Last Revised and Effective Date: August 25, 2025.
We have made changes to this Privacy Notice that apply on or after the "Last Updated" date to provide you with information on how we process your personal data. These changes include:
Amperity Inc., together with its affiliated entities, including but not limited to Amperity UK Limited and Amperity Australia Pty Ltd (together, "Amperity," "we," "us," "our"), are committed to collecting and processing your personal data responsibly and in compliance with applicable data protection laws in all countries in which Amperity operates. This Privacy Notice ("Notice") explains how Amperity collects, processes, transfers and discloses your personal data. This Notice also describes the rights you have regarding Amperity's use of your personal data, the measures Amperity takes to protect the security of the data, and how you can contact us regarding our data protection practices.
This Notice applies when you:
This Notice does not apply to any products, services, websites, mobile applications or content offered by third parties and linked to from here. Data collected by these third parties is covered by their own privacy policies.
As used in this Notice, personal data means any information about an individual from which that person can be reasonably identified.
We collect personal data in the course of providing the Services to you. The data we collect falls into three main categories: (1) data we collect from you directly, (2) data we collect from you automatically, and (3) data we collect from third parties.
The personal data we collect from you depends on your relationship with us. Please note that for a majority of circumstances, Amperity's customers determine how and why personal data is used, including personal data about how the customer's end users use the Platform.
When you register for and log onto our Platform, we collect personal data, such as your name, email address, telephone number (including for multi-factor authentication), company name, job title, and other professional and employment information.
If you purchase/subscribe to our Platform, we also collect financial information, such as billing and payment information. We maintain a record of your purchases, transactional information, and any communications and responses.
If you use our Platform, we collect personal data, such as your name, email address, telephone number (including for multi-factor authentication), company name, job title, and other professional and employment information.
We also collect information relating to the actions that you perform while logged into your account, including any personal data you share when you provide feedback regarding our Services and when you contact us for support.
When you sign up for a webinar, an event, or otherwise sign-up to receive marketing information from us on our Site, or take a survey we collect your name, email address, telephone number, company name, job title, location, and other professional and employment information.
If you elect to receive emails from us, we capture data related to when you open our emails and how you engage with it, including what banners or links you click.
If you sign up to receive ongoing marketing communications, you can always choose to opt out of further communications by unsubscribing from any marketing emails you receive from Amperity. You also can unsubscribe here https://amperity.com/unsubscribe.
If you visit our Site, we collect certain personal data about you, including your IP address and other data as described in the "Information We Collect from You Automatically" section.
If you contact us to request a demo of the Platform, we collect data including your name, email address, company name and department, job title, telephone number, and country. We also collect this data and other information you share if you contact our sales team for information.
If you have applied for a job with us, the collection, use, and disclosure of your personal data is governed by our Applicant Privacy Notice.
When you visit and access our Site and use our Platform, we collect certain personal data using automatic data collection technologies. These technologies include cookies and web beacons (also known as pixel tags and clear GIFs) and the data collection associated with them is described below.
In addition to the information that we collect from you directly, we obtain information about you from other sources, including third parties, business partners, our affiliates, or publicly available sources such as your name, title, phone, email, social media information, profile picture, and unique identifier. For example, we pay third parties to distribute our marketing materials on their ad platforms and receive information about who accesses our materials.
Publicly available sources includes data collected through services like LinkedIn. We use this information to help us understand our customer base better, such as your industry and the size of your company.
We use your personal data for the purposes described below. We only collect and process personal data when we have a legal basis to do so and in accordance with applicable law as set out below.
If you are a resident of the EEA or the UK, we are required to explain the legal basis for processing your personal data. Our legal basis for collecting and using the personal data described above will depend on the personal data concerned and the specific context in which we collect it and may include the following:
| Purpose | Consent | Contract | Legal Obligation | Legitimate Interest |
|---|---|---|---|---|
| To provide, support and improve the Services | ● | ● | ||
| To track user behavior at an aggregate level to identify and understand trends in the various interactions with the Services | ● | |||
| To respond to questions and comments, including support requests | ● | ● | ● | |
| To offer webinars and invitations to other promotional events | ● | |||
| To market our Services | ● | ● | ||
| Protect and enforce Amperity's legal rights, including our intellectual property rights and preventing fraud | ● | ● | ||
| Meet legal compliance obligations, including corporate reporting, legal, and regulatory compliance and fiduciary obligations | ● | ● | ||
| Protect the safety and security of our products and services, and manage business continuity and disaster recovery operations | ● | ● | ||
| Enable access to, use of, and operation of the Services and Site other processing necessary for enforcement of our Terms of Service | ● | |||
| Conduct surveys and respond to feedback and inquiries | ● | ● | ||
| Contacting us via methods described in Section 11 of this Notice. | ● | ● |
Like many businesses, we engage other companies to provide certain business-related services to us ("Service Providers"). We may disclose personal data to our Service Providers but only to the extent needed to enable them to provide such services.
Examples of Service Providers that may receive and process personal data on our behalf include companies providing the following services: mail services (hard copy and email); hosting services; database management/back-up services; monitoring services; training service provider; customer support and customer relationship management services; accounting services; marketing services; and payment processors.
