Updated April 2022
Candidate Privacy Notice
1. What does this notice cover?
This notice describes how Samsara Inc. and its affiliates ("Samsara", "we", "us" or "our") collect, use and disclose your “personal data”in connection with your application for internship and/or employment with us. Personal data is any information that relates to an identified or identifiable individual and includes any information that constitutes "personal data" or "personal information" as defined by applicable privacy laws. It also describes your data protection rights and how to exercise them.
We may provide you with additional information when we collect personal data, where we feel it would be helpful to provide relevant and timely information.
2. What personal data of yours are we likely to collect?
Personal identification and communication information: your name, home address, phone number; email address; date of birth, gender, immigration status, and information about your entitlement to work;
Application-related information: curriculum vitae (CV), cover letter, employment history, education history, qualifications and skills, reference contact information, position preferences, willingness to relocate, desired salary, interests and aspirations, and background screening information if relevant;
Sensitive information: information about your health and disabilities where we need to make any reasonable adjustments, where you have volunteered such information to us, where otherwise required for equal opportunities monitoring (which may include information about your ethnic origin, sexual orientation, health and religion or belief); and
Financial information: banking information in order to enable our third-party payment processor to reimburse you for expenses incurred in the application process.
Reference information: contact and professional information related to your references. Before submitting anyone's personal information to Samsara, be sure you have the person's permission to do so. If you later find out you did not have such permission, please inform us as soon as possible.
We collect most of this information from you directly (e.g., data is collected through our application portal and/or CVs; from correspondence with you; or through interviews, meetings or other assessments). We may also collect some information about you from other people (e.g., recruiters, referrals), your referees or organizations (e.g., from LinkedIn), and where applicable, we may also collect data from our third-party background screening provider (during the pre-employment/internship screening process).
3. Why do we collect, use and store this personal data?
We collect, use and store your personal data for the reasons set out below.
Where necessary for Samsara to take steps prior to potentially entering into an employment/internship contract with you. For example:
To make informed decisions on recruitment and assess your suitability for the role;
To communicate with you about your application, to respond to your inquiries and to run interviews; and/or
To reimburse you for any pre-agreed expenses incurred in the application process where applicable.
Where necessary for Samsara's legitimate interests, as listed below, and where our interests are not overridden by your data protection rights. For example:
To improve our internship and/or recruitment process and activities;
To verify the details you have supplied and, where applicable and authorized, conduct pre-employment/internship background checks;
To protect our legitimate business interests and legal rights, including, use in connection with legal claims, compliance, regulatory, auditing, investigative and disciplinary purposes (including disclosure of such information in connection with legal process or litigation) and other ethics and compliance reporting requirements; and/or
To analyze and monitor the diversity of the workforce in accordance with applicable laws, such as compliance with equal opportunity employment laws.
Where necessary to comply with a legal obligation. For example:
To assess your fitness and propriety in connection with your engagement in a controlled function, where applicable; and/or
To comply with legal, regulatory and other requirements under applicable laws.
Where you have given consent. For example:
To contact you about future career opportunities at Samsara.
4. Verification and background checks
For certain positions, it will be necessary for us to verify the details you have supplied (e.g., in relation to your identity, employment history, academic qualification and professional credentials) and to conduct pre-employment/internship background checks (e.g., in relation to previous criminal convictions or financial standing). The level of checks will depend on your location, your role, in particular whether you will occupy a regulated role, and will be conducted at as late a stage as is practicable in the recruitment process and often only after you have been selected for the position. If your application is successful, we will provide further information about the checks involved and will obtain any necessary consents or acknowledgements prior to completing such checks.
5. How do we share your personal data?
Personal data will primarily be processed by employees in our People, Talent, IT, Legal, Finance, and Facilities teams across our group of companies. If you are applying for a position from outside of the USA, this may therefore include sharing your personal data with our affiliates in the USA and in other jurisdictions.
Your personal data will also be shared with companies providing services, such as technology services including hosting, maintenance, administration and analysis, as well as other agencies, under contract to Samsara as part of the recruitment process. For general recruitment services, we use a third-party candidate tracking system. We may also share your personal data with other third-party service providers (e.g., providers of background checks). Some of these service providers may be located outside of your country of residence, including in the USA. Your personal data will also be shared with government authorities and/or law enforcement officials if mandated by law or if required for the protection of our legitimate interests in compliance with applicable laws. If a Samsara business is sold to or integrated with another business, your details may be disclosed to our advisers and any prospective purchaser's adviser(s) and will be passed to the new owners of the business.
In the event that your personal data which is subject to the GDPR is otherwise transferred outside of the European Union/UK/Switzerland to an organization (including one of our affiliates) in a country which is not subject to an adequacy decision by the European Commission or considered adequate as determined by applicable data protection laws, we will take steps to ensure your personal data is adequately protected e.g., by way European Commission approved Standard Contractual Clauses, or by relying on such other data transfer mechanisms as available under applicable data protection laws.
