Last revised: February 7, 2024.
- Personal Information We Collect
- How We Use Personal Information
- The Legal Basis for our Processing of Personal Information
- How We Disclose Personal Information
- Cross-Border Data Transfers
- Your Rights
- Residents of California
- How We Protect Your Personal Information
- How Long We Retain Your Personal Information
- Children's Privacy
- How To Contact Us
1. Personal Information We Collect
Personal information that we collect about you falls into several general categories: Information that you enter in order to use the Service, information that you provide or enter while using the Service, and information about you that we might receive from third parties (e.g., other members), and usage and device information, which is automatically collected when you use the Service.
All personal information that we collect is stored in encrypted form, except that your survey responses and other information may be disclosed with others in aggregated and de-identified form.
Personal Information that you enter in order to use the Service:
- Your login credentials to Joyn (including your email address);
- If you choose to register or log in using a third-party account (such as Google or your Company’s Single-Sign-On provider), the authentication of your log-in details is handled by that third-party and we only collect the information you expressly agree to share with us at the time you give permission to link your Joyn account with the third-party account. By using a Google Single Sign-On account (or other supported SSO), you are allowing us to access your Google (or other supported SSO) account information.
Personal Information that you provide or enter while using the Service:
- Contact information you provide whether through the use of our Services, creation of an account, a form on our website, or an interaction with our sales or Customer support team, we collect your contact information. This information may include, for example, your name and email address;
- Information that you may provide us voluntarily (but are not required to do so), such as your race or ethnicity, gender identity, sexual orientation, family dynamics;
- If you participate in surveys, your responses to questions;
- We may collect your personal information or data if you submit it to us in other contexts such as giving us a testimonial, attending an event we host or entering a contest.
- When an Administrator (such as your employer) creates an account for you, we may collect information such as your name, company name, email address, title and role within your Company, photograph, and other organizational information, such as the person you report to and your direct reports within the Company.
Personal Information about you that we might receive from others may include:
- Information about you provided by other members as they use the Service, for example, if they contact us about you.
- Information about you when you interact with us using social media such as responding to a LinkedIn post, or if Tweet us on Twitter.
- Information or data about you from third-parties if you give permission to those third-parties to disclose your personal information with us or where you have made that information publicly available online.
- If your Company uses a third-party human resource management system (for example, Workday or BambooHR) to import information into the Service, we will also receive information from that third-party (for example, your name, email address, employment, and demographic data).
- Information collected from your Company: The information that each Company provides to us is different. In most cases, your company will provide us with personal information such as your name, email information, and other information related to your role within the Company, including your manager, direct reports, and your position within the Company’s organization chart. Some Companies may provide us with demographic information so they can better analyze and understand the results of their culture and diversity, equity, and inclusion efforts. In the event that you are, or you become, part of an employee resource group, your Company may request that we create an account for you. Please note that we collect this personal information to process this personal information on behalf of our Customer to provide our Services, and do not directly collect this personal information for our own purposes.
- Usage information includes the dates and times you log onto the Service, the features you use, the clicks and other member profiles you view, event RVSP, events attended, engagement on your employer’s communication platforms (e.g. Slack, Teams), voluntary contributions to a community, events hosted, resources created.
- Device information includes information about the device you use to access the Service, such as device ID and type, software version, information on your wireless and mobile network connection, your service provider and signal strength, information on device sensors such as accelerometers, gyroscopes, and compasses, and technologies that may uniquely identify your device or browser (e.g., IMEI/UDID and MAC address);
- Geolocation data (i.e., your location in latitude and longitude) may be collected based on your device’s settings and used for analytical purposes and to optimize the user experience based on locale.
Third-Party Integration and/or Service Data
A Customer may elect to integrate a third-party or a third-party’s services with the Services (for example, Google Workspace, Slack or Microsoft Teams or other comparable API services). Joyn will not be responsible for any act or omission of any third-party, including such third party’s use of information and data from the Joyn Platform (“Platform Data”). Joyn does not warrant or support any such third-party. You should contact the relevant third-party for any issues arising from your use of its services.
If a Customer elects to use a third-party integration or service with the Services, the Customer will be the “controller” and Joyn and the relevant third-party will respectively act as “processors” to provide the Services to the Customer.
If a Customer or any of its personnel or Users wish to exercise their rights with respect to personal information or any other Platform Data being processed by a third-party, the Customer, as the controller, must make the request with the relevant third-party directly. If any of the preceding parties wish to exercise their rights with respect to any personal information being processed by Joyn, refer to Section 6.
Google User Data
Joyn’s use of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements.
2. How We Use Personal Information
Mostly, we use your personal information to facilitate your use of the Service. However, there are other purposes as well, outlined below.
- To create and manage your account;
- To provide you with Customer or User support and communicate with you about the Service.
Information and Data Analysis
- To administer surveys about the Service or other matters of interest or concern to Users;
- To optimize, develop, and improve the Service;
- To conduct aggregate analyses of activity, for example, the number of events attended, general engagement score (based on messages, logins, and other usage metrics, but only insofar as such activities remain anonymized.
Preventing, detecting, and fighting fraud or other illegal or unauthorized activities
3. The Legal Basis for our Processing of Personal Information
- To investigate and address any alleged misconduct or other member problems on the Service;
- To retain data related to fraudulent activities or alleged misconduct in order to protect against or prevent recurrences.
We process your personal information based on the following:
- To fulfill our obligations to allow and facilitate your use of the Service;
- To pursue our legitimate interests, including using your information to analyze members’ behavior on the Service in order to improve the Service, to suggest offers that might interest you, to use your information for administrative, fraud detection, and other legal purposes.
4. How We Disclose Personal Information
- With other members - Your profile information may be shared with other members of the Service, for example when they explore employee resource group membership, or when you raise your hand to volunteer for an employee resource group. If you selected your profile information to be anonymous, no information about you will be shared. We cannot control what others may do with your information if you divulge your identity.
- With your employer - We share aggregate engagement and analytics data with your employer to determine the effectiveness of their culture efforts and Joyn Platform adoption
- With our service providers and partners
- We use third parties to help us operate and improve the Service. These third parties assist us with various tasks, including data hosting and maintenance, analytics, customer service, marketing, advertising, payment processing, and security operations.
- For example, to allow them access to our log data or to analyze anonymized usage patterns for such purposes as IT resource management, application troubleshooting, and compliance with security regulations.
- Additionally, we may use artificial intelligence applications, such as API services provided by OpenAI, to provide our Services. The personal information that we disclose to these artificial intelligence application tools will consist of that personal information that is collected through your consent or is processed pursuant to an agreement we have with our Customer.
- We follow a strict vetting process prior to engaging any service provider or working with any partner. All of our service providers and partners must agree to strict confidentiality and restricted use obligations.
- Business transfers We may transfer your personal information (together with all other data and information that is part of or resides on the Joyn Platform) if we are involved in a merger, sale, acquisition, divestiture, restructuring, reorganization, dissolution, bankruptcy, or other change of ownership or control.
- When required by law We may disclose your personal information if reasonably necessary: (a) to comply with a legal process, such as a court order, subpoena, search warrant, or other legal requirements; (b) to assist in the prevention or detection of crime (subject in each case to applicable law); or (c) to protect the safety of any person, including you.
- To enforce legal rights We may disclose information: (a) as may be advisable to mitigate our liability in an actual or threatened legal or administrative proceeding; (b) as may be necessary, in our good faith judgment, to protect our legal rights and the legal rights of our principals, employees, and representatives, business partners, and other relevant parties; (c) to enforce our agreements with you; and (d) to investigate, prevent, or take other action regarding illegal activity, suspected fraud, or other wrongdoing.
- For analytical purposes We may disclose, for analytical purposes, non-personal information (meaning information that, by itself, does not reveal who you are, such as device information, general demographics, general behavioral data, and geolocation data in de-identified form), and personal information in hashed, non-human readable form.
5. Cross-Border Data Transfers
6. Your Rights
The following means allow you control over your personal information:
- Access / Update setting in the Service. The settings in the Service allow you to access, rectify, or delete information that you provide to us and that is associated with your account. If you have any questions about the settings, please contact User Support at email@example.com.
- Device permissions. Mobile platforms have permission systems for specific types of device data and notifications, such as contacts, location services, and push notifications. You can change the settings on your device to either consent or refuse the collection of the corresponding information or display of notifications. However, declining permissions can affect the functionality of certain features of the Service.
- Deletion. You may request deletion of your account at any time by emailing firstname.lastname@example.org. If your employer ends its partnership with us, all of your personal information and data will be erased.
Applicable privacy laws may give you the right to review the personal information we keep about you. You may request a copy of your personal information by putting in such a request at email@example.com.
If you believe that the information we hold about you is inaccurate or that we are no longer entitled to use it and want to request its rectification, deletion, or object to its processing, please contact us here at firstname.lastname@example.org.
For your protection and the protection of all of our Users, we may ask you to provide proof of identity before we can answer the above requests.
Please be advised, however, that we may reject requests for certain reasons, including if the request is unlawful or if it may infringe on trade secrets or intellectual property or the privacy of another User.
Also, be advised that we may not be able to accommodate certain requests to object to the processing of personal information if you want to continue using the Service.
7. California Residents
If you are a California resident, know that we do not disclose anything with third parties for their direct marketing purposes.
8. How We Protect Your Personal Information
As with all technology companies, although we take industry-standard best practices to secure your personal information, we do not promise, and you should not expect, that your personal information will always remain secure.
We regularly monitor our systems for potential vulnerabilities and review our information collection, storage, and processing practices to ensure they are subject to the most recent physical, technical, and organizational security measures. In addition, we take special precautions to ensure that any information we disclose is de-identified and aggregated, and cannot be re-identified.
We may suspend your use of the Service if we suspect or detect any breach of security. If you believe that your account or information is no longer secure, please notify us immediately at email@example.com.
9. How Long We Retain Your Information
We keep your personal information only as long as we need it for legitimate business purposes and as permitted by applicable law. To protect the safety and security of our Users, we implement a safety retention window of twelve (12) months following account deletion. During this period, account information will be retained although the account will no longer be visible on the Service.
In practice, we delete or de-identify your personal information upon deletion of your account (following the safety retention window) or after 12 months of continuous inactivity, unless:
- we must keep it to comply with applicable law;
- we must keep it as evidence of our compliance with applicable law;
- there is an outstanding issue, claim, or dispute requiring us to keep the relevant information until it is resolved; or
- the information must be kept for our legitimate business interests, such as fraud prevention and enhancing Users’ safety and security. By way of example, certain personal information may need to be kept in order to prevent a User who was banned for unsafe behavior or security incidents from opening a new account.
11. Children's Privacy
The Service is restricted to Users who are 18 years of age or older, and we do not knowingly collect personal information from anyone under the age of 18. If you suspect that a User is under the age of 18, please use the reporting mechanism available on the Service (e.g., “Report User”).
13. How to Contact Us