Last Updated: 4-April-2022
We may collect information from or about you, such as:
To the extent permitted by applicable law, we may also combine information you provide to us, either via our Site or via another means (such as at a trade show) with publicly-available information, such as your organization’s name.
Information Collected by Automated Means. We may collect certain information about you by automated means, such as your MAC address, IP address, computer type, screen resolution, OS version, and browser type and version. This information is collected by most websites and is used to optimize your experience on the Site.
We may also use web beacons on our Site and in email communications. Web beacons, also known as clear GIFs or single-pixel GIFs, are small image files that we, or our third-party service providers, place on our Site and in emails. Alongside cookies, web beacons allow us to accurately count the number of unique users who have visited a specific page on the Site, or opened or acted upon an email. This information allows us to measure the performance of our Site and our email campaigns.
Do Not Track. The Site does not recognize a “do not track” setting (or similar mechanism) from your browser to indicate that you do not wish to be tracked or to receive interest-based ads. Please see our Cookies Notice for more information including how to exercise your rights to opt-out of cookies, analytics, and personalized advertising.
To the extent permitted by applicable law, we may use the information collected about you for the following purposes or in the following ways:
To the extent permitted by applicable law, we may share personal information as follows:
Forums. We may enable you to post information to certain parts of the Site (collectively, the “Forums”). Please note that any information you disclose through any Forum will be publicly available. We urge you to exercise discretion and caution when deciding to disclose personal information, or any other information, via any Forum. We are not responsible for the use of any personal information you disclose through any Forum. To request removal of your personal information from a Forum, contact us at firstname.lastname@example.org. We will let you know if we are not able to remove your personal information.
Cross-Device Tracking. When you use your mobile device to interact with the Site, we may receive information about your mobile device, including a unique identifier for your device. We and our service providers and third parties we collaborate with, including ad networks, may use cross-device/cross-context tracking. For example, you might use multiple browsers on a single device, or use various devices (such as desktops, smartphones and tablets), which can result in your having multiple accounts or profiles across these various contexts and devices. Cross-device/cross-context technology may be used to connect these various accounts or profiles and the corresponding data from the different contexts and devices.
European Residents: If you are a resident of the European Union (the “EU”), the European Economic Area or Switzerland or the United Kingdom, please see our Additional Privacy Notice for Certain European Residents and our Privacy Shield Notice below.
In some of the countries to which we transfer personal data, like the United States, the privacy and data protection laws and rules regarding when government authorities may access data may vary from those of your country. The United States data protection framework is comprised of state laws and sector-specific regulations based on entity type - like banks or credit bureaus - or the information type - like financial information or electronic medical records. As such, not all information at the state level is treated similarly.
No matter where your personal information is transferred, stored or processed by us, we will take reasonable steps to safeguard the privacy of your personal information. These steps may include implementing encryption when the information is outside of our networks and during transfer, standard contractual clauses where recognized by law, obtaining your consent for that purpose or relying on other lawful means of transferring personal information and restricting or limiting access to that information. By using the Website, you consent to this transfer.
Opt-Out. If you no longer wish to receive marketing-related emails from us, or you prefer that we not share personal information about you in the future with our affiliates and/or with third parties, you may opt out by following the “unsubscribe” instructions in the latest such message you have received or by contacting us at email@example.com. Please specify whether you are opting out of receiving messages from us or from us sharing your information with our affiliates and third parties.
We will endeavor to comply with your request as soon as reasonably practicable. If you opt out as described above, we will not be able to remove your personal information from the databases of third parties with whom your personal information has already been shared. If you wish to cease receiving marketing-related emails from such third parties, please contact them directly.
Use of the Site by Children. The Site is not directed to children under the age of 16. Children under the age of 16 should not provide personal information through the Site. If you become aware that a child has provided us with personal information, please contact us at firstname.lastname@example.org.
You may request, and we will provide you with, information about whether we hold any of your personal information. You may request access to, or correction or deletion of your personal information, by contacting us at email@example.com. We will respond to your request within a reasonable timeframe.
Personal Data and Processing. For the purposes of this additional notice:
“Personal Data” means any information relating to an identified or identifiable natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of such natural person.
“Processing” means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Our lawful bases for the Processing of Personal Data are: (i) consent and/or (ii) any other applicable lawful bases, such as our legitimate interest in engaging in commerce, offering products and services of value to the users of the Site, preventing fraud, ensuring information and network security, direct marketing and complying with industry practices.
Compelled Disclosures. Brightcove may be required to disclose Personal Data in response to lawful requests by public authorities, including disclosures necessary to meet national security or law enforcement requirements, or pursuant to judicial orders.
Given the judgment of the Court of Justice of the European Union dated 16 July 2020 which invalidated the adequacy of the Privacy Shield Framework, we are increasingly relying on the European Commission Standard Contractual Clauses as a transfer compliance mechanism. We also continue to process relevant Personal Data in line with our obligations under the Privacy Shield Framework. For further information, please see our Privacy Shield Notice below.
