COVIANCE PRIVACY POLICY
Here at Coviance, we take your privacy very seriously. Please read this Privacy Policy carefully as it contains important information on who we are, how and why we collect, store, use, and share your Personal Information. It also explains your rights in relation to your Personal Information and how to contact us or supervisory authorities in the event you have a complaint.
This Policy does not govern consumer information. The collection, use, and disclosure of such consumer information is governed by the Coviance Consumer Privacy Policy.
Scope of This Policy
This Privacy Policy applies to:
- Marketing Website Visitors: Information collected when you visit www.coviance.com and related sub-domains (excluding the Platform)
- Platform - Customer Users: Information collected when you register for, access, or use the Coviance Platform at secure.coviance.com
- All Communications: Information collected through emails, contact forms, customer support, phone calls, and other interactions with Coviance
Key Terms
It would be helpful to start by explaining some key terms used in this policy:
| Term | Definition |
|---|---|
| We, Us, Our | Coviance, Inc. |
| Personal Information | Any information relating to an identified or identifiable individual |
| Website | www.coviance.com and all sub-domains, including secure.coviance.com & Coviance Platform |
| Customer | Any person or entity that is registered with Coviance to use Coviance's services |
Personal Information We Collect About You
We may collect and use the following Personal Information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household:
| Categories of Personal Information |
|---|
| Identifiers (e.g., a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, or other similar identifiers) |
| Information that identifies, relates to, describes, or is capable of being associated with, a particular individual (e.g., their name, signature, telephone number, or other similar information) |
| Characteristics of protected classifications under state or federal law. |
| Commercial information (e.g., products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies) |
| Internet or other electronic network activity information (e.g., browsing history, search history, and information regarding a consumer's interaction with an Internet Web site, application, geolocation data, or advertisement) |
| Geolocation data |
| Professional or employment-related information |
This Personal Information is required to provide services to you. If you do not provide Personal Information we ask for, it may delay or prevent us from providing services to you.
How Your Personal Information is Collected
We collect most of this Personal Information directly from you — by telephone, text, email and/or via our website. However, we may also collect information:
- From publicly accessible sources;
- Directly from a third party;
- From a third party with your consent;
- From cookies on our Website—for more information on our use of cookies, please see our Cookies and Other Electronic Technologies section below
- Via our IT systems, including:
- Door entry systems and reception logs;
- Automated monitoring of our websites and other technical systems, such as our computer networks and connections;
- Communications systems
How and Why We Use Your Personal Information
Under data protection law, we can only use your Personal Information if we have a proper reason for doing so, e.g.,:
- To comply with our legal and regulatory obligations;
- For the performance of contracted services or before entering into a contract as required by the contracting parties;
- For our legitimate interests or those of a third party, as described above; or
- Where you have given consent.
A legitimate interest is when we have a business or commercial reason to use your information, so long as this is not overridden by your own rights and interests.
The table below explains what we use (process) your Personal Information for and our reasons for doing so:
| What we use your Personal Information for | Our reasons |
|---|---|
| To provide services | For the performance of our contract or to take steps at your request before entering into a contract |
| To prevent and detect fraud | For our legitimate interests or those of a third party, i.e., to minimize fraud that could be damaging for us and for you |
| Conducting checks to identify our customers and verify their identity; Screening for financial and other sanctions or embargoes; Other processing necessary to comply with professional, legal and regulatory obligations that apply to our business, e.g., under health and safety regulation or rules issued by our professional regulator | To comply with our legal and regulatory obligations |
| Gathering and providing information required by or relating to audits, enquiries, or investigations by regulatory bodies | To comply with our legal and regulatory obligations |
| Ensuring business policies are adhered to, e.g., policies covering security and internet use | For our legitimate interests or those of a third party, i.e., to make sure we are following our own internal procedures so we can deliver the best service |
| Operational reasons, such as improving efficiency, training and quality control | For our legitimate interests or those of a third party, i.e., to be as efficient as we can so we can deliver the best service |
| Ensuring the confidentiality of commercially sensitive information | For our legitimate interests or those of a third party, i.e., to protect trade secrets and other commercially valuable information; To comply with our legal and regulatory obligations |
| Statistical analysis to help us manage our business, e.g., in relation to Improve content of the Website, Respond to inquiry | For our legitimate interests or those of a third party, i.e., to be as efficient as we can so we can deliver the best service |
| Preventing unauthorized access and modifications to systems | For our legitimate interests or those of a third party, i.e., to prevent and detect criminal activity that could be damaging for us and for you; To comply with our legal and regulatory obligations. |
| Updating and enhancing customer records | For the performance of our contract with you or to take steps at your request before entering into a contract; To comply with our legal and regulatory obligations; For our legitimate interests or those of a third party, e.g., making sure that we can keep in touch with our customers about existing orders and new products. |
| Statutory returns | To comply with our legal and regulatory obligations |
| Ensuring safe working practices, staff administration and assessments | To comply with our legal and regulatory obligations; For our legitimate interests or those of a third party, e.g., to make sure we are following our own internal procedures and working efficiently so we can deliver the best service to you. |
| Marketing our services to: existing and former customers; third parties who have previously expressed an interest in our services; third parties with whom we have had no previous dealings. | For our legitimate interests or those of a third party, i.e., to promote our business to existing and former customers |
| External audits and quality checks, e.g., audit of our accounts | For our legitimate interests or a those of a third party, i.e., to maintain our accreditations so we can demonstrate we operate at the highest standards; To comply with our legal and regulatory obligations |
Promotional Communications
We may use your Personal Information to send you updates (by email, text message, telephone or post) about our services, including exclusive offers, promotions or new services.
