🔒 Your Privacy Matters

Privacy Policy

At Clover ERA, we're committed to protecting your privacy and ensuring the security of your personal data across all jurisdictions where we operate.

Last Updated: August 2025

📋 Overview

Clover ERA Inc. ("we," "our," or "us") is a Delaware corporation headquartered in the United States, providing workplace engagement and wellness solutions to organizations globally. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

✅ GDPR Compliant

We are fully compliant with the General Data Protection Regulation (GDPR) for our operations in the European Union and United Kingdom, ensuring the highest standards of data protection for all our users worldwide.

Our Commitment: We process personal data lawfully, fairly, and transparently. We collect only what we need, keep it secure, and respect your rights regarding your personal information.

📊 Information We Collect

Information You Provide Directly

  • Account Information: Name, email address, company name, job title, and phone number when you create an account or request information
  • Assessment Data: Responses to workplace engagement assessments and surveys
  • Communication Data: Information you provide when contacting our support team or participating in webinars
  • Payment Information: Billing details processed securely through our payment providers (we do not store credit card numbers)

Information Collected Automatically

  • Usage Data: How you interact with our platform, features used, and time spent
  • Device Information: IP address, browser type, operating system, and device identifiers
  • Cookies and Tracking: We use cookies and similar technologies to enhance your experience and analyze usage patterns
Cookie Type Purpose Duration
Essential Enable core functionality and security Session
Analytics Help us understand usage patterns 2 years
Preferences Remember your settings and choices 1 year

⚙️ How We Use Your Information

Primary Purposes

  • Service Delivery: To provide and maintain our workplace engagement platform
  • Personalization: To customize recommendations and insights based on your organization's needs
  • Communication: To send service updates, respond to inquiries, and provide customer support
  • Improvement: To analyze usage patterns and enhance our services
  • Legal Compliance: To comply with applicable laws and regulations

Legal Bases for Processing (GDPR)

For users in the EU and UK, we process personal data based on:

  • Contract Performance: Processing necessary to deliver our services
  • Legitimate Interests: For business operations, security, and service improvement
  • Consent: Where you've explicitly agreed to specific processing
  • Legal Obligations: To comply with applicable laws

🔄 Information Sharing and Disclosure

We do not sell, trade, or rent your personal information. We may share information only in these circumstances:

  • Service Providers: With trusted third parties who assist in operating our platform (under strict confidentiality agreements)
  • Legal Requirements: When required by law or to protect rights and safety
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with continued protection)
  • Aggregated Data: We may share anonymized, aggregated data that cannot identify individuals

International Data Transfers

As we operate globally, your information may be transferred to and processed in countries other than your own. For transfers from the EU/UK to the USA, we use appropriate safeguards including:

  • Standard Contractual Clauses approved by the European Commission
  • Technical and organizational measures to ensure data security
  • Limiting access to personal data on a need-to-know basis

⚖️ Your Privacy Rights

🇪🇺 GDPR Rights for EU/UK Residents

Under GDPR, you have the following rights:

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a portable format
  • Right to Object: Object to certain types of processing
  • Right to Withdraw Consent: Where processing is based on consent

Rights for US Residents

Depending on your state (including California under CCPA/CPRA), you may have rights to:

  • Know what personal information we collect and how it's used
  • Request deletion of your personal information
  • Opt-out of the sale of personal information (we do not sell personal data)
  • Non-discrimination for exercising your privacy rights
📝 How to Exercise Your Rights

To exercise any of these rights, please contact us at legal@cloverera.com. We will respond to your request within 30 days (or as required by applicable law).

🔐 Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and audits
  • Access controls and authentication measures
  • Employee training on data protection
  • Incident response procedures
  • Regular backups and disaster recovery plans

While we strive to protect your personal information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to maintaining the highest standards of data protection.

⏱️ Data Retention

We retain personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law. Our retention periods are:

Data Type Retention Period
Account Information Duration of account + 3 years
Assessment Data Duration of service + 2 years
Communication Records 3 years from last interaction
Analytics Data 2 years
Financial Records 7 years (legal requirement)

👶 Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us immediately, and we will take steps to delete such information.

📢 Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Updating the "Last Updated" date
  • Sending email notification for significant changes

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

Contact Our Privacy Team

If you have questions about this Privacy Policy or how we handle your personal data, please don't hesitate to contact us.

📧
Email
legal@cloverera.com
📞
Phone
(212) 918-4448
📍
Mailing Address
Clover ERA Inc.
1201 North Market Street
Suite 111-M77
Wilmington, DE 19801
United States
🇪🇺 EU/UK Data Protection Officer

For GDPR-related inquiries, you may also contact our Data Protection Officer at dpo@cloverera.com

EU/UK residents also have the right to lodge a complaint with their local supervisory authority if they believe their data protection rights have been violated.