Effective April 9, 2018

Overview

This Privacy Policy outlines how we collect, store and use data collected from our website (www.checkbox.com) and from our Checkbox hosted account services (customer account websites which may follow the format of yourcompany.checkboxonline.com, yourcompany.checkbox.ca, yourcompany.ckbx.eu, or a custom sub-domain of the customer’s choosing).

This policy demonstrates our firm commitment to your privacy and the protection of your personal information. Information obtained from website visitors and customers of our products and services will only be used for the purposes outlined in this policy. Except as specified in this Privacy Policy, at no time will we sell, rent, or otherwise provide your personal information or survey data to a non-agent third party.

Use of our website or services constitutes your agreement with this Privacy Policy, so please read it carefully. If you do not agree to this Privacy Policy, please discontinue use of our website and services immediately. This Privacy Policy may also be updated from time to time, as noted in our company news and customer announcements. Continued use of our website and services following the announcement of these updates constitutes your agreement with the changes.

 

How Data is Collected & Used

Data from Order & Contact Forms

When you purchase our products or services online, we collect your contact and payment information (such as name, postal address, email address, and credit card number). We use the information collected from our order forms to create and update your account, verify your identity, authorize payments, and to send you a confirmation of your payment. We will share your credit card information via a secure Internet connection with our third party credit card processing vendor for the sole purpose of processing your order or refund.

When you fill out a form on our website, we store the information you provide to us, such as your name, email address, phone number, and contact message. Following the collection of your data using a website form, we may also use marketing or analytics tools to subsequently track certain purchasing and browsing activities, such as website pages visited, time spent on pages, and marketing emails opened or clicked.

Data collected from our website forms and our marketing tools may be used to periodically send marketing notices, product updates, or company news notices to that email address. You may opt-out of receiving these emails at any time by following the Unsubscribe link located in the footer of these emails or by contacting us via email at info@checkbox.com. We will process your request as soon as possible. We may also use this data in aggregate to improve our overall website performance and product/service offerings.

At no time will we sell or otherwise transfer any of your data to any non-agent third party.

Data from Surveys and Other Checkbox Hosted Account Use

Data that is collected in your Checkbox Hosted account through the use of surveys or when you import data into your account is used by us for the sole purpose of maintaining and supporting your account. We will not contact individuals using the data in your Checkbox Hosted account, except as required by law, or use or transfer any of the data stored about those individuals except as outlined in this Privacy Policy. Individuals whose data has been collected using a Checkbox Survey or imported into Checkbox should contact the administrator of that Checkbox account regarding requests to access, change or delete that data.

At no time will we sell or otherwise transfer any data from your Checkbox account to any non-agent third party.

Data from Log Files

As is true of most websites, we gather certain information from our website and Checkbox hosted account sites automatically and store it in log files. This information includes internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp and clickstream data.

We use this information, which does not identify individual users, to analyze trends, to monitor system performance, to administer the site, to track users’ movements around the site and to gather demographic information about our user base as a whole.

We do not link this automatically-collected data to personally identifiable information.

Cookies

A cookie is a small text file that is stored on a user’s computer for record-keeping purposes. We use cookies on our website and on our Checkbox hosted account sites. We do not link the information we store in cookies to any personally identifiable information you submit while on our site.

We use persistent cookies. A persistent cookie remains on your hard drive for an extended period of time. You can remove persistent cookies by following directions provided in your Internet browser’s “help” file.

We set cookies when you visit the Checkbox website, use our Checkbox hosted application, and take a Checkbox survey. Cookies are used to:

  • Identify whether a user is logged in, for security purposes, and to allow the use of software features
  • Allow us to see how visitors use our site (these may be third party cookies like Google Analytics or Google Adwords)
  • Identify a unique survey response when you are a respondent taking a survey

If you reject cookies, you may still use our site, but your ability to use some areas of our site, such as online surveys, will be limited.

 

Data Retention & Deletion

Data Retention

We retain data collected through our website or other marketing or analytics tools for as long as is required to provide services to our customers and users, as well as to fulfill our applicable legal obligations.

We retain data that is collected through our Checkbox hosted service as long as the account remains active and in good standing, unless that data is deleted by the account administrator or unless the account administrator requests that we delete the data, in accordance with applicable law. We permanently delete data from terminated accounts sixty (60) days following termination, unless earlier deletion is requested by the account administrator in writing.

Requesting/Updating/Deleting Your Information

We do not sell, share, distribute, or otherwise transfer any information that we collect from you, except as outlined in this Privacy Policy. If you have questions or concerns about how data is collected is stored, would like to request a copy of your information on file as a registered user, or would like to update or delete your information, please contact us as specified in the Contact Information clause of this Privacy Policy.

Individuals whose data has been collected using a Checkbox Survey or imported into Checkbox should contact the administrator of that Checkbox account regarding requests to access, change or delete that data.

 

Data Security

We follow generally accepted industry standards to protect the personal information submitted to us, both during transmission and once we receive it. When data collected from our website or Checkbox hosted account sites is transmitted, we encrypt that transmission using TLS. Additional security and encryption features may also be enabled on your Checkbox hosted account. No method of transmission over the internet, or method of electronic storage, is 100% secure, however. Therefore, while we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

If you have questions about the security of your data, you can contact us  as specified in the Contact Information clause of this Privacy Policy.

