Privacy Policy

Effective Date: 19^th JAN 2017
Last Updated: 21^st APR 2025

Introduction

This Privacy Policy explains how Quest Sampling (referred to as "Company," "we," "our," or "us") collects, uses, and protects personal information obtained through our website and services. By engaging with our services, you consent to the collection and processing of your data as outlined in this policy.

1. Information We Collect

We collect personal data to enhance user experience, improve our services, and facilitate survey participation. This information includes:

Personal Information: Name, email address, contact details, demographic data, and any voluntarily provided information.
Technical Data: Browser type, operating system, IP address (first block only), and approximate geographic location for survey verification purposes.
Cookies & Tracking Technologies: Used for survey quality assurance, site optimization, and to deliver relevant content. You can manage or disable cookies via your browser settings.

2. How We Use Your Information

Your data is used for the following purposes:

Facilitating access to panel activities and surveys.
Communicating with you about survey opportunities and updates.
Conducting research and improving our services.
Ensuring data security and fraud prevention.
Compliance with legal and regulatory requirements.

3. Your Rights & Data Management

At Quest Sampling, we respect your rights regarding your personal information. You can access, update, or request the deletion of your data at any time.

A. Access, Edit & Deletion Rights

You have the right to:

Review the personal information we have collected about you.
Request corrections to inaccurate or incomplete data.
Request deletion of your data, subject to applicable legal requirements.

To exercise these rights, you can:

Email us at: privacy@questsampling.com.
Manage your profile settings on our website.
Send a written request via mail to:

Quest Sampling FZCO

Attn:

Legal Department oversees compliance with this Privacy Policy and will process your request in accordance with applicable data protection laws.

B. Opting Out

If you no longer wish to receive survey invitations or other communications, you can:

Adjust your preferences in your account settings.
Request account deletion through your profile. Allow up to 72 hours for opt-out requests to be processed.
Email us at: privacy@questsampling.com.

C. Security of Your Data

We implement strict technical and organizational safeguards to protect your personal information from unauthorized access, modification, disclosure, or destruction. For any questions, concerns, or complaints regarding our privacy practices, feel free to contact us at privacy@questsampling.com.

4. Third-Party Data Sharing

We do not sell, trade, or share personal information with third parties without consent, except in cases where:

Required by law.
Necessary to fulfill contractual obligations.
Involving trusted third-party service providers who assist in our operations (under strict data protection agreements).

For EU residents, no data or personally identifiable information (PII) is shared with any organization/entity outside the EU. All such data remains within the EU in compliance with applicable data protection regulations.

5. GDPR Rights (For EU Residents)

At Quest Sampling, we follow the latest and most up-to-date version of the General Data Protection Regulation (GDPR) to ensure full compliance and protection of panellists’ personal data. Under the GDPR, panellists have the following rights:

The right to access: – Panellists have the right to request Quest Sampling for copies of their personal data. We don’t charge for this service.
Right to Rectification: Panellists have the right to request Quest Sampling to correct any information they believe is inaccurate. They also have the right to request that Quest Sampling complete any information they believe is incomplete.
Right to Erasure: Panellists have the right to request that Quest Sampling erase their personal data.
Right to Restriction of Processing: Panellists have the right to request that Quest Sampling restrict the processing of their personal data.
The right to object to processing: Panellists have the right to object to Quest Sampling’s processing of their personal data.
The right to data portability: Panellists have the right to request that Quest Sampling transfer the data collected to another organization, or directly to them, under certain conditions.

To exercise these rights, contact privacy@questsampling.com.

6. U.S. State Privacy Rights

California Consumer Privacy Act (CCPA)

In alignment with the California Consumer Privacy Act of 2018 (CCPA), and subject to applicable exceptions and limitations, California residents have certain rights regarding the personal information that Quest Sampling collects and maintains. If applicable, these rights are outlined below.

Please note that Quest Sampling may also process personal information on behalf of our clients. In such cases, requests related to that data should be directed to the respective client or organization.

Right to Know What Personal Information is Collected, Shared, or Sold

California residents have the right to request information about the personal data Quest Sampling has collected, used, disclosed, or sold over the past 12 months. To make a verified consumer request, please contact us at privacy@questsampling.com. We may need to verify your identity, which could include asking you to log into your account if one exists.

Upon receiving a verifiable request, Quest Sampling will provide:

The categories of personal information collected within the last 12 months
The sources from which the information was collected
The business or commercial purpose for collecting or selling the information
The categories of third parties with whom personal information has been shared
The specific personal information collected, subject to applicable exceptions

If Quest Sampling has shared or transferred personal data with third parties during the preceding 12 months, you may also request:

The categories of personal data that were shared or transferred

To exercise your rights, email us at privacy@questsampling.com.

Right to Request Deletion of Personal Information

California residents have the right to request the deletion of personal information collected by Quest Sampling, subject to certain exceptions permitted under the CCPA. You may submit a request as described above, and we will follow our standard verification process to confirm your identity before proceeding.

Right to Non-Discrimination for Exercising CCPA Rights

Quest Sampling will not discriminate against you for exercising any of your rights under the CCPA. This means we will not deny services, charge different prices, or provide a lower level of service because you chose to exercise your privacy rights.

Right to Opt-Out of the Sale of Personal Information

You have the right to opt out of the sale of your personal information. To exercise this right, you may submit a verifiable request by contacting us at privacy@questsampling.com.

Virginia Privacy Rights (VCDPA)

If you are a resident of Virginia and Quest Sampling is acting as the data controller for your personal information, you may be entitled to the following rights under the Virginia Privacy Rights (VCDPA):

Right to Access

You have the right to learn whether we are processing your Personal Data and to request a copy of the Personal Data we are processing about you.

Right to Rectification

You have the right to have incomplete or inaccurate Personal Data that we process about you rectified.

Right to be Forgotten (Right to Erasure)

You have the right to request that we delete Personal Data that we process about you, unless we need to retain such data in order to comply with a legal obligation or to establish, exercise, or defend legal claims.

Right to Opt-Out

You have the right to opt out of the processing of your Personal Data for the purposes of:

Targeted advertising
The sale of Personal Data
Profiling in furtherance of decisions that produce legal or similarly significant effects concerning you.

Non-Discrimination and Non-Retaliation

You have the right not to be denied service or receive a different experience for exercising your rights under the CPA.

Right to File an Appeal

You have the right to file an appeal based on our response to your request to exercise any of these rights. To make a verifiable request related to your Virginia privacy rights, please contact us at privacy@questsampling.com.

Colorado Privacy Rights (CPA)

If you are a resident of Colorado and Quest Sampling is acting as the data controller for your personal information, you may be entitled to the following rights under the Colorado Privacy Act (CPA):

Right to Access

You have the right to learn whether we are processing your Personal Data and to request a copy of the Personal Data we are processing about you.

Right to Rectification

You have the right to have incomplete or inaccurate Personal Data that we process about you rectified.

Right to be Forgotten (Right to Erasure)

Right to Opt-Out

You have the right to opt out of the processing of your Personal Data for the purposes of:

Targeted advertising
The sale of Personal Data
Profiling in furtherance of decisions that produce legal or similarly significant effects concerning you.

Non-Discrimination and Non-Retaliation

You have the right not to be denied service or receive a different experience for exercising your rights under the CPA.

Right to File an Appeal

You have the right to file an appeal based on our response to your request to exercise any of these rights. To make a verifiable request related to your Colorado privacy rights, please contact us at privacy@questsampling.com.

Connecticut Privacy Rights (CTDPA)

If you are a resident of Connecticut and Quest Sampling is acting as the data controller for your personal information, you may be entitled to the following rights under the Connecticut Privacy Rights (CTDPA):

Right to Access

You have the right to learn whether we are processing your Personal Data and to request a copy of the Personal Data we are processing about you.

Right to Rectification

You have the right to have incomplete or inaccurate Personal Data that we process about you rectified.

Right to be Forgotten (Right to Erasure)

Right to Opt-Out

You have the right to opt out of the processing of your Personal Data for the purposes of:

Targeted advertising
The sale of Personal Data
Profiling in furtherance of decisions that produce legal or similarly significant effects concerning you.

Non-Discrimination and Non-Retaliation

You have the right not to be denied service or receive a different experience for exercising your rights under the CPA.

Right to File an Appeal

You have the right to file an appeal based on our response to your request to exercise any of these rights. To make a verifiable request related to your Connecticut privacy rights, please contact us at privacy@questsampling.com.

Utah Privacy Rights (UCPA)

If you are a resident of Utah and Quest Sampling is acting as the data controller for your personal information, you may be entitled to the following rights under the Utah Privacy Rights (CTDPA):

Right to Access

You have the right to learn whether we are processing your Personal Data and to request a copy of the Personal Data we are processing about you.

Right to be Forgotten (Right to Erasure)

Right to Opt-Out

You have the right to opt out of the processing of your Personal Data for the purposes of:

Targeted advertising
The sale of Personal Data
Profiling in furtherance of decisions that produce legal or similarly significant effects concerning you.

Non-Discrimination and Non-Retaliation

You have the right not to be denied service or receive a different experience for exercising your rights under the CPA. To make a verifiable request related to your Utah privacy rights, please contact us at privacy@questsampling.com.

