Your privacy and security is of utmost importance to OpenQ, Inc. (hereafter referred to as “OpenQ”, “the Company”, “we” or “us”). This Privacy Policy complements our Terms of Service (the “Terms of Service” or “Agreement”). Terms starting with a capital letter and not defined herein are defined in the Agreement. If you do not agree with this Privacy Policy or any part of it, you should not access this website or use our Services.

OpenQ, Inc. is an incorporated company established in Delaware. OpenQ processes personal data as a processor on behalf of our Licensees. All processing activities performed on this basis are framed in a lawful and secure way. If you pay by using a credit card, our service provider Stripe Inc. processes your payment information, and OpenQ does not have direct access to it.

OpenQ operates a Software-as-a-Service platform for End Users (who are typically business professionals working in Product and Research teams or business owners) to improve their user research processes, including – but not limited to – allowing End Users to recruit and schedule user research sessions or interviews (”Interview” or “Session”) with business professionals in other companies for the purposes (”Use Cases”) of user research and other similarly aligned activities. Examples of such Use Cases include, but are not limited to, user interviews, user research sessions, customer discovery interviews, customer development interviews, new product / service / concept testing, generative or ideation interviews, usability testing, market research interviews, focus-group sessions.

OpenQ may collect, use or otherwise process personal data relating to you if you are:

• a contact whose information is used for our B2B Database of business contact details as defined below (“Contact”);
• an authorized user of a OpenQ Licensee pursuant to our Terms of Service (“EndUser”);
• a visitor of our website and online services (“Visitor”).

This Privacy Policy outlines our practices with respect to processing personal data (“Data”). Please read it carefully so that you understand how we may, as applicable, collect, use, and process your Data.

We collect and process Data relating to OpenQ Contacts, End Users, and Visitors.

3.1. Information in OpenQ B2B Database (“Contact Data”)

OpenQ does not directly sell contact data about businesses or business professionals to its Licensees. Instead when an End User expresses interest in contacting a business professional for a supported Use Case, OpenQ uses its proprietary algorithms to identify a suitable contact information for the business professional (“Contactable Business Professional”) and reaches out to them directly. If the requested business professional is willing to take part in the Session, she / he is provided with a self-serve web-based tool to schedule the Session with the End User. We believe that this protects the privacy of both our End Users as well as the Contactable Business Professionals since the contact information of neither party is shared with the other until both parties have mutually agreed to meet and a Session has been scheduled.

We strongly respect the privacy preferences expressed by Contactable Business Professionals. Email communication sent to Contactable Business Professionals include an option to “Unsubscribe” from our mailing list. Contactable Business Professionals who unsubscribe from our mailing list are not contacted in future, even if another End User expresses an interest to contact them in future.

Although we do not directly sell contact information about businesses and business professionals, in order to improve the value we deliver to our End Users, we do collect and make available specific non-contact information about businesses and business professionals to Licensees and End Users. The information we provide is limited to what you would find on a business card or a business social network profile.

Our B2B Database relies on Data retrieved or derived from information from the following sources:

• Google and Microsoft: Where OpenQ End Users provide us access to their account, for the purposes of creating and modifying calendar invites , we obtain data using Google’s or Microsoft’s APIs.
• Zoom: When OpenQ End Users provide us access to their Zoom account, for the purposes of creating and modifying Zoom meetings, we obtain data using Zoom APIs.
• Our affiliates: We may receive contact details from affiliates, i.e. subsidiaries, parent companies, joint ventures, and other corporate entities under common ownership.
• Third parties: We may rely on business partners to collect Company and Contact Information. We use this information to ensure that the Data we use and/or share with Licensees is clean, relevant and of the highest standard.
• Publicly available sources: We may use proprietary algorithm to scans publicly available sources and retrieve public information about businesses and business professionals.

3.2. OpenQ End Users

We collect Data directly from OpenQ End Users where they interact with us, for example, when End Users create an account, using our Services, contact us via our website or support channels. The information provided or derived includes:

• name
• email address
• phone number
• mailing address
• location
• user activity
• any other information you provide us voluntarily when you communicate with us.

