Welcome to the web site (the “Site”) of Scanner, Inc. (“Scanner”, “we”, “us” and/or “our”). This Site is operated by Scanner, Inc. and has been created to provide information about our company and our log management platform and related services (together with the Site, the “Services”) to our visitors (“you”, “your”). This Privacy Policy sets forth Scanner's policy with respect to information including personally identifiable data (“Personal Data”) and other information that is collected from visitors to the Site and Services.

Information We Collect Automatically When You Use the Services

Like most websites, when you access or use the Services we automatically collect information about you, including:

• Log Files: We gather certain information about your use of the Services, including the type of browser you use, access times, pages viewed, your IP address and the page you visited before navigating to the Services, and store it in log files. We do not monitor or log data collected from your servers when using the Services, but we may log or monitor information about your access to our Services.
• Information Collected by Cookies and Other Tracking Technologies: We use various technologies to collect information, including cookies and web beacons.

Cookie Policy

Scanner uses cookies to help us identify and track visitors, their usage of the Site and Services, and their website access preferences. Scanner visitors who do not wish to have cookies placed on their computers should set their browsers to refuse cookies before using Scanner's websites, with the expectation that certain features of our website may not function properly without the aid of cookies.

Most browser settings let you delete and reject cookies placed by websites. Many browsers accept cookies by default until you change your settings. For more information about cookies, including how to see what cookies have been set on your browser and how to manage and delete them, visit https://www.allaboutcookies.org.

Information We Collect from Other Sources

We may obtain information from other sources and combine that with information we collect through our Site and Services for purposes of advertising or user authentication. For example, if you create or log into your Scanner account using your Google Apps credentials via single sign-on, we will have access to certain information such as your name and email address as authorized in your Google Apps profile settings.

Purpose & Use of Information Collected

We may use information about you to:

• Enable you to have full access to the Services;
• Provide, maintain and improve the Services;
• Create your Scanner account and identify you when you sign-in to your account in accordance with your agreement with us;
• Provide and deliver the products and services you request, process transactions and send you related information, including confirmations and invoices;
• Send you technical notices, updates, security alerts, and support and administrative messages;
• Respond to your comments, questions and requests, and provide customer support;
• Release non-personally-identifying information in aggregate, e.g., by publishing a report on trends in the usage of the Services;
• Communicate with you about products, services, offers, promotions, rewards, and events offered by Scanner and others, and provide news and information we think will be of interest to you;
• Monitor and analyze trends, usage and activities in connection with the Services;
• Detect, investigate and prevent fraud and other illegal activities and protect the rights and property of Scanner and others;
• Personalize and improve the Services and provide advertisements, content or features that match user profiles or interests;
• Notify you about important changes to the Services, including changes or updates to this Privacy Policy;
• Facilitate contests, sweepstakes and promotions and process and deliver entries and rewards;
• Link or combine with information we get from others to help understand your needs and provide you with better service;
• Carry out any other purpose described to you at the time the information was collected.

Sharing of Information

We may share your personal information as follows or as otherwise described in this Privacy Policy:

• In response to a request for information if we believe disclosure is permitted by, in accordance with, or required by, any applicable law, regulation or legal process such as to comply with a subpoena or applicable court order;
• With any person to whom disclosure is necessary to enable us to enforce our rights under this Privacy Policy or under any agreement we enter into with you or to protect the rights, property and safety of Scanner or third parties;
• With vendors, consultants and other service providers we have vetted and approved who need access to such information to carry out work on our behalf only to the extent necessary for the performance of any contract we enter into with you. This includes companies providing the following services for our Website and/or Platform: hosting services, authentication services, cyber security and anti-fraud services, and advertising;
• In connection with, or during negotiations of, any merger, sale of Scanner assets, financing or acquisition of all or a portion of our business by another company;
• Between and among Scanner and all companies affiliated with Scanner who may act for us for any of the purposes set out in this Privacy Policy, including a future parent, affiliate, subsidiary and other companies under common control and ownership;
• With analytics and search engine providers that assist us in the improvement and optimization of our Website, subject to our Cookies Policy above; and
• With your consent or at your direction.

We may also share aggregated or de-identified information, which cannot reasonably be used to identify you.

Transfer of Data

Your information, including Personal Data, may be transferred to and maintained on computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those from your jurisdiction.

We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.

Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.

Data Deletion Policy

For Customers

Customer data is retained for as long as the account is in active status. Data enters an “expired” state when the account is voluntarily closed. Expired account data will be retained for 30 days. After this period, the account and related data will be removed. Customers that wish to voluntarily close their account should download their data manually or via the API prior to closing their account.

If a customer account is involuntarily suspended, then there is a 30 day grace period during which the account will be inaccessible but can be reopened if the customer meets their payment obligations and resolves any Terms of Service violations.

