Privacy Policy

Spring International, Ltd. is committed to protecting your privacy. This Privacy Policy applies to any data obtained through the Spring International, Ltd. corporate website.

TYPES OF INFORMATION WE COLLECT

Website Data
Spring International, Ltd. will not collect any personal information from you via this website that you do not volunteer. When you use our “Contact Us” form, we ask you to provide your name (first and last), organization, e-mail address, and information relevant to your request. We use this personally identifiable information only to provide you with personalized customer service. If you send an email to us, we will use your email address or other contact information in order to respond to your inquiry.

When you visit this website, some non-personally identifiable information may be sent by your browser, including your IP address, browser type, and version, [operating system], the pages you visit on the Spring International, Ltd. website, HTTP header, including referring web site URL, country of origin [and geographic location], and other information. This information may be used to measure and analyze our web traffic, and unless otherwise required by applicable law, such as the GDPR (as defined below), we treat this information as non-personal information.

Third-Party Websites
The Spring International, Ltd. website may contain links to other sites. Spring International, Ltd. is not responsible for the privacy practices of these other websites. This privacy statement applies solely to the information that we collect from the Spring International, Ltd. corporate website.

SECURITY AND PRIVACY OF YOUR PERSONAL INFORMATION
Spring International, Ltd. does not share, sell, or rent any personal information to any third party, ever, for marketing purposes. Your personal information will be securely stored for an indefinite period of time unless you request otherwise. The information is protected from unauthorized access, use, or disclosure.

EUROPEAN UNION RESIDENTS AND The Insights Association Data Privacy Framework (DPF) Services Program
If you reside in a country in the European Economic Area or in Switzerland, then information we collect from you may be subject to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (the “GDPR”)), and the following additional information is provided for your benefit.

The controller of the personal data collected through the Spring International, Ltd. website is:

Spring International
587 W. Skippack Pike, Suite 400
Blue Bell, PA 19422

If you use the Spring International, Ltd. website, you acknowledge that your personal data is being processed on the basis of your consent and that information gathered through the Spring International, Ltd. website may be transferred, used, and stored in the United States.

You hereby consent to the processing of your personal data as described in this Privacy Policy, including the transfer, use, and storage of your personal data in the United States as further described below. The data protection and other laws of the United States and other countries might not be as comprehensive as those in your country. You may withdraw your consent at any time by following the instructions in the Access section below, but this will not affect the lawfulness of processing based on consent before its withdrawal. However, if you withdraw your consent or decline to provide personal data to us, you may be unable to use the Spring International, Ltd. website. You have the right to file a complaint relating to the processing of personal data with a supervisory authority.

For purposes of the GDPR, we use the following companies as subprocessors of personal data:

SG Hosting Inc. (dba SiteGround): Website hosting
Google Analytics: Analytics
MonsterInsights: Google Analytics and GDPR Compliance
Formidable Forms: Contact Forms
CleanTalk Anti-Spam & Security
WP Mail SMTP: SMTP
Dropbox: Document storage
Continental Broadband LLC (dba Expedient): Data storage
Microsoft Office 365: Email correspondence
SocketLabs: Email correspondence related to contracted services

This Privacy Policy does not apply to information that Spring International, Ltd. collects from its clients in connection with our employee opinion research studies (“Research Data”). Spring International, Ltd. is only a processor with respect to this Research Data, and will only process Research Data in accordance with the instructions we receive from the data controllers (i.e., our clients), as provided in our agreements with the data controllers, or otherwise as required by applicable law.

Spring International, Ltd. complies with The Insights Association DPF Services Program as set forth by the US Department of Commerce, regarding the collection, use, and retention of personal data of natural persons from European Union member countries. Spring International, Ltd. has certified that it adheres to The Insights Association DPF Services Program Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement, and Liability. If there is any conflict between the policies in this privacy policy and The Insights Association DPF Services Program Principles, The Insights Association DPF Services Program Principles shall govern. Spring International, Ltd. is under the enforcement authority of the Federal Trade Commission.

