PRIVACY STATEMENT
This policy defines the commitment of Research Results Inc. to protect the privacy of Personal Information that is collected or used while conducting Research Results Inc. business. Globally, Research Results, Inc. will and will cause its affiliates to establish and maintain business procedures consistent with this policy.
We respect the privacy rights of individuals.
Research Results, Inc. respects the legal requirements that exist regarding the privacy of Personal Information and is committed to complying with all applicable law. Research Results, Inc., sometimes, reviews its Personal Information collection, use, and disclosure practices to ensure compliance with laws and regulations.
We give notice of all Personal Information Collection.
Research Results, Inc. gives notice when Personal Information is provided to third parties. All notices explain the need for the information and describe how the information is used. Personal Information is not used to directly market any products or services to identifiable persons unless that possibility is disclosed in advance and the opportunity not to participate is given.
We explain the consequences of collecting and processing.
Research Results, Inc. states the consequences of any decision by individuals not to provide Personal Information requested by Research Results, Inc.
We get explicit consent for sensitive information/opt-in.
Research Results, Inc. maintains procedures to assure that information about children or other categories of sensitive information is only collected with explicit consent and is protected against improper use, consistent with applicable law.
We process and distribute information consistent with notice.
Research Results, Inc. collects and uses Personal Information consistently with the notices that have been provided. However, Research Results, Inc. may decide to remove identifiable features from collected Personal Information and the resulting information may then be used for statistical, historic, scientific or other purposes, consistent with applicable law.
We provide information security.
Research Results, Inc. maintains the security of Personal Information, and protects the integrity of such information, with a commercially reasonable degree of care.
We provide individuals with a way to access and correct their information.
Research Results, Inc. maintains procedures consistent with applicable law for individuals to gain access to their collected Personal Information and, when appropriate, correct any information that is inaccurate or incomplete, change their individual consent level, or have their Personal Information deleted.
We require others who process Research Results, Inc. data to comply with the Research Results, Inc. policy.
Research Results, Inc. requires others who acquire or provide Personal Information from or to Research Results, Inc., including those engaged to provide support services, at a minimum, to adopt and comply with the principles and objectives of this policy.
We provide a way to verify compliance and process complaints.
Research Results, Inc. will publish the procedures for verifying compliance and responding to complaints regarding potential deviations from its established procedures for protecting Personal Information. In addition to Research Results, Inc.’s internal Privacy Compliance Officer, the Insights Association, of which Research Company is a member, is another resource for questions about verification and complaint processing.
We disclose Personal Information when required by law or court order.
Research Results, Inc. under certain circumstances permitted or required by law or court order, collects, uses, and/or discloses Personal Information pursuant to procedures that do not require giving notice or conducting related activities (for example, in connection with law enforcement investigations).
We align our Human Resource processes with the Research Results, Inc. policy.
Research Results, Inc. aligns its Human Resources processes, policies, practices, and guidelines (for information that is collected or used relating to former, current, or prospective employees) to comply with this Policy.
We retain the flexibility to change this policy.
Research Results, Inc. reserves the right to modify and update this policy or its related business practices at any time. Research Results, Inc. will NOT apply changes to this policy retroactively to information Research Results, Inc. has previously collected.
If you are concerned about our use of your Personal Information, please contact us at privacy@researchresults.com, with the subject line, “privacy”.
This Privacy Statement (“Statement”) explains the privacy practices of Research Results, Inc. (collectively, “Research Results,” “we,” “us,” and “our”). This Statement explains who we are, how we collect, share, and use personal information about you, and how you can exercise your privacy rights. Please read this Statement carefully to understand how your personal information will be treated by Research Results. This Statement only applies to personal information we collect in the usual course of business, including through our websites (such as https://www.researchresults.com) (“Website”), our market research services and in connection with our events, sales, and marketing activities.
Who we are.
Research Results, Inc. is a company incorporated under the laws of the State of Massachusetts, USA and whose principal office is located at 915 South Street, Fitchburg, MA 01420 USA. Research Results provides services to help market researchers collect and analyze data from users of their company’s products and services. Our technology-based solutions help market researchers and research subjects connect and share data more easily with complete privacy and security.
What is personal data?
Personal data is any information that relates to an identified or identifiable living individual. Different pieces of information, which, when combined, can lead to the identification of a particular person, is also considered personal data.
What is your role with Research Results?