If a customer wishes to manually backup their data in a suspended account, then they must ensure that their account is brought back to good standing so that the user interface will be available for their use. After 30 days, the suspended account will be closed and the data will enter the “expired” state. It will be permanently removed 30 days thereafter (except when required by law to retain).

Your Choices

In this section, we describe the rights and choices available to all users. California residents can find additional information about their rights in the section entitled Information for California Residents.

Access or Update Your Information. If you have registered for an account with us, you may review and update certain personal information in your account profile by logging into the account.

Opt out of marketing communications. You may opt out of marketing-related emails by following the opt-out or unsubscribe instructions at the bottom of the email, or by contacting us at privacy@scanner.com. You may continue to receive service-related and other non-marketing emails.

Advertising choices. You can limit use of your information for interest-based advertising by:

• Browser settings. Blocking third party cookies in your browser settings.
• Privacy browsers/plug-ins. By using privacy browsers or ad-blocking browser plug-ins that let you block tracking technologies.
• Platform settings. Google offers opt-out features that let you opt-out of use of your information for interest-based advertising:
  • Google: https://adssettings.google.com
• Ad industry tools. Opting out of interest-based ads from companies participating in the following industry opt-out programs:
  • Network Advertising Initiative: https://optout.networkadvertising.org
  • Digital Advertising Alliance: https://optout.aboutads.info
  • AppChoices mobile app, available at https://www.youradchoices.com/appchoices, which will allow you to opt-out of interest-based ads in mobile apps served by participating members of the Digital Advertising Alliance.

You will need to apply these opt-out settings on each device from which you wish to opt-out.

Do Not Track. Some Internet browsers may be configured to send “Do Not Track” signals to the online services that you visit. We currently do not respond to “Do Not Track” or similar signals. To find out more about “Do Not Track,” please visit https://www.allaboutdnt.com.

Choosing not to share your personal information. Where we are required by law to collect your personal information, or where we need your personal information in order to provide the Service to you, if you do not provide this information when requested (or you later ask to delete it), we may not be able to provide you with our Services. We will tell you what information you must provide to receive the Service by designating it as required at the time of collection or through other appropriate means.

Other Sites and Services

The Service may contain links to other websites, and other online services operated by third parties. These links are not an endorsement of, or representation that we are affiliated with, any third party. In addition, our content may be included on web pages or online services that are not associated with us. We do not control third party websites, or online services, and we are not responsible for their actions. Other websites and services follow different rules regarding the collection, use and sharing of your personal information. We encourage you to read the privacy policies of the other websites and online services you use.

Security Practices

The security of your personal information is important to us. We employ a number of organizational, technical and physical safeguards designed to protect the personal information we collect. However, security risk is inherent in all internet and information technologies and we cannot guarantee the security of your personal information. Email, in particular, is an insecure way to transmit personal information. Please take special care regarding what information you send to us via email.

Children

The Service is not directed to, and we do not knowingly collect personal information from, anyone under the age of 13. If a parent or guardian becomes aware that his or her child has provided us with information without their consent, he or she should contact us. We will delete such information from our files as soon as reasonably practicable. We encourage parents with concerns to contact us.

Changes to this Privacy Policy

We reserve the right to modify this Privacy Policy at any time. If we make material changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy and posting it on the Service. We may, and if required by law, also provide notification of changes in another way that we believe is reasonably likely to reach you, such as via e-mail (if you have an account where we have your contact information) or another manner through the Service.

Any modifications to this Privacy Policy will be effective upon our posting the new terms and/or upon implementation of the new changes on the Service (or as otherwise indicated at the time of posting). In all cases, your continued use of the Service after the posting of any modified Privacy Policy indicates your acceptance of the terms of the modified Privacy Policy.

Payments

We may charge for various products and/or services within the Site. In that case, we use third-party services for payment processing (e.g. payment processors).

We will not store or collect your payment card details. That information is provided directly to our third-party payment processors whose use of your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information.

The payment processor we work with is Stripe. Their Privacy Policy can be viewed at https://stripe.com/privacy.

How to Contact Us

Please direct any questions or comments about this Policy or privacy practices to privacy@scanner.dev.

You may also write to us via postal mail at:

Scanner Inc.
44 Tehama St.
San Francisco, CA 94105

Information for California Residents

Scope. This section applies only to California residents. It describes how we collect, use, and share Personal Information of California residents online and offline in our capacity as a “business” under the California Consumer Privacy Act of 2018 (“CCPA”) and their rights with respect to that Personal Information. For purposes of this section, “Personal Information” has the meaning given in the CCPA but does not include information exempted from the scope of the CCPA. In some cases we may provide a different privacy notice to certain categories of California residents, such as job applicants, in which case that notice will apply instead of this section.

