Tractor Supply Company Vendor Privacy Policy

Last Updated: January 31, 2025

This Vendor Privacy Policy describes how Tractor Supply Company and/or its affiliated and subsidiary companies, including Petsense, LLC (collectively "Tractor Supply” “we,” “us,” or “our”) collects, uses, discloses, and otherwise processes personal information it receives from individuals employed by or own other organizations that we interact with in a business-to-business capacity (“Vendor Personnel”). We recommend you take a moment to read this Vendor Privacy Policy.  

We may make changes to this Vendor Privacy Policy from time to time. The “Last Updated” date at the top of this page indicates when this Vendor Privacy Policy was last updated. If we make material changes to this Vendor Privacy Policy, we will notify you as required by law. Any changes to this Vendor Privacy Policy will become effective on the “Last Updated” date indicated above unless otherwise noted. If you have questions about how your personal information is being processed, please contact us as described in the “How to Contact Us” section

1.     PERSONAL INFORMATION WE COLLECT

We collect personal information for the administration and management of our Vendor relationships.  Personal information is typically data that identifies an individual or relates to an identifiable individual. The definition of personal information (used interchangeably with personal data) depends on the applicable law based on your residency or physical location at the time your personal information is collected.

We may collect personal information from Vendor Personnel: (1) when they directly provide information to us, such as participating in our Open Buying Days; (2) when they interact with our Vendor administration and management systems, portals, websites, or apps (“System(s)”); (3) when they interact with our transportation and logistics department or other administrative functions directly; (4)  when you submit application as a potential new vendor partner through our partner; (5) to the extent permitted by applicable law, from third parties.

The types of personal information we may collect, use, or process about Vendor Personnel will depend upon their status as a prospective, current, or former Vendor as well as the nature of our business relationship. In conducting business, we generally collect the following categories of personal information from Vendor Personnel:

• Identifier & Contact Information such as Vendor Personnel’s first and last name, business e-mail address, postal address, and phone number.
• Professional Information such as the Vendor Personnel’s company affiliation, title, rank or other designation they hold with the Vendor.
• Business Financial Information such as bank account details, payment methods, and tax ID/tax status number.
• Due Diligence Screening Information we may choose to conduct due diligence screening, or when permitted by applicable law, background checks, in connection with your engagement with us. The results of the due diligence screening may include personal information we do not already have about you such as information on adverse media, legal issues, criminal records and/or credit history about owners of the Vendor businesses. We may maintain the results and outcomes from both historic and ongoing due diligence screening for compliance purposes.
• Internet or other electronic network activity information including,
  • information collected automatically as part of Vendor Personnel’s interaction with our Systems (such as your web request, Internet Protocol (“IP”) address, browser type, domain names, referring and exit pages and URLs, pages viewed and the order of these page views, the date and time you access our servers, and other diagnostic data)
  • electronic content produced or received by Vendor Personnel using our Systems (such as documents, information, and emails and other electronic communications transmitted or received through the use of our Systems), and
  • information relating to the creation of the Vendor Personnel’s System account (such as account profile, activity, preference, username, and password).
  • Use and Access Information to the extent the Vendor’s engagement with us involves providing services on-site at one of our properties, we may collect the Vendor Personnel’s use and access information such as video footage, information about their use of information and communications systems, and other information obtained through electronic means such as swipe card records.
  • Geolocation Information to the extent the Vendor’s engagement with us involves providing services on-site at one of our properties, we may collect time and physical location related to the Vendor Personnel’s use of an internet website, application, device, or physical access to a property location.
  • Nationality, Citizenship, and Government Identifiers as part of our due diligence screening, we may collect a Vendor’s country of birth, government identification documents (including passports and residency permits), social security number (SSN) (or equivalent), and local tax ID/tax status number.
  • Demographics Information when permitted by law and where applicable, as part of our due diligence screening of Vendors, and to operate our Supplier Opportunity & Development Program, we may collect information such as gender/gender identity, race, ethnicity, veteran status, national origin, citizenship, sex, gender identity, gender expression, sexual orientation, religion, or disability status.
  • Cookies and Other Tracking Technologies Information that we, our service providers, and partners use to collect a variety of information including Vendor Personnel’s personal information, and information about devices and networks they utilize to access our Systems. For more details about the cookies utilized on our websites, as well as how we use them, please see our Cookie Policy.

