Privacy Policy

This privacy policy (the "Privacy Policy") describes how Due Diligence Online, LLC (DDO) treats information you may provide to us, including how we may use such information, how we protect the security of such information, and how you may change or request that we remove such information from our systems. This includes any information associated directly with you (such as your name, title, email address, physical address or phone number) that is supplied to us in conjunction with your use or potential use of our website and/or DDO permission-based online virtual data room (VDR) service (the "Service").

Except as described in this Privacy Policy, we will not, without your consent, disclose, sell, rent, or otherwise provide to any third party any personally identifiable information collected through this website or the Service.

Please note our website includes hyperlinks to other websites neither owned nor managed by us. DDO is not associated with these third-party websites and does not review their privacy policies. We cannot guarantee the privacy of any information that may be obtained by third parties at these other websites. We strongly encourage you to review the privacy policies of any website you visit before supplying personally identifiable information through that website.

Additionally, DDO understands the importance of protecting children's privacy, especially in an on-line environment. The Service is not designed for or directed at children 13 years of age or younger, and DDO will not intentionally collect or maintain information about anyone under the age of 13.

Please see our Terms of Use ( for more information about our on-line policies in general.

What information does DDO collect through its public website, and how is this information used?

DDO collects certain personally identifiable information through its website when you choose to submit such information to us through email, an online form, or other method. You may provide DDO with information in order to request additional information about the Service, employment opportunities, for press inquiries, or for other purposes. We also collect information about website users through temporary "Cookies" (for further information about Cookies, please see below) used to facilitate completion of online forms and other communications through the website. By providing this information, using the website or any of these communication tools, you consent to DDO' use of your information in a manner consistent with this Privacy Policy.

DDO also maintains a log of certain information concerning visitors to this website, including but not limited to a visitor's IP address (a computer's numerical Internet address), the websites from which visitors access the website, the type of web browsers used to access the website, and the pages viewed.

We may use information collected through our website to respond to specific requests for information about our services and other inquiries. We may also use your information to inform you about other DDO services that might be of interest to you and to gather feedback from you on our website and our services. If you decide to purchase our services, we may use your information for purposes of providing such services to you.

What information does DDO collect about users of its permissioned-based Service and how is this information used?

This section applies to users of the DDO VDR Service. If you only use our public website, this section does not apply to you. The Service is an Internet-based hosted platform designed to enable business communities to share information through a central "hub". In this Privacy Policy, a "VDR" means a portion of the Service configured to permit authorized users to access and share information relating to a specific business transaction or project. The administrator of a VDR, or your employer or an affiliate or partner of your employer, who is using the Service, may add you as a participant in one or more VDRs.

The person adding you to a VDR will provide certain information about you, such as your name, company name, physical address, work email address and work telephone number. Using this information, you will be provided with a user ID and temporary password to access the Service.

Upon accessing the Service, you will be able to navigate to the "My Account" Tab to review your personal profile, which contains the information supplied to us. You will be able to update or correct any of the business contact information in your profile. As the Service is intended for business purposes only, unless your place of work is also your home, you should only enter business contact information. By providing, updating, or accepting your business contact information in your profile, you consent to our use of such information in a manner consistent with this Privacy Policy. If you do not wish to consent to our use of your business contact information, you should not agree to this Privacy Policy and should refrain from logging into the system in the future.

Once your business contact information has been entered into your profile, this information is updated only for the profile in the VDR you are currently accessing. Administrators of that data room may then have access to your business contact information. You may receive certain emails relating to your use of the Service, such as email alerts related to the VDRs in which you are a participant and other email communications relating to the Service. Emails will be sent to the email address listed in your profile for that VDR.

Your business contact information is also added to DDO's global directory of current and former users of the Service. We may use your business contact information to contact you regarding your and/or your company's use of the Service, for customer support purposes, and to inform you of updates, modifications and other matters relating to the Service. You may decline to receive mail or email from us that does not relate directly to your access to or use of the Service or a particular VDR.

As a function of the Service, DDO also will maintain a history of your access to the Service, and certain actions taken by you while accessing the Service (e.g., access to documents, comments, searches, etc.). DDO also may maintain a log of users' IP addresses, the websites from which users access the Service, the type of web browsers used to access the Service and the browser's settings that may affect Service performance. The information described in this paragraph is referred to as "Usage Log Information".

Data regarding your access to and use of a VDR will be available to administrators and owners (licensees) of that VDR, and may be provided to an employer whose systems are used by you to access the Service. Also, for purposes of maintaining and enhancing Service performance and security, DDO may use Usage Log Information and make it available to administrators and owners of the VDRs you access. We may share information about your browser and other local computer settings with VDR administrators in order to troubleshoot or avoid potential access problems. We also may use this information internally to tailor our communications to you about the Service, subject to your right to join our "support-only" contact list (see below). We also may aggregate Usage Log Information to create or publish statistical analyses and reports about Service usage, it being understood we will not authorize the publication of personally identifiable information about any user without the prior written consent of such person.

