Last updated: May 19, 2026
Privacy Policy
This policy is organized by role: website visitors, quiz respondents/leads, customer account users, and business contacts.
Contact
For privacy questions or requests, contact [email protected]. Principal business address: 600 California Street, 11th Floor, San Francisco, CA 94108, United States.
Scope and roles
This policy explains how Pre-Assessment.com collects, uses, stores, shares, and protects personal information when people visit our website, use customer/admin accounts, respond to guided pre-assessment quizzes, contact us, or otherwise interact with us.
For most respondent data submitted through a customer campaign, the customer or campaign owner is expected to be the controller/business responsible for deciding why and how that data is processed, and Pre-Assessment.com acts as a processor/service provider. For website visitors, customer account users, business contacts, billing contacts, support requesters, and our own security and product operations, Pre-Assessment.com may act as a controller/business.
Respondents and leads
If you answer a pre-assessment quiz, the campaign owner generally decides what information is requested, why it is needed, how it will be used, and whether your submission qualifies for follow-up. You should review any notice provided by the campaign owner before submitting information.
Depending on the campaign, we may process quiz responses, messages, contact details, email verification status, phone/SMS verification status, IP address and device metadata, session resume links, structured lead fields, qualification status, and uploaded documents if file uploads are enabled.
We use this information to provide the configured assessment, adapt questions, extract structured lead data, verify contact channels, prevent abuse, resume sessions, send return links or confirmations, and deliver qualified or complete leads to the campaign owner. If you contact us about a respondent privacy request, we may need to refer or coordinate the request with the relevant customer.
Customer/admin account users
For customer account users, we may collect account profile information, work email, login and verification records, settings, campaign configuration, usage events, support messages, billing contact details if paid plans are used, and technical metadata.
We use customer account data to create and secure accounts, authenticate magic/login codes, provide and improve the service, send product and service communications, support users, manage billing, investigate abuse, comply with law, and enforce our agreements.
Website visitors, prospects, and business contacts
When you visit our website or contact us, we may process contact details, organization information, messages, calendar or meeting details you provide, IP address, browser and device data, referral pages, and cookie or local-storage identifiers.
We use this information to respond to inquiries, operate and secure the website, understand aggregate usage, improve the product, maintain business relationships, and send communications where permitted.
Sources of information
We collect information directly from you, from customers who configure campaigns, from respondents who submit answers, from authorized users in your organization, from technical systems that generate logs and metadata, and from service providers that help us operate the service.
If customers import, connect, or export data through integrations, those integrations may provide or receive personal information according to the customer’s instructions and the third-party provider’s terms.
Purposes and legal bases
Where privacy laws require a legal basis, we process personal information to perform a contract or take pre-contract steps, comply with legal obligations, pursue legitimate interests such as security and service improvement, protect vital or public interests where applicable, or based on consent when required.
Legitimate interests may include operating the service, preventing fraud and abuse, debugging, maintaining reliability, improving product performance, communicating with business contacts, and enforcing rights.
AI processing
Pre-Assessment.com may send quiz conversation content and responses to AI model providers to generate adaptive questions, classify intent, summarize responses, and extract structured lead data. AI subprocessors are not permitted to use submitted customer or respondent data to train their general models.
Customers are responsible for determining whether their use of AI-assisted intake is appropriate for the subject matter and respondents, and for providing any notices or consents required by law.
Subprocessor categories
We describe our subprocessors by category below and may provide additional subprocessor details to customers through the service, an order form, or a maintained subprocessor notice process.
| Category | Purpose | Typical data involved |
|---|---|---|
| Cloud hosting and infrastructure | Hosting the app, database, networking, backups | Account data, quiz sessions, responses, logs |
| Database and managed storage | Storing quiz sessions, messages, structured leads, uploaded files if enabled | Customer/respondent data, files |
| Email delivery | Sending login codes, return links, confirmations, product/service emails | Name, email, message metadata |
| SMS/phone verification | Sending phone verification codes | Phone number, verification status |
| AI model provider | Generating adaptive quiz questions and extracting structured lead data | Quiz conversation content and responses |
| Security and abuse prevention | Protecting the service, fraud prevention, rate limiting | IP address, request metadata, device/browser data |
| Logging, monitoring, and error tracking | Reliability, debugging, incident response | Logs, technical metadata, limited application data |
| Customer support tools | Handling support/privacy/legal requests | Contact details, support messages |
| Payment processor | Billing, subscriptions, invoices, and fraud checks for paid plans | Billing contact information and payment metadata |
| Analytics/product usage tools | Understanding aggregate product usage | Usage events, account identifiers, device/browser metadata |
International transfers
Personal information may be processed in the United States and other countries where we or our service providers operate. Where required, we will use appropriate transfer mechanisms, such as standard contractual clauses or other safeguards.
Retention and security
We retain customer account and service data while the account is active. After termination, deletion, or expiration, we delete or anonymize personal information within a commercially reasonable period unless legal, security, backup, dispute, fraud-prevention, or compliance needs require longer retention.
We use reasonable administrative, technical, and organizational measures designed to protect personal information. No online service can guarantee absolute security.
Privacy rights and choices
Depending on your location, you may have rights to access, correct, delete, restrict, object to, or port personal information, and to withdraw consent. You may contact [email protected] to submit a request.
If your request concerns data submitted to a customer campaign, we may need to verify the campaign and coordinate with or refer you to the campaign owner. Customers are responsible for honoring requests where they are the controller/business responsible for the data.
Children and changes
Customer/admin account users must be at least 18. The service is not intended for children, and customers should not configure campaigns to intentionally collect children’s data unless they have a lawful basis, required consents, and a separate written agreement with us.
We may update this Privacy Policy from time to time. Material updates will be posted here and may be communicated by reasonable means.