Last Updated March 2024

Apps Privacy Policy

Effective January 2023

Privacy Policy – Samsara Apps This privacy policy describes the data that Samsara Inc. (“Samsara”, “we”, “us” and/or “our”) collects through software applications for smartphones and tablets published by Samsara on the Google Play and Apple App Stores (the “apps”). All personal data (defined below) collected through the apps is collected solely on behalf of our customers. Accordingly, we are only a processor of this data (as defined by the GDPR); our customers are the controllers of this data (as defined by the GDPR). We are, however, the controller of a small subset of non-personal data collected through the apps about app performance. The term “processor” shall also include a “service provider” and the term “controller” shall also include a “business” as defined in the California Consumer Protection Act of 2018 as amended by The California Privacy Rights Act of 2020 (together with its implementing regulations, the “CPRA”) or analogous terms in the applicable data protection laws. Accordingly, please contact the relevant customer (e.g., your employer, if you are an employee of a Samsara customer) for more information about their privacy practices as to the personal data collected through or in connection with the Samsara apps. We are not responsible for the privacy or data security practices of our customers, which may differ from those set forth in this privacy policy.

COLLECTION AND USE OF PERSONAL DATA Personal data. “Personal data” is any information that relates to an identified or identifiable individual. Samsara collects a variety of personal data on behalf of its customers through the use of the Samsara apps. The specific personal data collected through the apps is dependent on which app(s) our customers choose to utilize and how they configure their settings.

  • Data you provide directly. We may collect personal data that you provide directly, such as when you access the app or administer a user account. This information includes name, email address, phone number, user ID, and personal data contained within in-app messages. We may also collect photos you choose to take with or upload to the app as well as registration data for the vehicle being used in conjunction with the app(s). Some of this data may constitute “sensitive personal information” under the CPRA.

  • Data provided by your employer. Your employer may input certain information into the related cloud-based dashboard, such as driver’s license numbers, that may also appear in the app.

  • Data we collect automatically. We may automatically collect information about your use of the app as well as information about the device you are using to access the app such as device identifiers, device type, and device operating system. We may also collect the inventory of installed apps on a given device if you are using our Dev Tools, Agent, or Launcher apps. Additionally, depending on your device and app settings, we may collect approximate or precise location data during your use of the apps, which may constitute “sensitive personal information” under the CPRA.

Non-personal data. Samsara also collects some non-personal data about app performance such as crash logs, diagnostics, and other app-performance related analytics data.

How we use the data we collect. We collect and use this data for legitimate business purposes relating to the Samsara apps and pursuant to our customers’ directions, including:

  • App functionality. We collect and use your personal data to provide the features that are available in the Samsara apps, including but not limited to driver vehicle inspection and other reporting, route management, vehicle and trailer selection, log review and certification, dispatch communications, and mobile device management (for the mobile device management solution only). We also collect and use this data to authenticate app users.

  • Analytics. We collect and use your personal data to gain insights into how the app performs. For example, we may use this data to monitor app health, diagnose and fix bugs or crashes, or to make future app performance improvements.

  • Fraud prevention, security, and compliance with legal and regulatory obligations. We may, for example, use your personal data to monitor login attempts to identify possible fraudulent activity or to respond to court orders, subpoenas or other legal processes with which Samsara is required to comply.

  • App account management. We collect and use your personal data to set up and manage app user accounts.

DISCLOSURE OF PERSONAL DATA We do not sell or share the personal data collected through the Samsara apps, as defined by the CPRA. However, there are a few particular circumstances in which we may, with our customers’ permission, authorization, and/or consent, disclose or transfer this data, including:

  • to a buyer or other successor in the event of a merger, acquisition, divestiture, restructuring, reorganization, dissolution or other sale or transfer of some or all of our assets;

  • to our subsidiaries, affiliates, agents, and contractors as well as the service providers we use to support our business and/or collaborate with (e.g., our subprocessors); provided always, they are bound by contractual obligations to keep such personal data confidential and only use it for the purposes of providing the services for, or with, us based upon our customers’ chosen settings, configurations, and/or purchases;

  • to comply with any court order, law or legal process, including to respond to any government or regulatory request;

  • to enforce or apply our Terms of Service and/or any other agreement that governs the sale, use or purchases of our products and/or services; and to protect the rights, property or security of Samsara, our employees, our users and/or others.

