Request a demo Support
Request a demo Support

Privacy Policy

VNDLY Privacy Statement

Last Revised: February 28, 2022

VNDLY Inc. (“VNDLY,” “Workday,”  “we,” “us,” or “our”), recognizes the importance of your privacy. This Privacy Statement outlines the types of personal  data we gather when you use our website at: www.vndly.com (“Website”), when you attend our marketing events both online and offline (“Events”), as well for supplier and business account management.

As part of the operation of the Website, certain pieces of information are gathered about the users (individually, “you” or a “User” and collectively, “Users”). This Privacy Statement explains the types of personal data collected, what is done with such information, and how to correct or change the information. 

This Statement applies to personal data we collect on this Website or in emails and other electronic messages between you and this Website, and personal data gathered when you interact with our advertising on third-party websites if such advertisements include links to this Statement.  

VNDLY as a Service Provider

VNDLY customers are organizations that use our application to process personal data about their extended workforce (“Customer Data Subjects”) and to manage their relationships with these individuals. VNDLY processes personal data about these Customer Data Subjects in our application only according to our customers’ instructions as a “processor” or “service provider” and this Privacy Statement does not apply.

If you are a Customer Data Subject and have questions or want to exercise any of your rights regarding your personal data, you should direct your inquiry to the relevant VNDLY customer. If you contact VNDLY directly for these purposes, we are required to inform the relevant VNDLY customer (if we can identify them from the contact details you provided).

Personal Data We Collect

Information You Provide to VNDLY

We collect personal data that you provide to VNDLY, such as your:

  • First Name
  • Last Name
  • Telephone number
  • Business email

You may provide us personal data when you:

  • request information from us;
  • schedule a demonstration; 
  • subscribe to our emails; or
  • attend a VNDLY-sponsored event.

The information that you provide in each case will vary, and in some cases, you may be able to provide information via email or free-form text fields, such as contacting VNDLY to request further information.  When providing your personal data, please provide only relevant information and do not provide unnecessary sensitive information.

Other Information

If VNDLY collects any other personal data from you, we will explain which data and why we need it at the time we collect it.

Information We Collect Automatically When You Use the Website

When you access or use the Website, we may automatically collect information about you using automated tools that are detailed below. These tools may collect information about your behavior and your computer system, such as your internet address (IP Address), the pages you have viewed, and the actions you have taken while using the Website. Some of the tools we use may include:

  • Cookies. A “cookie” is a small data file transmitted from a website to your device’s hard drive. Cookies are usually defined in one of two ways, and we may use both of them:(1) session cookies, which do not stay on your device after you close your browser, and (2) persistent cookies, which remain on your device until you delete them or they expire.We use the following categories of cookies on our Website.
    • Strictly Necessary Cookies. These cookies are essential in order to enable you to move around the Website and use its features. Without these cookies, services you have requested, such as maintaining a record of your purchased items (e.g. a shopping cart), cannot be provided.
    • Performance Cookies. These cookies collect information on how people use our Website to help us understand how you arrive at our site, browse or use our Website and highlight areas where we can improve, such as navigation. 
    • Functionality Cookies. These cookies remember choices you make such as the country from which you visit our Website, your preferred language, and your search parameters. This information can then be used to provide you with an experience more appropriate to your selections and to make your visits to our Website more tailored to your preferences. These cookies do not track your browsing activity on other websites.
    • Targeting Cookies or Advertising Cookies. These cookies collect information about your browsing habits in order to make advertising more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as help measure the effectiveness of an advertising campaign. The cookies are usually placed by third-party advertising networks. One such third-party is Google Analytics. The Website sends aggregated information to Google Analytics for the purpose of providing us the ability to conduct technical and statistical analysis on the Website’s performance. For more information on how Google Analytics uses information sent from the Website, please review Google’s privacy policy available at https://policies.google.com/technologies/partner-sites.

Of course, if you do not wish to have cookies on your devices, you may turn them off at any time by modifying your internet browser’s settings. However, by disabling cookies on your device, you may be prohibited from full use of the Website’s features or lose access to some functionality.

  • Web Beacons. Web Beacons are tiny graphics files that contain a unique identifier that enable us to recognize when someone has visited our Website or opened an email that we have sent them.  This allows us, for example, to monitor the traffic patterns of users from one page within our Website to another, to deliver or communicate with Cookies, to understand whether you have come to our Website from an online advertisement displayed on a third-party website, to improve site performance, and to measure the success of email marketing campaigns.  In many instances, these technologies rely on Cookies to function properly, and so declining Cookies will often impair their functioning.
  • Embedded Web Links. Links provided in our emails and, in some cases, on third-party websites may include tracking technology embedded in the link. The tracking is accomplished through a redirection system. The redirection system allows us to understand how the link is being used by email recipients. Some of these links will enable us to identify that you have personally clicked on the link and this may be attached to the personal data that we hold about you. This data is used to improve our service to you and to help us understand the performance of our marketing campaigns.
  • Social Media Features and Widgets. The Website includes social media features and widgets. These features may collect your IP address, which page you are visiting through the Website, and may set a cookie to enable the feature to function properly. Social media functions are either hosted by a third party or hosted directly through the Website. Your interactions with these features are governed by the privacy statement of the company providing them.

