Privacy Policy

The following statement explains Blue Prisms' policy regarding the personal information we collect about you.

Blue Prism Privacy Policy – updated September 2018

Blue Prism takes its data privacy responsibilities seriously. This privacy policy explains what personal information Blue Prism collects on customers, partners, vendors and marketing contacts, and how we use it.

If you have any queries regarding this privacy policy or our use of your information, please contact

What personal information does Blue Prism have?

We may collect and process your name, email address, job information, phone number, address and cookie information. Personal information can be collected through sales enquiries, marketing events and downloads, use of the Blue Prism websites and the Blue Prism portal and from third parties.

Blue Prism Limited (registered in England & Wales under company number 04260035) is the data controller of your personal information, although it may have been initially collected by a subsidiary of Blue Prism Limited based in another country or by a partner organisation.

How is my personal information used?

If you are a customer or a partner your personal information will be used for contract management, sales administration, Blue Prism portal access and product updates. We will also use your personal information to respond to your product support requests. This will allow us to fulfil our contractual obligations owed to you and to support our business relationship with you.

If you are a Blue Prism Digital Exchange user your personal information will be used to provide you with the Digital Exchange asset(s) you have accessed and relevant updates and information. We may also pass on your personal information to the asset provider for the same purpose.

We may also use your personal information for marketing purposes if we have your consent to do so. We may, from time to time, contact you to keep you informed about our products and services, special offers, events or our partners’ products and services. You can unsubscribe from marketing emails at any time. We may also pass your personal information to the Digital Exchange asset providers for the assets that you have accessed for marketing purposes if you have given your express consent.

If you provide us with your personal information using one of our website forms we will hold this information to track if you visit the Blue Prism website again, and to follow up with you if you request Blue Prism to do so. We may also collect information about the use of the Blue Prism website such as the types of information accessed and how many users we receive daily. Blue Prism may use this data for statistical analysis, marketing, or similar promotional purposes. Please see the Cookies policy for more details.

Is my personal information shared with third parties?

We may share your personal information with other Blue Prism companies. Details of Blue Prism companies can be found on our website homepage. Where another Blue Prism company processes your information the same principles of this policy will apply. We may also share your personal information with our suppliers to process your personal information on our behalf. If you would like further information on our suppliers and their privacy policies, please contact us at

If Blue Prism needs to transfer your personal data to a third party outside of the European Economic Area we will ensure that your personal information is appropriately protected through US Privacy Shield, standard contractual clauses approved by the EU Commission or other means approved by our supervisory authority.

Can I find out what information you have about me?

You have the right to request a copy of the personal information Blue Prism holds about you and to have any inaccuracies corrected. You also have the right to have your personal information removed from our marketing database if you no longer wish to receive marketing communications. Please send your requests to

How long will you keep my personal information?

For customers, partners, portal users and vendors, we will keep your personal information for up to six years after your contract with us ends. For marketing contacts, we will keep your personal information for up to one year after the last marketing communication we send to you unless you request for Blue Prism to delete it sooner.

How do I complain about use of my personal information?

If you would like to make a complaint about our use of your personal data please send details of your complaint, including the personal information it relates to, to We will investigate your complaint and respond as soon as we can, and no more than one month later. If you are not satisfied with our response you may contact the Information Commissioners Office ( as Blue Prism’s external supervisory body or your local personal data privacy authority.

No spam policy

We maintain a strict ‘No Spam’ policy that means that we do not intend to sell, rent, or otherwise give your personal information to a third-party without your consent except as set out in this policy and unless we are obliged by law to disclose information.

Privacy Shield

Notice of Certification: Blue Prism complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States.  Blue Prism has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit

Scope: This Privacy Shield section of the privacy policy applies to all personal information received or processed by Blue Prism in the United States from the EU, in any format, including electronic, paper or verbal.

Blue Prism is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission.

Compelled Disclosure: Blue Prism may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

Complaints: In compliance with the Privacy Shield Principles, Blue Prism commits to resolve complaints about our collection or use of your personal information. EU individuals with enquiries or complaints regarding our Privacy Shield policy should first contact Blue Prism at: privacy@blueprism.comBlue Prism will respond within 28 days.

Dispute Resolution: If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, Blue Prism has committed to refer unresolved Privacy Shield complaints to JAMS (Judicial Arbitration and Mediation Services, Inc), an alternative dispute resolution provider located in the United States. In either of those cases, please contact or visit more information or to file a complaint. The services of JAMS (Judicial Arbitration and Mediation Services, Inc) are provided at no cost to you.

Arbitration: For residual complaints not fully or partially resolved by other means, you may be able to invoke binding arbitration before the Privacy Shield Panel as detailed in the Principles. If neither Blue Prism nor our dispute resolution provider resolves your complaint, as a last resort and in limited situations, EU individuals may seek redress from the Privacy Shield Panel, a binding arbitration mechanism.

Links to other sites

This privacy policy covers the Blue Prism web site at Other links within this site to other web sites are not covered by this policy. Please check with those sites to determine their privacy policy.

Cookies Policy

What information is collected?

The Blue Prism web site captures personal information to allow us to follow up with you using cookies. Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site. The table below explains the cookies we use and why.

__hstcThe main cookie for tracking visitors. It contains: the domain, utk (see below), initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session)2 years
hubspotutkThis cookie is used for to keep track of a visitor’s identity. This cookie is passed to HubSpot on form submission and used when removing duplicate contacts.10 years
__hsscCookie for keeping track of sessions. This is used to determine if we should increment the session number and timestamps in the __hstc cookie. It contains: the domain, viewCount (increments each pageView in a session), session start timestamp.30 minutes
__hssrcWhenever HubSpot changes the session cookie, this cookie is also set. We set it simply to the value “1”, and use it to determine if the user has restarted their browser. If this cookie does not exist when we manage cookies, we assume it is a new session.Session cookie
__hs_opt_outThis cookie is used by the opt-in privacy policy to remember not to ask the user to accept cookies again. This cookie is set to give users the choice to opt out of cookies.2 years
__hs_do_not_trackThis cookie can be set to prevent the tracking code from sending any information to HubSpot. Setting this cookie is different from opting out of cookies, which still allows anonymized information to be sent to HubSpot.2 years
__hs_testcookieThis cookie used to test whether the visitor has support for cookies enabled.Session cookie
hsPagesViewedThisSessionThis cookie used to keep track of page views in a session.Session cookie
_gaGoogle Analytics Cookie used to distinguish users2 years
_gidGoogle Analytics Cookie used to distinguish users24 hours
_gatGoogle Analytics Cookie used to throttle request rate1 minute
_sess[id]Portal session cookie used to maintain logged in state for users1 hour
JSESSIONIDThis the individual user session IDSession cookie
dpSessionCookieThis holds the user’s email & username (encrypted)cookie expirations are controlled via the setting dpSessionCookie.maxAgeInSeconds – the default value of this is -1, meaning no expiration
jforum-secure-ssoThis holds user’s email, forum username OR dpEngine username (if the former is null) and collection of up to two role names indicating if the user has USER_READ_ALL or  USER_EDIT_ALL priviliges (encrypted) (used by our forum module)cookie expirations are controlled via the setting dpSessionCookie.maxAgeInSeconds – the default value of this is -1, meaning no expiration
softslate_loginA session ID (used by softslate, an e-commerce module, you’re not using it.)Session cookie
sscaltokenA session ID (used by softslate, an e-commerce module, you’re not using it.)cookie expirations are controlled via the setting dpSessionCookie.maxAgeInSeconds – the default value of this is -1, meaning no expiration

Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit or