Get Started

Privacy Policy

Effective date: June 2, 2026 · Last updated: 2026

DormantIQ (“DormantIQ,” “we,” “us,” or “our”) is a managed email reactivation service that helps businesses re-engage old, stale, or dormant email data through controlled, approval-based campaigns. This Privacy Policy explains what personal information we collect, how we use and share it, the choices you have, and how we protect it.

This Policy covers two distinct contexts, which are treated differently under data-protection law:

1. Who this applies to

This Policy applies to website visitors, individuals who submit a reactivation audit request or otherwise contact us, representatives of prospective and current clients, vendors, and recipients of communications we send or manage. DormantIQ provides services to businesses; our website is not directed to consumers acting in a personal capacity or to children.

2. Information we collect

The categories of personal information we collect depend on how you interact with us.

2.1 Information you provide to us

2.2 Information collected automatically

2.3 Information from third parties

2.4 Client campaign data

When we provide services, clients may make email addresses and associated engagement data (such as opens, clicks, and suppression flags) available to us. We process this data on the client’s behalf and on the client’s instructions, as described in Section 9.

3. How we collect it

We collect personal information: (a) directly from you when you submit a form, email us, or speak with our team; (b) automatically through cookies and server logs when you use our website; (c) from clients who provide data for a campaign; and (d) from service providers and public sources described above.

4. How we use information

We use personal information for the following purposes:

We do not sell the personal information submitted through our website forms, and we do not use it for unrelated purposes without a lawful basis.

5. Legal bases for processing (EEA / UK)

Where the EU or UK GDPR applies, we rely on one or more of the following legal bases:

For client campaign data, the client is responsible for establishing the lawful basis for processing the relevant audience (see Section 9).

6. Cookies & analytics

Our website is a static, informational site. We currently do not set advertising cookies or third-party analytics cookies, and we do not track you across other websites. The only data collected automatically is standard server-log information (such as IP address and browser type) generated by our hosting provider to operate and secure the site, and any strictly necessary technologies required for the site to function (for example, to load fonts or submit the contact form).

If we add analytics or similar technologies in the future, we will update this Policy and, where required by law, request your consent through a cookie banner or preferences tool before setting non-essential cookies. You can also control cookies through your browser settings; disabling some may affect site functionality.

7. How we share information

We do not sell personal information submitted through our contact form. We share personal information only as described here:

8. “Sale” and “sharing” of personal information

DormantIQ does not sell personal information for money. We do not “sell” or “share” for cross-context behavioral advertising the personal information you submit to us, as those terms are defined under the California Consumer Privacy Act (as amended) and similar U.S. state laws. If this ever changes, we will update this Policy and provide any opt-out required by law.

9. Client campaign data (our role as processor)

When a client provides or directs us to process email data for a reactivation campaign, the client is the controller / business and DormantIQ acts as a processor / service provider. In that role:

Where required, these terms are set out in a separate Data Processing Addendum (DPA) that forms part of the client agreement. If you are a recipient and wish to exercise rights regarding a specific campaign, please contact the sender/brand, or contact us and we will route your request to the relevant client.

10. Data retention

We keep personal information only for as long as necessary for the purposes described in this Policy, including to respond to inquiries, provide services, comply with legal, tax, and accounting obligations, resolve disputes, and enforce agreements. Inquiry data for prospects who do not become clients is retained for up to 24 months and then deleted or anonymized. Client campaign data is retained per the applicable client agreement and DPA. When information is no longer needed, we delete or de-identify it.

11. Security

We maintain administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, loss, misuse, or alteration — including access controls, encryption in transit, and vendor due diligence. No method of transmission or storage is completely secure, and we cannot guarantee absolute security. If we become aware of a security incident affecting personal information, we will respond in accordance with applicable law and our client agreements.

12. International data transfers

We are based in the United States and may process information in countries other than where you are located. Where we transfer personal information internationally — including from the EEA, UK, or Switzerland — we use appropriate safeguards required by law, such as the European Commission’s Standard Contractual Clauses and the UK International Data Transfer Addendum, together with supplementary measures where needed.

13. Your privacy rights

Depending on where you live, you may have some or all of the following rights regarding the personal information we hold as a controller:

U.S. state privacy rights: Residents of California and certain other states may have rights to know, access, correct, delete, and to opt out of “sale”/“sharing” and certain profiling. As noted in Section 8, we do not sell or share your inquiry data. We will not discriminate against you for exercising your rights.

To exercise any right, email [email protected]. We will verify your request as required by law and respond within applicable timeframes. You may use an authorized agent where permitted. If your information was provided to us by a client (as processor), we will direct your request to that client.

14. Children’s privacy

Our website and services are intended for businesses and are not directed to children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us personal information, please contact us so we can delete it.

Our website may link to third-party sites and services we do not control. This Policy does not apply to those third parties, and we are not responsible for their privacy practices. We encourage you to review their policies.

16. Changes to this Policy

We may update this Policy from time to time. When we do, we will revise the “Last updated” date above and, where appropriate, provide additional notice. Material changes will be communicated as required by law. Your continued use of our website or services after an update indicates acceptance of the revised Policy.

17. Contact us

If you have questions about this Policy or our privacy practices, or wish to exercise your rights, contact us at:

DormantIQ
Email: [email protected]
Location: Pennsylvania, United States

If we are unable to resolve your concern, you may have the right to contact your local data-protection or privacy authority.

← Back to DormantIQ