OpenQ Integrations

As part of the Services, we allow our Licensees to integrate OpenQ with certain business platforms (“Integrations”). In using OpenQ’s Integrations, Contact Data from End Users’ browser plug-in or other software may be transmitted to OpenQ to augment, match or cleanse a customer’s data against OpenQ’s B2B database. In this event, OpenQ may use such Contact Data to identify potential contacts to supplement the Service and retrieve such data from other sources, verifying the accuracy of Business Contacts, removing out-of-date Business Contacts from the Services, or otherwise improving OpenQ’s platform and the content provided by its Services.

Data collected by Payment partners

OpenQ does not collect or process your payment information directly; payment processing is done by trusted third-party service providers.

3.3. End Users and Visitors

We automatically collect information sent to us by your computer, mobile phone, or other access devices. This information includes:

• Your device information (for example, the type of browser and operating system your device uses, your language preference, your domain name, and the time you accessed the website)
• Your mobile network information
• Your IP address
• Alerts for troubleshooting errors and bugs

Where you are not logged into your account, this information is unidentified to you and we are not aware of the identity of the user from which this information is collected.

We may use information we collect in the ways and for the purposes described below in this section.

4.1. How we use the Contact Data Information.

We may use this data for several purposes, including, but not limited to:

• Compiling the OpenQ B2B Database
• Reaching out to Contactable Business Professionals for our Use Cases
• Enriching, updating, cross-checking and validating the OpenQ B2B Database
• Responding to your questions, support requests or feedback
• Providing, evaluating and improving the Service
• Detecting and preventing fraudulent and illegal activity, or any other type of activity that may jeopardize or negatively affect the integrity of the Services
• Responding to your requests regarding your Personal Data
• Investigating violations and enforcing our policies, and as required by law, regulation, or other governmental authority, or to comply with a subpoena or similar legal process, or respond to a government authority’s request
• Analyzing how the Service is used
• Administering and troubleshooting the Service
• Create new products, services and tools that we may use internally or offer to others, including Licensees and End Users.

4.2. How we use information about OpenQ End Users

We may use this data for several purposes, including, but not limited to:

• Enabling End Users to use the Service
• Enabling End Users to schedule calendar events, if you use our calendar integration functionality
• Enabling End Users to book Zoom meetings, if you use our Zoom integration functionality
• Registering, maintaining and managing your user account or membership with us
• Verifying your registration to the Services and approving your email address
• Communicating with you regarding the Licensee’s purchase, inquiries, support request, feedback, or questions
• Processing your order, including sending you any necessary emails related to the Licensee’s purchase of any paid Services
• Sending you updates, emails, newsletters, important announcements in relation to security, privacy, or the administration of our Services
• Personalizing our Services to ensure its content is presented in the most effective manner for you and your device
• Understanding or analyzing how you use our Services and how we might improve or change them
• Conducting troubleshooting, data analysis, testing, research, statistical and survey analysis
• Signing you up for our newsletters or alerts
• If you opted in to marketing, communicating with you about our latest updates, upgrades, and services
• Building and maintaining our End User and Licensee community
• Detecting and preventing fraudulent and illegal activity, or any other type of activity that may jeopardize or negatively affect the integrity of the Services
• Responding to your requests regarding your personal Data
• Investigating violations and enforcing our policies, and as required by law, regulation or other governmental authority, or to comply with a subpoena or similar legal process, or respond to a government authority’s request

4.3. How we use information about End Users and Visitors

We may use this data for several purposes, including, but not limited to:

• Conducting troubleshooting, data analysis, testing, research, statistical and survey analysis
• Ensuring our services are working properly

Additional Uses of Information.

We also may use the Service or Website Information to (1) to try to keep the Service safe, and to (2) investigate, prevent, or take action regarding unlawful or harmful activities, including potential threats to the physical safety of a person, potential fraud, and violations of our Terms of Service.

