TOUCHSTONE RESEARCH INC.
PRIVACY POLICY
This Privacy Policy was LAST UPDATED on June 3, 2024
Touchstone Research, Inc. (collectively with its affiliates, subsidiaries and divisions, together “TSR” or “we” or “us“) is firmly committed to ensuring the privacy of those customers (“Clients” or “you”) who use the TSR Websites and to individuals who participate in our research activities (“Research Participants” “Members” or “you”) on or through the Websites or platforms owned, maintained or licensed by TSR, including but not limited to: panelpolls.com, espnfanadvisors.com, slingtvinsiders.com, dishinsiders.com, and researchgearbox.com (collectively “Sites”) and other TSR-related Sites, apps, survey software or other feedback tools, offline and online communications and services (“Services”). This Privacy Policy applies where referenced and to the Sites and apps where it appears.
Unless otherwise noted herein or in the Terms and Conditions or Terms of Use, our Services are provided by TSR in the United States and the Sites are controlled and operated from the United States; accordingly, this Privacy Policy, and our collection, use, and disclosure of your information is governed by the laws of the United States and the Services and our Sites are not intended to subject us or any of our affiliates to the laws or jurisdiction of any country or territory other than that of the United States.
In addition to the definitions set forth herein, all capitalized terms used but not defined in this Privacy Policy shall have the respective meanings designated in the Terms and Conditions.
By using our Services or visiting our Sites, you agree to our Privacy Policy. IF YOU DO NOT AGREE WITH THIS PRIVACY POLICY, PLEASE DO NOT USE OUR SITES OR SERVICES.
If you are a California resident, click here to see Your Additional Privacy Rights and our notice at collection for information provided pursuant to California law.
This Privacy Policy does not address, and we are not responsible for, the privacy, information or other practices of any third party operating any website to which our Sites may link. The inclusion of a link on our Site to a third-party does not imply endorsement of, or affiliation with, the linked site by us or our Client(s).
TSR is a full-service marketing research firm that has been providing quantitative and qualitative market research services for clients for over 30 years. We at TSR have always cared deeply about the privacy and security of data from our Clients and Research Participants. This Privacy Policy explains how we collect, store, use, and disclose information that we receive from you via our Sites or Services, including the associated online opinion panels, community discussion boards, forums, blogs, Member generated polls, chats, etc. (“Panel(s)“).
TSR complies with the EU/U.S. Data Privacy Framework (“DPF”), the UK Extension to the EU/US DPF and Swiss/U.S. DPF as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union, the United Kingdom and Switzerland to the United States in reliance on DPF. TSR has certified to the Department of Commerce that it adheres to the DPF Principles with respect to such information. As such, TSR is under the enforcement authority of the Federal Trade Commission. If there is any conflict between the terms in this privacy policy and the DPF Principles, the DPF Principles shall govern. To learn more about the DPF program, and to view our certification, please visit https://www.dataprivacyframework.gov/s/
This Privacy Policy is provided in a layered format so you can click through to the specific areas set out below:
- Information we collect and how it is used
- Who we share your information with
- How long we retain your information
- What rights you have over your information
- Where your information is used
- Your Additional Privacy Rights
- How we protect your information
- Third Party Links
- Parent/Family Research Participation Information & COPPA Compliance
- Changes to this Privacy Policy
- Contact Us
1. Information We Collect & How it is Used
Our Clients’ Information
You may provide us with your personal contact information when using our Sites or Services. This information may include, but is not limited to, your: name, email address and phone number.
We collect this information with your consent and use your contact information to connect with you when you ask us to do so, or to provide our Services. We may also use your contact information to tell you about changes to this Privacy Policy.
