Privacy Policy

Version 1.3 - Updated 11/17/2021

This Privacy Policy describes how Gremlin, Inc. ("Gremlin," "we," "our," or "us") collects and processes certain information about you when you visit any of our websites (which end in "gremlin.com"), or use our products and services (collectively our "Services"). Gremlin is committed to respecting and protecting your privacy. This Privacy Policy becomes effective on the date stated above for all users including, without limitation EU-resident users who are natural persons. Enhanced data protection rights in this Privacy Policy required by the EU General Data Protection Regulation are set forth below in the "EEA Resident Rights" section.

Please read this Privacy Policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, your choice is not to use our Services. By accessing or using the Services, you agree to this Privacy Policy. This Privacy Policy may change from time to time (see the "Changes to Our Privacy Policy" section below). Your continued use of the Services after we make changes is deemed to be acceptance of those changes, so please check our Privacy Policy periodically for updates. If we do decide to change our privacy policy, we will post those changes on this page, and update the Privacy Policy modification date above.

All customers enter into an agreement in order to access and use the Gremlin software-as-a-service offering ("Terms of Service"). The Terms of Service, located at https://www.gremlin.com/terms/, govern the submission, access to and use of any Customer Data (information submitted through the Gremlin service, including emails or names for the purpose of logging into the service and receiving service related notifications). Customer Data may include personally identifiable information. The organization (e.g., your employer) that entered into the Terms of Service (the "Customer") controls the particular instance of the Service and any associated Customer Data.

Collection of Information

We collect information about you in the course of you using our Services. In order for us to best provide our Services to you (and to help make it feasible for us to do so), it is essential that we are able to collect and use the information as described in this Privacy Policy. This means that the data collection is necessary for fulfilling the relationship we have with you, and where that is not the case, we have a legitimate interest in collecting the information described below.

Information You Provide to Us

We receive, store, and may use (as described below) any information you provide to us, which may include Personal Information. As used in this Privacy Policy, "Personal Information" means any information relating to an identified or identifiable natural person, such as your name and email address. By using the Services, you authorize us to gather, retain, use, and otherwise process your information that you provide to us as further described below. Gremlin will only use, store, retain, and otherwise process your Personal Information as described in this Privacy Policy.

More specifically, when you register with our Services as a user, we will collect your name, email address, and password. We also collect Personal Information from you when you subscribe to our mailing lists (either through our website or otherwise) or respond to a survey (whether sent by us or by one of our partners that provides business related services to us (e.g. SurveyMonkey)). If you make an inquiry through our website, or contact us in any other way, we may keep a copy of your communications with us. For example, if you call us, we may record the phone call for quality and/or reference purposes (e.g. we may record phone interviews with potential candidates applying for positions at Gremlin); if we wish to record our phone call, we will notify you and obtain your permission before doing so.

We may also collect certain technical information by automatic means when you use our Services: this information is typically the information sent to us by your HTTP header and may include IP address, browser type and configurations, and operating system, the website you visited before visiting our website, and usage data resulting from your use of our website (such as hit and conversion rates). Through our software-as-a-service offering, we automatically collect and aggregate data regarding your use of the Services, such as how long an experiment is run and whether the experiment fails or succeeds. We automatically collect certain information on our Services using cookies, web beacons, locally shared objects (sometimes called "flash cookies"), mobile identifiers and similar technologies ("Cookies").

Among other things, such tracking technologies give us information that helps us improve our Services and marketing activities, and your experience. These technologies may be used in analyzing trends, administering the Services, tracking users’ movements around the Services and to gather demographic information about our user base as a whole. You can control the use of Cookies at the individual browser level, but if you choose to disable Cookies, it may limit your use of certain features or functions on our Services.

Information We Collect from Other Sources

We also collect data about you though our partners that we retain to provide certain advertising and analytics services to us (such as advertising, marketing and analytics providers) ("Ad Partners"). Ad Partners may use Cookies and other technologies to collect information about your use of the Services and other websites and applications, including your IP address, web browser, pages viewed, time spent on pages or in apps, links clicked and conversion information. Again, you can control the use of Cookies at the individual browser level, but if you choose to disable Cookies, it may limit your use of certain features or functions on our Services. This information may be used by Gremlin and Gremlin service providers to, among other things, analyze and track data, determine the popularity of certain content, deliver advertising and content targeted to your interests on our Services and other websites and better understand your online activity. One such Ad Partner is Google Analytics. We work with Ad partners, such as Google Analytics, to provide analytics services that use the Cookies set on your device to measure the performance of advertising and track traffic to Gremlin’s website generally. Our Ad Partners may also use such technologies to deliver advertisements to determine whether you've already been shown an advertisement or how it performed, or provide us with information about how you interacted with an ad.

