Privacy Policy

Diversified Safety & Compliance ("DSC", "we", "us", or "our") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website www.diversifiedsafety.com, use our services, or interact with us.

By accessing our website or using our services, you acknowledge that you have read and understood this Privacy Policy and agree to be bound by its terms.

Effective Date: January 7, 2025

We collect information that you provide directly to us, as well as information that is collected automatically when you use our services.

Information You Provide

We collect the following types of personal information when you interact with us:

• Contact Information: Name, email address, phone number, company name, and mailing address
• Account Information: Username, password, and profile information (for admin users)
• Form Submissions: Information you provide through contact forms, RFP requests, emergency notifications, career applications, or gated resource downloads
• Communications: Records of communications between you and DSC, including email correspondence and support tickets
• Payment Information: Billing address and payment details (processed securely by third-party payment processors)

Information Collected Automatically

When you visit our website, we automatically collect certain information about your device and usage:

• Device Information: IP address, browser type and version, operating system, device identifiers
• Usage Data: Pages visited, time spent on pages, links clicked, referring URL, and other analytics data
• Cookies and Similar Technologies: See our Cookie Policy for detailed information

We use your personal information for the following purposes:

• Service Delivery: To provide and maintain our DOT compliance, drug & alcohol testing, and technology services
• Communication: To respond to your inquiries, send service updates, and provide customer support
• Marketing: To send you informational materials, newsletters, and promotional content (you may opt out at any time)
• Resource Access: To deliver gated resources (guides, checklists, whitepapers) that you request
• Account Management: To create and manage user accounts for our admin panel
• Analytics and Improvement: To analyze website usage, improve our services, and enhance user experience
• Legal Compliance: To comply with legal obligations, including DOT and FMCSA recordkeeping requirements
• Security: To protect against fraud, unauthorized access, and other security threats

We do not sell your personal information to third parties. We may share your information in the following circumstances:

Third-Party Service Providers

We share information with service providers who perform services on our behalf:

• SendGrid (Twilio): Email delivery and notifications (Privacy Policy)
• Google Analytics 4: Website analytics and performance monitoring (Privacy Policy)
• Google Cloud Storage: Media file storage and delivery (Privacy Policy)
• Google Cloud SQL: Database hosting and data storage (Privacy Policy)

Legal Requirements

We may disclose your information if required by law, regulation, or legal process, or to:

• Comply with DOT, FMCSA, or OSHA recordkeeping and reporting requirements
• Respond to subpoenas, court orders, or legal requests from government authorities
• Enforce our Terms of Service or other agreements
• Protect the rights, property, or safety of DSC, our clients, or others

Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the acquiring entity. We will notify you of any such change via email or prominent notice on our website.

We use cookies and similar tracking technologies to collect usage data and improve your experience on our website. For detailed information about the types of cookies we use, their purposes, and how to manage them, please refer to our Cookie Policy.

Depending on your location, you may have certain rights regarding your personal information under the General Data Protection Regulation (GDPR) or the California Consumer Privacy Act (CCPA).

Your Rights Include:

• Access: Request a copy of the personal data we hold about you
• Rectification: Request correction of inaccurate or incomplete data
• Erasure: Request deletion of your personal data (subject to legal obligations)
• Portability: Receive your data in a structured, machine-readable format
• Objection: Object to processing of your data for specific purposes
• Restriction: Request restriction of processing under certain conditions
• Withdraw Consent: Withdraw consent for data processing at any time

How to Exercise Your Rights

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days as required by applicable law.

Please note that we may need to verify your identity before processing your request. In some cases, we may be unable to fulfill your request due to legal obligations (e.g., DOT recordkeeping requirements).

We implement industry-standard security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. Our security practices include:

• Encryption: TLS 1.3 encryption for data in transit and AES-256 encryption for data at rest
• Access Controls: Role-based access controls and multi-factor authentication for admin accounts
• Regular Audits: Periodic security assessments and vulnerability scanning
• Data Backup: Regular backups stored in secure, georedundant locations
• Secure Hosting: All data stored on secure Google Cloud Platform infrastructure with 99.9% uptime SLA

While we strive to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but will notify you of any data breaches as required by applicable law.

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law.

Retention Periods:

• Form Submissions: 5 years (regulatory requirement)
• Download Logs: 5 years (regulatory requirement)
• Analytics Data: 26 months (Google Analytics default)
• Media Files: Indefinite (or until deleted)
• User Accounts: Active accounts: indefinite; inactive: 3 years

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at [email protected], and we will take steps to delete such information.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will:

• Update the "Last Updated" date at the top of this page
• Post a notice on our homepage for 30 days following material changes
• Send an email notification to registered users for significant changes affecting data processing

We encourage you to review this Privacy Policy periodically. Your continued use of our services after changes are posted constitutes your acceptance of the updated policy.

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: