Last Modified: November 13, 2023
At FourKites, Inc., including its affiliates (hereafter “FourKites“, “we“, “us“, or “our“), your privacy is of great importance. This FourKites Partner Portal Privacy Notice (“Notice“) describes our privacy practices specifically for this Partner Portal (“Portal”). It describes how and why we are processing personal information.
Please read this Notice carefully to learn about information that we collect that personally identifies you directly or indirectly (“personal information” or “personal data”), how we use, protect, and disclose your personal information when you interact with this Portal, and how you can exercise your privacy rights wherever you are located.
If you are unable to access this Notice due to a disability or any physical or mental impairment, please contact us using the contact details in section 1 and we will arrange to supply you with the information you need in an alternative format that you can access.
FourKites is the world’s leading supply chain intelligence platform, delivering real-time visibility and execution for 1200+ companies and third-party logistics firms across 200 countries. Using a patented artificial intelligence to calculate shipment arrival times, FourKites enables customers to lower operating costs, improve on-time performance, and strengthen end-customer relationships.
To ask questions, comment or provide feedback about this Notice and our privacy practices, contact us at: [email protected].
EU Representative. If you are located in the EEA, you can contact FourKites’ EU Representative, FourKites B.V., at Schiphol Boulevard 175, 1118 BG in Schiphol, the Netherland.
UK Representative. If you are located in the UK, you can contact FourKites’ UK Representative Lionheart Squared Limited at [email protected], or at Lionheart Squared Limited, 17 Glasshouse Studios, Fryern Court Road, Fordingbridge, Hampshire, SP6 1QX, United Kingdom.
FourKites is the controller of the processing activities described in this Notice. You may contact FourKites with any questions relating to this Notice or this service at [email protected].
a. Information you provide directly to us when using the Portal:
There are various areas within the Portal where you will provide personal information directly to us. This personal information may include:
b. Information users provide to us when using the Portal:
Users of the Portal may submit personal information of other parties for the purpose of our marketing activities. Where a user provides us with your personal information, we presume that you have authorized such collection.
c. Information we collect automatically through the Portal:
When you use the Portal, we may use technology to automatically collect information and data as detailed below. In some countries, including countries in the European Economic Area, the UK and in Switzerland, Australia, Brazil, Canada, and New Zealand, this information may be considered personal information under the law.
We may collect this information as part of log files as well as by using cookies or other tracking technologies. Our use of cookies and other tracking technologies is discussed more below, and in more detail in our Cookie Policy.
We use the personal information that we collect about you, directly or indirectly, for the following business and commercial purposes:
In addition, we anonymize and/or aggregate personal information that we collect about you or that you or other Portal users provide to us to prepare reports, studies, analyses; maintain and improve the performance or functionality of the Portal; demonstrate the effectiveness of the Portal, and develop new features, products, and other work product.
If you are from a country or region (e.g., EEA, Chile, Indonesia, Turkey, Thailand, South Africa, United Kingdom) where a legal basis is necessary for the processing of personal data, our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it.
However, we will normally collect and use personal information from you where the processing is in our legitimate interests, as described in this Section, and not overridden by applicable law, your data-protection interests, or fundamental rights and freedoms.
In some other limited cases, we may also have a legal obligation to collect personal information from you. If we ask you to provide personal information to comply with a legal requirement, we will make this clear at the relevant time and advise you whether the provision of your personal information is mandatory or not, as well as of the possible consequences if you do not provide your personal information.
If you are from a country or region that requires us to ask for consent for any processing or transferring data (e.g., Canada, Colombia, Panama, Turkey, Taiwan) we collect, use, disclose and otherwise process the personal information described above only with your consent. If you do not wish to provide us with any personal information which is indicated as compulsory, we may not be able to communicate with you or provide certain services or features to you. Further, if you provide us with details of any other individual (e.g., prospects), you must give a copy of this Privacy Notice to, and obtain consent from, that individual before giving their personal information to us where consent is required by applicable laws.
In addition to and based on the specific purposes set out in this Notice, we may disclose personal information that we collect or that you provide to the following categories of recipients:
FourKites may disclose anonymized information without restriction.
If you are using our Portal from outside the United States, be aware that your information will be transferred to, and maintained on, IT infrastructure located within the United States and further that your information may be accessed within the United States and/or our teams in Europe and India. The collection, use, retention, and any other processing of your information will be governed by United States law, to the extent applicable, and further by the specific jurisdictions within the United States where that information is stored, unless otherwise specified. Accordingly, your information may be accessible to law enforcement and/or regulatory authorities according to applicable United States law.
We hold your personal information only for as long as necessary to fulfil the purposes set out in this Notice If you would like more information about specific retention periods you can email us at [email protected].
