Privacy Policy

Updated November 5th 2017

This is the Privacy Policy of Sanity AS ("Sanity"), a Norwegian company situated in Thorvald Meyers gate 49, 0555 Oslo. Sanity reserves the right to modify this privacy policy. The latest version of the privacy policy is always accessible at www.sanity.io/legal/privacy.

For Sanity, the protection and confidentiality of your data is of the utmost importance. If you are under the age of thirteen, you will need to collect your parents consent to use our services and accept these terms. 

Sanity collects and uses your personal data strictly within the legal limits of the data protection law of the Kingdom of Norway and, as of 25 May 2018, the EU General Data Protection Regulation no. 2016/679 as incorporated in Norwegian law. Terms that we use in this document like "personal data", "processing", "data controller" and "data processor" shall have the meaning as defined therein. 

Sanity is the data controller for the processing of personal data about the users of our services according to the relevant data protection law.

For any personal data in content that you may upload through our services (defined as "Customer Data" in our General Terms and Conditions), Sanity is however merely acting as a data processor on behalf of our customers, and we process such personal data on their behalf. The processing of your content through our services is further described below and in our General Terms and Conditions. 

This privacy policy informs you of the kinds, extents and purposes of any collection and use of personal data, and is divided into the following sections:

  1. General aspects regarding processing of personal data and your rights in Section 1
  2. The personal data we collect and use when you sign up and log in/on to our services/platform/application in Section 2
  3. Details of third party service providers and other personal data we collect and use when you visit our website Sanity.io and in Section 3
  4. The use and uploading of content through the Sanity platform in Section 4

Please address any requests regarding privacy to privacy@sanity.io or write to us at the postal address stated above.

1. General Aspects

1.1 Legal basis and purpose of our processing 

We process your data because it is necessary for the fulfillment of a contract with you and/or because it is necessary to perform our legitimate objective of providing the Sanity Services to our Customers. 

In addition, by accepting these privacy terms, and through the settings in your browser for use of so-called cookies, you consent to our use of your personal data for advertisement purposes as described in Section 3 below. You may of course freely withdraw your consent at any time, and you may deactivate the cookies we use as further described below.

Some of the personal data you may provide to us is not necessary for the provision of our services, and you will be given the opportunity to not provide such information. We will endeavor to inform you about any instances where failing to provide the information will or may reduce the quality of the service. Some information that you provide may be necessary for the provision of the services, and you will not have access to the service if you do not provide the information. 

1.2. Third party access to your data

Sanity use partners as part of providing our services to you, and our partners may also process your personal data to a certain extent.  In these cases, we share information with such companies or individuals to enable them to carry out their tasks. Such external service providers are carefully selected in order to ensure your privacy. Service providers may only use the data for the purposes under the agreement entered into between Sanity and the service provider. More information about our service providers is included in Section 3 below. 

If it serves investigations of illegal use of our services or is required to pursue legal claims, personal data may be shared with law enforcement agencies, public bodies and third-party victims’ claims based upon court orders or other binding orders from public bodies. Such transfer of data will be made in accordance with applicable laws and regulations.

1.3 Deletion of your data

Your data will be deleted once it is no longer required for the aforementioned purposes. If you delete your user account, your personal data will be deleted as well without unreasonable delay, and at the latest within a maximum period of 180 days, unless applicable legislation or legal process prevents us from doing so. To the extent that Sanity is legally obliged to archive data, such data will be blocked and will not be available for productive use.

1.4 Location of your data

Sanity is based in Norway and will primarily access your data from our regular place of business in Norway. 

Sanity uses services provided by Google Ireland Limited, with offices at Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). Google acts as a subcontractor and data processor, inter alia for hosting our services. Your personal data will be stored on servers within the EU/EEA. More specifically, Sanity uses Google Compute Engine servers and Google Container Engine clusters at data centres in
St. Ghislain, Belgium for storage and processing of all personal data, Google BigQuery across any of Google Cloud’s EU data centres (https://cloud.google.com/about/locations/) for storage and analysis of access and application logs, and Google Cloud Storage across any of Google Cloud’s EU data centres for storage of user-uploaded files and backups. Your data may be stored transiently or cached in any country in which Google or its agents maintain facilities. Under such circumstances, adequate safeguards as to such transfer to third countries are in place, such as transfer to companies in the US that are covered by the EU-US privacy shield or data controllers under agreement governed by the EU standard clauses accepted by the European Commission. Google's terms and conditions for processing of personal data are available here, https://cloud.google.com/terms/data-processing-terms, and are incorporated herein by reference.