Personal data may be provided to Research Results in many ways, from our clients, from our client’s research respondents and from the general public who may visit our website. To better understand how we manage the personal data we receive it is important to understand these roles in more detail.
- Clients: Any company may use an Research Results service to assist it in conducting a market research study. In privacy terms our clients are usually considered “data controllers” because they are the entity that determines the purposes and means of the processing of personal data. (Research Results is typically considered a processor)
- Research Participants: The people who participate in research projects are called respondents, participants, or data subjects. The term “data subject” is the term we will use hereafter. A data subject is any person whose personal data is being collected, held, passed through, or processed. For Research Results, this is the research participant who has consented with the data controller to participate in a research project.
- General website visitors: This is an individual who comes to our website, who may also be a client or data subject.
Security of your personal data
We use appropriate administrative, organizational, technical, and physical safeguards to protect the personal information we collect and process in all situations. These measures are designed to provide a level of security appropriate to the risk of processing your personal identifiable information and help ensure that your data is safe, secure, and only available to you and to those you provided authorized access (e.g., your users).
What we do with your personal data – All Roles
Your personal data will only be used for the purpose(s) disclosed to you when you provide the data. However regardless of your role there are exceptions to the disclosure rule. As noted below, Research Results may disclose personal data:
- To comply with any court order, law, or legal process, including to respond to any government or regulatory request.
- To protect and defend the rights or property of Research Results (including the enforcement of our agreements).
- To act in urgent circumstances to protect the personal safety of users of Research Results services or members of the public.
- To comply with a lawful request by public authorities, including to meet national security or law enforcement requirements.
- To a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution or other sale or transfer of some or all Research Results’ assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by Research Results about our users is among the assets transferred.
- To an incentive fulfillment provider to deliver compensation to respondents for participation in some studies.
Minors and Children under the Age of 16
Research Results does not allow children under the age of 16 or children considered “Minors” as designated by the laws under which they fall, to use any of our services without proper consent from a parent or legal guardian. If you believe we might have any information from or about a Minor that was collected without proper consent, please contact us at the address provided below in the “Contact Us” section.
Data Retention
We retain personal information we collect where we have an ongoing legitimate business need to do so (for example, to provide our clients with a service or to comply with applicable legal, tax or accounting requirements, to enforce our agreements or comply with our legal obligations). When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it. In cases where your personal information has been stored in backup archives, we will securely store your personal information, isolate it from any further processing and anonymize or delete it as soon as possible. Please contact us at privacy@researchresults.com if you have any questions about the information we collect and/or how we use the information we collect.
Data Subject Rights – Overview
All businesses that collect personal information are required under general research codes of conduct and national and regional privacy laws to protect the privacy of data subjects and keep that data secure. Several privacy laws also provide for specific rights regarding the handling of data subjects personal data including the right to opt-out of the processing or sales of personal data. These rights are listed in the sections below as required by law. Please note that Research Results collects and processes data on behalf of data controllers (our clients) and is therefore considered a processor under most privacy laws. Research Results does not sell or otherwise use your personal data for any purpose other than as directed by the data controller. Finally, it is important to note that most privacy laws require the data subject to make the request regarding their rights directly to the organization that has primary control over your data, the data controller.
Data Subject Access
If you are an EU Person, a person from the United Kingdom, a person from Switzerland or a California consumer about whom we hold personal data on our own or client’s behalf, you may request access to, and the opportunity to update, correct or delete, such personal data. Please see instructions for Data Subject Rights and Requests below. We reserve the right to charge an adequate fee or deny requests, as allowed under the applicable law or regulation including California Consumer Privacy Act (CCPA) and General Data Protection Regulation (GDPR). For a list of the categories of personal information that we collect, how it is used and how long it is retained, please see section “Summary of Collection, Use, and Disclosure of Personal Information” below.
