Cerence Privacy Policy
Cerence collects data through various sources to help us provide the best possible experience for you. To learn about the ways in which we collect, use, and protect Personal Information, as well as your rights in connection with that data, we invite you to visit each Notice listed below.
Effective Date: September 29, 2023
Cerence Global Privacy Notice
Cerence, Inc. (headquartered in the United States) and our global affiliates (“Cerence”, “we”, “us” and “our”) are committed to protecting the privacy of our customers, end users, website visitors, and recipients of marketing communications. This Global Privacy Notice (“Global Privacy Notice”) describes the ways in which Cerence collects, uses, and shares Personal Information when you (1) use or interact with any of our websites, social media pages, online advertisements, or marketing communications (our “Online Sites”), (2) visit our offices or participate in any events, promotions, or other in-person activities (our “Offline Sites”), and (3) use Cerence products and services, including, but not limited to our software and voice recognition technology products and services (our “Products and Services”). The Online Sites and Offline Sites are collectively referred to as our “Sites”.
What Personal Information We Collect
“Personal Information” is information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. We collect Personal Information and other data that you may provide to us through your use of the Sites (both directly and indirectly) or the use of our Products and Services. We also collect Personal Information through Cookies or through other sources.
Information You Provide
We may collect Personal Information when you provide it to us or our third-party service providers. For example, we may collect your Personal Information when you request information, register for an event, subscribe to marketing communications, communicate with us through social media, or communicate with us or our third-party service providers for any other purpose. We may collect contact information including, but not limited to your name, email address, physical address, telephone number, employer, and job title.
Information We Collect Using Cookies and Other Web Analytics Tools
We may automatically collect electronic data from your use of our Sites which use cookies and similar web analytics tools. The Cerence Cookie Notice (below) provides information about how we use cookies and similar web analytics tools.
Information from Other Sources
We may collect or receive information about you from other sources, including, but not limited to service providers, partners, customers, resellers, distributors, or publicly available sources.
How We Use Personal Information
We use Personal Information for the following purposes, except where restricted by applicable law:
Marketing. Cerence may use information to provide you with marketing communications, to deliver targeted advertising, to determine the effectiveness of our marketing and advertising campaigns, to evaluate preferences and interests, to promote our Products and Services, or to interact with you on third-party social networks. Recipients of marketing communications may opt out at any time without detriment.
Facilitate & Analyze Use of the Sites. Cerence may use information to facilitate and analyze your use of the Sites, subject to your consent where required by law.
Business Development. We may use your Personal Information to establish, conduct, and support customer relationships. We use Personal Information of individuals associated with proposed resellers and distributors to conduct background checks ahead of entering into a contract, as necessary, for compliance with legal obligations to which we are subject.
Products and Services. We may use your Personal Information to: provide you with information, products, or services that you request from us; to present our Website and its contents to you; or to fulfill any other purpose for which you provide it.
Other Legitimate Business Purposes. Cerence may use your Personal Information when it is necessary for other legitimate purposes, including, but not limited to protecting our confidential information or protecting the safety of our facilities and employees.
When We Share Personal Information
Service Providers. We may share Personal Information as well as aggregated, anonymous, or non-identifiable electronic data with vendors acting on our behalf. Vendors include service providers who assist with marketing, data analysis, or hosting. We may share Personal Information derived from Sites usage with analytics and search engine providers that assist us in the improvement of our Sites. Please see our Cerence Cookie Notice (below) for additional information.
Business Partners. We may provide your Personal Information to our resellers and distributors, or to vendors acting on our or their behalf, to respond to product or service inquiries and information requests.
Legal Compliance. We may provide Personal Information to comply with law and legal processes, to respond to governmental inquiries and lawful requests from public authorities (including to meet national security or law enforcement requirements), and to protect life, property, or the security of Cerence or its customers.
Corporate Restructuring. We may share your Personal Information if Cerence enters into any merger, acquisition, or asset sale of all or any part of its business. Personal Information held by Cerence may be transferred to a buyer or successor entity.
Other Legitimate Business Activities. Cerence may share your Personal Information when it is necessary for other legitimate purposes, including, but not limited to protecting our confidential information or protecting the safety of our facilities and employees.
Cerence never sells or transfers your Personal Information to third parties for the third party’s marketing purposes.
