GARTNER PRIVACY POLICY

This Notice sets out how we will collect and use personal information, and the choices and rights available to you in connection with our use of your personal information.

This Notice describes our practices when using your information when you: 

1. express an interest in or have signed up for our events or products including newsletters, apps, extensions, webinars and e-books, activate your Gartner user account and/or license;
2. attend a Gartner event; or
3. visit our websites (including our public website and member-based websites) or social media sites.
   

This Notice also applies to information we collect from you via our survey or diagnostic tools. You may be shown an additional confidentiality notice before participating in a survey or diagnostic. Please note that in cases where the terms of any such survey- or diagnostic-specific confidentiality notice conflict with any terms in this Notice, the survey or diagnostic-specific confidentiality terms will take precedence over the terms in this Notice.

If you participate in the Shared Services Leadership Council, please refer to the information in the section below for Shared Services-specific terms.

This Notice will apply whether you have provided the information directly to us or we have obtained it from a different source, such as a third party.

Certain types of personal information are more sensitive than others. This includes information about health, disability, race, ethnicity, criminal offences (or alleged offences), political opinions, biometric information or religion. It is voluntary for you to disclose this information, but where we collect and receive these types of information about you, we have identified the type of special information, how we will use it and why we will use it.

Where legitimate interests are mentioned above, a legitimate interest will only apply where we consider that your interests or rights which require protection of your personal data do not override our legitimate interests. If you require further information regarding our legitimate interests as applied to your personal information, you may contact our Data Protection Officer.

Our websites and online services are for individuals who are at least 18 years of age. Our online services are not designed to be used by individuals under the age of 18.

In certain circumstances, if you do not provide personal information which is required (for example, in relation to activating your Gartner license), we will not be able to perform our obligations under the contract with you or may not be able to provide you with products and services. We will make it clear if and when this situation arises and what the consequences of not providing the information will be. 

Communication with Colleagues

You may use the send-to-colleague functionality on some of our sites or apps to send your colleagues information from Gartner or its subsidiaries. In order to fulfil this request, we will ask you for your and your colleagues' names and email addresses. We do not retain this data after the email is sent. Please be aware that your name and e-mail address may be included in the communication sent to your colleague.

My Favorites

The My Favorites feature of the member websites allows clients to save content available to the member’s Favorites list, add labels, tags, and notes to saved content, and share content and notes with, and receive content and notes from, other clients. We may review information about your use of My Favorites, including the content you save, folders you create, any tags, labels, or notes you add to your saved content or folders you have created, and any content that you share, and use such information to recommend content, tools, or other Gartner services we think may be of interest to you. Information about your use of My Favorites will only be accessible to Gartner and will not be visible to or otherwise shared with other Gartner clients unless you choose to share it.

Restricted Areas

If you access the Restricted Areas of any of our sites (via browser or a Gartner app), we may collect information about your access to and use of research materials, decision-support tools, and other online and offline resources we offer.

We may disclose your personal information to third parties as follows:

• To Gartner group companies in order to process the data for the above mentioned purposes;
•  When we have your consent or authorization to do so, e.g., when you have allowed an event sponsor to scan your attendee badge;
• To third parties who work on our behalf to service or maintain business contact databases and other IT systems, such as suppliers of the IT systems which we use to process personal information, or who provide other technical services, such as printing;
• To third parties providing services to us who have a need to access your information, such as our professional advisors (e.g. auditors and lawyers) or venues for our events;
• To comply with applicable laws, protect rights, safety and property, and respond to lawful requests from public authorities (such as disclosing data in appropriate situations for national security or law enforcement purposes);
• Subject to applicable law, in the event that Gartner is merged, sold, or in the event of a transfer of some or all of our assets (including in bankruptcy), or in the event of another corporate change, in connection with such a transaction, or for pre-transaction review in relation to such transactions.

Your personal information may be shared if we anonymize and/or aggregate it, as in these circumstances the information will cease to be personal information.

