Effective Date: Jan 3, 2018
VMware, Inc. and its group companies ("VMware", "we", "us" and "our") are committed to protecting the privacy of our website visitors, customers, business partners, end users, and event attendees.
The following privacy notices explain the different ways in which VMware collects, uses and shares personal information. Please take the time to read the notices carefully.
VMware Privacy Notice: This notice addresses the personal information we collect in the usual course of our business, including through our websites, our products and services (such as in product feedback and surveys), our mobile apps (where linked), and through other means (such as our events, sales and marketing activities).
Applicant Privacy Notice: This notice addresses the personal information we collect in connection with our employment recruiting efforts.
Mobile App Notices: For VMware mobile apps used by VMware for its own purposes (such as the VMworld mobile app or the VMware Partner Central mobile app), the VMware Privacy Notice will apply. To the extent the data collection, use and/or sharing practices of such mobile apps vary from the general notices in the VMWare Privacy Notice, these mobile apps will have their own individual privacy notices which will supplement the VMware Privacy Notice. For more information about the data collection practices of certain mobile apps, review the privacy notice of the VMware mobile app you have installed. For mobile apps developed by VMware but used by our customers or partners for their purposes, you should contact our customer or partner (your organization) to understand their data collection and use practices.
Additional Notices: VMware may provide additional "just-in-time" disclosures or additional information about the data collection, use and sharing practices of those specific websites, mobile apps, products and services. These notices may supplement or clarify VMware's privacy practices or may provide you with additional choices about how VMware processes your data.
VMware Inc. and its group companies ("VMware", "we", "us" and "our") are committed to protecting the privacy of our website visitors, customers, business partners, end users, and event attendees.
This Privacy Notice describes the privacy practices that apply to our collection, use, and disclosure of personal information through the VMware website, products, services and mobile apps (where they link or refer to this Privacy Notice), as well as in connection with our events, sales and marketing activities.
VMware may provide additional "just-in-time" disclosures or additional information about the data collection, use and sharing practices of that specific websites, mobile apps, products and services, and programs. These notices may supplement or clarify the VMware's privacy practices in the circumstances described or may provide you with additional choices about how VMware processes your data.
If you have any questions about this Privacy Notice, please contact us at email@example.com.
We will collect personal information when you voluntarily provide it to us. For example, we collect personal information when you order, register for (or to use), or request information about VMware products or services, subscribe to marketing communications, request support, complete surveys, provide in product feedback, or sign up for a VMware event or webinar. We may also collect personal information from you offline, such as when you attend one of our events, during phone calls with sales representatives, or when you contact customer support. We may use this information in combination with other information we collect about you, as set forth in this Notice.
The personal information we collect may include contact information such as your name, address, telephone number or email address, user IDs and passwords, and contact preferences. It may also include professional information, such as your job title, department or job role, as well as the nature of your request or communication. We also collect information you choose to provide to us when completing any 'free text' boxes in our forms (for example, for event sign-up, product feedback or survey requests). In addition, we may collect personal information disclosed by you on our message boards, chat features, blogs and our other services to which you are able to post information and materials. Any information that is disclosed in those forums becomes public information and may therefore appear in public ways, such as through search engines or other publicly available platforms, and may be “crawled” or searched by third parties. It could also be read, collected or used by other users to send you unsolicited messages. Please do not post any information that you do not want to reveal to the public at large.
When purchasing VMware products or services, we may also collect billing and transactional information.
Examples of how we may use this information include:
We automatically collect certain information when you use or access Online Properties or mobile apps. This information does not necessarily reveal your identity directly but may include information about the specific device you are using, such as the hardware model, operating system version, web-browser software (such as Firefox, Safari, or Internet Explorer) and your Internet Protocol (IP) address/MAC address/device identifier. In some countries, including the European Economic Area, this information may be considered personal information under applicable data protection laws.
