SurveyMonkey Logo
Plans & Pricing


LAST UPDATED: October 10, 2022

US residents: Please visit our Region Specific Privacy Notice for more information on our privacy practices.

This Privacy Notice applies to all the products, services, websites and apps offered by Momentive Inc., Momentive Europe UC, Momentive Brasil Internet Eireli, Momentive Netherlands B.V., and other Momentive affiliates (collectively “Momentive”), except where otherwise noted. We refer to those products, services, websites, and apps collectively as the “services” in this notice. Unless otherwise noted in your contract, our services are provided by Momentive Inc. inside of the United States, by Momentive Brasil Internet Eireli inside of Brazil, and by Momentive Europe UC everywhere else.

References in this Privacy Notice, to data, personal information or just information, are all references to Personal Data. Personal Data means information relating to a living individual who is, or can be, reasonably identified from information, either alone or in conjunction with other information (a "Data Subject").

If you want to identify your data controller please see the “Who is my data controller?” section below.

For a quick snapshot of how Momentive treats personal information see our Privacy Basics.

We refer to “you” a lot in this Privacy Notice. To better understand what information is most relevant to you, see the following useful definitions.

Creators: You hold an account within a Momentive service and you either directly create surveys, forms, applications, or questionnaires or you are collaborating on, commenting on, or reviewing surveys, forms, applications, or questionnaires within an account.

Respondents: You have received a survey, form, application, or questionnaire powered by a Momentive service.

Panelists: You have signed up and agreed to take surveys sent to you by Momentive on behalf of creators. We deal with panelists in an entirely separate section of our Privacy Notice, which you can read here.

Visitors: You are just visiting one of our websites because you are curious, or you have heard about us from our marketing and sales channels!

  • Contact Information (for example name or email address).
    You might provide us with your contact information, whether through use of our services, a form on our website, an interaction with our sales or customer support team, or a response to one of Momentive’s own surveys or forms.
  • Usage information.
    We collect usage information about you whenever you interact with our websites and services. This includes which webpages you visit, what you click on, when you perform those actions, what language preference you have, what you buy and so on.
  • Device and browser data.
    We collect information from the device and application you use to access our services. Device data mainly means your IP address, operating system version, device type, device ID/MAC address, system and performance information, and browser type. If you are on a mobile device we also collect the UUID for that device.
  • Information from page tags.
    We use first party and third party cookies and tracking services that employ cookies and page tags (also known as web beacons) to collect data about visitors to our websites. This data includes usage and user statistics. Emails sent by Momentive or by users through our services also include page tags that allow the sender to collect information about who opened those emails and clicked on links in them. We provide more information on cookies below and in our Cookies Notice.
  • Log Data.
    Like most websites today, our web servers keep log files that record data each time a device accesses those servers. The log files contain data about the nature of each access, including originating IP addresses, internet service providers, the files viewed on our site (e.g. HTML pages, graphics, etc.), operating system versions, device type and timestamps.
  • Referral information.
    If you arrive at a Momentive website from an external source (such as a link on another website or in an email), we record information about the source that referred you to us.
  • Information from third parties and integration partners.
    We collect your personal information from third parties where, for example, you give permission to those third parties to share your information with us, where such information is publicly available online or through your device/browser data.

If you are a Creator, we may also collect:

Account Information

  • Registration information.
    You need a Momentive account before you can use Momentive services. When you register for an account, we collect your first and last name, username, password and email address. If you choose to register by using a third party account (such as your Google or Facebook account), please see “Information from third parties” below.
  • Billing information.
    If you make a payment to Momentive, we require you to provide your billing details, a name, address, email address and financial information corresponding to your selected method of payment (e.g. a credit card number and expiration date or a bank account number). If you provide a billing address, we will regard that as the location of the account holder to determine the Momentive entity with whom you contract and the sales tax, if applicable, to be applied to your purchase.
  • Account settings.
    You can set various preferences and personal details on pages like your account settings page (or on your account settings page for our other products as applicable). These may include, for example, your default language, time zone and communication preferences (e.g. opting in or out of receiving marketing communications from Momentive).

