Last Updated: 09-12-2017
This policy outlines our handling practices, how we collect and use the personal information you provide through Zoom Service. It also describes the choices available to you regarding the use of, your access to, and how to update and correct your personal information. If you give us personal information, we will treat it according to this policy. This policy may be updated from time to time and Zoom Service will indicate when the policy has been updated.
Collection of your personal information
Zoom collects and processes Customer Data under the direction of its Customers, and has no direct control or ownership of the personal data it processes. If you have been contacted by one of our customers and would no longer like to be contacted by that customer using our service, please contact that customer directly. We may transfer personal information to companies that help us provide our service. Transfers of personal data to subsequent third parties are covered by the service agreements with our customers. Customers are responsible for complying with any regulations or laws that require providing notice, disclosure and/or obtaining consent prior to transferring the data to Zoom for processing purposes.
When you sign up to use the Service, we collect personal information about you, including your name and email address ("Registration Information"), in addition to a password ("Authentication Information"). We may also collect the name of your employer. If your registration includes call out dialing, we may collect additional Registration Information, including your phone number, directory extension, and direct line.
We use Registration Information to enroll you in the Service, to display your identity to other users, to notify you about features and updates, to understand how the Service is used, to send you marketing communications, and to make improvements to the Service and other Zoom products and services. If you sign up for the Service using your work email address, your Registration Information will be visible to other users who have the same email domain.
When you download and use our Services, we automatically collect information on the type of device you use and operating system version.
We collect your location based information for the purpose of optimizing your connection to our data center. We will only share this information with our service provider for the sole purpose of providing you this service.
If you do not wish to allow us to share your information in this manner please opt-out by contacting us at email@example.com.
You may opt-out of location based services at any time by editing the setting at the device level or by emailing us at firstname.lastname@example.org.
We collect and retain personal information and other information you upload, provide, or create while using the Service ("User-Generated Information"), including information related to:
- Meetings: Meeting title, invitation content, participants, meeting link, date, time and duration. We collect activity recorded in the meeting (such as joining or leaving), including activity related to third-party integrations, together with the date, time, person engaged in the activity, and other participants in the meeting with the date, time, duration, and quality ratings that you provide. We route audio and video call content and screen sharing content between call participants but we do not retain or store the content unless cloud recording is used.
- Messages: Message content, sender and recipients, date, time, and read receipts
- Content shared: Files and file names, sizes, and types
- Whiteboards: Whiteboard content, snapshots, and background images
- Status: Status information, for example about whether and when you are active, out of office, or have turned on Busy. You can choose whether or not to share status information with other users.
All messages and content you share in a meeting, including personal information about you or others, will be available to all other participants in that meeting.
If you share a meeting link with another user who is not already in the meeting, when that user tries to join the meeting he or she will be able to see the list of other users in the meeting, as well as other invitees joining the meeting.
In the normal course of using the Service, Customers will input electronic data into the Zoom systems ("Customer Data"). The use of information collected through our service shall be limited to the purpose of providing the Service. Zoom may access Customer Data for the purposes of providing the Service, preventing or addressing service or technical problems, responding to support issues, responding to Customer's instructions or as may be required by law, in accordance with the relevant agreement between Customer and Zoom.
Host and Usage Information
Our servers automatically record certain information when you use the Service, including your IP address, operating system type and version, client version, IP addresses along the network path, and the MAC address of your internet connection ("Host Information"). We also automatically record information about your usage of the Service, including actions taken, date and time, frequency, duration, quantity, quality, network connectivity, and performance information related to logins, clicks, messages, contacts, content shared, calls, use of video and screen sharing, meetings, cloud recording, and other feature usage information ("Usage Information"). We use Host Information and Usage Information to understand how the Service is used, to diagnose problems, to respond to customer support requests, to conduct analytics and aggregate statistical analysis, and to improve the Service and other Zoom products and services.
When you use the "Send Feedback" feature of the Service or, choose to send a problem report or logs from a device, logs of your activity are automatically shared with us so that we can provide technical support and make product improvements. In some cases, you may be offered the option to send logs at the end of a specific call following a call failure or a low call rating within the Service. These logs record information about the participants, date, time, duration, and quality related to your activities with the Service, as well as hashes (one-way encrypted versions) of messages you've sent or received. If your device is paired with an endpoint, the activity logs from the paired device will also be shared with us. These logs may pertain to other users of the paired device besides you. No content or message text that you send or receive is shared with us, unless you choose to include optional screen shots that display messages or content. The logs are stored unencrypted on your device and, together with screen shots, are sent to us using transport encryption (see next section). Your employer has the ability to share logs with us on demand from any device it administers.