Personal Data Obtained from Third-Party Sources

VNDLY may also collect business contact information about you from other sources including third parties from whom we have purchased business contact information and from publicly accessible websites, such as your company’s website, professional network services, or press releases. Business contact information may include:

  • First name
  • Last name
  • Business email
  • Telephone number
  • Company name
  • Job level
  • Functional role
  • Business street address
  • Online identifier
  • Employment history 

In some instances, VNDLY may combine personal data you have provided to us with personal data collected from other sources as described above. We use this data for our internal customer analytics, to identify prospective customer marketing opportunities, and to improve the relevance of our Website content and our advertising.

Your Choices and Selecting Your Privacy Preferences

We want to provide you with relevant information that you have requested.

You can opt out of receiving marketing email or any subscription-based services, such as email newsletters at any time by selecting the “unsubscribe” link at the bottom of each email.

How We Use Your Personal Data

Use in General. We may use your personal data for a variety of purposes, including to:

  • Provide, operate, maintain and improve the Website;
  • Respond to your comments, questions, and requests and to provide customer service and support;
  • Prevent potentially illegal activities;
  • Fulfill your requests;
  • Provide information that is relevant to you;
  • Monitor and analyze trends, usage, and activities in connection with the Website and for marketing or advertising purposes; 
  • Customer and supplier account management;
  • Plan and manage Events;
  • For other purposes about which we notify you.

Use of Aggregate or De-Identified Information. In addition to the individual data use described in this Privacy Statement, we may aggregate information about you and other individual users together, or otherwise de-identify the information about you, so that the information does not identify you personally. We may use information in these forms for a variety of purposes, including for research and analysis, administration of the Website, and advertising.

Sharing and Disclosure of Personal Data

We will not share your personal data with third parties except as described in this Privacy Statement.  

  • Service Providers. We may share your personal data with third-party vendors, contractors, and other service providers working on behalf of VNDLY and require access to your personal data to carry out that work. These third-parties are under contract to keep your personal data secure and not to use it for any reason other than to fulfill the service we have requested from them.
  • Webinars, Events, and Other Activities Related to Workday Offerings.  VNDLY may offer the following solely or jointly with third parties or partners: webinars, Events, whitepaper downloads, or other services related to VNDLY offerings or services. We may share your contact information and interests in these offerings or services with these approved third parties to communicate with you about VNDLY.
  • Compliance with Laws. We may disclose your personal data to a third party if (1) we believe that disclosure is reasonably necessary to comply with any applicable law, regulation, legal process or governmental request, (2) to enforce our agreements, policies, or Terms of Use, (3) to investigate and help prevent security threats, fraud, or other malicious activity, (4) to protect the rights or personal safety of VNDLY’s employees, or (5) to respond to an emergency which we believe in good faith requires us to disclose such information to assist in preventing the death or serious bodily injury of any person.
  • Affiliates. We may share information we have collected under this Privacy Statement with affiliates of VNDLY and with the parent Company for use as otherwise described in this Privacy Statement.

There are circumstances where VNDLY may decide to buy, sell, or reorganize its business in selected countries. Under these circumstances, we may share or receive personal data with prospective or actual partners or affiliates. In such circumstances, VNDLY will ensure your information is used in accordance with this Privacy Statement.

International Data Transfers

VNDLY, a Workday company, operates as a global business and may transfer, store, or process your personal data in a country outside your jurisdiction, including countries outside the European Economic Area (“EEA”), Switzerland and the United Kingdom (“UK”). However, we have taken appropriate safeguards with respect to the protection of your privacy, fundamental rights and freedoms, and the exercise of your rights. For example, if we transfer personal data from the EEA, Switzerland or UK to another country, such as the United States, we will implement an appropriate data transfer solution such as entering into “standard contractual clauses” approved by the European Commission or competent authority (as applicable) with the data importer, or take other measures to provide an adequate level of data protection under EU, Swiss and UK law.

Your Rights Over Your Personal Data

Depending where you are located, you may have certain legal rights over the personal data we process about you, subject to local privacy laws.

These may include the right to:

  • Obtain information about, and access the personal data we process about you
  • Have incorrect personal data updated 
  • Have your personal data deleted
  • Restrict the processing of your personal data
  • Object to the processing of your personal data carried out on the basis of our legitimate interests or for direct marketing purposes
  • Receive a copy of your personal data in an electronic and machine-readable format
  • Not be subject to a decision based solely on automated processing, including profiling, which produces legal effects or otherwise significantly affects you (“Automated Decision-Making”). Workday does not perform Automated Decision-Making as part of the processing activities covered by this Privacy Statement. 
  • Receive the categories of sources from whom we collected your personal data
  • Opt out of marketing communications at any time by clicking on the “Unsubscribe” or “Opt out” link in marketing emails we send you or by contacting us
  • Complain to a regulator or data protection authority about our collection and use of your personal data. For more information, please contact your local data protection authority.

