Privacy Center
Privacy At Sourcer
Sourcer understands the importance of data privacy and takes the responsibility of handling and securing personal data seriously. We focus on incorporating data protection principles throughout our platform, program, and services that provide effective data privacy measures for Sourcer, its workforce, partners, and users.
Sourcer’s Privacy and Information Security teams have carefully analyzed applicable privacy laws and regulations and undertaken the necessary steps for our compliance with their requirements. We provide detailed information about the personal data we collect and how we use it in our agreements, in our help articles, and in our Privacy Policy.
Depending on where you are located, you may have certain rights with respect to your personal data, which you can learn about below. Regardless of where you call home, you may close your account or request the deletion of all personal information we have about you at any time.
Learn more about how Sourcer is complying with GDPR and the CCPA in our Privacy Policy.
Europe
The General Data Protection Regulation (GDPR) is a data privacy law that gives residents of the European Union (“EU”) more clarity and control over how their personal data is used. Personal data is anything that can directly or indirectly identify a person, such as a photo, name, bank details, medical information, computer IP address, and so on.
Under the GDPR, companies are required to be transparent about what types of personal data they collect and how they use it, be responsible for secure data processing practices, and provide notification to customers or data subjects when breaches occur.
The United Kingdom General Data Protection Regulation (UK GDPR) is a UK law that is largely based on the GDPR, but went into effect in 2021 as a result of the UK’s withdrawal from the EU. In conjunction with the Data Protection Act 2018, it sets out the key principles, rights and obligations for most processing of personal data in the UK.
The Digital Services Act (DSA) is a European law that aims to ensure a safe and accountable online environment that went into effect November 16, 2022. For the purposes of the DSA, Sourcer has 528 average monthly users in the EU as of January 31, 2024.
Transfer of Data
With respect to transfers that involve personal data that is within the scope of European data protection laws, Sourcer relies on standard contractual clauses as a transfer mechanism to reflect relevant compliance requirements.
We have posted a Data Processing Agreement (“DPA”), governing the relationship between the Customer (as defined in the DPA) and Sourcer with respect to personal data. Unless otherwise agreed to in writing by you and Sourcer, the DPA applies to the extent Sourcer processes any personal data for you as a controller in your role as a Customer.
United States
The data protection landscape in the U.S. is a patchwork of regulations, state laws, and other requirements that are currently in flux. Sourcer’s Legal team performs ongoing monitoring and analysis to determine their application to the personal data we handle and conform to their requirements.
"Sharing" and "Selling" Personal Information
Certain state laws provide rights for individuals to prevent the “sharing” and “sale” of their personal information. Sourcer does not sell your personal information as the term is commonly understood. But we do allow some advertising vendors to use your personal information for internet-based marketing that may be considered “selling” or “sharing” under those definitions. The only means by which Sourcer may “sell” or “share” your personal information is with our third-party marketing partners.
If you are located in a state that provides this right, you may opt out of the “sale” and “sharing” of your personal information by emailing us at privacyrequests@sourcer.com. This opt-out is specific to the browser on the device, so you will need to opt out again if you: 1) later clear your cookies, or 2) visit this site from a different browser or device.
Sensitive Personal Information
State laws have different definitions for personal information that is inherently more sensitive or would pose a greater risk of harm to the individual if mishandled. Sourcer identifies and appropriately handles the data classified as “sensitive personal information” or other elevated classification.
Some state laws allow individuals to limit the use of their sensitive personal information to purposes necessary to perform the services. Sourcer imposes this limitation upon itself inherently, and only uses the limited sensitive personal information it collects to provide, maintain, improve, and secure our services.
How Do I Submit a Data Request?
Depending on where you are located, you may have certain rights with regard to your personal data. These rights may be limited, for example, if fulfilling a request would reveal personal data about another person, or if you ask us to delete data which we are required by law to keep or have compelling legitimate interests in keeping (such as fraud prevention purposes or record retention requirements under applicable laws). In addition, we typically will not remove data you posted publicly or shared with others through or on the Service, as neither you nor Sourcer can delete all copies of data that have been previously shared with others.
If you would like to request to close your account in our system, you can do so through our platform. In addition, you can access, correct, or delete your personal data by making updates to that data through your account. You can also submit a request to us regarding your personal data by emailing privacyrequests@sourcer.com. Please note that if your data is deleted, then your account may become deactivated. If your account is deactivated or you ask to close your account, you will no longer be able to use the platform.