UiPath SRL and UiPath Inc (collectively “UiPath” or “we”) are the controllers, this means that they determine the purpose and manner in which your personal data is processed, as follows:
If you are a resident of North America, your relationship is with UiPath Inc. which is the controller with regard to your personal data. UiPath, Inc. is a legal entity organized and existing under the laws of Delaware, USA, with its registered office at 3500 South DuPont Hwy, City of Dover, Delaware, US.
UiPath is the entity deciding for what purpose and through what means your data is processed. If you live in the USA, your relation is with UiPath Inc. while if you live outside the USA your relation is with UiPath SRL. See here more about who and where we are.
If you reside outside of North America, your relationship is with UiPath SRL, which is the controller with regard to your personal data, UiPath SRL is a legal entity organized and existing under the laws of Romania, with its registered office at 4 Vasile Alecsandri Street, 11 Daniel Constantin Street, 5th floor, building A, district 1, Bucharest, Romania.
If you want to know more information regarding UiPath, please visit uipath.com/contact-us.
Personal data is the information related to a natural person and which can be used to identify that person such as name, email address, telephone number, social media usernames, location data or business titles.
Personal data is data about you which you provide to us when interacting with UiPath through our website and by using our products and services and which helps us know who you are.
This means that when you use our products, services and website, we will collect certain information about you (“personal data”) which can identify you directly (name, email) or indirectly (IP address or other online identifier). We also collect anonymous information and aggregated data regarding user behavior, navigational information, device information, which helps us tailor our services and understand usage trends.
The personal data we process, as well as the purposes and legal basis for such processing, will differ depending on your relationship with UiPath:
Your UiPath account is a single sign on which helps you log into several UiPath platforms using the same credentials. If you decide to log in with Facebook or other social media account, remember that UiPath will have access to your Facebook profile data.
UiPath uses Microsoft cloud services as an identity provider for authentication services and identity management. This will help you access other UiPath websites easier, by using the same credentials and provides you with more security when accessing your account. In order to connect to UiPath, your email and name are required. This means that changing your e-mail address means creating a new UiPath account. Please remember that when you use social media accounts to connect to UiPath, you agree to have your social media profile data, such as your name, telephone number, friends, photo, birthday, gender, location, interests, shared with UiPath, through an API.
When you create an account in Academy we process certain personal data about you as a result of agreeing with the Terms & Conditions. These data are used to manage your account, to share or confirm your progress and to keep you updated.
In order for you to become a certified professional to deliver an RPA solution, UiPath processes certain categories of personal data about you.
When you download UiPath Community Edition, personal data is required in order to perform the terms and conditions of use.
When you download UiPath RPA Enterprise Platform, personal data is required in order to perform the terms and conditions of use.
When you use UiPath Forum personal data about you will be processed for managing your account and for you to receive updates and news. Please remember that the Forum is public, when providing your real name, photo and location.
If you request technical support from UiPath we will require some identification data from you. Please try not to send us any personal or confidential information, except from your identification data, when asking for technical support.
When you attend UiPath events, we require your personal data for registration. In our terms and conditions for participating at our events we make it clear that we like to make videos and take photos.
In order for you to participate in UiPath’s campaigns and contests and in order for us to provide you the prize, we process personal data, including sensitive data such as your ID information, for compliance with applicable laws and policies.
If you use UiPath RPA store and create an account we will require certain personal data about you, in order to buy, sell, use or publish workflows, activities, applications or other assets, as part of complying with the terms and condition of the RPA store. Please remember that you can choose the amount of information you make available for the creation of your profile;
If you have a business partnership with UiPath or in order to become a business partner of UiPath we require and process certain personal data from you as the partner’s representatives, which enables you to use our partner portal.
If you visit our website, we collect personal data about you with your consent in order to send you relevant news and to improve your experience on our website.
In order to understand the navigational trends on our website we use third-party analytics tools which collect information which your browser sends when you visit our web page. Here are tools which we use and information about their privacy policies:
When you visit our website and if you accept our cookies we collect certain data about navigational trends and about you, which helps us improve our services and our online presence.
For direct marketing purposes and in order to send you news about UiPath products and activities that are tailored to your interests, we gather data about you through cookies or similar technologies with your consent. For our business purposes we build individual profiles in order to send you relevant offerings. You may be denied access to our services in order to comply with our export control regulations.