Service Providers are limited to performing services on our behalf pursuant to contracts which impose restrictions on their use of personal data, including prohibiting them from selling, sharing, using, or disclosing any personal data we share with them for their own marketing purposes or for any other purpose.
We use identifiers derived from your personal data (i.e., a pseudonymized representation of your email address) for cross-device tracking and cross-contextual advertising purposes. This identifier is disclosed to our advertising providers who use it to serve targeted advertising to devices connected to you via cross-device tracking.
Depending on where you live, this sharing of personal data could be considered a sale. You may opt-out from receiving cross-device advertising by visiting and employing the controls described on NAI's Consumer Opt Out page or by opting-out of any non-essential cookies by managing your Cookie Preferences. You will need to opt-out on each device and browser separately.
We may share data with our corporate affiliates, that will only use the information as described in this Notice. In particular, we may transfer your personal data to corporate affiliates in a country where adequacy decisions have been issued, or where we have implemented appropriate and suitable safeguards such as the European Commission's Standard Contractual Clauses for the transfer of your personal data to our U.S. headquarters. In other cases, we will ask you for your prior consent.
Subject to possible restrictions under applicable local laws and regulations, Amperity may disclose your personal data to a potential or actual acquirer, successor, or assignee as part of any reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or stock (including in bankruptcy or similar proceedings).
In the event of a merger, dissolution or similar corporate event, or the sale of all or substantially all of our assets, we expect that the information that we have collected, including personal data, would be transferred to the surviving entity in a merger or the acquiring entity, including at the negotiation stage. All such transfers shall be subject to our commitments with respect to the privacy and confidentiality of such personal data as set forth in this Notice.
We may be required to disclose personal data in response to lawful requests by public authorities, including for the purpose of meeting national security or law enforcement requirements. We may also disclose personal data to other third parties when compelled to do so by government authorities or required by law or regulation including, but not limited to, in response to court orders and subpoenas.
We might also share data about our Customers with third parties if the data has been de-identified or aggregated in a way so it cannot be used to identify you.
The Services are provided from the United States and other locations, and we may transfer your personal data to multiple countries throughout the world where we or our service providers maintain facilities, including the United States, in accordance with applicable local laws and regulations. We maintain primary data centers in the United States, Canada, and Ireland.
These countries may not have the same level of data protection as the data protection laws in the country where you are located. We take steps designed to ensure that the data we collect under this Notice is processed as described in this Notice and according to applicable law wherever the data is collected.
If you are located in the EEA, UK, Switzerland or other countries which restrict the transfer of personal data, we comply with applicable data protection laws when transferring your personal data outside of these areas. In particular, we may transfer your personal data to countries for which adequacy decisions have been issued; implement appropriate and suitable safeguards such as the European Commission's Standard Contractual Clauses or the Addendum B.1.0 issued by the Information Commissioner of the UK for the transfer of personal data to our U.S. headquarters, other offices or third parties, where applicable, or where required, we will ask you for your prior consent.
You may contact us in the "How to Contact Us" section below to obtain a copy of the clauses, relevant data transfer agreements or safeguards we use to transfer personal data outside of these countries/regions.
Amperity implements reasonable and appropriate security measures to protect your personal data from loss, misuse and unauthorized access, disclosure, alteration and destruction, taking into account the risks involved in processing and the nature of such data, and comply with applicable laws and regulations.
Please understand, however, that no security system is impenetrable. We cannot guarantee the security of our databases, nor can we guarantee that the information you supply will not be intercepted while being transmitted to and from us over the Internet. In particular, e-mails sent to or from the Site may not be secure, and you should therefore take special care in deciding what information you send to us via e-mail. In the event that we are required by law to inform you of a breach of your personal data we may notify you electronically, in writing, or by telephone, if permitted to do so by law.
We retain your personal data for as long as is necessary to fulfill the purpose(s) for which it was collected, as set forth in this Notice, and to comply with applicable laws. We will erase your personal data when it is no longer necessary for the purpose(s) for which it was collected or otherwise processed; when you withdraw your consent (where lawfulness of processing was based on your consent) and there is no other legal ground for the processing; when you object to the processing and there are no overriding legitimate grounds for the processing; when your personal data has been unlawfully processed; and when it is no longer necessary to comply with legal obligations.
When determining the retention period, we also take into account criteria such as the type of services requested by or provided to you, the nature and length of our relationship with you, possible re-enrollment to use our Site or Services, and the impact on the Site or Services functionality if we delete your personal data. For example, we may retain information for as long as we need it for:
Depending on where you live, you may have certain rights regarding the personal data that we collect about you. Please refer to the location in which you reside to learn more about additional terms and rights that may apply to you. Please note that your exercise of rights also depends on your relationship with us. Platform End Users, for example, should exercise their rights through our Customers since our Customers act as the data controller in such instance.
If you are an individual residing in the EEA or the UK, you may have the following data protection rights regarding your personal data that we collect as a data controller:
Please note that the rights described above are not absolute, and where an exception under applicable law applies, we may be entitled to refuse requests in whole or in part.
