Other Covered Entities

Episerver Pty Ltd.
Insite Software Solutions, Inc.
Optimizely Inc.


EU-U.S. Privacy Shield Framework: Active

Original Certification Date: 8/1/2017
Next Certification Due Date: 7/15/2022
Data Collected: HR, NON-HR

Purpose of Data Collection

• Episerver collects personal data for a range of business purposes, including performing expert services at its customers’ requests, managing purchases and other transactions, providing customer support and services, providing and improving product offerings, customer surveys and questionnaires, conducting research and data analytics, enabling advertising and other marketing services, and maintaining security and complying with legal requests. • We collect name, email, phone, address, job title, company, and if you use Episerver products or services and what those are, as further detailed in the Privacy Policy. • We may collect other data you have provided while contacting us, especially using the contact, download, or signup forms on our website, as further detailed in the Privacy Policy. • We collect data that you have sent to us through an online survey, event attendance application, support ticket, or job application, as further detailed in the Privacy Policy. • We collect anonymous information sent by your browser when you visit our websites, including IP address, operating system, and browser version. If you identify yourself by filling out a form, some data (such as what pages you view on our websites) will be connected to your personal information. • If you sign a contract with Episerver, we may collect further details such as your signature or other proof of identity, the IP address (if signing a contract digitally). • Information provided by you through our public message boards, blogs, or forums. • On our websites, we include a number of scripts from third-party vendors. These scripts may gather data for web statistics, they may be used for interest-based advertising on other services (such as Google, Facebook, or LinkedIn), and they may offer additional functionality to the web sites (such as chat), as further detailed in the Privacy Policy. • We set a cookie and use local storage in your browser that contains information that we use to identify you between visits. • Episerver collects human resources data such as name, postal address, telephone number, email address, national ID number, passport number, and bank account information, in connection with prospective, current and former employees, consultants, contractors and job applicants. • Episerver processes human resources data for a range of purposes relating to staffing, organizational planning, development, workforce management, business transfers, budget planning and administration, compensation, payroll, benefit planning and administration, educations, training and certification, background checks, performance management, problem resolution, internal investigations, auditing, compliance, risk management and security purposes, authorizing, granting, administering, monitoring and terminating access to or use of Episerver systems, facilities, records, property and infrastructure, business travel, expense management, project management, conflict of interest reviewing, employee communications, flexible work arrangement, administration of employee enrollment and participation in activities and programs offered to eligible employees, work-related injury and illness reporting, public health and safety, legal proceedings and government investigations, as required and/or authorized by laws or regulations applicable to Episerver’s business globally.

Privacy Policy

HR Data

Episerver Internal Privacy Policy

The Employee Privacy Statement describes how Episerver collects, uses, and shares human resources data. The Employee Privacy Statement is available to employees of Episerver at https://episerver99.sharepoint.com/hr/SitePages/Privacy%20Statement.aspx.

Effective Date: 2/8/2019

Non-HR Data


The Privacy Policy describes how Episerver collects, uses, and shares personal data through its online services and from its customers and third parties.

Effective Date: 6/16/2021

Verification Method


Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact Episerver Inc. at:

Peter Yeung
General Counsel & DPO
Episerver Inc.
542A Amherst Street
Nashua, New Hampshire 03063

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from Episerver Inc. to your question or complaint, please contact the independent recourse mechanism listed below


Appropriate statutory body with jurisdiction to investigate any claims against Episerver Inc. regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission