Privacy Notice
This Privacy Notice (“Notice”) applies to personal data QuantivRisk Inc. (“QuantivRisk,” “we,” “us,” or “our”) collects on its own behalf. For avoidance of doubt, QuantivRisk acts as the controller of personal data that we collect (a) through our website, and (b) directly from you when you enter into an agreement with us. Where we collect personal data on behalf of a third party – such as your insurance company, attorney, or automobile’s manufacturer –then the third party is the controller of such personal data and we encourage you to review their notice of privacy practices.
Data We Collect
How We Use Data
How We Share Data
Your Choices
How We Protect and Retain Data
Third-Party Applications/Websites
Changes To This Privacy Notice
Contact Information
Data We Collect
We collect data about you in different ways. For example, we collect data:
- Directly from you. This includes when you enroll in our services, transmit incident information to us, or contact us via our web form, email, or otherwise.
- Automatically. This includes through cookies, server logs, and other tools on our website.
- From other sources. This can include through your automobile’s manufacturer, your insurance company, publicly available sources, and other service providers.
The following are a few examples of our collection and use of data:
| Context | Examples of Personal data | Primary Purpose |
| Account Registration | We collect your name, contact, and payment information when you create an account to enroll in our services. We also collect data relating to the actions that you perform while logged in. | We use this information to perform our contract to deliver our services. We also use this information to provide account- related functionalities to users. Accounts can offer orderly maintenance of information such as telematics data, vehicle performance data, saved payment information, and incident history. |
| Client Information | We collect the name and contact information of our clients and their employees with whom we may interact. | We use this information to contact our clients and communicate with them about business activities such as projects, services, and billing. |
| Demographics | Depending on the configuration of your vehicle performance data and telematics data, we may collect personal data, such as your age, race, gender, or your region. | We use this information to provide comprehensive reports through our services. |
| Email Interactions | If you receive email from us, we use tools to capture when you open our message, click on links or banners in it, or otherwise engage with our site after receiving an email. | We use this information to understand how you engage with our messages. |
| Feedback/Support | If you provide feedback or contact us for support, we collect your name and email as well as other content that you send. | We use this information to receive and act upon feedback. |
| Geolocation Data | If you transmit GPS data to us as part of the vehicle performance data or telematics data, we will process your location as part of providing our services. | We use this information to inform our reports on your driving activity and any incidents that we are asked to analyze. |
| Job Applicants | If you apply for a job or provide us with your personal information for purposes of employment, we collect information needed to process your application. This may include your social security number and any information on your resume. Providing this information is required for employment. | In some contexts, we are required by law to collect data about applicants. We also have a business interest in using data to evaluate your application or consider you for other positions. |
| Mailing List | When you sign up for our mailing lists, we collect your contact information. | We have a business interest in sharing information about our products and services. |
| Partner Promotion | We collect data that you provide as part of co-branded promotions with other companies. | We use this information to fulfil our promotions. Note that many co-branded promotions involve the collection of information by us, and the other company identified in the promotion. Where data is jointly collected, your information may be submitted, or sent, to both companies. This privacy notice applies to our use of your data. You should review the privacy notice of the other company identified to understand their use of your data. |
| Surveys | We collect data you share through surveys. If a third-party offers a survey, the third party’s privacy notice also applies to the collection, use, and disclosure of your data. | We use this information to understand your opinions. |
| Telematics Data and Vehicle Performance Data | When you use our services, we collect data from your vehicle through telecommunication and informatics technologies. This can include data about your vehicle’s performance, location, your driving behavior, usage, connectivity, etc. | We use this information to inform our reports on your driving activity and any incidents that we are asked to analyze. |
| Use of Our Website | We use technology (e.g., a cookie or a pixel) to learn how you engage with our websites. This may include which links you click or what you type into our online forms. We may also track your IP address, the website that referred you to us, and data about your device. | We use this information to ensure that our website operates properly. We also use it to understand how you interact with our websites, gather analytics, improve our websites, and learn your preferences. We may also use this data to help detect and prevent fraud. Where required by law, we base the use of technologies upon consent. |
| Video Footage | If your vehicle collects video recordings that are shared with us we will process it as part of our services. | We have a business interest in processing data that informs our reports on your driving activity and any incidents that we are asked to analyze. |
How We Use Data
We also use data to:
- Complete transactions.
- Provide our services.
- Improve or create services and products.
- Conduct analytics.
- Connect with you (e.g., addressing your requests, inquiries, issues, or feedback).
- Market our products or services.
- Market the products or services of our business partners.
- Find and prevent malicious, deceptive, fraudulent, or illegal activity.
- Find and prevent security incidents.
- Enforce our policies and agreements.
- Debug, find, and fix errors that impair our website and services.
- Comply with legal or regulatory obligations.
- Establish or exercise our rights
- Defend against legal claims.
- Manage our relationships.
- For other reasons with your consent.
To the extent we store and use deidentified personal data, we will not try to reidentify the information, except to test our deidentification methods. If we share deidentified data we will obligate the recipient not to try to reidentify the data.
How We Share Data
In addition to the specific situations discussed elsewhere in this Notice we may share personal data in the following situations:
- Affiliates and Acquisitions. We may share data with our affiliates (e.g., parent company, sister companies, subsidiaries, joint ventures, or other companies under common control). If a company acquires or enters negotiations to acquire our company, business, or assets, we may share data with that company.
- Other Disclosures without Your Consent. We may share data to cooperate with law enforcement, participate in a legal process, or for legal compliance. We may share your data to establish or exercise our rights, to defend against legal claims, to investigate, prevent, or act on possible illegal activities, threats to safety of person or property, or a violation of our policies.
- Service Providers. We may share your data with service providers. Service providers may help us to run our website, conduct surveys, provide technical support, process payments, fulfill orders, and more.
- Professional Services. We may share personal data with our professional service providers, such as auditors or lawyers.
- Other Disclosures with Your Consent. We may share your data with third parties when you consent or direct us to. This may include your insurance company, legal representative, or other third party.
Some states require us to disclose whether the following categories of personal data are collected, shared with third parties for a “business purpose,” or “sold,” or transferred for “valuable consideration.” The table below indicates the categories of personal data we collect and transfer in a variety of contexts. In addition to the categories of third parties listed below, we may disclose any category of Personal Data to government entities where required by law, and to additional third parties (such as your insurance company) where you direct us to do so. We do not “sell” your personal data for money.
| Category of Personal Data | Disclosures for a Business Purpose |
| Identifiers – this may include things like name, alias, postal address, unique personal identifier, online identifier, email address, or account name. | Affiliates or subsidiaries.Business partners.Data analytics providers.Internet service providers.Operating systems and platforms.Other Service Providers.Payment processors and financial institutions.Professional services organizations, this may include auditors and law firms. |
| Government Issued Identification – this may include things like social security number, driver’s license number, or state issued identification number. | Affiliates or subsidiaries.Other Service Providers.Professional services organizations, this may include auditors and law firms. |
| Financial Information – this may include bank account number, credit card number, debit card number, and other financial information. | Affiliates or subsidiaries.Payment processors and financial institutions.Professional services organizations, this may include auditors and law firms. |
| Health Related Information – this may include medical information, mental or physical condition or treatment, or health insurance information. | Affiliates or subsidiaries.Professional services organizations, this may include auditors and law firms. |
| Characteristics of protected classifications – this may include age, sex, race, ethnicity, physical, or mental handicap, etc. | Affiliates or subsidiaries.Business partners.Other Service Providers.Professional services organizations, this may include auditors and law firms. |
| Commercial information – this may include information about products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. | Affiliates or subsidiaries.Business partners.Data analytics providers.Internet service providers.Operating systems and platforms.Other Service Providers.Payment processors and financial institutions.Professional services organizations, this may include auditors and law firms. |
| Internet or other electronic network activity information – this may include browsing history, search history, and information regarding an individual’s interaction with an internet website, app, or ad. | Affiliates or subsidiaries.Business partners.Data analytics providers.Internet service providers.Operating systems and platforms.Professional services organizations, this may include auditors and law firms. |
| Geolocation data – this could include precise or non-precise geolocation information. | Affiliates or subsidiaries.Business partners.Other Service Providers.Professional services organizations, this may include auditors and law firms. |
| Audio, electronic, visual, thermal, olfactory, or similar information | Affiliates or subsidiaries.Business partners.Other Service Providers.Professional services organizations, this may include auditors and law firms. |
| Inferences drawn from any of the information listed above | Affiliates or subsidiaries.Business partners.Data analytics providers.Operating systems and platforms.Other Service Providers.Professional services organizations, this may include auditors and law firms. |
| Additional categories of personal data described in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)) – this may include signature, physical characteristics, or description, insurance policy number. | Affiliates or subsidiaries.Business partners.Data analytics providers.Internet service providers.Operating systems and platforms.Other Service Providers.Payment processors and financial institutions.Professional services organizations, this may include auditors and law firms. |
Sensitive Information Disclosure. When we provide you with our services, we may collect precise geolocation through your vehicle’s telematics data, as well as your account log-in and password where you create an account with us. We may also collect your government identification number (such as a driver’s license number) when you apply for a job with us. We do not intentionally collect additional sensitive information, however, depending on what is provided through your vehicle performance data or your insurance company, we may receive information about your health, a driver’s license number or information contained on a driver’s license, race or ethnicity. We collect this data to process transactions, comply with laws, manage our business, or provide services. Note that we do not use such data for any purposes that are not identified within Cal. Civ. Code § 1798.121. We may transfer sensitive information to third parties when you instruct us to do so. When that occurs, third parties will use it for the purposes indicated in their privacy notices.
