December 20, 2020
- Information we collect
- How we use and share collected information
- Your choices with our personal information uses
- Changes to this policy
- California Consumer Disclosure
- Additional disclosures for visitor from the UK or European Union
1. Information we collect
We provide a platform for our clients to collect personal information. We offer multiple ways for our clients to use the Services, including when you complete a check-in survey, register for an account, send us emails, or engage in our website or mobile application. The information we may collect from you through these processes is:
- Full name
- Email address
- Phone number
- Postal address
- Survey responses, which may include health-related information
On occasion, we may also ask you or an employer to provide us with information about another person and their contact information, such as with a multi-person business site check-in. In such an instance, we will treat the other person's information in accordance with this policy.
We automatically collect information about you when you interact with our website, mobile application or through our communications. We use various tools to measure website or mobile app activity, which may include the use of pixel tags and cookies or mobile ad IDs to identify you on other websites or apps. In addition, we send email updates, and may collect information about your interaction with our emails or SMS. Specifically, we collect the following pieces of information through these interactions:
- IP addresses
- Website or mobile app visit analytics such as pages viewed, time spent on site, and referral URLs
- Cookie or mobile advertising IDs
- Email opens and click-throughs that will be associated with an email address
- SMS unique URL click-throughs may be associated with a phone number.
- Location-based information: For web visitors, this may be inherent in a site-specific online check-in form. For mobile app users, we will ask for your permission to capture your mobile location and will only use this information to authenticate or otherwise process your business site-specific check-in. To be clear, the Safe Site app is not used for persistent tracking of users location information, nor to assist with tracking users for public health monitoring.
2. How we use and share collected information
We use personal information in order to;
- Enable our clients to complete a check-in survey or otherwise validate entry into specific businesses or locations.
- Enable our clients to communicate with you through email, SMS or phone related to an authentication or validation effort, or potentially to alert you about important updates.
- Enable our clients to comply with health authorities’ guidelines, and/or communicate with health authorities regarding information collected through Safe Site check-ins.
- Personalize or otherwise improve our website, applications and services.
We use various service providers to assist with the Services. In each of these instances, we require that these service providers do not use your personal information for any other purpose. These service providers include:
- Email or SMS communications
- Website or mobile app creation and hosting
- Website and mobile analytics, including Google
- Survey tools
- Online advertising or search optimization
We will not sell, rent or share your personal information with third parties for their own uses without your express consent. However, there are occasions we may share personal information for a designated business purpose, including:
- If we work with a client or partner to jointly promote our business check-in services or mobile app. In such an event, we will treat the sharing of information the same as with our service providers.
- Through the use of proprietary links, pixel tags and cookies served by social media or potentially advertising services.
- With a parent company or any divisions, subsidiaries or corporate affiliates of Safe Site.
- If we are compelled by law to do so, such as through a subpoena or court order.
- If it is required as part of a business transaction where Safe Site or any subsidiary is acquired.
We may share aggregated information that does not identify any personal information, such as the number of check-ins, surveys completed, registrations, app downloads, website visitors, or inquiries with current or potential clients or partners.
3. Your choices with our personal information uses
As a service provider, we recommend that you contact our clients rather than Safe Site if you would like access to the information we are processing about you on our clients behalf. In most cases, a business or site-specific request you may have for Safe Site to provide you with specific pieces of information will be redirected to the client for them to respond directly to you. However, if it is unrelated to a specific client or business check-in, you may contact us at any time and request the following choices with our use of your personal information:
- Access. We can provide you with the personal information that we maintain about you.
- Opt-Out. If you have received a commercial email from us, you will have the option to opt-out or unsubscribe with instructions provided in the email itself.
- Deletion. You can request that we delete any information about you, unless we are required by contract or law to retain it.
Your browser may offer you a “Do Not Track” option, which allows you to signal to operators of websites and services that you do not wish such operators to track certain of your online activities over time and across different websites. Our Services do not support Do Not Track requests at this time.