Summary of Collection, Use and Retention of Personal Information
Information Collected |
How is it used? |
Retention Period |
Lawful Use |
Survey Data from Data Subjects
|
|
Data is de-identified within 45days of project closing |
|
Market Research Panel Data from Data Subjects
|
|
Data is retained for as long as the panel member account remains active. Data is de- identified as soon as we are either directed by the panel member to remove the data, the panel member opts out of any further participation, the client asks us to remove a panelist, or the client asks us to close the panel. |
|
Website Visitors
|
|
If an ongoing legitimate business need to keep this information exists |
Voluntary supply of personal information |
Client Data
|
|
If an ongoing legitimate business need to keep this information exists |
Voluntary supply of personal information |
EU-US DPF, UK Extension to the EU-US DPF and the Swiss-US DPF
Research Results complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. Research Results has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU- U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF. Research Results has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. Research Results, Inc. has certified that it adheres to the Data Privacy Framework Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement and Liability. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Research Results commits to refer unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF to the Insights Association Data Privacy Framework Services Program, a non-profit alternative dispute resolution provider located in the United States and operated by the Insights Association. If you do not receive timely acknowledgment of your DPF Principles- related complaint from us, or if we have not addressed your DPF Principles-related complaint to your satisfaction, please visit https://www.insightsassociation.org/Resources/Data-Privacy- Framework/Information-for-EU-Swiss-Citizens-to-file-a-complaint for more information or to file a complaint. These dispute resolution services are provided at no cost to you.
Research Results, Inc. is under the enforcement authority of the Federal Trade Commission to adhere to the EU-U.S., the UK Extension to the EU-U.S. DPF, and Swiss-U.S. DPF. It may be possible, under certain limited conditions, for European Union individuals to invoke binding arbitration before the DPF Panel to be created by the U.S. Department of Commerce and the European Commission.
Individuals under certain limited conditions, may invoke binding arbitration for complaints regarding DPF compliance not resolved by any of the other DPF mechanisms. More information can be found at this link: https://www.dataprivacyframework.gov/s/article/ANNEX-I- introduction-dpf?tabset-35584=2
Research Results complies with the principles for onward transfers of personal data, including the onward transfer liability provisions.
EU/UK GDPR Data Subject Rights
Right to Access (Article 15)
You have the right to obtain from us confirmation as to whether or not your personal data is being processed by us and receive information about that data.
Right to Rectification/Correction (Article 16)
You have the right to access your information and to correct, amend or delete inaccurate information.
Right to Erasure (Article 17)
You have the right to request that your information be deleted from our systems.
Right to Restriction of Processing (Article 18)
You have the right to request that we stop processing your information at any time.
Right to Data Portability (Article 20)
You have the right to request a copy of the personal data you provided to us in a structured, commonly used and machine-readable format. You may also request that we transfer a copy of your personal data to another controller where technically feasible.
Right to Object (Article 21)
You have the right to object to the processing of your personal data at any time.
Right to file a complaint
You have the right to file a complaint with a supervisory authority.
Exercising Your Data Subject Rights
Instructions for submitting Requests Regarding the Handling of Your Personal Data (For Data Subjects, Data Controllers and Website Visitors – please read carefully)
There are many laws and regulations protecting and enabling individuals’ privacy rights in effect around the world which give individuals rights regarding their personal data such as the ability to request access, erasure, and restriction of processing. While laws may define personal data differently, this is any information relating to an identified or identifiable natural person. If an organization holds and/or processes your personal data, you may request that the organization take an action on your data as allowed by the relevant law. We refer to this request as a Data Subject Request or DSR.
When making a DSR it is important to understand that most laws require you to make the request directly to the organization that has primary control over your data; referred to as the Data Controller. While Research Results does process personal data, we are typically acting as a data processor; collecting and processing your data on behalf of our clients who are the data controller. Further, most laws require that Research Results (as a data processor) must not act on personal data requests received directly from data subjects until the data controller has authenticated the request and given Research Results direction on what action to take. For this reason, we strongly recommend that you contact the data controller directly for the fastest response to your request.
If Research Results is the data controller, such as when we are sending you marketing related information, you may make the request by mail or email at the addresses noted below. Information to provide us with when we are the data controller, and you are making a data subject request:
- Attach or forward the original email you received, e.g., the emailed invitation to participate, associated with the project(s) or events(s) where your data was collected.
- If you do not have the original email, then please provide the following:
- First Name
- Last Name
- Email address (if different than that used to send request)
- Research Topic (if known)
- Type of research or event where data was provided, webinar registration, online project booking, online survey, bulletin board, webcam interview, etc.
- Date(s) of event or research participation
- The action you would like us to take regarding your information.
Please communicate your request to our Privacy Officer at:
Privacy Officer
Research Results, Inc. 915 South Street
Fitchburg, MA 01420
+1 (978) 345-5510
privacy@researchresults.com
Opt-In Consent when Research Results is Data Controller
In general, all persons providing personal data are required by Research Results policy and privacy laws to be given a choice, or consent, to how their data may be used.
