Privacy Policy
Effective Date: July 13, 2026
Quantifind Inc. (“Quantifind”, “we”, “us” or “our”) is committed to protecting the Personal Data we collect. This Privacy Policy explains how we process the Personal Data we collect in relation to our websites, applications, Software-as-a-Service (SaaS) platform, and related services we provide (individually and collectively, the “Services”). It also explains how you can exercise your rights and choices with respect to your Personal Data.
Quantifind provides risk intelligence services, including tools that support anti-money laundering (“AML”), know-your-customer (“KYC”), anti-bribery and corruption, fraud detection, and other regulatory compliance and risk management processes. This Privacy Policy explains how we collect, use, and disclose Personal Data about: (i) visitors to our websites; (ii) individuals who use the Services as authorized users under a customer account; (iii) business contacts, including prospective customers and partners; and (iv) individuals whose Personal Data we obtain for AML, KYC, and other purposes in connection with the Services.
For most of the Services we provide to our customers, we act as a “service provider” or “processor” to our customers, who are the “controllers”. This means that we process Personal Data on behalf of our customers to provide the Services based on their instructions. It is our customers who are responsible for determining what information we process and how we use it, as well as fulfilling your requests to exercise your rights. You should contact the organization that is using our Services for more information about how they process your Personal Data as a controller and to exercise your privacy rights in relation to that data.
Please read this Privacy Policy carefully before using our Services. Additionally, if you are a resident of California or other applicable U.S. state, please review the information provided in the “Notice for United States Residents” section below.
By browsing our websites or using our Services, you confirm that you have read and understood this Privacy Policy. You can contact us if you have any questions about the processing of your Personal Data using the information provided in the “How to Contact Us” section below.
We may revise this Privacy Policy from time to time in response to changing legal, technical, or business developments. The date at the top of the Policy indicates the date of the last change (“Effective Date”). If we make any material changes to this Privacy Policy, we will provide you with appropriate notice, for example by posting a notice of the updated Privacy Policy on our website, as required by applicable law. Your continued use of our Services after we have posted a new Privacy Policy indicates that you have read and understood the new Privacy Policy. If you do not agree with the changes, you ’may stop using the Services at any time.
1. TYPES OF PERSONAL DATA WE COLLECT.
As used in this Privacy Policy, “Personal Data” means information that identifies, relates to, is reasonably capable of being associated with, or could reasonably be linked with an identified or identifiable person, such as name or e-mail address, and includes any equivalent term under applicable data protection law. The Personal Data we collect differs depending on the particular use case and our interactions with you, as described below.
1.1 Personal Data You Voluntarily Provide to Us. We collect Personal Data that you voluntarily provide to us when you interact with our websites, use the Services, or engage with us as a business contact (including as a prospective customer or event participant). For example, you may provide Personal Data to us when using the Services as an authorized user under a customer account. Similarly, if you are a potential customer or are interested in our Services, we process your personal data if you request information, receive marketing or other communications from us (e.g., marketing emails, alerts, newsletters, etc.), or register for or attend an event.
The categories of Personal Data you may provide include:
- Contact Information. Business or professional contact information, such as your name, e-mail address, telephone number, company name, job title or role, and geographic location.
- Communications Data. Information you provide when you contact us (e.g., e-mails, form submissions, or other communications), including your contact details, the content of your communications, and your preferences regarding receiving marketing or other communications from us.
- Support Data. Information provided when you request technical or customer support, including contact details, account identifiers, and details about the issue or request.
- Feedback Data. If you provide us feedback, we will collect your name and e-mail address, as well as any other information and content included in the feedback.
- Log-in Data. Information used to authenticate and identify you as a user, including account credentials, such as your password and other security information for authentication and access.
- Account Data. When you sign up to use the Services or create an account with us, we collect information as necessary to establish and manage your account. This includes your name and contact details (such as first and last name, e-mail address, and phone number), employer and professional data (such as the name of your current employer and job title), payment information (if you make a payment to use our Service), and limited profile information (such as your country and preferred language).
