Privacy Policy
Effective Date: October 1, 2023 • Last Updated: October 24, 2023
Introduction and Scope
At Sonus, we believe that clarity is a competitive advantage. As an enterprise data analytics platform, we handle your data with the same rigor we apply to our own. This Privacy Policy outlines how we collect, use, and safeguard the personal data of our users, customers, and visitors.
This policy applies to all users of the Sonus platform, including but not limited to data analysts, business intelligence professionals, and executives who utilize our services. It is designed to ensure compliance with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
Data We Collect
We collect data necessary to provide, maintain, and improve our analytics services. The categories of personal data we process include:
- Account Data: Name, job title, company name, email address, and phone number required for account setup and administrative purposes.
- Usage Data: Log files, browser type, IP address, pages visited, and time spent on the platform to monitor system performance and usage patterns.
- Query Metadata: Aggregated statistics on data queries executed within the Sonus environment (e.g., frequency of access, volume of data scanned), which helps us optimize our service without exposing individual query results.
- Support Communications: Information submitted via support tickets, including chat logs and email correspondence, to resolve technical issues.
How We Use Your Data
We process your personal data in accordance with the following six lawful bases under GDPR:
- Performance of the Contract: To provide you with the Sonus analytics platform, manage your subscription, and deliver the services you have requested.
- Legal Obligation: To comply with applicable laws and regulations, including data security standards, tax reporting, and fraud prevention measures.
- Legitimate Interests: To maintain the security of our platform, prevent unauthorized access, and improve the user experience through system analytics and testing.
- Consent: To send marketing communications or newsletters, provided you have explicitly opted in to receive such updates.
- Vital Interests: To protect your vital interests or those of another person in a situation where your consent cannot be obtained.
- Public Task: To perform tasks carried out in the public interest in the area of public security in accordance with our legal obligations.
Data Sharing and Third-Party Processors
We do not sell your personal data. We may share your data only with trusted third-party service providers who assist us in operating our business. These include:
- Cloud Infrastructure Providers: AWS and Google Cloud Platform, to host our servers and databases.
- Customer Support Tools: Zendesk, to manage and respond to support inquiries.
- Analytics Tools: Mixpanel and Amplitude, to analyze user behavior and improve product features.
All third-party processors are bound by strict data protection agreements and are prohibited from using your data for their own marketing purposes.
Data Retention
We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy or as required by law. Specific retention schedules include:
- Account Data: Retained for the duration of your relationship with Sonus and for a period of seven (7) years after termination.
- Usage Logs: Retained for a period of two (2) years for system auditing and security purposes.
- Query Metadata: Aggregated statistics are retained indefinitely; individual query logs are retained for ninety (90) days.
- Support Communications: Retained for three (3) years following the resolution of the support ticket.
Your Rights (GDPR)
You have the right to access, rectify, and erase your personal data, as well as the right to data portability and objection. You may exercise these rights by contacting our Data Protection Officer listed at the end of this policy.
- Right of Access: Request a copy of the personal data we hold about you.
- Right to Rectification: Request the correction of inaccurate or incomplete data.
- Right to Erasure: Request the deletion of your personal data, subject to certain exemptions (e.g., legal retention requirements).
- Right to Restrict Processing: Request that we limit the processing of your data in certain circumstances.
- Right to Data Portability: Request that your data be transferred to another controller in a structured, machine-readable format.
- Right to Object: Object to the processing of your personal data on grounds relating to your particular situation.
California Privacy Rights (CCPA)
If you are a resident of California, you have specific rights under the CCPA:
- Right to Know: You have the right to request that we disclose what personal data we collect, use, share, or sell, and the categories of third parties with whom we share such data.
- Right to Delete: You have the right to request that we delete your personal data, subject to certain exemptions.
- Right to Opt-Out: You have the right to opt-out of the sale of your personal data. Sonus does not sell personal data to third parties.
To exercise these rights, please submit a verified request via the "Manage Privacy" link in your account settings or contact our DPO.
Cookies and Tracking Technologies
We use cookies and similar tracking technologies to enhance your experience, analyze site traffic, and understand where our users are coming from.
- Essential Cookies: Necessary for the platform to function (e.g., session management, authentication).
- Analytics Cookies: Allow us to analyze usage patterns to improve performance and user experience.
- Marketing Cookies: Used to deliver relevant advertisements and measure the effectiveness of campaigns.
You can control the use of cookies by adjusting your browser settings. However, disabling essential cookies may impair the functionality of the platform.
Contact Us
Questions about how we handle your data? We are here to help.
Mailing Address
Sonus Inc.
111 Market Street, Suite 400
San Francisco, CA 94105