GDPR & Cookie Policy

A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information. Those cookies are set by us and called first-party cookies. We also use third-party cookies – which are cookies from a domain different than the domain of the website you are visiting – for our advertising and marketing efforts.

More specifically, we use cookies and other tracking technologies for the following purposes:

  • Assisting you in navigation;
  • Assisting in registration to our events, login, and your ability to provide feedback;
  • Analyzing your use of our products, services or applications;
  • Assisting with our promotional and marketing efforts. (including behavioral advertising)

Below is a detailed list of the cookies we use on our Website. Our Website is scanned with our cookie scanning tool regularly to maintain a list as accurate as possible. We classify cookies in the following categories:

  • Strictly Necessary Cookies
  • Performance Cookies
  • Functional Cookies
  • Targeting Cookies

The InMoment platform allows clients to incorporate cookies to enhance the functionality of their surveys. While many of these cookies are used to facilitate ease of use and support privacy rights, we recommend survey-takers review the privacy policy of individual companies for more information.

GDPR Contract Update

Both InMoment (processor) and its customers (controllers) are jointly and separately responsible for certain actions under GDPR. Therefore, the GDPR requires shared responsibility to protect an individual’s privacy rights. GDPR Article 28 requires that a contract be in place between a controller and a processor. For years, the InMoment [Terms of Service and Master Services Agreement] has provided the fundamental legal requirements and obligations regarding data ownership, confidentiality, processing responsibilities, security of data, breach notification, and more.

Sub-processors and InMoment: As an Enterprise solution, the InMoment team provides a comprehensive suite of services. While we have long-standing relationships with established suppliers, the majority of work is performed in-house. With only a few exceptions, customer data provided to InMoment as part of your program efforts is maintained solely by the InMoment team.

However, if a InMoment customer desires to update their agreement with InMoment with a GDPR-specific language, please email InMoment at

Privacy Commitment

InMoment has updated its privacy policy with GDPR-level protections applicable to our business.  Please take a moment to review the updated InMoment Privacy Policy to see all the ways in which we are working to protect and increase users’ privacy rights.

Data Transfer

EU-U.S. Privacy Shield. InMoment is certified under the Privacy Shield Framework set forth by the U.S. Department of Commerce regarding the collection, use, processing, and cross-border transfer of personal data from the EU to the United States. InMoment is committed to managing all personal data received from European Union EU member countries, in compliance with the requirements of the EU-U.S. Privacy Shield Frameworks. Under this Privacy Shield Framework, InMoment is responsible for the processing of personal data it receives and subsequently transfers to a third party. InMoment complies with the Privacy Shield Principles for all onward transfers of personal data from the EU, including the onward transfer liability provisions. To learn more about these Privacy Shield Frameworks and to view the InMoment certification, please visit and search for the InMoment subsidiary or division.

Change Region

Selecting a different region will change the language and content of

North America
United States/Canada (English)
DACH (Deutsch) United Kingdom (English)
Asia Pacific
Australia (English) New Zealand (English) Asia (English)