Privacy Notice

Emma, Inc. and its affiliates (“Emma”, “we” or “us”) are part of the CM Group family of brands that provide Software-as-a-Service (SaaS) and software products (“Services”) to our customers and clients (“Customers”). We may disclose your information to affiliates within the CM Group for customer support, marketing, technical operations, and account management purposes. This privacy notice (“Notice”) explains who we are, how we collect, use and share information that identifies you (directly or indirectly) (“Personal Information”), and how you can exercise your privacy rights.

This Notice covers the Personal Information we collect: (i) about Users of Emma’s Services (see Section 2); (ii) about our User’s Contacts (generally recipients of emails sent through the Emma Services) (see Section 3); and (iii) through our Websites and in the usual course of our business, including in connection with our events, recruitment, sales and marketing activities (see Section 4).

We recommend that you read this entire Notice to ensure you are fully informed.

However, to make it easier for you to review those parts of this Notice which apply to you, we have divided up the document into the following sections:

1. THE BASICS

  1. About Us.Emma is a company headquartered in Nashville in the United States. We provide email marketing software products and services that allow our Customers and their Users to build and send out marketing emails to their Contacts. Through our application, our Customers can also store information about and track the engagement of their Contacts. You can find out more about us and our products here.
  2. Key Terms.The definitions below apply to capitalized terms in this Notice. Capitalized words that are not otherwise defined in this Notice shall have the meaning ascribed in the Agreement.
    1. “Agreement” means either the Services Agreement located at myemma.com/legal/services-agreement or the Services Agreement (formerly referred to as the “Subscription Agreement”) executed by and between you and Emma, Inc.
    2. “Customer” means the entity to whom we have contracted to provide the Services, which if you are an User, generally refers to the entity of which you are an employee, contractor, member or other participant.
    3. “Contacts” means any individual: 1) whose information is stored or collected by our Users on or via the Services; and/or 2) to whom Users send emails to or otherwise engage or communicate with via the Services.
    4. “Services” means the Website, Software, products, applications, tools, services (including any applicable support services), and related resources made available by Emma or accessible via the Website (or other websites owned by Emma or its affiliates) and all material comprising the Website and Software.
    5. “Software” means any software, documentation, or data related to the Services.
    6. “User” means any individual who has registered to use and access the Services under the Customer account and who directly builds, sends, collaborates on and/or reviews emails or forms through the Services.
    7. “Website” means any website we own and operate (such as www.myemma.com and any sub-domains).

2. EMMA USERS

This section applies to Personal Information we collect and process through the Services when you engage with us as a User of the Service. If you are not yet a User, Section 4 (applicable to visitors to our Websites) may be more applicable to you and your data. In this Section, “you” or “your” refer to Users.