1.5 Your rights

You are entitled, upon request, to disclosure regarding your personal data that we are storing or are otherwise processing. You are also entitled to have any incorrect personal data corrected and rights to blocking or deletion of your personal data. Under certain conditions, you have the right to object to processing of your personal data, and as far as the EU Regulation 2016/679 (GDPR) has entered into force you may ask to receive your personal data in a structured and commonly used format so that it can easily be transferred to you or another data controller you appoint (this is known as “data portability”).

If you have any complaints regarding our processing of your personal data, we encourage you to contact us. Please address any requests in such matters to privacy@sanity.io or write to us at the address stated above We also inform you that you are entitled by law to file a complaint with the Norwegian Data Inspectorate. 

2. Overview of personal data we collect and use

2.1 Log in information

In order to use all services offered by Sanity, you are required to register (www.sanity.io/sign-up/). You have several options. Today you may register using third party identity providers, such as Google and Github. If you choose to do so, the identity providers will provide Sanity with your name, email address and profile picture (if available). Sanity will not, however, have access to your password. In the near future, we also plan to enable you to register directly on the website. This will require you to enter your name, your email address and password, you may also provide us with other information upon login, such as your profile picture. For both options, this data is required to create and administer a user account for you and to enable you to use the service. To provide you with a better service, such data may be hosted in CRM systems or similar tools (such as salesforce.com).

If you decide to use services offered by Sanity that are subject to a charge, you are required to provide the name of your organization (if applicable), the organization's address (or yours if not applicable) and payment information. For enterprise customers, Sanity allows signup and login via third party enterprise authentication services, if previously agreed upon and formalized in terms with said enterprise. 

2.2 Automatic Data Collection

When you access the Sanity Services via the browser, your browser automatically transmits certain data for technical reasons. The following data is stored separately from any other data you may transmit to us: date and time of access, browser type and version, operating system, URL of the website visited prior to ours, amount of sent data, IP address, and performance numbers such as latencies and caching. This data is stored for purely technical reasons and is never associated with any particular individual.

When you access the Sanity services, via the Command Line Interface (CLI), the CLI automatically transmits certain data for technical reasons. The CLI allows a user to log in to their Sanity account and manage their project. All requests to the Sanity API are therefore authorized requests, which allows the API to authenticate and authorize the request and make decisions based on the logged-in user. The information transmitted in these requests depend on the action performed by the user, but all requests will record: date and time of access, version number of the CLI tool, amount of sent data, IP address, and performance numbers such as latencies and caching. This data is stored for purely technical reasons and is never associated with the user sending the request.

Other information that is explicitly provided by the user to perform operations is, however, logged and associated with the user, in order to provide audit logs and similar.

2.3 Cookies

Sanity stores so-called “cookies” to provide you with a wide range of functionalities. “Cookies” are tiny files stored on your computer through your browser. If you do not wish to receive “cookies”, you may deactivate storing “cookies” on your computer by changing your browser settings accordingly. Please note that the functioning of the website may be impaired and the range of functionalities may be limited if you deactivate “cookies”. The cookies we use are described in more detail in section 3 below. You may deactivate cookies in your web browser. For more information, please visit http://www.youronlinechoices.com/  

2.4 Further information

If you decide to use services offered by Sanity that are subject to a charge, Sanity may offer you the possibility to enter further information and/or flag issues using the customer account management tool on your profile page. The information requested by Sanity will then depend on your request and will be specified in the input mask. In addition, free-text fields allow you to enter more information. Sanity will use the information you enter to process your request.

2.5 Newsletter

Sanity offers a free newsletter service. In its newsletter, Sanity informs subscribers about changes to the Sanity Services. You may opt out of the newsletter at any time. Each newsletter contains a link to opt out of receiving any future newsletters.

3. Operations and support by third parties, cookie providers and other processing

3.1 Support

Sanity allows website visitors to ask questions through live chat and a support system.

Intercom

Sanity uses the live messaging service provided by Intercom R&D Unlimited Company (“Intercom”), 55 2nd St, San Francisco, CA 94105, USA to provide you live chat on the website. Intercom uses “cookies” to allow you to chat with our agents across multiple pages when using our website. For this purpose, the information generated by the “cookie” is transferred to an Intercom server in the US and stored there.