Mobile and Browser Permissions
The Service makes use of a number of features available on mobile device and web browser platforms to support a full-featured collaboration experience. Depending on which mobile or browser platform you use and which Service features you use, your application may request or automatically obtain some or all of the following permissions:
- Phone, microphone, camera, and audio recording: the Service uses access to your device's phone interface, microphone, and camera to allow you to make audio and video calls. On some devices, the mobile device platform also requires that audio recording permission be obtained so that you can make calls (although we do not record audio). The Service will only make use of these permissions when you choose to initiate or receive a call. Camera access is also used to allow you to participate in the video conference.
- Screen sharing: the Service needs screen sharing permission to allow you to share your screen with other users during a call. The Service will only share the screen content that you specify and will only share it with the other users on the call.
- Calendar and contacts: the Service uses calendar and contact information to make it easier for you to connect with contacts and to schedule meetings.
- Files and photos: To make it possible for you to share files and photos with other users, the Service needs permission to access files and photos stored on your device.
- Push notifications: You can choose to allow the Service to notify you about new messages and other activity even when you do not have the Service application open. User information collected by the Service is shared with third-party push notification services and mobile operators when users allow push notifications. If you no longer wish to receive these types of communications, you may turn them off at the device level.
We do not sell or rent your Personal Information to third parties for marketing purposes unless you have granted us permission to do so.
We may share your Personal Information within Zoom and its affiliated companies and with third party service providers for purposes of data processing or storage.
We may also share your Personal Information with business partners, service vendors, authorized third-party agents or contractors in order to provide a requested Product or transaction, including processing orders, processing credit card transactions, hosting websites, hosting event and seminar registration and providing customer support. We only provide these third parties with the minimum amount of Personal Information necessary to complete/utilize the requested Product or transaction, and the third parties are not permitted to use your Personal Information except for limited purpose of completing/providing the requested Product or transaction.
As required by law, Zoom may respond to subpoenas, court orders, or similar legal process by disclosing your Personal Information and other related information, if necessary; We also may choose to establish or exercise our legal rights or defend against legal claims.
Zoom may collect and possibly share Personal Information and any other additional information available to us in order to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of Zoom's terms of service, or as otherwise required by law.
Unsubscribing and Opting Out
Each promotional email from Zoom or from third parties to whom Zoom has given your email address with your consent includes instructions on how you can unsubscribe from that category of mailing or from receiving email from that third party.
You may also unsubscribe from Zoom's promotional emails by sending an email, including your name and email address to email@example.com.
If you have additional questions regarding your disclosure choices and Zoom's policies regarding receipt of promotional email, you may contact Zoom by sending an email with your name and email address to firstname.lastname@example.org.
We partner with a third party to either display advertising on our website or to manage our advertising on other sites. Our third party partner may use technologies such as cookies to gather information about your activities on this website and other sites in order to provide you advertising based upon your browsing activities and interests. If you wish to not have this information used for the purpose of serving you interest-based ads, you may opt-out by clicking here (or if located in the European Union click here). Please note this does not opt you out of being served ads. You will continue to receive generic ads.
Access and Data Retention
Zoom acknowledges that you have the right to access your personal information. Zoom has no direct relationship with the individuals whose personal data it processes. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data, should direct his or her query to the Zoom Security Team (the data controller). If the Customer requests Zoom to remove the personal data to comply with data protection regulations, Zoom will respond to their request within 30 days.
Zoom retains Customer Data according to the timeframes set forth in the relevant agreement with its Customers or for as long as needed to provide services to our Customers. Zoom will retain this personal information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
Zoom is committed to protecting the Personal Information you share with us. We utilize a combination of industry-standard security technologies, procedures, and organizational measures to help protect your Personal Information from unauthorized access, use or disclosure.
When we transfer credit card information over the Internet, we protect it using Secure Sockets Layer (SSL) encryption technology.
We recommend you to take every precaution in protecting your Personal Information when you are on the Internet. For example, change your passwords often, use a combination of letters and numbers when creating passwords, and make sure you use a secure browser.
If you have any questions about the security of your personal information, you can contact us at email@example.com.
EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield Statement
Zoom participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield. Zoom is committed to subjecting all personal data received from European Union (EU) member countries and Switzerland, in reliance on the Privacy Shield Framework, to the Framework's applicable Principles. To learn more about the Privacy Shield Frameworks, and to view our certification, visit the U.S. Department of Commerce's Privacy Shield List. [https://www.privacyshield.gov/list]
Zoom is responsible for the processing of personal data it receives, under the Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Zoom complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the Privacy Shield Frameworks, Zoom is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, Zoom may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
Under certain conditions, more fully described on the Privacy Shield website [https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint], you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
Questions or comments?
Zoom Video Communications, Inc.
Attention: Privacy Officer
55 Almaden Blvd, Suite 600
San Jose, CA 95113
Zoom may amend this privacy statement from time to time, and at any time. We will post a notice on this website whenever this privacy statement is materially changed. Your continued use of the Zoom website or Products after any change will signify and confirm your assent to those changes.