‍

Qualified.com, Inc. + GDPR

Effective Date: February 19, 2019

The GDPR (General Data Protection Regulation) is an important piece of legislation that is designed to strengthen and unify data protection laws for all individuals within the European Union. The regulation became effective and enforceable on the 25th May 2018. Per article 25 of the GDPR commitment, privacy by design has been a core principle from day 1.

Our Commitment

Qualified is fully committed to compliance with the GDPR. This page provides a high level summary. Please contact our Chief Privacy Officer at [email protected] directly with any questions.

Overview

Qualified, as a Data Processor, collects and stores a minimum of Personal Data only as instructed by our Customer, the Data Controller, for the purposes of delivering the Qualified Services.

This page will cover:

The data we collect and store on behalf of our customers
How we comply with GDPR with respect to obtaining consents, honoring Data Subject Requests, putting in place the appropriate contracts, and maintaining appropriate safeguards.
Our Sub-processors and what we do to ensure they keep customer data safe.

The Data We Collect and Store

Scope: Qualified collects, processes and stores Personal Data about people who chat with the Customer via Qualified.

‍Qualified does not sell any Contact Data collected on behalf of the Customer or market Qualified Services to the Customer’s site visitors.

Categories of Data Subjects:

a. Customer’s end-user customers or prospects

b. Customer’s employees or other authorized users or administrators of Qualified‍

c. Name

d. Contact information (company, business email address and phone number)

e. IP Address*

f. Cookie Data**

g. Photographs (we will use photographs of Customer employees if the Customer is routing the chats to them after bot qualification)

*Qualified will only use the IP address for data enrichment, i.e. to determine if it is associated with a business and then give you additional information re: that business such as industry and number of employees).

**Qualified will only use cookies to track the activities of your site visitors within your site, e.g. whether they visited a particular product page or the pricing page before engaging with the messaging widget. Qualified will NOT track users across domains or build profiles.

How we comply with GDPR‍

Collecting Consents

You can configure Qualified to collect consents via chat prior to collecting email address or additional personal data. Qualified is able to read the consent flag passed from your Consent Management Platform (CMP) and act accordingly.

Appropriate Safeguards

Per Article 32 of the GDPR, we have in place appropriate technical and organizational measures to keep your data secure. All data is securely stored in Amazon Web Services. Please visit the AWS Security Page for additional information on AWS Cloud Security.

Contracts

We have in place the appropriate Data Processing Agreements (DPAs) with all vendors and sub-processors that process data on our behalf. Check out the Sub-processor section below for more information on how we vet and contract with our sub-processors.

Honoring Data Subject Rights

We have processes in place to honor data subject requests. Qualified will export, correct, or delete Contact Data upon request by the Customer. If we receive a request directly from a Data Subject, we will work with the Customer to honor the request.

Our Subprocessors

Some important notes on Subprocessors:

We have a diligence process to ensure that we only trust parties who have stringent standards regarding the safety and security of Personal Data.
We have in place Data Processing Agreements with all of our sub-processors.
We rely on a combination of Privacy Shield Certifications and execution of EU Model Clauses where data is being transferred across borders.
We will notify you of new sub-processors via our Subprocessor Notification Process and give you an opportunity to object.

