Privacy Policy

Table of Contents

• 1. Scope and Applicability
• 2. Information We Collect
• 3. How We Use Information
• 4. Legal Bases for Processing (GDPR)
• 5. How We Share Information
• 6. Cookies and Tracking Technologies
• 7. International Data Transfers
• 8. Data Retention
• 9. Security Measures
• 10. Your Rights (Global)
• 11. California Privacy Rights (CCPA/CPRA)
• 12. Children’s Privacy
• 13. Changes to This Policy
• 14. Contact Information

This Privacy Policy applies to all users of ProcureScore, including enterprise customers, vendor organizations, registered users, and visitors who browse the Platform anonymously.

We collect the following categories of information:

• Account Information: Name, work email address, company name, job title, phone number, login credentials.
• Vendor-Submitted Data: Company profiles, compliance details, certifications, responses to procurement questionnaires, scorecard inputs.
• Procurement & Evaluation Data: Vendor scorecards, internal evaluation notes, uploaded procurement-related documents.
• User-Generated Content: Reviews, ratings, comments, feedback.
• Technical & Usage Data: IP address, device type, browser type, pages visited, session duration, referring URLs.
• Cookies & Tracking Data: Data collected via cookies, Google Analytics, and Meta Pixel.
• Communications: Messages sent to support or sales.

• To provide and maintain the ProcureScore platform.
• To enable vendor registration and enterprise workspaces.
• To facilitate procurement evaluation and vendor scoring.
• To improve platform functionality and analytics.
• To respond to inquiries and provide support.
• To ensure security, prevent fraud, and enforce policies.
• To comply with legal obligations.

• Performance of a contract (account creation and platform services).
• Legitimate interests (platform improvement, fraud prevention).
• Consent (cookies and marketing where applicable).
• Compliance with legal obligations.

• With service providers (hosting, analytics, infrastructure).
• With enterprise customers within their authorized workspace.
• With vendors as part of procurement workflows.
• When required by law or legal process.
• In connection with a merger, acquisition, or asset sale.

We do not sell personal information.

We use cookies and similar technologies to operate the Platform and analyze usage.

• Google Analytics for traffic analysis.
• Meta Pixel for marketing measurement.
• Essential cookies required for authentication and session management.

You can manage cookies through your browser settings.

Because we operate globally, information may be transferred to and processed in countries outside your country of residence. Where required, we implement appropriate safeguards under applicable law.

We retain personal information as long as necessary to provide services, comply with legal obligations, resolve disputes, and enforce agreements. Enterprise customers may request deletion of workspace data subject to contractual obligations.

• HTTPS encryption in transit.
• Access controls and authentication safeguards.
• Role-based workspace access controls.
• Encryption of authentication credentials.

No method of transmission or storage is 100% secure.

• Access your personal data.
• Request correction.
• Request deletion (subject to contractual and legal limits).
• Object to or restrict processing.
• Withdraw consent where applicable.

California residents have the right to know, access, delete, and correct personal information collected. We do not sell personal information.

ProcureScore is not intended for individuals under 16 years of age. We do not knowingly collect personal information from children.

We may update this Privacy Policy periodically. Continued use of the Platform after updates constitutes acceptance.

For privacy-related inquiries, contact: **privacy@yourdomain.com**