Layered Notice

This notice provides a quick summary of how Assessed Intelligence collects, uses, and protects your personal information on our website. For complete details, please refer to our Full Website Privacy Policy below.

Complete Privacy Notice

1. Introduction

Welcome to the Assessed Intelligence website (the “Site”). Assessed Intelligence is committed to protecting the privacy and security of your personal information. This Privacy Policy and Notice describes how Assessed Intelligence (“we,” “us,” or “our”) collects, uses, processes, discloses, and protects personal information when you visit our Site and interact with our services.

By accessing or using our Site, you signify that you have read, understood, and agree to our collection, storage, use, and disclosure of your personal information as described in this Privacy Policy. If you do not agree with the practices described in this Policy, please do not use our Site.

2. Data Controller and Contact Information

Assessed Intelligence is the data controller responsible for your personal data.

Assessed Intelligence is a company dedicated to helping organizations adopt technology securely and responsibly, with a focus on areas such as Artificial Intelligence (AI) ethics, cybersecurity, data governance, and regulatory compliance.

Contact Information:

Assessed Intelligence LLC.

Address: 6545 Market Ave N Suite 100, North Canton, OH 44721

Email address: Privacy@assessedintelligence.com

Phone number: +1-234-327-2803

EU/UK Representative (for GDPR/EU AI Act/DSA purposes, if applicable):

Email: PrivacyEMEA@assessedintelligence.com

3. Types of Personal Data We Collect

We collect information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household (“Personal Information”). The types of Personal Information we may collect when you visit our Site include:

  1. Information You Provide Directly:
  1. Contact Information: When you fill out forms on our Site (e.g., “Contact Us,” newsletter sign-up, download requests), you may provide your name, email address, phone number, company name, job title, any other similar identifiers, and any message content. 
  2. Correspondence: If you contact us via email, mail, or other communication channels, we may retain records of that correspondence.
  3. Event Registrations: If you register for webinars, seminars, or other events, we may collect your registration details.
  4. Professional and Service Data: Information related to your role, your organization, and the services you engage us for. This may include data provided by you for analysis as part of our intelligence services, which could contain personal data relevant to your organization’s operations or specific intelligence requests.
  1. Information Collected Automatically: When you visit our Site, we automatically collect certain information about your device and Browse activity using technologies such as cookies, web beacons, and similar tracking technologies. This information may include:
  1. Usage Information: Information about how you use our website and services, including Browse patterns, pages viewed, features accessed, and interactions with our content.
  2. Device Information: Internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our website or services.
  3. Location Information: General geographic location derived from your IP address.
  1. Information from Third Parties (Limited): We may receive limited information from third-party services integrated with our Site (e.g., analytics providers like Google Analytics) about your activity on our Site, which helps us understand user behavior. We do not generally purchase or receive personal information from data brokers for marketing purposes related to your website visit alone.
  1. Special Categories of Personal Data: We generally do not intentionally collect “special categories” of personal data (e.g., data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health data, genetic data, biometric data, data concerning a natural person’s sex life or sexual orientation). If, in the rare instance, such data is provided to us as part of our intelligence services, we will process it only if strictly necessary for the purpose for which it was provided, with your explicit consent where required, or as otherwise permitted by applicable law.

4. How We Collect Your Personal Data

We collect personal data through various methods:

  1. Direct Interactions: You may give us your Identity and Contact Data and Professional Data by filling in forms, corresponding with us by post, phone, email, or otherwise. This includes data you provide when you:
  1. Engage us for our services.
  2. Create an account on our platform (if applicable).
  3. Subscribe to our newsletters or publications.
  4. Request marketing materials to be sent to you.
  5. Provide feedback or contact us.
  1. Automated Technologies or Interactions: As you interact with our website, we may automatically collect Technical Data and Usage Data. We collect this personal data by using cookies, server logs, and other similar technologies. Please see our Cookie Policy in §8 for more details.
  1. Third Parties or Publicly Available Sources: We may receive personal data about you from various third parties and public sources, such as:
  1. Technical Data from analytics providers (e.g., Google Analytics).
  2. Identity and Contact Data from publicly available sources (e.g., professional networking sites).
  3. Data provided by our clients as part of their engagement with our intelligence services.

