Privacy Policy
Introduction
ProfileFinder helps businesses by providing secure access to global, public data related to professionals.
We are committed to respecting everyone’s privacy and our services are designed in accordance with the California Consumer Privacy Act (CCPA), the EU General Data Protection Regulations 2016 (GDPR) and other applicable data protection laws.
ProfileFinder monitors developments in relevant legislation to ensure we continue to meet the high expectations of our customers and to ensure the respect of data subjects’ rights.
This Privacy Policy describes what data we collect and how we process it. Should you have any questions, please contact us at: [email protected]
Global Compliance: ProfileFinder and our customers operate in multiple jurisdictions around the world. To ensure a consistent user experience, and in addition to required relevant legislation elsewhere, we aim to meet all relevant data protection requirements across our entire business.
What information does ProfileFinder collect?
When you are on our website
When you’re using our website, we use cookies to track your usage, such as which pages you visit and how long you
look at them (“visitor data”). This information may include, but is not limited to, IP address, geolocation information, browser type and a history of the pages you view.
If you create an account, we ask for information including, but not limited to your email, your name or what company you work for. All this information is used to personalize your experience or send you onboarding emails and invoices.
When you use our services
Whether it is through the API, the website, or other services we provide, we monitor your usage, and log requests that you make (“user data”). Those logs can include IP address, geolocation information, browser type, etc.
When you contact our support
If you reach out via email or chat, we keep conversations and other data you might send during those exchanges.
When we capture public web data
We acquire data from various public sources, which may not be accurate or complete, to combine into our aggregated set of public data. We use our own servers and some third-party suppliers to look at publicly available online pages, just as a search engine (such as Google and others) might do, and process business data we identify on them.
We are not responsible or liable for the accuracy of any such publicly available data, or the results of any analysis based on such data.
a) Public Data Only: Only public pages are looked at and only publicly available online data that can be found by a search engine are indexed by our servers. We do not use login access to collect data, and data collected is always visible to a visitor without login to the site. Data is public if it can be seen in a browser while there is no logged in user.
b) Professional Data Only: On those public pages, we only look for professional profile information that might be used in one’s business or professional capacity – including name, gender, email addresses used to log into business-related sites, email addresses used to send and receive business-related communications, company name, company address, mobile and landline telephone numbers, job title, job function, social media links, education, skills, employment history, memberships, certifications, patents and other data that are directly related to employment, careers, skills and other professional attributes.
c) Current Data Only: We make every effort to collect data as frequently as various source site and technical limits allow, in order to keep our data as current as possible.
d) Compliance with Source Site Terms: If a website, via a robots.txt file, asks crawlers not to look at the content, we respect this indication. Our robots view systematically the robots.txt file before exploring and indexing the public data available on the website, and we do not circumvent restrictions in robots.txt files. We do not create real or fake user accounts for the purpose of gathering data and we never automatically generate user accounts. We are not responsible for the privacy policies and practices of other websites.
e) All Data Sources Optional/Configurable: We allow our customers to choose to “switch off” particular datasets from our public data (e.g., Facebook) as an extra level of control.
f) Third Party Suppliers: Where we use third-party suppliers to gather data for us, we require that they adhere to our principles on professional, public, current data, particularly that all data must be available without logging in to the site concerned. We do not require that our suppliers disclose their trade secrets to us, but we do regularly audit the provided data to ensure that it complies to those three key principles.
What other information does ProfileFinder include?
Data that we normalise from public data
When we analyse the publicly available data, we find some records contain similar information, but the information is expressed differently in each record.
Normalising is a way of presenting the data in the same way for each record without fundamentally changing the meaning of the data. For example:
Data that we infer or model from public data
When we analyse publicly available data, we can infer or model information that does not appear explicitly in the public data. For example, we might look at a profile whose job title is given as “java developer” and infer that “java” is a skill that can be associated with that profile.
How do we use your data?
To provide our services
When creating an account, you agree to our Terms of Service which allows us to process your data to give you access to ProfileFinder. This way, you can have an account on our website, access the API, invite other team members, etc.
To improve the User Experience
We look at usage patterns and various statistics to understand what and how to improve ProfileFinder services.
To inform businesses regarding content that is publicly displayed online
To provide the service, we provide access to the publicly accessible profile data we have indexed. It is important for our users and the organisations they work for to have access to the business data already shared on the web. This helps them discover relevant contacts within companies they want to engage with.
We do not give you access to any data which is not publicly available on the internet. We are not liable for the onward transfer to third parties of any data which is publicly available.
The profile data that we collect may be transferred, stored, or processed at a destination outside the country where the data subject resides. It may also be transferred to customers, or processed by third parties, operating outside the territory where ProfileFinder is based. Such third parties who work for us or for one of our suppliers maybe engaged in, among other things, the fulfilment of your order, the processing of your payment details and/or the provision of support services.
We will take all steps reasonably necessary to ensure that your information is treated securely and in accordance with this Privacy Policy and all relevant legislation. We will retain your information for as long as your account is active or as needed to provide our Services to you. We will also retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
To offer customer support
We provide customer support via email or chat, to help you take full advantage of our service or fix any problem you encounter.
To market new services
Regularly, we launch new services. We’ll let users know about those releases if they have asked us to keep them up to date.
Your Rights, Controls and Choices
Your rights
Whether we have collected your profile data from publicly available pages, or your visitor data from visiting our website and submitting our web registration forms, or your user data after signing up to our services, you have the following rights in relation to the personal data that we hold about you:
– Right of Access: You may request access to, and obtain a copy of, your Personal Data that is being processed by ProfileFinder. Such requests can be made by sending a request to [email protected].