1.2 Personal Data About Your Use of Our Services. We automatically collect certain information about your use of our Services, as well as the devices and systems used to access them. This information is collected by us or our service providers to help us provide, maintain, protect, and improve our Services, including to detect and prevent fraud and security threats, monitor system performance, analyze usage, and improve user’ experience.
The categories of Personal Data we collect automatically include:
- Device Data. Information about the device and systems you use to access the Service, for example the domain name of your Internet provider, IP address, browser type and version, device type, time zone, language, operating system and version, and user agent string.
- Usage Data. Information about how you interact with the Services, including the date and time of the visit, URL of the last web page visited before visiting our website, URL of the first page you visit after leaving our website, pages viewed, time spent on a page, click through and clickstream data, and interactions with features or content. We also generate and collect analytics and metadata associated with your use of the Services, including in connection with searches, investigations, or workflows performed (for example, monitoring start dates and related activity history). Similarly, when we send you an electronic communication, such as an e-mail, we may collect certain information such as the action taken upon receipt of the e-mail (for instance, whether you opened or deleted the e-mail).
- Location Data. We may determine the general location from which your device accesses the Services (such as region or country) based on information like your IP address. We use this information for purposes including security and fraud prevention (for example, to protect your account by detecting unusual login activity).
Our Services use cookies and similar technologies (e.g., web beacons, pixels and device identifiers) to collect and store ’information about ’your browser and device, your preferences and settings, and how you use our Services. Please review our Cookie Policy, available at https://www.quantifind.com/cookie-policy, for further information about how we use cookies and how you can disable them.
1.3 Personal Data Collected from Third Parties. We may obtain information from third parties with whom we do business or for our business purposes, such as in connection with a trade show or webinar or through public databases, social media or joint marketing partners. We may also collected Personal Data about you from the party or person(s) arranging for you to access our Services (e.g., your employer, subscriber, an organization, group, or association to which you belong or are associated with) in order to set up a user account or otherwise to access and/or use our Services.
1.4 Personal Data You Provide to Our Affiliates. We may obtain Personal Data from our current and future subsidiaries, parent companies, or other companies that control or are under common control with us (our “Affiliates”).
1.5 Personal Data We Collect as Part of Our Services. We collect and maintain Personal Data as part of our Services to assist our customers in performing due diligence and other screening activities required by applicable law or regulation, and other risk management assessments carried out in public interest, including KYC, AML, anti-bribery, anti-corruption, anti-fraud, and other reviews (“Reviews”).
This includes search queries and other content submitted by authorized users to the Services, and information that we collect from publicly available sources and third-party data providers. These sources include: (i) sanction disciplined, or debarred lists; (ii) law enforcement, court, regulatory, registry or other governmental websites and databases; (iii) political websites and publications such as parliamentary, local government or individual politician websites; (iv) reputable news media, publication, and aggregation services; (v) company intelligence and corporate registry databases; (vi) publicly accessible online content; and (vii) information sources made public by individuals themselves, for example on personal websites, blogs or social media services.
The categories of Person Data we collect include identifiers (e.g., name and contact details), professional information (e.g., employment, affiliations, and roles or appointments), financial information (e.g., bankruptcy or insolvency filings), and risk-related information (e.g., sanctions or PEP status, regulatory actions, criminal record information, litigation, and adverse media) (“Review Data”). Depending on the jurisdiction and applicable law, this may also include “sensitive” or “special category” data, such as information relating to political opinions (e.g., political affiliations), and information relating to alleged or confirmed criminal offences (e.g., money laundering or terrorist financing offences).
We collect and process this data to facilitate Reviews carried out by customers, to generate risk-based insights and analysis, and to provide, operate, and improve our Services. Please note that ’customers make their own decisions about how to use Review Data and other information they receive through the Services for their own compliance and decision-making processes, including whether to do business with a particular individual or to conduct further checks. To the extent that any Personal Data is provided to us by a third party, such third parties are also responsible for their own compliance with applicable data protection and privacy laws.
2. HOW WE USE YOUR PERSONAL DATA.
We use your Personal Data for the purposes described in this Privacy Policy and, where relevant, for other purposes that we explain to you at the time we collect your Personal Data. In some countries, including the European Economic Area (“EEA”), the United Kingdom, and Switzerland, we are required to have a legal basis to process your Personal Data. The applicable legal basis will depend on the context and purpose for processing, and may include: (i) where the processing is necessary to enter into or perform a contract with you (for example, to create and manage your account or provide the Services); (ii) where the processing is necessary for our legitimate interests, or those of our customers, provided such interests are not overridden by your rights and freedoms; (iii) where the processing is necessary for compliance with our legal obligations, including applicable legal or regulatory requirements; or (iv) where you have given your consent to the processing for a specific purpose.
We use your Personal Data for the following purposes:
2.1 To Provide the Services Requested. We process your Personal Data to provide, operate, and manage the Services. This includes setting up your account, administering our relationship with you, performing identity and authentication activities, account administration, and facilitating and processing transactions.
|
Legal Basis: |
Performance of a contract (where we have a contract with you); or our legitimate interests in providing, administering, and securing the Services |
|
Categories of Personal Data: |
Contact Information; Communications Data; Log-in Data; Account Data; Device Data; Usage Data; Location Data |
2.2 To Personalize your Experience with our Services. We use Personal Data to remember ’your preferences (such as language, font size and communication type), ’enabling you to navigate or browse through our Services more quickly and efficiently, and otherwise tailoring functionality and content for you.
|
Legal Basis: |
Our legitimate interests in providing a more relevant, effective, and user-friendly experience |
|
Categories of Personal Data: |
Account Data; Device Data; Usage Data; Location Data |
2.3 To Provide You with Service-Related Communications. We use your Personal Data to send you administrative or account-related information to keep you updated about our Services. Such communications may include information about policy updates, security updates, or tips or other relevant information. We process your contact information to send you such communications and to forward administrative information. Service-related communications are not promotional in nature. You are not able to unsubscribe from such communications, otherwise you may miss important developments relating to your account or the Services.
|
Legal Basis: |
Performance of a contract (where we have a contract with you); or our legitimate interests in administering the Services |
|
Categories of Personal Data: |
Contact Information; Communications Data; Account Data |
2.4 To Respond to User Questions and Other Requests. We process any information that you provide to us when you contact us, such as with questions, support requests, feedback, disputes, or issues. Without your Personal Data, we cannot respond to you or ensure your continued use and enjoyment of the Services. If you provide us with feedback on any of our Services, we may use such feedback for any purpose in accordance with this Privacy Policy.
|
Legal Basis: |
Performance of a contract (where we have a contract with you); or our legitimate interests in managing communications and providing effective support |
|
Categories of Personal Data: |
Contact Information; Communications Data; Support Data; Feedback Data; Log-in Data; Account Data |
2.5 To Engage in Marketing Activities, as Permitted by Law. We use your Personal Data to update you about our products and services, including sending marketing communications, newsletters, product updates, and invitations to events or webinars. When you sign-up to receive marketing or promotional communications from us, we will send marketing information and invitations to events or other communications that we believe may be of interest to you. We may use information about your interactions with us to better understand your interests and improve the relevance of our communications. We may also use Personal Data to support and optimize our online advertising activities, including delivering and measuring the effectiveness of ads across third-party platforms where permitted by applicable law.
|
Legal Basis: |
Consent (where required by law); or our legitimate interests in promoting our Services and growing our business |
|
Categories of Personal Data: |
Contact Information; Communications Data; Account Data; Device Data; Location Data |
2.6 To Improve and Enhance the Services. We use Personal Data to improve, enhance, and develop our Services. This includes conducting analytics, testing new features, creating new insights, signals and datasets, and developing, training, testing, and fine-tuning our models and automated systems (including machine learning and AI-based systems) that support our Services. Where appropriate, this may involve using aggregated or de-identified data to better understand patterns, improve accuracy, and enhance functionality.