We have a legitimate interest in processing your Personal Information for promotional purposes (see above "How and why we use your Personal Information"). This means we do not usually need your consent to send you promotional communications. However, where consent is needed, we will ask for this consent separately and clearly.
We will always treat your Personal Information with the utmost respect and never sell or share it with other organizations outside Coviance for marketing purposes.
You have the right to opt out of receiving promotional communications at any time by:
- Contacting us at privacy@coviance.com; or
- Using the "unsubscribe" link in emails or "STOP" number in texts; or
We may ask you to confirm or update your marketing preferences if you instruct us to provide further services in the future, or if there are changes in the law, regulation, or the structure of our business.
Who We Share Your Personal Information With
We routinely share Personal Information with:
- Service providers we use to help deliver our services to you;
- Other third party providers we use to help us run our business;
- Third parties approved by you;
We only allow our third party providers to handle your Personal Information if we are satisfied they take appropriate measures to protect your Personal Information. We also impose contractual obligations on our third party providers ensuring they can only use your Personal Information to provide services to us and to you. We may also share Personal Information with external auditors, e.g., in relation to SOC certification and the audit of our accounts.
We may disclose and exchange information with law enforcement agencies and regulatory bodies to comply with our legal and regulatory obligations.
We will not share your Personal Information with any other third party.
Personal Information We Sold or Disclosed for a Business Purpose
In the preceding 12 months, we have not sold any Personal Information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.
In the preceding 12 months, we have disclosed for a business purpose to one or more third parties the following categories of personal information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household:
- Identifiers (e.g., a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, or other similar identifiers);
- Information that identifies, relates to, describes, or is capable of being associated with, a particular individual (e.g., their name, signature, telephone number, or other similar information;
- Characteristics of protected classifications under state or federal law;
- Commercial information (e.g., products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies);
- Geolocation data; and
- Professional or employment-related information.
How Long Your Personal Information Will Be Kept
We will keep your Personal Information while we are providing services to you. Thereafter, we will keep your Personal Information for as long as is necessary:
- To respond to any questions, complaints or claims made by you or on your behalf;
- To show that we treated you fairly;
- To keep records required by law.
We will not retain your Personal Information for longer than necessary for the purposes set out in this policy. Different retention periods apply for different types of Personal Information.
We may keep an anonymized form of your Personal Information, which will no longer refer to you, to the extent that we have a legitimate and lawful interest in doing so.
Cookies and Other Electronic Technologies
What Are Cookies and Other Electronic Technologies?
Cookies are small text files used to store small pieces of information. We also use web beacons (small graphic images) and similar technologies to ensure that the Website functions properly, enhance security, provide a better user experience, and analyze performance to identify what works and where improvements are needed.
How Do We Use Cookies?
Like most online services, the Website uses both first-party and third-party cookies for various purposes. First-party cookies are primarily necessary for the Website to function properly and do not collect any personally identifiable data. The third-party cookies used on the Website primarily help us understand how the Website performs, track how you interact with it, keep our services secure, deliver relevant advertisements, and enhance your overall user experience while improving the speed of your future interactions with the Website.
Cookie Banner and Consent
When you first visit the Website, you'll see a cookie banner that allows you to accept or decline certain types of cookies. You can manage your cookie preferences at any time by clicking the cookie settings link in our website footer.
Types of Cookies We Use
- Necessary Cookies - Required to enable the basic features of the Website, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
- Functional - Help perform certain functionalities like sharing the content of the Website on social media platforms, collecting feedback, and other third-party features.
