Last Updated: February 10, 2021

What This Policy Covers

This Privacy Policy applies to information that we collect about you when you use:

  • Our website (the “Website”)
  • Our software, including its component applications and dashboard (the “Solutions”)

The Website and Solutions may be referred to collectively as “Services.”

This Privacy Policy does not apply to Solutions that have a separate privacy policy.

If we update this Privacy Policy we will post a new version of the policy on this website and indicate the new effective date.

Information We Collect

We collect information in two ways:

  • If and when you provide information to us.
  • Automatically through your use of our Services.

Information You Provide To Us

Website: When you ask that we contact you or request a demo, we collect your name, email address, and organization name, and any information you choose to enter as a note.

Solutions: When you are registered to use Solutions we collect your name, organization name, and email address. We will verify that your email address is active and correct. Unless your account is managed by an organization’s Identity Provider (i.e., via Single Sign On), we will also collect and store the password you create for your account. Your password is stored in an encrypted form. We have no means to unencrypt your password. If you submit support requests via email, we will also collect the information you provide about the problem requiring support.

When you use the Solutions, we collect any information that you enter into the Solutions, as explained below.

Information We Collect Automatically

Services: We collect information that web browsers, mobile devices, and servers typically make available, such as the browser type, IP address, inferred location, device identifiers, language preference, referring site, the date and time of access, operating system, and mobile network information. For example, we use Google Analytics to track pages visited, time on site, information requested, referrers, and other standard web traffic behaviors. None of this information is identifiable to you.  Services are not currently setup to respond to “Do Not Track” signals.

Solutions: In addition to general Website information, we collect identifiable information about your use of individual Solutions for billing purposes (e.g. which Solutions you used and when you used them).

In addition, we collect the information you choose to enter while using Solutions (“Solution Data”).

For Solutions to function, Solution Data is stored during the session. For example, Solution Data is necessary so that: (a) an answer entered on the first page of Solutions can appear on or be used to determine the content of subsequent pages; and (b) you can navigate backward and forward through the Solutions.  Solution Data is encrypted at all times.

Information from Cookies & Other Technologies: A cookie is a string of information that a website stores on a visitor’s computer, and that the visitor’s browser provides to the website each time the visitor returns. Pixel tags (also called web beacons) are small blocks of code placed on websites and emails.

On the Website, we use cookies to track visitors’ use of the site in order to improve its effectiveness for marketing our Services. Visitors who have set their browsers to disallow cookies can still use the Website.

For Solutions, we use cookies only to store error or warning messages to be displayed in the browser, a web session ID/token identifying the user’s session, and success or error messages for OAuth token creation.

Information Collected by Third Parties: Solutions may use third-party services for limited functionality, such as setting calendar reminders or events.

Purposes for Which We Use Information

To provide our Services—to set up, operate, secure, and back up our Solutions.

To analyze how users interact with our Services in order improve our Services.

On the Website only—to measure and improve the effectiveness of our marketing.

Sharing Information

We may share your information in these circumstances:

Subsidiaries, Employees, and Independent Contractors: We may disclose information about you to our subsidiaries, our employees, and individuals who are our independent contractors that need to know the information in order to help us provide our Services or to process the information on our behalf. We require our subsidiaries, employees, and independent contractors to follow this Privacy Policy for all information that we share with them.

Legal Requests: We may disclose information about you in response to a subpoena, court order, or other governmental request.

To Protect Rights, Property, and Others: We may disclose information about you when we believe in good faith that disclosure is reasonably necessary to protect the property or rights of ComplianceHR, third parties, or the public at large. For example, if we have a good faith belief that there is an imminent danger of death or serious physical injury, we may disclose information related to the emergency without delay.

Business Transfers: In connection with any merger, sale of company assets, or acquisition of all or a portion of our business by another company, or in the event that ComplianceHR goes out of business or enters bankruptcy, user information would likely be one of the assets that is transferred or acquired by a third-party. If any of these events were to happen, this Privacy Policy would continue to apply to your information and the party receiving your information may continue to use your information, but only consistent with this Privacy Policy.

With Your Consent: We may share and disclose information with your consent or at your request.

How Long We Keep Information

We generally discard information about you when we no longer need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it.

How to Reach Us

If you have a question about this Privacy Policy please send email to

Note: We appreciate Automattic Inc.’s decision to make its privacy policy available under a Creative Commons license.