The protection of your personal data is important to us. We collect your personal data when you use Reveal Software and when you use our Websites. We use that data for marketing, sales, and employment purposes. We also use that data to provide you with software products and professional services. We are committed to the lawful, fair, transparent, accountable, accurate, confidential, and limited collection and processing of your personal data.
What personal data do we collect and why?
The data you provide to us voluntarily
In general, you can visit our Websites without providing any identifying personal data other than the data we collect automatically. There are times, however, when we may need information from you. For example, we may ask for and collect personal data about you, such as your name, address, email address, phone numbers, and credit card information, when you register for an event, email list, certification, training, or sales contact. We use this information to complete your request and contact you with any issues. Please note that if you do not provide us with personal data, we may not be able to provide you with the products or services that you have requested.
We may ask for and collect personal data when you enter a contest or other promotion; when you subscribe to our marketing communications or newsletters; when you complete surveys; when you participate in a user forum or blog; or when you interact with us at an event. We use the information you provide to help us design and improve our website and our products, and for other purposes that are further described within this policy.
Once you have provided us with your personal data through any of our Websites, we may collect data about your use of the site and your interest in our content. We only track this information as personal data after you have voluntarily submitted your personal data. We may use any of this information to offer and improve our products and services, to provide you with requested information or technical support, to facilitate your movement through our Websites, to improve the advertising and marketing of our products and services, to diagnose problems with our products and services in connection with our security and compliance programs, to administer our Websites, to communicate with you, to target prospective customers, to offer you a personalized experience or otherwise tailor our Websites, product and service offerings to you, or as otherwise described in this privacy statement. We may aggregate and anonymize data received to produce reports on trends and statistics, such as mobile search trends, email open rates by industry, campaign best practices, or the number of users that have been exposed to, or clicked on, our sites or evaluated or purchased our products and services.
Finally, we may also ask for your personal data when you express an interest in employment opportunities by applying through our careers page. The information we collect from you will be made apparent at the time you are submitting your application, and we will use this information only to evaluate your employment candidacy and to comply with our certifications and legal obligations.
The data we collect automatically
Our web server logs collect the domain names and network information of visitors to our Websites automatically (such as IP address or device identifier). This information is used to measure the number of visits, average time spent on our websites, specific pages viewed, and website usage information, to meet legal or regulatory requirements, to improve the content of our sites, and to provide content to our community. This information is not collected in a way that allows identification of any of our visitors. We may, however, collect this information in a way that allows identification of our visitors by using cookies.
Cookies are small files that a site transfers to your computer’s hard drive through your web browser (if you allow) that enables it to recognize your browser and capture and remember certain information. A cookie cannot read data off of your hard drive or read cookie files created by other sites. Cookies may do things like allow you to navigate faster through the site, remember your preferences and passwords, and generally improve the user experience. You can turn off the ability to receive cookies by adjusting your browser settings — please note that if you do so, this may affect the functionality of the website and the information you can access through it.
The data you provide to us when using the Reveal software
Users of the Software log into the application with their individualized credentials. These credentials are associated with your username, first name, last name, email address, and other identifying fields entered by the administrators of your instance of the Reveal software. We maintain robust audit logs detailing when you log into our software and the actions that you perform.
We never share personal data, cookies, audit logs, uploaded data, or any other personally identifiable information generated by or stored within our Software with a third-party without first seeking your authorization in writing.
If you contact our Reveal Support or Success Teams, then your personal data will be recorded within a support ticket to facilitate the speedy resolution of your issue. We keep this data for to track recurring issues and improve our processes and products.
What sensitive personal data do we collect?
We do not intentionally collect any sensitive personal data through our Websites. Sensitive personal data means the various categories of personal data that have been identified by applicable data privacy laws as requiring special treatment and can include data relating to ethnic origin or race, marital status, political opinions or affiliations, ideological views or activities, trade union membership, religious beliefs, physical or mental health, sexual orientation, social security information, government benefits, or administrative or criminal proceedings or records. We suggest that you do not provide sensitive personal data to us. If you do provide us with any sensitive personal data, you consent to our use of this data in the ways described in this policy.
Who can access your personal data?
We are the only owners of the personal data we collect. For personal data collected for marketing and product development purposes, we use sophisticated and well tested platforms to handle our data processing. We may use the data that you have voluntarily provided us with to keep in touch, track your certifications and event attendances, conduct market research, administer and improve our sites, or comply with our applicable legal obligations.
Any consultants that we engage to help analyze personal data are held to the same standards as our employees. At your request, we will let you know if any third-party data processors have used your data as part of an engagement with us.