Safe Site is located in the United States, and will process personal information in the U.S. If you are visiting this website from outside the U.S., then by providing us with your personal information you are consenting to the transfer of that information to the U.S.
We conduct due diligence on all our personal information service providers, and require them to have adequate security protections in place. If Safe Site processes your personal information on our own systems or servers, we will also put in place mechanisms to prevent unauthorized access or disclosures. We endeavor to protect the privacy of your account and other personal information we hold in our records, but unfortunately, we cannot guarantee complete security.
We will retain your personal information as long as we consider it relevant in order to maintain a relationship with you, our clients or as required by law. As noted above, you can request we delete your information at any time.
5. Changes to this policy
If we change this policy, we will post an update on our home page and/or mobile app. If the change involves something substantially different from our current policy, we will post the update in advance of the change taking place and send an email to everyone subscribed to our email updates.
You may reach us at email@example.com or
Safe Site Check In, LLC
PO Box 1818
Lafayette, CA 94549
7. California Consumer Disclosure
|Categories of Personal Information||Name, email address, postal address, phone number, general or specific location data, cookie and mobile identifiers.|
|Purposes for collection and use of Personal Information||We collect personal information to facilitate business site-specific check-ins or other business services.|
|Categories of sources from which Personal Information is collected||Websites and mobile applications.|
|Categories of Personal Information we sell||We do not sell personal information.|
|Categories of Third Parties to whom Personal Information is sold||We do not sell personal information.|
|Categories of third parties to whom information was shared for a business purpose||Communications, web and mobile application service providers.|
|California Consumer Rights & Options|
|Access or Delete Your Personal Information||Complete your rights by emailing us at firstname.lastname@example.org (please include "Attn: Privacy" in the subject line) or contact our business Client.|
8. Additional disclosures for visitors from the UK or the European Unions
In addition to the information above, if you are a visitor from the UK or European Union, the following information is also applicable to your use of our Services.
In compliance with the GDPR, Safe Site, Inc. is considered a data controller of our enterprise customer personal data, and a data processor when interacting with visitors on behalf of our enterprise customers. We apply the following legal bases to these disparate activities:
Safe Site as a Data Controller
- Contract Performance: We collect personal data from our enterprise customers in order to provide them with the Services they’ve requested based on specific written instructions, and communicate with them regarding relevant updates to the Services.
- Legitimate Interest: We may use personal data collected from our enterprise customers to improve the Services, as well as communicate marketing information about related products and services.
- Consent: We may request consent when we utilize cookies or collect personal data for additional uses, such as sharing information with non-affiliated entities.
Safe Site as a Data Processor
- Contract Performance: When we process personal data on behalf of our enterprise customers, it is based on specific written instructions.
- Legitimate Interest: We may utilize personal data to ensure the Services are working properly, and will endeavor to do so with the minimal amount of data necessary to carry out these activities.
- Vital or Public Interest: In select circumstances such as contact tracing the health of specific data subjects, the personal data Safe Site is processing may be considered in the categories of ‘Vital Interest’ on behalf of data subjects, or in the ‘Public Interest’ on behalf of a local authority.
Data Subject Rights
In Safe Site’s capacity as a data controller, you may contact us at any time to exercise your data subject rights to request access, modify, object (opt-out) and delete the personal data Safe Site processes. Please contact us at email@example.com and provide us with any information necessary to validate your request as an UK or EU resident.
If you are utilizing the Safe Site Services after a request to do so by one of our enterprise customers, then please complete your data subject request through that entity rather than request it from Safe Site. If we receive a request related to one of our enterprise customers, then we will either reply that you must follow up directly with that entity, or we will pass it along to that entity.
Should Safe Site choose to process UK or EU personal data in the United States, we will require our data hosting and management processors to execute Standard Contractual Clauses adopted by the European Commission, and will take into account the necessary security controls to effectuate such cross-border transfers.