Effective Date: February 1, 2019

Please see the Glossary for definitions and explanations of capitalized terms used in this Privacy Policy.

Respect for the privacy of your personal and other information is extremely important to us. When you use the Site, our Platform or otherwise communicate with us (e.g. via email) you will provide, and Looker will collect, certain information, some of which can be used to personally identify and/or locate you (“Personal Information”). This Privacy Policy describes and is intended to help you understand what that Personal Information comprises, how Looker uses that Personal Information, and what safeguards are in place to protect that Personal Information.

By using this Site, the Platform and/or otherwise communicating with us, you agree to this Privacy Policy. Please read it.

Looker complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Frameworks as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of Personal Information transferred from the European Union, United Kingdom (UK) and Switzerland, as applicable, to the United States. Looker has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this Privacy Policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.

Privacy Shield Principles:

Notice. We are providing this Privacy Policy to you to describe the ways we collect, use, transfer, store, secure and protect Personal Information, the ways you can exercise your rights to access and control your Personal Information, and the complaint and recourse methods available to you.

Information Collected By The Looker Site

When you use the Site, create an account to use the Site (or someone, such as your organization’s administrator, creates an account on your behalf), use our Platform or otherwise communicate with us (e.g. via email), Personal Information will be collected by the Site or Platform. The Personal Information collected is as follows:

Additional Information Collected By The Looker Platform

When you use the Platform, create an account to use the Platform (or someone, such as your organization’s administrator, creates an account on your behalf), additional information about your use of the Platform is collected:

As well as the processes described above, you may also choose: not to provide certain Personal Information when requested (e.g. via forms available on the Site); and/or to opt-out of the collection of certain Personal Information by us, by emailing us at markops-requests@looker.com.

See also “COOKIES AND RELATED TECHNOLOGIES” section below for information about how information generated using these technologies is used.

Looker also may collect information that does not identify or locate you personally, meaning business information such as SIC code, industry, number of employees, or sales funnel status. Looker reserves the right to maintain, disclose, or otherwise use such information without limitation including aggregated with other information to improve the Site, Platform and services offered by Looker.

Data Integrity and Purpose Limitation

This section describes the ways we use and store Personal Information.

Information Stored in Looker

Looker uses a read-only connection to access the minimum amount of data needed to answer your questions and only returns the relevant result set. Alternatively, customers can choose to give Looker write-access to their database to take advantage of PDTs (persistent derived tables). This feature lets you define summary tables that Looker will write on your behalf into your database, at a cadence of your choosing.

Accordingly, Looker holds two types of Personal Information, in two ways: information about Looker users, and the customer data necessary to answer Looker users’ queries.

  1. Information about Looker users. This information about Looker users includes end-user login/registration information for Looker users as well as metadata about their usage. Metadata is used to facilitate product improvements, customer support and license auditing. Login information is controlled by customers directly as it is entered on their Looker instance and they can delete their users’ (i.e. their employees’) information at any time. We retain basic user contact information to send product updates, relevant marketing, training and events based on the users’ communication preferences.

  2. Customer data necessary to answer users’ queries. Once Looker is connected to a customer database, the Looker cache retains data from the customer’s database that is fetched in response to its users’ queries. This data is encrypted and stored by Looker for a maximum of 30 days or 2GB of data—whichever occurs first. If you prefer, you can also take additional steps to reduce the amount of time that query results are held in cache.

How Information May Be Used By The Looker Site

Looker may use the Personal Information collected by the Site or Platform as follows:

Additional Information Used By The Looker Platform

Looker may use your Personal Information collected by the Platform as follows, depending upon the nature of your Looker deployment:

Choice, Control and Access

This section describes the ways you can exercise your rights to access and control your Personal Information.

Email Communications Preferences

Looker respects your email communications and marketing preferences. If you prefer not to receive product release notes communications or promotional email messages (such as marketing, events, training) from Looker, you can unsubscribe from Looker’s email marketing list by following the unsubscribe link located at the bottom of each promotional email, going to our subscription center, or contacting us at markops-requests@looker.com with “UNSUBSCRIBE” in the subject line. Note: Please allow five (5) business days to be removed from all email communications.