When you use our services, we may also collect the following data on your behalf for certain services:

  • Address book information.
    We may allow you to import email addresses and other contact information into an Address Book so you can easily invite people to take your surveys or fill in your form via our collectors. We do not use this data for our own purposes or to contact anyone, except at your direction.
  • Survey/form/application data.
    We store your survey/form/application data (questions and responses) for you and provide analysis tools for you to use with respect to this data.
  • Profile information.
    When you sign up for our services you are asked to provide us with information about yourself and to give us more detailed insights into who you are. If you are in a SurveyMonkey Enterprise account this may include providing your photo so your administrator(s) and colleagues can identify you.
  • 3.1 Creator
  • 3.2 Respondent
  • 3.3 Visitor

Many of our services let you share information with others. Remember that when you share information publicly, it can be indexable by search engines. Our services provide you with different options on sharing and deleting your content but we cannot delete content from search engines so you need to be careful about information you make public.

We do not share your information or data with third parties outside Momentive except in the following limited circumstances:

  • If you are a Creator that is part of a SurveyMonkey team plan or SurveyMonkey Enterprise plan, your account information and data will be shared with the primary administrator(s) and your survey data may also be visible to other members in your team with whom you share your surveys or with whom you collaborate. Your administrator(s) will be able to view your account data, change your passwords, suspend, transfer or terminate your account or restrict your settings. Please refer to your organization’s internal policies if you have questions about this.
  • If your organization has purchased a SurveyMonkey Enterprise account and you are using an email address on a domain owned by your employer or organization linked to your individual account, you may be asked to migrate to the SurveyMonkey Enterprise Account and your email address, name and account data will subsequently be visible to the primary administrator(s) for that account once you have been migrated. You may be notified in advance of this migration and given an opportunity to change the email address linked to your account if you are not using your account for business purposes.
  • To help us provide certain aspects of our services we use our affiliates and trusted key partners – in particular, we engage third parties to:
    • facilitate our collectors for sending surveys by email or text to Respondents. For email delivery, we use SparkPost and for text/SMS services we use Twilio. We share the relevant contact information for respondents (email address or phone number as applicable) with these third parties.
    • facilitate customers in making payments.
    • to detect fraud (to include, for example, performing identify checks or verify malicious IPs).
    • deliver and help us track our marketing and advertising content.
    • help us track website conversion success metrics.
    • manage our sales and customer support services to you, including for resolving any disputes.

We enter into confidentiality and data processing terms with partners to ensure they comply with high levels of confidentiality and best practices in privacy and security standards and we regularly review these standards and practices.

  • On your instructions, we share your information or data if you choose to use an integration in conjunction with Momentive services, to the extent necessary to facilitate that use. See further information here on our API partners.
  • We also may have to share information or data for the following purposes:
    • To meet any applicable law, regulation, legal process or enforceable governmental request;
    • To enforce applicable policies, including investigation of potential violations;
    • To detect, prevent, or otherwise address fraud, security or technical issues;
    • To protect against harm to the rights, property or safety of our users, the public or to Momentive and/or as required or permitted by law; and
    • To facilitate a sale, merger or change in control of all or any part of our company or business or in preparation for any of these events.

Where we use any third parties (subprocessor) to assist us in service delivery for you (the Creator), and they process your data as part of that service, we maintain a list of these third parties which is available here. This contains a list of all subprocessors used across all services covered by this Privacy Notice so please keep in mind that your service may only be impacted by a subset of these subprocessors.

We and our partners use cookies and similar technologies on our websites. For more information see our Cookies Notice. For information about cookies used in our surveys please see Cookies used on Survey Pages. If you are a customer of Momentive and separately use cookies or similar technologies in conjunction with any of our products and services, then you yourself will be responsible for complying with any laws related to the use of those technologies and this Privacy Notice is not applicable to that use by you.

