Privacy Policy

Corvus Pharmaceuticals, Inc. (“Corvus,” “we,” “us” or “our) created and maintains the Corvus website (the “Website”), currently located at www.corvuspharma.com, and other online services owned or controlled by Corvus (collectively, the “Services”). This Privacy Policy, describes how Corvus collects, uses, discloses and secures information collected from or about you through the Services. By using the Services, you consent to the terms of this Privacy Policy. If you do not agree to the terms and conditions of this Privacy Policy, you may not use the Services. Corvus may update this Privacy Policy from time-to-time in our sole discretion in accordance with the modification provision of the Terms of Use. Your use of the Service following us posting a new Privacy Policy on the Service signifies that you agree to and accept the Privacy Policy as modified pursuant to the “Modifications of Terms” section of the Terms of Use.

What is Personal Data?
Personal data is information that specifically identifies an individual, such as an address, telephone number, e-mail address, and information about that individual’s activities when directly linked to that person. Personal data also includes demographic information such as date of birth, gender, geographic area and preferences when such information is linked to other personal data that identifies you (“Personal Data”).

Personal Data We Collect:
You may provide Personal Data to us when you interact with us through the Service and/or provide information to Corvus. For example, depending on the specific Services, you may provide us with personal information when you:

  1. Contact us by email or through our contact form for any reason (such as to ask a question or provide us with your comments/feedback) and we collect your name, email address, and other information you provide from this contact;
  2. Submit your resume or other personal information in response to a job opening posted on the Services.

By voluntarily providing us with Personal Data and using the Services, you are consenting to our use of it in accordance with this Privacy Policy. If you provide Personal Data to the Service, you acknowledge and agree that such Personal Data may be transferred from your current location to the offices and servers of Corvus and the authorized third parties referred to herein located in the United States.

Non-Identifiable Data:
When you interact with Corvus through the Service, we receive and store certain personally non-identifiable information. Such information, which is collected passively using various technologies, cannot presently be used to specifically identify you. Corvus may store such information itself or such information may be included in databases owned and maintained by Corvus affiliates, agents or service providers. The Service may use such information and pool it with other information to track, for example, the total number of visitors to our Service, the number of visitors to each page of our Website, and the domain names of our visitors’ Internet service providers. No Personal Data is available or used in this process.

Cookies:
When you visit the Services, some information is also automatically collected, such as your computer’s Internet Protocol (IP) address, your computer’s operating system, the browser type, the address of a referring web site, and the time and date of your visit and pages visited. This information is collected through the use of “cookies.” A cookie is a piece of information that the computer that hosts our Service gives to your browser when you access the Service. We use cookies on the Services to help optimize your online experience.

Corvus does not require that you accept cookies; however, some functionality on the Services may be disabled if you decline to accept cookies. You can set your browser to notify you when you receive a cookie, giving you the chance to decide whether or not to accept it.

How We Use Personal Data and Other Information:
Corvus may use your Personal Data and other personally non-identifiable information collected through the Service for internal purposes only to help us improve the content and functionality of the Service, to better understand our users and to improve the Corvus Services. Corvus and its affiliates may use this information to contact you in the future to tell you about services we believe will be of interest to you. If we do so, each communication we send you will contain instructions permitting you to “opt-out” of receiving future communications. In addition, if at any time you wish not to receive any future communications or you wish to have your name deleted from our mailing lists, please contact us as indicated below. When we use your personal data, it may be processed on our servers in the United States of America and in other countries, and your information may be processed on a server that lies outside your own country.

Use of Aggregate Information:
Personal Data does not include “aggregate” information. Aggregate information is data we collect about a group or category of services or users, from which individual identities have been removed. In other words, information about how you use a service may be collected and combined with information about how others use the same service, but no personal information will be included in the resulting data. Aggregate data helps us understand trends and customer needs so that we can better consider new services and tailor existing services to customer desires. We may share aggregated non-personal information with third parties outside of Corvus.

Our Disclosure of Your Personal Data and Other Information:
Corvus does not sell, rent or share your Personal Data with third parties without your prior consent, except in the limited circumstances described in this Privacy Policy. There are, however, certain circumstances in which we may share your Personal Data with certain third parties without further notice to you, as set forth below:

Business Transfers: We may provide your Personal Data and other non-personal information to a third party in connection with the sale, transfer or reorganization of some or all of Corvus or its assets, and any such acquirer or transferee will have the right to use and disclose such information subject to the terms of this Privacy Policy.

