Campaign Studio
Campaign Studio Product Privacy Notice
Last revision of this Product Notice: [v1.1 – 17 May 2021 – hyperlinks updated]
Prior version(s) of this Product Notice: [v1.0 – 04 March2021 – initial version]
This Product Notices describes the privacy relevant aspects of the above-mentioned Acquia product/services.
Acquia Campaign Studio is a marketing automation platform where Customers can build email campaigns, personalize messages, execute
A/B tests, and measure results. Customers may add any data about the recipients of such email campaigns and personalize messages
based on such data. Customers identify in their sole discretion what Personal Data of their recipients is used for the personalization of
the respective email campaign. In its own discretion, Customer can connect Campaign Studios with its third-party tools (e.g. CRM) by
using connectors supplied by Acquia.
For details about this Product, please refer to the Product Description available online at https://docs.acquia.com/guide.
The objective of Processing of Personal Data by data importer is the performance of the Services pursuant to the Agreement.
* (n/a = not applicable)
** (optional; depends on the Customer’s configuration of the system, the connection to other systems, and the categories chosen by the
Customer to be collected from Third Party Users)
Categories of Personal Data | Categories of Data Subjects | Purpose of Processing | Categories of Data Recipients | Needed for Core Features | Processing Location | Acquia Inc. acts as Processor |
|---|---|---|---|---|---|---|
| Through the configuration, design, and administration of their own Acquia Campaign Studio instance, Customer in its sole discretion determines and controls the categories of Personal Data collected by their Acquia Campaign Studio instance. Customer has full access and autonomy over what types of data are tracked and has access to this data and can manipulate it in various ways. The categories of Personal Data could be any category the Customer chooses, e.g. commercial information, purchasing tendencies, records of personal properties, contact information including home address, personal email, phone numbers, geolocation, age, date of birth, first name, gender, height, last name, marital status, nationality, racial or ethnic origin, religion / religious beliefs, sexual orientation, or other unique personal identifiers, including sensitive Personal Data. | Through the configuration, design, and administration of their own Acquia Campaign Studio instance, Customer in its sole discretion determines and controls the categories of data subjects collected by their Acquia Campaign Studio instance. Customer has full access and autonomy over what types of data are tracked and has access to this data and canmanipulate it in various ways.Primarily, the categories of DataSubjects are the recipients andaddressees of Customer’s emailmarketing campaigns. |
Objective | Technology / Measure | Data at Rest | Data in Transit |
|---|---|---|---|
Anonymization and Pseudonymization | Data anonymization at Customer level optional for Customer | No | No |
Data confidentiality | Encryption at customer level | Yes N/A* N/A* | Yes Yes Yes |
Data integrity | Ant-tampering technology (see Security Annex) | Yes | Yes |
Data availability including restoring availability, restoring access to personal data, and data resilience | Business continuity and disaster recovery measures (see Security Annex) | Yes | Yes |
Regular testing, assessing and evaluating of TOMs | Regular security and process reviews (see also Security Annex) | Yes | Yes |
N/A
Profile data can be deleted and updated at any time during the Term of the Service by the Customer. Profile data and
application/configuration is retained latest until the end of the subscription term.
The specific list of sub-processors is available from: www.acquia.com/about-us/legal/subprocessors
Any current Acquia customer with a data processing agreement in place with Acquia may subscribe to receive notifications of new or
changed sub-processors through above website.
Data importer has implemented and will maintain appropriate administrative, physical, and technical safeguards for the protection of
the security, confidentiality and integrity of Personal Data uploaded to the Services, as described in the Acquia Security Annex
(available from https://www.acquia.com/about-us/legal/gdpr) applicable to the specific Services purchased by data exporter, as
updated from time to time, and made available by data importer upon request. The data exporter is wholly responsible for
implementing and maintaining security and data administration within any data exporter applications, configuration settings, or log
settings used by data exporter in conjunction with the Services.
| Provision of the Services by Acquia to Customer. Data collected is processed by Acquia Campaign Studio only for the purposes of delivering tailored email marketing to the Customer’s marketing campaign recipients. Any usage of the data beyond is in the sole discretion of the Customer. |
| Customer’s personnel |
| Yes |
| Depends on the data center location chosen by customer; data collected in a given region will exist only within that region. Subprocessors, Support: see Acquia Affiliates If Customer uses the Service to connect to third parties (e.g. CRM), processing of the respective data may occur at the place of such third party. Such third parties are (sub- )processors of Customer, not Acquia. |
| Yes |
If this content did not answer your questions, try searching or contacting our support team for further assistance.
| Provision of the Services by Acquia to Customer. Data collected is processed by Acquia Campaign Studio only for the purposes of delivering tailored email marketing to the Customer’s marketing campaign recipients. Any usage of the data beyond is in the sole discretion of the Customer. |
| Customer’s personnel |
| Yes |
| Depends on the data center location chosen by customer; data collected in a given region will exist only within that region. Subprocessors, Support: see Acquia Affiliates If Customer uses the Service to connect to third parties (e.g. CRM), processing of the respective data may occur at the place of such third party. Such third parties are (sub- )processors of Customer, not Acquia. |
| Yes |
If this content did not answer your questions, try searching or contacting our support team for further assistance.
Campaign Studio