We at No Status Quo, Inc. (“NSQ”) value individuality, we value each and every one of you who participate in our self-assessments or who just interact with our website. We appreciate the value of your trust and have chosen to do so by committing to respect your right to privacy and data protection.
As such, this Privacy Notice is designed to explain when and why we collect personal data about you or your organization, how we use it, the conditions under which we can disclose it to others, how we keep it safe and secure, and your rights and choices in relation to your information.
It is important that you read this Privacy Notice together with our Cookies Notice and any other notice we will provide on certain, specific occasions when we are collecting or processing personal data about you, so that you are fully aware of how and why we are using your data.
This Privacy Notice applies to your access to and use of the website located at www.no-statusquo.com and any other website, microsite, mobile device application, or Internet property owned, or operated by NSQ, and related services. It also describes the personal data we collect from these sites and services and how it is used, including information we collect when you register for use of the websites.
NSQ is not a consultancy, but a team of change agents in your corner, unlocking the inherent value of your business through digitization. In this notice, ‘NSQ’, ‘we’, ‘us’ or ‘our’ means:
No Status Quo, Inc.
1579 Monroe Drive NE, Suite #F903,
Atlanta, GA, 30324
Any questions regarding this notice and our privacy practices should be submitted via our Data Service Access Request (DSAR)
Your data is processed for the following purposes:
We use a scheduling tool to help you book the preferred timeslot for a meeting with us and to have the appointment details swiftly shared with you for convenience. In doing that, our elected scheduling tool requires that we process your first and last name, and e-mail address, together with any meeting message/note you may want to include.
Through our self-assessment forms, we look to give you the opportunity to find out more about how your business performs against a set of desirable milestones indicating success in various areas such as resilience, privacy, marketing and so forth. To do that, we need to record the answers you give when filling out the form but also process some information such as your first and last names, e-mail address and job title, so as to make our feedback as contextual as possible.
Whether we receive a call from an interested prospect or an entrepreneur having completed our 360-Rethink form, we need to process your phone number or e-mail address respectively to be able to respond in due fashion.
We have found it beneficial to be able to go back and listen to meeting recordings so as to clarify what exactly has been said, to revisit project requirements and so forth. Inevitably, doing so necessitates that we retain the information shared as part of those meetings, including your name(s), e-mail address and conversations we have had.
For example, to compile a project requirements document or an offer based on the information you have shared through one of our self-assessment forms.
For example, to respond to official requests for information or to retain invoices for the purpose of complying with potential tax audits.
For example, to get to know you better by proposing to discuss the feedback you may have received from completing one of our self-assessments, or to invite you to complete one.
Depending on the purposes for which we process your data, it will be retained as necessary for the following:
Scheduling – To keep the appointment details visible to the parties to be reminded of attendance and for a period of 6 months afterwards for ascertaining the date/time at which a conversation may have taken place.
Self-assessing – To provide feedback to the details you have shared and for a period of 6 months afterwards for notifying you of any capabilities we may have developed that would be relevant to your business. Should we conclude an agreement for the execution of a project within the 6 months succeeding the completion of the self-assessment form, we will retain all details for a period of 6 years after the contract completion date for the exercise or defense of legal claims.
Engaging – To provide feedback to the details you have shared and for a period of 12 months afterwards for notifying you of any capabilities we may have developed that would be relevant to your business. Should we conclude an agreement for the execution of a project within the 12 months succeeding the completion of the self-assessment form, we will retain all details for a period of 6 years after the contract completion date for the exercise or defense of legal claims.
Call recording – To review the details exchanged during a particular meeting so as to address any pending queries and for a period of 3 months from the date of the meeting to facilitate the preparation of documentation such as a project requirements document or a binding offer, should one be requested. Where we conclude an agreement for the execution of a project within the 3 months succeeding the date of the meeting taking place, we will retain all details for a period of 6 years after the contract completion data for the exercise or defense of legal claims.
In fulfilling the purposes outlined above, we share your data with the following organizations:
Google – Office software and e-mail.
Calendly – Appointment scheduling.
JotForm – Assessment form management.
Xero – Accounting software.
Stripe – Payment processing.
Slack – Internal task tracking and communication.
RingCentral – Call recordings.
Authorities – Regulatory compliance.
Jira – Agile program & project management.
Hubspot - Customer relationship management.
When it comes to your data, you have been afforded the rights listed below and you can exercise them by using our Data Service Access Request (DSAR) form.
Right of access – You can request a copy of the personal data we hold about you.
For example, if you completed one of our self-assessments, you could request that we send you a copy of that completed form, together with any additional information we hold about you. However, if we are unable to associate the information with you, it can be excluded from our response.
Right to rectification – If we have entered your personal data incorrectly, you can request that we fix it.
For example, if your last name has changed because you have recently married (congratulations!), you can ask us to amend our records to reflect that.
Right to erasure (‘right to be forgotten’) – You can request that we delete all your personal data.
For example, you can request that we delete the answers you have given to one of our self-assessment forms. However, be mindful that there are circumstances when such requests can be denied, including when we need to continue processing your data to comply with legal obligations imposed on us or for the exercise or defense of legal claims.
Right to restriction of processing – In the case we enter into an argument regarding the processing of your data, you can request that we stop processing it until the argument is resolved.
For example, you can request we stop processing your data because its accuracy is contested. However, the restriction will last until this particular issue is resolved as opposed to indefinitely.
Right to data portability – You can receive all of your own data in commonly-readable format.
For example, you can request we send your data to another provider. However, such requests can only be made with respect to data processed on the basis of your consent or contractual necessity.
Right to object – In cases involving, for example, inviting you to complete a topic-related assessment form, you could object to the processing of your personal data, if we continued sending you information about that after you have opted-out of receiving it.
However, be mindful that such requests can only be made about processing based on our legitimate interests.
Right to lodge a complaint – You have the right to lodge a complaint with the Supervisory Authority in the country where you reside, work or where the alleged infringement took place.
We do not sell your information for payment.
For the purposes of the California Consumer Privacy Act, ‘selling’ information broadly means sharing personal information with partners in exchange for valuable consideration. We share identifiers such as cookies and the advertising identifier associated with your mobile device with our advertising partners. Those partners can use those identifiers to show ads that are targeted to your interests. To opt-out of these uses of your personal information and any other sale of your personal information in the future, you can navigate the Cookie Consent Banner made available on our website.
We try to keep this Privacy Notice up to date at all times but, should we introduce any changes, we will endeavor to list them in this section for ease of reference.
Last updated: August 23rd, 2021