As a result of our obligations regarding export control regulations, we will deny access to our services or products if you or your company are among the ones listed on the relevant websites.
In order to send you information about our products, events, news and activities, tailored to your interests we build individual profiles from the personal data you provided to us (such as name, company, job title, social media), from navigational information and information provided by our partners about you.
We do this in order to maximize your experience with our products and to make available to you personalized offers of your liking. We always rely on your consent for our direct marketing activities.
We also use personal data (such as online behavior data, location data, job title) for statistical purposes, in order to help us improve the way we promote our products.
You can oppose to this anytime by writing at firstname.lastname@example.org
We do not use profiling or automated decision making on children.
For the purposes described in this policy we use the services of various contractors, mainly digital service providers. Some of them were mentioned in the section above. These contractors process specific categories of personal data on our behalf to help us organize events, manage clients’ information and contracts, store data, analyze and organize data.
In order for you to benefit from quality services and products we engage contractors to process data on our behalf. These contractors are bound by confidentiality and other contractual requirements to keep your data safe and secure. When the law requires, data is also shared with public authorities.
Some of the contractors are third parties who are not intended to process the personal data but may have access to it upon fulfilling their tasks or interacting with us, such as technical maintenance companies, financial or legal auditors.
India, Japan, Germany, France, United Kingdom, Netherlands, United Arab Emirates, Singapore, South Korea, Spain, Sweden, China, companies which respect the same standards of personal data protection. For more information regarding the UiPath group, please visit www.uipath.com.
UiPath is a global company so your data is shared with UiPath’s affiliates or with UiPath’s processors around the world. We make sure that your data is kept and transferred safely, by respecting European legal requirements for data transfers.
In the context of completing the purposes presented to you in this policy, your personal data may be transferred abroad to states in the European Union (“EU”), European Economic Area (the “EEA”) or to third countries.
Any transfer performed by UiPath in a EU or EEA member state will respect the legal requirements laid down by the European data protection legislation.
In what concerns transfer to states that do not provide adequate protection for the processing of personal data we use standard clauses and certification mechanisms.
UiPath will store your data only for the period of time necessary or required by law. If you have entered into a contract with UiPath we will store your data for 5 years or as long as it is required by law, after the termination of the agreement with us.
We will store your personal data only for the period of time necessary in order to achieve the purposes described to you in this policy and in accordance with our legal obligations, our contractual obligations or the industry practices.
We will make sure not to keep excessive or irrelevant data, such as data which is out of date. We will also constantly review the periods of time for which the different categories of data we process are retained.
After the duration of the processing expires and UiPath no longer has legal or legitimate reasons to process your personal data, the data will be deleted in accordance with its procedures, which may involve archiving, anonymizing or destroying it. For using UiPath products and services we store your data up to 5 years from the termination of our agreement with you, except for the cases when legal requirements state otherwise.
We sometimes process personal data from children in order to spread the RPA knowledge and develop educational partnerships.
Under certain circumstances we process personal data from children, attending our workshops or educational programs, respecting all applicable legislation.
UiPath cares about the security of your personal data. Therefore, UiPath implements an information security framework accordance to its security certifications.
UiPath constantly evaluates and upgrades the security measures implemented as to ensure a secure and safe personal data processing. UiPath is ISO 27001 certified, regarding the security of information management. Among the measures implemented by UiPath for data protection are: physical security measures, access control management, data management control, organisational security measures and incident management procedures.
If you refuse to have your data processed, depending on your relationship with us, we might not be able to provide you with our products or services, send you newsletters, information about our events or other offerings, we won’t be able to enter into a contract with you, or otherwise interact with you as described in this policy.
You can always contact UiPath at email@example.com to ask for your rights regarding the processing of your personal data by UiPath, such as the right to access your personal data, to receive a copy, to oppose to marketing communications, to have your data rectified or deleted. You can always use this form: https://www.uipath.com/legal/personal-data .
You may exercise your rights at any time.
For any questions regarding your rights please write to us at firstname.lastname@example.org. Also, in case you wish to withdraw your consent given for direct marketing purposes you have the possibility to use the “unsubscribe” option provided to you in every marketing communication.
If this policy suffers substantial changes you will be notified by email or through other means of communication.