Spring International, Ltd. complies with the following IA DPF Services Program Principles:

Notice
Spring International, Ltd. shall inform an individual of the purpose for which it collects and uses the personal information and the types of non-agent third parties to which we disclose or may disclose that information. We shall provide the individual with the choice and means for limiting the use and disclosure of their personal information. Notice will be provided in clear and conspicuous language when individuals are first asked to provide personal information to Spring International, Ltd., or as soon as practicable thereafter, and in any event before we use or disclose the information for a purpose other than that for which it was originally collected.

Choice
Spring International, Ltd. does not use or disclose personal information to any third party for marketing purposes. For purposes of these standards, opt-out is the default and only choice.

Accountability for Onward Transfer
Spring International, Ltd. does not typically work with third parties, besides those listed, such as subcontractors in the normal course of business. In the event that disclosure of personal information to a third party becomes necessary, Spring International, Ltd. shall notify the individual of such disclosure and allow the individual the choice (opt out) of such disclosure. We shall ensure that any third party to which personal information may be disclosed subscribes to these principles or is subject to law(s) providing the same level of privacy protection as is required by these principles, and agrees in writing to provide an adequate level of privacy protection. Spring International, Ltd. recognizes that it may be legally liable for third parties who fail to adhere to these principles. Additionally, Spring International, Ltd. may be required to disclose personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.

Security
Spring International, Ltd. shall take reasonable steps to protect the information from loss, misuse unauthorized access, disclosure, alteration, and destruction. Likewise, we have put in place appropriate physical, electronic, and managerial procedures to safeguard and secure the information from loss, misuse, unauthorized access or disclosure, alteration, or destruction. Spring International, Ltd. sends and receives encrypted client-supplied PII via our secure SFTP (Secure File Transfer Protocol) channels. However, Spring International, Ltd. cannot and does not guarantee the security of information on or transmitted via regular non-secured email via the Internet.

Data Integrity and Purpose Limitation
Spring International, Ltd. shall only process personal information in a way that is compatible with and relevant to the purpose for which it was collected or authorized by the individual. To the extent necessary for those purposes, we shall take reasonable steps to ensure that personal information is accurate, complete, current, and reliable for its intended use.

Access
Spring International, Ltd. shall allow individuals access to their personal information and allow the individual to correct, amend, or delete inaccurate information, except where the burden or expense of providing access would be disproportionate to the risks to the privacy of the individual in the case in question, or where the rights of persons other than the individual would be violated. Additionally, if your personal information is subject to the GDPR, you may have certain additional rights, including the right of restriction of processing of personal data, the right to object to the processing of personal data and the right to data portability. Individuals may access, amend, or delete their information, and request more information about their rights under the GDPR, by contacting Spring International, Ltd. at:

Spring International, Ltd.
587 W. Skippack Pike, Suite 400
Blue Bell, PA 19422

[email protected]

Recourse, Enforcement, and Liability
In compliance with The Insights Association DPF Services Program, Spring International, Ltd. commits to resolve complaints about your privacy and our collection or use of your personal information. European Union individuals with inquiries or complaints regarding this privacy policy should first contact Spring International, Ltd. at:

Spring International, Ltd.
587 W. Skippack Pike, Suite 400
Blue Bell, PA 19422

[email protected]

Spring International, Ltd. has further committed to refer unresolved privacy complaints under the Data Privacy Framework to The Insights Association DPF Services Program, a non-profit alternative dispute resolution provider located in the United States and operated by the Insights Association. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://www.insightsassociation.org/Resources/Data-Privacy-Framework/Information-for-EU-Swiss-Citizens-to-file-a-complaint for more information and to file a complaint.

These dispute resolution services are provided at no cost to you.

Under certain limited conditions, individuals may invoke binding arbitration before the DPF Panel to be created by the U.S. Department of Commerce and the European Commission.

Changes to this Policy
Spring International, Ltd. will occasionally update this Privacy Policy. Please check periodically for changes. If you have any questions or concerns about this Privacy Policy, please email [email protected].