Docker Privacy Policy
Last Update: August 30, 2023
Docker, Inc. and its affiliates (“Docker”) are committed to protecting the privacy of your information. We provide this Privacy Policy to inform users of our policies and procedures regarding the collection, use and disclosure of information and/or personal data received from users of our websites (“Website”), services, applications, software or other means all of which we refer to as the “Services”. This Privacy Policy may be updated from time to time for any reason, at our sole discretion. We will notify you of any material changes to our Privacy Policy by posting the new Privacy Policy on our Website. You are advised to consult this Privacy Policy regularly for any changes. By using or accessing the Docker Services, you are accepting the practices described in this Privacy Policy, and you are consenting to our processing of your information as set forth in this Privacy Policy now and as amended by us. If you have any questions or comments about this Privacy Policy or our use of your personally identifiable information, please contact us using this form https://preferences.docker.com/privacy/.
1. Services Use and Information Collected
Docker collects information from individuals who visit the Website (“Visitors”) and individuals who register to use the Services (“Customers”) either individually or on behalf of an entity. Docker may also collect information about how you use the Services, such as activity data, feature usage and product version data. This information may be aggregated or identifiable as further described in this Privacy Policy. Docker may collect data to improve our operations and to understand how to provide you with the best experience.
When registering to use or expressing an interest in obtaining additional information about the Services or registering to use the Services, Docker may require you to provide us with personal contact information, such as name, company name, address, phone number, and email address (“Required Contact Information”). When purchasing the Services, Docker may require you to provide us with financial qualification and billing information, such as billing name and address, partial credit card number, and the number of employees within the organization that will be using the Services (“Billing Information”). Docker may also ask you to provide additional information, such as company annual revenues, number of employees, or industry (“Optional Information”). Required Contact Information, Billing Information, and Optional Information are referred to collectively as “Data About Docker Customers.” As you navigate the Website, Docker may also collect information through the use of commonly-used information-gathering tools, such as cookies and Web beacons (“Website Navigational Information”). Website Navigational Information includes standard information from your Web browser (such as browser type and browser language), your Internet Protocol (“IP”) address, and the actions you take on the Website (such as the Web pages viewed and the links clicked). By choosing to provide any information to Docker, you are giving Docker permission to use and store such information consistent with this Privacy Policy.
2. Use of Information Collected
Docker uses Data About Docker Customers to perform the services requested. Docker may also use Data About Docker Customers for marketing purposes. For example, Docker may use information you provide to contact you to further discuss your interest in the Services and to send you information regarding Docker and its partners, such as information about promotions or events. Docker uses credit card information you provide for payment, solely to check the financial qualifications of prospective Customers and to collect payment for the Services. Docker uses Website Navigational Information to operate and improve the Website. Docker may also use Website Navigational Information alone or in combination with Data About Docker Customers to provide personalized information about Docker.
3. Docker Website, Cookies and Navigation Information
3.1 Website and Navigation Information
Docker may use commonly used information gathering tools, such as cookies and Web beacons, to collect information as you navigate the Website (“Website Navigational Information”). This section describes the types of Website Navigational Information that may be collected on the Website and how this information may be used.
3.1(a) Cookies – Docker may use cookies to make interactions with the Website easy and meaningful. When you visit the Website, Docker’s servers send a cookie to your computer. Standing alone, cookies do not personally identify you. They merely recognize your Web browser. Unless you choose to identify yourself to Docker, either by responding to a promotional offer, opening an account, or filling out a Web form, you remain anonymous to Docker. Docker uses cookies that are session-based and persistent-based. Session cookies exist only during one session. They disappear from your computer when you close your browser software or turn off your computer. Persistent cookies remain on your computer after you close your browser or turn off your computer. If you have chosen to identify yourself to Docker, Docker uses session cookies containing encrypted information to allow Docker to uniquely identify you. Each time you log into the Services, a session cookie containing an encrypted, unique identifier that is tied to your account is placed on your browser. These session cookies allow Docker to uniquely identify you when you are logged into the Services and to process your online transactions and requests. Session cookies are required to use the Services. Docker may use persistent cookies that only Docker can read and use to identify browsers that have previously visited the Website. When you purchase the Services or provide Docker with personal information, a unique identifier is assigned to you. This unique identifier is associated with a persistent cookie that Docker places on your Web browser. Docker is especially careful about the security and confidentiality of the information stored in persistent cookies. For example, Docker does not store account numbers or passwords in persistent cookies. You may refuse to accept cookies by activating the setting on your browser which allows you to refuse the setting of cookies. If you disable your Web browser’s ability to accept cookies, you will be able to navigate the Website, but you will not be able to successfully use the Services. Unless you have adjusted your browser setting so that it will refuse cookies, our system will issue cookies when you log on to our site. Docker may use information from session and persistent cookies in combination with Data About Docker Customers to provide you with information about Docker and the Services.