Our Research Participants’ Information
As a Research Participant, the collection, use and sharing of your personal data is subject to this Privacy Policy (which includes our Cookie Policy and other documents referenced in this Privacy Policy) and updates. When you visit or use any of the TSR Sites or our Services, you may share and/or we may automatically collect information that identifies you personally. As used in this Privacy Policy, “Personal Information” means information that relates to, identifies, describes or could reasonably be linked (directly or indirectly) with a consumer or device, this includes: your name, postal address, email address and phone number, your device IDs, IP address, cookie data and other information that may be used to identify your device or browser; demographic information, such as your age, gender, and race; and sensitive categories of information, such as your political opinions, and religious or philosophical beliefs. We collect sensitive categories of information when you provide it to us, and will only use it for the purposes disclosed at the time of collection.
Generally, we collect your information when you provide it to us by visiting the TSR Sites and/or using our Services. This may include registering for an account on our Site, filling out surveys, joining/participating in online research communities, participating in qualitative sessions, joining a research Panel/recruitment data base, or otherwise volunteering or providing information about yourself.
You have choices about the information you provide. You don’t have to provide additional information; however, certain information may be required in order to participate in certain research activities. You can choose not to provide us with that information; however, you may not be able to participate in our Panels or use the Sites, and we may not be able to provide you with our Services as a result.
In addition to the information referenced above, we also collect other information, that may be considered personally identifiable, when you visit the Sites and use our Services, or when we conduct business transactions with our partners and third-party vendors and Trust Service Providers (as defined below).
Cookies, Logs, Digital Finger Printing & Artificial Intelligence (AI) Technology
Cookies. Cookies are small information files that are placed on your computer when you visit a website. TSR uses both “session cookies” and “persistent cookies.” A session cookie remembers your preferences for a single Site visit, while a persistent cookie remains after you close your browser and may be used by your browser on subsequent visits to the Site. These persistent types of cookies can be removed. Each web browser implements different functionality, so please refer to the manuals or technical support resources that are available in conjunction with your web browser to learn the correct way to modify your cookies set-up. If you decide to block one or more cookies, the website may not function correctly, also survey functionality may be impaired.
Our Sites use Google Analytics, a service which transmits website traffic data to Google servers in the United States. Google Analytics does not identify individual users or associate your IP address with any other data held by Google. We use reports by Google Analytics to help us understand website traffic and website usage. To opt-out of Google analytics, please click here – https://tools.google.com/dlpage/gaoptout.
You can also opt-out of cookies in the preferences or options menus of your browser. If you decide to block one or more cookies, the website may not function correctly, also survey functionality may be impaired.
The information collected from cookies on the Site is used for our legitimate business interests. We use cookies on the Sites to:
- determine how visitors to our Site engage with and navigate our Site, what websites users visit before visiting our Site, how often they visit our Site, and other similar information. This helps us improve our Site and the content we display to our visitors.
- determine the type of operating system and browser that you and other visitors to our Site are using. Some of the surveys we design will work best with certain kinds of browsers or may require certain other software to be installed, so we use this information to determine whether a participant’s computer is capable of displaying those questionnaires.
- facilitate surveys including preventing individual users from taking any given survey more than one time.
To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.allaboutcookies.org, or www.aboutcookies.org.
Log Files. Web servers use log files to record data about our website visitors’ movement on the Site. This is common for many websites and is used to analyze Site visitor website interface and produce website traffic statistics. This information typically includes:
- the IP address of each visitor
- the time of the visit
- browser type
- ISP
- pages visited.
The log file may also keep track of what resources were loaded during each visit, such as images, JavaScript, or CSS files. The purpose is not to identify individual visitors but to monitor Site traffic and trends.
Digital Fingerprints. Generally, digital fingerprinting technologies assign a unique identifier or “Machine-ID” to a user’s computer to identify and track the computer. We analyze publicly available information and data obtained from the computer’s web browser and from other publicly available data points, including, without limitation, the technical settings of the computer, the characteristics of the computer, device ID/MAC address, and the computer’s IP address, to create a unique identifier assigned to the computer. If you are on a mobile device, we also collect the UUID for that device.
For data quality control purposes (e.g., identifying fraudulent respondents), security, and related purposes, TSR will:
- link or associate your unique identifier to you and any of your personal information;
- share your unique identifier with our Clients and with other sample or panel providers;
- receive or obtain a unique identifier linked to you from a third party, including without limitation a sample or panel provider or a Client of TSR.