Related Companies: We may also share your Personal Data with companies related to us, such as subsidiaries, for purposes consistent with this Privacy Policy.

Agents, Consultants and Related Third Parties: We may disclose your Personal Data and other non-personal information to our third-party service providers (e.g., hosting providers, payment processors, analytics companies, etc.). When we supply information to these third parties, we require them to use it only for the purpose for which they are working with Corvus, and prohibit disclosure except at our direction and consistent with the services they are contracted to provide.

Legal Requirements: We may disclose your Personal Data if required to do so by law or in the good faith belief that such action is necessary to (i) comply with a legal obligation, (ii) protect and defend the rights or property of Corvus, (iii) act in urgent circumstances to protect the personal safety of users of the Service or the public, or (iv) protect against legal liability.

Your Choices:
You can use the Service without providing any Personal Data. If you choose not to provide any Personal Data, you may not be able to use certain Corvus Services.

“Do Not Track” or “DNT” Technology; Opting Out: The Website, whether accessed on a computer or a mobile device, is not at this time configured to read or respond to “do not track” settings or signals in your browser headings, which vary by browser provider. The only way to completely “opt out” of the collection of any information through cookies or other tracking technology is to actively manage the settings on your browser or mobile device to delete and disable cookies and other tracking/recording tools. Some features of the Website require the use of cookies and other tracking/recording tools in order to customize the delivery of information to you. If you disable such tools you may not be able to use certain aspects of the Services.

Data Subject Rights and Data Retention
You have the following rights in relation to the Personal Data we hold about you, unless provided otherwise by local law:

  • To request access to, or erasure of, the Personal Data we hold about you.
  • To request us to restrict the processing of the Personal Data we hold about you.
  • To object to us processing Personal Data relating to you.
  • Where you have given us consent to process your Personal Data, you have the right to withdraw that consent at any time.
  • To export the Personal Data you have provided to us in a format that can be transferred electronically to a third party.

Please note that some of these rights are not absolute. In some cases, we may refuse a request to exercise particular rights if complying with it meant that we are no longer able to meet our contractual obligations. We will keep you informed as to the actions that we can take when you make your request.

We may retain your data as long as necessary to fulfil the purpose for which such data was collected, to comply with law, prevent fraud, resolve disputes, troubleshoot problems, assist with any investigations, enforce our Terms of Use and take other actions otherwise permitted by law. We may also retain anonymous data collected through the Services and this data may be shared with third parties but you will not be identifiable from the data sets that we share.

Links to Other Web Sites:
The Services may contain links to other web sites. Any Personal Data you provide on the linked pages is provided directly to that third party and is subject to that third party’s privacy policy. Except as described above, we are not responsible for the content or privacy and security practices and policies of web sites to which we link. Links from the Services to third parties or to other web sites are provided for your convenience only. We encourage you to learn about their privacy and security practices and policies before providing them with Personal Data.

Security:
Corvus takes reasonable steps to protect the Personal Data provided via the Service from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. However, no Internet or e-mail transmission is ever fully secure or error free. In particular, e-mail sent to or from the Service may not be secure. Therefore, you should take special care in deciding what information you send to us via e-mail. Please keep this in mind when disclosing any Personal Data to Corvus via the Internet.

Children’s Privacy:
We do not seek or knowingly collect any personal information about children under 13 years of age. If we become aware that we have unknowingly collected personal information from a child under the age of 13, we will make commercially reasonable efforts to delete such information from our database.

If you are the parent or guardian of a minor child who has provided us with personal information, you may contact us using the information below to request it be deleted.

Governing Law:
This Privacy Policy shall be subject to the “Governing Law and Arbitration; No Class Actions” provision in the Terms of Use.

Your California Privacy Rights:
This Privacy Policy describes how we may share your information for marketing purposes. It applies to all users of the Corvus Service, including California residents.

We share information with others as more fully set forth above. We share your information with other parts of our business and with our service providers.

You may contact us with any questions, or to request a list of third parties to whom we may disclose information for marketing purposes and the categories of information we may disclose. See below for our contact information:

Contact Us:
If you require any more information or have any questions or complaints about our Privacy Policy, please feel free to contact us at 650-900-4520.  

This Privacy Policy was last modified on October 1, 2018.