5. How We Use Your Personal Data and Our Legal Basis

We use your personal data for the following purposes and rely on the indicated legal bases:

Purpose of ProcessingTypes of DataLegal Basis for Processing (GDPR)
To provide and manage our servicesIdentity, Contact, Professional, Service DataPerformance of a contract with you or to take steps at your request before entering into a contract.
To improve our services and websiteTechnical, Usage Data, Professional, Service DataNecessary for our legitimate interests (to develop our services, grow our business, and understand how users interact with our offerings).
To communicate with youIdentity, Contact DataNecessary for our legitimate interests (to respond to inquiries, provide support, and manage our relationship with you).
For marketing purposesIdentity, Contact, Marketing and Communications DataConsent (where required) or Necessary for our legitimate interests (to develop our products/services and identify potential clients). You have the right to withdraw consent at any time.
To comply with legal obligationsAll categories as required by lawNecessary for compliance with a legal obligation to which we are subject.
For internal operations (e.g., data analysis, testing, system maintenance)Technical, Usage, Service DataNecessary for our legitimate interests (for running our business, provision of administration and IT services, network security, and preventing fraud).
To detect and prevent fraud, security breaches, and other harmful activitiesAll categories as requiredNecessary for our legitimate interests (to protect our business and users) and compliance with legal obligations.

6. Disclosure of Your Personal Data

We do not sell your Personal Information. We may share your Personal Information with the following categories of third parties for the purposes described in this Privacy Policy:

  1. Service Providers: We engage third-party service providers who perform functions on our behalf, such as website hosting, analytics, email delivery, CRM services, and IT support. These service providers are contractually obligated to protect your information and use it only for the purposes for which it was provided.
  2. Legal and Compliance: We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court order or government agency). We may also disclose information to enforce our terms and conditions, protect our rights, privacy, safety, or property, or that of our affiliates, you, or other third parties.
  3. Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or other sale of all or a portion of our assets, your Personal Information may be transferred to the successor entity.
  4. Affiliates: We may share information with our current or future affiliates, subsidiaries, or parent companies for business and operational purposes.
  5. With Your Consent: We may share your information with your explicit consent or at your direction.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

7. International Transfers of Personal Data

As we operate globally, your personal data may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”), the United Kingdom (“UK”), or your country of residence, including to the United States where our primary operations are based.

Whenever we transfer your personal data out of the EEA or UK, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

  1. We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission or the UK government (as applicable).
  2. Where we use certain service providers, we may use specific contracts approved by the European Commission or the UK government which give personal data the same protection it has in the EEA/UK. These are known as Standard Contractual Clauses (SCCs).
  3. Where we use providers based in the US, we may transfer data to them if they are part of a framework that provides adequate safeguards for personal data, such as the EU-US Data Privacy Framework or UK Extension to the EU-US Data Privacy Framework (when applicable and operational).

Please contact us if you want further information on the specific mechanism used by us when transferring your personal data out of the EEA or UK.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies (like web beacons and pixels) to track activity on our Site and hold certain information.

Types of Cookies We Use:

Your Choices Regarding Cookies: You have the option to accept or refuse cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. However, blocking or deleting cookies may prevent you from taking full advantage of the Site. For more information on how to control cookies, check your browser’s “Help” or “Settings” menu.

Do Not Track (DNT) Signals: Some web browsers incorporate a “Do Not Track” (DNT) feature that signals to websites that you do not want your online activities tracked. Our Site does not currently respond to DNT signals.

9. Data Security

We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors, and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality. However, no security system is impenetrable, and we cannot guarantee the absolute security of your information.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so. 

10. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

In some circumstances, we may anonymize your personal data (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.

11. Your Rights

Depending on your location and applicable law, you may have the following rights regarding your personal data:

  1. Right to be Informed: To be informed about the collection and use of your personal data. This Privacy Policy serves this purpose.
  2. Right of Access: To request information about the categories and specific pieces of Personal Information we have collected about you, the categories of sources from which the Personal Information is collected, the purposes for collecting it, the categories of third parties with whom we share it, and the categories of Personal Information that we have disclosed for a business purpose.
  3. Right to Rectification: To request that we correct inaccurate Personal Information we hold about you.
  4. Right to Deletion/Erasure (“Right to be Forgotten”): To request the deletion of your Personal Information, subject to certain exceptions (e.g., if we need to retain it to comply with a legal obligation).
  5. Right to Opt-Out of Sale/Sharing: While we do not sell your personal information for monetary consideration, some privacy laws define “sale” and “sharing” broadly to include certain types of targeted advertising. You have the right to opt-out of the “sale” or “sharing” of your Personal Information for purposes of cross-context behavioral advertising, if applicable.
  6. Right to Restrict Processing: To request the restriction of processing of your personal data in certain circumstances.
  7. Right to Data Portability: To request the transfer of your personal data to another organization or directly to you, in a structured, commonly used, machine-readable format.
  8. Right to Object: To object to the processing of your personal data in certain circumstances, particularly where we are relying on legitimate interests or for direct marketing purposes.
  9. Rights in Relation to Automated Decision-Making and Profiling: To object to decisions based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

To exercise any of these rights, please contact us using the “Contact Information” section above. We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it.