Unaffiliated Vendors. TSR uses vendors for data quality control purposes (“Trust Service Providers”), including but not limited to:
- Imperium (RelevantID®, Verity® and RealAnswer® Technology): Digital fingerprinting, address verification and survey quality checks
- Xverify: Email and address verification
Any unique identifier(s) received or obtained by TSR and linked to a specific individual will be protected in accordance with this Privacy Policy.
AI technology may be used for various research purposes, including but not limited to:
- Identifying patterns and trends in research data.
- Segmenting and categorizing Research Participants based on their responses.
- Enhancing the accuracy and efficiency of data analysis.
Do Not Track (DNT). Some browsers have a “do not track” feature that lets you tell websites that you do not want to have your online activities tracked. Our Site is not currently set up to respond to those signals for tracking on our Site.
That said, we do not knowingly permit other parties to collect personal information about your online activities over time and across different websites when you visit our Site.
Global Privacy Controls. We do not sell or share your personal information (as defined by California law). As a result, we do not respond to browser-based opt-outs such as the Global Privacy Control.
2. Who we share your information with
Our Clients’ Information
We share your information with the service providers we engage to perform services on our behalf, including the companies that help us manage our customer contact information and provide the Site. These companies are contractually obligated to use your information solely on our behalf in connection with providing services to us.
We do not sell or rent Clients’ personal information to unaffiliated parties.
Our Research Participants’ Information
TSR may collect Personal Data to conduct research. This information will be analyzed by TSR and the results will be shared with our Client(s) and used for their market research.
We may share Research Participants’ information with the following:
- Rewards and incentive programs
- Fulfillment (mailing) houses in order to send gifts or prizes to Research Participants
- Vendors we hire to help us with data management/processing or companies that work on studies on behalf of or in collaboration with us.
- Vendors who we hire to perform quality control on our behalf, to validate and ensure research participants authenticity and to protect against fraud and for our purposes.
We will also share your personal information:
- In the event of a sale of all or part of our business, we will share your personal information with prospective buyers.
- To fulfill a legal obligation, including to protect ourselves or our Members, enforce our Terms and Conditions, or in response to a lawful request by public authorities, including to meet national security or law enforcement requirements. We may attempt to notify Research Participants about legal demands for their personal data when appropriate in our judgment, unless prohibited by law or court order or when the request is an emergency. We may dispute such demands when we believe, in our discretion, that the requests are overbroad, vague or lack proper authority, but we do not promise to challenge any demand or inquiry on your behalf.
- With our Clients or unaffiliated parties for security purposes, including, for monitoring the proprietary and confidential information of our Clients. For instance, TSR’s Clients may disclose confidential and/or proprietary content (e.g., concepts, ideas, ads, videos, creative content, etc.) to you as part of surveys, online communities, qualitative sessions and other research activities which you may not disclose or use for any purpose except for the sole purpose of completing the research activity. If you fail to comply, we may share your information with our Client or other unaffiliated parties for enforcement purposes which may include pursuing legal action.
- In addition to security purposes, with our Clients as described in this Privacy Policy, or as otherwise described to you (for example if you are selected to participate in a qualitative study such as a focus group).
- To unaffiliated parties in accordance with this Privacy Policy or where we have your express permission to do so.
- As otherwise permitted by law, or as we may notify you from time to time.
If you use the Community features such as the Community Forum Area (defined below) on our Site to post blogs, bulletins or chat with fellow community Members, you should be aware that any personal information you submit there can be read, collected, or used by other users of these forums, and could be used to send you unsolicited messages. A “Community Forum Area” may vary from project to project but may include and is not limited to a discussion board that is only open to Research Participants and not to the general public where Research Participants can see and post on each other’s Posts. We are not responsible for the personal information you choose to submit in these forums. If you give permission for your child to participate in a community activity such as a forum on our Site that permits minors’ participation, the community rules will forbid Members from posting personal information, you must instruct your child not to post personal information and to abide by the Rules of the community or the Site. We may remove personal information submitted in these community activities once we become aware of it but we are not responsible for the personal information submitted in these forums.