– Right of Rectification: You may request to change, update or complete any missing data we process about you, by sending an email to [email protected] with your relevant details. In addition, we may rectify, replenish or remove incomplete or inaccurate information, at any time and at our own discretion.
– Right of Erasure: You may at any time request we stop processing and delete your Personal Data. In this case, if there is no overriding legitimate interest for continuing the processing of your Personal Data (e.g. to comply with our legal obligations, resolve disputes, enforce our agreements, etc.) and the Personal Data is no longer necessary in relation to the purpose for which it was originally collected, we will erase your data. Such request will be made by sending an email with your relevant details to [email protected].
– Right of Restriction of Processing: You may request us to restrict processing of your Personal Data if one of the following applies: (i) the accuracy of the Personal Data is contested by you; (ii) the processing is unlawful; or (iii) if we no longer need the Personal Data. Such request will be made by sending an email with the relevant details to [email protected].
– Right to Data Portability: You have the right to receive the Personal Data in a structured, commonly used and machine-readable format. Such request will be made by sending an email with your relevant details to [email protected]
– Right to Object: You have the right to object to our processing of your Personal Data at any time. Where we are processing your Personal Data based on your consent to such processing, you have the right to withdraw your consent at any time.
– Right to be Informed: You have the right to obtain confirmation as to whether we are processing your Personal Data and, where that is the case, access to that Personal Data and the following information:
- The purposes of the processing
- How long the data will be kept
- The source of that information
- All other information as mentioned in article 15 of the GDPR
To get started, reach out at [email protected].
If you have any concerns, please reach out first so we can have a chance to help: [email protected]. If you feel we’re not doing enough, you have the right to contact your local supervisory authority.
Services helping us manage your data
To provide our services, we rely on other companies that can partially manage your data. We carefully select our providers to ensure the privacy and security of your data. Our biggest providers are:
- To secure connections with our users and speed up our services: Amazon Web Services
- Hosting: Amazon Web Services, Snowflake
- For internal collaboration and emails: Microsoft
Duration of the processing
For users of our service, we process your data as long as your account stays active and after 3 years of inactivity. Once your account is deleted or after 3 years of inactivity, we remove almost everything within a few days and all remaining artifacts within 3 months. If you’ve paid for ProfileFinder, we might keep some information regarding your company for longer to comply with our legal obligations.
If your data was found online (profile data), we process it as long as it stays online. We make sure to regularly come back where we found it, if it isn’t there anymore or if we believe that your Personal Data that we hold is inaccurate, we remove it from our databases and stop all processing.
Securing your data
We secure your Personal Data using commercially reasonable, industry-standard measures to prevent unauthorized access or disclosure, or accidental loss, disclosure or destruction thereof. However, even very good security measures
may fail to prevent computer hacking or other breaches of security, and we can provide no guarantees that the same will not occur.
Additionally, other communications you may have with us via email or regular mail may not be secure unless we advise you that security measures are in place prior to your sending information. Therefore, if you choose to communicate with us through these means, you are assuming the risk of doing so and we request that you do not send or post sensitive information through those means.
Additional notices for certain jurisdictions
California Privacy Rights
If you are a resident of California, USA, this section provides additional details about the personal information we collect about you, and your rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA).
Subject to certain limitations, the CCPA and CPRA provide you the following rights:
- Right to Know and Right to Access
- Right to Deletion
- Right to Opt Out
- Right to Correction
- Right Not to be Discriminated Against
If you would like to exercise any of your rights, please click on the link below and complete the form.
https://rhetorik.com/do-not-sell-my-info
Virginia Privacy Rights
If you are a resident of Virginia, USA, this section provides additional details about the personal information we collect about you, and your rights under the Virginia Consumer Data Protection Act (VCDPA).
Subject to certain limitations, the VCDPA provide you the following rights:
- To confirm whether we are processing your personal information, and to access that personal information;
- To receive your personal information in a portable and readily usable format;
- To correct inaccuracies in your personal information;
- To delete your personal information;
- To opt out of the processing of your personal information for targeted advertising, sale to third parties, or profiling where there is a legal or similarly significant effect on you.
Fill out the form on this page to submit your rights request. The information you provide will only be used to fulfil your request.
https://rhetorik.com/do-not-sell-my-info
Other USA Privacy Rights
New data privacy legislation is currently in progress in a number of States (eg, Connecticut, Utah and others) and we will ensure compliance with such legislation as it becomes law. In the meantime, if you are a resident of any State of the USA, we will extend to you similar rights as are provided for residents of California and Virginia. That is:
- Right to Know and Right to Access
- Right to Deletion
- Right to Opt Out
- Right to Correction
- Right Not to be Discriminated Against
Fill out the form on this page to submit your rights request. The information you provide will only be used to fulfil your request.
https://rhetorik.com/do-not-sell-my-info
Updates & contact
We reserve the right to change or remove this Privacy Policy at our discretion and will post any new Privacy Policy here and encourage you to visit this area frequently to stay informed. You will be responsible for reviewing and becoming familiar with any such modifications.
Your use of the Site and/or the Service following such modifications constitutes your acceptance of the terms and conditions of this Privacy Policy as modified.
Unless stated otherwise, our current Privacy Policy applies to all information that we have about you and your account.
Date of last revision: 12 April 2023.
Updated over 1 year ago