Workday will not discriminate against you for exercising your rights.

You can exercise the applicable rights by contacting us using the contact details at the bottom of this Privacy Statement or by submitting your request through our Request Portal

If your personal data has been submitted to us by or on behalf of a Workday customer and you wish to exercise any rights you may have under applicable data protection laws, please inquire with the applicable customer directly.

Legal Basis for Processing Personal Data

Our legal grounds for collecting and using your personal data as described in this Privacy Statement fall into the following four categories.  

Consent: In some cases, we ask you for your consent to process your personal data, such as when we need your consent for marketing purposes. You can withdraw your consent at any time, which will not affect the lawfulness of the processing before your consent was withdrawn. If you would like to withdraw your consent, you can do so by contacting us as provided in the How to Contact Us section below. 

Legitimate Interest: We process certain data for the legitimate interests of VNDLY, a Workday company, our affiliates, our partners, suppliers or our customers. These legitimate interests include, for example, contacting you to provide support or sending you marketing information (subject to applicable law); detecting, preventing, and investigating illegal activities and potential security issues; and maintaining and improving the Website and mobile applications and to deliver or receive services. We will rely on our legitimate interests for processing personal data only after balancing our interests and rights against the impact of the processing on individuals.

Performance of a Contract: Sometimes we process personal data to perform our obligations under an agreement with you. For example, we use payment information you provide when you register for an Event to process your payment.  

Other Legal Bases: In some cases, we may have a legal obligation to process your personal data, such as in response to a court or regulator order. We also may need to process your personal data to protect vital interests, or to exercise, establish, or defend legal claims.

Privacy Shield Framework

VNDLY participates in and complies with the EU-U.S. Privacy Shield Framework and Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data transferred from the European Union, the United Kingdom, and Switzerland to the United States. VNDLY has certified to the Department of Commerce that it adheres to the Privacy Shield Principles although VNDLY no longer relies on the EU-U.S. or Swiss-U.S. Privacy Shield Frameworks as a legal basis for transfers of personal data in light of the judgment of the Court of Justice of the European Union in Case C-311/18. VNDLY is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC). If there is any conflict between the terms in this Privacy Statement and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit the Department of Commerce’s Privacy Shield website.

Please direct any inquiries or complaints regarding our compliance with the Principles through our Request Portal. If VNDLY does not resolve your complaint, you may submit your complaint free of charge for resolution to JAMS, VNDLY’s designated independent Privacy Shield dispute resolution provider. Under certain conditions specified by the Principles, you may also be able to invoke binding arbitration to resolve your complaint. If VNDLY shares EU Data with a third-party service provider that processes the data solely on VNDLY’s behalf, then VNDLY may be held liable for that third party’s processing of EU Data in violation of the Principles, unless VNDLY can prove that it is not responsible for the event giving rise to the damage.

Safeguards

VNDLY protects your personal data by using safeguards that it has determined are appropriate to the sensitivity of the information. Unfortunately, neither VNDLY’s network nor data transmission over the Internet can be guaranteed to be 100% secure.  If you ever feel your personal data has been compromised or is at risk, please notify us via the “How to Contact Us” section below.

Third-Party Websites

On occasion, the Website provides “hyperlinks” to third-party websites. Please note that VNDLY does not endorse these websites and is not responsible in any way for the privacy practices of other websites and recommends you review the privacy policies of those other companies’ websites before using them.

Changes to this Statement

This Privacy Statement may be amended or revised from time to time at the discretion of VNDLY, a Workday company. Changes to this Privacy Statement will be posted on the Website and links to the Privacy Statement will indicate that the statement has been changed or updated. If we propose to make any material changes, we will provide notice on this page prior to the change becoming effective. We encourage you to periodically review this Privacy Statement for the latest information on our privacy practices.

How to Contact Us

If you reside in the European Economic Area, the United Kingdom, and Switzerland, Workday Limited is the controller for your personal data. For all other individuals, Workday, Inc. is the controller for your personal data.

If you have any questions about this Privacy Statement, wish to exercise your rights, or to contact our Data Protection Officer, please submit your request through our Request Portal. You may also contact us at one of the mailing addresses below:

Workday, Inc. 

Attn.: Privacy 

6110 Stoneridge Mall Road

Pleasanton, CA 94588

USA 

OR

Workday Limited 

Attn.: Privacy 

Kings Building, May Lane 

Dublin 7

Ireland 


Workday will respond to your request within a reasonable timeframe or as required by law.