Privacy Policy

Updated: September 2, 2024

Reservoir, Inc. (“Reservoir,” “we,” “us,” “our”) respects your privacy. This Privacy Policy (“Privacy Policy” or “Policy”) describes how we collect, use, and disclose your personal information and any rights you may have with respect to such information. It governs personal information we collect through our website(s), microsite(s), mobile website(s), and mobile application(s) (collectively, “Sites”) and personal information we collect from you or third parties through any other means to provide our services or perform other business activities (collectively, “Services”). The Policy does not apply to personal information we collect in an employment or business-to-business context.

Please read this Privacy Policy before using our Sites or Services. By Accessing or using our Sites or Services, you agree to this Policy. California residents should also read our California Privacy Notice, which supplements this Policy.

1. About This Privacy Policy

Privacy policy changes

This Privacy Policy is subject to change. We encourage you to review it frequently for amendments. Unless otherwise stated, changes are effective immediately upon posting and you accept these changes by continuing to use the Sites or Services.

Conflict between this policy and laws and regulations

When federal, state, or local laws or regulations require a higher level of protection for your personal information, those laws or regulations govern.

2. Information We Collect

We may collect, directly or through service providers, information that personally identifies, relates to, describes, or is capable of being associated with you (“personal information”), including:

  • Identifiers such as name, address, email address, phone number, date of birth, user ID, account login credentials, driver’s license or other government identification number, user verification data;
  • Characteristics of protected classifications under applicable law such as age;
  • Commercial information such as Reservoir account details and status;
  • Internet or other electronic network activity information such as IP address, device specifications, browsing and search history, clicks, information about how you interact with our emails and digital advertisements, and other data collected by cookies and similar technologies;
  • Geolocation data such as non-precise geographic location indicators from your devices, addresses, and nearest metro area;
  • Audio, electronic, visual, thermal, olfactory, or similar information such as records of email or other conversations with users, copies of government identification cards, photos you submit to us;
  • Professional or employment information such as employer, title, industry, occupation;
  • Education information such as degree type, major or field of study, enrollment dates, honors, GPA; and
  • Inferences drawn from other personal information that relate to your preferences, interests, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.

Some of the personal information listed above may be considered sensitive personal information under relevant privacy laws. Depending on your state of residence, this may include your account login credentials and driver’s license or other government identification card information. 

We use Stripe to verify users’ identities. By scanning identification information and/or submitting photos through the Sites, you choose to provide this information to Stripe. Stripe processes this information as our service provider and as its own data controller. See Stripe’s information sheet for more details. Stripe is the sole data controller of the biometric identifiers it creates as part of the verification process. We do not receive or control such identifiers.

Deidentified and aggregate information

We may deidentify or aggregate personal information or other data we collect and may use and disclose it for any business purpose permitted by applicable law. Once deidentified or aggregated, this data is no longer considered personal information because we cannot reasonably associate it with an identifiable person.

Usage data and sites activity

We, our service providers, and other third parties automatically collect information in connection with the actions you take on our Sites (“Usage Data”). For example, each time you use our Sites, we may automatically collect the type of web browser you use, the type of device you use, your operating system and version, your Internet Service Provider, your IP address, your mobile device or other unique identifier, the pages you view, referring and exit pages, the date and time of your visit, the number of clicks to, from, and within our Sites, and the duration of your visits to our Sites. If we can reasonably associate this information with you, we treat it as personal information under the categories of Identifiers or Internet or other electronic network information, as appropriate. If we cannot reasonably associate this information with you, we treat it as Usage Data.

Communication recordings

We may record calls and retain the content of text messages, chat transcripts, emails, and other written/electronic communications between you and us. By communicating with us, you consent to our recording and retention of communications.

3. How We Collect Information

From you

We may ask you to provide us with personal information. You are not required to provide us your personal information; however, if you choose not to provide the requested information, you may not be able to use some features of the Sites or Services, or we may not be able to fulfill your requested interaction. We may also capture personal information when you contact us by phone, email, or through other means.

Third-party data sources

Where permissible, we may collect personal information from third-party data sources such as the educational institutions you attended and marketing or analytics partners.

Cookies and other automated tools

We and third parties may use cookies (small text files placed on your device to identify your device and browser), log files, beacons, pixels, and other automated tools (collectively “cookies”) to collect personal information and usage data, track your interaction with our Sites, and improve the experience of the Sites and Services. Many web browsers are initially set up to accept cookies but may allow you to delete and/or block cookies. Certain features of our Sites may not work if you delete or disable cookies.

We may use the following types of cookies:

  • Strictly Necessary: These cookies are essential to operate the Sites and provide you with services you have requested.
  • Functional: These cookies enable certain features or nonessential functionality on our Sites. For example, we might use these cookies to recognize you and remember your preferences or settings when you return to our Sites so we can provide you with a more personalized experience.
  • Analytics Cookies: These cookies help us and third parties understand how our Sites are working and who is visiting our Sites.

Among other tools, our Sites use Google Analytics to collect and process personal information and usage data. Click here to learn more about how Google uses your information.

If you arrive at our Sites by “clicking through” from another website, we and third parties may receive additional information from that website such as the terms you searched that led you to our Sites. You should review the Privacy Policy of any website from which you reached our Sites to determine what information the operator collects and how it uses such information. We may retain information about you provided to us by other websites and will use it in accordance with this Privacy Policy. We may associate such information with other usage data or personal information.