3.1(b) Web Beacons – Docker may use Web beacons alone or in conjunction with cookies to compile information about Customers and Visitors’ usage of the Website and interaction with emails from Docker. Web beacons are clear electronic images that can recognize certain types of information on your computer, such as cookies, when you viewed a particular Website tied to the Web beacon, and a description of a Website tied to the Web beacon. For example, Docker may place Web beacons in marketing emails that notify Docker when you click on a link in the email that directs you to one of the Websites. Docker uses Web beacons to operate and improve the Website and email communications including for marketing purposes. Docker may use information from Web beacons in combination with Data About Docker Customers to provide you with information about Docker and the Services.
3.1(c) Flash Cookies – Docker may use local shared objects, also known as Flash cookies, to store your preferences or display content based upon what you view on our site to personalize your visit. Third parties, with whom Docker partners to provide certain features on our site or to display advertising based upon your Web browsing activity, use Flash cookies to collect and store information. Flash cookies are different from browser cookies because of the amount of, type of, and how data is stored. Cookie management tools provided by your browser will not remove Flash cookies.
3.1(d) IP Addresses – When you visit the Website, Docker may collect your Internet Protocol (“IP”) addresses to track and aggregate non-personal information. For example, Docker may use IP addresses to monitor the regions from which Customers and Visitors navigate the Website.
3.1(e) Third Party Cookies – From time to time, Docker may engage third parties to track and analyze usage and volume statistical information from individuals who visit the Website. Docker may also use other third-party cookies to track the performance of Docker advertisements. The information provided to third parties does not include personal information, but this information may be re-associated with personal information after Docker receives it. Docker may also contract with third-party advertising networks that collect IP addresses and other Website Navigational Information on the Website and emails and on third-party websites. Ad networks follow your online activities over time by collecting Website Navigational Information through automated means, including through the use of cookies. They use this information to provide advertisements about products and services tailored to your interests. You may see these advertisements on other Websites. This process also helps us manage and track the effectiveness of our marketing efforts.
4. Public Forums, Refer a Friend, and Customer Testimonials
Docker may provide bulletin boards, blogs, or chat rooms on the Website. Any personal information you choose to submit in such a forum may be read, collected, or used by others who visit these forums, and may be used to send you unsolicited messages. Docker is not responsible for the personal information you choose to submit in these forums. Customers and Visitors may elect to use Docker’s referral program to inform friends about the Website. When using the referral program, Docker requests the friend’s name and email address. Docker will automatically send the friend a one-time email inviting him or her to visit the Website. Docker does not store this information. Docker may post a list of Customers and testimonials on the Website that contain information such as Customer names and titles. Docker obtains the consent of each Customer prior to posting any information on such a list or posting testimonials.
5. Third party providers
We use third party providers such as Google Analytics and others to help us provide the Services. In order to gain useful insights these analytics providers may set tracking technologies (like cookies) to collect information about your use of the Services and across other websites and online services.
6. Sharing of Information Collected
Docker may share Data About Docker Customers with Docker’s service providers so that these service providers can contact Customers and Visitors who have provided contact information on our behalf. Docker may also share Data About Docker Customers with Docker’s service providers to ensure the quality of information provided. Unless described in this Privacy Policy, Docker does not share, sell, rent, or trade any information provided with third parties for their promotional purposes. From time to time, Docker may partner with other companies to jointly offer products or services. If you purchase or specifically express interest in a jointly-offered product or service from Docker, Docker may share Data About Docker Customers collected in connection with your purchase or expression of interest with our joint promotion partner(s), once Docker has notified you of the information to be shared and obtained your consent to the sharing of the information. Docker does not control our business partners’ use of the Data About Docker Customers we collect, and their use of the information will be in accordance with their own privacy policies. Docker may use third-party service providers to manage credit card processing. Neither Docker nor such service providers will be permitted to store, retain, or use Billing Information except for the sole purpose of credit card processing on Docker’s behalf. Docker reserves the right to use or disclose information provided if required by law or if Docker reasonably believes that use or disclosure is necessary to protect Docker’s rights and/or to comply with a judicial proceeding, court order, or legal process.