For more information on your rights and on how Intercom processes data please see Intercom’s Privacy Policy, which is available at www.intercom.com/privacy. You may deactivate Intercom with the help of a browser add-on if you do not want this live chat functionality. This add-on can be downloaded at: www.ghostery.com/.

Lighthouse and Gitter (Bug tracking and communication tools with users)

For bug tracking and open discussion with users, Sanity uses Lighthouse and Gitter respectively. These services maintain their own discrete signup flows and therefore their own terms of service and privacy agreements. Usage of the Sanity Service is not contingent on the use of these services. 

3.2 Operations

Google Cloud/Google services

Google Cloud Platform (GCP) is used to realise and host the Sanity Service and website, including the storage and processing of all personal and customer data provided to us as outlined throughout this privacy policy. A range of GCP services are used for various purposes, including but not limited to Google Compute Engine servers and Google Container Engine clusters for the storage and processing of personal and customer data, Google Cloud Storage for the storage of user-uploaded files and backups, Google BigQuery for storage and analysis of access and application logs, Google Stackdriver for processing of access logs, Google Cloud Load Balancing for en/decryption and routing of user traffic, Google Cloud CDN for edge caching of public data, Google Cloud Virtual Network for all internal data traffic, and Google Pub/Sub for processing web hooks. For more information on Google Cloud Platform terms please visit: https://cloud.google.com/terms/

For further information regarding Google Cloud Platform Service specific terms, please visit: https://cloud.google.com/terms/service-terms. For information regarding Google Cloud Platform Data Processing and Security Terms, please visit: https://cloud.google.com/terms/data-processing-terms.

Opbeat 

Sanity uses Opbeat for analyzing errors that occur in our backend services. In the event of a server error, the user’s browser user-agent, IP address and referring website will be associated with the error and sent to Opbeat. For more information on Opbeat’s terms of service and privacy policy, please visit: https://opbeat.com/privacy.

Stripe

We use Stripe for payment, analytics, and other business services. Stripe collects identifying information about the devices that connect to its services. Stripe uses this information to operate and improve the services it provides to us, including for fraud detection. You can learn more about Stripe and read its privacy policy at https://stripe.com/privacy.

3.3 Identity services

Sanity allows website visitors to create a user account and log in with the following third-party identity providers:

GitHub

Sanity allows signup and login through GitHub, a Git repository hosting service of GitHub Inc., 88 Colin P Kelly Jr St, San Francisco, CA 94107, USA. For more information, see GitHub’s Privacy Statement at: https://help.github.com/articles/github-privacy-statement/.

Google Authentication

Sanity allows signup and login through a Google account, provided by Google. For more information, see Google’s Privacy Statement at www.google.com/intl/en/policies/privacy/.

Other third-party enterprise authentication services

For enterprise customers, Sanity allows signup and login via third party enterprise authentication services, if previously agreed upon and formalized in terms with enterprise.

3.4 Web analytics and debugging

Sanity uses the services hereunder to optimize and debug its website.

Google Analytics

Sanity uses Google Analytics, a web analytics service provided by Google Inc. (“Google“). Google Analytics uses so-called “cookies”. “Cookies” are text files that are stored on your computer and permit an analysis of your use of the website. The information about your website use generated by the “cookie” (including your truncated IP address) is transmitted to a server controlled by Google in the USA and is stored there. Google uses this information to analyze your use of the website, to generate reports about website activities for website operators and to provide further services related to website and internet use. Google may also share such information with third parties to the extent it is legally required to do so and/or to the extent third parties process data on behalf of Google. You may deactivate Google Analytics with the help of a browser add-on if you do not want this website analysis. This add-on can be downloaded at: 'http://tools.google.com/dlpage/gaoptout?hl=en.

Google Tag Manager

Sanity uses Google Tag Manager, an event forwarding service provided by Google. Google Tag Manager uses “cookies” to analyse your use of the website. Google Tag Manager allows the integration of service providers and forwards analysis data to these providers (as outlined in this privacy policy). 

For more information on Google Tag Manager's terms of service and privacy policy, please visit www.google.com/analytics/tag-manager/use-policy/. You may deactivate Google Tag Manager with the help of a browser add-on if you do not want this website analysis. This add-on can be downloaded at: www.ghostery.com/.

3.5 Advertising and retargeting

Sanity uses advertising services to create awareness of its website. The advertising services track actions such as signups and use retargeting functionality to provide personalized advertisements.

