Privacy Policy

Dotcms privacy policy - Privacy policy for users of Dotcms content management system.

Effective Date: January 15, 2011 (last updated May 2, 2017)

This Corporate Website and Services Privacy Policy (“Privacy Policy”) explains the information practices and policies of dotCMS Services, LLC and its subsidiaries (“dotCMS”). It describes how we collect, use, and disclose information as clients and consumers interact with dotCMS products and services (collectively “dotCMS Services”), as well as through our corporate websites.  DotCMS takes your privacy very seriously and treats any personal information with great care.  dotCMS always acts in accordance with applicable data protection legislation.

About dotCMS

We provide dotCMS Services to publishers, websites and others (“Clients”).  We help companies build websites, mobile applications, and other digital properties as well as make their content easier to find, improve and test.  We deliver the dotCMS Services on our Clients’ commercial websites, mobile applications, and digital properties as part of the content they display to consumers.  dotCMS is a service provider for other companies, and we act as a data processor for the Clients who use the dotCMS Services.  The dotCMS Services do not include our corporate website (currently located at, but we may use the dotCMS Services to deliver the content we display to our corporate website visitors.  

DotCMS does not sell individual consumer data or advertising.  We provide our Clients with tools, analytics and personalization services that help business users develop and publish content and their consumers find content they want— when and where they want it.

This Privacy Policy does not reflect the privacy policies or practices of dotCMS’s Clients.  dotCMS is not responsible for our Clients’ privacy policies or practices.

We recommend that consumers review the privacy policies of the websites they visit and online services they use, including those of their Internet service provider.  Paying close attention to privacy policies remains one of the best ways to make informed choices about privacy.

DotCMS Services are intended to help consumers more easily and quickly find the content and information they seek.

Notice and Use of Information (We work for our Clients)

Because of the nature of the dotCMS Services, dotCMS operates as a data processor for our Clients, who act as data controllers.  Individual users who interact with websites or services that utilize dotCMS Services may interact directly with dotCMS’s Clients rather than with dotCMS, including sharing Personal Information (defined below) with these Clients.  dotCMS maintains only the information our Clients have authorized us to process.  It is the dotCMS Client’s responsibility to ensure that the data it collects can be legally collected in the country of origin.   dotCMS Clients are responsible for giving their employees and customers the appropriate level of notification that information, potentially including Personal Information, will be collected and maintained.  dotCMS has confidentiality agreements that govern its receipt and use of data from our Clients.  The dotCMS Services do not use data collected on behalf of one Client for the purpose of servicing a different Client, but may use aggregated and anonymized information compiled from multiple Client websites or provided by third party service providers for servicing Clients.

In order to improve the dotCMS Services, we want to know how our Clients use our services. We collect, store and process information during the Client’s use of our services to learn how we can improve our services.

Opt-Out of Information Collection: Your Choices

While our Clients are responsible for communicating directly with their consumers, we strive to offer consumers choices about the collection of information related to their website usage and enough information to make an informed decision about such collection.

Consumers are welcome to opt out of future dotCMS data collection tied to website usage and analytics by clearing their browser’s cookies for the domain or URL that uses the dotCMS Services or by blocking the use of cookies when they visit such domains or URLs.


DotCMS does not collect or use Personal Information about individual consumers when we provide the dotCMS Services to Clients.  When we say “Personal Information” we mean individually identifiable information that would allow us to determine the actual identity of, and contact of, a specific living person.

DotCMS Services use and rely on other information, such as device and IP address information which is collected automatically through technologies such as cookies and aggregate consumer information from third party service providers, to provide our services.  You can learn more about how dotCMS Services use information below.

What information does dotCMS collect, how do we collect it, and how do we use it?

To enable the dotCMS Services to provide better content experiences, we collect device-related information about consumers’ use of a specific Client’s websites and interactions with dotCMS-created content widgets and pages on that Client’s websites for limited purposes.  This device information is collected from the browser, and may include information such as an IP address, the date and time of use of the dotCMS Services or our Client’s website, technical attributes about the consumer’s browser request, browser type, browser language, search queries, pages or products browsed, and details about whether the consumer has made a purchase.  We associate this data with an anonymous cookie tied to a specific Client’s website that is not linked to any individual consumer’s actual identity. The dotCMS Services do not collect the name, address, phone number, or any other Personal Information of individual consumers (although our Clients may have collected this information separately from the dotCMS Services).

The dotCMS Services do not associate device information collected by the dotCMS Services from one dotCMS Client’s websites with device information collected from a different dotCMS Client’s websites.  The dotCMS Services do not track an individual consumer’s online activities across multiple unrelated third party websites or online services.  However, the dotCMS Services may use aggregate consumer information provided by third party service providers who may track individual consumer online activities across multiple unrelated third party websites or online services.

Website Usage and Analytics.

We may collect device and machine-generated information such as the request and response logs of our Clients’ websites.  These logs include click and browse information. When consumers visit websites, information identifying the website they arrive from and the next website they visit is generated and available to the website operator for analysis. dotCMS uses such information on an aggregated basis alongside similar information from millions of other consumers to help dotCMS improve and develop our services and our Clients’ customers’ experience.  This aggregated information may include basic reporting metrics like the number of consumers who discovered content through dotCMS-suggested content and connections, how frequently users return to a Client’s website, and the aggregate revenues generated from those consumers. Aggregated information may also be used to help dotCMS and its Clients optimize our services. Such aggregate data does not contain Personal Information.

Cookies and Log Information.