Under the EU-U.S. and Swiss-U.S. Data Privacy Framework, Docker is responsible for the processing of personal data received from Customers from the EU, the UK, and Switzerland and onward transfers to a third party acting as an agent on our behalf. We comply with the Data Privacy Framework Principles for such onward transfers and remain liable in accordance with the Data Privacy Framework Principles if third-party agents that we engage to process such information about you on our behalf do so in a manner inconsistent with the Data Privacy Framework Principles, unless we prove that we are not responsible for the event giving rise to the damage.
7. Users from outside the United States
Docker and its Services are based in the U.S., and Docker’s offices are headquartered in the U.S. Please be aware that information you provide to Docker that it obtains as a result of your use of the Services may be processed and transferred to the U.S. and be subject to U.S. law. This information may also be processed by staff working for Docker or for one of its suppliers in the U.S. By using the Website, participating in any of the Services, or by providing Docker with your information, you consent to this collection, transfer, storage, and processing of information to and in the U.S. Docker will take all steps reasonably necessary to ensure that your data is treated securely in accordance with this privacy policy.
8. Supplemental Privacy Notices for the EEA, California and other States
Depending on your country, region or state of residence the Supplemental Privacy Notices A through C of this Privacy Policy may also apply to you.
9. Communications Preferences; Opt In Policy
Docker offers Customers and Visitors who provide contact information a means to choose how Docker uses the information provided. You may manage your receipt of marketing and non-transactional communications by clicking on the “unsubscribe” link located on the bottom of Docker’s marketing emails. Additionally, you may send a request specifying your communications preferences to please contact us using this form https://preferences.docker.com/privacy. If, at any time after registering, you change your mind about receiving information from us or about the use of information volunteered by you, please send us a request specifying your new choice. Please contact us as specified herein.
10. Correcting and Updating Your Information
Customers may view, update or change their registration information by logging in to their accounts at www.docker.com. Requests to access, change, or delete your information will be handled within 30 days.
11. Security
Docker uses appropriate administrative, technical, and physical security measures to protect Data About Docker Customers. However, we cannot guarantee that hackers or unauthorized personnel will not gain access to your personal information despite our efforts. You should note that in using the Website and our related services, your information will travel through third party infrastructures which are not under our control. We cannot protect, nor does this Privacy Policy apply to, any information that you transmit to other users of the Website. You should never transmit personal or identifying information to other users.
12. Change of Control
As Docker develops its business, it may buy or sell assets or business offerings. Data About Docker Customers is generally one of the transferred business assets in these types of transactions. Docker may also transfer such information in the course of corporate divestitures, mergers, or dissolution.
13. Contacting Us
Questions regarding this Privacy Policy or the information practices of the Website should be directed to this form https://preferences.docker.com/privacy/ or by mailing Docker Privacy, 3790 El Camino Real, #1052, Palo Alto, CA 94306 USA.
14. Events
As part of the registration process for events hosted by Docker which you register to attend, we may request personal data such as: your name, address, email address and country, and details relevant to your occupation or employer and familiarity with the Services. This information is required to process your registration for the event and to provide you with relevant event materials. This data may be shared with event sponsors contracted with Docker under the terms of the event and our Privacy Policy. If you show an interest in a sponsor at an event hosted by Docker, Inc., such as attending their virtual or physical, event speaking session or booth, we will provide your data to such sponsors who may contact you for their own direct advertising and marketing purposes. In that case, the exhibitors’ use of your information would be subject to the exhibitors’ privacy policies. For events sponsored by Docker, the event host may provide your personal data to Docker, subject to your consent. Docker will use the data as set forth in the Use of Information section of this Privacy Policy.
15. Supplemental Privacy Notices
Supplement A – Supplemental EEA+ Privacy Notice
Our Privacy Policy explains how Docker collects and uses personal data when you use the Services. We address this Supplemental EEA+ Privacy Notice to you if use our Services and are located in the European Economic Area (EEA), United Kingdom (UK) or Switzerland (collectively EEA+).
If you are located in the EEA, the EU General Data Protection Regulation applies to the processing of your personal data. If you are located in the UK, the UK General Data Protection Regulation applies to the processing of your personal data. If you are located in the EEA or UK, references to the “GDPR” below are references to the General Data Protection Regulation as it applies in the country where you are located. If you are located in Switzerland, the provisions of the Swiss Federal Data Protection Act (the “FDPA”) apply to you, and references to the GDPR below shall be interpreted analogously for the purposes of applying the FDPA.