OpenQ’s use and transfer to any other app of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements. OpenQ’s use of the Microsoft API is subject to Microsoft’s privacy policies, you can edit your settings and revoke consents provided to Microsoft at any time by following the instructions in the following links: https://account.live.com/consent/Manage and/or https://myapps.microsoft.com.

We may share information with third parties in the ways and for the purposes described above.

• With End Users and Licensees: Once a Contactable Business Professional schedules a calendar invite with an End User, the contact information of that Contactable Business Professional is made available to the End User and may be visible to additional people in the corresponding Licensee’s organization. Further, other non-contact information stored in our B2B Database may be accessible to End Users and Licensees in the course of using the Service.
• Within OpenQ and it’s Payment Partner: We may share your information within OpenQ. To the extent permitted by law and taking into account the protection of your rights and freedoms with respect to the processing of your Data, and the consent you have given (if any), your Data will only be accessible by a limited and defined number of recipients within OpenQ (such as employees) or our Payment Partner. Please be assured that such access to your Data will be strictly on a “need to know” basis and will be subject to our internal privacy policy and an obligation of confidentiality.
• With service providers: Your Data will generally not be disclosed to recipients outside OpenQ or our Payment Partner. In some cases, however, OpenQ may use external service providers acting on its behalf under contracts that will include strict data protection obligations. In particular, we may provide your Data to service providers or suppliers as part of our normal business operations. Such service providers include (i) hosting services providers, (ii) data analytics providers, (iii) specialized data-processing providers, (iv) payment processors, and (v) security services providers.

As with many websites and web-based services, data about your activities on the Service may be collected by us or by advertising technology providers for use in delivering advertising (both online and offline) tailored to your individual characteristics, activities, interests and other factors. For instance, we may “retarget” you with ads for our Service when you visit our website.

These ad services may track your online activities over time by collecting information through automated means, including through the use of the automated technologies described above, and they may use this information, and other information they receive from us or other sources, to deliver advertisements to you. We and third-party vendors may use first-party cookies and third-party cookies together, and other automated technologies, and in some cases additional information, (i) to inform, optimize, and serve ads based on past visits to the Service or other factors and (ii) to report how ad impressions, other uses of ad services, and interactions with these ad impressions and ad services are related to visits to the Service or other factors.

You may visit the Network Advertising Initiative’s Consumer Opt-Out page or the Digital Advertising Alliance’s Consumer Opt-Out page to opt out of receiving tailored advertising from many companies involved in that type of advertising – for instance, ads based on your Internet browsing activities. The opt-outs apply only to the browser in which you set them. For example, if you set the opt-out while using Firefox, but then use Chrome, the opt-out will not be active in Chrome. To opt out in Chrome, you will need to repeat the opt-out process.

The opt-outs described in this Privacy Policy do not block or delete cookies, or prevent the use of cookies or other technologies for purposes other than selecting ads based on your interests as inferred by your online behavior. If you opt out, data may still be collected about your web browsing activities and you will still see advertising. Ads may be delivered based on other factors, such as the content of the web page in which they are shown, or demographic information obtained through other means.

OpenQ is hosted in the United States, but in future may be hosted in other countries based on business needs. As such, your Personal Information may be stored and processed in any country where we have facilities or in which we engage service providers, and by using the Service you consent to the transfer of information to countries outside of your country of residence, including the United States, which may have data protection rules that are different from those of your country. In certain circumstances, courts, law enforcement agencies, regulatory agencies or security authorities in those other countries may be entitled to access your Personal Information.

We understand the importance of the security of the information we collect and / or you provide, but we cannot promise that our security measures will eliminate all security risks or avoid any security breaches. We cannot guarantee the security of any information that you transmit to us, or receive from us. When you provide information to us, you do so at your own risk. Although we take measures to safeguard against unauthorized disclosures of information, we cannot assure you that Personal Information that we collect will not be disclosed in a manner that is inconsistent with this Privacy Policy.