In addition, as the global directory is a business asset of DDO, if DDO were sold to or merged with another company, the global directory (which includes your business contact information) may be transferred to a successor of the company, or to a subsidiary or affiliate of DDO, who agrees to abide by the terms of this Privacy Policy.

How does DDO protect the security of the information I provide?

We consider any information provided by you through our website to be confidential, unless it is publicly available or has already been provided to us without any confidentiality restriction. DDO takes appropriate and reasonable precautions and has implemented appropriate administrative and technical procedures to protect the security of information provided through its website and Service. We permit persons working for us to access and use information you provide only to serve legitimate business and service needs consistent with this Privacy Policy.

Notwithstanding any other provision of this Privacy Policy, DDO may disclose business contact information and other information collected about you (1) in response to a subpoena, search warrant, court order or other legal process; and (2) in its sole discretion if it believes such disclosure is appropriate in connection with an official government investigation, or under exigent circumstances in response to a perceived significant threat to a person's health or property.

How can I change, update, or delete my business contact and other profile information, or request that I not be contacted for non-support purposes?

You can change, update or delete your business contact information by logging into the Service with your user ID and password and accessing your profile on the "My Account" page. All business contact information except your name can be changed or updated by you through the "My Account" page. All business contact information except your name and email address can be deleted by you through the "My Account" page. If you wish to change your name as listed in your profile, you must call our Customer Support line for assistance.

You also may decline to receive mail or email from us that does not relate directly to your access to or use of the Service or a particular VDR. If you wish to be added to our "support-only" contact list at any time, please call us at +1 888 316 2048.

Does DDO use "cookies"?

"Cookies" are small pieces of information that are stored by your web browser on your computer's hard drive. Cookies can be used to remember certain information about you in order to customize the information you see during visits to a website and/or to collect information about your visit.

If you choose to contact us using an online form or otherwise submit information to us through our website, your web browser will create a temporary Cookie. This temporary Cookie records your email address and makes it faster and easier to submit forms to us. Once you have finished using the form or submitting your information, the Cookie is automatically deleted. We do not collect any information stored in this temporary Cookie. If your browser is set not to accept Cookies, your form information may not be received by DDO.

We also use Cookies to help identify you to the Service and provide you with an additional level of security. After you have accessed the Service and supplied your user ID and password, a temporary Cookie is placed on your computer indicating that you have been verified to access the Service. This Cookie enables you to enter a VDR throughout your current working session and will remain on your computer until you log out of that VDR or you close your web browser. If your browser is set not to accept Cookies, you will not be able to sign into and/or use the Service. Again, these Cookies are temporary and are not used for tracking your behavior within or outside of the Service. Except as described in this Privacy Policy, we do not use Cookies in conjunction with the Service.

How will I be notified of changes to this Privacy Policy?

We will update this Privacy Policy if we change our policies for collecting and using information provided to us or collected via our website. We will notify you of any material change(s) to this Privacy Policy by posting a notification of such change(s) on the home page of our website and/or on our Service logon page. We will not post notification of non-material changes, such as correction of typographical errors.

How can I contact DDO with questions about this Privacy Policy?

If you have questions about this Privacy Policy, please contact us by email at

Does DDO participate in the European and Swiss Safe Harbor Framework?

DDO has committed to handling data coming from the European Union (EU) and/or from Switzerland into the United States in accordance with the Safe Harbor Principles and are registered with the U.S. Department of Commerce as a member of the Safe Harbor network.

If you have any questions or concerns regarding our Privacy Policy, please contact us at the above email address. We will investigate and attempt to resolve complaints and disputes regarding use and disclosure of personal information in accordance with the principals contained in this Privacy Policy.

If a complaint that cannot be resolved through our internal processes, we agree to participate in the dispute resolution procedures of the panel established by the European Data Protection Authorities or by the Federal Data Protection and Information Commissioner (FDPIC) of Switzerland to resolve disputes pursuant to the Safe Harbor Principles.

How do the Safe Harbor principles apply to information posted by DDO clients in a VDR?

We adhere to the applicable Safe Harbor principles in connection with information uploaded to our Service by DDO clients and maintained in a VDR. Our Service provides DDO clients with a central location where they can post information and make it accessible to any party they authorize. We do not undertake to know, and DDO clients have no obligation to inform us, whether the information contained in a VDR includes personal data. We are not responsible for the content of the information posted in a VDR nor do we decide who has access to such information. We perform limited processing of information for DDO clients and accordingly not all of the Safe Harbor principles are applicable to our Service. For more information, please visit

When was this Policy last updated?

April 17, 2012