INFORMATION WE GATHER
KwoteAdvisor.com gathers information for the purpose of matching individuals with service or product needs with suppliers. We recognize that your information is sensitive and restrict our collection of it to the critical data needed to deliver our service. Your information may be shared with our affiliates and up to 5 suppliers that match your needs.
|Full name, email address, telephone number||Allow us, our affiliates, and partners to contact you|
|Business/Home address, city, and state||Determine if we have suppliers in your area. Allows us to connect you with local providers.|
|Product or Service Needs||Connecting you with companies that can solve your problem/meet your needs.|
|Addittional Information||Finding a business for services/product|
|Company Name (if applicable)||Allow us, our affiliates, and partners to contact you|
|Additional Comments||Allow you to share additional details that you may find important|
Visiting our Site
As a visitor to our site, you can browse our pages without having any personally identifiable information revealed about you. We may also track the effectiveness of various promotions through the use of data collection devices known as “cookies.” A “cookie” is a piece of data stored on the user’s computer tied to information about the user. Usage of a cookie is in no way linked to any personally identifiable information while on our site. We use both session ID cookies and persistent cookies. For the session ID cookie, once users close the browser, the cookie simply terminates.
Like most standard Web site servers, we use log files. This includes internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, platform type, date/time stamp, and number of clicks to analyze trends, administer the site, track user’s movement in the aggregate, and gather broad demographic information for aggregate use. IP addresses, etc. are not linked to personally identifiable information.
Submitting a Quote Request
As a buyer using our Quote Requests service, you need to provide additional information so KwoteAdvisor.com can deliver our Quote Requests service to you. This includes contact information, basic info and your purchasing requirements. The information collected varies according to the different products and services and can be viewed by visiting the different Quote Request forms located throughout our site.
Any credit card information we receive is stored securely via encryption and an SSL connection; our security measures are reviewed later in this document.
HOW WE USE THE INFORMATION
KwoteAdvisor.com primarily uses the information gathered to put buyers and sellers into contact with one another so they can form a mutually beneficial relationship and to improve your user experience on our site.
Buyers or suppliers who utilize our Quote Requests service receive emails from KwoteAdvisor.com to facilitate the transaction. You cannot opt-out of emails that are necessary to provide our services. By using KwoteAdvisor.com’s Quote Requests service and accepting our Terms and Conditions, you agree that we may use your personal information to contact you and deliver information to you related to your specific Quote Request(s).
In our ongoing effort to improve the content and services we offer, we continually analyze the information we receive to identify trends and patterns in user behavior. Your personal information, when used in such a manner, is aggregated with others to amass enough data for such analysis and is not personally identifiable. It is used to make our site and user experience better for users.
KwoteAdvisor.com reserves the right to send you email communications related to your Quote Requests and the status of your account. In addition, KwoteAdvisor.com sends periodic surveys and other communications, all of which you can opt-out of receiving by changing your notification preferences as described below.
HOW WE SHARE YOUR INFORMATION WITH OTHERS
Our customer information is an important part of our business. As a result, we limit the disclosure of this information to the information necessary to provide our service of matching buyers and suppliers. Our sharing of information to outside parties is described below.
A small set of suppliers will be provided with your information submitted as a part of a Quote Request so the buyer’s purchasing needs may be fulfilled. By filling out the Quote Request form, you are giving KwoteAdvisor.com permission to share your contact information with partners and suppliers for the purpose of marketing and advertising their services to you, using the contact information you provide. This may include but is not limited to email, and phone calls including automated call technology, postal mail, or SMS messages.
KwoteAdvisor.com has established partnerships to provide our Quote Requests service more broadly throughout the Internet to both buyers and suppliers. When a user has utilized these services through an affiliate, we will share information about these users to the affiliate as necessary. This information is typically reported in an aggregated format.
Your information is stored on servers that are protected against unauthorized access through the use of safeguards such as “firewalls,” encryption and Secure Socket Layers. We utilize many security techniques to protect your personal information. However, it is impossible to guarantee a perfect security system.