Your Choices
Some jurisdictions give you a right to make the following choices:
- Access. You may request access to your personal data or confirmation that we have data about you. In certain limited cases, you may ask to receive access to your data in a portable, machine-readable form.
- List of Third-Party Recipients. You may request a list of specific third parties to which we have disclosed personal information. Some states also allow you to obtain a list of the categories of third parties to which we have disclosed personal information. You can find that information in the table above under the “How We Share Data” section.
- Change. You can ask us to correct inaccurate or incomplete data by contacting us at the address below. We may keep historical data in our backup files as permitted by law.
- Deletion. You may ask us to delete your personal data. If required by law, we will grant such a request, but note that in many cases, we must keep your personal data to comply with legal obligations, resolve disputes, enforce agreements, or for other business purposes.
- Revocation Of Consent. Where we process your personal data based upon consent, you may revoke consent. Note, if you revoke consent for processing personal data, we may no longer be able to provide you with some types of services.
- California Shine the Light. If you are a California resident and would like more information on the categories of personal data (if any) we share with third parties or affiliates for those parties to use for direct marketing, submit a written request using the information in the Contact Information section.
Not all the rights above are absolute, and they do not apply in all circumstances. We may limit or deny a request because the law permits or requires us to. We will not discriminate against individuals who exercise a privacy right.
Submitting Requests
You may exercise the above rights by filling out a Data Subject Access Request. If you disagree with our denial of a request, you may appeal our decision by contacting us with the subject line “Appeal.”
We will require you to prove your identity when making most types of requests. We may verify your identity by phone or email. Depending on your request, we will ask for information such as your name, or information about your history with us, which includes data that would be shared by your vehicle. We may also ask you to send us a signed declaration confirming your identity.
In some circumstances, you may designate an authorized agent to exercise rights on your behalf. If you are an authorized agent, you must provide us with a signed letter giving you permission to act on the individual’s behalf.
How We Protect and Retain Data
No method of internet transmission or electronic storage is fully secure. While we use reasonable efforts to protect personal data, we cannot guarantee its security. If we are required to inform you about a security incident, we will do so electronically, in writing, or by phone, as the law permits.
Our services may allow you to create an account. You are responsible for selecting a unique and complex password and keeping it confidential. You are responsible for any access to or use of your account by someone who has obtained your password, whether or not you approved of such access or use. Notify us of unauthorized use of your password or account immediately.
We keep your personal data for only as long as necessary to fulfill the purposes in this Notice unless a longer retention period is required or permitted by law. This includes the purposes of satisfying legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the data. We also weigh the potential risk of harm from unauthorized use or disclosure of the data, the purposes for which we obtained the data and whether we can meet those purposes through other means, as well as applicable legal requirements.
Third-Party Applications/Websites
We may provide links to websites and other third-party content or services that we do not own or operate. We have no control over the privacy practices of websites or services we do not own. For details about such third parties’ privacy practices, see their privacy notices.
Changes To This Privacy Notice
We may change our Notice and privacy practices. New notices will be published on our website. If changes are material, the Notice that was in place when you submitted personal data to us will generally govern that data unless you consent to the new Notice. Our Notice shows “effective” and “last updated” dates below. The effective date is the date the current version took effect. The last updated date is the date the current version was last substantively changed.
Contact Information
If you have questions, comments, or complaints on our privacy practices, or if you need to access this Notice in a different form due to a disability, please contact us. We will try to address your requests and provide you with additional privacy-related information.
info@quantivrisk.com
Chief Information Security Officer
745 Fifth Avenue
Suite 500
New York, NY 10151
888.670.8041
Effective Date: 12/04/2025
Last Update: 10/31/2024