- Who is the Data Controller?
Docker Inc. is the responsible controller for personal data that you submit through our Website. Docker Inc.’s representative in the EU is Docker Germany GmbH and in the UK is Docker (UK) Limited.
- What are the legal bases for processing?
To the extent required by applicable law, we collect and process personal data of individuals located in the EEA+ only where there exists a legal basis for doing so. Such legal bases are as follows:
- It is in accordance with your consent, per Art. 6(1)(a) of the GDPR, when you accept non-essential cookies via our cookies banner.
- It is necessary for us to perform a contract with you—specifically, the terms and conditions that apply to our Services—or take steps at your request prior to entering into the contract, per Art. 6(1)(b) of the GDPR.
- It is necessary to comply with our legal obligations, per Art. 6(1)(c), such as if we are required by law to disclose personal data to law enforcement agencies or governmental authorities.
- It is necessary for us or third parties to pursue legitimate interests that are not outweighed by your privacy and other fundamental interests, per Art. 6(1)(f) of the GDPR. Those legitimate interests are to provide corporate customers and other users of our Services with a good and safe experience, administer and enforce our contractual and legal rights, develop new services and features that we can offer to you and others, and manage our business operations and relationships with you and third parties.
- It is necessary for our legitimate interests, per Art. 6(1)(f) of the GDPR, to exercise our legal rights or defend legal claims.
- It is necessary, per Art. 6(1)(f) of the GDPR, to give effect to a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of company assets, or transition of service to another provider.
- On What Basis Do We Transfer Personal Data Across Borders?
The European Commission’s adequacy decision for the EU-U.S. Data Privacy Framework (EU-U.S. DPF) entered into force on July 10, 2023.
Docker, Inc. and its U.S. subsidiary (Infosiftr, LLC.) adhere to the EU-U.S. Data Privacy Framework and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework Principles regarding the collection, use, and retention of personal data that is transferred from the European Union and Switzerland to the U.S.
Docker complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. Docker has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF. Docker has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
- How Long Do We Retain Personal Data?
In general, we store personal data only as long as necessary to fulfill the purpose for which we collected it (the “General Retention Period”), except in the following situations:
- Where applicable laws require us to retain your personal data for a legally prescribed period beyond the General Retention Period, in which case we will keep that personal data for the legally prescribed time period before deleting it;
- Where your personal data is relevant to potential legal claims by or against us, in which case we will keep that personal data for as long as the legal claims can be made or, if it has been made, for as long as the personal data is relevant to the resolution of the claims or any appeal thereto;
- Where we are instructed by a court order, subpoena, or other legal directive to retain your personal data beyond the General Retention Period; and
- Where we need a reasonable period of additional time to verify that the purposes for which we collected your data no longer apply and to delete the data following such verification.
If none of these exceptions apply to certain personal data, we will retain personal data for as long as necessary to fulfill the purpose for which we collected it, which in most cases does not exceed 12 months.
- Do You Have to Provide Personal Data?
There is no law or contract stating that individuals in the EEA+ have to use our Services. We will try to tell you what personal data we need from you to provide certain Services or a certain level of quality of Services to you. In those cases, if you do not provide the personal data that we request from you, we will not be able to provide you with the Services or level of quality of Services that you request from us.
- Your Rights
You have the following rights, subject to conditions and in some cases limitations under the data protection laws that apply to you:
- To object, on grounds relating to your particular situation, to the processing of your personal data by us. This includes the right to object to our processing of your personal data for direct marketing and the right to object to our processing of your personal data where we are performing a task in the public interest or pursuing our legitimate interests or those of a third party. If we process your personal data based on our legitimate interests or those of a third party, or in the public interest, you can object to this processing, and we will cease processing your personal data, unless the processing is based on compelling legitimate grounds or is needed for legal reasons. Where we use your personal data for direct marketing for our own products and services, you can always object and opt out of future marketing messages using the unsubscribe link in such communications.
- To obtain from us confirmation as to whether your personal data is being processed, and, where that is the case, to request access to details about how we process your personal data and copies of the personal data.
- To transfer or receive a copy of your personal data in a usable and portable format if we process it on the basis of your consent or a contract with you.
- To obtain from us the rectification of inaccurate personal data concerning you.
- To ask us to erase your personal data to the extent it is not required for legally required purposes or an exception to erasure applies under applicable law.
- To withdraw your consent at any time with future effect if we process your personal data on the basis of consent.
- To request restriction of processing of your personal data, in which case, it would be marked and processed by us only for certain purposes.