Control Of Your Personal Information
Marketing Communications. You can change your preferences to opt out of marketing communications at any time without detriment by using (1) the “Unsubscribe” hyperlink found in Cerence email communication, (2) the opt-out instructions found in the relevant communication, or (3) by contacting us at privacy@cerence.com. If you opt out, we will retain your email address to confirm that we do not send you further communications.
Data Rights. The data protection laws applicable to you may provide you with certain rights related to your Personal Information. Specifically, you may have the right to:
• Access your Personal Information,
• Correct any Personal Information that is inaccurate
• Restrict the processing of your Personal Information in certain circumstances,
• Obtain and reuse your Personal Information,
• Object to the processing of your Personal Information, and/or
• Lodge a complaint with a data protection supervisory authority
Please note that although you may request that we delete your Personal Information, there are limitations to that request as may be necessary to fulfil an end-user request or service or as permitted by law.
Exercising Your Rights. If you would like to exercise any of the above rights, please contact us at privacy@cerence.com, and we will review your request.
Request Verification Process. To verify your request, you may need to provide your name, email address, country, and state of residence. Once we receive your request, we will contact you (via the contact information you provide us) with instructions on how to verify your request. You may authorize another person (your agent) to submit a request on your behalf. We will then check our records and complete the request in a time and format consistent with any applicable laws.
Children’s Privacy. Cerence’s webpages are not directed at children or minors under the age of 13. If you believe we may have information from a child under 13, please contact us at privacy@cerence.com.
California residents may have additional privacy rights. Please see the California Privacy Rights Notice (below) for more information.
LOCATION OF PROCESSING AND CROSS-BORDER TRANSFERS
Cerence operates in over 20 countries. We may transfer Personal Information across international borders and may process Personal Information in jurisdictions other than the jurisdiction of the original data collection. Such Personal Information may be transferred, stored, and processed by us and our affiliates and service providers in countries which are not deemed by the European Commission to have an adequate level of protection. Whether your Personal Information is processed within your country of residence or beyond, Cerence complies with applicable data protection laws and appropriate legally recognized data transfer adequacy mechanisms, including the European Commission's Standard Contractual Clauses for transfers of Personal Information from our group companies in the European Economic Area (“EEA”) to our other group companies. Personal Information that is transferred outside your country of residence may be subject to lawful access by courts, law enforcement, and other governmental authorities in accordance with the laws of the foreign jurisdiction.
Personal Information transferred prior to the invalidation of the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks by the European Commission remains subject to the protections of those Frameworks, and Cerence and its affiliates and service providers remain obligated to comply with EU data protection requirements when transferring Personal Information from the EEA to the United States.
If you have any concerns, you may contact us at privacy@cerence.com. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
SECURITY & CONFIDENTIALITY
Cerence maintains a comprehensive data security and privacy program that includes appropriate technical, physical, and organizational measures to protect the security and confidentiality of any Personal Information collected by us or submitted to us, both during transmission and once it is received. Cerence’s security practices have been assessed by independent third-party auditors and certified as ISO 27001 compliant. Please note, if Cerence has issued you a password, you are responsible for keeping the password confidential.
RETENTION PERIOD
We will retain your Personal Information for the period necessary to fulfill the purposes outlined in this Global Privacy Notice or other Cerence Privacy Notices, unless a longer retention period is required or permitted for legal, auditing, or compliance purposes. We may keep certain information for an additional period for quality control purposes.
CHANGES TO THIS GLOBAL PRIVACY NOTICE
Cerence may update this Global Privacy Notice from time to time in response to changing legal requirements and business practices. When we update this Global Privacy Notice we will publish the updated effective date at the top of the page. Please review the latest version of this Global Privacy Notice periodically to keep current with Cerence’s use of Personal Information. If we make material changes, we will publish an update on our Sites to inform you of the proposed change prior to the change becoming effective. Any such material changes will only apply to Personal Information collected after the revised Privacy Statement takes effect. By accessing or using this Website, you agree to this privacy policy.
CONTACT INFORMATION
If you have any questions or concerns regarding this Global Privacy Notice, you may write to us at privacy@cerence.com or by mail to: Office of the General Counsel – Privacy, 1 Burlington Woods, Suite 301A, Burlington, MA,01803, USA.
