California Residents: Under California law, California residents who have established a business relationship with Blameless, may choose to opt-out of Blameless’ disclosure of personal information about them to third parties for direct marketing purposes. If you choose to opt-out any time after granting approval, please contact firstname.lastname@example.org.
Blameless allows login to our Services using SSO services such as Google SSO. These services are opt-in and can be used to authenticate your identity and require specific personal information such as your name and email address to do so.
Our website offers publicly accessible blogs or community forums. You should be aware that any information you provide in these areas may be read, collected, and used by others who access them. To request removal of your personal information from our blog or testimonials, contact us at the email address listed above. In some cases, we may not be able to remove your personal information, in which case we will let you know if we are unable to do so and why.
We display personal testimonials of satisfied customers on our website in addition to other endorsements. With your consent, we may post your testimonial along with your name.
We may place links on the Blameless Services. When you click on a link to a third party website from our website, your activity and use on the linked website is governed by that website’s policies, not by those of Blameless. We encourage you to visit their websites and review their privacy and user policies.
The Blameless Services is not directed to individuals under 18. We do not knowingly collect personal information from children under the age of 18. If you become aware that a child has provided us with personal information, please contact us at email@example.com. If we become aware that a child under 18 has provided us with personal information, we will take steps to delete such information.
Any questions about this Privacy Notice should be addressed to firstname.lastname@example.org or to Blameless Privacy, 500 University Ave., Palo Alto, California, 94301, United States.
Blameless has appointed a full time Privacy Officer. The privacy officer can be reached at email@example.com.
If you have a concern about our handling of your personal information, please contact us using the “Contacting Us” section of this Privacy Notice.
If you believe Blameless processes your personal data under reliance of the EU – U.S. Privacy Shield Framework or EU/Swiss – U.S. Privacy Shield Framework and have inquiries and concerns that you would like to discuss with us, please contact us using the details in the “Contacting Us” section of this Privacy Notice.
Blameless will respond to your inquiry within 45 days. If, after contacting us, we fail to adequately address your concerns you may contact the regulatory authority described on the Privacy Shield website https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted. The Federal Trade Commission has jurisdiction over Blameless’ compliance with the Privacy Shield.
If you are in the EEA or Switzerland and feel we have not dealt with your concerns and that we are failing to meet our legal obligations, you can report this to your local data protection regulator or the Information Commissioner’s Office (“ICO”) in the United Kingdom. More information on reporting a concern to the ICO can be found at https://ico.org.uk.