- Analytics Cookies - Used to understand how visitors interact with the Website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
- Performance Cookies - Used to understand and analyze the key performance indexes of the Website which helps in delivering a better user experience for the visitors.
- Advertisement Cookies - Used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.
Web Beacons and Tracking Pixels
We use web beacons (also called pixel tags or clear GIFs) in conjunction with cookies to:
- Track website traffic and user navigation patterns
- Measure the effectiveness of our email campaigns and marketing communications
- Understand how visitors interact with our content
Cookie Duration
We use both session cookies (expire when you close your browser) and persistent cookies (remain until deleted or expired).
Your Choices
You can manage your cookie preferences through our cookie banner settings available in the website footer, configure your browser to refuse or delete cookies, or use opt-out tools:
- Google Analytics Opt-out: https://tools.google.com/dlpage/gaoptout
- Network Advertising Initiative: www.networkadvertising.org/choices
- Digital Advertising Alliance: www.aboutads.info/choices
Compliance with Privacy Laws
Coviance complies with the data protection and privacy laws to which it is subject. You should familiarize yourself with those laws, including any exceptions which may apply under them. You should also be aware that privacy laws in various jurisdictions may change from time to time. Except to the extent expressly stated otherwise in this Privacy Policy, Coviance accepts no obligations with respect to the handling of Personal Information other than those mandated by law.
State-Specific Privacy Rights (States Other Than California)
Pursuant to certain state privacy laws in the US, individuals residing in certain US states may have additional rights regarding Our collection, use, and sharing of their Personal Information. This Section applies to residents of states including Colorado, Connecticut, Delaware, Indiana, Iowa, Kentucky, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Texas, Utah, and Virginia and provides additional information in accordance with the privacy laws (current or forthcoming) in those states (collectively, the "State Privacy Laws").
Subject to certain exceptions, if you are an eligible resident of one of these states, you have certain privacy rights which may include, depending on your state of residency:
- Right to Access: You have the right to confirm whether We process your Personal Information and access such Personal Information. You also have the right to obtain your Personal Information in a portable, and to the extent reasonably feasible, readily usable format that you can transmit without hindrance.
- Right to Delete: You have the right to request that We delete the Personal Information you have provided to us or that We have otherwise obtained about you.
- Right to Correct: You have the right to request that We correct inaccuracies in your Personal Information, taking into account the nature of the Personal Information and the purposes of the processing of your Personal Information.
- Right to Opt Out: You have the right to opt out of the processing of your Personal Information for the purposes of (i) targeted advertising, (ii) the sale of your Personal Information and (iii) profiling in furtherance of decisions, including, for eligible residents of Connecticut, solely automated decisions, that produce legal or similarly significant effects.
- Right to Appeal: You have the right to appeal Our decision with regard to your request to exercise any rights described herein.
- Right to Be Free from Discrimination: You have the right to not be discriminated against by Us for exercising any of your rights.
California Privacy Rights
This section of the Policy applies solely to those individuals who reside in the State of California. We are providing this policy in compliance with the California Consumer Privacy Act of 2018 ("CCPA"), as amended by the California Privacy Rights Act ("CPRA"), and other applicable California privacy laws. Any terms used in this section that are not defined in the Policy itself have the same definition as used in the CCPA/CPRA, and its implementing regulations.
Our Collection, Use, and Disclosure of Consumer Personal Information
We collect, use, and disclose California consumers' Personal Information as previously described in this Privacy Policy. Please see "Personal Information We Collect About You", "How Your Personal Information is Collected", "How and Why We Use Your Personal Information", and "Who We Share Your Personal Information With".
California Consumer Rights
If you are a California resident, you may ask Us to disclose what Personal Information we have about you and what we do with that information, to delete your Personal Information, to direct Us not to sell or share your Personal Information, to correct inaccurate information that we have about you, and to limit our use and disclosure of your sensitive Personal Information:
- Right to know: You can request that we disclose to you: (1) the categories and/or specific pieces of Personal Information we have collected about you, (2) the categories of sources for that Personal Information, (3) the purposes for which we use that information, (4) the categories of third parties with whom we disclose the information, and (5) the categories of information that we sell or disclose to third parties. You can make a request to know up to twice a year, free of charge.
- Right to delete: You can request that we delete Personal Information we collected from you and tell our service providers to do the same, subject to certain exceptions (such as if we are legally required to keep the information).
- Right to opt-out of sale or sharing: You may request that we stop selling or sharing your Personal Information ("opt-out"), including via a user-enabled global privacy control. We cannot sell or share your Personal Information after we receive your opt-out request unless you later authorize us to do so again.