CERENCE PRODUCTS AND SERVICES PRIVACY NOTICE
This Cerence Products and Services Privacy Notice (“Products and Services Privacy Notice”) describes how Cerence generally collects and processes end user requests through the Cerence Cloud Services (“CCS”) platform or other Products and Services. Use and results may vary depending on customer-specific configurations. Certain terms used in this Policy are defined herein. Other capitalized terms used in this Policy are defined in the Global Privacy Notice.
The CCS platform is Cerence’s multi-tenant, cloud-based speech recognition and infotainment solution. The CCS platform receives end-user requests from a Vehicle Head Unit or a Customer Gateway. The CSS platform processes the requests within the Cerence Runtime Environment, and returns a response to the end user, either directly to the Vehicle Head Unit or through the Customer Gateway.
WHAT INFORMATION WE COLLECT
Cerence may process an end user’s contact list, contact information, a customer-assigned external user ID, spoken requests and commands, uploaded text data, and other data provided by the end user or the customer or derived by us from that data (“Service Data”). Cerence pseudonymizes customer-assigned external user IDs and uses the resulting internal ID so that data can be linked to a single end user without any directly identifying information about that end user. Cerence makes an effort to use anonymized or aggregate Service Data whenever possible.
HOW WE USE PRODUCTS AND SERVICES DATA
Cerence processes Service Data for the following purposes:
• Provide our Products and Services. We may use Service Data to deliver the Products and Services, including third-party services that an end user enables via the CCS, vehicle head units, and application programming interface (APIs). This includes processing to provide responses to end user requests, to ensure services are working as intended, and to detect and avoid outages or other problems.
• Maintain, measure, and improve our Products and Services. We may analyze Service Data to maintain, measure, and improve the performance and functionality of the CCS and other Products and Services.
• Assist customers. We may use Service Data when needed to provide technical support and professional services as requested by our customers.
• Comply with legal obligations and billing. We may need to process Service Data to comply with legal obligations or for billing purposes.
WHEN WE SHARE SERVICE DATA
We do not share Service Data with companies, organizations, or individuals outside of Cerence except in the following cases:
• When a Cerence customer directs us to share with them the Service Data or other related information about the customer’s end users.
• When we have the end user’s consent.
• When processing is needed to deliver the CCS.
• When providing Service Data or other related information to our affiliates or third-party service providers to process it for us based on our instructions, in compliance with this Product Privacy Notice, and other appropriate confidentiality and security measures.
• For legal reasons, if we have a good-faith belief that access, use, preservation, or disclosure of the information is reasonably necessary to comply with applicable law, regulation, legal process, or enforceable governmental request.
CONTROL OF YOUR SERVICE DATA
Cerence generally processes Service Data on behalf of our customers. When acting as a processor, Cerence cannot directly respond to or act upon data subject requests from end users without assistance from the data controller. Therefore, you should contact the data controller directly to submit a data subject rights request.
If you believe that Cerence is the controller of your Service Data and you wish to submit a data subject request, you may send such request to privacy@cerence.com.
LOCATION OF PROCESSING AND CROSS-BORDER TRANSFERS
Cerence operates in over 20 countries. We may transfer Personal Information across international borders and may process Personal Information in jurisdictions other than the jurisdiction of the original data collection. Such Personal Information may be transferred, stored, and processed by us and our affiliates and service providers in countries which are not deemed by the European Commission to have an adequate level of protection. Whether your Personal Information is processed within your country of residence or beyond, Cerence complies with applicable data protection laws and appropriate legally recognized data transfer adequacy mechanisms, including the European Commission’s Standard Contractual Clauses for transfers of Personal Information from our group companies in the EEA to our other group companies. Personal Information that is transferred outside your country of residence may be subject to lawful access by courts, law enforcement and other governmental authorities in accordance with the laws of the foreign jurisdiction.
Personal Information transferred prior to the invalidation of the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks by the European Commission remains subject to the protections of those Frameworks, and Cerence and its affiliates and service providers remain obligated to comply with EU data protection requirements when transferring Personal Information from the EEA to the United States.