7. Children’s Privacy Policy

Our website and services are intended for users 18 years and older. We do not knowingly collect data from minors. If we suspect an underage user, their information will be removed promptly.

8. Email Communications

All emails will clearly display our company name and logo.
Survey invitations may vary in frequency, and there is no guarantee of a minimum number of opportunities.

9. Updates to This Privacy Policy

We may revise this policy periodically. Changes will be communicated via our website or email notifications for significant updates. If you disagree with any changes, you must discontinue your membership.

10. Information Security Framework

A. Objective

The purpose of this framework is to establish a structured approach to safeguarding Quest Sampling’s proprietary and customer information. This document defines the security controls and measures necessary to protect sensitive data while ensuring adherence to applicable local and international security regulations. It provides clear directives that all employees, contractors, and associated entities must follow to maintain a secure information environment.

B. Scope & Applicability

This policy applies to all forms of information associated with Quest Sampling, covering areas such as customer data, source code, architectural diagrams, financial records, and Personally Identifiable Information (PII). It is binding on all employees, subsidiaries, contractors, partners, and any third-party service providers who access, process, store, or transmit Quest Sampling’s data.

C. Core Information Security Goals

Alignment with Business Strategy: Ensure that security initiatives align with Quest Sampling’s broader business objectives.
Regulatory & Compliance Adherence: Maintain compliance with applicable legal, regulatory, and industry standards.
Risk Management & Security Planning: Establish an evolving security plan that proactively identifies and mitigates threats.
Incident Handling & Response: Implement robust detection, containment, and resolution mechanisms for security breaches.
Asset Protection & Risk Evaluation: Maintain an accurate record of assets and conduct regular risk assessments to prevent vulnerabilities.

D. Information Security Governance

Every individual associated with Quest Sampling must adhere to established security policies. Security guidelines will be communicated during onboarding and reinforced periodically. All policies will remain accessible at all times and will undergo an annual review to reflect operational changes. If business transformations impact data security, an immediate policy update will be initiated. Approval from senior management is mandatory for all modifications.

E. Security Measures & Implementation

Human Resource Security

Employees and contractors have direct access to sensitive data, making personnel security a priority. Specific policies and best practices for managing human-related security risks are outlined in the HR Security Policy (Internal Doc).

Asset Security & Management

A structured asset management system mitigates potential risks associated with information exposure. Key measures include:

Asset Accountability: All digital and physical assets (data, hardware, and software) must be cataloged and assigned to a responsible individual.
Ownership Assignment: Each designated asset owner is accountable for the asset’s security and maintenance.
Data Classification: Information is categorized based on sensitivity and must be managed accordingly.
Asset Protection Guidelines: Further details on asset security protocols are provided in the Asset Management Policy (internal document).

F. Operational Security & Data Protection

System capacity planning and integration of new infrastructure must comply with internal security standards.
A structured change management process will regulate system modifications to prevent unauthorized alterations.
Routine data backups will be performed and tested to safeguard against data loss.

G. Policy Management & Lifecycle

Policy Updates & Modifications

Policies will be reviewed regularly and updated when required.
All modification requests must include a business rationale.
The Director of Operations will evaluate and approve any requested changes.
The Security Team will ensure proper communication of policy updates to all employees.

Exceptions to Policy Compliance

Adherence to security policies is mandatory for all employees and third parties.
In situations where compliance is impractical, an exception request must be submitted for evaluation.
Approved exceptions will be monitored, assigned remediation deadlines, and periodically reviewed to ensure corrective measures are implemented.

10. Grievance & Data Protection Officer

Quest Sampling is committed to safeguarding your privacy and ensuring compliance with data protection regulations. For any concerns, inquiries, or requests related to your personal data, you may contact our Data Protection Officer (DPO), Amandeep Singh, via:

Email: amandeep@questsampling.com
Phone: +91-9354822533
Mail: Quest Sampling FZCO IFZA Business Park, DDP, Building A1,Dubai, UAE, PO Box- 74603

Amandeep Singh brings over 10 years of extensive experience in the areas of Compliance, Data Security, and Data Protection. Throughout his career, he has worked closely on implementing regulatory frameworks, ensuring organizational adherence to global privacy standards, and managing risk related to data handling and protection. He has been an integral part of Quest Sampling since October 2018, where he continues to oversee and guide the company’s privacy and compliance initiatives. For any inquiries or concerns related to privacy practices, data protection policies, or regulatory compliance, you are encouraged to reach out to Amandeep using the contact information provided above.

11. Contact Us

For any questions or concerns regarding this Privacy Policy, please contact us at: Email: privacy@questsampling.com.