Altair Privacy Notice

1. Introduction

This Privacy Notice describes how Altair Engineering Inc., its subsidiaries, and affiliates (“Altair”, “we”, “our”, “us”) collects and uses personal data we collect from you: (i) when you visit and use the functionality on our website at altair.com, altairone.com, community.altair.com, events.altair.com, help.altair.com, learn.altair.com, web.altair.com, toggled.com, thearender.com, kerkythea.net, openmatrix.org, openradioss.org, openpbs.org, cambridgesemantics.com, concept.de, efatigue.com, omniquest.com, powersimtech.com, rapidminer.com, community.rapidminer.com, and other websites owned or operated by Altair, including local websites in your country; (ii) when you use our products or services; (iii) when you attend or participate in a trade show or marketing event (collectively, the “Sites”). If you do not agree to the terms and conditions of this Privacy Notice, then please do not provide us with your information. Please note, however, that if you choose to limit the information that you provide us while using the Site, you may not be able to use or participate in certain features of the Site.

If you have any questions or concerns about our use of your personal data, then please contact us using the contact details provided at the bottom of this Privacy Notice.

2. Changes and Updates to this Privacy Notice

This Privacy Notice may be updated from time to time to reflect any changes in the law, technology, or how we operate our business. We will take the appropriate measures to inform you of any updates to this Privacy Notice consistent with the significance of the changes we make. We will obtain our consent to any material Privacy Notice changes if and where this is required by applicable data protection laws.

3. Information We Collect About You and How We Collect It

We collect different types of information about you, including information that may directly identify you, information that is about you but individually does not personally identify you, and information that we combine with our other users. This includes information that we collect directly from you or through automated collection technologies.

Below is an overview of the broad categories of personal data collected by Altair:

The personal data that we may collect about you broadly falls into the following categories of sources:

A. Information that you provide us voluntarily

Certain parts of our Sites may ask you to provide personal data voluntarily. This includes data you provide when registering an account with us, filling out forms, requesting support, subscribing to marketing communications, registering for an event, or entering into agreements for our products and services.

B. Information that we collect through automatic data collection technologies

As you browse our Sites, we may automatically collect information about your device, browsing activity, and behavior preferences using automatic data collection tools. This may include traffic data, IP address, operating system, and browsing patterns. In some countries, including countries in the European Economic Area, this information may be considered personal data under applicable data protection laws.

This information helps us improve our Sites and personalize your experience by understanding the audience that uses our Sites, customizing content based on your interests, and optimizing searches and other features to improve the quality and relevance of our Sites to our users.

For more information about the automatic collection technologies we use, please see our Cookie Policy.

C. Information that we obtain from third party sources

We may obtain personal data about you from third-party sources, such as lead generation services, partners, social media platforms, and public databases. This data may be combined with information we collect directly from you. We use this information to update our records, identify potential customers, personalize advertising, and suggest relevant services.

4. Sensitive Personal Data

We may collect sensitive personal data from customers as part of our services. However, we only use this data for the purpose of providing those services. We do not sell or share sensitive personal data for any other commercial purposes, including online advertising.

5. Disclosure of Your Personal Data

We may disclose your personal data to the following categories of recipients:

• Subsidiaries and Affiliates: We may share data with companies within the Altair group who provide or support our Sites.
• Third-Party Service Providers: We may share data with contractors, service providers, and other third parties who support our business operations, all bound by contractual obligations to keep your data confidential and use it only for authorized purposes. These include data processing services, IT infrastructure providers, and customer support.
• Partners: We work with third-party partners who provide consulting, sales, support, and technical services to help us deliver and implement customer solutions. We may share your information with these partners to assist with billing, provide localized support, or offer customizations, especially when you've agreed to this. We may also share data with partners for sales, distribution, or joint marketing activities based on your permission.
• Legal Requirements: We may disclose data to law enforcement, regulators, or other legal entities if required by law, to protect our rights, or to safeguard your or someone else's safety.
• Business Transfers: In the event of a merger, divestiture, or sale of assets, your data may be transferred to the acquiring entity.
• With Your Consent: We may disclose your information to any other person or entity only with your consent.

A. Third-party recipients of disclosure for a business purpose (in the last 12 months):

B. Third-party recipients of disclosure for a commercial purpose (including online advertising in the past 12 months):

Altair has no actual knowledge that it sells or shares personal data of individuals under 16 years of age.

6. Lawful Basis for Processing Your Personal Data

Our legal basis for collecting and using the personal data described above will depend on the personal data concerned and the specific context in which we collect it. This means we collect and use your information only where:

• We need it to provide you services, including to operate the Sites, provide customer support and personalized features and to protect the safety and security of the Sites;
• It satisfies a legitimate interest (which is not overridden by your data protection interests), such as for research and development, to market and promote the Sites, and to protect our legal rights and interests;
• You give us consent to do so for a specific purpose; or
• We need to process your data to comply with a legal obligation.

If you have consented to our use of information about you for a specific purpose, you have the right to change your mind at any time, but this will not affect any processing that has already taken place. Where we are using your information because we or a third party (e.g. your company) have a legitimate interest to do so, you have the right to object to that use though, in some cases, this may mean no longer using the Sites.

7. Cookies and Similar Tracking Technologies

Our Sites use first- and third-party cookies and other similar tracking technologies to enable you to navigate the Sites, use our Sites’ services and features, collect information about your choices and preferences, and collect information about your use of the Sites and enable us to improve the way it works and operates.

For more information about the automatic collection technologies we use, please see our Cookie Policy. Our cookie consent tool automatically honors Global Privacy Control (“GPC”) and Do Not Track (“DNT”) signals.

8. Security of Your Personal Data

We use robust technical and organizational measures to protect your personal data. These measures are designed to provide a high level of security. While we implement strong safeguards, no system is completely impenetrable. We cannot guarantee absolute safety during internet transmission or storage.

9. International Data Transfers

Your personal data may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different than the laws of your country.

However, we have implemented safeguards to ensure your data remains protected, including complying with the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework, and the Swiss-U.S. Data Privacy Framework (collectively, “DPF Program”).

Altair complies with the EU-U.S. Data Privacy Framework (“EU-U.S. DPF”), the UK Extension to the EU-U.S. DPF (the “UK Extension”), and the Swiss-U.S. Data Privacy Framework (“Swiss-U.S. DPF”) as set forth by the U.S. Department of Commerce. Altair has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (“EU-U.S. DPF Principles”) regarding the processing of personal data received from the EU in reliance on the EU-U.S. DPF and from the UK (and Gibraltar) in reliance on the UK Extension. Altair has also certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (“Swiss-U.S. DPF Principles”) regarding the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this Notice and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles (collectively, the “DPF Principles”), the DPF Principles shall govern.

In compliance with the DPF Principles, Altair commits to resolve complaints about its collection or use of Personal Information. EU, Swiss, and UK individuals with inquiries or complaints regarding this Policy should first contact Altair’s Data Protection Officer at [email protected].

If you have a complaint related to the DPF Principles and:

• Don't receive timely acknowledgment from us, or
• We haven't addressed your complaint to your satisfaction,

you can seek resolution through JAMS, an independent dispute resolution provider based in the United States. Their services are free of charge. Visit https://www.jamsadr.com/eu-us-data-privacy-framework for more information or to file a complaint.

Additionally, under specific conditions, you may have the option to invoke binding arbitration for complaints regarding our DPF Program compliance not resolved by any of the other DPF Program mechanisms. Please view the following for additional information on this process and the applicable requirements: https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf?tabset-35584=2.