Utilization Information

We may share information with our organizational clients about how their employees use the sites and the resources available to them through the sites (e.g. how employees used certain features of the sites, utilization trends, which features were most popular with the member’s employees).

Gartner is a global company and, as such, we may transfer personal information to other Gartner group companies or suppliers outside your home jurisdiction. Gartner will take all reasonable steps to ensure that personal information is protected and any such transfers comply with applicable law.

Gartner may transfer and maintain the personal information of individuals covered by this Notice on servers or databases outside the European Economic Area (EEA). Some of these countries may not have the equivalent level of protection under their data protection laws as in the EEA.

The countries to which we transfer data outside of the EEA may include any of the countries in which Gartner does business. A list of Gartner office locations can be found here.

All Gartner entities have signed an Intragroup Agreement containing the European Union (“EU”) Commission Approved Standard Contractual Clauses for the transfer of data outside the European Economic Area. All Gartner entities have the same technical, physical, and administrative security controls and are required to comply with our data protection policies and procedures, applicable laws, and the terms of our client and member contracts governing the collection and use of information.

Privacy Shield.  Gartner, Inc. and its wholly-owned subsidiary CEB Inc. comply with the EU-US and Swiss-US Privacy Shield Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of information from European Union and Switzerland to the United States, and is subject to the investigatory and enforcement powers of the United States Federal Trade Commission. Gartner has certified to the U.S. Department of Commerce that it adheres to the Privacy Shield Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement and Liability. If there is any conflict between the policies in this Notice and the Privacy Shield Principles, the Privacy Shield Principles shall govern.  To learn more about the Privacy Shield program and to view our certification, please visit https://www.privacyshield.gov/.

Gartner’s accountability for information that we receive under the Privacy Shield and subsequently transfer to a third party is described in the Privacy Shield Principles. In particular, we remain responsible and liable under the Privacy Shield Principles if third-party agents that we engage to process the information on our behalf do so in a manner inconsistent with the Principles, unless we prove that we are not responsible for the event giving rise to the damage.

We will retain your personal information for as long as required to perform the purposes for which the data was collected, depending on the legal basis for which that data was obtained and/or whether additional legal/regulatory obligations mandate that we retain your personal information.  We may also retain personal information for the period during which a claim may be made in relation to our dealings with you.  

In general terms, this will mean that your personal data will be kept for the duration of our relationship with you and:

• the period required by tax and company laws and regulations; and
• as long as it is necessary for you to be able to bring a claim against us and for us to be able to defend ourselves against any legal claims. This will generally be the length of the relationship plus the length of any applicable statutory limitation period under local laws. 

We believe it is important to give you choices about the use of your information. We will use your information as described in this Policy (or any other event- or service-specific Privacy Policy). If we want to use your information for a purpose not described in this Policy, we will first get your consent to do so.

Marketing Communications

We will respect your wishes not to receive marketing communications. You can change your marketing preferences by contacting us at the address here. If you gave us your email address to receive marketing communications, you can opt out at any time by using the unsubscribe links or instructions included at the bottom of our emails. Please note that we will continue to send you service-related communications regardless of any opt-out request. We will not sell or share your information or information with third parties (other than our subsidiaries or affiliates) for their own promotional or marketing purposes unless you give us consent to do so and where permitted by applicable law.

Gartner Everywhere

Gartner Everywhere is an extension for Google Chrome that allows clients to customize their Gartner experience by providing them with Gartner research applicable to the websites they are browsing in real-time via an easy to access pop-up in their browser. You can easily disable the extension and its collection of URLs by doing the following: 

1. Click the extension Gartner Everywhere button on the top of the browser window.
2. Click the green toggle button to switch off.
3. Select the duration that you would like to switch off the extension for.
4. The extension will be automatically activated after the selected time period.

Events

When you attend one of our events, you will be issued an events badge with an RFID chip, which has a unique identifier that can be scanned from various distances. If you select an RFID-enabled badge, we may use it to track your location around our event sites so we can better understand your areas of interest. If you do not want us to track your location, you may obtain a non-RFID enabled badge by asking Events staff at the registration desk.