Google AdWords

Sanity uses so-called "retargeting" from Google ("Remarketing with Google Ad-Words"). A JavaScript code is integrated into the website of Sanity (a "retargeting tag"), with the help of which Google can collect pseudonym data for advertising purposes. When a Sanity web page containing a "retargeting tag" is accessed, Google places a “cookie” on the user's device and associates it with particular retargeting groups in order to provide personalized advertising on other websites. 

For more detailed information on how this information is collected, please visit Google's Privacy Policy regarding Google Remarketing, which is available at www.google.com/privacy/ads. You may object to the collection of pseudonyms for retargeting purposes by specifying under one of the links below that you do not want to receive personalized advertising by Remarketing with Google AdWords:

Facebook Ads

Sanity uses the retargeting function "Custom Audiences" provided by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). For this feature, we embed a Facebook retargeting tag on our website. This retargeting tag allows Sanity to display personalized and interest-related ads to our website’s visitors when they visit Facebook. With the help of this tag, data (such as which website you visited) is transferred to Facebook. For this purpose, a direct connection to the Facebook servers is established when you visit our website. Facebook assigns this information to your personal Facebook account.

For more information on your rights and how Facebook collects and uses your data please see the Facebook privacy policy at www.facebook.com/ads/website_custom_audiences/ and www.facebook.com/privacy/explanation. If you do not want Facebook to map the collected information directly to your Facebook user account, you can disable the Retargeting Custom Audiences feature at www.facebook.com/ads/website_custom_audiences/. In order to do so, you must be logged in to Facebook.

Twitter Ads

Sanity uses the retargeting function "Custom Audiences” provided by Twitter. For this feature, we embed a Twitter retargeting tag on our website. This retargeting tag allows Sanity to display personalized and interest-related ads to our website’s visitors when they visit Twitter. With the help of this tag, data (such as which website you visited) is transferred to Twitter. For this purpose, a direct connection to the Twitter servers is established when you visit our website. Twitter assigns this information to your personal Twitter account.

For more information on your rights and how Twitter collects and uses your data please see the Twitter privacy policy at https://twitter.com/privacy. If you do not wish Twitter to map the collected information directly to your Twitter account, you can disable the "Custom Audiences" retargeting feature at https://twitter.com/login?redirect_after_login=%2Fsettings%2Fsecurity. In order to do so, you must be logged in to Twitter.

4. Processing of data in relation to content published through our services

4.1 Sanity's role as data processor for Customer Data

Users can upload a variety of content, such as texts, images, videos and music files to and via the Sanity Services, defined as "Customer Data" in our General Terms and Conditions. Typical content uploaded to Sanity might be news articles or a shop’s production information. This data may occasionally, but not usually, contain data that may be qualified as personal data. In this context, Sanity is only a processor of data on behalf of the user and not the data controller. 

Except for complying with its obligations under mandatory law, Sanity is not responsible for data content uploaded by the user and is neither interested in this data nor will analyze this data in any way. Sanity will only process and store this data within the framework of the provision of the service, in the scope described in the General Terms and Conditions and our Agreement with you or the entity with which you are connected to. 

4.2 Other data collected through the use of APIs and SKDs – end users IP-addresses

Sanity allows customers to integrate their uploaded content into their internal systems and/or third-party systems delivered by other parties through an Application Programming Interface (API). Sanity by design does not determine what systems it may be configured to interoperate with but typical examples of classes of such systems are content delivery (e.g. HTML rendering systems, native mobile applications, digital signage systems) and content optimisation (e.g. e-commerce personalization services, A/B/N-testing or similar) systems. 

The software development kits (SDKs) provided by Sanity are optionally embedded in such applications and solely facilitate developers to request and work with content from Sanity’s servers. The APIs and SDKs provided by Sanity are not collecting any personal data of end users (e.g., tracking user on customer website or profile information). 

The SDKs can, however, be configured by the user/client of our service to send the identity (user ID) of logged-in users to our APIs in order to facilitate, for example, access control. This would be a user-based decision/parameter defined by client and therefore out of our control.

Sanity logs the originating IP address of an end user to avoid fraudulent use (e.g., denial of service attack).

5. Final remarks

This privacy policy is governed by the laws of Norway, and any dispute in relation to this policy shall be dissolved by Norwegian courts, with Oslo Tingrett as the legal venue.