How do we secure your personal data?
The security of your personal data is important to us. We follow generally accepted standards to protect the personal data submitted to us, both during transmission and once we receive it. However, no method of transmission over the Internet, or method of electronic storage is one hundred percent secure and we cannot guarantee its absolute security. Please contact us, if you have any questions about security on our Websites or in our Software.
What are your rights?
You have the right to send us a request to access, correct, delete, or limit the use and disclosure of your personal data in our possession and we will respond in accordance with the applicable requirements. If we cannot complete your request due to legal restrictions or because we cannot locate your data, we will let you know. These services are provided free of charge.
If after you have contacted us, you still have any unresolved issues and you live in the European Union or Switzerland, then you may contact your local Data Protection Authority for more information. The local Data Protection Authorities are a public service provided at no cost to you. For more information, please visit http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm.
Is your data transferred internationally?
We are headquartered in the United States. Personal data may be accessed by us or transferred to us in the United States or to our affiliates elsewhere in the world. By providing us with personal data, you consent to this transfer. We will protect the privacy and security of personal data according to this privacy statement, regardless of where it is processed or stored. However, by providing us personal data you acknowledge that personal data stored or processed in the United States will be subject to the laws of the United States, including the ability of governments, courts or law enforcement or regulatory agencies of the United States to obtain disclosure of your personal data, and you consent to such activities.
For the purposes of European Directive 95/46/EC and applicable national implementing laws in your jurisdiction, we are a data controller with respect to your data, and we are a data processor with respect to our customers’ data. Any personal data we collect is transferred in accordance with our agreements based on the Standard Contractual Clauses set out by the European Union.
If you have any inquiries about how we handle or transfer your personal data, please contact us at firstname.lastname@example.org.
We provide reasonable and appropriate physical, electronic, and procedural safeguards intended to maintain the confidentiality of the personal data we collect. While we endeavor to provide reasonable security for information we process and maintain, but no security system can prevent all potential security breaches.
What happens when I go to another site?
Our Websites provide links to other third-party websites. Even if the third party is affiliated with us, we are not responsible for the privacy policies, practices, or content of such external links. These links are provided to you for convenience purposes only, and you access them at your own risk.
Do you collect information on children?
We do not knowingly collect personal data from or market to anyone under the age of 16. If you are a parent or guardian and become aware that your child provided us with information without their consent, you should contact us at email@example.com.
EU-U.S. / Swiss-U.S. Privacy Shield
In compliance with the Privacy Shield Principles, Reveal commits to resolve complaints about our collection or use of your personal information. EU and Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Reveal at:
Reveal Data Corporation
Data Privacy and Security
330 S. Wells St.
Chicago IL 60606
Reveal is committed to resolve all complaints in timely manner. If you do not receive timely acknowledgment of your complaint from us, or if you are not satisfied with our response, or if contacting us does not resolve your complaint, EU individuals may request Reveal to refer unresolved Privacy Shield complaints to, or you may bring a complaint before, the United States Council for International Business (USCIB). The USCIB is the American affiliate of the International Chamber of Commerce, the Business and Industry Advisory Committee to the OECD, and the International Organization of Employers, and has agreed to act as a trusted third party on behalf of the European Union (EU) Data Protection Authorities. Information about how to file a complaint before the USCIB can be found at uscib.org. As a last resort, EU individuals may seek redress through binding arbitration. The services of this process are provided at no cost to you.
All vendors with access to data covered under this policy are required to sign an EU Data Protection Agreement prior to working with Reveal. This document addresses common requirements concerning Notice, Choice, Onward Transfer, Access, Security, Data Integrity and Enforcement of the Personal Data with respect to the vendor’s Personal Data. Any vendor has the right to terminate its working relationship with Reveal and request the deletion of Personal Data pertaining to them. However, Reveal will continue to maintain its historical business records in such a way so that Reveal may retain its historical knowledge and relationships concerning any legal or regulatory inquiries which may later arise. This practice is in the best interests of both parties so that identifying information relating to a particular matter is accessible but sufficiently discrete so that Reveal does not accidentally contact them for projects in the future.
Reveal provides information regarding the below through policies and trainings:
Reveal is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC)
The possibility, under certain conditions, for the individual to invoke binding arbitration
The requirement for your organization to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements
Reveal’s liability in cases of onward transfers to third parties
Who can you contact to learn more?
Reveal Data Corporation
Data Privacy and Security
330 S. Wells St.
Chicago IL 60606
Modified 10 Aug 2020