If you have any concerns, you may contact us at privacy@cerence.com. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
SECURITY & CONFIDENTIALITY
Cerence maintains a comprehensive data security and privacy program that includes appropriate technical, physical, and organizational measures to protect the security and confidentiality of any Personal Information collected by us or submitted to us, both during transmission and once it is received. Cerence’s security practices have been assessed by independent third-party auditors and certified as ISO 27001 compliant. Please note, if Cerence has issued you a password, you are responsible for keeping the password confidential.
RETENTION PERIOD
We will retain your Personal Information for the period necessary to fulfill the purposes outlined in this Global Privacy Notice or other Cerence Privacy Notices, unless a longer retention period is required or permitted for legal, auditing, or compliance purposes. We may keep certain information for an additional period for quality control purposes.
CHANGES TO THIS GLOBAL PRIVACY NOTICE
Cerence may update this Global Privacy Notice from time to time in response to changing legal requirements and business practices. When we update this Global Privacy Notice we will publish the updated effective date at the top of the page. Please review the latest version of this Global Privacy Notice periodically to keep current with Cerence’s use of Personal Information. If we make material changes, we will publish an update on our Sites to inform you of the proposed change prior to the change becoming effective. Any such material changes will only apply to Personal Information collected after the revised Privacy Statement takes effect. By accessing or using this Website, you agree to this privacy policy.
CONTACT INFORMATION
If you have any questions or concerns regarding this Global Privacy Notice, you may write to us at privacy@cerence.com or by mail to: Office of the General Counsel – Privacy, 1 Burlington Woods, Suite 301A, Burlington, MA, 01803, USA.
CERENCE APPLICANT PRIVACY NOTICE
This Applicant Privacy Notice (“Applicant Privacy Notice”) describes the privacy practices that apply to Cerence’s collection, use, and disclosure of Personal Information received from applicants for employment-related transactions via our Sites or other recruitment methods. Certain terms used in this Policy may be defined herein. Other capitalized terms used in this Policy are defined in the Global Privacy Notice
WHAT INFORMATION WE COLLECT
When you submit an employment application, we may collect the Personal Information you disclose in your application such as your name, email address, phone number, employment history, and education history. We may also collect Personal Information, including employment and education history, from third parties to conduct background and reference checks during the employment application process for employment offers, subject to your consent where it is required by law.
We may also collect certain types of Personal Information deemed sensitive under applicable data protection laws, including, but not limited to, identification numbers, information revealing a person’s racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, physical or mental health or condition, sexual orientation, or criminal history.
We may also collect electronic data from your use of our Sites. This data may include your IP address, date/time stamp, data about your interaction with our Sites, and data collected from our use of cookies and other web tracking technologies. For further information regarding electronic data collection practices, please see the Cerence Cookie Notice (below).
HOW WE USE PERSONAL INFORMATION
Cerence may use the information collected from you to process and review your employment application, to communicate with you about your application and job opportunities, to conduct background and reference checks, and to review and manage our recruitment and hiring practices.
If you are offered and accept employment with Cerence, the Personal Information collected during the job application and recruitment process may become part of your employment record.
Legal Basis
If you are a resident of the European Economic Area (“EEA”) or the United Kingdom (“UK”), our legal basis for collecting, processing, and using the Personal Information described above will depend on the Personal Information concerned and the context in which we collect it. We will collect and/or process your Personal Information only when we have your consent to do so in connection with processing your employment application, evaluating you as an applicant, compliance with legal obligations, or the processing is necessary in connection with our legitimate interests in recruitment and hiring candidates. Our collection, processing, or use of your Personal Information does not override your data protection interests or fundamental rights and freedoms.
If we ask you to provide Personal Information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and let you know whether the provision of your Personal Information is mandatory or not (as well as the possible consequences if you do not provide it). Similarly, if we collect and use your Personal Information Personal Information in reliance on our legitimate interests (or those of a third party) that are not listed above, we will make clear to you at the relevant time what those legitimate interests are.
WHEN WE SHARE PERSONAL INFORMATION
Cerence only discloses your Personal Information to those who need it to perform their tasks and duties and to third parties who have a legitimate purpose for accessing it. We may share your Personal Information under the following circumstances:
• Cerence affiliates and subsidiaries. We may share your information with our parent companies, subsidiaries and/or affiliates. This information will only be shared to the extent necessary in connection with your recruitment and employment as described in this Applicant Privacy Notice.