Additional Rights for European Residents. As a resident of the EU or a country following substantially-similar legislation regarding the protection of Personal Data, you may have one or more of the following additional rights available to you:
Access. To request a copy of the Personal Data we have collected about you by contacting us at firstname.lastname@example.org.
Rectification & Erasure. To request that we correct or delete any Personal Data about you that is incomplete, incorrect, unnecessary or outdated.
Objection. To object, at any time, to Personal Data about you being Processed for direct marketing purposes.
Restriction of Processing. To request restriction of Processing of Personal Data about you for certain reasons, such as, if you consider Personal Data about you collected by us to be inaccurate or if you have objected to the Processing in accordance with your rights under Data Protection Laws and Regulations.
Data Portability. To request and receive the Personal Data we have collected about you in a commonly used and machine-readable form.
Right to Withdraw Consent. If Personal Data about you is Processed solely based on your consent and not for any other lawful basis, to withdraw your consent at any time, without affecting the lawfulness of our Processing based on such consent before it was withdrawn, including Processing related to existing contracts for Brightcove Services.
Right to Lodge a Complaint with a DPA. If you believe our Processing of Personal Data about you is inconsistent with the applicable data protection laws, to lodge a complaint with your local supervisory data protection authority (“DPA”).
To exercise any of the above-listed rights (with the exception of the right to lodge a complaint with a DPA, which you may do directly to a DPA), please contact us at email@example.com. We will process any requests in accordance with applicable law and within a reasonable period of time. We may need to verify your identity before processing your request.
Canadian residents may have additional rights under Canadian law. Please see the information provided by the Office of the Privacy Commissioner of Canada for additional details.
EU-U.S. and Swiss-U.S. Privacy Shield Notice. We have certified our compliance with the EU-U.S. Privacy Shield and the Swiss-U.S. Privacy Shield (collectively, the “Privacy Shield Framework”) with respect to the Personal Data of users of the Site who are residents of the European Union (“EU”), European Economic Area (“EEA”), the United Kingdom and Switzerland that we receive and process through the Site. We certify that we adhere to the Privacy Shield Framework principles of notice, choice, onward transfer, security, data integrity, access and enforcement (the “Privacy Shield Principles”) for Personal Data of users of the Site in the countries participating in the Privacy Shield Framework. We are responsible for the processing of personal data we receive under the Privacy Shield Framework and subsequently transfer to a third party agent, and may be liable for onward transfers in violation of the Privacy Shield Principles. Our certification is available here. We may also process Personal Data relating to individuals in Europe via other compliance mechanisms, including use of the European Commission Standard Contractual Clauses.
Questions and Complaints. If you are a resident of a country participating in the Privacy Shield Framework, you may direct any questions or complaints concerning our Privacy Shield compliance to our Privacy Shield and Data Protection Contact listed below. We will work with you to resolve your issue.
If you have not received timely response to your concern relating to data processed under the Privacy Shield Framework, or we have not addressed your concern satisfactorily, you may contact our U.S.-based dispute resolution provider, at no cost to you, at https://feedback-form.truste.com/watchdog/request. If neither Brightcove nor our independent dispute resolution provider resolves your complaint, you may have the right to invoke binding arbitration through the Privacy Shield panel. However, prior to initiating such arbitration, a resident of a country participating in the Privacy Shield Framework must first: (1) contact us and afford us the opportunity to resolve the issue; (2) seek assistance from our designated independent dispute resolution provider; and (3) contact the U.S. Department of Commerce (either directly or through a European DPA) and afford the Department of Commerce time to attempt to resolve the issue. If a resident invokes binding arbitration, each party shall be responsible for its own attorney’s fees. Pursuant to the Privacy Shield Framework, the arbitrator(s) may impose only individual-specific, non-monetary, equitable relief necessary to remedy any violation of the Privacy Shield Principles with respect to the resident.
U.S. Federal Trade Commission Enforcement. Brightcove’s commitments under the Privacy Shield Framework are subject to the investigatory and enforcement powers of the United States Federal Trade Commission.
Privacy Shield and Data Protection Contact. Your Privacy Shield and Data Protection Contact for the personal data that we process in connection with the Site is:
Attn: Chief Privacy Officer
281 Summer Street
Boston, MA 02210
Phone: +1 617 500 4947
Please include sufficient information so we can understand and respond to your specific question.
The security of personal information that Brightcove collects from Site users is of great importance to Brightcove. We use organizational, technical, and administrative measures to protect personal information under our control. No data transmission over the Internet or data storage system, however, can be guaranteed to be 100% secure. When you submit personal information via a lead form on the Site (such as name, phone number, and email address), we encrypt the transmission of that data. If you have any questions about the security of your personal information, you can contact us at firstname.lastname@example.org.
Attn: Privacy Team
281 Summer Street
Boston, MA 02210
Please be sure to include sufficient information so we can understand and respond to your specific question or request.