When Research Results is the data controller, we will disclose the purpose for which personal data collected will be used and will provide individuals the opportunity to choose (opt-in) whether their personal data is used. If the information is to be used for a purpose other than it was originally collected, Research Results will contact the individual to obtain consent for the new purpose.
General Information
Marketing Activity
When you receive newsletters or promotional email from Research Results, we may use web beacons (described below), customized links or similar technologies to determine whether the email has been opened and which links you click to provide you more focused email communications or other information. We may also supplement the information we collect with information obtained from other companies. For example, we may use services from other companies that enable us to associate your activity while on our website with your IP address to improve our site and services.
To opt-out of any marketing communications you receive from us please see the Data Subject Rights and Requests section.
Communication Preferences
You can stop the delivery of future promotional email from Research Results sites and services by following the specific instructions in the email you receive. You may also have the option of proactively making choices about the communications you receive from Research Results by emailing privacy@researchresults.com with your preferences or contacting us at:
Privacy Officer
Research Results, Inc. 915 South Street
Fitchburg, MA 01420
+1 (978) 345-5510
privacy@researchresults.com
Links to Other Sites
Our website may contain links to other sites that are not owned or controlled by Research Results. Please be aware that Research Results is not responsible for the privacy practices of these other sites. We encourage you to review the privacy policies and statements of other sites to understand their information practices. This Statement applies only to information collected by our website.
International Data Transfer
Please be aware that your personal information may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different to the laws of your country. Specifically, our servers are in the United States.
We have implemented appropriate safeguards with our third-party service providers and partners and further details can be provided upon request.
Use of Cookies
Research Results uses “cookies” to supply our services more easily and to help personalize your online experience. A “cookie” is a set of data that a web server stores on your computer that enables the server to recognize your computer. Cookies enable websites to “remember” your entries as you move from page to page, or when you revisit the site from time to time using the same computer. The data set that makes up a cookie will typically not have any meaning to anyone other than the party that placed the cookie. A cookie cannot retrieve other data from your computer’s hard drive or pass on computer viruses. Two distinct types of cookies are used in connection with our website: “Session cookies” track the user’s progression through our sites in a single visit. These cookies enable us to remember things as the user progresses from one page to another. With most Internet browsers, session cookies are either deleted or rendered inaccessible to us and our agents as soon as the user closes his or her browser. “Persistent cookies” allow us to remember a user at the user’s next visit. Persistent cookies are neither automatically erased nor rendered inaccessible upon closing the user’s browser, although persistent cookies will typically “expire” after some number of years. Upon expiration, such cookies may be deleted by the user’s browser or rendered inaccessible to us. (If you do not want these cookies to remain on your computer, you can erase them through your browser settings.) Both session and persistent cookies may also be used in connection with HTML email sent by us. Your browser or other software you install may permit you to restrict the use of session cookies, persistent cookies, or all cookies. If you elect to not permit the use of persistent cookies only, you may enjoy the full functionality of our website; however, if you do so, you will need to re-enter some data upon your return visit or during the login process.
Use of Web Beacons
Research Results Web pages may contain electronic images known as “pixel tags”, “web beacons” or other technologies (collectively, “web beacons”). Web beacons are used to collect non-personally identifiable data and to assist in delivering cookies on our site and allow us to count users who have visited those pages and to deliver services. We may include Web beacons in promotional email messages or our newsletters to determine whether messages have been opened and acted upon.
Do Not Track Signals
We do not collect or respond to Do Not Track signals and our websites do not function
differently based on any Do Not Track preferences that may be received. For more information on Do Not Track signals, please visit https://allaboutdnt.com/
Enforcement of This Privacy Statement
If you have questions regarding this statement, please contact us at:
Privacy Officer
Research Results, Inc. 915 South Street
Fitchburg, MA 01420
+1 (978) 345-5510
privacy@researchresults.com
Changes to This Privacy Statement
We will occasionally update this Statement to reflect changes in our services and customer feedback. When we post changes to this Statement, we will revise the “last updated” date at the top of this statement. If there are material changes to how Research Results will use your personal information, we will notify you either by prominently posting a notice of such changes prior to implementing the change or by directly sending you a notification. We suggest you periodically review this Statement to be informed of how Research Results is protecting your information.
Contacting Us
Research Results welcomes your comments regarding this Statement. If you have questions about this Statement or believe that we have not adhered to it, please contact us at:
Privacy Officer
Research Results, Inc. 915 South Street
Fitchburg, MA 01420
+1 (978) 345-5510
privacy@researchresults.com