Docker is subject to the authority of the Federal Trade Commission regarding its adherence to the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF.
You also have the right to lodge a complaint with a supervisory authority, but we encourage you to first contact us with any questions or concerns. You may view a list of supervisory authorities in the EEA, UK and Switzerland and their respective contact information here:
- EEA: https://edpb.europa.eu/about-edpb/board/members_en
- United Kingdom: https://ico.org.uk/global/contact-us/
- Switzerland: https://www.edoeb.admin.ch/edoeb/en/home/the-fdpic/contact.html
Under certain conditions, more fully described on the Data Privacy Framework website, including when other dispute resolution procedures have been exhausted, you may invoke binding arbitration. Under certain conditions, more fully described on the Data Privacy Framework website, including when other dispute resolution procedures have been exhausted, you may invoke binding arbitration.
In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Docker commits to cooperate and comply respectively with the advice of the panel established by the EU data protection authorities (DPAs) and the UK Information Commissioner’s Office (ICO) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF.
You may also contact Docker by emailing [email protected] or by sending postal mail to:
Docker, Inc.
3790 El Camino Real # 1052
Palo Alto, CA 94306
(415) 941-0376
Supplement B – Supplemental Privacy Notice for California Residents
These disclosures supplementing our Privacy Policy are provided by Docker and apply solely to residents of the State of California (“consumers” or “you”) with respect to personal information Docker processes as a business. Any terms defined in the California Consumer Privacy Act of 2018, as amended from time to time, including by the California Privacy Rights Act of 2020 and its implementing regulations (“CCPA”) have the same meaning when used in these disclosures. These disclosures do not reflect our collection, use, or disclosure of California residents’ personal information, or data subject rights, where an exception or exemption under the CCPA applies.
- Personal Information Collected by Docker
We have set out below categories of personal information about California residents we have collected, and as applicable disclosed, for a business purpose in the preceding 12 months. The table is followed by a description of the purposes for which we collected personal information. In the preceding 12 months we did not sell or share for cross context behavioral advertising, the personal information of California residents.
Category of Information | Purpose(s) for Collecting & Disclosing | Recipients of Disclosures for Business Purposes |
Identifiers, such as name, email address, unique identifiers associated with user or user account, IP Address |
|
|
Commercial information, such as purchase details, transaction records, billing information, billing address, payment card details |
|
|
Internet or other electronic network activity information, such as information about your usage of the Services, pseudonymous IDs, clickstream data, device and connection information, browser information, crash data, referring/exit URLs, IP Address |
|
|
Visual information, such as photos or avatars, with your consent, recordings of your attendance at our events |
|
|
Professional or employment information, such as job title, company name, company domain |
|
|
Geolocation data, such as your approximate location, IP address, time zone |
|
|
Sensitive personal information, such as login credentials and passwords |
|
|
- Business or Commercial Purpose for Collecting Personal Information
We use the personal information for the following business purposes:
- To verify your identity;
- To perform the services requested by individuals who register or visit our sites;
- For marketing purposes, such as sending information about Docker and its partners and promoting events;
- To check the financial qualifications of prospective customers and collect payment for the services;
- To operate and improve the our sites;
- To provide personalized information about Docker;
- To process and investigate reports under Docker codes and policies for employees;
- To respond to law enforcement requests and as required by applicable law or court order;
- To prepare for and give effect to any mergers, acquisitions, business sales or similar transactions; and
- To otherwise establish, defend or protect Docker’s rights or interests, including in the context of anticipated or actual litigation with third parties.
We do not have actual knowledge that we sell or share for cross context behavioral advertising, the personal information of California residents under 16 years of age.
- CCPA Rights as amended by the CPRA
As a California resident, you have the following rights under the CCPA:
- The right to know what personal information we have collected about you, including the categories of personal information, the categories of sources from which the personal information is collected, the business or commercial purpose for collecting, selling, or sharing personal information, the categories of third parties to whom we disclose personal information, and the specific pieces of personal information we have collected about you. You may only exercise your right to know twice within a 12-month period.
- The right to delete personal information that we have collected from you, subject to certain exceptions.
- The right to correct inaccurate personal information that we maintain about you.
- The right to opt-out of the sale or sharing of your personal information by us. We do not sell or share for cross-context behavioral advertising any of the categories of personal information that we collect about California residents.
- The right to limit our use and disclosure of sensitive personal information to purposes specified in Cal. Civil Code 1798.121(a). We do not use or disclose sensitive personal information for purposes other than those specified in Cal. Civil Code 1798.121(a).