ONWARD TRANSFER OF PERSONAL DATA To facilitate our global operations, and in accordance with applicable laws and our customers’ instructions, we may transfer the personal data collected through our apps to, and access this data from, our offices, subsidiaries, affiliates and services providers in the various countries in which we or they operate (including the United States of America). Details about our subprocessors can be found here.

SECURITY AND DATA RETENTION We only retain data collected through the apps if authorized to do so by the customer on behalf of which we collected the data. Please contact the relevant customer (e.g., your employer, if you are an employee of a Samsara customer) for more information about their data retention and security practices.

Data retention. To the extent we do retain personal data collected through the apps, we will retain said data only for as long as necessary to follow our customers’ instructions or to comply with legal, regulatory or internal policy requirements.

Data security. We are committed to keeping personal data secure, and we have implemented contractual, technical and organizational measures to protect personal data against its unauthorized access, use, and disclosure. Such measures have been implemented taking into account the state of the art of the technology, their cost of implementation, the risks presented by the processing and the nature of the personal data. If we provide your personal data to third parties, including service providers, we require those companies to protect the personal data they receive and not to use the personal data for any purpose other than providing the required services.

OUR POLICY TOWARD MINORS The Samsara apps are not directed to minors under 16 and we do not knowingly collect personal data from minors, nor do we sell or share such data, as defined by the CPRA.

DATA PROTECTION RIGHTS, AND HOW TO EXERCISE You may have a right to know what personal information Samsara has collected about you and you may have a right to access and to obtain a copy of this personal data as processed by Samsara from a Samsara customer. If you believe that any personal data we collected about you is incorrect or incomplete you may also request the correction of it by a Samsara customer. You may also have the right to:

  • Object to the processing of your personal data;

  • Request the deletion of your personal data;

  • Request a restriction of the processing of your personal data;

  • Transfer your data to another controller; and/or

  • Withdraw your consent where a Samsara customer obtained your consent to instruct Samsara to process personal data (without this withdrawal affecting the lawfulness of any processing that took place prior to the withdrawal).

Please contact the relevant controlling customer (e.g., your employer, if you are an employee of a Samsara customer) to exercise these rights. Alternatively, you may also reach out to privacy@samsara.com. To the extent you do email privacy@samsara.com, please specify exactly the relevant controlling customer such that we can forward the request on to them to handle accordingly. An authorized agent can also exercise these rights on your behalf.

UPDATES TO THIS PRIVACY POLICY We may make changes to this privacy policy periodically to reflect changes in our practices, technologies, legal requirements and other factors. If we make changes, we will revise the “Last Updated” legend at the top of the privacy policy and we may provide additional notice in the app.

CONTACT US If you have any questions regarding this privacy policy or our privacy practices, you may email us at privacy@samsara.com. If you would like to communicate with our Data Protection Officer, please email dpo@samsara.com You can also contact us by writing to us at the following addresses:

Samsara Inc. Attention: Legal Department – Privacy Issues 1 De Haro Street, San Francisco, CA 94107 USA

Samsara Networks Limited (also as a Representative of Samsara Inc., Samsara Deutschland GmbH, Samsara France SAS, Samsara Nederland B.V., and Samsara Poland Sp. z.o.oand other relevant subsidiaries for the purposes of the UK GDPR ) Floor 4, 1 Alie Street London E1 8DE United Kingdom

Samsara Deutschland GmbH (also as a Representative of Samsara Inc., Samsara Networks Mexico, S. de R.L. de C.V. and Samsara Networks Limited for the purposes of the EU GDPR) Maximiliansplatz 22, c/o Bird & Bird LLP 80333 München Germany

Samsara Nederland B.V. Barbara Strozzilaan 101, Suite 2.01 1083HN Amsterdam Netherlands

Samsara Poland Sp. z.o.o. Al. Ujazdowskie 41, 00-540 Warsaw Poland

Samsara France SAS c/o The Bureau 25 rue du Quatre Septembre Suite C501 75002 Paris France

Samsara Networks Mexico, S. de R.L. de C.V. Av. Río San Joaquín 498, Piso 3, Ampliación Granada, Miguel Hidalgo C.P. 11529 Ciudad de México, CDMX México