We have also implemented certain Google Analytics services, which may categorize Cookie information so that we and third-party service providers can better deliver advertisements that are relevant and useful to you on the Services and various websites across the internet.

We may combine the information Ad Partners collect from you with information we collect through our Services. For example, if you authenticate with your Gremlin account via a single sign-on method, such as SAML, we will have access to information that authentication provider sends, such as your email address.

We may also allow Ad Partners to serve advertisements on our behalf across the Internet and in third party applications.

Information of Minors

We do not intentionally gather personal information from visitors who are under the age of 13. If you are under the age of 13, you are not permitted to submit any personal information to us or to otherwise use our Services. If we learn that a child under 13 submits personal information to Gremlin, we will delete the information as soon as possible. If you believe that we might have any personal information from a child under 13, please contact us using the information in the "Contact Us" section at the bottom of this Policy.

Do Not Track Signals

We do not currently respond to 'do not track' signals and similar settings or mechanisms. It is critical that we be able to quickly respond to any security or operations issues that may occur within our Services; responding to ‘do not track’ signals would inhibit our ability to do so.

Use of Information

Our use of Your Information

We may use information about you for various purposes, including:

  • To communicate with you by responding to your requests, comments and questions. If you contact us, we may use your Information to respond.
  • To create and administer records about any online account that you register with us.
  • To develop and provide tools and features. We are constantly striving to improve our Services. We may use your Information to analyze your usage and to improve our Services, such as, with regard to our website, to improve the navigation and content.
  • For system administration and security, including to investigate and help prevent security issues and abuse.
  • For general business purposes, including to improve customer service (your information helps us to more effectively respond to your customer service requests and support needs), to help us improve the content and functionality of our Services, to better understand our users, and to generally manage our business.
  • For recruitment purposes, if you apply for a job with us.
  • To manage our website, including administering a contest, promotion, survey, or other website features.
  • To improve our advertising campaigns, primarily in an effort to prevent targeting of impressions via third-party channels when they are not relevant.
  • To send emails and other communications. We may send you service, technical and other administrative emails, messages and other types of communications. We may also contact you to inform you about changes in our Services and important Services-related notices, such as security and fraud notices. These communications are considered part of the Services and you may not opt out of them. In addition, we sometimes send emails about new product features, promotional communications or other news. These are marketing messages, so you can control whether you receive them. We may also send emails for the purpose described at the time of collection, such as a request for a demo or more information, or in response to your account management requests such as password change request instructions.
  • To provide, update, maintain and protect our Services. This includes use of your information to support delivery of the Services under a Terms of Service agreement, prevent or address errors, security or technical issues, analyze and monitor usage, trends and other activities or at a user’s request.
  • As required by applicable law, legal process or regulation.
  • For billing, account management and other administrative matters. We may need to contact you for invoicing, account management and similar reasons and we use account data to administer accounts and keep track of billing and payments.

When we collect any information that does not identify you as a specific natural person ("Non-Personal Information"), we are permitted to use and disclose this information for any purpose, notwithstanding anything to the contrary in this Privacy Policy, except where we are required to do otherwise by applicable law. Examples of Non-Personal Information include: physical location information; demographic information, ZIP codes, etc.; or any personal information that has been anonymized, aggregated or de-identified. If we combine any Non-Personal Information with your personal information (such as combining your ZIP code with your name), we will use and disclose such combined information as personal information in accordance with this policy. Similarly, if applicable law requires that we treat certain Non-Personal Information as personal information, we will use and disclose this information as personal information in accordance with this policy.

Sharing of Information

We will only share your information with third parties under the following circumstances:

  • We engage certain trusted third parties to perform functions and provide services to us, including cloud hosting services, off-site backups, and email services. We will only share your personal information with third parties to the extent necessary to perform these functions, in accordance with the purposes set out in this Privacy Policy and applicable laws. Trusted third parties provide at least the same level of privacy protection as set forth in this policy document.
  • In the event of a corporate sale, merger, reorganization, dissolution, or similar event, your personal information may be transferred, sold, or otherwise disclosed as part of that transaction.
  • We may also disclose information about you to third parties where we believe it necessary or appropriate under law, for example: (1) to protect or defend our rights, interests, or property; (2) to comply with legal process, judicial orders, or subpoenas; (3) to respond to requests from public or government authorities, including for national security and law enforcement purposes; (4) to prevent or investigate possible wrongdoing in connection with the Services or to enforce our Terms of Service; (5) to protect the vital interests of our users and customers.