• Third parties. We may share your Personal Information with service providers, business partners, recruiters, consultants, attorneys in connection with recruiting, employment, acquisitions, and legal requirements.
• Potential buyers, their agents, and advisors. We may share your Personal Information in connection with, or during negotiations of, any merger, sale of company assets, financing, acquisition, dissolution, corporate reorganization, or similar event. We will inform any buyer that your information shall only be used in accordance with this Applicant Privacy Notice.
• With your consent. We may disclose your Personal Information for any purpose with your consent.
CONTROL OF YOUR PERSONAL INFORMATION
The data protection laws applicable to you may provide you with certain rights related to your Personal Information. Specifically, you may have the right to:
• Access your Personal Information,
• Correct any Personal Information that is inaccurate,
• Have your Personal Information erased in certain circumstances,
• Restrict the processing of your Personal Information in certain circumstances,
• Obtain and reuse your Personal Information,
• Object to the processing of your Personal Information, and/or
• Lodge a complaint with a data protection supervisory authority
If you would like to exercise any of the above rights, please contact us at privacy@cerence.com and we will review your request.
Request Verification Process. To verify your request, you may need to provide your name, email address, country, and state of residence. Once we receive your request, we will contact you (via the contact information you provide us) with instructions on how to verify your request. You may authorize another person (your agent) to submit a request on your behalf. We will then check our records and complete the request in a time and format consistent with any applicable laws.
California residents may have additional privacy rights. Please see the California Privacy Rights Notice (below) for more information.
LOCATION OF PROCESSING AND CROSS-BORDER TRANSFERS
Cerence operates in over 20 countries. We may transfer Personal Information across international borders and may process Personal Information in jurisdictions other than the jurisdiction of the original data collection. Such Personal Information may be transferred, stored, and processed by us and our affiliates and service providers in countries which are not deemed by the European Commission to have an adequate level of protection. Whether your Personal Information is processed within your country of residence or beyond, Cerence complies with applicable data protection laws and appropriate legally recognized data transfer adequacy mechanisms, including the European Commission's Standard Contractual Clauses for transfers of Personal Information from our group companies in the European Economic Area (“EEA”) to our other group companies.Personal Information that is transferred outside your country of residence may be subject to lawful access by courts, law enforcement, and other governmental authorities in accordance with the laws of the foreign jurisdiction.
Personal Information transferred prior to the invalidation of the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks by the European Commission remains subject to the protections of those Frameworks, and Cerence and its affiliates and service providers remain obligated to comply with EU data protection requirements when transferring Personal Information from the EEA to the United States.
If you have any concerns, you may contact us at privacy@cerence.com. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
SECURITY & CONFIDENTIALITY
Cerence maintains a comprehensive data security and privacy program that includes appropriate technical, physical, and organizational measures to protect the security and confidentiality of any Personal Information collected by us or submitted to us, both during transmission and once it is received. Cerence’s security practices have been assessed by independent third-party auditors and certified as ISO 27001 compliant. Please note, if Cerence has issued you a password, you are responsible for keeping the password confidential.
CHANGES TO THIS APPLICANT PRIVACY NOTICE
Cerence may update this Applicant Privacy Notice from time to time in response to changing legal requirements and business practices. When we update this Applicant Privacy Notice we will publish the updated effective date at the top of the page. Please review the latest version of this Applicant Privacy Notice periodically to keep current with Cerence’s use of Personal Information. If we make material changes to this Applicant Privacy Notice, Cerence will publish a notice on our Sites and notify you by email. Any such material changes will only apply to Personal Information that is collected after the revised Applicant Privacy Notice takes effect.
CONTACT INFORMATION
If you have any questions or concerns regarding this Applicant Privacy Notice, you may write to us at privacy@cerence.com or by mail to: Office of the General Counsel – Privacy, 1 Burlington Woods, Suite 301A, Burlington, MA, 01803, USA.
CERENCE COOKIE NOTICE
When you use our Sites (“Sites” as defined in the Global Privacy Policy), we may store cookies on your web browser. This Cookie Notice explains what a cookie is, the type of cookies that may be on our website, and how you may manage your cookies. Certain terms used in this Policy may be defined herein. Other capitalized terms used in this Policy are defined in the Global Privacy Notice
WHAT ARE COOKIES
Cookies are small data files placed on your device when you visit a website. Cookies are on most websites and are stored by your web browser on the computer, phone, or other device you may use to visit our Sites. Cookies collect certain data such as your IP address, date/time stamp, and data about your interaction with our Sites.
