ServiceSource Privacy Policy


Effective Date: April 17, 2009

ServiceSource International, Inc. and its affiliates (collectively “SREV”) is dedicated to protecting the privacy of individuals who visit SREV’s websites (“Visitors”), individuals who use SREV Services as defined below (“Clients”), and the information SREV collects through Clients and Client systems.  This Privacy Policy describes SREV’s privacy practices, collection, usage, and disclosure policies with respect to personal information, and the information practices of websites that link to this Privacy Policy, including:

About SREV

ServiceSource International, Inc. (NASDAQ: SREV) is the global leader in cloud-based recurring revenue management solutions. The company helps Clients drive growth and build long-standing relationships across the Client’s lifecycle with the industry's most comprehensive data management, analytics, and automation and services capabilities. Through Renew OnDemand®, Scout® and proven services (collectively “Services”), SREV delivers higher subscription, maintenance, and support revenue, improved customer retention, and increased business predictability.

This Privacy Policy does not reflect its Clients' privacy policies or practices. SREV is not responsible for Client privacy practices and does not review, comment upon, or monitor its Clients' privacy policies or their compliance with their respective privacy policies, nor does SREV review its Client's instructions to determine whether they are in compliance or conflict with the terms of a Client's published privacy policy. With respect to Client privacy practices, SREV operates as a data processor for its Clients and SREV's Clients act as data controllers. SREV maintains only the personal information which its Clients have asked it to process.  This Privacy Policy does not apply to the practices of companies for which SREV does not manage business, or of persons that SREV does not employ or manage, including any third-party content contributors bound by contract.

Safe Harbor Certification and Processing of EU Data

SREV complies with the U.S.-EU and U.S.-Swiss Safe Harbor Frameworks and adheres to the Safe Harbor privacy principles relating to data protection. SREV will handle personal information of employees, consumers, Clients, investors, and government officials that SREV receives from the European Economic Area in accordance with the Safe Harbor Principles. Information on both Safe Harbors may be found at

Collection and Use of Client Data

SREV acts as a limited agent (and data processor in the EU context) to each Client only for the purpose of providing the Services. Clients may use information that has been gathered by SREV on their website(s) (on behalf of them) and other information provided to SREV (by the Client or their partners) to create web properties and applications that are optimized for their business model. This information may include (but is not limited by) general website traffic patterns, most popular pages visited, referring domains, referring search engines, visitor loyalty, visitor attrition rates, and types of content used. Clients may also request that SREV receive or gather personally identifiable information that has been rightfully obtained by the Client, such as (but not limited by) email addresses of certain participating visitors to their website(s). Any use of any such information by Clients is solely governed by Client's privacy policy and/or other agreement between the applicable Client and individuals and entities using its website(s), product(s), and service(s).

All such information is and will remain the Client’s property, and will be treated by SREV as proprietary and confidential information of each Client, respectively. As such, and subject to the remainder of this paragraph, SREV will not disclose such information to any third party, unless specifically and rightfully instructed or directed to do so by the Client. SREV will not review, share, disclose, distribute, print, or reference any such information except as requested or directed by the Client or as may be required by law. Individual customer records may at times be viewed or accessed only for the purpose of resolving a problem, addressing a support issue, fulfilling a billing requirement, or as may be required by law. Clients are responsible for maintaining the confidentiality and security of their usernames and passwords to log into their accounts. SREV may store and process personal information in the United States or any other country in which SREV maintains facilities.

Cookies and Clear GIFs (applicable to Scout® Products and Services)


Cookie Definition

Cookies are files that Web servers place on an Internet user's computer that are designed to store basic information (such as visitor preferences). Most Clients use cookies on their websites in connection with the Services to help better estimate the number of individual anonymous visitors to their website(s). There are two types of cookies that may be used: session and persistent. Session cookies exist only during a Visitor’s online session. They disappear from the Visitor's computer when he/she closes the browser software. Persistent cookies remain on the Visitor's computer after the browser has been closed.

Controlling the Use of Cookies

Visitors have the ability to accept or decline cookies. Most web browsers automatically accept cookies, but individuals can usually modify browser settings to decline cookies set by Clients. If the website is accessed using a public computer or Visitor does not otherwise want this information to be stored, Visitor can select the appropriate radio button on the sign-in page and the cookie will not be used. More information about disabling cookies is available at Choosing to decline cookies may result in the inability to sign in or use other interactive features of certain web sites and services that depend on cookies.

Clear GIF Definition

Clear gifs (also known as web beacons) are used in combination with cookies to help Clients understand how visitors interact with their websites. A clear gif is typically a transparent graphic image (usually 1 pixel x 1 pixel) that is placed on a site. The use of a clear gif allows the website owner to measure the actions of the visitor opening the page that contains the clear gif. Some Clients use clear gifs on their websites in connection with the Services.