TSR shall remain liable under the EU/U.S. DPF, the UK Extension to the EU/US DPF and Swiss/U.S. DPF Principle of Accountability for Onward Transfer if its subprocessors process your Personal information in a manner inconsistent with the DPF Principles, unless TSR proves that it is not responsible for the event giving rise to the damage.
No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. All categories exclude text messaging original opt-in data and consent; this information will not be shared with any third parties.
3. How long we retain your information
We make efforts to ensure that personal information we receive, process, or maintain is accurate, complete, and reliable. We rely on the accuracy of the information provided directly to us but accept responsibility for the management and confidentiality of the personal information collected. In general, we keep personal information as long as we need it for our legitimate business purposes. For example, we may retain personal information for any period required by law or to comply with our legal obligations, protect intellectual property, prevent fraud, resolve disputes, and enforce our agreements.
4. What rights you have over your information
Your Choice: By providing Personal Information to us, you understand that we collect, hold, use and disclose Personal information in accordance with this privacy policy. Please note that certain information may be required in order to participate in certain research activities. You can choose not to provide us with that information, however, you may not be able to participate in our Panels or use the Sites, and we may not be able to provide you with our Services as a result.
We provide the following rights to all Research Participants, regardless of where they are a resident.
- Access what data we have about you/your child/your household, if any.
- Change/correct any data we have about you/your child/your household.
- Have us delete and stop using any data we have about you/your child/your household.
- Restrict the processing of your/your child’s/your household’s personal information, including preventing the personal information from being disclosed to third parties or from being used for a purpose that is materially different from that for which it was originally collected or subsequently authorized by you.
You may exercise these choices by submitting a Subject Access Request Form here or by contacting us at:
Touchstone Research, Inc.
Attn: Travis Santa, Privacy Officer
460 James Street
Suite 007
New Haven, CT 06513
Email: [email protected]
You may be asked to verify your identity, including by providing your full name or email address. There are no costs to you for exercising your right to access your personal information, or to request further information on our Privacy Policy or practices.
EU & Swiss Citizens
In compliance with the EU/U.S. DPF, the UK Extension to the EU/US DPF and Swiss/U.S. DPF Principles, TSR commits to resolve complaints about your privacy and our collection or use of your personal information. European Union individuals with inquiries or complaints regarding this Privacy Policy should first contact TSR at:
Touchstone Research, Inc.
Attn: Travis Santa, Privacy Officer
470 James Street
Suite 007
New Haven, CT 06513
Email: [email protected]
Individuals and data protection supervisory authorities in the EU and the UK may contact our data protection representatives according to Articles 27 EU and UK GDPR:
Email: [email protected]
EU: DP-Dock GmbH, Attn: Touchstone Research Inc., Ballindamm 39, 20095 Hamburg, Germany
UK: DP Data Protection Services UK Ltd., Attn: Touchstone Research Inc., 16 Great Queen Street, Covent Garden, London, WC2B 5AH, United Kingdom
Tel: +49 (0) 40 99999 – 3430
Fax: +49 (0) 40 99999 – 3332
TSR has further committed to refer unresolved privacy complaints under the EU/U.S. DPF, the UK Extension to the EU/US DPF and Swiss/U.S. DPF Principles to the INSIGHTS ASSOCIATION DATA PRIVACY FRAMEWORK SERVICES PROGRAM, a non-profit alternative dispute resolution provider located in the United States and operated by the Insights Association. If you do not receive a timely acknowledgement of your complaint, or if your complaint is not satisfactorily addressed, please visit https://www.insightsassociation.org/Resources/Data-Privacy-Framework for more information and to file a complaint. These dispute resolution services are provided to you at no cost.
If your complaint is not resolved after following the recourse mechanisms described above, you may have the ability, under certain limited conditions, to invoke binding arbitration before the DPF Arbitration Panel.
5. Where your information is used
We collect and receive data from inside and outside of the United States.