Cookies are files that web servers place on an Internet user’s computer that are designed to store basic information (such as visitor preferences).  Cookie technology remains a fundamentally important part of how websites customize users’ online experiences.  Through the use of cookies or similar technologies, we may collect and store basic information about your visits to a Client’s website, in anonymized form, so that we can help improve consumers’ online experiences.  For more information about our use of cookies, please see our Cookie Policy.


We do not share any individual level information we collect for any direct marketing purposes, except with our Clients, on whose behalf we are acting or with our services providers who are acting on our behalf.  We will never sell or give away any  personal data we may have, to third parties without your explicit consent. We may team up with other companies (business partners) to offer certain marketing events and promotions and may share individual level information that we have collected with these business partners in order to carry out these events and promotions. We may share aggregate information about the use of the dotCMS Services with the businesses that use our services.  This information does not identify any individual consumer.

dotCMS may otherwise share information it collects:

  • if doing so is appropriate to carry out a consumer’s request; or
  • if dotCMS believes that doing so is legally required; or    
  • if it is in dotCMS’s interest to protect its property or other legal rights, or the rights or property of others.

Information possessed by dotCMS may be transferred in connection with any sale or disposition of the business as permitted by law or agreements with our Clients.


You can visit the dotCMS corporate website without revealing any Personal Information. However, in some instances, dotCMS may require certain Personal Information in order to respond to a request by a site visitor or provide services to our Clients. dotCMS may engage certain third parties to perform functions and provide services to us, including, without limitation, hosting and maintenance, customer relationship, storage, database management, business analytics, recruiting, direct marketing campaign, or similar services.  dotCMS will share your Personal Information with authorized third parties, but only to the extent necessary to perform these functions and provide such services, and only pursuant to binding contractual obligations requiring such third parties to maintain the privacy and security of your Personal Information. By voluntarily providing dotCMS with Personal Information, you are consenting to dotCMS’s use of it in accordance with this Privacy Policy. If you provide Personal Information to dotCMS, you acknowledge and agree that such Personal Information may be transferred to the authorized third parties referred to herein.

Onward Transfer

We are a growing corporation with operations in multiple countries, including the United States, United Kingdom, EMEA, and Asia .  We have developed data practices designed to assure information is appropriately protected.  While our primary data centers are in the United States, we may transfer Personal Information or other information to dotCMS offices outside of the United States or the European Union.  In addition, we may employ other companies and individuals to perform functions on our behalf.  If we disclose Personal Information to a third party or to dotCMS employees, we will seek assurances that any information we may provide to them is safeguarded adequately and in accordance with this privacy policy and the requirements of applicable law.

Data Integrity

DotCMS will use Personal Information only in ways compatible with the purpose for which it was collected or authorized by our Clients, or as requested in connection with website user requests.

Information Retention

Our Clients limit dotCMS’s collection, use, and disclosure of their customers’ information through the dotCMS Services.  We keep information we need to provide our services to our Clients only so long as we have a valid business purpose, in accordance with applicable law and our client agreements.


In most cases, if and/or when we obtain Personal Information, it relates to our Clients or their employees, and we do not collect Personal Information through the dotCMS Services.  To the extent that we may, we would do so (as an agent or data processor) on behalf of, and at the request of, a Client.  To request access to, correction, amendment, or deletion of his or her Personal Information, a consumer should contact the company to which the data was provided. Consumers that wish to request access to, correction, or deletion of Personal Information they have submitted through the dotCMS corporate website should contact dotCMS at


dotCMS’s officers and directors are responsible for dotCMS’s compliance with and enforcement of this Policy.  dotCMS management is available to any of its employees, customers, vendors, business partners, or others who may have questions concerning this Privacy Policy or data security practices.  dotCMS management be contacted by email at

Any questions, comments, or complaints about the data practices of a Client for which dotCMS processes data should be addressed to that Client (including, without limitation, compliance with data privacy principles of notice, choice, onward transfer, access, security, data integrity, or enforcement), although dotCMS will make reasonable efforts to comply or assist with such requests.


No data transmissions over the Internet can be guaranteed to be 100% secure.  Consequently, we cannot ensure or warrant the security of any information you transmit to us, and you do so at your own risk.  Once we receive your transmission, we make reasonable efforts to ensure data security on our systems.  Please note this is not a guarantee that such information may not be accessed, disclosed, altered, or destroyed by breach of such firewalls and secure server software. dotCMS has adopted physical, technological, and administrative procedures to safeguard and secure the information we process. By using this website or providing Personal Information to us, you agree that we can communicate with you electronically regarding security, privacy, and administrative issues relating to your use of this website.

Changes and Updates

DotCMS will maintain Personal Information in accordance with this Privacy Policy.  If dotCMS decides to change this Privacy Policy, dotCMS will post the changes on this page and update the “last updated” date above so our Clients and/or their employees, applicants, and users are aware of our practices.  If at any point dotCMS decides to retain or use previously collected Personal Information in a materially less restrictive manner, dotCMS will seek to provide affected individuals with additional notice (such as by way of email (where possible) or by posting a notice on dotCMS’s website or product login screens) for at least 30 days prior to the change in use.  Clients, in turn, are responsible for their users and providing them a choice as to whether or not dotCMS uses collected information in this revised manner.  We encourage you to review our Privacy Policy whenever you use dotCMS Services to stay informed about our information practices and the ways you can help protect your privacy.

Contacting dotCMS

If you have any questions, comments, or concerns about dotCMS or this Privacy Policy, please email us at

Postal Mail Address:
dotCMS Services, LLC
3059 Grand Avenue, Suite 300
Miami, FL 33133

We can be reached via e-mail at or you can reach us by telephone at +1 (888) 404-6185.