Data Security and Privacy
At Pinsight, we take data protection and privacy very seriously. When we collect and process data, we protect it. Pinsight complies with the GDPR and CCPA privacy laws, as well as security and privacy standards such as ISO27001 and Privacy Shield. Below you can find more information on these privacy standards as well as our security and privacy policies.
Committed to Privacy
“We believe that people have the right to know how their data is processed and stored. To protect the data of our partners, clients, and customers, we invest in best-of-class cybersecurity policies and procedures. These include ISO27001, GDPR, and Privacy Shield.”
Martin Lanik
Leadership Team
“I believe security is an organizational effort, and I am proud to work with team members that take it as seriously as I do. Everyone within the Pinsight organization has bought into the ISMS and we are constantly working together to make improvements. We mean it when we say – we take your privacy and security very seriously.”
Brad Sather
Leadership Team
Our Policies
Security Policy
Click the link below to view our Pinsight’s full Security Policy.
Privacy Policy
Click the link below to view our Pinsight’s full Privacy Policy.
General Data Protection Regulation (GDPR)
The General Data Protection Regulation (GDPR) came into effect May 25, 2018 and was mandated by the “Council of the European Union” and “European Parliament”. The GDPR expands the privacy rights of residents of the European Union and places new obligations on service providers who control and process personal data from EU Residents.
Inquiries regarding our GDPR compliance should be directed to our Data Protection Officer: dpo@pinsight.com
Information Security Management System (ISMS)
To demonstrate commitment and compliance to data protection Pinsight undergoes regular assessments from third parties for ISO27001 compliance.
Privacy Shield Certified
Pinsight complies with the EU-U.S. Privacy Shield Framework and Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland to the United States. Pinsight has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit the links below:
Privacy Shield program overview
In compliance with the Privacy Shield Principles, Pinsight commits to resolve complaints about our collection or use of your personal information. EU and Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Pinsight at: 2301 Blake St, Denver, CO 80205 or at (800) 423-8295.
Pinsight has further committed to refer unresolved Privacy Shield complaints to American Arbitration Association, an alternative dispute resolution provider located in the [United States]. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please visit the American Arbitration Association website for more information or to file a complaint. The services of American Arbitration Association are provided at no cost to you. Pinsight commits to cooperate with EU data protection authorities (DPAs) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) and comply with the advice given by such authorities with regard to human resources data transferred from the EU and Switzerland in the context of the employment relationship. Pinsight is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC) the possibility, under certain conditions, for the individual to invoke binding arbitration.