You may choose to share your contact details with our event sponsors by allowing them to scan your event badge. Our sponsors’ use of any information you choose to share with them in this way is governed by each sponsor’s Privacy Policy.

California Online Privacy Protection Act Notice Concerning Do Not Track Signals

Do Not Track (“DNT”) is a privacy preference that users can set in certain web browsers. We do not recognize or respond to browser-related DNT signals, as the industry is currently working toward a common approach to responding to DNT. To learn more about Do Not Track, please click here.

You have certain rights, in certain circumstances, in relation to your personal information. A summary of each right and how an individual can take steps to exercise it is set out below. If you wish to exercise any of these rights, please contact us using the contact details specified above for the Data Protection Officer. Such requests should include appropriate identity verification information (such as your name, address, email address or other information reasonably required).

Where we receive a request to exercise one of these rights, we shall provide information on the action we take on the request without undue delay and in any event within one month of receipt of the request. This may be extended by a further two months in certain circumstances, for example where requests are complex or numerous.

The information will be provided free of charge, except where requests are manifestly unfounded or excessive, in particular because of their repetitive character. In these circumstances we may charge a reasonable fee or may refuse to act on the request. We will advise you of any fees prior to proceeding with a request.

We may ask for additional information to verify your identity before carrying out a request.

Where we do not carry out a request, we shall inform you without delay and within one month of receipt of the request, providing our reasons for not taking the action requested.

We have implemented administrative, technical, and physical security measures to help prevent unauthorized access. Despite these measures, no data transmission over the Internet can be entirely secure, and we cannot and do not guarantee or warrant the security of any information you transmit via our websites or apps. Please note that you are responsible for maintaining the security of your credentials used to access any Gartner service or account, and you must report suspected unauthorized activity to us.

We make efforts to restrict access to information to only those employees, contractors, and agents who need such access in order to operate, develop, improve, or deliver our programs, products, and services.

A cookie is a small text file which includes a unique identifier that is sent by a web server to the browser on your computer, mobile phone or any other internet enabled device when you visit an on-line site. Cookies and similar technologies are widely used to make websites work efficiently and to collect information about your online preferences.  For simplicity, we refer to all these technologies as "cookies".

Some of our website pages may contain electronic images known as web beacons (also known as clear gifs, tags or pixels) that allow us to count users who have visited our pages. Web beacons collect only limited information, e.g. a cookie number, time and date of a page view, and a description of the page on which the web beacon resides. We may also carry web beacons placed by third party advertisers. These beacons do not carry any information that could directly identify you.

More detailed information on how we use cookies and other web technologies can be found here.

The Shared Services Leadership Council (“Shared Services”) prides itself in facilitating clients’ connections with one another. If you use the Shared Services site, you agree to provide and share with other Shared Services users certain pieces of contact information which may include your name, job title, organization's name, business email address, phone number, and your business address.

Shared Services encourages clients to participate in surveys, including Process Surveys and ASK Questions. If you participate in a Process Survey, your company name will be attributed to the quartile in which your response to the question falls and/or your response to the question. If you use the ASK question feature, your company name and individual name will attributed to that question. If you respond to an ASK Question, your company name and individual name will appear next to your response, and/or to any comments that are added to an ASK question. 

To provide increased value to you, we provide links to other websites or resources that are not part of the products, programs, or services run by Gartner. We do not control these websites or their privacy practices, and any information you provide to these sites is subject to the Privacy Policies of those sites and not this Notice.

Subject to certain limits under California Civil Code § 1798.83, California residents may request certain information regarding our disclosure of information to third parties or their direct marketing purposes. To make such a request, please contact us as specified at the beginning of this Privacy Policy.

From time to time, we may change and/or update this Notice. If this Notice changes in any way, we will post an updated version on this website. We recommend you regularly review this website to ensure that you are always aware of our information practices and any changes to such. Any changes to this Notice will go into effect on posting to this page.