1. Introduction and Scope
Veritas ScopeStory LLC ("Company," "we," "our," "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, engage our public relations and strategic communications services, or interact with us in any other way. This policy applies to all users, clients, website visitors, journalists, media partners, and individuals whose information we may process.
2. Information We Collect
Personal Identification Information: Name, email address, phone number, mailing address, company name, job title, billing information (payment card details, bank account information), tax identification number, and government-issued identification where required for compliance.
Professional Information: Company affiliation, industry sector, media preferences, campaign goals, brand assets, press materials, crisis history, and communications records.
Technical Data: IP address, browser type and version, time zone setting, browser plug-in types, operating system, device identifiers, and platform information.
Usage Data: Pages visited, time spent on pages, click patterns, search queries, referral URLs, and interaction with our communications.
Marketing and Communications Data: Preferences for receiving marketing from us, communication history, and feedback provided.
Sensitive Data: We do not intentionally collect sensitive data (e.g., health information, racial or ethnic origin, political opinions, religious beliefs, or biometric data). If such information becomes necessary, we will obtain explicit consent.
3. How We Collect Information
Direct Interactions: You provide information when you fill out contact forms, request proposals, sign service agreements, subscribe to newsletters, or communicate with us via phone, email, or chat.
Automated Technologies: As you interact with our website, we automatically collect technical and usage data using cookies, server logs, web beacons, and similar technologies.
Third-Party Sources: We may receive information about you from business partners, media databases (including Cision, Muck Rack, and similar platforms), credit reference agencies, payment processors, and publicly available sources.
4. Use of Your Information
We use your information for the following lawful purposes:
- Service Delivery: To provide, operate, and manage our public relations, media placement, crisis management, and strategic communications services.
- Client Management: To process payments, manage accounts, communicate about campaigns, and provide customer support.
- Marketing: To send newsletters, case studies, industry insights, and service updates (with opt-out rights).
- Legal Compliance: To comply with applicable laws, regulations, court orders, and government requests.
- Security and Fraud Prevention: To detect, investigate, and prevent fraudulent transactions, security incidents, and other malicious activities.
- Improvement: To analyze usage patterns, troubleshoot issues, and enhance our website and service quality.
5. Cookies and Tracking Technologies
We use cookies (small text files stored on your device) to enhance user experience, analyze website traffic, and personalize content. Types of cookies we use:
- Essential Cookies: Required for basic website functionality (e.g., navigation, form submissions). Cannot be disabled.
- Analytical Cookies: Help us understand how visitors interact with our website using tools like Google Analytics.
- Functional Cookies: Remember your preferences and settings for a better experience.
- Marketing Cookies: Track browsing activity to deliver relevant advertisements and measure campaign effectiveness.
You can manage cookie preferences through your browser settings. However, disabling essential cookies may impact website functionality. For more information, visit www.allaboutcookies.org.
6. Sharing and Disclosure of Information
We do not sell your personal information. We may share your data in the following circumstances:
- Service Providers: Trusted third parties who assist with payment processing (Stripe, PayPal), email delivery (SendGrid, Mailchimp), analytics (Google Analytics), CRM (Salesforce, HubSpot), hosting (AWS, DigitalOcean), and media buying platforms. All service providers are bound by confidentiality agreements.
- Professional Advisors: Attorneys, accountants, auditors, and insurers as necessary for legitimate business purposes.
- Legal Obligations: When required by law, subpoena, court order, or governmental regulation.
- Business Transfers: In connection with a merger, acquisition, reorganization, bankruptcy, or sale of assets (you will be notified via email and website notice).
- With Your Consent: For any other purpose disclosed to you and with your explicit permission.
Important Notice: Veritas ScopeStory does not sell, rent, or trade your personal information to third parties for their marketing purposes. We only share data as necessary to provide our services or comply with legal obligations.
7. International Data Transfers
Your information may be transferred to, stored, and processed in the United States or other countries where we or our service providers operate. These countries may have data protection laws different from your jurisdiction. When transferring data from the European Economic Area (EEA), Switzerland, or the United Kingdom, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission. By using our Services, you consent to such transfers.
8. Data Security Measures
We implement industry-standard administrative, technical, and physical safeguards to protect your information, including:
- Encryption of data in transit using TLS/SSL protocols.