Accessing, Correcting And Deleting Your Personal Information

Ensuring that Personal Information we hold about you is accurate and complete is important to us. If you would like to request access to, correct or delete the Personal Information, please send us an email at markops-requests@looker.com. We will verify these requests and respond to you in accordance with our legal obligations, which typically means forwarding your request to the licensed administrator (customer) of your Looker account for review.

To request removal of your personal information from an Interactive Area, please contact us at markops-requests@looker.com.

Looker customers create and remain in control of your data and data about your users and user activities and reports. When you remove users from your Looker-connected database instance, their data will be removed from Looker’s databases within 30 days and within 30 days they will no longer remain in Looker's cache. If you wish to delete a Looker user’s account data, we have a process to permanently anonymize the data by data engineering, either self-serve or on request. If you would like Looker to delete your customer data or Looker user account detail, please send an email to privacy@looker.com.

Accountability and Onward Transfer

This section describes our accountability with regard to the onward transfer of your Personal Information to third party service providers (suppliers), partners and across country borders.

Information Sharing

Except as listed below, Looker will not share Personal Information with third parties unless you have consented to the disclosure.

Depending on how Looker is deployed by the customer, Looker may share Personal Information with third-party service providers that need your information to provide the following operational or other support services to Looker, the Site or Platform:

To ensure the confidentiality and security of your Personal Information, we ask service providers that handle Personal Information to sign a Data Protection Addendum. These service providers are restricted by contract from using your Personal Information in any way other than to provide services for Looker. Looker is accountable and has liability in cases of onward transfers to third party service providers.

Looker does not share the information contained in your organization’s Looker database and used with the Looker Platform with the above third-parties.

If you integrate a 3rd party service through the Looker Action, Integration or Application Hub, or through Professional Services, you are choosing to share the information contained in your organization’s Looker database with that 3rd party service.

Looker may also provide your Personal Information to a third party if:

Looker may also share your Personal Information with our subsidiaries, affiliates, and partners, to facilitate our global operations and in accordance with applicable laws, our Service Agreement, Terms of Service or Contracts. We may also provide your Personal Information to a third party in connection with a merger or acquisition of Looker, either in part or in whole, or the assignment or other transfer of the Site. In such event, such third party will either:

International Transfer And Storage Of Information Collected

We primarily store information collected from you within the European Economic Area, the United States and in other countries and territories. By default, Looker hosts in the U.S. region, but at the customer’s request, we can host in various other regions, including within the EU, Asia and Latin America, which varies based on each unique customer circumstances. To facilitate our global operations, we may transfer and access such personal information from around the world, including from other countries in which Looker has operations. For customers who need to be hosted inside the EU, we host in the Dublin, Ireland region. Customers can also host their own Looker instance on their own servers. We use applicable, approved information transfer mechanisms where required, such as EU Standard Contractual Clauses (SCCs), or the EU - U.S. Privacy Shield.

Data Security

Looker has a dedicated information security function responsible for security and data compliance across the organization.

Looker protects the Personal Information it collects via the Site or Platform with reasonable and appropriate physical, electronic, and procedural safeguards and has a SOC 2 report. Any sections of the Site or Platform that collect sensitive Personal Information use industry-standard secure socket layer (TLS/SSL) encryption. To take advantage of TLS, your browser must support up-to-date encryption protection, as found in the latest versions of most common browsers, such as Internet Explorer, Mozilla Firefox, Google Chrome, and Safari.

Cookies And Related Technologies

Cookies are small data files that are placed on users’ devices to monitor how users interact with websites and other online services. Pixel tags, also called web beacons or single-pixel gifs, tag a graphic on a web page or in an email message that tracks pages viewed or email messages opened. Logs are continuous digital records of events and interactions that occur on a website. Cookies, pixel tags, and/or logs can be used to identify your IP address, browser type, domain name, and specific web pages through which you click and/or email messages you open. Our detailed cookie policy is here.

