Privacy Overview

For the purposes of this document, SiteSpect refers to three corporate entities:

  • SiteSpect, Inc., located in Boston, Massachusetts, United States
  • SiteSpect Limited, located in Derby, Derbyshire, United Kingdom
  • STSP Europe BV (d/b/a SiteSpect Europe), located in Breukelen, The Netherlands

This Privacy Policy describes how SiteSpect uses and protects information collected through this Web Site, our other services, and our marketing practices generally. This Privacy Policy was last updated on March 30, 2018.  Please take the time to review this document.

SiteSpect takes privacy of its employees, customers, and users of its services very seriously.  In response to the European Union’s General Data Protection Regulation (GDPR) SiteSpect has revised its published privacy policies.

SiteSpect complies with the EU-U.S. Data Privacy Program Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Program Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. SiteSpect has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF.  SiteSpect has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.

The Federal Trade Commission has jurisdiction over SiteSpect’s compliance with the DPF Principals and SiteSpect is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. SiteSpect complies with the DPF Principals for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.

For End Users Visiting SiteSpect's Customer Websites

SiteSpect is a service provider to many companies.  Its presence as a service provider is typically invisible to users. The privacy policy that is applicable to these services may be found at SiteSpect Business Services Privacy Policy.

For End Users Visiting the SiteSpect Corporate Website

The SiteSpect public website, this Site, is not directly part of the Business Services provided to customers and it has a privacy policy that is distinct from the services privacy policy. The privacy policy applicable to this website can be found at SiteSpect Website Privacy Policy.

For Corporate Customers of SiteSpect Business Services

SiteSpect provides business services to many customers and serves in the capacity of a data processor under the Data Privacy Framework and the GDPR.  To learn how SiteSpect handles data and options for enabling data protection features applicable to the GDPR, please review our SiteSpect Customer Notice on GDPR Support.

Complaint Resolution

In compliance with the Data Privacy Framework (DPF), SiteSpect commits to resolve complaints about your privacy and our collection or use of your personal information.

In certain situations, SiteSpect may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. We may also disclose your Personal Information to any regulatory or law enforcement agency if we believe that such action is necessary to protect the rights, property, or personal safety of SiteSpect, its customers or any third party.

We acknowledge that under the DPF, users have the right to access, correct, or amend their data. We also acknowledge that individuals have the choice to opt-out, and to see where their data is being transferred. If you would like to exercise these rights please visit our SiteSpect Business Services Privacy Policy and/or our SiteSpect Website Privacy Policy.

In compliance with the DPF, SiteSpect commits to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to DPF. European Union, UK, and Swiss individuals with DPF inquiries or complaints should first contact SiteSpect at dpo@sitespect.com or via the Contacting Us instructions below.

SiteSpect has further committed to refer unresolved DPF-Principals related to a U.S.-based independent dispute resolution mechanism, BBB NATIONAL PROGRAMS. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://www.bbbprograms.org/dpf-complaints for more information and to file a complaint. This service is provided free of charge to you.

If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf.

Contacting Us

General Privacy Inquiries: Please submit any questions, concerns, or comments you have about this Privacy Policy or any requests concerning your Personal Information by email to dpo@sitespect.com, or by post at the address provided below.

SiteSpect, Inc.
Attn: Data Privacy Officer
10 Milk St., Suite 820
Boston, MA 02108
USA