|
Legal Basis: |
Our legitimate interests in improving our Services, developing new capabilities, and ensuring the accuracy, effectiveness, and competitiveness of our offerings |
|
Categories of Personal Data: |
Device Data; Usage Data; Location Data; Review Data |
2.7 To Ensure Security and Prevent Fraud. We process Personal Data to maintain the security and integrity of the Services. This includes monitoring and analyzing activity to detect, investigate, and prevent fraudulent, unauthorized, or malicious activity, as well as enforcing security controls and protecting user accounts. It may also include identifying unusual patterns of behavior and responding to potential incidents.
|
Legal Basis: |
Legal obligations; our legitimate interests in protecting our Services, users, and systems from fraud, misuse, and security threats. |
|
Categories of Personal Data: |
Account Data; Device Data; Usage Data; Location Data |
2.8 To Support Customer Due Diligence and Risk Assessments. We process Review Data to provide risk intelligence services and to support our customers in conducting due diligence, screening, and risk assessments. This includes processing publicly available and third-party data to identify risk indicators, generating risk scores or categorizations, and producing reports, alerts, and other analytical outputs that help customers assess potential risks in connection with AML, KYC, anti-bribery and corruption, fraud prevention, and other compliance-related activities.
|
Legal Basis: |
Our legitimate interests and those of our customers in preventing financial crime, supporting regulatory compliance, and enabling informed, risk-based decision-making in the public interest |
|
Categories of Personal Data: |
Review Data |
2.9 To Enforce Compliance with Our Terms and Agreements or Policies. We process your Personal Data by actively monitoring, investigating, preventing and mitigating any alleged or actual prohibited, illicit or illegal activities on our Services. We also process your Personal Data to investigate, prevent or mitigate violations of our terms, agreements or policies, and to enforce our agreements with third parties and business partners.
|
Legal Basis: |
Our legitimate interests in protecting our rights, enforcing agreements, and managing disputes |
|
Categories of Personal Data: |
All data categories |
2.10 To Maintain Legal and Regulatory Compliance. We are subject to certain laws and regulations which may require us to process your Personal Data. For example, we process your Personal Data to pay our taxes, to fulfill our business obligations, to comply with requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities, to exercise our legal rights, and to defend ourselves from claims, or as necessary to manage risk as required under applicable law.
|
Legal Basis: |
To comply with legal obligations; our legitimate interests in managing legal risk and ensuring compliance with applicable law |
|
Categories of Personal Data: |
All data categories |
2.11 For Other Business Purposes. We use your Personal Data to support our internal business operations and day-to-day functioning of the Services. This includes performance monitoring and auditing, troubleshooting and debugging, strategic planning, and data analysis. We may also use data to calculate usage levels, diagnose server problems, and in general to administer the Services.
|
Legal Basis: |
Our legitimate interests in operating and maintaining our Services and supporting our business operations |
|
Categories of Personal Data: |
All data categories |
3. DISCLOSURE OF YOUR PERSONAL DATA.
We disclose your Personal Data in the following circumstances:3.1 Vendors and Service Providers. We may share your Personal Data with service providers to provide you with the Services, to conduct quality assurance testing, to facilitate creation of accounts, to provide technical support, and for other purposes necessary to provide the Services. These service providers are contractually required not to use your Personal Data other than to provide the services we request.
3.2 Quantifind Customers. We only make Review Data available to our customers that have a legitimate need to access such information in relation to Reviews. We also require that they only use it for the purposes of carrying out Reviews or to otherwise comply with law. If any of our customers uses Review Data beyond the limited purposes permitted by us, we may act to terminate the customer’s access to Quantifind.
3.3 Affiliates and Subsidiaries. We may share some or all of your Personal Data with our Affiliates for the purposes described in this Privacy Policy, provided our Affiliates honor this Privacy Policy.
3.4 Business Transfers. We may transfer Personal Data to a successor entity in the event of a sale, merger, transfer or other disposition of all or any portion of our business, assets or ownership, or other change in control. Except as otherwise provided by a bankruptcy or other court, the use and disclosure of all transferred Personal Data will be subject to policies that are consistent with the policies described in this Privacy Policy. However, any information that is collected after such transaction may be subject to the privacy policy adopted by the successor entity.
3.5 Legal Requests and Prevention of Harm. We may use, share or disclose Personal Data in order to address legal concerns or liabilities, particularly when we believe that a user has misused our Services, such as to gain unauthorized access to any system, to engage in spamming activities, to engage in denial of service or similar attacks, or to conduct any fraudulent or unlawful activity. We also may be required to provide legal authorities access to ’Personal Data, in accordance with applicable law, including laws outside the user’s country of residence.
We may also aggregate or de-identify Personal Data so that it no longer identifies you and share it with third parties for the purposes described above, including to help improve our Services.
4. SECURITY OF YOUR PERSONAL DATA.
We use a variety of technical, organizational and administrative measures to protect Personal Data that we possess against unauthorized or unlawful access or processing, and against accidental loss, destruction or damage. We believe that these measures are reasonably adapted to the nature and types of information under our possession and control.
5. RETENTION OF YOUR PERSONAL DATA.
We retain Personal Data as long as necessary to perform the activities described in this Privacy Policy and to comply with our legal obligations. We will retain and use your Personal Data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies. Quantifind may also retain Usage Data for internal analysis purposes, including when this data is used to strengthen the security or to improve the functionality of our website and Services, or we are legally obligated to retain this data for longer periods.
In determining the retention period for Personal Data, we take the following criteria into account:
- the length of time necessary to fulfill the purposes we collected it for;
- when you cease to use our Services;
- the length of time it is reasonable to keep records to demonstrate that we have fulfilled our duties and obligations;
- any limitation periods within which claims might be made;
- any retention periods prescribed by law or recommended by regulators, professional bodies or associations; and
- the existence of any relevant proceedings.
After expiration of the applicable retention periods, we will either delete or anonymize your Personal Data or, if this is not possible (for example, because your Personal Data is stored in backup archives), then we will securely store your Personal Data and isolate it from any further processing until deletion is possible.
6. INTERNATIONAL TRANSFERS OF INFORMATION.
Your Personal Data may be processed in the country in which it was collected or in other countries or jurisdictions that may not have the same data protection laws, or lower standards for the protection of Personal Data, as the country or jurisdiction where you reside. If you are located outside the United States, please note that we transfer your information, including your Personal Data, to the United States and process it there.
Quantifind will take all steps reasonably necessary to ensure that your Personal Data is processed securely and in accordance with this Privacy Policy, wherever it is transferred and processed. If you are located in the“” EEA, the United Kingdom, or Switzerland, we will take appropriate contractual or other steps to protect your Personal Data in accordance with applicable law. These steps include: (i) processing it in a territory that provides an adequate level of protection for Personal Data based on the receiving country’s data protection laws; and/or (ii) implementing appropriate safeguards to protect your Personal Data, such as the European Commission’s Standard Contractual Clauses for transfers of Personal Data, or other lawful and approved transfer mechanisms.
7. THIRD-PARTY LINKS TO OTHER WEBSITES ON THE SERVICES.
7.1 Third Party Links. The Services may contain links to third-party websites or services to provide additional information or facilitate communications with such third parties. We do not control and are not responsible for the privacy practices of those third parties and strongly encourage you to read and understand their privacy policies. This Privacy Policy applies solely to information collected and controlled by Quantifind.
7.2 Social Media. The Services may contain links to social media services (e.g., LinkedIn and Facebook) where users can post comments. These services may independently collect, retain and share information about you, And your use of such services is governed by their respective terms and privacy policies. Please note that any information that is posted or disclosed through social media may be available to us, other users of that service, or to the public. You should exercise caution when engaging with these services and review their privacy policies before using them.
8. CHILDREN.
Our Services are not aimed at children. We do not knowingly collect any Personal Data from or about children who are under the age of 13. If we become aware that an individual under the age of 13has submitted information to us, we will make reasonable efforts to delete the information as soon as possible.
9. DO NOT TRACK SIGNALS.
Some browsers give individuals the ability to communicate that they wish not to be tracked while browsing on the Internet. The Internet industry has not yet agreed on a definition of what “Do Not Track” means, how compliance with “Do Not Track” would be measured or evaluated, or a common approach to responding to “Do Not Track” signals. Consequently, we have not yet developed features that recognize or respond to browser-initiated Do Not Track signals.