We remain self-certified under the Privacy Shield Framework but we also have entered into European Commission approved Standard Contractual Clauses to provide adequate protection for such transfer in the event the Privacy Shield Frameworks are invalidated as a transfer mechanism. You may request additional information in respect of such transfer mechanism by exercising your rights as set out below. Otherwise, please note that the Privacy Shield Frameworks were developed specifically to establish a way for companies to comply with data protection requirements when transferring personal data from the European Union/UK/Switzerland to the USA. To learn more about the Privacy Shield program, and to view our certification, please visit www.privacyshield.gov.
Samsara and the Privacy Shield Framework
Regarding the collection, use, and retention of personal data transferred from the European Union, the United Kingdom, and Switzerland to the United States, Samsara complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework as set by the U.S. Department of Commerce. Samsara has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy notice and the Privacy Shield Principles, the Privacy Shield Principles shall govern.
All personal data that is subject to this privacy notice and is received from individuals who are resident in the European Union, European Economic Area (EEA), the United Kingdom, and Switzerland is covered by Samsara’s participation in the Privacy Shield unless governed by another adequate transfer mechanism as detailed herein. Samsara will comply with the Privacy Shield Principles in respect of such personal data.
Samsara is accountable for personal data received under the Privacy Shield and subsequently transferred to a third party as described in the Privacy Shield Principles located at https://www.privacyshield.gov/EU-US-Framework. Pursuant to the Privacy Shield, Samsara remains liable for the transfer of personal data to third parties acting as our agents unless we can prove we were not a party to the events giving rise to the damages.
Samsara commits to resolve complaints about your privacy and our collection or use of your personal data as per the EU-U.S. and Swiss-U.S. Privacy Shield Principles. European Union, United Kingdom or Swiss individuals with inquiries or complaints regarding this privacy notice should first contact us using the contact information below.
Samsara has further committed to cooperate with the panel established by the EU data protection authorities (DPAs) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved Privacy Shield complaints concerning human resources data transferred from the EU and Switzerland in the context of the employment relationship/internship.
As further explained in the Privacy Shield Principles, a binding arbitration option is also available to you in order to address residual complaints not resolved by any other means. Samsara is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission.
6. Your choices and rights
Depending on the applicable data protection and privacy laws in your jurisdiction, you may have certain rights. You may have the right to ask Samsara for a copy of your personal data; for information about how it has been processed; to correct, delete or restrict processing of your personal data; and to obtain the personal data you provided in a structured, machine readable format. In addition, you may object to the processing of your personal data in some circumstances (in particular, where we don’t have to process the data to meet a contractual or other legal requirement). Where we have asked for your consent, you may withdraw consent at any time. If you ask to withdraw your consent to Samsara processing your personal data, this will not affect any processing which has already taken place at that time.
These rights may be limited according to applicable data protection laws, e.g., if fulfilling your request would reveal personal data about another person, or if you ask us to delete information which we are required by law or have compelling legitimate interests to keep. If you have unresolved concerns, you have the right to complain to a data protection authority. In the UK, this will be the UK Information Commissioner. The contact details of each European Union data protection authority can be found here. You can also raise any concerns by contacting our Data Protection Officer at email@example.com.
7. How long do we retain your personal data for?
Your personal information is maintained on our servers or those of our service providers and will be accessible by authorized employees, representatives, agents, and service providers for the purposes described herein.
If you are successful: we will retain your personal data only for as long as we need it for Samsara's legitimate interest in accordance with applicable law, for the purposes of the recruitment and/or internship process and, once this process is finished, for an appropriate period to be able to deal with any legal claims linked to the application process. After this period, we will take steps to delete your personal data or hold it in a form that no longer identifies you. If you become a Samsara employee, relevant personal data you provide will become a part of your employee file and may be used later for the management of the employment relationship.
If you are not successful: we will retain your personal data for 12 months following notice of your last unsuccessful application with us to the extent the GDPR or Canadian privacy laws are applicable. Otherwise, to the extent allowed by applicable law, we shall retain your personal data for 36 months following the notice of your last unsuccessful application with us.
8. Updates to this privacy notice
We reserve the right to update this privacy notice at any time, and we will provide you with or make such new privacy notice available when we make any updates. We may also notify you in other ways from time to time about the processing of your personal data.
9. Contact us
The “data controller” for your personal data will be Samsara Inc. and/or one of its direct or indirect subsidiaries from time to time. If you have any questions regarding our privacy practices or would like to review or update your personal data, you may email us at firstname.lastname@example.org. You can also contact us by writing to us at the following address:
Samsara Inc. Attention: Legal Department – Privacy Issues 350 Rhode Island Street, 4th Floor, South Building, San Francisco, CA 94103 USA
Samsara Networks Limited (Representative of Samsara Inc., Samsara Deutschland GmbH, and other relevant subsidiaries for the purposes of the UK GDPR and EU GDPR, as applicable) Floor 4 1 Alie Street London E1 8DE United Kingdom
Samsara Deutschland GmbH (Representative of Samsara Inc., Samsara Networks Limited, and other relevant subsidiaries for the purposes of the UK GDPR and EU GDPR, as applicable) Maximiliansplatz 22 c/o Bird & Bird LLP 80333 München Germany