Your California privacy rights. As a California resident, you have the rights listed below. However, these rights are not absolute, and in certain cases we may decline your request as permitted by law.

• Information.You can request the following information about how we have collected and used your Personal Information during the past 12 months:
  • The categories of Personal Information that we have collected;
  • The categories of sources from which we collected Personal Information;
  • The business or commercial purpose for collecting and/or selling Personal Information;
  • The categories of third parties with whom we share Personal Information;
  • The categories of Personal Information that we sold or disclosed for a business purpose; and
  • The categories of third parties to whom the Personal Information was sold or disclosed for a business purpose.
• Access. You can request a copy of the Personal Information that we have collected about you during the past 12 months.
• Deletion. You can ask us to delete the Personal Information that we have collected from you.
• Opt-out of sales. You can opt-out of any sale of your Personal Information.
• Nondiscrimination. You are entitled to exercise the rights described above free from discrimination as prohibited by the CCPA

Notice of right to opt-out of the “sale” of your Personal Information. Based on our understanding of the term “sell” under the CCPA, we do not “sell” your Personal Information and have not sold it to third parties for a business or commercial purpose in the 12 months preceding the effective date of this Privacy Policy. However, like many companies, we use services that help deliver interest-based ads to you. Our use of some of these services may be classified under California law as a “sale” of your Personal Information to the advertising partners that provide the services because they collect information from our users (e.g., device data and online activity data) to help them serve ads more likely to interest you. You can request to opt- out of this “sale” of your personal information here: Do Not Sell My Personal Information, where you will find instructions on opting-out of the use of your information for interest-based advertising.

We will need to verify your identity to process your information, access and deletion requests and reserve the right to confirm your California residency. To verify your identity, we may require government identification, a declaration under penalty of perjury or other information. Your authorized agent may make a request on your behalf upon our verification of the agent's identity and our receipt of a copy of a valid power of attorney given to your authorized agent pursuant to California Probate Code Sections 4000-4465. If you have not provided your agent with such a power of attorney, you must provide your agent with written and signed permission to exercise your CCPA rights on your behalf, provide the information we request to verify your identity, and provide us with written confirmation that you have given the authorized agent permission to submit the request. We cannot process your request if you do not provide us with sufficient detail to allow us to understand and respond to it.

Personal information that we collect, use and disclose. The chart below summarizes the Personal Information we collect by reference to the categories of Personal Information specified in the CCPA, and describes our practices currently and during the 12 months preceding the effective date of this Privacy Policy. Information you voluntarily provide to us, such as in free-form web forms, may contain other categories of personal information not described below.

Statutory category of Personal Information (Cal. Civ. Code § 1798.140)	Personal Information we collect in this category (See the “Personal information We Collect” section above for description)
Identifiers (excluding online identifiers)	Contact details Data about others Details that you provide when you visit our offices or our events
California Customer Records (as defined in California Civil Code section 1798.80)	Contact details Communications Marketing data Data about others
Commercial Information	Profile data Communications Marketing data Online activity data
Geolocation Information	Information about your precise location based on your device's GPS location
Sensory Information	Information we capture through security cameras at our offices and facilities
Online Identifiers	Profile data Device data
Internet or Network Information	Marketing data Device data Online activity data
Inferences	May be derived from the information listed above
Sources. We describe the sources from which we collect this Personal Information in the section above entitled Personal Information We Collect. Purpose. We describe the business and commercial purposes for which we collect this Personal Information in the section above entitled How We Use Your Personal Information. Disclosure. We disclosed this Personal Information to the categories of third parties described in the section above entitled How We Share Your Personal Information.

Legal basis for processing personal information under the General Data Protection Regulation (“GDPR”)

If you are from the European Economic Area (EEA), our legal basis for collecting and using the Personal Data described in this Policy depends on the Personal Data we collect and the specific context in which we collect it. We may process your Personal Data because:

• We need to perform a contract with you;
• You have given us permission to do so;
• The processing is in our legitimate interests and it's not overridden by your rights;
• For payment processing purposes; and
• To comply with the law.

Your data protection rights under GDPR

If you are a resident of the European Economic Area (“EEA”) or the UK, you may have certain data protection rights including:

• The right to access, update or to delete the Personal Data we have about you;
• The right to have your Personal Data rectified if that information is inaccurate or incomplete;
• The right to object to our processing of your Personal Data;
• The right to request that we restrict the processing of your Personal Data;
• The right to be provided with a copy of your Personal Data in a structured, machine-readable and commonly used format; and
• The right to withdraw your consent at any time where we relied on your consent to process your Personal Data.

Please note that we may ask you to verify your identity before responding to such requests. You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the EEA.