Resource Systems Group, Inc. (“RSG”) conducts market research on behalf of both public and private sector clients using smartphones, the internet, computers and tablets, and other means of collecting data. Ultimately, this research allows our clients to deliver better products and services. These products and services range from large infrastructure, like rail service and highways, to consumer products, like tractors or cars.
RSG is committed to protecting the confidentiality, integrity, and security of your personal information. We take this responsibility seriously. This privacy statement is intended to help you understand how we collect and safeguard your information.
The information we collect depends on the parameters of the research we are conducting. Examples of personal information we may collect include the following: your name and contact information; demographic information like gender, age, and household income; home, work, and other locations; or a user name or e-mail address in combination with a password or security question that would permit access to an RSG survey account you may establish as part of your participation in our survey. We may also collect additional information based on your use of our websites or applications, as further discussed below.
RSG collects your information to answer questions related to the research we are conducting. These questions and your responses allow us to qualify you for a survey, tailor survey questions to you, and ensure that our survey participants are a representative sample of the population we are researching. Before actively collecting any personal information, we will provide you the purpose for which we are collecting the information. We collect the smallest amount of personal information reasonably necessary to accomplish that purpose, and we retain personal information only for the time reasonably necessary to accomplish the purpose.
When you provide your information to us, you give us your consent to collect and use your information consistent with the policies described in this statement and in any additional project-specific policies we may provide or make available to you. You are also giving us consent to disclose your information to our client, unless specifically precluded by any project-specific policies. If we provide or make available to you any project-specific policies, then, in the event of a conflict between the terms of those policies and the policies described in this statement, the policies in the project-specific document will be the governing policies. We store personal data on cloud servers, governed by Microsoft Azure server policies, or on our own servers.
You are under no obligation to provide us with your information. However, if you decline to provide us with information, we may not be able to include you in our surveys. In addition, when you use an RSG website or application, you give us your consent to collect and use certain additional “passive” information more fully described below.
When you use an RSG website or application, certain information is passively collected (that is, gathered without your actively providing the information) using various technologies and means, such as Internet Protocol (IP) addresses, cookies, and Global Positioning System (GPS) location data. These are described in more detail below:
Except as specifically set forth below, RSG will never share personal information with anyone other than the client who commissioned the survey, but we may keep personal information for research purposes. We will not share or publish this personal information, but we may share statistics describing aggregate relationships from these data as part of our research.
We may convert personal information to nonpersonal information and store, use, and disclose the nonpersonal information indefinitely. For example, we may permanently delete the connection between a person’s identifying information and location information and retain the location information and knowledge it pertains to a single (unidentifiable) individual.
We take responsibility for the control of information we collect about you, and we are committed to maintaining personal information (to the extent we retain it) that is accurate, complete, current, and reliable for its intended use. If you have questions or would like to access or update your personal information, obtain copies of the information we have collected about you, or request that we delete your personal information, you may contact us as follows:
Attn: Data Privacy Officer
55 Railroad Row
White River Junction, VT 05001 USA
Unless noted otherwise in a project-specific document, we store and process all electronic personal information that we collect from you on electronic information systems in the United States. Some nonpersonal information may remain on data storage systems in the country or territory where the information was originally provided. Hard copies of personal information generally remain in the country of origin. Information stored and processed within the United States may be liable to disclosure under the laws of the United States, its states, and its territories, and we reserve the right to disclose your information as required by law when we reasonably believe disclosure is necessary to protect our rights and to comply with a judicial proceeding, court order, or legal process.
When we transfer personal information from a country of origin to the United States, we do so in compliance with all laws of the originating country, including the Data Protection Directive of the European Union.
We use reasonable and appropriate technical, administrative, and physical safeguards to protect against loss, unauthorized access, destruction, misuse, modification, and improper disclosure of the personal information we collect, in both physical and electronic format. To that end, we use Secure Sockets Layer (SSL) encryption and Microsoft Azure cloud services, which comply with various globally recognized security practices and standards to protect the personal information submitted to us, both during transmission and once we receive it. We take reasonable and appropriate steps to contract for and monitor the services we use to determine that they remain compliant with such practices and standards. We also provide information security awareness training to our staff and conduct periodic quality assurance audits. However, no computer system, method of transmission over the internet, or method of electronic storage can ever fully protect against every possible hazard.