  1. Information We Process.
    1. Information You Provide To Us. You may provide Personal Information to us through the Services – for example, when you sign up for an Emma account to access the Services, consult with our customer success or support teams, send us an email or communicate with us in any other way. We will usually let you know prior to collection whether the provision of Personal Information we are collecting is compulsory or may be provided on a voluntary basis and the consequences, if any, of not providing the information. The information you provide to us, includes:
      1. Registration Information. You need an Emma account to use the Services as a User. When you register for an account, we ask you to provide contact information such your name, telephone number, job title, and organization name.
      2. Billing Information. If you purchase our Services, you may also need to provide us with payment and billing information such as your credit card details and billing address. We will also maintain a record of your purchases, transactional information, your Services history and usage, and any communications and responses.
      3. User Surveys. We may offer you opportunities to participate in User surveys. These surveys will gather your opinions on the effectiveness and/or current state of our Services, as well as your opinions on future functionality and the direction of our product offering.
    2. Information Collected Automatically. When you use the Services, we automatically collect certain information about your device and use of the Services. We may use cookies and other tracking technologies to collect some of this information. Our use of cookies and other tracking technologies is discussed more below, in more detail below and in our Cookie Notice here.
      1. Device Information. We collect information from your device and applications you use to access our Services, such as your IP address, device attributes (for example: hardware model, operating system, web browser version, as well as unique device identifiers and characteristics), connection information (for example, name of your mobile operator or Internet Service Provider, browser type, language and time zone, and mobile phone number); and device locations (for example, internet protocol (IP) addresses and Wi-Fi information).
      2. Log Data. Our web servers keep log files that record data each time a device accesses those servers and those log files contain data about the nature of each access, including originating IP addresses. We may also access metadata and other information associated with files that you upload into our Services, such as images.
      3. Information relating to your use of the Services. We collect usage data about whenever you interact with our Services, which may include the dates and times you access the Services, page views, which activities and features are used of our Services, crash logs, customer storage configuration settings, and technical data relating to devices accessing and using the Services and the performance of the Services in doing so.
    3. Information We Obtain From Third Party Sources. We may receive information about you from other sources, including publicly available databases or third parties from whom we have purchased data, and combine this data with information we already have about you. This helps us to update, expand and analyze our records and provide Services that may be of interest to you. Examples of the types of Personal Information that may be obtained from public sources or purchased from third parties and combined with information we already have about you, may include name, employer, job title, email address, phone numbers, and other company, contact, and/or employment information.
  2. Why We Process Your Information. We process your Personal Information for our legitimate interests, which include:
    1. To Provide the Services. We process your Personal Information to provide the Services as follows: i) to identify who you are, including both for identification and authentication purposes; ii) to enable you to login and access your account; iii) to respond to your inquiries; iv) to provide you with customer support; v) to send you information as part of the Services; and vi) to provide you with information about your account, including renewals and changes in Services or your account status.
    2. To Market To You. To contact you with marketing and promotional information (in accordance with your marketing preferences) about products and services that we or our Affiliates offer, to provide advertising to you on third party sites (based on your browsing activities on the Website), and to send you information regarding us, our Affiliates, and/or our partners (see the section headed “Your Data Protection Rights” for information about how you can opt-out of receiving marketing communications from us at any time). Marketing data purchased from third parties may be combined with information we already have about you and may be used to create more tailored advertising and products.
    3. To Customize Services to You. To help us deliver a better and more personalized experience (for example, it enables us to tailor our Services according to your interests); and to build a profile about you so as to help direct you to other relevant features and Services we offer and help you in using our Services, by making recommendations for you to optimize use of our Services.
    4. To Improve Our Services. To create new Services, features, content or make recommendations; improve our Services for you and all Users; and to fix bugs and troubleshoot product functionality.
    5. For Business Analytics. To infer your geographic location based on your IP address; to track behavior at the aggregate/anonymous level to identify and understand trends in the various interactions with our Services; and to conduct internal business analysis based on meta-data about usage, feature adoption and forecasting.
    6. To Prevent Abuse/Illegal Activities. To screen for and prevent undesirable or abusive activity. For example, we have automated systems that screen content for phishing activities, spam, and fraud.
    7. For Legal Records. To identify who you are, including both identification and authentication purposes; to carry out our obligations and enforce our rights arising from any contracts entered into between you and us (including for billing and collection); and to respond to legal requests or prevent fraud. If we receive a subpoena or other legal request, we may need to inspect the data we hold to determine how to respond.
  3. How We Share Your Information. In the following limited situations, we may disclose information that we collect or that you provide to us:
    1. to our contractors, service providers and other third parties who provide data processing services to us and with whom the sharing of your Personal Information is necessary to undertake the work e.g. to process billing, to analyze data, host data, to provide customer support and to deliver online and offline marketing communications about us and/or our Affiliates that we think will interest you.
    2. as required by law, such as to comply with any court order, subpoena or other law or legal process, when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a governmental or regulatory request.
    3. to enforce our rights arising from any contracts entered into between you and us and for billing and collection.
    4. to Affiliates of our corporate group for customer support, marketing, technical operations, and account management purposes.
    5. to a buyer or other successor in the event of a merger, sale or transfer of some or all of Emma’s assets.
  4. Cookies And Tracking Technologies. We (including our partners and vendors) use various technologies to collect and store information when you use the Services, and this may include using cookies and similar tracking technologies, such as pixels and web beacons. For example, cookies allow us to collect information such as your IP address, browser, email client type and other similar details. We use this information to measure the performance of our application and to provide analytics information and enhance the effectiveness of our Services. We use page tags (also known as web beacons) in the emails we send to our Users. When you receive and engage with marketing messages we send to you, web beacons track certain behavior such as whether the email sent through the Services was delivered and opened. Links within these emails are tracked to show individual recipient’s clicks. For more information, read about our cookies and other tracking technologies in more detail in our Cookie Notice here.
  5. Children.
    1. Our Services are not intended for and may not be used by minors. “Minors” are individuals under the age of 13 (of under a higher age if permitted by the laws of their residence). We do not knowingly collect Personal Information from Minors or allow them to register. If it comes to our attention that we have collected Personal Information from a Minor, we may delete this information without notice. If you have reason to believe that this has occurred, please contact customer support.
    2. Customers and their Users are responsible for ensuring that their emails and data collection practices comply fully with applicable children’s data privacy protection legislation, such as the United States’ Children’s Online Privacy Protection Act (“COPPA”) and applicable European Union Member State laws which implement Article 8 of the GDPR with respect to children’s’ consent in relation to information society services, including where relevant by obtaining parental consent prior to the collection of Personal Information. We rely upon our Customers to disclose whether or not their use is subject to any law, in part or full, which specifically protects the rights of children.
  6. Legal Basis For Processing Personal Information (EEA, Switzerland, or UK Residents Only).
    1. If you are a resident in the EEA, Switzerland, or the UK, then our legal basis for collecting and using Personal Information described above will depend on the Personal Information concerned and the specific context in which we collect it. However, where we are processing your Personal Information for our own purposes we normally rely on our legitimate interest to collect Personal Information from you, except where such interests are overridden by your data protection interests or fundamental rights and freedoms. Where we rely on our legitimate interests to process your Personal Information, they include the interests described in the sections above headed “Why We Process Your Information”.
    2. In some cases, we may rely on your consent or have a legal obligation to collect Personal Information from you or may otherwise need the Personal Information to protect your vital interests or those of another person. If we rely on consent to collect and/or process your Personal Information, we will obtain such consent in compliance with applicable laws.
    3. If you have questions about or need further information concerning the legal basis on which we collect and use your Personal Information, please contact us using the contact details provided under the “Contact Us” heading below.
  7. Data Retention.
    1. We retain Personal Information we collect from you where we have an ongoing legitimate business need to do so (for example, to provide you with a Service you have requested or to comply with applicable legal, tax or accounting requirements).
    2. When we have no ongoing legitimate business need to process your Personal Information, we will either delete or anonymise Personal Information. If this is not possible (for example, because your Personal Information has been stored in backup archives), then we will securely store your Personal Information and isolate it from any further processing until deletion is possible.
    3. We will retain information we process on behalf of our Customers for as long as needed to provide Services to our Customers (unless deletion is requested at an earlier time by the Customer) and as necessary to comply with our legal obligations, resolve disputes and enforce our agreements. We reserve the right to delete Customer’s, its Users’, and its Contacts’ information at the termination of Customer’s contract with us (unless such deletion is prohibited by applicable laws).