 

Sub-Processors

We use third-party vendors to host data from our website and Checkbox hosted accounts, send emails from our hosted service, send marketing and newsletter emails, store customer relationship data, process customer support tickets, and process credit card payments. Data is only transferred to these sub-processors as needed to perform the activities detailed in this Privacy Policy, to perform contracted services to our customers, or to comply with applicable laws.

If you have questions about how your data is transferred or used by sub-processors, you can contact us  as specified in the Contact Information clause of this Privacy Policy.

 

EU-US and Swiss-US Privacy Shield

We comply with the EU-US and Swiss-US Privacy Shield Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries and Switzerland. We have certified that we adhere to the Privacy Shield principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement, and Liability. If there is any conflict between this Privacy Policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification page, please visit https://www.privacyshield.gov/

In addition to self-assessment, as a participant in the EU-US and Swiss-US Privacy Shield program, we are subject to the investigatory and enforcement powers and authority of the U.S. Federal Trade Commission with respect to maintenance of, and adherence to, this Privacy Policy.

In compliance with the EU-US and Swiss-US Privacy Shield Principles, we commit to resolve complaints about your privacy and our collection or use of your personal information. European Union and Swiss individuals with inquiries or complaints regarding this Privacy Policy should first contact us as directed in the Contact Information clause of this Privacy Policy.

We have further committed to refer unresolved privacy complaints under the EU-US and Swiss-US Privacy Shield Principles BBB EU PRIVACY SHIELD, a non-profit alternative dispute resolution provider located in the United States and operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers/ for more information and to file a complaint.

As a last resort and under certain limited and prescribed circumstances and conditions, you have the right to invoke a “last resort” binding arbitration process between you and us to resolve a dispute related to our collection, use or disclosure of your personal information.

In particular, we will maintain compliance with the Privacy Shield principles by adhering to the following practices:

Notice

When we collect your personal information, we’ll give you timely and appropriate notice describing what personal information we’re collecting, how we’ll use it, and the types of third parties with whom we may share it. This Privacy Policy serves as such notice, and any changes to our collection, use or disclosure of your personal information will be reflected in revisions to the Privacy Policy posted on our website.

Choice

As established and described in this Privacy Policy, we’ll give you choices about the ways we use and share your personal information, and we’ll respect the choices you make.

Accountability for Onward Transfer

If we transfer your personal information to another country, we may remain liable and will take appropriate measures to protect your privacy and the personal information we transfer.

Security

We’ll take appropriate physical, technical, and organizational measures to protect your personal information from loss, misuse, unauthorized access or disclosure, alteration, and destruction, as further-specified in the Checkbox Online Survey & Data Security section of this Privacy Policy.

Data Integrity and Purpose Limitation

We’ll collect only as much personal information as we need for specific and identified purposes, and we won’t use it for other purposes without obtaining your consent. We’ll take appropriate steps to make sure the personal information in our records is accurate.

Access

You have the right to confirm the accuracy of your personal information or have it removed from our systems and records, you may contact us at the email address, telephone number or postal address provided in the Contact Information clause of this Privacy Policy.

Recourse, Enforcement, and Liability

We’ll regularly review our continued adherence to our privacy obligations, and we’ll provide and maintain the independent mechanism specified in this Privacy Policy as a way of resolving complaints or concerns about our privacy practices. Further, we acknowledge our potential liability for misuse of your personal information by us or our third-party service providers, as further set forth in this Privacy Policy.

 

GDPR

We are aware of and committed to meeting our obligations under the General Data Protection Regulation (GDPR), which is in effect as of May 25, 2018. Please review our statement on GDPR for specific information regarding our features and data policies as they related to GDPR.

 

HIPAA Compliance

We strive to maintain data security and confidentiality policies in compliance with HIPAA regulations for all of our Checkbox Online customers. However, certain HIPAA-required security measures are only available with our dedicated Team and Enterprise plans. If you are transmitting or storing personal health information (PHI), you must notify us and follow certain HIPAA compliance procedures, including signing a business associate agreement (BAA) with us and ensuring that certain features such as password lockout restrictions and data encryption are available on your account and enabled.

For more information on HIPAA compliance, please contact our sales team at sales@checkbox.com.

 

Children’s Privacy

Only persons who are age 18 or older have permission to access our services or use our products. We do not knowingly collect personally identifiable information from children under 13. If you are a parent or guardian and you learn that your minor children have provided us with such information, please contact us. If we become aware that we have collected personally identifiable information from a child under age 13 without verification of parental consent, we will take steps to remove that information from our service and records.

 

Contact Information

You may contact Checkbox concerning this Privacy Policy, our privacy practices, and any questions or concerns you may have at the following:

Mailing Address:

Checkbox Survey, Inc.
44 Pleasant St., Ste. 110
Watertown, MA 02472 USA
Phone Number: 1-617-231-8890
Email Address: info@checkbox.com