To ensure that EU personal data is adequately protected when transferred outside the EU, the Data Protection Directive 95/46/EC and, as of May 25, 2018, the General Data Protection Regulation mandate that such transfers take place using certain legal mechanisms described in this EU Data Protection Unit FAQ.
We will use European Commission-approved Standard Contractual Clauses as a legal mechanism for data transfers from the EU. As explained in the EU Data Protection Unit FAQ, these clauses are contractual commitments between companies transferring personal data, binding them to protect the privacy and security of the data. We use Standard Contractual Clauses so that the data flows necessary to provide, maintain, and develop our Panels take place legally.
Individuals and data protection supervisory authorities in the EU and the UK may contact our data protection representatives according to Articles 27 EU and UK GDPR:
Email: [email protected]
EU: DP-Dock GmbH, Attn: Touchstone Research Inc., Ballindamm 39, 20095 Hamburg, Germany
UK: DP Data Protection Services UK Ltd., Attn: Touchstone Research Inc., 16 Great Queen Street, Covent Garden, London, WC2B 5AH, United Kingdom
Tel: +49 (0) 40 99999 – 3430
Fax: +49 (0) 40 99999 – 3332
6. Your Additional Privacy Rights
We may share your personal information as described in more detail throughout this Privacy Policy, however, we do not share your personal information with others for their direct marketing purposes. All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
We provide California, Colorado, Connecticut, Virginia, and Utah residents with the following rights in accordance with their respective state laws:
- Notice of Categories of Personal Information
Research Participants have the right to request that TSR provide notice of the categories of personal information we have collected from you. You have the right to know the categories of sources from which the personal information has been collected, the business or commercial purpose for collecting personal information, and the categories of third parties with whom your personal information is shared. For more information, please consult our Notice of Collection of Categories of Personal Information which contains a list of categories of Personal Information collected, used, and/or disclosed to third parties for a business or commercial purpose.
- Right to “Know/Access,” Correct or Delete Personal Information Collected and Right to Deletion
Research Participants have the right to request what personal information has been collected from them as well as the right to have inaccurate personal information corrected. Residents also have the right to have their personal information deleted. You can make a request to exercise any of these rights by contacting us at:
Touchstone Research, Inc.
Attn: Travis Santa, Privacy Officer
470 James Street
Suite 007
New Haven, CT 06513
Email: [email protected]
Research Participants can also access personal information about themselves by clicking [here] to fill out a Subject Access Request Form, using the Contact Us page on the Site or sending a letter to the mailing address listed in the Contact Us section of this Privacy Policy, they can review the personal information about themselves and their household, update, correct the data, or indicate that they wish to withdraw from participation in a Panel. You will be asked to verify your identity, including providing your full name or email address.
Research Participants can also request that inaccurate personal information be corrected by clicking [here] to fill out a Subject Access Request Form, using the Contact Us page on the Site or sending a letter to the mailing address listed above. You will be asked to verify your identity before we can honor your request.
Research Participants can also request that their personal information be deleted by clicking [here] to fill out a Subject Access Request Form, using the Contact Us page on the Site or sending a letter to the mailing address listed above. You will be asked to verify your identity before we can honor your request.
Please note that any request to delete or access personal information will only apply to the 12-month period preceding the request, and you are entitled to place a request for access to your personal information no more than twice in any 12-month period.
- Right to Opt-out of the “Sale” or “Sharing” of your Personal Information or Targeted Advertising
The CCPA broadly defines the “sale” of Personal Information to include renting, releasing, disclosing, transferring or making available information in exchange for monetary as well as non-monetary consideration and “sharing” means any disclosure of personal information (renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating orally, in writing, or by electronic or other means) to third parties for cross-contextual behavioral advertising purposes; in each case, subject to certain exceptions under California law. Your selections are specific to the device, website and browser you are using, and are deleted whenever you clear your browser’s cache. We do not knowingly sell or share (as defined by California law) your personal information and do not use your personal information for targeted advertising.
- Right to Non-Discrimination
Research Participants have the right not to receive discriminatory treatment by TSR for exercising their rights under state privacy laws. Please note that certain exercises of your rights may prevent TSR from providing certain services to you.
