European Union/Switzerland Safe Harbor Policy
We may receive your personal information from our subsidiaries, our corporate customers, and other business partners in the EEA and Switzerland. We will not use any personal information sent to us other than for the purposes described at the time the information was collected without your consent.
Agents and service providers
We work with several companies to help deliver our services, including third party hosted service providers and email service providers. They are not permitted to use personal information received from us from the EEA or Switzerland for their own purposes, and are required either to subscribe to the Safe Harbor Privacy Principles, be subject to the EU Privacy Directive or another adequacy finding, or enter into a written agreement that requires them to provide at least the same level of privacy protection as is required by the relevant Safe Harbor Privacy Principles.
We use reasonable physical, electronic, and administrative safeguards to protect your personal information from loss; misuse; or unauthorized access, disclosure, alteration, or destruction.
We take reasonable steps to ensure that your personal information that we process is accurate, complete, and current by using the most recent information provided to us.
Accessing and updating your information
You can request to review, update, or delete your personal information.
Appian’s cloud service offering
We provide a cloud service offering to our customers. If you interact with one of our customers who purchases this service, we may receive and process your personal information. When providing the cloud service offering, we act as the data processor, and act on the instructions of the customers who purchase the cloud service offering. Companies using our cloud service offering are responsible for complying with all other obligations in relation to the personal information they may collect from you.
Questions or concerns
If you have any complaints regarding our compliance with the Safe Harbor program, you should first contact us. If the complaint cannot be resolved through our internal dispute resolution process, you may submit your complaint to the American Arbitration Association.
Changes or updates
This Safe Harbor Policy may be changed from time to time as permitted under the Safe Harbor program.
Personal Information Appian Collects
Appian collects personal information from customers, prospective customers, employees, contractors and other individuals.
The main types of personal information Appian collects relate to the contact details and organizational roles of Appian’s customers, prospective customers, suppliers and other business contacts. Typically, this information includes names, addresses, telephone numbers, e-mail addresses and job titles. In the course of providing services to Appian’s customers, Appian may collect detailed personal information that is provided to Appian by its customers.
Because of the nature of Appian’s business, it is generally impracticable to deal with individuals on an anonymous basis or through the use of a pseudonym.
How Appian Collects Personal Information
Information is collected directly from individuals through face to face meetings, forms filled out by individuals, email messages or telephone conversations.
Appian may receive a person’s personal information in performing services for its customers. In particular, and without limiting the generality of the foregoing, Appian provides a cloud service offering to its customers. If an individual interacts with one of Appian’s customers who purchases this service, Appian may receive that individual’s personal information that is provided to Appian by these customers when using Appian’s cloud service.
Appian may also collect personal information about an individual from the individual’s use of Appian’s websites and information you provide to Appian through contact mailboxes or through the registration process on Appian’s websites.
How Personal Information is Held
Appian holds personal information in hard copy and electronic formats.
Purposes For Which Personal Information is Collected and Held
The main purposes for which Appian collects, holds and uses personal information are:
- to provide services to Appian’s customers
- to maintain contact with customers and prospective customers
- to keep customers and other contacts informed of the services Appian offers and industry developments that may be of interest to them, and to notify them of service offerings, seminars and other events Appian is holding
- for general management and reporting purposes, such as invoicing and account management
- for recruitment purposes
- for purposes related to the employment of Appian personnel and providing internal services to Appian’s staff
- other purposes related to Appian’s business
Accessing personal information
A person may request to access personal information about them held by Appian. Such a request must be made in writing to the address below.
Appian will grant a person access to their personal information as soon as possible, subject to the circumstances of the request.
A request to access personal information will be rejected if:
- the request is frivolous or vexatious
- providing access would have an unreasonable impact on the privacy of another person
- providing access would pose a serious and imminent threat to the life or health of any person
- providing access would prejudice Appian’s legal rights
- there are other legal grounds to deny the request
Appian may charge a fee for reasonable costs incurred in giving access to an individual’s personal information. The fee (if any) will be disclosed prior to it being levied.
Correcting personal information
Appian will take reasonable steps to ensure the accuracy and completeness of the personal information Appian holds. However, if a person believes that any personal information that Appian holds about them is inaccurate or out of date, they should contact Appian in writing at the following address:
Attention: Legal Department
11955 Democracy Drive, Suite 1700
Reston, Virginia 20190 (USA)
Appian deals with complaints via Appian’s internal data privacy complaint process, under which an Appian contact officer will be allocated to assess an individual’s complaint and respond to the individual within a reasonable timeframe. Appian takes all complaints seriously and any further action after Appian’s initial response will vary depending on the nature of the complaint.
Appian will take all reasonable steps to ensure that all personal information held by Appian is secure from any unauthorized access or disclosure. However, Appian does not guarantee that personal information cannot be accessed by an unauthorized person (e.g. a hacker) or that unauthorized disclosures will not occur.
Appian will take reasonable steps to destroy or permanently de-identify personal information if it is no longer needed for the purposes for which Appian is authorized to use it.
Transfers of Personal Information Outside Australia
Appian exchanges information, including personal information, between various subsidiary companies in the United States, Switzerland, the United Kingdom and other countries in the European Union, all as necessary to provide the services requested from Appian by its customers or for general administrative purposes. Appian may also use facilities or contractors in the United States, Switzerland or in the European Union to process or back-up information or to provide certain services to Appian.
WEBSITE PRIVACY STATEMENT
Last Updated: May 8, 2014