We use certain cookies, as described in our Cookies Notice and here in our Privacy Notice, that you agree to when you use our sites and, in the case of some cookies, for legitimate interests of delivering and optimizing our services (where the cookie delivers essential functionality). Cookies are small bits of data we store on the device you use to access our services so we can recognize repeat users. Each cookie expires after a certain period of time, depending on what we use it for. We use cookies and similar technologies for several reasons:

  • To gather metrics.

For example, we will collect data about the number of clicks it took Respondents to complete a survey, whether they left and returned to a survey, whether they skipped parts of a survey and how long it took to complete the survey and other details about the survey taking. We also record clicks of the survey creation process to determine whether the product is intuitive enough so as to improve the overall service experience. This information is collated and kept at an aggregated, pseudonymized level.

  • To make our site easier to use.

Creators: if you use the “Remember me” feature when you sign into your account, we store your username in a cookie to make it quicker for you to sign in whenever you return to our site.

  • For security reasons.

We use cookies to authenticate your identity and confirm whether you are currently logged into our site or determine if an incident impacts you.

  • To provide you with personalized content.

We store user preferences, your default language, device and browser information, your profile information which includes, the level of usage of service and the web-pages on our site which you visit, so we can identify you across devices and personalize the content you see.

  • To improve our services and track our campaigns.

We use cookies to analyze and measure your visits to and exploration of our websites and track referral data. This information helps us to develop and improve our services (it helps us focus on the parts of the service you seem most interested in), to optimize the content we display online and also to track the success of marketing campaigns.

  • To advertise to you.

We, or our service providers and other third parties we work with, place cookies when you visit our website and other websites or when you open advertising content online or emails that we send you, in order to provide you with more tailored marketing content (about our services or other services), and to evaluate whether this content is useful or effective. For instance, we evaluate which ads are clicked on most often, and whether those clicks lead users to make better use of our tools, features and services. If you don’t want to receive ads that are tailored to you based on your online activity, you may “opt out” of many of the companies that are involved in such tailoring by going to, or, if you’re located in the European Union, at Opting out in this way does not mean you will not see any ads; it just means that you will not see ads that have been tailored to you based on your activities and inferred preferences.

  • Google Analytics.

We use Google Analytics as a tool to measure the success of our advertising campaigns and referrals through third party advertising partners. The Google Analytics data collected for these purposes is aggregated and anonymous.

Where you have explicitly consented, or have not disabled third party advertising cookies (depending on your location), we will also use Google Analytics data to support display advertising, including re-targeting. In addition to customizing your preferences for these behaviors through steps we have outlined in our banners and privacy notices you can also customize the Google Display Network ads by using the Google Ad Preferences Manager and learn more about how Google serves ads by viewing its Customer Ads Help Center.

You can also choose to remove or disable cookies via your browser settings and, depending on your geographic location you can withdraw consent to non-essential cookies using the in-product cookie preferences tool.

We have a security statement related to our self-serve businesses (Momentive, SurveyMonkey and Wufoo) available to view here. For information about security related to our other business lines you can speak to a sales representative by completing the form here.

If you are a Creator, we generally do not delete the data in your account as long as your account is active – you are responsible for and control the time periods for which you retain this data. You can read about this here for account use. Here are some exceptions:

  • If you are a SurveyMonkey Basic (free) user on our platforms and you have not engaged with the service actively for some time, we reserve the right to delete your account and data in accordance with our data retention policy.
  • If you have exceeded your response limit as a SurveyMonkey Basic (free) account holder, we will delete the overages if you do not upgrade within a fixed timeframe.

We also encourage Creators to actively review their data retention practices in their account and take care to retain data only as long as is strictly necessary.

We also describe the expiry periods for cookies on our websites in our Cookies Notice.

Our services are not intended for and may not be used by minors. “Minors” are individuals under the age of 16 (or under a higher age if permitted by the laws of their residence). Momentive does not knowingly collect personal data from Minors or allow them to register. If it comes to our attention that we have collected personal data from a Minor, we may delete this information without notice. If you have reason to believe that this has occurred, please contact customer support.