MANAGING COOKIES
We may use cookies and similar technologies to:
• Manage the experience on our Sites. Use of cookies enables us to remember you when you return to the Sites and to store your preferences such as your language choice or job search criteria to display relevant results.
• Authenticate access to secure areas of our Sites such as your account or event registration.
• Improve the Sites or services by using analytics to understand traffic patterns so we can find popular site content and potential problems.
• Partner with third party advertising networks who use cookies to help us display our advertising on the Sites or to enable us to advertise to provide you with advertising based upon your browsing activities and interests.
We use several types of cookies on the Sites:
• Essential cookies. These cookies are required for you to view the Sites and cannot be switched off. They are required for the Sites to operate and for us to provide you with the requested service. Essential cookies perform functions such as remembering language preferences and keeping users logged in as they navigate the Sites.
• Functional cookies. These cookies are used to improve the performance and functionality of the Sites and to provide personal features or preferences.
• Advertising cookies. These cookies are used by Cerence or third parties to build a profile of your interests and provide you with targeted content. Advertising cookies perform functions such as selecting advertisements and ensuring proper display of advertisements.
HOW WE USE COOKIES
When you visit our Sites, you have the right to decide whether to accept or reject non-essential cookies. You can also control our use of cookies through your browser controls. If you do reject certain cookies, some functionalities and features of the Sites may be restricted.
If you wish to opt out of interest-based advertising click here if located in the US or click here if located in the European Union. Please note you will continue to receive generic ads.
Our Sites may use Google Analytics. Google describes how it collects and processes data when delivering Google Analytics and explains how you can control the information collected at: www.google.com/policies/privacy/partners/. Google also provides a Google Analytics Opt-out browser add-on available at https://tools.google.com/dlpage/gaoptout.
In addition, most web browsers let you choose whether to accept cookies. Most also let you delete cookies already set. The choices available, and the mechanism used, will vary from browser to browser. Such browser settings are typically found in the “options”, “tools” or “preferences” menu. You may also consult the browser’s “help” menu. For your convenience, below find a list of commonly-used browsers and their cookie management information pages.
Cookie settings in Internet Explorer
Cookie settings in Firefox
Cookie settings in Chrome
Cookie settings in Safari
CHANGES TO THIS COOKIE NOTICE
Cerence may update this Cookie Notice from time to time in response to changing legal requirements and business practices. When we update this Cookie Notice we will publish the updated effective date at the top of the Cookie Notice.
CONTACT INFORMATION
If you have any questions or concerns regarding this Cookie Notice, you may write to us at privacy@cerence.com or by mail to: Office of the General Counsel – Privacy, 1 Burlington Woods, Suite 301A, Burlington, MA, 01803, USA.
CERENCE CALIFORNIA RESIDENTS PRIVACY NOTICE
This California Residents Privacy Notice (the “California Privacy Notice”) supplements the information contained in the Cerence Global Privacy Notice and applies solely to visitors, users, and others who reside in the state of California (“Consumers” or “You”). We adopt this notice to comply with the California Consumer Privacy Act of 2018 (“CCPA”), California Privacy Rights Act (“CPRA”), and other applicable California privacy laws. Any terms defined in the CCPA or CPRA have the same meaning when used in this California Privacy Notice. This California Privacy Notice describes the categories of Personal Information Cerence has collected, the categories of Personal Information Cerence has disclosed, the categories of Personal Information Cerence has sold (if any), and a description of California consumer’s rights. Certain terms used in this Policy are defined herein. Other capitalized terms used in this Policy are defined in the Global Privacy Notice.
The Product Privacy Notice addresses our practices regarding the Personal Information we process as a service provider in connection with your use of CCS or other services.
SHINE THE LIGHT
California law permits customers who are California residents to request certain information regarding our disclosure of certain categories of Personal Information to third parties for their direct marketing purposes in the past year. To make such a request, please contact us at privacy@cerence.com.