When we transfer your personal information outside of the jurisdiction in which you live or work, we do this where we are satisfied that adequate levels of protection are in place to protect the integrity and security of your personal data and/or adequate security measures are adopted, in compliance with applicable data protection laws.
Adequacy Decision or Contractual Clauses. This means that whenever your personal information is transferred to a different jurisdiction, we make sure that such transfers is either approved by the authorities from the jurisdiction the personal information originates from through so called ‘adequacy decisions’ or is subject to appropriate safeguards such as contractual clauses for transfers as approved by those authorities (e.g., Argentina, Brazil, EEA, Indonesia, Israel, Singapore, The Philippines, Uruguay).
Consent. If you are from a country where consent is the only ground available to transfer data (e.g., Canada, Malaysia, Mexico, Panama, Peru, Saudi Arabia, Turkey), we will transfer overseas and process the personal information described above only with your consent. International transfers of your personal data shall comply with the legal basis set forth in the applicable law of your country, and any instructions provided by the regulatory authority and/or applicable law.
Data Privacy Framework. FourKites complies with the EU-U.S. Data Privacy Framework (“EU-U.S. DPF”) and the Swiss-U.S. Data Privacy Framework (“Swiss-U.S. DPF”) as set forth by the U.S. Department of Commerce. FourKites has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Program Principles (“EU-U.S. DPF Principles”) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF. FourKites has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Program Principles (“Swiss-U.S. DPF Principles”) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
In compliance with the EU-US Data Privacy Framework Principles, FourKites commits to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to the DPF Principles. European Union and Swiss individuals with DPF inquiries or complaints should first contact FourKites at [email protected].
FourKites has further committed to refer unresolved privacy complaints under the DPF Principles to an independent dispute resolution mechanism, Data Privacy Framework Services, operated by BBB National Programs. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://bbbprograms.org/programs/all-programs/dpf-consumers/ProcessForConsumers for more information and to file a complaint. This service is provided free of charge to you.
If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms.
See https://www.dataprivacyframework.gov/s/article/G-Arbitration-Procedures-dpf?tabset-35584=2.
At FourKites, protecting the information that we are trusted with is our priority. We take contractual, technical, and organizational security measures in accordance with the state of the technology to protect the processed data against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons. Your personal data will be protected within the scope of the following points:
FourKites is SOC 2 Type II compliant. SOC 2 is an evaluation of the design and operating effectiveness of controls that meet the AICPA’s Trust Services Principles criteria. Every year FourKites is subject to independent audit. If you would like more information about specific measures taken to protect your personal information you can email us at [email protected].
Based on the law applicable to the use of your personal information, you have rights in relation to your personal information. Note that we will have to balance your rights and your request to exercise them against our rights and obligations to process your personal information and to protect the rights and freedoms of others. A number of the rights you may have in relation to your personal information are explained below:
Please note that we will respond to your request in accordance with the applicable data protection laws and regulations. The rights you have may vary depending on the country. This list does not grant you any rights.
Privacy Rights Procedure. We respond to all requests we receive from individuals wishing to exercise their privacy rights in accordance with applicable data protection laws. This section includes a description of how we handle your request when you choose to exercise your rights.
When we receive your request, we will verify your request and your rights against applicable data protection laws. This means that we will take steps to verify your identity by a method appropriate to the type of request you are making to ensure you are the individual about whom we have personal information, confirm your right to exercise these rights, and if confirmed, proceed with the request.
We will respond to your request within a reasonable period and in accordance with the periods prescribed by applicable data protection laws. We may charge you a reasonable fee for processing your request.
We may decline your request and if we do, we will give you a written notice that sets out the reasons for the refusal (unless it would be unreasonable to provide those reasons), including details of the mechanisms available to you to make a complaint.
Choices. You can exercise control over the following uses of your information.
Complaint Procedure. If you wish to make a complaint about or provide us with feedback on any processing activity or practice conducted by FourKites, please contact us by using the contact details in section 1 and we will take reasonable steps to address the feedback or investigate the complaint and respond to you.
In order to protect your personal information, we will verify your identity by a method appropriate to the type of request you are making. We may also request that your authorized agent have written permission from you to make requests on your behalf, and we may also need to verify your authorized agent’s identity to protect your personal information.
The Portal is not intended for children under the age of 18, and we do not knowingly collect personal information from children under the age of 18. If we learn we have collected or received personal information from a child under the age of 18 without verification of parental consent, we will delete that information. If you believe we might have any information from or about a child under the age of 18, please contact us at [email protected].
We may update this Notice from time to time in response to changing legal, technical, or business developments. When we update our Notice, we will take appropriate measures to inform you, consistent with the significance of the changes we make. We will obtain your consent to any material Notice changes if and where this is required by applicable data protection laws.
You are responsible for ensuring we have an up-to-date active and deliverable email address and/or mobile phone number for you and for periodically visiting this privacy notice to check for any changes.