We also automatically collect and store certain information in server logs such as: statistics on your activities on the Online Properties or mobile apps; information about how you came to and used the Online Property or mobile app; your IP address; device type and unique device identification numbers, device event information (such as crashes, system activity and hardware settings, browser type, browser language, the date and time of your request and referral URL), broad geographic location (e.g. country or city-level location) and other technical data collected through cookies, pixel tags and other similar technologies that uniquely identify your browser. We may also collect information about how your device has interacted with our website, including pages accessed and links clicked. In some countries, including the European Economic Area, this information may be considered personal information under applicable data protection laws.
Examples of how we may use this information include:
In connection with your organization’s deployment of certain VMware products and services, we may automatically collect certain data relating to the performance and configuration of the VMware products and services, and our customer’s and their end-user's consumption of and interaction and use of such products and services ("Usage Data"). Usage Data is generally technical information obtained from product software or systems hosting the services, devices accessing these products and services and/or log files generated during such use which typically does not directly identify an end-user.
Certain VMware products and services participate in VMware’s customer product experience improvement programs and, depending on the program, our customers may have the ability to limit or control the extent of information collected. Where information is collected in these programs, the information is used by VMware for three core purposes:
Where applicable, customer agreements (including service descriptions), just-in-time notices, or other disclosures contained within the VMware products or services may describe more details about the collection and use of Usage Data by VMware for its own purposes. The technical information and identifiers collected are further described in our Trust & Assurance Center and, in some cases, will depend on the level of program participation selected by the customer.
Usage Data does not include any of a customer's content uploaded to VMware products or services. If you are an individual user of VMware products or services and you require more information regarding our Usage Data collection practices for products and services deployed by your organization, please contact your IT administrator.
From time to time, we may obtain information about you from third party sources as permitted by applicable law, such as public databases, resellers and channel partners, joint marketing partners, social media platforms. Examples of the information we may receive from other sources include: account information, job role and public employment profile, service and support information, information about your product or service interests or preferences, page-view information from some business partners with which we operate co-branded services or joint offerings, and credit history information from credit bureaus. We may use the information we receive from you to better understand you and/or maintain and improve the accuracy of the records we hold about you as well as to position, promote or optimise our products and services. We may also use this information in conjunction with your browsing habits / preferences (as obtained from our data partners) and your contact details, professional information and VMware transaction history (as obtained from our customer relationship management database) to deliver targeted advertising and marketing to you, where permitted by applicable law and in accordance with your advertising / marketing preferences.
We may also obtain information about you from our affiliated companies, including Dell Technologies, Dell EMC, Pivotal, RSA, SecureWorks and VirtuStream (the Dell Family”) and, to the extent involved in the sales and marketing of our collective products and services, their appointed partners.
We will use this information to provide support as well as to enhance our ability to provide relevant marketing, products, services and recommendations to you, and also to help monitor, prevent and detect fraud.
We take care to allow your personal information to be accessed only by those who really need to in order to perform their tasks and duties, and to share with third parties who have a legitimate purpose for accessing it. We may share personal information about you with third parties in the following circumstances:
Personal information, including personal information collected in the European Economic Area ("EEA") or Switzerland, may be transferred, stored and processed by us and our services providers, partners and affiliates in the United States and potentially other countries whose data protection laws may be different to the laws of your country, for example to Canada, The Philippines, Singapore, India, Australia and Israel. We will protect your personal information in accordance with this Privacy Notice wherever it is processed and will take appropriate contractual or other steps to protect the relevant personal information in accordance with applicable laws. These steps include implementing the European Commission's Standard Contractual Clauses for transfers of personal information from our group companies in the EEA to our other group companies. Our Standard Contractual Clauses can be provided upon request. We have implemented similar appropriate safeguards with our service providers, partners and affiliates.
VMware maintains (and requires its service providers to maintain) appropriate organizational and technical measures designed to protect the security and confidentiality of any personal information we process. For example, VMware employs physical access controls, encryption, Internet firewalls, intrusion detection and network monitoring depending on the nature of the information and the scope of processing. VMware staff who may have access to personal information are required to keep that information confidential.