Controlling the Use of Clear GIFs

Clear gifs are included within the content for a web page (just the same as any other content request), and therefore, Visitors cannot opt out or refuse them. Where clear gifs are used in conjunction with cookies they can be rendered ineffective by either opting out of cookies or by changing the cookie settings in the browser (see above Section titled "Controlling the Use of Cookies"). In other instances, such as in the case of emails, clear gifs are not used in conjunction with cookies.

Information Sharing and Disclosure

SREV may disclose personal information to its agents and partners who assist SREV with providing Services to its Clients. In the event Services for a Client require the use of third parties, SREV will only share personal information with third parties whose privacy policies are consistent with those of SREV or with third parties who agree to abide by SREV policies with respect to personal information.

SREV may otherwise disclose personal information when:

  • SREV has express consent to share the information for a specified purpose;
  • SREV is required to disclose such personal information in response to subpoenas, court orders, or such other legal process; or
  • SREV reasonably believes that the disclosure of such personal information is necessary to protect the personal safety of an individual or to defend the rights or property of SREV.


By accessing the Services and voluntarily providing SREV with personal information Visitors and Clients consent to the collection and use of the information in accordance with the Privacy Policy including transfers from the European Economic Area (EEA) to the United States. Individuals who do not consent to the collection, use, or disclosure of their personal information as outlined in this policy should not provide any personal information to SREV. If an individual has provided personal information to SREV or its Clients and no longer consents to its use or disclosure as outlined herein, then such individual should notify SREV at

Onward Transfer

SREV is a global corporation with operations worldwide. SREV has developed global data practices designed to assure personal information is appropriately protected. SREV’s primary data centers are located in the United States, and when required, personal information may be transferred and processed in SREV’s offices outside of the United States. SREV may employ other companies and individuals to perform functions on SREV’s behalf. If personal information is disclosed to a third party or to SREV employees outside of the United States, SREV will ensure that such party has agreed to abide by the Safe Harbor principles or is subject to the Data Directive, or can otherwise assure adequate protection of such personal information.

Data Integrity

SREV will use personal information only in ways compatible with the Services or the Client’s authorization, or as requested in connection with Visitor requests.

Information Retention

SREV's collection, use, and disclosure of information is governed by service agreements entered into between Clients and SREV. Information relied upon to provide Services is only retained for as long as SREV has a valid business purpose to retain such information or is otherwise required to in accordance with applicable law.


SREV generally obtains personal information on behalf of other companies (as an agent or data processor). To request access to, correction, amendment, or deletion of this personal information, a Client, Visitor, or Client end-user should contact the company to which the data was provided.


SREV has a privacy officer (“Privacy Officer”) who is responsible for SREV's compliance with and enforcement of this Privacy Policy. SREV's Privacy Officer is available to any of its employees, Clients, vendors, business partners, Visitors, or others who may have questions concerning this Privacy Policy or SREV’s data security practices. SREV's Privacy Officer may be contacted by email at

With respect to personal information, SREV has agreed to cooperate with EU Data Protection Authorities. Any questions, comments, or complaints about the data practices of a Client for which SREV processes data should be addressed with such Client (including, without limitation, compliance with data privacy principles of notice, choice, onward transfer, access, security, data integrity, or enforcement), although SREV will make reasonable efforts to comply or assist with such requests.


No data transmissions over the Internet can be guaranteed to be 100% secure. Consequently, SREV cannot ensure or warrant the security of any information transmitted to SREV.  All transmissions of information are done at the senders own risk. Once SREV is in possession of any information, SREV will make reasonable efforts to ensure the security of its systems.  This paragraph is not a guarantee that such information will not be accessed, disclosed, altered, or destroyed by breach of firewalls or secure server software.

SREV has adopted appropriate physical, electronic, and managerial procedures to safeguard and secure the personal information SREV processes. SREV strives to protect the privacy of the personal information it processes and to avoid inadvertent disclosure.

If SREV learns of a security system's breach, SREV maintains an incident response policy that requires notifications consistent with applicable law.

By using this website or providing personal information to SREV, each Visitor agrees that SREV may communicate with the Visitor electronically regarding security, privacy, and administrative issues relating to Visitor’s use of this website.

Changes and Updates

SREV will maintain personal information in accordance with this Privacy Policy. If SREV decides to change this Privacy Policy, SREV will post the changes on this page so that Clients and/or their employees and Visitors are aware of what types of personal information SREV processes, how SREV uses such personal information, and under what circumstances, if any, SREV discloses it. If at any point SREV decides to retain or use personal information in a different manner, SREV will notify its clients by way of email or by posting a notice on SREV's website at least thirty (30) days prior to the change in use. Clients, in turn, are responsible for their customers and providing them with a choice as to whether or not SREV uses their personal information in this revised manner.

Contacting SREV

Any questions, comments, or concerns about SREV or this Privacy Policy should be directed at

Postal Mail Address:
634 2nd Street
San Francisco, CA 94107

SREV can be reached via e-mail at or by telephone at (415) 901-6030.


ServiceSource customer: Microsoft
ServiceSource customer: VMWare
ServiceSource customer: NetApp
ServiceSource customer: Siemens
ServiceSource customer: SalesForce
ServiceSource customer: BT