This Privacy Policy explains how ComplianceQuest, Inc. (“ComplianceQuest,” “we,” “us,” or “our”) collects, uses, discloses, and safeguards personal information in connection with our website located at www.compliancequest.com (the “Site”) and related marketing communications. This Privacy Policy is intended to provide transparency regarding our data practices and to inform individuals of their privacy rights and choices.

By accessing or using the Site, you acknowledge that you have read and understand this Privacy Policy. If you do not agree with our described practices, you should not use the Site.

ComplianceQuest is a leading provider of AI-powered, cloud-based solutions for Product Lifecycle Management (PLM), Quality Management Systems (QMS), Environmental, Health, and Safety (EHS), and Supplier Relationship Management (SRM). ComplianceQuest leverages the Salesforce platform to deliver a unified, intelligent solution that streamlines compliance and operational processes across various industries. The platform offers a comprehensive suite of applications designed to enhance quality, safety, and efficiency throughout the product journey. ComplianceQuest serves a diverse range of sectors, including life sciences, manufacturing, automotive, and pharmaceuticals

This Privacy Policy explains our online information practices and the limited purposes for which we collect and use personal data. We do not use personal data for any purpose that is inconsistent with those stated in this Privacy Policy.

This Privacy Policy explains how we collect, use, disclose, and safeguard personal information when you visit our website www.compliancequest.com or interact with our marketing communications, and outlines your rights under the General Data Protection Regulation (GDPR), UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, and the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA).

We collect personal information that you choose to provide to us (such as name, email address, telephone number, and company information) when you fill out forms, register for events or webinars, subscribe to marketing communications, request information, or otherwise contact us. We also collect information automatically when you use the Site, such as device and browser information, IP address, approximate location (derived from IP address), pages viewed, referring/exit pages, and engagement with our emails and campaigns.

We use personal information to respond to inquiries, provide requested information, improve the Site and our marketing communications, analyze Site usage, and tailor content to better match visitor interests. With your consent where required, we may use this information to deliver relevant communications and promotional content (such as newsletters, event invitations, and announcements). We may also use your IP address to help diagnose server issues, manage the Site, and enhance user experience based on usage patterns, and we may disclose or access information when required by law.

We implement appropriate technical and organizational measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These measures include physical, administrative, and technical safeguards designed to maintain the confidentiality, integrity, and availability of personal information. However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security. If you believe your interaction with us is no longer secure, please contact us immediately at: [email protected].

To protect the security and integrity of our Site, we also use third-party security technologies, including web application firewalls and similar protective services. These technologies help us detect and prevent malicious activity, such as distributed denial-of-service attacks, automated abuse, and unauthorized access attempts. In connection with these security measures, certain technical information, such as IP addresses, request headers, browser or device characteristics, and traffic metadata, may be collected and processed solely for security, fraud prevention, and system integrity purposes.

Your account and profile are password-protected. We recommend that you do not share your password with anyone. Our personnel will never ask you for your password via unsolicited telephone calls or emails. To protect your personal information, please sign out of your account and close your browser window when your session ends, especially when using a shared or public computer or device. Please note that any personal information you voluntarily disclose online, for example on message boards, via email, or in chat areas, may be collected and used by others.

We process personal data in accordance with the General Data Protection Regulation (GDPR) and the UK GDPR under the following legal bases: where individuals have provided their consent; where processing is necessary for the performance of a contract to which the data subject is a party; where we are subject to a legal obligation, such as for account management, security, or system performance; and where processing is necessary for our legitimate interests, including the provision and improvement of our services.

While we utilize Personal Data according to the policies outlined above, we do not use any collaboration cloud platforms (such as Google, Microsoft, Box, etc.) to retain data for developing, training, or improving generalized AI and/or ML modules, or for any other such purpose.

If you are located in the European Economic Area (EEA), the United Kingdom (UK), or Switzerland, your personal data may be transferred to countries outside your jurisdiction, including the United States.

To help ensure that international transfers are conducted in compliance with applicable data protection laws, ComplianceQuest and our platform providers (including Salesforce) may rely on one or more recognized transfer mechanisms and safeguards, as appropriate for the transfer, such as:

• Standard Contractual Clauses (SCCs) approved by the European Commission, and for UK transfers, the UK International Data Transfer Addendum to the EU SCCs or the UK International Data Transfer Agreement (IDTA), as applicable.
• Other lawful transfer mechanisms that may be recognized under applicable law (for example, an adequacy decision, or participation in an approved certification framework, where applicable).

Where we use vendors or platform providers to support the Site and related marketing operations (including Salesforce), we assess and contractually require appropriate safeguards for personal data, including security measures and, where applicable, transfer safeguards.

For more information about Salesforce’s certifications and safeguards related to international data transfers, please visit trust.salesforce.com.

We use cookies and similar tracking technologies to operate and improve our Site, understand how visitors interact with our content, and deliver relevant communications. Cookies are small text files that are placed on your device when you visit a website and are widely used to enhance functionality and user experience.

We do not sell personal information, as “sell” is defined under the CCPA/CPRA, collected through your use of our Site. We do not share personal information, as “share” is defined under the CCPA/CPRA, for cross-context behavioral advertising except as permitted by applicable law and subject to the choices described in this Privacy Policy (including cookie controls and legally recognized opt-out signals, where applicable). We only disclose personal information to third parties under the following circumstances:

• With your prior consent.
• To service providers or contractors who are bound by contractual obligations to safeguard your data.
• To legal authorities when required by law.
• To business partners, but only with your consent.
• In connection with a business transfer, such as a merger, acquisition, or sale of assets.

Please note that the privacy practices of third-party advertisers or promotional services that may appear on our Site can differ from our own. We encourage users to carefully read and review the privacy policies of any third-party services before responding to offers or engaging with their platforms. We are not responsible for the data handling practices of these third parties.

We do not use any personal information collected through our website or services to train, fine-tune, or otherwise develop artificial intelligence (AI) or machine learning (ML) models. Personal data will only be used for the purposes explicitly stated in this Privacy Policy and in accordance with applicable data protection laws.

We retain personal data only for as long as necessary to fulfill the specific purposes for which it was collected, as outlined in this Privacy Policy, or as required by applicable laws. When those purposes are no longer relevant, we securely delete or anonymize the data. Retention periods are determined based on legal, contractual, and operational requirements, and we apply data minimization and storage limitation principles to ensure compliance with global data protection laws.

Our Site is not intended for children under the age of 13, and we do not knowingly collect personal information from children under 13 through the Site. If you believe that a child has provided us personal information, please contact us and we will take appropriate steps to delete that information. For U.S. visitors, if we ever knowingly collect personal information online from a child under 13, we will handle it in accordance with applicable requirements under the Children’s Online Privacy Protection Act (COPPA).

We may update this Privacy Policy from time to time at our sole discretion. Changes may be necessary due to evolving laws, regulations, and industry standards, or as a result of updates to our business operations, products, or services. When changes occur, we will promptly post the revised Privacy Policy on our Site and update the effective date.

If any changes materially affect your privacy rights, we will provide additional notice as required by applicable law—such as via email, on our Site, or through our services. By continuing to access the Site or use ComplianceQuest services after the revised Privacy Policy takes effect, you agree to be bound by its terms. If you do not agree with the updated Privacy Policy, please discontinue use of our services and Site.

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at: [email protected], by telephone at 408-458-8343, or by mailing us at: ComplianceQuest, Inc., 10006 Cross Creek Boulevard, Suite 71, Tampa, Florida 33647 (USA).