Contact sales Start for free
Contact sales Start for free

Twilio's Privacy Notice Update Summary

 

Effective Date: December 19, 2024

  • The overall structure and content of Twilio’s Privacy Notice (“Privacy Notice”) has been revised and updated to make our privacy practices clearer and easier to understand. The Privacy Notice has been tailored to focus on our processing of personal data as a controller where Twilio is provisioning services and operating our business and align with  the updated Twilio Data Protection Addendum (DPA). The main changes to the Privacy Notice are as follows:

  • We clarify that Twilio’s processing of personal data related to job applicants is covered in a separate Global Applicant Privacy Notice.

  • We clarify that Twilio’s processing of personal data as a processor when providing services to our customers is governed by the terms of our agreement with the customer and provide additional information about how our customers can manage their data in the “Twilio Product Privacy” section of the Privacy Notice.

  • The prior “Contents of this Notice Section” has been removed and replaced with a list of the main sections of the Privacy Notice that can be used to easily navigate to each section.

  • The “Personal Data We Process” section provides updated information about the types of personal data we process whether shared with us directly, automatically, or from other sources.

  • The “How We Process Personal Data” section provides updated information about the purposes we process personal data for and uses a table to more clearly describe each purpose, the types of personal data processed for each purpose and the legal basis for our processing.

  • The “How We Disclose Personal Data” section largely restates the section in the prior version of the Privacy Notice titled ”How Twilio Shares Personal Data” and provides details of the third parties we may disclose personal data to and for what reason.

  • The “International Data Transfers” section provides details of the mechanisms we use to safeguard cross-border transfers of personal data, including the EU-US Data Privacy Framework, Binding Corporate Rules and APEC Cross Border Privacy Rules.

  • The “How We Secure Customer Data” section has been revised to focus on Twilio’s security measures that are outlined in more detail in our updated Security Overview

  • In the “How Long We Retain Personal Data” section we provide information about our data retention practices.

  • The previously titled “Other Choices About Your Customer Account Data” section has been divided into two new sections titled “Your Rights and Choices About Your Data”  and “How to Exercise Your Rights and Choices”. These sections provide detailed information about an individual’s rights to control their personal data and how to exercise them. This includes a revised section applicable to US residents and a new section on rights under our Binding Corporate Rules.  

  • The “How we use Cookies and other Tracking Technologies” section provides updated information about the tracking technologies we use and ways individuals can manage and opt-out of them.

  • The “Children” section has been updated to explain how to notify us that a child has set up an account and how we would respond to ensure it is shut down.