Altair commits to cooperate and comply respectively with the advice of the panel established by the EU data protection authorities (“DPA”s), the UK Information Commissioner’s Office (“ICO”), the Gibraltar Regulatory Authority (“GRA”), and the Swiss Federal Data Protection and Information Commissioner (“FDPIC”) in compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF with regard to unresolved complaints concerning our handling of human resources data received in reliance on the EU-U.S. DPF, the UK Extension, and the Swiss-U.S. DPF in the context of the employment relationship.

The Federal Trade Commission (“FTC”) has jurisdiction over Altair’s compliance with the DPF Program.

The specific US-based entities covered by the DPF Program include: Altair Engineering Inc. and its U.S. subsidiaries Altair Product Design, Inc., Datawatch Corporation, solidThinking, Inc., and illumisys, Inc.

Altair has certified that it adheres to the DPF Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the DPF Program, and to view Altair’s certification, please visit https://www.dataprivacyframework.gov.

In addition to adhering to the DPF Program, Altair has implemented applicable standard contractual clauses for transfers of personal data.

10. Data Retention

We keep your personal data only when we have a legitimate business reason, such as providing a service you requested or complying with legal requirements. When we no longer need the data, we will either delete or anonymize it. If deletion isn't possible, we securely store it and prevent further processing until deletion is feasible.

11. Your Data Protection Rights

You have the following data protection rights:

• Access, Correct, Update, or Delete: You have the right to access, correct, update, or delete your personal data and can do so at any time by contacting us using the contact details provided under the “Contact Us” section of this notice.
• Object to Processing, Restrict Processing, or Request Portability: You have the right to object to processing, restrict processing, or request portability of your personal data and may exercise these rights by contacting us using the contact details provided under the “Contact Us” section of this notice.
• Opt-Out of Marketing Communications: You have the right to opt-out of marketing communications at any time. You can exercise this right by clicking the “unsubscribe” link in the marketing emails we send you or by managing your subscription preferences at https://altair.com/email-newsletter or visit https://web.altair.com/hs/manage-preferences/unsubscribe-simple.
• Withdraw Your Consent: If we profess your personal data with your consent, then you may withdraw your consent at any time. Please note that withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your personal data conducted in reliance on lawful processing grounds other than consent.
• Opt-Out of Sale of Personal Data, Including Sharing Personal Data for Online Advertising: You have the right to opt out of the sale of your personal data, including sharing personal data for online advertising. For more information, visit our Cookie Policy and manage your cookie preferences via our cookie consent manager. Our cookie consent tool automatically honors GPC and DNT signals.
• Sensitive Personal Data: We do not use or disclose your sensitive personal data, except for the purpose of providing the services to our customers.
• Right to Non-Discrimination: We may not discriminate against you for exercising a privacy right outlined in this notice.
• Right for an Authorized Agent: You have the right to have your authorized agent make a data privacy request on your behalf. For more information, please contact us using the contact details provided under the “Contact Us” heading at the bottom of this notice.
• Right to Appeal: If you are not satisfied with our response regarding your data privacy request, you have the right to appeal our decision. For more information, please contact us using the contact details provided under the “Contact Us” heading at the bottom of this notice. If you are not satisfied with the result of the appeal, you have the right to contact your respective attorney general depending on where you reside.
• Right to Complain to a Data Protection Authority: You have the right to complain to a data protection authority about our collection and use of your personal data depending on where you reside. For more information, please contact your local data protection authority.

We respond to all data protection requests from individuals in accordance with applicable data protection laws. To verify requests, we compare the personal data provided by the requestor with our existing records. We may use multiple data points for verification. During the verification process, Altair is committed to avoid collecting additional personal data to fulfill an individual’s request.

12. Contact Us

Your personal data is controlled by Altair Engineering Inc. If you have any questions or concerns about our use of your personal data, please contact us at [email protected] (we operate online), or at the following address:

Altair Engineering Inc., ATTN: Data Protection Officer
1820 E. Big Beaver Road Troy, MI 48083 USA
Phone: 248-614-2400, Ext. 453
Email: [email protected]

Last revised December 18, 2024