2.     WHY WE COLLECT PERSONAL INFORMATION

While we process Vendor Personnel’s personal information primarily to approve, manage, administer or effect an agreement between us and the Vendor, we also use Vendor Personnel’s information to:

• evaluate their suitability as a Vendor;
• verify a Vendor’s experience and qualifications in relation to specific service requirements;
• contact the Vendor regarding the engagement request and possible partnership opportunities;
• conduct lawful due diligence and background screening;
• conduct strategic sourcing and procurement;
• conduct spend analysis and pricing;
• make decisions about who to offer service opportunities;
• make decisions about service costs and other service level offerings details;
• facilitate Vendor contracts, manage invoices, and assist in facilitating payment to Vendor;
• carry out our procurement functions and activities, including onboarding Vendor Personnel;
• provide and facilitate access to, measure activities and maintain functionality of our Vendor-related Systems;
• monitor the security and use of our networks, communications and Systems, facilities, properties and infrastructure, and information security systems;
• comply with our legal obligations, such as quality management and audits;
• allow us to carry out our legitimate business interests, such as business planning and restructuring exercises, except where such interests are overridden by your interests in not having your personal information processed;
• make improvements to our procurement and Vendor administrative and management practices; 
• undertake dispute and complaint resolution, internal investigations and reviews, auditing, compliance with internal policies, and risk management; and
• establish, exercise, or defend against legal claims.

3.     DISCLOSURE OF YOUR PERSONAL INFORMATION

We share Vendor Personnel personal information only with third parties who have a legitimate purpose for accessing it. We share such information in the following circumstances listed below.

• With Other Tractor Supply Employees. We may share Vendor Personnel personal information with other Tractor Supply employees where it is necessary for them to undertake their duties, such as to negotiate a Vendor contract.
• Within Corporate Group. We may share Vendor Personnel personal information with the other entities within our corporate group as may be necessary to administer our relationship with a Vendor or operate our business.
• With Service Providers. We may share Vendor Personnel personal information with our contractors, vendors, and service providers that assist us with administering the procurement and Vendor administrative and management Systems. For example, service providers may include, but are not limited to, procurement consultants, data storage or hosting providers, marketing/events agencies, and credit and criminal background check companies (when this is our legal obligation or necessary for our legitimate interest).
• With other Third Parties. We may share Vendor Personnel personal information with third parties who provide professional services (such as attorneys, auditors, accountants, and management consultants), professional bodies, and regulatory authorities in the normal course of business.
• Legal or Regulatory Requests and Investigations. We may disclose Vendor Personnel personal information to third parties under the following circumstances (i) to comply with relevant laws or regulations, to respond to a court order, administrative or judicial process, such as a subpoena, warrant, court order, or government audit; (ii) in response to lawful requests by public authorities (such as national security or law enforcement); and (iii) as necessary to establish, exercise or defend against potential, threatened or actual litigation (such as adverse parties in litigation). We may also need to share Vendor Personnel personal information with tax authorities, courts, regulators, the police, and other governmental authorities where we are required or permitted to do so by law in jurisdictions in which we operate.
• Third-Party Marketing Partners. We may disclose Vendor Personnel identifier, internet or other electronic network activity information with third-party advertising and marketing partners to help us advertise our products and services, to understand the effectiveness of our ads, and for their own marketing purposes as permitted under applicable laws.
• Business Transactions. We may share Vendor Personnel personal information with a potential buyer (and its agents and advisors) in connection with any proposed merger, acquisition, or any form of sale or transfer of some or all of our assets (including in the event of a reorganization, dissolution or liquidation), in which case, personal information held by us about you will be among the assets transferred to the buyer or acquirer. If a change happens to our business, then the new owners may use your personal information in the same way as set out in this Vendor Privacy Policy.
• Protection of the Company or Others. We may share Vendor Personnel personal information where necessary to protect us, including to investigate, prevent, or take action regarding possible illegal activities, suspected fraud, safety of person or property, or a violation of our policies.

We may collect, use and disclose Vendor Personnel personal information for other purposes not listed in this Vendor Privacy Policy. If we do so, we will make it known at the time we collect, use or disclose your personal information, and, where required, obtain consent to do so.

4.     YOUR CHOICES

We offer Vendor Personnel certain choices about how we communicate with and manage their personal information.

(a)   Correct or Update Your Information. If you create an account through our Vendor-related Systems, you will have the ability to access, update and correct the personal information you have provided in connection with your account by logging into your account. If you do not have an account and would like to request to correct or update your personal information that we have collected or has been previously provided to us, please contact us as described in the “How to Contact Us” section.  To protect your privacy, we must be able to verify your identity to confirm that the request came from you before we can process your request. We may contact you by phone number or business e-mail to verify your request.

(b)    Marketing Communications. If we send you marketing communications, we will offer you certain choices about how we communicate with you. To update your preferences, limit the communications you receive from us, please contact us as specified in the “How to Contact Us” section at the end of this Vendor Privacy Policy. Where provided by law, you may withdraw your consent previously provided to us, and we will apply your preferences going forward. You can also choose not to receive marketing communications from us by clicking on the unsubscribe link in our marketing content.