3. EMMA USERS’ CONTACTS (GENERALLY EMAIL RECIPIENTS)

This section applies to Personal Information we collect and process about our User’s Contacts through the Services as a data controller. In this Section “you” or “your” refers to a Contact.

Note: While Emma hosts the application used to build and send marketing emails and online forms, our Services are intended for use by our Customers and their Users control the content uploaded to the Services, the content of emails sent, forms built, and information provided at the point of collection of Contacts’ Personal Information– and for the most part– what is done with the information received. As a result, for much of the Personal Information we collect and process about our Customers’ Contacts, we act as a processor on behalf of our Customers (the controller). Emma is not responsible for the privacy or security practices of our Customers, which may differ from those set forth in this Notice. We require our Customers to comply with all applicable laws and regulations and to provide Contacts with notice of the collection of data as outlined in this Notice. To understand how Customers and their Users will use your Personal Information, you will need to directly contact the User who sent you the email or whose online form you filled out.

  1. Information We Process
    1. Information We Receive About Contacts from Users. A User may provide Personal Information about you to us through the Services in connection with their use of the Services– for example, when a User imports and/or collects email addresses and other Personal Information about their Contacts.
    2. Information Collected Automatically. When you interact with the Services (for example receive, open an email sent through the Services), we automatically collect certain information about your device and interaction with the Services. We may use cookies and other tracking technologies to collect some of this information. Our use of cookies and other tracking technologies is discussed in more detail below and here. The information we automatically collect through the Services may include:
      1. Device Information. We collect information from your device and applications you use to view emails sent via our Services, such as your IP address, device attributes (for example: hardware model, operating system, web browser version, as well as unique device identifiers and characteristics), connection information (for example, name of your mobile operator or Internet Service Provider, browser type, language and time zone, and mobile phone number); and device locations (for example, internet protocol (IP) addresses and Wi-Fi information).
      2. Email Engagement Data. Emails sent by or on behalf of our Users through the Services include page tags (also known as web beacons) that allow the sender to collect information about who opened those emails. Additionally, your engagement with any links in emails sent using the Services (for example, when you click a link) is reported to the User. This tracking of email engagement is active by default for all email recipients. Our Users are able to turn off email tracking according to their determination of what is appropriate based on their relationship with their Contacts; or whenever a user withdraws consent for tracking; or based on the User’s determination of their own legal obligations regarding the use of this technology. Our use of cookies and other tracking technologies is discussed in more detail in our Cookie Notice.
  2. Why We Process Your Information.
    We process your Personal Information for our legitimate interests, which include:
    1. In Connection With Support Queries. To respond to an enquiry which you may submit to us. For example, our customer support team may use your email address to communicate with you if you have contacted us about an email you received, but we will not send marketing to you unless you have otherwise opted-in to marketing.
    2. To Improve Our Product & Ensure Functionality.
      1. To ensure the full functionality of the Service. We collect information using cookies about your interaction with an email sent to you through the Services. These cookies are used to ensure that the full functionality of our Services is operational; to ensure that the Service experience works well across all possible devices; and to fix bugs and troubleshoot product functionality.
      2. To track behaviour at the aggregate/anonymous level to identify and understand trends in the various interactions with our Services (for example, by inferring geographic location to produce aggregated data around Contact location trends as they relate to open rates). This data will be aggregated and anonymized so we can examine patterns in terms of Contacts’ preferences as they relate to email engagement. We collect and use all this data for our legitimate interests like providing our Customers with metrics around probability of engagement related to email sending times, locations, content and also to help our Customers understand industry trends in marketing.
      3. Our use of cookies and other tracking technologies is discussed in more detail below and in our Cookie Notice.
