PreventIQ logo - Workplace violence prevention training for California hotels with 500+ incidents prevented by former corrections expert
(877) 502-0136

Effective Date: August 23, 2025

1. Introduction

PreventIQ, LLC (“PreventIQ,” “we,” “us,” or “our”) respects your privacy and is committed to protecting the personal information that we process.

This Privacy Policy explains how we collect, use, disclose, retain, and safeguard personal information:

  • When acting as a Business/Controller with respect to website visitors, prospects, and marketing contacts; and

  • When acting as a Service Provider/Processor with respect to hotel employees, contractors, or other individuals whose data we process solely on behalf of our hotel clients (“Customers”).

Where we act as a Processor, our processing is subject to a Data Processing Addendum (DPA) and the Customer’s privacy policies.

2. Information We Collect

A. Website & Marketing (Business/Controller)

We may collect the following categories of information:

  • Identifiers & Contact Information – name, email, phone, employer, role, language preference.

  • Commercial Information – form submissions, lead magnet downloads, webinar registrations, consultations scheduled.

  • Internet/Network Activity – IP address, browser/device identifiers, referral URLs, UTM parameters, cookie IDs, interaction logs.

  • Communications – messages sent via contact forms, email, or live support.

  • Inferences – segmentation data and engagement profiles derived from the above.

B. Training & Service Delivery (Processor/Service Provider)

On instruction of our Customers, we may process:

  • Workforce Identifiers – name, employee ID, role, department, work email, shift assignment, property location, supervisor.

  • Training Records – enrollment, participation, completion metrics, quiz results, timestamps, language used.

  • System Integrations – data synchronized with HRIS (e.g., BambooHR) or PMS (e.g., Stayntouch) for compliance tracking and portfolio-level reporting.

  • Support Data – inquiries to our 24/7 helpdesk, including from night-shift employees.

  • Compliance Records – certifications, attendance logs, interactive training documentation.

We do not knowingly collect or process data beyond the scope of Customer instructions.

3. How We Use Information

A. Website & Marketing (our purposes)

  • To operate and secure our website;

  • To respond to inquiries and provide requested content;

  • To send marketing communications (subject to opt-out rights);

  • To measure and improve engagement, performance, and campaign effectiveness;

  • To detect and prevent fraud or misuse.

B. Training & Service Delivery (on behalf of Customers)

  • To provision users and deliver mobile, bilingual, interactive training;

  • To track completions, generate reports, and certify compliance;

  • To synchronize with Customer-approved integrations (e.g., BambooHR, Stayntouch);

  • To provide real-time Q&A and incident-prevention support, including 24/7 coverage;

  • To document compliance in unionized or HTA-covered workplaces, as instructed.

4. Cookies and Tracking Technologies

We use first-party and third-party cookies, pixels, and similar technologies to:

  • Authenticate sessions and maintain log-ins;

  • Store preferences and optimize user experience;

  • Conduct analytics and performance monitoring;

  • Deliver marketing or retargeting (only with consent where required).

You may adjust cookie preferences via our cookie banner or through your browser. If advertising cookies are enabled, such activity may constitute “sharing” under CPRA.

5. Disclosures of Personal Information

We may disclose personal information:

  • To Service Providers (hosting, analytics, communications, support, calendaring, webinar vendors, authentication providers) under contractual confidentiality obligations;

  • To Customer Systems (e.g., BambooHR, Stayntouch) as instructed by Customers;

  • To Authorities where legally required or to protect rights and safety;

  • In connection with business transfers (merger, acquisition, financing, or sale of assets).

We do not sell personal information. We may “share” identifiers for cross-context advertising only where users have consented to advertising cookies, subject to opt-out rights.

6. Data Retention

  • Website/Marketing Data: Retained for as long as necessary to fulfill collection purposes, unless deletion is requested.

  • Customer Training Data: Retained in accordance with Customer instructions and applicable law. Upon termination of services, data is securely deleted or returned, subject to legal retention obligations.

7. Security

We implement administrative, technical, and physical safeguards, including access controls, least-privilege policies, encryption in transit, audit logging, and continuous monitoring. While no system is invulnerable, we maintain commercially reasonable security aligned with risk.

8. Your Rights

California Residents (CPRA/CCPA)

You may have rights to:

  • Know what categories and specific pieces of personal information we collect;

  • Request access, correction, or deletion;

  • Opt out of the “sharing” of data for cross-context advertising;

  • Limit use of sensitive personal information;

  • Be free from discrimination for exercising privacy rights.

We honor Global Privacy Control (GPC) signals.

EU/UK Data Subjects (GDPR/UK GDPR)

You may have rights to:

  • Access, rectification, and erasure;

  • Restrict or object to processing;

  • Data portability;

  • Withdraw consent (where applicable);

  • Lodge a complaint with your supervisory authority.

To exercise rights: Contact privacy@preventiq.com. Where data is processed on behalf of a Customer, requests will be redirected to the relevant Customer (the Controller).

9. Children’s Privacy

Our services are intended for adults in professional contexts. We do not knowingly collect information from children under 16 (or the local minimum age). If you believe a child has provided personal data, contact us for deletion.

10. International Transfers

Where personal data is transferred outside the originating jurisdiction, we rely on recognized transfer mechanisms (e.g., Standard Contractual Clauses) and implement supplementary safeguards where necessary.

11. Processor Commitments (for Customers)

When acting as a Processor/Service Provider, PreventIQ will:

  • Process data only on documented Customer instructions;

  • Maintain confidentiality and security;

  • Engage subprocessors only under written agreements ensuring equivalent protections;

  • Assist Customers with data subject rights and regulatory compliance (including DPIAs);

  • Delete or return data upon termination, subject to legal obligations.

12. Changes to this Policy

We may amend this Privacy Policy from time to time. Updated versions will be posted with a revised “Effective Date.” Where legally required, we will provide advance notice of material changes.

13. Contact Us

For questions, requests, or complaints regarding this Privacy Policy or our privacy practices, please contact:

PreventIQ, LLC
Email: privacy@preventiq.com

14. California “Notice at Collection”

Categories Collected: Identifiers; contact information; commercial information; internet/network activity; professional/employment data (where processed for Customers); inferences.
Purposes: To provide services, operate websites, measure and improve performance, deliver training, support compliance, and maintain security.
Retention: As outlined in Section 6.
Sale/Sharing: No sale of data. Limited sharing for advertising only if cookies are enabled.
Rights: See Section 8.