Last Updated: Oct 11, 2023
Tanium is committed to protecting your privacy. This Data Privacy Framework (DPF) Notice sets out the privacy principles we follow with respect to transfers of personal information from the European Economic Area (EEA), the United Kingdom (UK) and Switzerland to the United States, including personal information we process as part of our business operations, receive from individuals who visit our web and mobile sites, and who otherwise communicate or interact with us.
Participation in the Data Privacy Framework
Tanium Inc. (“Tanium,” “we”, “us”, “our”) complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. Tanium has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. Tanium has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this notice and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
Types of Data Collected and Purpose of Data Collection
Personal information provided voluntarily by you or by Tanium customers is used to provide you with requested services, fulfill our contractual obligations to our customers, manage customer accounts, respond to enquiries, provide customer support, for marketing purposes and for improving our products and services. Personal information Tanium collects automatically through cookies and similar technologies is used for analytics and marketing purposes, and to provide you with a better experience. Tanium may also use personal information to prevent fraud, protect our company and its resources and as required by applicable laws or governmental agencies with jurisdiction over Tanium.
Tanium’s Commitment to the DPF
Tanium is responsible for the processing of personal data it receives under the DPF and subsequently transfers to a third party acting as an agent on its behalf. Tanium is committed to complying with the DPF principles for all onward transfers of personal data from the EU, UK, and Switzerland, including the onward transfer liability provisions.
The Federal Trade Commission has jurisdiction over Tanium’s compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF. In certain situations, Tanium may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
We commit to resolve complaints about our collection or use of your personal information. EEA, UK and Swiss individuals with inquiries or complaints regarding the DPF principles should first contact us by email at [email protected] or in writing to the contact information listed below. We will investigate and attempt to resolve any DPF-related complaints or disputes within forty-five (45) days of receipt.
In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Tanium commits to cooperate and comply respectively with the advice of the panel established by the EU data protection authorities (DPAs) and the UK Information Commissioner’s Office (ICO) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF.
For complaints regarding DPF compliance not resolved by any of the other DPF mechanisms, you have the possibility, under certain conditions, to invoke binding arbitration. Further information can be found on the official DPF website.
Transfers to third parties
If we have received your personal information in the United States and subsequently transfer that information to a third party acting as an agent, and such third party agent processes your personal information in a manner inconsistent with the DPF, we will remain responsible unless we can prove we are not responsible for the event giving rise to the damage.
Your Data Privacy Rights
If you are from the EEA, UK or Switzerland, you have the right to request access to the personal information that we hold about you and request that we correct, amend, or delete it if it is inaccurate or processed in violation of the DPF. If you would like to exercise these rights, please write to us at the contact details provided below. We may request specific information from you to confirm your identity and we will respond to your request in accordance with the DPF and applicable data protection laws.
You may also opt-out of receiving marketing communications from Tanium by clicking on the “unsubscribe” or “opt-out” link in the marketing e-mails we send you.
Changes to this Notice
We reserve the right to amend this Notice from time to time consistent with the DPF’s requirements.
By Email to [email protected], or in writing to:Privacy
3550 Carillon Point
Kirkland, Washington, 98033