10. YOUR PRIVACY RIGHTS.
10.1 Opt-Out from Marketing. We may periodically send you communications that promote the use of our Services and potentially those of our marketing partners. When you receive promotional communications from us, you may indicate a preference to stop receiving further communications from us and have the opportunity to “opt-out” by following the unsubscribe instructions provided in the e-mail you receive or by contacting us directly (please see contact information below). If you choose to no longer receive marketing information, we may still communicate with you regarding such things as security updates, product functionality, responses to service requests, and other service-related communications.
10.2 Privacy Requests. Depending on your location, you may have certain rights under applicable data protection and privacy laws. These may include the following rights:
- Right to Access and Correction. You have the right to obtain information about the processing of your Personal Data and to receive a copy of your Personal Data. You also have the right to request that we correct or update any Personal Data that is inaccurate or incomplete.
- Right to Erasure. You have the right to request that we delete your Personal Data in certain circumstances, for example where the data is no longer necessary for the purposes for which it was collected, subject to applicable legal exceptions.
- Right to Object to Processing. You have the right to object to our processing of your Personal Data where we rely on legitimate interests as the legal basis. Where you exercise this right, we will cease processing unless we have compelling legitimate grounds to continue. For example, we may continue to process your Personal Data where necessary to support AML, KYC, or other related purposes, and to ensure the accuracy and integrity of the Services.
- Right to Restrict Processing. You have the right to request that we limit the processing of your Personal Data in certain circumstances, such as where you contest its accuracy or object to its processing.
- Data Portability. You have the right to receive a copy of certain Personal Data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller where technically feasible.
- Right to Withdraw Consent. Where we rely on your consent to process Personal Data, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing carried out before the withdrawal.
If you would like to exercise your rights under applicable law, you can do so at any time by filling out Quantifind’s Data Subject Rights Requests Form. Please note that we may ask you to verify your identity before responding to such requests. We will respond to requests we receive in accordance with applicable law and, in certain circumstances, there may be exceptions that apply to your rights as required or permitted under applicable law.
We do not carry out automated decision-making or profiling based solely on automated processing of your Personal Data when providing our Services.
10.3 Complaints. If you believe that we have infringed or violated your data protection and privacy rights, please contact us at atquantifindprivacy@quantifind.com so that we can work with you to resolve your concerns. You also have the right to lodge a complaint about our processing of your Personal Data with your data protection authority.
11. NOTICE FOR UNITED STATES RESIDENTS.
This section applies only to residents of California and and other U.S. states that have enacted comprehensive state privacy laws, including Colorado, Connecticut, Delaware, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, and Virginia. This section describes certain disclosures and rights available to you under your state’s privacy laws, including the California Consumer Privacy Act, the Colorado Privacy Act, the Connecticut Act Concerning Personal Data Privacy and Online Monitoring, the Virginia Consumer Data Protection Act, and the Utah Consumer Privacy Act (collectively referenced as the “U.S. Privacy Laws”).
Pursuant to U.S. Privacy Laws, below is a summary for the last twelve (12) months of the categories of Personal Information that we have collected, the reasons we collected the Personal Information, the sources of Personal Information, and the third parties that we may share the Personal Information with. In this section, “Personal Information” means any information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.
We generally collect the following categories of Personal Information in connection with our Services:
- Identifiers, such as name, address, unique personal identifier, email, phone number, ’IP address, and identification numbers associated with your devices;
- Certain characteristics of protected classifications under U.S state or federal law, such as gender, as part of our Services to our customers.
- Commercial information, such as records of products or services purchased, obtained, or considered by you;
- Internet or other electronic information regarding your browsing history, search history, the web page visited before you came to our website, length of visit and number of page views, click-stream data, locale preferences, your mobile carrier, date and time stamps associated with transactions, and system configuration information;
- Professional or employment-related information, such as your company and job title;
- Geolocation data, to the extent you have configured your device to permit us to collect such information;
- Audio recordings of your voice to the extent you call us, as permitted under applicable law; and
- Inferences about your preferences, characteristics, behavior and attitudes.
