Global Software Privacy Policy Campbell Scientific’s Software Privacy Policy

Effective on 1 June 2025

Topics

Introduction
Scope
Definitions
Information we collect
Use of data
Data sharing and disclosure
International data transfers
Data retention and deletion
Security measures
User rights and consent
Children's policy
Changes to this policy
Contact us

Introduction

Campbell Scientific, Inc. and its affiliates ("we," "us," or "Campbell Scientific") are committed to protecting the privacy and security of personal data collected through our software applications, cloud services, mobile applications, Application Programming Interfaces (API), and embedded widgets (collectively, the "Products"). This privacy policy describes how we collect, use, disclose, and safeguard personal data in a global context.

Scope

This policy applies to all Campbell Scientific Products, including but not limited to:

Desktop applications (LoggerNet, RTMC, LNDB, etc.)
Cloud applications (CampbellCloud™, BEDROC™ Platform, etc.)
Mobile applications (LoggerLink, CampbellGo™, etc.)
APIs and embedded widgets used by our Products

Definitions

Measurement Data: Non‑identifiable information generated by sensors and instruments, such as temperature readings, pressure levels, humidity, electrical signals, and other scientific measurements
Telemetry: Usage metrics, session durations, and error and crash logs
Personal data: Minimal information associated with user accounts, including username, user ID, IP address, and basic contact details provided by the account holder
Device identifiers: Hardware IDs and geolocation of devices (not tied to individual identities)
User-provided content: Files and configurations uploaded or entered by the user

Information we collect

Categories of data

Measurement data: Scientific and environmental readings collected by our Products
Telemetry and error: Logs from software and services
Account information: Usernames, user IDs, email addresses, and Internet Protocol (IP) addresses
Device identifiers and geolocation: Device unique identifiers and geographic coordinates
Performance and usage analytics: For Product and feature optimization

Collection mechanisms

Sensor streams: Direct ingestion of measurement data from connected devices
API calls and software development kits (SDK): Background data transmissions initiated by our applications
User interfaces: Data entered via web forms, mobile prompts, and application dialogs
Third-party services: Integrated analytics and monitoring tools (e.g., Mixpanel)

Use of data

We process personal data for purposes including, but not limited to:

Product improvement and development
Billing and account management
Customer support and troubleshooting
Analytics and performance monitoring
Marketing and promotional communication

We may also use personal data for other lawful business purposes related to our Products, including any new features or services that we introduce.

Where permitted by law, we may process personal data on the basis of legitimate interests, without requiring prior consent.

We reserve the right to anonymize or aggregate any personal or measurement data, and to use or disclose such aggregated data for any lawful purpose.

Data sharing and disclosure

We may share personal data with any of the following:

Service providers and sub-processors (e.g., cloud hosting on Amazon Webs Services [AWS] or analytics via Mixpanel)
Regulatory bodies if required by law
Affiliates and group companies for internal business purposes

We may also disclose personal data where necessary to comply with any applicable legal requirement or regulatory request.

International data transfers

Personal data are stored in US data centers (US-East-2) and may be transferred to other global regions as our infrastructure expands. We rely on Standard Contractual Clauses and other lawful mechanisms for cross-border transfers.

Data retention and deletion

Data are retained indefinitely unless otherwise specified by users or legal requirements.
Deletion requests are processed via a manual request to the Data Protection Officer at dataprotection@campbellsci.com.
Exceptional retention may apply for legal holds, audits, or fraud prevention.

Security measures

Our headquarters maintains an ISO 27001-certified Information Security Management System, and we implement the following:

Encryption of data at rest and in transit
Identity and access management controls
Regular vulnerability scans and penetration tests
Incident response procedures and notification Service Level Agreements (SLA)

User rights and consent

Jurisdictional rights

We comply with global privacy laws, including General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA)/California Privacy Rights Act (CPRA), Personal Information Protection Law (PIPL), and others, as relevant to the user’s jurisdiction. Users may exercise rights of access, rectification, erasure, restriction, objection, and data portability in accordance with the laws that apply to them.

GDPR (European Union and United Kingdom)

Right to access personal data
Right to rectification and erasure ("right to be forgotten")
Right to restriction of processing
Right to data portability
Right to object to processing, including profiling
Right to lodge a complaint with a supervisory authority

CCPA/CPRA (California, USA)

Right to know what personal information is collected
Right to delete personal information
Right to opt out of sale or sharing of personal information
Right to non-discrimination for exercising privacy rights
Right to correct inaccurate personal information
Right to limit the use and disclosure of sensitive personal information

PIPL (People’s Republic of China)

Right to be informed about processing activities
Right to access and copy personal data
Right to correct or delete personal data
Right to withdraw consent
Right to request explanation of data handling rules

Other jurisdictions

We recognize and comply with data protection laws applicable in other jurisdictions where we operate, including but not limited to Brazil’s General Data Protection Law (LGPD), Canada’s Personal Information Protection and Electronic Document Act (PIPEDA), and Australia’s Privacy Act 1988. Users in these regions may have rights similar to those listed above.

Consent management

CampbellCloud and other Software as a Service (SaaS) Products’ cookies: We currently use cookies strictly for essential platform functionality; no cookies are used for telemetry or analytics. Should we decide to use cookies for telemetry or analytics in the future, we will update this policy accordingly and provide users with clear notice and opt‑out mechanisms in compliance with applicable laws.
LoggerNet: This software does not use cookies.
Telemetry opt-out option: Users may opt out of telemetry via pre-checked installer options or a support request.

Children's policy

Our Products are not directed to children under 16. We do not knowingly collect personal data from minors.

Changes to this policy

We review and update this policy at least annually. Material changes will be communicated via email or in-application notifications.

Contact us

For questions or to exercise your rights, contact the Data Protection Officer at Campbell Scientific, Inc. via email: dataprotection@campbellsci.com.