If you reside in a U.S. state which has a data privacy law currently in effect, then this U.S. section applies to you. Please refer to the state in which you reside to learn more about additional terms and rights that may apply to you.
The California Consumer Privacy Act ("CCPA"), as amended by the California Privacy Rights Act ("CPRA"), requires us to provide California consumers with some additional information regarding how we collect, use, and disclose your personal information, and the rights available to California consumers under the CCPA. The terms used in this section have the same meaning as in the CCPA.
Additional Disclosures for California residents — Information Collection, Purpose, and Disclosure
In the preceding twelve (12) months, we have collected categories of personal data from the sources as discussed in Section 1 "Personal Data We Collect and How We Collect It." The business or commercial purpose for collecting that information is disclosed in Section 2 "How We Use Your Information."
In the preceding twelve (12) months, we have disclosed your personal data for a business or commercial purpose described in Section 2 "How We Use Your Information" to the following categories of third parties:
| Categories of Personal Information | Categories of Third Parties |
|---|---|
| Identifiers (name, email address, telephone number, country, company name) Professional and employment information | Our affiliated companies Third party service providers (recruiting platforms, IT service providers, third party cloud storage) |
| Financial information | Financial payment processor |
| Internet or network information (e.g., browsing and search history, site and advertisement interactions, audience research data). | Our affiliated companies Third party service providers |
| Geolocation data (e.g., location derived from GPS-enabled services) | Third party service providers |
| Inferences | Our affiliated companies Third party service providers |
In the preceding twelve (12) months, we have sold or shared your personal data for a business or commercial purpose to the following categories of third parties:
| Categories of Personal Information | Categories of Third Parties |
|---|---|
| Identifiers (name, email address, telephone number, country, company name) | Marketing providers |
| Geolocation Data | Marketing providers |
California Privacy Rights
If you are a California resident, you may have the following rights under the CCPA, subject to certain limitations and exceptions under applicable law:
Please note that the rights described above are not absolute, and where an exception under applicable law applies, we may be entitled to refuse requests in whole or in part.
Identify Verification
As required by California law, we may require you to prove your identity in order to exercise any of the above rights. We may verify your identity by phone call or email. Depending on your request, we will ask for personal information such as your name, your telephone number, email address, and/or date of last communication with Amperity. We may also ask you to provide a signed declaration confirming your identity.
Authorized agent
In California, an authorized agent may submit a rights request on your behalf. We will require verification that you provided the authorized agent permission to make a request on your behalf. You must provide us with a copy of the signed permission you have given to the authorized agent to submit the request on your behalf and verify your own identity directly with us. We will only use the information provided for verification to confirm the requestor's identity or authority to make the request, and for our compliance records. If you are an authorized agent submitting a request on behalf of an individual, you must attach a copy of the following information to the request:
If we do not receive both pieces of information, the request will be denied.
To exercise your privacy rights, please refer to our contact details in the "How to Contact Us" section below. We endeavor to respond to a verifiable request within forty-five (45) days of its receipt. If we require more time, we will inform you of the reason and extension period (up to a total of 90 days) in writing.
This section applies to residents of certain U.S. states which also have an applicable data privacy law currently in effect, including but not limited to: Colorado, Connecticut, Delaware, Iowa, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Tennessee, Texas, Utah, and Virginia. Depending on your U.S. state of residency, you may have the following privacy rights (as and to the extent applicable):
Please note that the rights listed above only apply to residents of U.S. states which have an applicable data privacy law currently in effect and who are acting in an individual or household context only. They do not apply to residents acting in a commercial or employment context.
If you reside in a U.S. state which has an applicable data privacy law currently in effect, and wish to submit a rights request, please refer to the "How to Contact Us" section below. We will respond to verifiable requests received as required by applicable law.
This Site is not directed towards children. We do not knowingly collect personal data from children under the age of 16 through the Site and/or the Services. If you are under 16, please do not give us any personal data. We encourage parents and legal guardians to monitor their children's Internet usage and to help enforce our Privacy Notice by instructing their children to never provide personal data through the Site without their permission. If you have reason to believe that a child under the age of 16 has provided personal data to us, please contact us, and we will endeavor to delete that information from our databases.
The Site and the Services may contain content, services, advertising and other materials that link to external sites. Amperity does not endorse and is not responsible for the content of any such external sites. Please refer to the terms of use and privacy policies of the external sites for more information.
This Notice was last updated and is effective as of the date stated at the top of this Notice. We may change this Notice from time to time. We encourage you to check on this page periodically so that you can keep up to date with any changes. Your access of the Site or continued use of our Services after such change will be deemed acceptance of the new Notice.
If you have any questions or concerns about Amperity's privacy practices, or wish to submit a privacy rights request, you may send an email to privacy@amperity.com or call us at 1-800-674-8267. You may also write to us at:
Amperity Inc.
Attention: Legal Department
1201 2nd Ave, Suite 1000
Seattle, WA 98101
Amperity's Data Protection Officer can be contacted via email at privacy@amperity.com or reached at the above address.
Amperity, Inc. is the entity responsible for the processing of personal data as described in this Notice.
In the event that you have any Site security concerns, please address them to security@amperity.com.