This site may contain links to other sites. KwoteAdvisor.com is not responsible for the privacy practices or the content of other websites. We encourage you, upon your first visit to another website, to read any privacy statements they may have concerning your personal information.
NOTIFICATION OF CHANGE
We put here information for residents of California to provide you with more information about legislation and your privacy rights granted by the California Customer Privacy Act (CCPA) and California Privacy Rights Act.
Opt-out of disclosure for direct marketing purposes.
The California laws allow its residents to learn the identities of entities that received their personal data for marketing purposes and the categories of information disclosed. You may request such information by contacting us by e-mail at email@example.com
Please be aware that this opt-out does not prohibit our disclosure of personal data for any purpose other than direct marketing. The data we process and share may include your name, address, email address, and telephone number.
Automatic gathering of information.
We collect data that you provide to us online, and through websites of unaffiliated third parties.
Automatic gathering of information by third parties.
When you visit our websites, third parties can collect personal data about your online activities over time and across different websites pertaining to your visit to or use of our and other websites.
A business shall not sell the personal information of customers if the business has actual knowledge the customer is less than 16, unless the customer, in the case of customers at least 13 and less than 16, or the customer’s parent or guardian, in the case of customers who are less than 13, has affirmatively authorized the sale of the customer’s personal information. A business that willfully disregards the customer’s age shall be deemed to have had actual knowledge of the customer’s age. This right may be referred to as the “right to opt-in.” A business that has not received consent to sell the minor customer’s personal information shall be prohibited from selling the personal information unless the customer subsequently provides express authorization.
California residents visiting our websites may request that we do not automatically gather and track information pertaining to their online browsing movements across the Internet. Such requests are typically made through web browser settings that control signals or other mechanisms that provide customers the ability to exercise choice regarding the collection of personal data about an individual customer’s online activities over time and across third-party websites or online services. We currently do not have the ability to honor these requests. We may modify this Notice as our abilities change.
California residents’ data protection rights.
The California Consumer Privacy Act (“CCPA”) and California Privacy Rights Act provide our users who are California residents the following additional rights:
Right to Know:
You have the right to request that we disclose certain information to you about the personal data we collected, used, disclosed, and sold about you in the past 12 months. This includes a request to know any or all of the following:
- The categories of personal information collected about you;
- The categories of sources from which we collected your personal information;
- The categories of personal information that we have sold or disclosed about you for a business purpose;
- The categories of third parties to whom your personal information was sold or disclosed for a business purpose;
- Our business or commercial purpose for collecting or selling your personal information;
- The specific pieces of personal information we have collected about you.
You have the right to request a copy of personal information we have collected and maintained about you in the past 12 months.
Right to Deletion:
You have the right to request that we delete the personal information we collected from you and maintained, subject to certain exceptions. Please note that if you request the deletion of your personal information, we may deny your request or may retain certain elements of your personal information if it is necessary for us or our service providers to:
- Complete the transaction for which the personal information was collected, provide a good or service requested by you, or reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform a contract between our business and you.
- Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity; or prosecute those responsible for that activity.
- Debug to identify and repair errors that impair existing intended functionality.
- Exercise free speech, ensure the right of another consumer to exercise his or her right of free speech, or exercise another right provided for by law.
- Comply with the California Electronic Communications Privacy Act pursuant to Chapter 3.6 (commencing with Section 1546) of Title 12 of Part 2 of the Penal Code.
- Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the deletion of the information is likely to render impossible or seriously impair the achievement of such research, if you have provided informed consent.
- To enable solely internal uses that are reasonably aligned with your expectations based on your relationship with us.
- Comply with a legal obligation.
- Otherwise use the personal information, internally, in a lawful manner that is compatible with the context in which you provided the information.
Right to Opt-Out/In:
You have the right to opt-out of the sale of your personal information. You also have the right to opt-in to the sale of personal information. However, we do not sell your personal information.
Right to Non-Discrimination:
You have the right not to receive discriminatory treatment by us for the exercise of your CCPA privacy rights. Unless permitted by the CCPA, we will not:
- Deny you goods or services.
- Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties.
- Provide you with a different level or quality of goods or services.
- Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.
- You can exercise these rights at any time by contacting us via email at firstname.lastname@example.org
Notice, the CCPA envisages some specific requirements related to the exercising of these data protection rights. Considering them we may:
- respond to your request within forty-five (45) days of receiving the request;
- provide you with personal information we collected about you no more than twice in a 12-months period (categories and specific pieces of collected personal information, business purpose and sources of collection, categories of third parties personal information is shared with);
- NOT provide you with personal information if we cannot verify your identity. You shall provide us with sufficient information allowing us to verify you as the person about whom we collected personal information. However, we do consider requests made through your Account sufficiently verified.
- NOT transmit your personal information to another entity.
Also, please be aware that we are allowed to maintain personal information after deletion requests are received as permitted by the CCPA (for instance, for the purposes of detection of security incidents, repair errors, compliance with legal obligations, and transaction completion).
We will not discriminate against you if you choose to exercise your rights under the CCPA. We are accessible to customers with disabilities. Users with disabilities may also contact us by email to request an alternative format of this Privacy Notice.
We put here information for residents of Virginia to provide you with more information about legislation and your privacy rights granted by the Virginia’s Customer Data Protection Act.
The VCDPA obliges some businesses to give consumers the ability to access and control personal data that the business collects about them.
Controllers and processors that comply with the verifiable parental consent requirements of COPPA shall be deemed compliant with any obligation to obtain parental consent under the CDPA.
A known child’s parent or legal guardian may invoke customer rights on behalf of the child regarding processing personal data belonging to the known child.
A controller cannot process personal data in violation of state and federal customer anti-discrimination laws or discriminate against a customer for exercising rights under the CDPA
Controllers are required to establish and describe in a privacy notice one or more secure and reliable means for customers to submit a request to exercise their rights. The method used needs to consider how customers normally interact with the controller, the need for secure and reliable communication of such requests, and the ability of the controller to authenticate the requests.
Controllers are prohibited from requiring a customer to create a new account in order to exercise their customer rights but may require a customer to use an existing account.
Controllers are required to respond to customer requests within 45 days. This time period may be extended once by 45 additional days if certain requirements are met.
No charge for information.
Controllers are required to provide information in response to a customer request free of charge, up to twice annually per customer. The controller may charge the customer a reasonable fee or decline to act on the request if requests are manifestly unfounded, excessive or repetitive, but the burden of demonstrating the manifestly unfounded, excessive or repetitive nature of the request is on the controller.
Right to opt out.
Virginia residents visiting our websites may request to Opt-Out of targeted advertising, the sale of personal data or profiling. Virginia laws allow its residents to learn the identities of entities that received their personal data for marketing purposes and the categories of information disclosed. You may request such information by contacting us by e-mail email@example.com
We put here information for residents of Colorado to provide you with more information about legislation and your privacy rights granted by Colorado Privacy Act.
A controller shall not process the personal data of a known child without first obtaining consent from the child’s parent or lawful guardian
Customers may exercise their rights by submitting a request using a method specified by the controller in the required privacy notice. The method must take into account:
- the ways in which customers normally interact with the controller;
- the need for secure and reliable communication relating to the request; and
- the ability of the controller to authenticate the identity of the customer making the request.
Controllers shall not require a customer to create a new account in order to exercise customer rights. However, a controller may require a customer to use an existing account.
In short: 45 days to respond. Controller shall inform a customer of any action taken on a request within 45 days. In certain circumstances, this 45-day window to respond may be extended by an additional 45 days.
No charge for information.
Controllers are required to provide the information requested free of charge once per year. For additional requests within a 12-month period, the controller may charge an additional amount.
Justification for failure to act.
If a controller does not take action as requested by a customer, the controller shall inform the customer within 45 days after receipt of request of the reasons for not taking action and instructions for how to appeal the decision.
Denial of requests.