- Right to Use an Authorized Agent
California residents have the right to designate an authorized agent to make a request under the CCPA on your behalf. To designate an authorized agent, contact us using the Contact Us form on the Site or send a letter to the mailing address listed above. In order to verify you have authorized an agent we will require a signed, written authorization from you.
- Notice of Financial Incentives
From time to time, we may offer financial incentives in connection with the collection or use of your personal information. The material terms of the financial incentive will generally be presented to you at the time you enroll. You may withdraw from any financial incentive at any time by emailing us at [email protected]Withdrawing from receiving financial incentives will also withdraw you from participating in that Panel.
7. How we protect your information
- We will store and process your information in a manner consistent with industry security standards. We have implemented appropriate technical, organizational, and administrative systems, policies, and procedures as listed below.
- We use physical, electronic, and managerial procedures to safeguard and secure the information we collect online and to protect your personal information, including email address, from loss or theft, unauthorized access, disclosure, copying, use or modification
- We have an extensive rights management for TSR, team members, Clients and authorized vendor/Client staff. Access is password protected and on a “need-to-know” basis.
- Security includes SSL (HTTPS) authentication and encryption for data transmission. Servers are kept in secure access (logged) controlled data center, fully air-conditioned, with fire doors and nitrogen firefighting appliances. All server systems are connected to each other and to the Internet with a maximum performance of 155 Mbit.
Although we take reasonable precautions to protect the information that we collect, no data transmission over the Internet can be guaranteed to be 100% secure. The Internet by its nature is a public medium, and we encourage you to use caution when disclosing information online. Once we receive your transmission, we make our best effort to ensure its security on our system; however, we cannot ensure or warrant the security of any information you transmit to us or from our online products or services, and you do so at your own risk.
8. Third Party Links
Our Sites contain links to other websites that are not owned or controlled by TSR. TSR is not responsible for the privacy practices of other websites. We encourage you to be aware when you leave our Sites, and to read the privacy statements of any website that collects personally identifiable information.
9. Parent Research Participants: Family Participation
TSR is committed to securing the privacy of minors, including complying with applicable laws such as the Children’s Online Privacy Protection Act (“COPPA”). Children under 13 cannot participate in our research studies without parental/legal guardian consent. TSR is a member of the kidSAFE Seal Program (the “Program”).
The kidSAFE Seal Program is an independent safety certification service and seal-of-approval program designed exclusively for children-friendly websites and technologies. As a participating member in the Program, TSR adheres to the strict information collection, use and disclosure requirements set forth by the Program. The kidSAFE certification seal posted on this page indicates that TSR has established COPPA compliant privacy practices and has agreed to submit to kidSAFE’s oversight and consumer dispute resolution process. The “kidSAFE+ COPPA” Seal, which is an FTC-approved COPPA certification program, means kidSAFE has verified our compliance with the Program’s additional “COPPA Privacy Rules”. These rules are modeled after the Children’s Online Privacy Protection Rule, a U.S. federal privacy law commonly referred to as “COPPA” or the “COPPA Rule”.
10. Changes to this Policy
If we decide to change our Privacy Policy, we will post those changes on our Sites, and we may also but are not obligated to email you, or may put a notice on other places we deem appropriate so that you are made aware of the changes. We will obtain prior parental consent if any changes we make to this Policy affect users under the age of 13 in a way that requires such consent under COPPA. We reserve the right to modify this Privacy Policy at any time, for any reason, at our sole discretion, so please review it frequently. Please take a look at the “LAST UPDATED” legend at the top of this Privacy Policy to see when it was last revised. Any changes to this Privacy Policy will become effective when we make the revised Privacy Policy available on our Sites.
11. Contact Us
If you have questions or concerns about our Privacy Policy that aren’t addressed above, you can contact us by calling: 1-800-409-2665, or simply click here, or write:
Touchstone Research, Inc.
Attn: Travis Santa, Privacy Officer
470 James Street
Suite 007
New Haven, CT 06513
Email: [email protected]