- Right to correct: You may ask us to correct inaccurate information that we have about you.
- Right to limit use and disclosure of sensitive Personal Information: You can direct us to only use your sensitive Personal Information (for example, social security number, financial account information, or precise geolocation data) for limited purposes, such as providing you with the services you requested.
You also have the right to be notified, before or at the point we collect your Personal Information, of the types of Personal Information we are collecting and what we may do with that information. Generally, we cannot discriminate against you for exercising your rights under the CCPA. We cannot make you waive these rights, and any contract provision that says you waive these rights is unenforceable.
As of January 1, 2026, California law requires disclosure of the use of Automated Decision-Making Technology (ADMT). If we use ADMT that produces legal or similarly significant effects concerning California consumers, we will provide notice and conduct appropriate risk assessments as required by law. Currently, we do not use ADMT in a manner that produces legal or similarly significant effects.
California's Shine-the-Light Law
California's Shine the Light law permits California residents to request and receive, once per calendar year and free of charge, information about our sharing of your Personal Information (if any) with third parties for their own direct marketing use. If you are a California resident and would like to make such a request, please email privacy@coviance.com. In your request, please include your name and attest to the fact that you are a California resident and provide a current California address. We may ask you for additional information to confirm your identity before responding to this request.
Universal Opt-Out Mechanisms
We recognize and honor browser-based universal opt-out signals, including Global Privacy Control (GPC). These are signals sent by your web browser or browser extension that automatically communicate your preference to opt out of certain data processing activities, including the sale or sharing of your personal information for targeted advertising.
When we detect a universal opt-out signal from your browser:
- We will treat it as a valid request to opt out of the sale or sharing of your personal information
- The opt-out will apply to the specific browser or device from which the signal is sent
- You do not need to take any additional action beyond enabling the signal in your browser
To enable Global Privacy Control or other universal opt-out mechanisms, you may need to:
- Download and install a browser extension that supports GPC
- Enable the privacy control setting in browsers that have built-in GPC support
- Visit https://globalprivacycontrol.org for more information and instructions
Please note that if you use multiple browsers or devices, you will need to enable the opt-out signal on each browser or device separately.
How to Exercise Your Rights
If you would like to exercise any of your rights as described in this Privacy Policy, please:
- Call us, toll-free, at 855-525-6730; or
- Email us at privacy@coviance.com.
Please note that you may only make a State Privacy Laws related data access or data portability disclosure request twice within a 12-month period.
If you choose to contact directly by phone or email, you will need to provide us with:
- Enough information to identify you;
- Proof of your identity and address; and
- A description of what right you want to exercise and the information to which your request relates.
We are not obligated to make a data access or data portability disclosure if we cannot verify that the person making the request is the person about whom we collected information, or is someone authorized to act on such person's behalf.
Any Personal Information we collect from you to verify your identity in connection with your request will be used solely for the purposes of verification.
Keeping Your Personal Information Secure
We have appropriate security measures in place to prevent Personal Information from being accidentally lost, used or accessed in an unauthorized way. We limit access to your Personal Information to those who have a genuine business need to access it. Those processing your information will do so only in an authorized manner and are subject to a duty of confidentiality. We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so. We employ encryption technologies to protect Personal Information and maintain a current data flow diagram identifying the flow of Personal Information.
Third Party Websites
There may be hyperlinks on the Website to other websites or locations that are operated and controlled by third parties ("Third Party Websites"). These Third-Party Websites may solicit Personal Information from you. We make no representations regarding the policies or business practices of such Third Party Websites and encourage you to familiarize yourself with their privacy policies before providing them with your Personal Information.
Children's Online Privacy
Our Website is not intended for children under the age of 16. We do not intentionally or knowingly collect Personal Information from children under the age of 16 and we request that individuals under the age of 16 do not submit any Personal Information on the Website. If we learn that we have received identifying information from a user under the age of 16, we will delete this information.
Changes to this Statement
Coviance may from time to time and without prior notice revise this Privacy Policy. Any changes will be effective immediately when the revised Policy is posted on the Website unless stated otherwise. We will not, however, use your Personal Information in a manner materially different than what was stated in the Privacy Policy posted on the Website at the time your Personal Information was collected unless we receive your consent.
Contacting Us
If you have any questions about this Privacy Policy, our practices, or your dealings with the Website, you can contact us by mail or email:
Coviance
3001 Westown Parkway #200
West Des Moines, IA 50266
privacy@coviance.com
Updated: 03/12/2026