California Consumer Privacy Act Disclosures

You have the right to request that we disclose what personal information we collect, use, or disclose about you specifically (“right to know”) and to request the deletion of personal information. To submit a request to exercise the right to know, please submit an email request to [privacy@sendbird.com] or call our toll-free number at 1-844-CHATAPI (242-8274). To submit a request to delete personal information, please submit an email request to [privacy@sendbird.com] or 1-844-CHATAPI (242-8274).

Sendbird may ask that you provide certain information to verify your identity. The information that we ask you to provide to verify your identity will depend on your prior interactions with us and the sensitivity of the personal information at issue. Sendbird will respond to your request in accordance with the CCPA. If we deny your request, we will explain why.

When a business sells your personal information, you have a right to opt out of such sale. We do not sell, and in the preceding 12 months did not sell, the personal information of California residents. We do not have actual knowledge that it sells the personal information of minors under 16 years of age.

We have set out below categories of personal information we collect about California residents and have collected in the preceding 12 months. For each category of personal information, we have collected, we have included the reference to the enumerated category or categories of personal information in the CCPA that most closely describe such personal information.

Shine the Light: Pursuant to California Civil Code Section 1798.83, if you are a California resident, you have the right to obtain: (a) a list of all third parties to whom we may have disclosed your Personal Information within the past year direct marketing purposes, and (b) a description of the categories of Personal Information disclosed, by contacting us per the “Contact Us” Section below.

Sendbird collects such information from the following categories of sources:

• Directly from You. We may collect personal information when you: create a Sendbird account; make a purchase; communicate with us including when you request information about our Services, register for regular information updates, and request customer or technical support; participate in our surveys; make information available through our interactive features; transfer information to third party platforms, such as your social media platforms; and provide information while attending our conferences, trade shows, webinars, or other events.
• Using cookies and automatic collection methods. Sendbird and its service providers may collect personal information from the computer, tablet, phone, or other device that you use to access our Services or to open an email or click on an advertisement from Sendbird. Sendbird uses efforts to respond to and honor “do not track signals.” For more information about our collection of Cookies and Similar Technologies, please refer to our Cookie Policy.
• Third Parties, including Service Providers. We may collect personal information about you that you have made available via your privacy settings when you access our Services through a third-party application, such as an app store, a third party log-in service, or a social networking website. We may also collect personal information from service providers that we use to perform Services on our behalf or assist us with our provision of Services to you and from other third parties that we choose to collaborate or work with. Further, third parties, such as your friends, family, or co-worker, may provide information about you through our referral service.

Sendbird collects, uses, retains, and discloses your personal information for the purposes described below:

• Establish your identity and verify the accuracy of your information.
• Provide you with our services, including to: provide you access to our Services, applications, tools, and functionalities; process, maintain, and service your account(s); offer you enhanced functionalities when accessing our Services, including to keep track of your specified preferences, interests, or past items viewed; process your payments; identify and repair errors with our Services; provide you customer or technical support; allow you to register for our events; and enable service providers to perform the Services on our behalf of assist us with our provision of Services to you.
• Manage user relationship and communications with you.
• Handle and record consumer rights requests, including opt-ins and opt-outs.
• Market our products and Services and provide personalized service or product recommendations to you.
• Engage in research and development efforts to assess the performance of our Services, analyze activities, usage, interests, and trends in connection with our Services, improve and personalize our Services, and develop new products and services.
• Assess and pursue potential business opportunities.
• Monitor, protect and improve Sendbird security assets and resources, including devices, systems, customer data, infrastructure, and Sendbird network.
• Audit interactions and transactions with you, identify irregular website behavior, and prevent fraud or other unauthorized or illegal activity.
• Enforce our agreements and policies, comply with laws and regulatory requirements, and respond to lawful requests, court orders, and legal processes.
• Create de-identified and/or aggregated information, such as demographic information and information about the device from which you access our Services . If we create or receive de-identified information, we will not attempt to re-identify such information, except to comply with applicable law.

In the preceding 12 months, Sendbird disclosed the above categories of personal information to the following categories of third parties for a business purpose, in some cases as directed by you:

• Sendbird Affiliates and Business Partners. In particular, we may transfer your personal information to our affiliates for administrative purposes, including IT management, to provide Services to you, and to support and supplement the Services we provide. We may also transfer your personal information to business partners to provide you with a product or service you have requested or to jointly offer a product or service to you.
• Third Parties, including Service Providers. In particular, we may use service providers to perform Services on our behalf or assist us with the provision of Services to you, including to provide us with IT support, hosting, payment processing, customer service, marketing, advertising, and related services. We may also transfer your personal information to third parties in connection with a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, purchase or sale of assets, or transition of service to another provider, as permitted by law and/or contract.
• Government Regulatory Authorities. In particular, we may disclose your personal information to relevant government regulatory authorities if we believe the disclosure is reasonably necessary to comply with a law, regulation, or legal request. We may also transfer your personal information to third parties if we, in good faith, believe doing so is required to enforce our policies or contracts, collect amounts owed to us, assist us with an investigation or prosecution of a suspected or actual illegal activity, or to otherwise protect your, our, or others’ rights, property, or safety.

If you are a resident of California, subject to certain exceptions, you may have the following rights:

You may not be discriminated against because you exercise any of your rights under the CCPA in violation of California Civil Code § 1798.125.

If you would like to opt out of sharing or the sales of your Personal Information, you may submit your opt-out request [here]. If you would like to limit the use of your sensitive Personal Information, you may submit your request [here].

You can designate an authorized agent to make a request under the CCPA on your behalf if:

• The authorized agent is a natural person or a business entity registered with the Secretary of State of California and the agent provides proof that you gave the agent signed permission to submit the request; and
• You directly confirm with Sendbird that you provided the authorized agent with permission to submit the request.

If you use an authorized agent to submit a request to exercise your right to know or your right to request deletion, please provide any information Sendbird requests to verify your identity. The information that Sendbird asks you to provide to verify your identity will depend on your prior interactions with us and the sensitivity of the personal information at issue.

If you provide an authorized agent with power of attorney pursuant to Probate Code sections 4121 to 4130, it may not be necessary to perform these steps and we will respond to any request from such authorized agent in accordance with the CCPA.

We use commercially reasonable efforts to protect the confidentiality and security of the personal data we process. However, despite these efforts to store personal data in a secure operating environment, we cannot guarantee the security of the personal data during its transmission or its storage on our systems. Furthermore, while we attempt to ensure the integrity and security of personal data, we cannot guarantee that our security measures will prevent third parties, such as hackers, from illegally obtaining access to it.

Please note that we may modify or update this CCPA Notice from time to time, so please review it periodically. We may provide you with an updated Notice if material changes are made. Unless otherwise indicated, any changes to this Notice will apply immediately upon posting to the Site.