PERSONAL INFORMATION WE COLLECT
“Personal Information” (defined in the Global Policy) is information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person. Cerence has collected the following categories of Personal Information in the preceding twelve (12) months:
| Examples | |
| Identifiers | Real name, postal address, Internet Protocol address, email address, social media handles, or unique identifiers (such as those assigned in cookies) Social Security number, driver’s license number, passport number, or other similar identifiers |
| Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)) | A name, signature, address, telephone number, education, employment, billing and transactions information. |
| Protected classification characteristics under California or federal law | Age, ethnicity, citizenship, religion or creed, marital status, physical illness, mental illness or disabilities, gender, veteran status |
| Commercial information | Commercial information Records and history of products or services purchased or considered. |
| Sensitive Personal Information | Driver's license number, state identification number, passport number, or other government issued identifiers; payment information (payment card numbers or financial account information) |
| Internet or other similar network activity | Access history and information on your interaction with our application. |
| Geolocation data | Access history and information on your interaction with our application. |
| Professional or employment-related information | Job title, employer name. |
SOURCES OF PERSONAL INFORMATION
Please see the section “What Personal Information We Collect” in the Global Privacy Notice and the section “What Information We Collect” in both the Products and Services Privacy Notice and the Applicant Privacy Notice for information on sources of Personal Information.
USE OF PERSONAL INFORMATION
Please see the section “How We Use Personal Information” in the Global Privacy Notice, the Products and Services Privacy Notice, and the Applicant Privacy Notice.
DISCLOSURE OF PERSONAL INFORMATION
We may disclose your Personal Information to a third party for a business purpose pursuant to a contract that requires that party to keep that Personal Information confidential and to use it solely for the purpose of performing the contract.
In the preceding twelve (12) months, we have disclosed the following categories of Personal Information for a business purpose:
Identifiers
California Customer Records Personal Information categories
Protected classification characteristics under California or federal law
Commercial information
Sensitive Personal Information
Internet or other similar network activity
Geolocation data
Professional or employment-related information
There are three categories of third parties to whom we disclose your Personal Information for a business purpose:
• Our subsidiaries and affiliates
• Service providers
• Our business partners
SALE OF PERSONAL INFORMATION
In the preceding twelve (12) months, we have not sold any Personal Information.
YOUR RIGHTS AND CHOICES
The CCPA provides consumers who are California residents with specific rights regarding their Personal Information.
Access to Specific Information and Data Portability Rights
You have the right to request that we disclose certain information to you about our collection and use of your Personal Information over the preceding 12 months. Once we receive and confirm your request, we will disclose to you:
• The categories of Personal Information we collected about you.
• The categories of sources from which we collected the Personal Information about you.
• Our business or commercial purpose for collecting or disclosing that Personal Information.
• The categories of third parties with whom we share that Personal Information.
• The specific pieces of Personal Information we collected about you.
Deletion Request Rights
You have the right to request the deletion of your Personal Information we have collected from you or received about you. This right may be subject to certain conditions and limitations under the law. Once we receive and confirm your consumer request, we will delete (and direct our service providers to delete) your Personal Information from our records, unless an exception applies.
Exercising Access, Data Portability, and Deletion Rights
To exercise the access, data portability, and deletion rights described above, please submit a verifiable consumer request to us by sending an email to privacy@cerence.com.
Request Verification Process. To verify your request, you may need to provide your name, email address, country, and state of residence. Once we receive your request, we will contact you (via the contact information you provide us) with instructions on how to verify your request. You may authorize another person (your agent) to submit a request on your behalf. We will then check our records and complete the request in a time and format consistent with any applicable laws.
NON-DISCRIMINATION
You may always exercise all of the above rights and Cerence will not unlawfully discriminate against you for exercising your rights under the CCPA.
CHANGES TO THIS PRIVACY NOTICE
Cerence may update this California Residents Privacy Notice from time to time in response to changing legal requirements and business practices. When we update California Residents Privacy Notice we will publish the updated effective date at the top of this notice.
CONTACT INFORMATION
If you have any questions or comments about this Privacy Notice or our Privacy Policy, or if you wish to exercise your rights under California law, you may contact us via email at privacy@cerence.com or by mail to: Office of the General Counsel – Privacy, 1 Burlington Woods, Suite 301A, Burlington, MA, 01803, USA.