However, no security procedures or protocols are ever guaranteed to be 100% secure and so we encourage you to take care when disclosing personal information online and to use readily available tools, such as Internet firewalls, anti-virus and anti-spyware software, and similar technologies to protect yourself online.
Updating Your Information: If you would like to update personal information that you have provided to us, please logon to myvmware.com and update your profile.
Marketing Communications: You can opt-out of receiving marketing communications from VMware by going to the VMware subscription center at http://info.vmware.com/content/subscription and unsubscribing. You can also opt out by clicking "unsubscribe" in any marketing email communications we send you, or by sending an email to firstname.lastname@example.org.
Additional Rights for the EEA and Certain Other Territories: If you reside in certain territories (such as the European Economic Area), you may have the right to exercise certain privacy rights available to you under applicable laws. We will process your request in accordance with applicable data protection laws. We may need to retain certain information for record-keeping purposes and/or to complete transactions that you began prior to requesting any deletion.
If you would like to exercise any of the above rights, please contact email@example.com so that we may consider your request under applicable law. To protect your privacy and security, we may take steps to verify your identity before complying with the request.
Certain VMware products and services: Certain VMware products and services may be used by our customers to collect personal information about you. In such cases, we are processing such personal information purely on behalf of our customers and any individuals who seek to exercise their rights should first direct their query to our customer (the data controller). See Part 1, section 4, above.
How long we retain your information
We will retain personal information we collect from you where we have a justifiable business need to do so and/or for as long as is needed to fulfill the purposes outlined in this Privacy Notice, unless a longer retention period is required or permitted by law (such as tax, legal, accounting or other purposes). You can request deletion of your personal information at any time (see "Your Privacy Rights" section for further information) and we will consider your request in accordance with applicable laws.
When we have no justifiable business need to process your personal information, we will either delete or anonymize it, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
Our website, products and services are not directed to individuals under the age of 14. We do not knowingly collect personal information from such individuals. If you become aware that a child has provided us with personal information, please contact us at firstname.lastname@example.org. If we become aware that a child under the age of 14 has provided us with personal information, we will take steps to delete such information.
Our website and services may provide links to other websites through direct links or through applications such as "share" or "Like" buttons. Other websites may contain links to the VMware website or services. VMware does not control those sites or their privacy practices, which may differ from VMware's Privacy Notice. We do not endorse or make any representations about third party websites. The personal information you choose to give to unrelated parties is not covered by this Privacy Notice. We encourage you to review the privacy notices found on such other websites, services, and applications to understand how your information may be collected and used.
Changes to this Privacy Notice
VMware will review and update this Privacy Notice periodically in response to changing legal, technical and business developments. When we update this Privacy Notice we will note the date of its most recent revision above. If we make material changes to this Privacy Notice, we will take appropriate measures to inform you in a manner that is consistent with the significance of the changes we make and is in accordance with applicable law. We encourage you to review this Privacy Notice frequently to be informed of how VMware is protecting your information.
California Privacy Rights
A business subject to California Civil Code section 1798.83 is required to disclose to its California customers, upon request, the identity of any third parties to whom the business has disclosed personal information within the previous calendar year, along with the type of personal information disclosed, for the third parties' direct marketing purposes. Please note that under California law, businesses are only required to respond to a customer request once during any calendar year.
In addition, a business subject to California Business and Professions Code Section 22581 must allow California residents under age 18 who are registered users of online sites, services or applications to request and obtain removal of content or information they have publicly posted. Your request should include a detailed description of the specific content or information to be removed. Please be aware that your request does not guarantee complete or comprehensive removal of content or information posted online and that the law may not permit or require removal in certain circumstances.
If you are a California resident and would like to make either type of request described above, please contact us at email@example.com.
If you have any questions or concerns regarding this Privacy Notice, you may write to us at firstname.lastname@example.org or by mail to: Office of the General Counsel of VMware, Inc., 3401 Hillview Ave, Palo Alto, California, 94304, USA.