Privacy Policy
Privacy policy
- Important information and who we are
- Data we collect about you
- How we collect data
- How we use your data
- Disclosures of your personal data
- International transfers
- Data security
- Data retention
- Your legal rights
- Glossary
1. Important information and who we are
Sigma-HSE respects your privacy, and we are committed to protecting your personal data. This Privacy Policy explains how we look after your personal data when you visit our website and informs you of your privacy rights. Together with our Cookie Policy, it sets out the basis on which any personal data will be processed.
References in this Privacy Policy and on our website to “we,” “our,” or “us” refer to Sigma-HSE Inc. References to “you” or “your” mean each natural or legal person who interacts with us, uses our website, or utilizes the products and services we provide.
For the purposes of applicable US privacy laws, Sigma-HSE Inc., located at 75 Gilcreast Rd., Suite 210-151, Londonderry, NH 03053, is the data controller.
2. Data we collect about you
We may collect and process the following types of personal data:
Identity Data: Includes first name, middle name, last name, username, or similar identifier.
Contact Data: Includes email address.
Financial Data: Includes bank account and payment card details (if applicable).
Financial Data: Includes bank account and payment card details (if applicable).
Transaction Data: Includes details about payments to and from you and other details of products and services you have purchased from us.
Technical Data: Includes your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, IP address, and other technology on the devices you use to access this website.
Usage Data: Includes information about how you use our website.
Profile Data: Includes your interests, preferences, feedback, and survey responses.
Marketing and Communications Data: Includes your preferences in receiving marketing from us and your communication preferences.
We also collect, use, and share Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data may be derived from your personal data but is not considered personal data in law as this data does not directly or indirectly reveal your identity.
We do not collect or have access to any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health, and genetic and biometric data). Nor do we collect any information about criminal convictions and offenses.
3. How we collect data
We collect information about you in the following ways:
Information You Provide to Us: You may give us information about yourself when you register on our website, communicate with us by phone, email, or other means, subscribe to our services, provide feedback, participate in surveys, or report a problem with our website. This information may include your name, address, email address, phone number, job title, and company information. If you engage with us through social media, this may also include your social media contact details, such as your LinkedIn, Facebook, YouTube, or Twitter username.
Information We Collect Automatically:
When you communicate with us by phone, email, in person, or when you use our products and services, we may collect engagement metrics such as information about how, when, and how often you contacted us, as well as your responses to our communications.
When you visit our website or interact with us online (including via social media), we may automatically collect technical information, including:
- Internet Protocol (IP) address used to connect your device to the Internet
- Login information
- Browser type and version
- Time zone setting
- Browser plug-in types and versions
- Operating system and platform
We may also collect information about your visit, including: - Full Uniform Resource Locators (URL) clickstream to, through, and from our website (including date and time)
- Products you viewed or searched for
- Page response times, download errors, length of visits to certain pages
- Page interaction information (such as scrolling, clicks, and mouse-overs)
- Methods used to browse away from the page
- Any phone number used to call our customer service number
Information We Receive from Other Sources:
We may receive information about you from other sources if you use any of the services we provide. We work closely with third parties (including, for example, business partners, service providers, and identity verification providers) and may receive information about you from them. We may combine this information with information you provide to us and information we collect about you.
4. How we use your personal data
We use your personal data for a variety of business purposes, as outlined below. We are committed to transparency about how your information is used and to providing you with choices regarding certain uses, particularly related to marketing and communications.
Purpose/Activity | Types of Data Used | Consumer Choices/Notes |
To register you or your organization as a new customer | Identity, Contact | — |
To process and deliver products or services you or your organization have requested | Identity, Contact, Financial, Transaction, Marketing/Communications | — |
To manage our relationship with you (e.g., updates, surveys, correspondence) | Identity, Contact, Profile, Marketing/Communications | Opt-out of marketing communications |
To enable you to complete a survey | Identity, Contact, Profile, Usage, Marketing/Communications | Opt-out of surveys |
To administer and protect our business and website (e.g., troubleshooting, IT) | Identity, Contact, Technical | — |
To deliver relevant website content and measure advertising effectiveness | Identity, Contact, Profile, Usage, Marketing/Communications, Technical | Opt-out of targeted advertising (see Cookie Policy) |
To use data analytics to improve our website, products/services, and marketing | Technical, Usage | — |
To make suggestions and recommendations about products or services | Identity, Contact, Technical, Usage, Profile | Opt-out of marketing communications |
To provide products or services on behalf of our clients | Identity, Contact, Financial, Transaction, Technical, Usage, Profile | As directed by client; opt-out where applicable |
Marketing
We may use your personal data to determine which products, services, or offers may be relevant to you. You will receive marketing communications from us if you have requested information from us or consented to receive marketing, and you have not opted out of receiving such communications.
Third-Party Marketing
We will obtain your express consent before sharing your personal data with any third party for marketing purposes.
Opting Out
You can ask us or third parties to stop sending you marketing messages at any time by contacting us. Opting out of marketing communications will not affect personal data provided to us as a result of product registration or other transactions.
Cookies
We use cookies and similar technologies to enhance your experience on our website. You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, some parts of this website may become inaccessible or not function properly. For more details, please see our Cookie Policy.
Change of Purpose
We will only use your personal data for the purposes for which we collected it, unless we reasonably determine that we need to use it for another purpose that is compatible with the original purpose. If we need to use your personal data for an unrelated purpose, we will notify you and explain the reason.
Please note that we may process your personal data without your knowledge or consent, where this is required or permitted by law.