12. Specific US Federal Law Compliance

While the US does not have a single, comprehensive federal privacy law, we comply with relevant sector-specific federal laws as applicable to our services and data processing activities, including but not limited to:

  1. CAN-SPAM Act: For commercial email communications, ensuring clear identification of the sender, opt-out mechanisms, and accurate subject lines.
  2. COPPA (Children’s Online Privacy Protection Act): We do not knowingly collect personal information from children under the age of 13 without verifiable parental consent. Our services are not directed at children. If we become aware that we have inadvertently received Personal Information from a child under 16 without verifiable parental consent, we will delete that information from our records. If you believe we might have any information from or about a child under 16, please contact us.
  3. HIPAA (Health Insurance Portability and Accountability Act): If we were to handle Protected Health Information (PHI) as a covered entity or business associate, we would comply with all HIPAA regulations. Our core intelligence services typically do not involve PHI, but we remain vigilant.
  4. GLBA (Gramm-Leach-Bliley Act): If our services were to involve nonpublic personal information from financial institutions, we would adhere to GLBA’s privacy rule requirements.

13. EU AI Act Compliance

The EU AI Act is a new legal framework regulating Artificial Intelligence (AI) systems within the EU. As an intelligence firm that may utilize AI in its processes, we commit to adhering to its provisions, particularly when our AI systems are marketed or used within the EU or affect EU citizens.

  1. Risk-Based Approach: We categorize our AI systems based on the risk levels defined by the AI Act (unacceptable, high, limited, minimal risk).
  2. Prohibited AI Practices: We do not develop or deploy AI systems that fall under the “unacceptable risk” category, such as those involving manipulative or deceptive techniques causing harm, social scoring by public authorities, or untargeted scraping of facial images for biometric databases.
  3. High-Risk AI Systems: If any of our AI systems are classified as “high-risk” (e.g., those used in critical infrastructures, employment, or law enforcement that could impact fundamental rights), we commit to:
  1. Implementing robust risk assessment and mitigation systems.
  2. Ensuring high-quality datasets to minimize discriminatory outcomes.
  3. Maintaining logging capabilities for traceability.
  4. Providing detailed documentation for authorities.
  5. Ensuring clear and adequate information to deployers.
  6. Implementing appropriate human oversight measures.
  7. Ensuring a high level of robustness, cybersecurity, and accuracy.
  1. Transparency Obligations: We will ensure transparency regarding the use of AI systems, particularly if they directly interact with humans, making it clear when you are interacting with an AI system.
  2. Data Governance: Our data governance practices for AI development and deployment adhere to the AI Act’s requirements, ensuring data quality, relevance, and representativeness.

14. Digital Services Act (DSA) Compliance

The Digital Services Act (DSA) applies to “intermediary services” offered to recipients in the EU. While Assessed Intelligence primarily provides business-to-business intelligence services rather than operating as a large online platform or search engine, we recognize our obligations under the DSA if our services involve hosting or transmitting user-provided content.

  1. Illegal Content: If we become aware of illegal content transmitted or stored through our services (e.g., as part of data provided by a client), we will act promptly to remove or disable access to such content in compliance with the DSA and applicable law.
  2. Transparency: We commit to transparency regarding our content moderation practices (if any are applicable to user-generated content within our systems, which is rare for our service model).
  3. User Protection: While not directly applicable to our B2B model in most instances, we generally aim to provide a safe and reliable service environment.
  4. No Targeted Advertising: As we do not operate as an advertising platform, the DSA’s prohibitions on targeted advertising based on profiling of children or special categories of personal data do not directly apply to our core services.

15. Links to Third-Party Websites

Our Site may contain links to third-party websites or services that are not operated by us. We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party sites or services. We encourage you to review the privacy policies of every site you visit.

16. Changes to This Privacy Policy and Notice

We may update this Privacy Policy and Notice from time to time to reflect changes in our practices, legal requirements, or new technologies. We will notify you of any significant changes by posting the updated policy on our website with a new “Effective Date.” We encourage you to review this policy periodically.

17. Complaints

If you have any complaints about how we collect, use, or store your personal data, please contact us directly using the contact information provided above. We will investigate and do our best to resolve your concern.

For EU/EEA and UK Residents: You also have the right to lodge a complaint with your relevant supervisory authority if you believe your data protection rights have been infringed.

  1. For EU/EEA: You can find the contact details of your national data protection authority here.
  2. For the UK: The supervisory authority is the Information Commissioner’s Office (ICO). You can find more information at www.ico.org.uk.

Document Control

Policy IDPrivacy Notice
VersionV 1.0
Date of Version7/21/2025
Primary OwnerExecutive
StatusPublished
Classification LevelInternal

Document Approval

Approval Date5/1/2025
Approval AuthorityJosh Scaprino – CEO