Looker and our service providers may use cookies, pixel tags, and/or logs because they:

Most web browsers allow you to erase cookies on your computer, block cookies from your computer, or notify you when a cookie is stored on your computer. If you choose to disable or otherwise block certain cookies, you may be unable to use, or experience decreased functionality with, parts of the Site. Your browser may also support functions to block or restrict pixel tags.

How We Respond To Do Not Track Signals

We track visitors to the Site over time (see “COOKIES AND RELATED TECHNOLOGIES” section above), We do not track visitors to the Site across third-party websites and therefore we do not respond to Do Not Track signals in these circumstances.

Our Advertisements

Looker’s third-party service providers serve ads on our behalf across the Internet. Some of these ads may be personalized for you based on information collected from your use of the Site. We do not share any of your Personal Information with the third-party service providers that serve ads on behalf of Looker. Please visit the Network Advertising Initiative Opt-Out page at: http://www.networkadvertising.org/managing/opt_out.asp if you do not wish to receive personalized ads from Looker on third-party websites.

The Network Advertising Initiative (“NAI”) offers useful information about Internet advertising companies, including information about how to opt out of interest-based advertising by their members. See http://www.networkadvertising.org/participating-networks for the list of NAI members. See http://www.networkadvertising.org/managing/opt_out.asp for the opt-out page. You may also visit http://www.aboutads.info/consumers/ to learn about online behavioral advertising and how to opt out from online behavioral ads served by some or all participating companies.

Links To Third-Party Sites

The Site or Platform may contain links to a number of sites owned and operated by third parties that may offer useful information. The policies and procedures described in this Privacy Policy do not apply to those third-party sites. Please contact those third-party sites for information on their data collection, security, and distribution policies.

Minimum Age

Looker is a business service, not a consumer product. The Site or Platform is not directed to, nor intended to be used by, individuals under the age of 13, or the equivalent minimum age in the relevant jurisdiction. Looker does not knowingly collect personal information from individuals under the age of 13, or the equivalent minimum age in the relevant jurisdiction. If you become aware that an individual under the age of 13, or the equivalent minimum age in the relevant jurisdiction, has provided us with personal information, please contact us immediately at privacy@looker.com. If we become aware that an individual under the age of 13, or the equivalent minimum age in the relevant jurisdiction, has provided us with personal information, we will take steps to delete such information.

Job Applicants

If you apply for a job at Looker, we collect and use your personal data for legitimate human resources and business management reasons including:

Your personal data may be accessed by recruiters and interviewers working in the country where the position for which you are applying is based, as well as by recruiters and interviewers working in different countries.

We use third party service providers to provide a recruiting software system. We also share your personal data with other third party service providers that may assist us in recruiting talent, administering and evaluating pre-employment screening and testing, and improving our recruiting practices.

Recourse and Enforcement

This section describes how to contact us about our practices or to make a complaint, the complaint and recourse methods available to you, and the enforcement powers to which we are subject.

In compliance with the Privacy Shield Principles, Looker commits to resolve complaints about our collection or use of your personal information. European Union, UK and Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Looker at:

101 Church Street, 4th Floor, Santa Cruz, CA 95060

Data Protection Officer
Lillian Pang, Taceo Limited

If you have an unresolved complaint, Looker has committed and signed on to the JAMS EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield ADR (JAMSADR), an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not resolved your complaint, please contact or visit https://www.jamsadr.com/eu-us-privacy-shield for more information or to file a complaint.

The services of JAMS EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield ADR are provided at no cost to you. Mediations will be conducted pursuant to JAMS International Mediation Rules unless the parties have specified a different set of Rules or Procedures.

Looker is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC). European Union and Swiss individuals have the possibility, under certain conditions, to invoke binding arbitration.

Updates To This Privacy Policy

Looker may update this Privacy Policy from time to time. When we do update it, for your convenience, we will make the updated Privacy Policy available on this page. Please check this Privacy Policy periodically for changes. If we make any material changes, we will notify you by email (sent to the email address specified in your account registered with the Site or Platform) or by means of a notice on the Site or Platform.