- The right not to receive discriminatory treatment by the business for the exercise of privacy rights conferred by the CCPA, in violation of California Civil Code § 1798.125, including an employee’s, applicant’s, or independent contractor’s right not to be retaliated against for the exercise of their CCPA rights.
- How to Exercise CCPA Rights
To submit a request to exercise your rights to know, delete or correct, please populate our web form https://preferences.docker.com/privacy/ or call +1 415.941.0376
Verification: Only you, or someone legally authorized to act on your behalf, may make a request related to your personal information. You may designate an authorized agent by taking the steps outlined under “Authorized Agent” further below. In your request or in response to us seeking additional information, you, or your authorized agent, must provide sufficient information to allow us to reasonably verify that you are, in fact, the person whose personal information was collected which will depend on your prior interactions with us and the sensitivity of the personal information being requested. We may ask you for information to verify your identity and, if you do not provide enough information for us to reasonably verify your identity, we will not be able to fulfill your request. We will only use the personal information you provide to us in a request for the purposes of verifying your identity and to fulfill your request.
Authorized Agents: You can designate an authorized agent to make a request under the CCPA on your behalf if:
- The authorized agent is a natural person or a business entity and the agent provides proof that you gave the agent signed permission to submit the request; and
- You directly confirm with Docker that you provided the authorized agent with permission to submit the request.
If you provide an authorized agent with power of attorney pursuant to Probate Code sections 4121 to 4130, it may not be necessary to perform these steps and we will respond to any request from such authorized agent in accordance with the CCPA.
Contact Us
If you have any questions or comments about these disclosures or our practices, please contact us at:
Email address: [email protected]
Phone: +1 415.941.0376
Postal address: Docker Privacy
3790 El Camino Real, # 1052
Palo Alto, CA 94306 USA
Supplement C – Supplemental Privacy Notice for other US States
Depending on your state of residence the following state data privacy laws may apply to you: (i) the Colorado Privacy Act (“CPA”), (ii) the Connecticut Data Privacy Act (“CTDPA”), (iii) the Virginia Consumer Data Protection Act (“VCDPA”) and (iv) the Utah Consumer Privacy Act (“UCPA”). This Addendum describes how Docker, Inc. collects, uses, and shares the personal information of residents of these state residents and how to exercise your rights under these state privacy laws.
If applicable, in addition to the rights provided by the privacy laws in your state of residence, there may be certain exemptions that apply to Docker’s collection of your personal information, including personal information that we’ve collected from or about you that is publicly available. Therefore, the privacy rights described herein may not apply to you or to all your personal information. Docker does not engage in profiling/automated decision making that produces legal or similarly significant effects.
- Personal Information Collected by Docker and Use.
Docker collects certain categories of personal information when you use the Services, including identifiers, internet or other related network activity, commercial information, geolocation data tied to your IP address, and other personal information. A more detailed description of the personal information we collect and how we use it is provided in the ” Services Use and Information Collected,” and “Use of Information Collected” sections of the Privacy Policy.
Docker may collect personal identifiers from you automatically. These identifiers include IP address, device identifiers, advertising ID and other information about your browser or device. We may collect this information via cookies and other tracking technologies and use it to enhance, customize, improve and notify you about our Services. This is further described in the Privacy Policy.
- Sharing of Personal Information.
In connection with providing you the Services, we may share your personal information with third parties and other entities as described in the Privacy Policy.
- Privacy Rights.
Depending on the applicable laws in your state of residence, you may have the right to the following:
- request to confirm whether we process your personal information and to access such personal information;
- request to correct inaccuracies in your personal information;
- request deletion of your personal information, subject to certain exceptions;
- request to obtain a copy of your personal information;
- request to opt-out of processing of personal information for purposes of targeted-advertising;
- request to opt-out of the “sale” of personal information; and
- opt-out of profiling in furtherance of decisions that produce legal or similarly significant effects.
To exercise your applicable rights listed please contact [email protected]. We may need to verify your identity to process your request. If we are unable to verify your identity, we reserve the right to not process your request. If we refuse to take action on a request, we will provide instructions on how you may appeal the decision. We will respond to requests consistent with applicable law.
You may use an authorized agent to submit a request on your behalf, but we may ask your agent to provide information to verify that they have the proper authority to act on your behalf or ask you to verify your identity with us directly. The Exercise of any of your rights will not result in different pricing, service levels, and/or use of any no-fee Services.