- Encryption of sensitive data at rest using AES-256.
- Regular security assessments and vulnerability scanning.
- Access controls limiting employee access to data on a need-to-know basis.
- Two-factor authentication for system access.
- Regular employee privacy and security training.
- Incident response and breach notification procedures.
However, no method of transmission over the Internet or electronic storage is 100 percent secure. While we strive to protect your data, we cannot guarantee absolute security.
9. Data Retention Policy
We retain personal information only as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Retention periods are determined based on:
- The duration of our ongoing relationship with you.
- Legal obligations (e.g., tax, accounting, anti-fraud laws typically require 7 years).
- Statute of limitations for potential legal claims.
- Business operational needs and legitimate interests.
Client records and service-related data are generally retained for seven years after the last engagement. Website analytics data is retained for twenty-six months. Marketing data is retained until you unsubscribe or request deletion.
10. Your Privacy Rights
Depending on your location, you may have the following rights regarding your personal data:
- Access: Request a copy of personal data we hold about you.
- Correction: Request correction of inaccurate or incomplete information.
- Deletion: Request deletion of your personal data (subject to legal exceptions).
- Restriction: Request restriction of processing in certain circumstances.
- Portability: Request transfer of your data to another controller in a structured, machine-readable format.
- Objection: Object to processing based on legitimate interests or direct marketing.
- Withdraw Consent: Withdraw previously given consent at any time.
To exercise these rights, contact us at privacy@veritascope.org. We will respond within thirty days. Verification of identity may be required.
11. GDPR Rights (EEA, UK and Swiss Residents)
Under the General Data Protection Regulation (GDPR), residents of the European Economic Area, United Kingdom, and Switzerland have specific rights. Our legal bases for processing your data include:
- Performance of a contract with you.
- Compliance with legal obligations.
- Our legitimate interests (e.g., fraud prevention, direct marketing, service improvement).
- Your consent.
Right to Lodge a Complaint: You have the right to lodge a complaint with your local Data Protection Authority (DPA) if you believe our processing of your personal data violates applicable law. To submit a GDPR request, contact our Data Protection Officer at dpo@veritascope.org.
12. CCPA Rights (California Residents)
If you are a California resident, the California Consumer Privacy Act (CCPA) grants you additional rights:
- Right to Know: Request disclosure of categories and specific pieces of personal information collected, sources, business purposes, and third parties with whom we share data.
- Right to Delete: Request deletion of personal information, subject to exceptions (e.g., completing transactions, security, legal compliance).
- Right to Opt-Out: We do not sell personal information, so no opt-out is required.
- Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.
- Right to Correct: Request correction of inaccurate personal information.
- Right to Limit Use: Request limitation of use of sensitive personal information.
California residents may exercise these rights by emailing privacy@veritascope.org. Authorized agents may submit requests with written authorization. We respond to verified requests within forty-five days.
13. Children's Privacy
Our Services are not directed to individuals under the age of eighteen. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us immediately, and we will take steps to delete such information. Parents or guardians who believe their child has submitted personal information should contact us at privacy@veritascope.org.
14. Third-Party Links and Services
Our website may contain links to external websites, plugins, or applications. Clicking those links may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy practices. We encourage you to review the privacy policies of any external sites you visit. This Privacy Policy applies only to information collected by Veritas ScopeStory.
15. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other operational needs. Material changes will be notified via:
- Email to the address associated with your account (at least fifteen days prior to effective date).
- A prominent notice on our website homepage.
The "Last Updated" date at the top of this policy indicates when changes were made. Your continued use of our Services after the effective date constitutes acceptance of the revised Privacy Policy. If you do not agree to the revised policy, you should stop using our Services.
16. Contact Information
For privacy-related inquiries, to exercise your rights, or to report a privacy concern:
Data Protection Officer (DPO): Legal Compliance Department
Veritas ScopeStory LLC
511 Edgewood Dr, Columbus, MS 39701
Email (Privacy): privacy@veritascope.org
Email (DPO): dpo@veritascope.org
Phone: +1 601 347 4836
Mail: Attn: Privacy Officer
Complaint Lodging: If you are unsatisfied with our response, you have the right to lodge a complaint with your local supervisory authority or the Mississippi Attorney General's Office.