Your information and data may be processed in and transferred or disclosed in the United States and countries in which our affiliates are located and in which our service providers are located or have servers. You can view where our affiliates are located on the Office Locations page. We ensure that the recipient of your Personal Data offers an adequate level of protection, for instance by entering into the appropriate back-to-back agreements. We apply our standard Data Processing Agreement to all our customer agreements and we use standard contractual clauses for the transfer of data as approved by the European Commission.

We have also provided a help article which answers some additional questions about data transfers to the US.

EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield.

Momentive Inc. participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and Swiss-U.S. Privacy Shield. Momentive is committed to subjecting all personal information received from the European Union (EU) member countries, the United Kingdom, and Switzerland, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List see

Momentive also complies with the onward transfer liability provisions of the Privacy Shield Principles.

When Momentive receives personal information under the Privacy Shield and then transfers it to a third-party service provider acting as agent on Momentive’s behalf, Momentive has certain liability under the Privacy Shield if both (i) the agent processes the information in a manner inconsistent with the Privacy Shield and (ii) Momentive is responsible for the event giving rise to the damage. In certain situations, Momentive may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

With respect to personal data received or transferred pursuant to the Privacy Shield Framework, Momentive is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission. Please contact Momentive as described in Section 14 below if you have any concerns or complaints of any nature. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider, (free of charge) at

Under certain conditions, more fully described on the Privacy Shield website, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.

We can make changes to the Privacy Basics and this Privacy Notice from time to time. We will identify the changes we have made on this page. In circumstances where a change will materially change the way in which we collect or use your personal information or data, we will send a notice of this change to all of our account holders.

You can opt-out from direct marketing in your account and we provide opt-out options in all direct marketing emails. Finally, if you do not wish to see personalized marketing content on the web related to our service you can clear the cookies in your browser settings. See our Help Center article on how to do this here.

As mentioned above – all response data at an individual level is controlled by the Creator. Momentive can be a data controller of data about Respondents only in the very limited ways described in the section here called “How we use the information we collect - Respondent”. To the extent that is the case we have identified the correct controller below.

If you are located outside the United States, your data controller is Momentive Europe UC to the extent that it is processing your personal data. For certain other services please see our Privacy Information Specific to Other Services page. For SurveyMonkey Enterprise account holders, your organization controls some basic account level information which you input when setting up your account (like name, email address and profile photo). You can reach out to the primary administrator(s) of the account if you wish to delete, receive a copy, change or update that information.

You may wish to exercise a right to obtain information about yourself or to correct, update or delete that information. For more information about these rights you can read about it here. Some of these rights may be subject to some exceptions or limitations in local law. Please note your rights and choices vary depending upon your location. We will take reasonable steps to verify your identity and we will respond to your request to exercise these rights within a reasonable time (and in all cases within 30 days of receiving a request) subject to the below for specific categories of person.

For SurveyMonkey Apply users please see information on how to exercise your rights here. This section describes the rights you may have generally as a customer of any Momentive service.

  • Creator
  • Respondent
  • Visitor
  • Third Party Agents

Other rights and choices

  • For rights and choices specific to US consumers, please refer to our Region Specific Privacy Notice. Please note we will take reasonable steps to verify your identity and the authenticity of your request as described in that Notice.

Except as explicitly provided herein, please use the following contact information for privacy inquiries

Momentive Inc.
1 Curiosity Way
San Mateo, California 94403
United States
Or contact us here.

Momentive Europe UC
2 Shelbourne Buildings,
Second Floor,
Shelbourne Rd
Dublin 4,
Or contact us here.

Data Protection Officer: Momentive’s Data Protection Officer is registered with the Irish Data Protection Commission.  Contact our DPO at

Note that our contact form is the best way to make a rights request with us.


If you are a resident in the European Union and you are dissatisfied with how we have managed a complaint you have submitted to us, you are entitled to contact your local data protection supervisory authority. As Momentive Europe UC operates its business in Ireland, it operates under the remit of the Irish Office of the Data Protection Commissioner (see: IDPC Website).