We do not sell or trade your Personal Information to third parties.

Data Controller and Data Processor

The information about you that we collect, process and/or use through our Services (including your login information) and the data we keep in our third-party business services accounts (e.g. Salesforce) is controlled by Gremlin, Inc. Gremlin and the Services it provides are hosted and provided outside of the European Economic Area (EEA), including in the United States, for the purposes described in this policy. The privacy protections and the rights of authorities to access your information in these countries may not be the same as in your home country. The information that is held by our Ad Partners or other third-party service provider, such as Google Analytics or Salesforce, we are the processor for such data, such data is always hosted by and remains under the control of such Ad Partner or other third-party service provider.

Data Retention

We may retain your Personal Information as long as you continue to use the Services, have an account with us, or for as long as is necessary to fulfil the purposes outlined in this Privacy Policy. We may, however, retain Personal Information for an additional period as is required under applicable laws, for legal, tax, or regulatory reasons. EU individuals have certain rights outlined below in "Transfer of Information to the U.S.".

EEA Resident Rights

For the data that we control, you have the following data protection rights:

  • If you wish to access, correct, update or request deletion of your Personal Information, you can do so at any time by contacting us using the contact details provided under the "Contact Us" section below.
  • In addition, you can object to our processing of your Personal Information, ask us to restrict processing of your Personal Information, or request portability of your personal information. Again, you can exercise these rights by contacting us using the contact details provided under the "Contact Us" section below.
  • You have the right to opt-out of marketing communications we send you at any time. You can exercise this right by clicking on the "unsubscribe" or "opt-out" link in the marketing emails we send you.
  • You can withdraw your consent to have us process your Personal Information at any time. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your Personal Information conducted in reliance on lawful processing grounds other than consent.
  • You have the right to complain to a data protection authority about our collection and use of your personal information. For more information, please contact your local data protection authority.

We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws. If you would like to contact us regarding any of the above, please contact us at the contact information provided in the "Contact Us" section below. Notwithstanding the foregoing, we reserve the right to keep any information in our archives that we deem necessary to comply with our legal obligations, resolve disputes and enforce our agreements.

Transfer of Information to the U.S.

If you are visiting our website or using our Services from outside the United States (U.S.), please be aware that you are sending personal information to the U.S. where our servers are located. The U.S. may not have data protection laws that are as comprehensive or protective as those in your country of residence. However, our collection, storage, and use of your personal information will at all times be in accordance with this Privacy Policy.

Third Party Links

Occasionally, at our discretion, we may include links to third parties on our websites or in email correspondence. If you access other websites using the links provided, the operators of these websites may collect information from you that will be used by them in accordance with their privacy policies. These third party sites have separate and independent privacy policies. We, therefore, have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.

Security

We implement a variety of security measures to maintain the safety of your personal information when you enter, submit, or access your Personal Information. We use a secure server and use tracking technologies to enable and support security features, prevent fraud, and protect your data from unauthorized access. All supplied Personal Information is transmitted via Secure Socket Layer (SSL) technology. All Personal Information supplied by you is only accessible by Gremlin personnel or third-party contractors, that are authorized with special rights and a clear business need, who are required, by written agreements with Gremlin: (a) to keep such Personal Information confidential and (b) to comply with terms just as protective of your Personal Information as the terms of this Privacy Policy.

Contact Us

Gremlin commits to making delimiting efforts to resolve any complaints about handling of your privacy and our collection, use, or disclosure of your Personal Information. If you have any inquiries or complaints regarding this Privacy Policy please contact Gremlin at:

  • Email: privacy@gremlin.com; or
  • Postal mail: Gremlin Inc., 440 N Barranca Ave #3101, Covina, CA 91723

Avoid downtime. Use Gremlin to turn failure into resilience.

Gremlin empowers you to proactively root out failure before it causes downtime. See how you can harness chaos to build resilient systems by requesting a demo of Gremlin.GET STARTED

Product Hero ImageShape