5. Disclosures of your personal data
We may share your personal data with trusted third-party service providers who assist us in operating our business and delivering our products and services. These providers may offer services such as email hosting, website hosting, maintenance, analytics, advertising, and other core business functions. We only share the information necessary for these third parties to perform their services, and we require them to maintain the confidentiality and security of your data.
Examples of third-party service providers include but are not limited to:
Facebook Ads Manager, Google Ads, LinkedIn Ads, Twitter Ads, HubSpot, and Lead Forensics.
If you would like a complete list of the third parties with whom we may share your personal data, please contact us.
We do not permit our third-party service providers to use your personal data for their own purposes. They are only allowed to process your personal data for specific purposes and in accordance with our instructions.
Other circumstances in which we may disclose your personal data include:
If we sell, transfer, or merge parts of our business or assets, your personal data may be transferred to the new owners and used in accordance with this privacy policy.
If we are involved in a merger, acquisition, or other business transaction, your information may be shared with prospective or actual parties to the transaction.
We require all third parties to respect the security and confidentiality of your personal data and to process it in accordance with the law. We regularly review our third-party service providers and may change them if their services no longer meet our standards.
6. International transfers
Your personal data may be transferred to and processed in countries outside of the United States by our service providers or business partners. We take reasonable steps to ensure that your personal data remains protected and is treated securely, in accordance with this privacy policy and applicable laws.
When we transfer your personal data internationally, we require our service providers and partners to implement appropriate safeguards to protect your information. These safeguards may include contractual obligations to protect the privacy and security of your data.
If you have questions about how your personal data is protected during international transfers, please contact us.
7. Data security
We implement appropriate security measures to protect your personal data from accidental loss, unauthorized access, use, alteration, or disclosure. Access to your personal data is limited to employees, agents, contractors, and other third parties who have a legitimate business need to know. These individuals and entities will only process your personal data according to our instructions and are required to maintain its confidentiality.
We have established procedures to address any suspected personal data breaches. If a breach occurs, we will notify you and any relevant authorities as required by law.
8. Data retention - How long will you use my personal data for?
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to meet any legal, accounting, or reporting requirements.
When determining the appropriate retention period for personal data, we consider factors such as the amount, nature, and sensitivity of the data, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process your data, whether those purposes can be achieved by other means, and any applicable legal requirements.
Once your personal data is no longer needed for these purposes, we will securely delete or anonymize it.
9. Your legal rights
Under applicable US privacy laws, you may have certain rights regarding your personal data. These rights may include:
Request Access: You can request access to the personal data we hold about you.
Request Correction: You can request that we correct any incomplete or inaccurate personal data we hold about you.
Request Deletion: You can request that we delete your personal data, subject to certain exceptions.
Object to Processing: You can object to the processing of your personal data in certain circumstances.
Request Restriction: You can request that we restrict the processing of your personal data in certain situations.
Request Data Portability: You can request a copy of your personal data in a structured, commonly used, and machine-readable format.
Withdraw Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent at any time.
If you wish to exercise any of these rights, please contact us at info-us@sigma-hse.com.
No Fee Usually Required
You will not have to pay a fee to access your personal data or to exercise any of your other rights. However, we may charge a reasonable fee if your request is clearly unfounded, repetitive, or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
What We May Need from You
We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to anyone who does not have the right to receive it. We may also contact you to ask for further information to help us respond to your request more efficiently.
Time Limit to Respond
We aim to respond to all legitimate requests within one month. Occasionally, it may take longer if your request is particularly complex or if you have made multiple requests. In such cases, we will notify you and keep you updated on the progress.
10. Glossary
Personal Data / Personal Information
Information that identifies, relates to, describes, or can be reasonably linked, directly or indirectly, to a particular individual. This may include names, contact details, identifiers, and other information as defined by applicable law.
Consent
Your clear, affirmative permission for us to collect, use, or share your personal data for a specific purpose.
Data Controller
The entity that determines the purposes and means of processing personal data.
Data Processor / Service Provider
A third party that processes personal data on behalf of the data controller and according to its instructions.
Data Subject Rights / Consumer Rights
The rights you may have under applicable privacy laws regarding your personal data, which may include:
- Access: Request to know what personal data we hold about you.
- Correction: Request to correct inaccurate or incomplete personal data.
- Deletion: Request to delete your personal data, subject to certain exceptions.
- Opt-Out: Request to opt out of certain uses or sharing of your personal data, such as for marketing or targeted advertising.
- Portability: Request a copy of your personal data in a portable format.
- Withdraw Consent: Withdraw your consent for processing your personal data, where applicable.
Legitimate Interest
A business purpose that is necessary for our operations and not overridden by your rights or interests.
Performance of Contract
Processing your personal data as necessary to fulfill a contract with you or to take steps at your request before entering into a contract.
Legal Obligation
Processing your personal data as necessary to comply with applicable laws or regulations.
Third Party
Any individual or organization other than you and Sigma-HSE, including service providers, business partners, or affiliates, that may receive your personal data as part of providing services to us.
Data Breach
An incident where personal data is accessed, disclosed, or used in an unauthorized way, whether accidental or intentional.
Data Minimization
The practice of collecting only the personal data that is relevant and necessary for the stated purpose1.
Data Retention
How long we keep your personal data before securely deleting or anonymizing it, based on legal, business, and operational requirements.
Profiling
Automated processing of personal data to analyze or predict aspects about an individual, such as preferences or behavior.
Targeted Advertising / Cross-Context Behavioral Advertising
Advertising based on personal data collected across different businesses, websites, or services, often used to deliver personalized ads.
Contact
If you have questions, comments, or requests regarding this Privacy Policy or your rights, please contact us at info-us@sigma-hse.com.