    3. To Prevent Abuse/Illegal Activities. To screen for and prevent undesirable, abusive, and/or illegal activity. We use your IP address and an Emma auto-generated Contact ID for abuse monitoring purposes (so we can identify a User who abused the Services by sending spam email or sent an email in any other manner contrary to our usage policies and/or to facilitate a User in complying with their own legal obligations). We also have automated systems that screen content for phishing activities, spam, and fraud.
    4. For Legal Records. To enforce our agreements where applicable (for example we keep a record of the number of emails sent to individual Contacts for to bill for Services used by our Customers). To respond to legal requests or prevent fraud, we may need to disclose any information or data we hold about you. If we receive a subpoena or other legal request, we may need to inspect the data we hold to determine how to respond.
  3. How We Share Your Information.
    In the following limited situations, we may disclose Contact information to someone other than the Customer or their User:
    1. to our contractors, service providers and other third parties who provide data processing services to us and with whom the sharing of your Personal Information is necessary to undertake the work e.g. to process billing, to analyze data, host data, deliver content and to provide customer support and other business related functions.
    2. to comply with any court order, law or legal process, including responding to a governmental or regulatory request.
    3. to Affiliates of our corporate group for customer support, technical operations, and account management purposes.
    4. to a buyer or other successor in the event of a merger, sale or transfer of some or all of Emma’s assets.
  4. Cookies And Tracking Technologies.
    We (including our partners and vendors) use various technologies to collect and store information when you interact with a User’s email campaign or other content delivered through the Services, and this may include using cookies and similar tracking technologies, such as pixels and web beacons. For example, we use page tags (also known as web beacons) in the emails we send on behalf of our Users. When you receive and engage with a User’s campaign, web beacons track certain behavior such as whether the email sent through the Services was delivered and opened and whether links within the email were clicked. They also allow us to collect information such as your IP address, browser, email client type and other similar details. We use this information to measure the performance of our User’s email campaigns, to improve email deliverability and open rates and to provide analytics information and enhance the effectiveness of our Services. For more information, read about our cookies and other tracking technologies in more detail in our Cookie Notice.
  5. Legal Basis For Processing Personal Information (EEA, Switzerland, or UK Residents Only).
    1. If you are a resident in the EEA, Switzerland, or UK, then our legal basis for collecting and using Personal Information described above will depend on the Personal Information concerned and the specific context in which we collect it. However, where we are processing your Personal Information for our own purposes we normally rely on our legitimate interest to collect Personal Information from you, except where such interests are overridden by your data protection interests or fundamental rights and freedoms. Where we rely on our legitimate interests to process your Personal Information, they include the interests described in the sections above headed “Why We Process Your Information”.
    2. In some cases, we may have a legal obligation to collect Personal Information from you or may otherwise need the Personal Information to protect your vital interests or those of another person.
    3. If you have questions about or need further information concerning the legal basis on which we collect and use your Personal Information, please contact us using the contact details provided under the “Contact Us” heading below.
  6. Data Retention.
    1. We retain Personal Information we collect from you where we have an ongoing legitimate business need to do so (for example, to prevent abuse or illegal activities, retain our legal records, or to comply with other applicable legal, tax or accounting requirements).
    2. When we have no ongoing legitimate business need to process your Personal Information, we will either delete or anonymise Personal Information. If this is not possible (for example, because your Personal Information has been stored in backup archives), then we will securely store your Personal Information and isolate it from any further processing until deletion is possible.
    3. We will retain information we process (as a data processor) on behalf of our Customers for as long as needed to provide Services to our Customers (unless deletion is requested at an earlier time by the Customer) and as necessary to comply with our legal obligations, resolve disputes and enforce our agreements.
    4. To have any Personal Information that is retained by us on behalf of the Customer deleted, please contact the Customer (the controller of that data).

4. EMMA WEBSITE VISITORS

This Section applies to Personal Information that we collect and process through our Websites (for example when you visit our website and sign up for our marketing lists or apply for a job at Emma) and in the usual course of our business, such as in connection with our events, sales and marketing activities.

  1. Information We Process.
    1. Information You Provide To Us. Certain parts of our Websites may ask you to voluntarily provide Personal Information (such as your name, contact details and company name). For example, when registering for an account, expressing an interest in obtaining additional information about Emma or our Services, subscribing to marketing, registering for an event, applying for a job, or otherwise contacting us. We may also collect Personal Information, such as your contact and professional background details and feedback, when you attend our events, take part in surveys, or through other business or marketing interactions we may have with you. You may choose to provide additional information when you communicate with us or otherwise interact with us, and we will keep copies of any such communications for our records.
    2. Information Collected Automatically. When you visit our Websites, like most website owners, we may also collect certain information automatically from your device, such as your device type, browser type, broad geographic location (e.g. country or city-level location), the referring website, what pages your device visited, and the time that your device visited our Website. In some countries, including countries in the European Economic Area, this information may be considered Personal Information under applicable data protection laws. We (including our service providers) may use cookies, pixel tags and other similar tracking technologies to collect this information. Our use of cookies and other tracking technologies is discussed in more detail below and in our Cookie Notice.
    3. Information We Obtain From Third Party Sources. We may receive Personal Information about you from other sources, including publicly available databases or third parties from whom we have purchased data, and combine this data with information we already have about you. This helps us to update, expand and analyze our records, identify new customers, and provide Services that may be of interest to you. Examples of the types of Personal Information that may be obtained from public sources or purchased from third parties and combined with information we already have about you, may include name, employer, job title, email address, phone numbers, and other company, contact, and/or employment information.
  2. Why We Process Your Information.
    1. To Provide You With Information You Have Requested. To respond to your requests or provide you with information requested by you, including where you apply for a job at Emma or request information about our products or Services.
    2. To Market To You. To contact you with marketing and promotional information (in accordance with your marketing preferences) about products and services that we or our Affiliates offer, to provide advertising to you on third party sites (based on your browsing activities on the Website), and to send you information regarding us, our Affiliates, and/or our partners (see the section headed “Your Data Protection Rights” for information about how you can opt-out of receiving marketing communications from us at any time). Marketing data purchased from third parties may be combined with information we already have about you and may be used to create more tailored advertising and products.
    3. For Business Analytics. To infer your geographic location based on your IP address; to track behavior at the aggregate/anonymous level to identify and understand trends in usage and the various interactions with our Websites and marketing content; determining the effectiveness of our marketing; and to conduct internal business analysis based on meta-data about usage, feature adoption and forecasting to improve our Websites and Services.
    4. For Website Optimization. To administer our Website and for internal operations, including troubleshooting, data analysis, testing, research, and statistical purposes; to improve user experience while interacting with the website; to understand how our Website is used and to improve our Website to ensure that content is presented in the most effective manner for you and your computer; and as a part of our efforts to keep our Website safe and secure.
    5. For Legal Records. To comply with and enforce applicable legal requirements, agreements and policies.
  3. How We Share Your Information.
    In the following limited situations, we may disclose information that we collect or that you provide to us:
    1. to our contractors, service providers and other third parties who provide data processing services to us and with whom the sharing of your Personal Information is necessary to undertake the work e.g. to process billing, analyze data, host data, provide customer support, and to deliver online and offline marketing communications about us and/or our Affiliates that we think will interest you.
    2. as required by law, such as to comply with any court order, subpoena or other law or legal process, when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a governmental or regulatory request.
    3. to enforce our rights arising from any contracts entered into between you and us and for billing and collection.
    4. to Affiliates of our corporate group for customer support, marketing, technical operations, and account management purposes.
    5. to a buyer or other successor in the event of a merger, sale or transfer of some or all of Emma’s assets.
  4. Cookies And Tracking Technologies.
    We (including our partners and vendors) use cookies and similar tracking technology (collectively “Cookies”) on our Websites to collect and use Personal Information about you: (i) to ensure we are complying with our legal obligations (for example, we use cookies to infer your location and if, for example, you are in the EEA, we can ensure that we are compliant with regulations in the EEA); (ii) to serve targeted advertising to you, (iii) to analyse trends, administer the Website, track users’ movements around the Website, and (iv) to gather demographic information about our user base as a whole. In addition, certain third parties, such as analytics companies, may use automatic information collection technologies to collect information about you when you use our Services. The information they collect may be associated with your Personal Information or they may collect information about your online activities over time and across different websites, apps and other online services websites. For more information, read about our cookies and other tracking technologies in more detail in our Cookie Notice.
  5. Legal Basis For Processing Personal Information (EEA, Switzerland, or UK Residents Only).
    1. If you are resident in the EEA, Switzerland, or UK, then our legal basis for collecting and using Personal Information described above will depend on the Personal Information concerned and the specific context in which we collect it. However, where we are processing your Personal Information for our own purposes we normally rely on our legitimate interests to collect Personal Information from you, except where such interests are overridden by your data protection interests or fundamental rights and freedoms. Where we rely on our legitimate interests to process your Personal Information, they include the interests described in the sections above headed “Why We Process Your Information”.
    2. In some cases, we may rely on your consent or have a legal obligation to collect Personal Information from you or may otherwise need the Personal Information to protect your vital interests or those of another person. If we rely on consent to collect and/or process your Personal Information, we will obtain such consent in compliance with applicable laws.
    3. If you have questions about or need further information concerning the legal basis on which we collect and use your Personal Information, please contact us using the contact details provided under the “Contact Us” heading below.
  6. Data Retention
    1. We retain Personal Information we collect from you where we have an ongoing legitimate business need to do so (for example, to provide you with information you have requested or to comply with applicable legal, tax or accounting requirements).
    2. When we have no ongoing legitimate business need to process your Personal Information, we will either delete or anonymise it or, if this is not possible (for example, because your Personal Information has been stored in backup archives), then we will securely store your Personal Information and isolate it from any further processing until deletion is possible.

5. GENERAL INFORMATION

  1. Controlling Your Personal Information.

    Maintaining the privacy and security of Personal Information processed by Emma subject to this Notice is one of our core values and vital to creating trust between us and our Customers, or any other individual with whom we interact. To ensure that individuals have appropriate control of their Personal Information, we extend the ability to access, correct, or delete Personal Information to any individual whose Personal Information is processed in accordance with this Notice.To access, correct, or delete your Personal Information, please access our individual rights portal using the button provided in this section of the Notice. We may ask you to provide additional verification in order to complete any request made to delete Personal Information. Our subscribers may visit the Emma Preference Center at any time to access Personal Information processed for that purpose, amend such Personal Information, and alter their marketing choices.
  2. Data Protection Rights for EEA and UK Residents.