Licensees and End Users can help to do their part by taking steps such as (1) using a strong, unique password for the Service that is not used elsewhere, (2) protecting the confidentiality of the password, and periodically changing it, (3) accessing the Service only from devices that have an up-to-date operating system and anti-virus protection, and (4) notifying us of any suspected unauthorized activity or any breach of the confidentiality of login credentials. Taking these steps may help lower the risk or impact of certain security threats.

The Services are not directed to individuals who are under the age of sixteen (16) and we do not solicit nor knowingly collect Personal Information from children under the age of sixteen (16). If you believe that we have unknowingly collected any Personal Information from someone under the age of sixteen (16), please contact us immediately at legal@openq.co and we will delete the information.

The Service may contain links to – or even reside on -- third-party websites and services that are not owned or controlled by OpenQ. The Services may sometimes makes available embedded links or content from such services, such as for promotions or information hosted by a third-party website. We do not have any control over those websites or services. We are not responsible for or liable for the protection and privacy of any information which you provide whilst visiting such websites or services, and such websites or services are not governed by this Privacy Policy.

OpenQ adheres to the regulatory standards set forth by the European Union (EU) data protection laws, including the General Data Protection Regulation (GDPR), ensuring the meticulous handling and safeguarding of personal data of individuals residing within the European Economic Area (EEA), Switzerland, or the United Kingdom.

Legal Basis for Processing Personal Data:

• Contractual Necessity: We process personal data as needed to fulfill our contractual obligations to our clients, encompassing the provision of the OpenQ platform and services.
• Legitimate Interests: We process personal data in accordance with our legitimate interests which include, but are not limited to, improving and optimizing our platform, enhancing user experience, ensuring the security of our services, and for marketing endeavors.
• Consent: There are circumstances where we process personal data based on the explicit consent provided by individuals, which may be retracted at any time.
• Legal Compliance: We may process personal data to comply with legal mandates, resolve disputes, and enforce our contractual agreements.

To seek clarification or ask questions regarding the legal bases we rely upon for processing your personal data, please email us at privacy@openq.co.

Data Subject Rights under EU Data Protection Law: Residents of European Territories are entitled to certain rights concerning their personal data under EU data protection law. These rights include:

• Right to Access: You have the right to request access to your personal data being processed by OpenQ.
• Right to Rectification: You have the right to request the correction of any inaccurate personal data.
• Right to Erasure (‘Right to be Forgotten’): You have the right to request the deletion of personal data, subject to certain conditions.
• Right to Restriction of Processing: You have the right to request a limitation on the processing of your personal data.
• Right to Object: You have the right to object to the processing of your personal data for legitimate reasons.
• Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority should you believe the processing of your personal data infringes EU data protection laws. Please contact us at privacy@openq.co with any questions you may have and before making a complaint so that we may answer any questions you have and attempt to resolve the basis for your complaint.

To exercise any of these rights, or if you have any inquiries or requests regarding your personal data, please contact us at privacy@openq.co for more information.

If in certain cases, we act as a processor on behalf of our Users (for instance, when communicating with research participants on behalf of our Users).In cases where we act as a processor, you should direct your requests to exercise data protection rights to the relevant User of our Service, not to us. If you are uncertain whether we process your personal data as a controller or a processor in any specific context, please contact us at privacy@openq.co for more information.

This Privacy Policy may be modified from time to time as the Services we offer, business practices and legal requirements evolve. If we make material changes to this Privacy Policy, we will provide notice of the change by posting the updated Privacy Policy on this website (or its successor) and/or by sending notice to the primary email address specified in your account. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page. You acknowledge that your continued use of our Services after we publish or send a notice about our changes to this Privacy Policy means that the collection, use and sharing of your information is subject to the updated Privacy Policy. If you disagree with the Privacy Policy or any changes to it, If you should not access this website or use our Services.

If you have any additional questions our privacy practices, please feel free to contact us at  privacy@openq.co or legal@openq.co. In addition, if you have questions or concerns regarding our Terms, you should contact us by email at support@openq.co.