Satmetrix complies with the U.S.-Swiss Safe Harbor framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data from Switzerland. To learn more about the Safe Harbor program, and to view Satmetrix’s certification, please visit http://www.export.gov/safeharbor/.
Satmetrix participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework. Satmetrix is committed to subjecting all personal data received from European Union (EU) member countries, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s www.privacyshield.gov/list.
Satmetrix is responsible for the processing of personal data it receives, under the Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Satmetrix complies with the Privacy Shield Principles for all onward transfers of personal data from the EU, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the Privacy Shield Framework, Satmetrix is subject to the regulatory enforcement powers of the [U.S. Federal Trade Commission AND/OR the U.S. Department of Transportation]. In certain situations, Satmetrix may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
Under certain conditions, more fully described on the www.privacyshield.gov/welcome, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
PART I: PERSONAL DATA PROCESSED ON BEHALF OF SATMETRIX CLIENTS As a general description of our data processing services, Satmetrix collects (and analyzes) survey responses from our clients’ customers who consent to be contacted or who have pre-existing relationships with the Satmetrix client for which Satmetrix is conducting a survey. As described in this Part I, Satmetrix does not own the Personal Data that we process.
1. SATMETRIX IS A DATA PROCESSOR
Satmetrix processes, on behalf of its clients (Satmetrix’s “Clients”), Personal Data that has been collected by or on behalf of those Clients. “Personal Data” means information relating to an identified or identifiable person. Under the United States/European Union Data Protection Safe Harbor Arrangement (the “Safe Harbor”), Satmetrix acts as a Data Processor and each Satmetrix Client acts as a Data Controller. For the purposes of the Safe Harbor and this Privacy Statement: a “Data Processor” is an entity that processes Personal Data on behalf of a Data Controller; a “Data Controller” is an entity that determines the purposes for which Personal Data are processed. To “process” Personal Data means to carry out an operation or set of operations on such Personal Data, such as collecting, recording, storing, disclosing, or organizing it. The “Data Subject” means the person to whom a certain set of Personal Data relate; for example, the person who responds to a survey.
2. CLIENT INSTRUCTIONS
3. PERSONAL DATA COLLECTION
4. USE OF NORMATIVE DATA
Satmetrix provides research services to its Clients in which Satmetrix analyzes a Client’s customer performance data in comparison with that of other companies in the same industry as the Client (”Normative Research”). However, Satmetrix does not process any Personal Data in performing Normative Research: (a) Satmetrix uses only non-Personal Data (i.e., data that includes no personally identifiable information or unique identifiers that could later be used to refer to the personally identifiable information to which the data was once associated) in performing this Normative Research, and (b) Satmetrix discloses only non-Personal Data in aggregate form (”Normative Data”) to its Clients who have requested Normative Research. PART II: BUSINESS CONTACT INFORMATION In addition to the data we process on behalf of our Clients, Satmetrix also processes (on its own behalf) information about our Clients and the individuals who represent our Clients, as described in this Part II.
1. COLLECTION AND USE OF BUSINESS CONTACT DATA
2. DISCLOSURE OF BUSINESS CONTACT DATA
1. SECURITY MEASURES
Satmetrix uses industry-standard security measures to protect the integrity and confidentiality of Business Contact Data as well as Personal Data it processes on behalf of Clients, including, in appropriate circumstances, the use of firewalls, restricted access, and encrypted transmissions. Satmetrix limits access to Business Contact Data or Personal Data to those persons in Satmetrix’s organization who have a business need to process such Business Contact Data or Personal Data. However, no company, including Satmetrix, can fully eliminate the security risks associated with such Business Contact Data or Personal Data. The security of your personal information is important to us. When you enter information (such username & password) on our login page, we encrypt the transmission of that information using secure socket layer technology (SSL). We follow generally accepted standards to protect the personally identiable information submitted to us, both during transmission and once we receive it. No method of transmission over the Internet, or method of electronic storage, is 100% secure, however. If you have any questions about the security of your personal information, you can contact us at firstname.lastname@example.org.
2. CORPORATE FAMILY AND SUCCESSORS
4. NOTIFICATION OF CHANGES
We provide you the opportunity to ‘opt-out’ of having your personally identifiable information used for certain purposes, when we ask for this information. For example, if you request information but do not wish to receive any additional marketing material from us, you can indicate your preference on our contact form. If you no longer wish to receive our newsletter, surveys or promotional communications, you may opt-out of receiving them by following the instructions included in each correspondence or by emailing us at email@example.com. In addition you may contact us at 888-533-8347 or by mail at Satmetrix Systems, Inc.; 1820 Gateway Drive, Suite 300 San Mateo, CA 94404. You will be notified when your personal personally Identifiable information is collected by any third party that is not our agent/service provider, so you can make an informed choice as to whether or not to share your information with that party.
6. LEGAL DISCLAIMER
In certain situations, Satmetrix may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. We reserve the right to disclose your personally identifiable information as required by law and when we believe that disclosure is necessary to protect our rights and/or to comply with a judicial proceeding, court order, or legal process served on our Web site.
7. DATA RETENTION
We will retain your information for as long as your account is active or as needed to provide you services. If you wish to request that we no longer use your information to provide you services contact us at firstname.lastname@example.org. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
If you choose to use our referral service to tell a friend about our site, we will ask you for your friend’s name and email address. We will automatically send your friend a one-time email inviting him or her to visit the site. Satmetrix stores [or does not store] this information for the sole purpose of sending this one-time email [and tracking the success of our referral program]. Your friend may contact us at email@example.com to request that we remove this information from our database.
9. SOCIAL MEDIA WIDGETS
Our Web site offers publicly accessible blogs or community forums. You should be aware that any information you provide in these areas may be read, collected, and used by others who access them. To request removal of your personally identifiable information from our blog or community forum, contact us at firstname.lastname@example.org. In some cases, we may not be able to remove your personal information, in which case we will let you know if we are unable to do so and why.
11. Links to 3rdParty Sites