List of Subprocessors

Our current List of Subprocessors can be found here

Name of Subprocessor and Location

Nature of the Services

Amazon Web Services - USA

Cloud Infrastructure

Twilio - USA

Cloud Infrastructure

Sendgrid - USA

Email Delivery Services

Sentry - USA

Error Reporting Services

Salesforce - USA

Customer Relationship Management

Clearbit - USA

Firmographic Data, Data Enrichment

Datadog, Inc. - USA

Log Management

ClickHouse - USA

Data Warehouse Services

Azure OpenAI Service – USA

Generative AI

OpenAI - USA

Generative AI

Amazon Bedrock (Anthropic) - USA

Generative AI

Google Cloud AI - USA

Generative AI

Tavus - USA

Generative AI Avatar

Strictly Necessary Cookies

First Party	Cookie Name	Description	Expiry Duration
qualified.com	qualified_session	Identifies a user of the Qualified Application’s (this is a Qualified user using the Qualified application) login to the Qualified Application. This cookie isn’t set on website visitors. This cookie is only used to ensure users using the Qualified application can log into the service.	0 days
	__q_state_#################	Contains a number of attributes identifying the website visitor and their interaction with the Qualified Chat Messenger. This identifier is stored in the website visitor’s browser as well as the Qualified Service.	10 years*
	domainid	Required cookie for Qualified Trust Site	Per Session
	slugid	Required cookie for Qualified Trust Site	Per Session
	__cflb	This cookie is used by Cloudflare for load balancing.
	OptanonConsent	This cookie is set by the cookie compliance solution from OneTrust to store information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category.	0 days
	OptanonAlertBoxClosed	This cookie is set by the cookie compliance solution from OneTrust to store information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category.	0 days
		my_onetrust_groups	This cookie is set by the cookie compliance solution from OneTrust to store information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category.	0 days
		GainsightConsent	This cookie used by Gainsight PX (their product experience & analytics platform) to track and store user consent preferences for data collection.	0 days

Performance Cookies

First Party	Cookie Name	Description	Expiry Duration
qualified.com	_ga	This Google Universal Analytics cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It is included in each page request in a site and used to calculate visitor, session and campaign data for the site's analytics reports.	2 years
	_ga_xxxxxxxxx	Used by Google Analytics to identify and track an individual session with your device.	0 days
	sa-user-id-v2	This cookie is used to identify the user's session on the website and is often associated with analytics or personalization.	0 days

Functional Cookies

First Party	Cookie Name	Description	Expiry Duration
qualified.com	_gd_visitor	This cookie assigns a unique visitor ID to track feedback interactions and improve user experience analytics.	1 year
	_gd_session	This cookie tracks a visitor’s session to support real-time feedback collection and usability analytics.	0 days
	_gd_svisitor	This cookie identifies returning visitors to support ongoing feedback tracking and user experience analytics.	1 year
	sa-u-date	This cookie stores the timestamp of a user’s last activity to support advertising attribution and optimization.	1 month
	sa-user-id	This cookie assigns a unique identifier used to track ad engagement and deliver targeted advertising.	0 days
	_tq_id.TV-#########	This cookie is used to track the effectiveness of our TV advertising. It does this by combining anonymous web data (sessions, page views, conversion timings) with TV advert air time data.	1 year
	lpv#######	A Pardot analytics cookie that prevents counting multiple views of the same page during a session to ensure accurate engagement metrics.	0 days

Third Party Host	Cookie Name	Description	Expiry Duration
g2.com	datadome	This cookie helps detect and block bots to protect G2 from automated abuse and ensure secure site performance.	1 year
simplecast.com	_audiogram_key	This cookie that stores the key needed to load and display a specific audiogram embed.	0 days

Targeting Cookies

First Party	Cookie Name	Description	Expiry Duration
qualified.com	_gcl_au	This cookie is used by Google to measure ad conversions and optimize advertising performance across websites.	2 months
	visitor_id	This cookie appends a unique identifier for a website visitor, used for tracking purposes.	1 year
	pardot	This cookie is associated with services from marketing automation and lead generation platform Pardot.	0 days
	_an_uid	This cookie assigns a unique identifier to support ad targeting, measurement, and optimization through 6sense.	6 days
	sa-user-id-v3	This cookie assigns a unique user ID to track ad interactions and deliver targeted advertising.	0 days
	_gcl_au	This cookie is used by Google to measure ad conversions and optimize advertising performance across websites.	0 days
	sa-u-source	This cookie records the source of a user’s visit to help attribute and optimize advertising performance	1 month

Third Party Host	Cookie Name	Description	Expiry Duration
doubleclick.net	IDE	This cookie cookie stores information used to deliver, measure, and personalize advertising across websites.	1 year
doubleclick.net	test_cookie	This cookie checks whether a browser accepts cookies to enable ad delivery and measurement.	0 days
pardot.com	pardot	This cookie tracks visitor activity and preferences to support marketing automation and lead generation	0 days
pardot.com	visitor_id	This cookie appends a unique identifier for a website visitor for tracking purposes.	1 year
linkedin.com	bcookie	This cookie identifies browsers to enable secure login and LinkedIn plugin functionality.	1 year
	lidc	This cookie cookie supports routing and load balancing to ensure reliable performance of LinkedIn features	0 days
	li_sugr	This cookie cookie helps identify browsers for analytics and ad targeting by measuring usage patterns.	2 months
	__cf_bm	This is a Cloudflare cookie on websites that use their security services.	0 days
	UserMatchHistory	This cookie stores data on ad-related browser interactions to support retargeting and audience matching.	1 month
	bscookie	This cookie verifies a user’s identity and ensures secure browsing when using LinkedIn plugins.	1 year
	AnalyticsSyncHistory	This cookie stores information about when a browser performed data synchronization for LinkedIn analytics	1 month
	ar_debug	This cookie is used for debugging and validating LinkedIn Ads and Insight Tag performance	1 month
facebook.com	fr	This cookie enables ad delivery and measurement by identifying browsers and tracking user interactions across websites.	2 months
g2.com	amplitude_session	This cookie stores a session identifier used to track user behavior and analytics within Amplitude	0 days
	events_distinct_id	This cookie assigns a unique ID used to track user interactions and analytics events across G2’s site	0 days
	_g2_session_id	This cookie maintains a temporary session to support basic site functionality and user interactions on G2	0 days
	__cf_bm	This is a Cloudflare cookie on websites that use their security services.	0 days
g2crowd.com	__cf_bm	This is a Cloudflare cookie on websites that use their security services.	0 days
6sc.co	6suuid	This cookie is used to associate visitors with a company account and to help “perform analytics to help identify companies that may be in-market to purchase the customer’s products and services.”	1 year
youtube.com	__Secure-xxxxxxx	This cookie stores security and preference data to authenticate users and deliver more relevant, secure personalized content and ads.	0 days
	VISITOR_INFO1_LIVE	This cookie measures bandwidth and determines the best video player settings for you.	5 months
	YSC	This cookie is used to track a user’s interactions with embedded videos during a browsing session	0 days
	VISITOR_PRIVACY_METADATA	This cookie stores your privacy and consent preferences for YouTube features embedded on websites.	5 months
stackadapt.com	sa-user-id	This cookie assigns a unique identifier used to track ad engagement and deliver targeted advertising	1 year
	sa-user-id-v2	This cookie identifies your browser to measure ad performance and support personalized advertising	1 year
	sa-user-id-v3	This cookie assigns a unique user ID to track ad interactions and deliver targeted advertising across websites	1 year
turn.com	uid	Marketing and Data Management Platform provider used to recognize your browser across websites to deliver and measure more relevant advertising	5 months
google.com	NID	This cookie stores preferences and identifiers to help deliver personalized content and ads on Google services.	6 months
innovid.com	uuid	This cookie assigns a unique identifier to your browser to deliver, personalize, and measure video advertising across sites.	2 months

Personal information (“PI”) we collect	CCPA statutory category	Categories of third parties to whom we “disclose” PI for a business purpose	Categories of third parties to whom we “sell” or “share” PI
Contact data	Identifiers Commercial information California customer records	Service providers Third-Party integration partners Professional advisors Authorities and others Business transferees Affiliated companies	Advertising partners (to facilitate targeted advertising)
Profile data	Identifiers Commercial information California customer records	Service providers Third-Party integration partners Professional advisors Authorities and others Business transferees Affiliated companies	None
Communications data	Identifiers Commercial information California consumer records Internet or Network Information	Service providers Third-Party integration partners Professional advisors Authorities and others Business transferees Affiliated companies	Advertising partners (to facilitate targeted advertising)
Marketing data	Identifiers Commercial information California customer records Internet or Network Information	Service providers Third-Party integration partners Professional advisors Authorities and others Business transferees Affiliated companies	Advertising partners (to facilitate targeted advertising)
Online activity data	Identifiers Commercial information Internet or Network Information	Service providers Third-Party integration partners Professional advisors Authorities and others Business transferees Affiliated companies	Advertising partners (to facilitate targeted advertising)
Data derived from the above	Identifiers	Service providers Third-Party integration partners Professional advisors Authorities and others Business transferees Affiliated companies	Advertising partners (to facilitate targeted advertising)
Other Sensitive Personal Information We do not intentionally collect this information, but it may be revealed in identity data or other information we collect	Protected Classification Characteristics	N/A	None

Qualified.com, Inc. + GDPR

Our Commitment

Overview

The Data We Collect and Store

How we comply with GDPR‍

Our Subprocessors

List of Subprocessors

Strictly Necessary Cookies

Performance Cookies

Functional Cookies

Targeting Cookies

Hear how thought leaders are thinking about AI Workers.