Stout Risius Ross, LLC (and all affiliates and subsidiaries, collectively "Stout") values your privacy and is committed to complying with the applicable data privacy and security requirements in the countries in which it operates. Stout complies with internationally recognized standards of privacy protection and with various privacy laws globally including, but not limited to, the EU General Data Protection Regulation (GDPR).
Data will be collected by Stout Risius Ross, LLC (and all affiliates and subsidiaries, collectively "Stout").
Stout collects the following categories of personal data:
Contact data and other identifiers: We may collect information about data subjects such as name and contact details (email, phone number, mailing address) in order to communicate and facilitate the provision of our services with our clients or potential clients and to respond to your requests. For example, contact details of individuals who work for or on behalf of the clients, in order to carry out the client’s engagement with Stout.
Services data: Personal data may be provided to us by clients to the extent required to perform the services. Stout may also acquire personal data from a third party at the direction of our client as required to perform services.
Employment Information: We collect the information you choose to disclose if you apply for potential employment with Stout, such as your educational history, professional experience, and certain sensitive information such as race, age, citizenship, and any disabilities you may have.
Marketing information: We may collect information to respond to inquiries regarding our services or to provide you with information, reports, or updates. This information includes the contact data and website visitor information described above as well as information about your occupation or employer if you provide it to us.
Clients and other third parties who provide personal data to Stout must do so in compliance with applicable data privacy regulations.
Whenever we process your personal data for our legitimate interests, we make sure to consider and balance any potential impact on you and your rights under data protection laws. Our legitimate business interests do not automatically override your interests - we will not use your personal data for activities where our interests are overridden by the impact on you (unless we have your consent or are otherwise required or permitted to by law). You have the right to object to this processing if you wish.
Personal data is processed by Stout both manually and electronically in accordance with the above-mentioned purposes and in compliance with current regulations.
We permit only authorized Stout employees and third-party service providers to have access to your information. Such employees and third-party services providers are appropriately designated and trained to process data only according to the instructions we provide them
Stout will retain personal data for a reasonable period, taking into account legitimate business needs to capture and retain such information. Information will also be retained for a period necessary to comply with state, local, federal regulations, or country specific regulations and requirements, and in accordance with Stout’s Document Retention Schedule.
Data concerning EU data subjects may be transferred to or processed in locations outside of the EU only where one of the following safeguards is in effect:
Automated decisions are defined as decisions about individuals that are based solely on the automated processing of data and that produce legal effects that significantly affect the individuals involved.
Stout does not make automated decisions using personal data. If automated decisions are to be made, affected persons will be given an opportunity to express their views on the automated decision in question and object to it.
We are not responsible for the privacy practices of any non-Stout operated websites, mobile apps or other digital services, including those that may be linked through Stout websites or services, and we encourage you to review the privacy policies or notices published thereon.
Individuals residing in the European Economic Area have the following rights concerning your data processed by Stout:
Please contact email@example.com to request access, rectification, or erasure, or to restrict processing, to object to processing, or to request data portability.
UK Residents: For the purposes of GDPR, the data controller is Stout Park Ltd (Company Number 8923987), 57 Grosvenor Street, London W1K 3JA, United Kingdom. We can be contacted at firstname.lastname@example.org or on +44 20 3405 3296.
Shine the Light: Under California’s “Shine the Light” law, California residents have the right to ask us once a year if we have shared their personal information with third parties for their direct marketing purposes. To make a request, please contact us at email@example.com and specify you are making a Shine the Light request.
California Consumer Privacy Act (“CCPA”): The CCPA creates privacy rights for California residents and requires businesses to make disclosures about their privacy policies and practices related to personal information. This section does not cover information we collect about you as an employee of Stout. For more information about our privacy practices relating to employee information, please see our Employee Handbook.
Categories of Personal Information Collected: In the last twelve months, we have collected the following categories of personal information: identifiers; characteristics of protected classifications under California or U.S. law; occupation, professional, or employment-related information; and Internet or other electronic network activity information. For examples of the data points we collect, please see the “Data We Collect” section, above.
Sources of Personal Information: We have collected this information directly from you, passively when you visit our website or view our electronic communications, and from third parties such as our clients and business partners. For more information, please see the “Data We Collect” section, above.
Categories of Personal Information Disclosed and Third Parties With Whom We Share This Information: We do not sell your personal information, but we may disclose it to third parties for a business purpose. In the past twelve month, we have disclosed identifiers; professional, occupational and employment-related information, and Internet or other electronic network activity information to our third party marketing service providers. We have also disclosed identifiers; characteristics of protected classifications under California or U.S. law; occupation, professional, or employment-related information; and educational information to the third party provider of background checks in connection with potential employment. For more information about the personal information we share, please see the “Disclosure/Sharing of Personal Data” section, above.
Your Rights: The CCPA gives you certain rights regarding your personal information:
To exercise your rights above, please submit a request by: emailing us at firstname.lastname@example.org, calling us at +1.833.204.0822 or fill out this form. Please describe your request with sufficient detail so we can properly respond to your request. As part of your request, please specify which right you are exercising and provide your name, contact information, and the type of request you wish to make. We may ask for additional information to verify your identity. The information you provide in your request and any follow up information we ask for from you will be used solely to verify your request.
Only you or an individual designated as your authorized agent to act on your behalf may make a request related to your personal information. You may also make a request on behalf of your minor child.
We may not discriminate against you if you choose to exercise your rights.
After receiving your request, we may need to contact you for further information and will notify you if your request has been granted or declined, or if an exception applies to your request. We will try to respond to your request within 45 days. If we need more time, we will contact you with the reason we need more time and the extension period. We will deliver our written response by mail or electronically, at your option. In response to your request to know, we will only disclose the information we have collected in the 12 months prior to our receipt of your request. Our response will also explain the reasons we cannot comply with any request, if applicable.
We do not charge a fee to process or respond to your request unless your request is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate prior to completing your request.
Please contact us with questions, concerns, or complaints at:
150 West Second Street, Suite 400
Royal Oak, MI 48067