    Emma, Inc is part of CM Group, a larger organization which operates marketing technology companies across the globe and is established within the EU by its control of Selligent SA, a public limited company based in Belgium. If it is necessary to direct any inquiry to CM Group’s EU entity, rather than Emma, Inc. itself, please send such communication to [email protected] you are resident of the EEA, Switzerland, or UK, you have the following data protection rights:
    1. You have the right to access, review, change, update or delete your Personal Information at any time. In addition, you have the right to receive your Personal Information in a commonly used, machine-readable format.
    2. You have the right to object to processing of your Personal Information, ask us to restrict processing of your Personal Information or request portability of your Personal Information.
    3. You have the right to complain to a data protection authority about our collection and use of your Personal Information. For more information, please contact your local data protection authority. Contact details for data protection authorities in the European Economic Area (“EEA”), are available here. For UK residents, the ICO can be contacted here.
    4. You can opt out of receiving marketing communication we send you at any time. You can exercise this right by clicking on the “unsubscribe” link in the emails we send you or by visiting our preference center, https://myemma.com/preference-center. To opt-out of other forms of marketing (such as postal marketing or telemarketing), please contact us at [email protected]. For data privacy concerns, use the contact details provided under the “Contact Us.” heading below.
    5. To remove your Personal Information from a Website testimonial or request removal of your Personal Information from our blog or community forum, contact us using GET SUPPORT at help.myemma.com. In some cases, we may not be able to remove your Personal Information, in which case we will let you know if we are unable to do so and why.
    6. If we have collected and process your Personal Information with your consent, then you can withdraw your consent at any time by using the opt out link provided in any email communication we’ve sent to you or by contacting us using GET SUPPORT at help.myemma.com. Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your Personal Information conducted in reliance on lawful processing grounds other than consent.
  3. Third-Party Websites And Apps.
    1. This Notice only applies to the Emma Website and Services. We are not responsible for the privacy practices or disclosures of third parties that use or access the Emma Website or Services. In addition, the Website or Service may contain links to third-party websites and apps. Any access to and use of such linked websites or apps is not governed by this Notice, but instead is governed by the privacy policies of those third parties. We are not responsible for the information practices of such third parties.
  4. How Do We Keep Your Personal Information Secure?
    1. We use appropriate technical and organizational security measures to protect any Personal Information we process against unauthorized access, disclosure, alteration, and destruction. More details of our security measures are available for review here.
    2. Unfortunately, nobody is truly and completely safe from hackers. Although we do our best to protect your Personal Information, we cannot guarantee security, no Internet transmission can ever be guaranteed 100% secure, and so we encourage you to take care when disclosing Personal Information online and to use readily available tools, such as Internet firewalls, secure e-mail and similar technologies to protect yourself online.
  5. International Data Transfers.
    1. The Website and the Services are provided, supported, and hosted in the United States. If you are using the Website or Services from outside the United States, be aware that your information may be transferred to, stored, and processed by us in our facilities and by those third parties with whom we may share your Personal Information, in the United States and other countries. These countries may have data protection laws that are different to the laws of your country.
    2. However, we have taken appropriate measures to require that your Personal Information will remain protected in accordance with this Notice and have implemented appropriate safeguards to require that your Personal Information will remain protected in accordance with this Privacy Notice. These include implementing the European Commission’s Standard Contractual Clauses for transfers of personal information between our group companies, which require all group companies to protect personal information they process from the EEA, Switzerland, or UK in accordance with European Union, Swiss, and UK data protection law. We have implemented similar safeguards with our third party service providers and partners. Further details can be provided upon request.
  6. EU-US, Swiss-US Privacy Shield, and UK-US Data Transfers.
    1. Emma, Inc. participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework. Emma, Inc. is committed to processing all Personal Information received from European Union (EU) member countries, the United Kingdom, and Switzerland, respectively, according to the Privacy Shield Framework and the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List.
    2. At this time, in response to the invalidation of the Privacy Shield Framework, Emma no longer relies on the Privacy Shield Framework to transfer personal information to the United States.
    3. Emma, Inc. is responsible for the processing of Personal Information it receives, under each Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Emma, Inc. complies with the Privacy Shield Principles for all onward transfers of pPersonal Information from the EU, Switzerland, and UK, including the onward transfer liability provisions.
    4. With respect to Personal Information received or transferred pursuant to the Privacy Shield Frameworks, Emma, Inc. is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, Emma, Inc. may be required to disclose Personal Information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
    5. Where Emma determines the purposes of processing Personal Information originating in the EU, Switzerland, or UK the data subject who the Personal Information is about may access that Personal Information by contacting [email protected] with a clear request for disclosure. We may ask the requestor to verify their identity when reasonable to do so. Emma will make any reasonable effort, in concert with the Emma customer(s) involved (if any), to address and correct the issue, including editing or removing any data stored pertaining to that individual.
    6. Any unresolved Privacy Shield complaints will be referred to JAMS, our chosen alternative dispute resolution provider. Should this arbitration fail, the complaint may be subject to binding arbitration before the Privacy Shield Panel, in accordance with the Privacy Shield Agreement. All of these remedies are offered at no cost to the complainant, as long as the complainant is an individual.
  7. California Residents Privacy.
    1. The California Consumer Privacy Act (“CCPA”) provides consumers, as defined in the text of CCPA, certain privacy rights:
      1. The right to know what Personal Information is being collected about them.
      2. The right to know whether their Personal Information is sold or disclosed and to whom.
      3. The right to say no to the sale of Personal Information.
      4. The right to access their Personal Information.
      5. The right to equal service and price, even if they exercise their privacy rights.
    2. Notice. This privacy notice, under the headings pertaining to Users, User’s Contacts, and our Website Visitors, serves to describe the categories of data collected, our practices when processing such data, and how we share the data, including categories of recipients of your Personal Information within the past 12 months.
    3. Access and Deletion. California consumers who are Users and/or Website Visitors under this notice may, no more than twice in a 12 month period and at no cost to them, request a report from Emma which details the personal information collected about them and the recipients, if any, of that information. Requests may be sent to us using GET SUPPORT at help.myemma.com or direct mail to the address below. California consumers may, at any time, request that Emma delete their personal data via the same form or direct mail address.
    4. Choice. Our subscribers may visit the Emma Preference Center at any time to access Personal Information processed for that purpose, amend such data, and alter their marketing choices.
    5. Sale of California Consumer Data. Emma may “sell,” as defined by CCPA, your Personal Information in the following ways:
      1. Emma shares the Personal Information of our Users and Website Visitors with other Affiliates of CM Group, as described in their respective privacy notices, for the purposes of marketing and selling CM Group Affiliate Services. You may, at any time, request that your information not be shared between CM Group Affiliates for commercial purposes by request to [email protected] or via this form:
        DO NOT SELL MY PERSONAL INFORMATION
      2. Emma details the use of Cookies in our Cookie Notice. Some of these cookies provide information to advertising networks which are used to track and serve ads to you across the Internet.

        Note. Emma may at times partner with third parties for the purpose of marketing our services. In these cases, will provide clear notice of the identity of our partners and provide a consent mechanism for sharing your Personal Information to any third party partners.
  8. Changes To This Privacy Notice.
    1. We may revise this Notice from time to time in response to changing legal, technical or business developments. The most current version of this Notice will govern our use of your Personal Information. If we make any material changes to this Notice, we will post the updated version here and notify applicable individuals by email or by means of a prominent notice on our Website. You can see when this Notice was last updated by checking the “last updated” date displayed at the top of this Notice. We will seek your consent to any material changes to this Notice if and where required by applicable law
  9. Contact Us.
    1. To communicate with our Data Protection Officer, please email [email protected].

      Thanks for taking the time to learn about our privacy notice. We hope it was clear and reassuring. If you have any questions, please contact us:

      Emma, Inc
      Address:
      11 Lea Avenue
      Nashville, TN 37210
      Email:
      [email protected]

Important Note: If you are resident in the EEA or the UK, the “data controller” of the Personal Information related to the processing activities listed in this Privacy Notice under the sections titled “Why We Process Your Information” is Emma, Inc.

Last Updated: March 7, 2022