5.     RETENTION

We will retain Vendor Personnel personal information while there is an active Vendor relationship with us, as necessary to fulfill the purposes described in this Vendor Privacy Policy, or for a period of time following termination of the Vendor relationship with us pursuant to our retention policy. In cases where you request that we no longer use your personal information, we may still retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

6.     SECURITY

We implement security measures intended to protect against the loss, misuse, and alteration of the personal information under our control. Please be aware that no data transmission over the Internet can be guaranteed to be 100% secure. We cannot guarantee the security of our databases or the databases of the third parties with which we may share such information, nor can we guarantee that the information you supply will not be intercepted while being transmitted over the internet. Please remember that you play a valuable part in security as well. If you feel that the security of any account you might have with us has been compromised, you should contact us immediately as described in the “How to Contact Us” section.

7.     CALIFORNIA NOTICE AT COLLECTION

If you are a California resident, this section applies to you in addition to the rest of this Vendor Privacy Policy. Certain terms used in this section have the meanings given to them in the California Consumer Privacy Act (“CCPA”).

Categories of Personal Information Collected and Business or Commercial Purpose

In the preceding 12 months, depending on your status as a prospective, current, or former Vendor as well as the nature of your position and role, listed below are the categories of personal information collected, and the purpose of such collection.  We disclosed each category to business partners, service providers, government entities and other third parties as described in the Disclosure of Your Personal Information section (Section 4).  For information about the categories of sources of personal information, see the Personal Information We Collect section.  

Categories of Personal Information Shared or Sold

In the past 12 months, we “sold” or “shared”, as those terms are defined by the CCPA, some of your identifiers and other electronic network activity information to third-party advertising networks and business partners who provide advertising and marketing services.  The business or commercial purposes of “selling” or “sharing” personal information is to assist us with advertising, understanding the effectiveness of our ads, conducting audience measurement, and other functionality on our digital properties.

We do not knowingly sell or share (for cross-context behavioral advertising) the personal information of consumers under 16.  We do not use or disclose sensitive personal information for purposes other than those specified in Section 7027(m) of the CCPA regulations.

Privacy Rights

Submitting a Request to Exercise Your Privacy Rights

California residents have the right to access, to correct, to delete, to portability, to opt-out of the sale or sharing of their personal information, to object to automated decision making (pending regulations by the California Privacy Protection Agency), and the right not to be discriminated against for exercising any of these rights. You may submit a request to access your personal information up to twice per year. We may charge a reasonable fee for multiple requests in the same 12-month period, as permitted by law. To assert your privacy rights, go to our Privacy Rights Request Form. You can also access this form by clicking on the “Privacy Requests” link in the website footer, or you can email privacy@tractorsupply.com and indicate you are Vendor Personnel, explain which rights you would like to exercise, and identify the name of the Vendor that employed you. 

Opting-Out of Sales and Sharing (Targeted Advertising)

You can exercise your right to opt-out of sales and sharing by clicking the Cookie symbol in the lower left-hand corner of the screen, or by clicking the "Your Privacy Choices" link in the website footer and following the directions in the Your Privacy Choices pop-up screen regarding how to opt-out of sales, sharing and targeted advertising.

You may also opt-out of sharing and sales via cookies by using an opt-out preference signal. The Global Privacy Control signal is currently the only opt-out preference signal we can recognize. You can visit the Global Privacy Control official site at https://globalprivacycontrol.org/#about to learn how to configure your device to send such signals. We will honor and process the opt-out preference signal in a frictionless manner.

Please note that your opt-out choice will only apply to your use of our Sites through the current browser or device you are using and only so long as that browser’s cookies are not erased. You will need to submit a separate opt-out of sharing request on each device and browser you use to visit our Sites to completely opt-out using this method.  Please note that you may still receive generalized ads after opting out. For information about the opt-out process on our App, please see our Cookie Policy.

Identity Verification

To protect your privacy, we must be able to verify your identity to confirm that the request came from you before we can process your request to exercise certain privacy rights that you may be entitled to under the applicable law. Depending on your request, we will ask for information such as your name, address, an e-mail address, or a phone number you have on file with us.

Authorized Agents

You may designate an authorized agent to submit a request on your behalf to access or delete your personal information. To do so, you must: (1) provide that authorized agent written and signed permission to submit such request; and (2) verify your own identity directly with us. Please note, we may deny a request from an authorized agent that does not submit proof that they have been authorized by you to act on your behalf.

Do Not Track

Your browser may allow you to adjust your browser settings so that “do not track” requests are sent to the websites that you visit. However, since uniform standards for “DNT" signals have not been adopted, we do not disable tracking technology that may be active on the websites in response to any “do not track” requests that we receive from your browser.

8.     HOW TO CONTACT US

If you have any questions, comments, or concerns about this Vendor Privacy Policy or our privacy practices, you may contact us in one of the following ways: (a) send an e-mail to: privacy@tractorsupply.com; (b) call 1-877-718-6750; or (c) send your request by mail to Tractor Supply Company, 5401 Virginia Way, Brentwood, TN 37027, Attn: Data Privacy