For more information about the Personal Information we collect and how we collect it, please refer to the “Types of Personal Data We Collect” section above.
We collect Personal Information for the business purposes described in the “Types of Personal Data We Collect” section . “”’We will only collect, use or disclose Sensitive Personal Information where it is required to provide Services, with your specific consent, or as otherwise permitted by applicable law.
The sources from which we collect Personal Information about you are described in the “Types of Personal Data We Collect” section above.
The categories of third parties with whom we may share your Personal Information are listed in the “Disclosure of Your Personal Data” section above.
We will retain your Personal Information, including Sensitive Personal Information, in accordance with the criteria described in the “Retention of Your Personal Data” section above.
In the preceding 12 months, we have also disclosed Personal Information to our customers in the course of providing Services to those customers. We do not collect, sell, share or disclose the Personal Information of minors under 16 years of age.
11.1 Your Privacy Rights Under U.S Privacy Laws. Depending on where you live, you may have some or all of the rights described within this section in relation to your Personal Information. However, these rights are also subject to certain exceptions. For instance, we cannot disclose specific pieces of Personal Information if the disclosure would create a substantial, articulable, and unreasonable risk to the security of the Personal Information, your account with us, or the security of our network systems.
- Right to Know. You have the right to request in writing: (i) a list of the categories of Personal Information that we have disclosed to third parties during the preceding 12 months for the third parties’ direct marketing purposes, and (ii) the names and addresses of all such third parties. In addition, you have the right to request: (i) the categories of Personal Information we have collected about you, (ii) the categories of sources from which Personal Information is collected, (iii) the business or commercial purpose for the information collection, (iv) the categories of third parties with whom we have shared Personal Information, and (v) the specific pieces of Personal Information we hold about you.
- Right to Access. You have the right to request a copy of the specific Personal Information we have collected about you during the preceding 12 months before your request.
- Right to Delete. You have the right to request us delete any Personal Information that we have collected from you or maintain about you, subject to certain exceptions.
- Right to Correct. You may seek to have your Personal Information corrected if that information is inaccurate or incomplete.
- Right to Opt-Out of Automated Decision-Making (or Data Profiling). We do not subject your Personal Information to such processing activities.
- Right to Limit the Collection and Use of Sensitive Personal Information. You have the right to direct us to limit the use or disclosure of your Sensitive Personal Information to that which is necessary to perform the Services. We do not currently collect, process or disclose Sensitive Personal Information for the purpose of inferring characteristics about you.
- Right to appeal. If we decline to take action regarding your request, we will inform you of our decision and reasoning behind it. If you wish to appeal our decision, please email us at the e-mail address set forth below in the “How to Contact Us” section below. Within sixty (60) days of receipt of an appeal, we will inform you in writing of any action taken or not taken in response to the appeal, including a written explanation of the reasons for the decisions. If your appeal is denied, you may contact the appropriate Attorney General to submit a complaint.
- Right Against Discrimination. You have the right not to be discriminated or retaliated against for exercising any of the rights described in this section.
To assert your rights in relation to your Personal Information, please submit your request using Quantifind’s Data Subject Rights Requests Form. Alternatively, you may contact us using the information provided in the “How to Contact Us” section below. To confirm your identity, we may ask you to verify Personal Information we already have on file for you. If we cannot verify your identity based on the information we have on file, we may request additional information from you, which we will only use to verify your identity, and for security or fraud-prevention purposes. If you are using an authorized agent to exercise your rights, we may deny a request if the authorized agent does not submit proof that they have been validly authorized to act on your behalf.
11.2 Shine the Light Law. We currently do not share Personal Information with third parties for their direct marketing purposes without the express consent of the user.
12. HOW TO CONTACT US.
We welcome your comments or questions regarding this Privacy Policy. Please e-mail us at atquantifindprivacy@quantifind.com. If you prefer to contact us by mail, please use the following address: Quantifind Inc., Attn: Privacy Team, 444 High Street, Ste 100, Palo Alto, CA 94301.
If you are resident in the EEA, UK, or Switzerland, Quantifind Inc. is the controller of your Personal Data.