Controller is not required to comply with a request to exercise any of the customer’s rights if the controller is unable to authenticate the request using commercially reasonable efforts and may request the provision of additional information reasonably necessary to authenticate the request.
Right to appeal.
Controller shall establish an internal process whereby customers may appeal a refusal to take action on a customer request. Where a customer wishes to appeal, they must do so within a reasonable time period after the controller notifies them that the controller is denying the request. The appeal process must be conspicuously available and easy to use.
Responding to an appeal.
Controller shall inform the customer of the result of the appeal as well as provide written explanation of the reasons in support of the outcome within 45 days of receipt of the appeal. This 45-day period may be extended by an additional 60 in certain circumstances.
We put here information for residents of Delaware to provide you with more information about legislation and your privacy rights granted by the Delaware Online Privacy and Protection Act.
Advertising to children.
DOPPA regulates operators only as far as they provide services or platforms that are targeted or intended to reach an audience that is composed predominantly of children. However, this does not include services or platforms that merely refer or link to another service or platform that is directed at children.
Operators can also be liable under DOPPA if, despite not directing their services or platforms to children, they have actual knowledge that children are accessing the services or platforms. In such an event, an operator cannot knowingly use, disclose, or compile the personal information of that child, nor can an operator allow another to do the same. An operator that provides a covered service or platform cannot advertise or market content that is inappropriate for children. In this regard, DOPPA provides an enumerated list of prohibited content, including alcohol, tobacco, firearms, fireworks, tanning equipment and facilities, lotteries and gambling, tattoos, drug paraphernalia, and pornography. It should be noted that an operator need not monitor the foregoing if it is using an advertising service and it ensures that such service is complying with DOPPA.
Delaware residents visiting our websites may request that we do not automatically gather and track information pertaining to their online browsing movements across the Internet. Such requests are typically made through web browser settings that control signals or other mechanisms that provide customers the ability to exercise choice regarding the collection of personal information about an individual customer’s online activities over time and across third-party websites or online services. We currently do not have the ability to honor these requests. We may modify this Notice as our abilities change.
We put here information for residents of Nevada to provide you with more information about legislation and your privacy rights granted by Nevada privacy law Senate Bill 220.
Opt-out of the sale.
Nevada allows consumers to opt-out of the sale of “covered information” collected through a website or online service. Under the law, “covered information” includes:
- A first and last name.
- A home or other physical address, which includes the name of a street and the name of a city or town.
- An electronic mail (email) address.
- A telephone number.
- A social security number.
- An identifier that allows a specific person to be contacted either physically or online.
- Any other information concerning a person collected from the person through the operator’s Internet website or online service and maintained by the operator in combination with an identifier in a form that makes the information personally identifiable.
Nevada does not require entities to include a “Do Not Sell My personal data” button or link on their websites. Instead, it mandates that entities provide consumers with an email address, a toll-free telephone number, or an Internet website to submit verified opt-out requests.
Upon receiving a “verified consumer request” a business has 45-days, with a possible 90-day extension when “reasonably necessary” and by providing notice to the consumer, for a total of 135 days
This Privacy Notice is created and governed by applicable privacy laws. We have also referred to legislation in individual states that have not yet been enacted or has not yet entered into force to indicate your rights. You can see a list of these laws here:
- state of California — California Consumer Privacy Act and California Privacy Rights Act;
- state of Virginia — Consumer Data Protection Act;
- state of Ohio — Ohio Personal Privacy Act*;
- state of Colorado — Protect Personal Data Privacy;
- state of Nevada — Nevada Privacy Law;
- state of Massachusetts — Massachusetts Information Privacy Act*;
- state of Minnesota — Minnesota Consumer Data Privacy Act*;
- state of New York — New York Privacy Act*, Digital Fairness Act*;
- state of North Carolina — Consumer Privacy Act*;
- state of Pennsylvania — Pennsylvania House Bill 1126*;
- state of Delaware — Online and Personal Privacy Protection;
- Canada — Personal data Protection and Electronic Documents Act 2000 and Canada’s Anti-Spam Legislation.
* — pending bills.