4. How We Use and Disclose Information

General uses

We may use personal information for the following purposes:

  • Providing the Sites and Services: to create user profiles, verify your identity, operate the Sites and Services, respond to requests for information, keep users informed about the status of their Services, and for general servicing and customer support purposes;
  • Marketing and analytics: to market our or third parties’ products and services, perform analytics;
  • Other company communications: to otherwise communicate with you about our Sites or Services;
  • Product research and development: to conduct research and analysis for maintaining, protecting, developing, and improving our Sites and Services;
  • Business operations: to evaluate, develop, and improve business operations, conduct audits, resolve technical issues, and perform business administration and other normal business activities;
  • Compliance: to comply with legal requirements, industry standards, contractual obligations, our policies, and take actions that we deem necessary to preserve and enforce our rights and the rights of others; 
  • Information security and fraud prevention: to verify your identity and operate information security and anti-fraud programs; and
  • Other purposes: as otherwise described to you at the point of collection, with your consent, or as otherwise required by law.

Reviews and testimonials

If you provide a review or testimonial, we may post it publicly on our Sites or in other advertising materials. By providing a review or testimonial, you give us permission to use it in any manner and for any purpose, including in marketing and advertising communications.

Service providers

We may disclose your personal information to other businesses to provide services to us or to assist us in providing our Sites and Services. Examples include identity verification vendors, customer service providers, marketing and communications vendors, data analytics vendors, research and development vendors, IT and network administration vendors, professional service firms, other administrative services providers.

Third-party selling

We may disclose personal information, including Identifiers, Professional or employment information, and non-precise geolocation indicators (e.g., address or nearest metro area), to the educational institutions you attended. These disclosures may qualify as a “sale” under certain privacy laws. The schools may use this information for general business purposes, including marketing.

Other third-party disclosures

We may occasionally disclose your personal information to third parties for purposes that do not constitute a sale. For example:

  • To comply with the law;
  • To respond to legal requests (including court orders, investigative demands, and subpoenas) if, in our discretion, we believe it is necessary or appropriate;
  • To prevent or stop any illegal, unethical, or legally actionable activity;
  • To protect the safety, property, or rights of ourselves, consumers, or any other third party;
  • In connection with a proposed or actual merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of company assets (whether by private sale, through operation of law, as part of a divestiture plan, or otherwise), or similar corporate transaction;
  • To businesses controlling, controlled by, or under common control with us; and
  • For additional purposes with your consent or at your direction, including disclosure of your identification information and photos to Stripe for identity verification purposes and to potential employers.

5. Third-Party Websites and Links

The Sites or Services may contain links to third-party websites. Please be aware that if you access these links, you will leave our site. We encourage users to read the privacy policies of those sites, as we are not responsible for their content, links, or privacy practices.

6. Data Security

We recognize the importance of safeguarding the confidentiality of personal information from loss, misuse, or alteration. Accordingly, we employ commercially reasonable administrative, technical, and physical safeguards to protect personal information from unauthorized access, disclosure, and use. Even with these safeguards, no data transmission over the Internet or other network can be guaranteed 100% secure. As a result, while we strive to protect information transmitted on or through our Sites or Services, you do so at your own risk.

7. Children's Privacy

The Sites and Services are not intended for children under the age of 18 and we do not knowingly collect, sell, share, or disclose personal information from children under the age of 18. If we become aware that we have inadvertently received personal information from a child under the age of 18, we will delete such information from our records.

8. California Privacy Rights

If you are a resident of California, you may have additional rights to access and control your personal information. Subject to applicable exemptions, these rights include:

  1. Right to opt-out from the sale of personal information. You may direct us not to sell your personal information to third parties. 
  2. Right to know. You may request specific information about our processing activities including (a) the categories or specific pieces of personal information we collect about you, (b) the categories of sources from which it is collected, (c) the business or commercial purpose(s) for collecting it, and (d) the categories of third parties to whom we sold or disclosed it. 
  1. Right to delete. You may request that we delete information we collected about you.
  2. Right to correct. You may request that we correct inaccurate personal information we maintain about you. If you only wish to update your profile information rather than disputing its accuracy, please make the changes directly in your profile.

We do not use or disclose sensitive personal information for purposes that require us to offer users a “Right to Limit” the use or disclosure of sensitive personal information.

Submitting a privacy request

California residents may submit privacy requests via email to privacy@checkreservoir.com. After you submit your request, we may contact you to obtain additional information necessary to locate your record and/or verify your identity. For example, we may require you to verify certain information in our files or submit a signed declaration under penalty of perjury verifying your identity. We cannot process certain requests without verifying your identity, so please respond promptly to our request.

Authorized agent

If you are an authorized agent submitting a request for another individual, you must provide a copy of a lawful power of attorney or written signed authorization from the individual (along with proof of your identity). After submitting the request, you will receive an email. You can respond to this email to provide the required documentation. We may contact you and/or the individual on whose behalf you claim to act to verify your authorization.

Non-discrimination notice

We will not discriminate against any individual for exercising their privacy rights under law or this Policy.

California “Do Not Track” Disclosure

Do Not Track is a web browser privacy preference that causes the web browser to broadcast a signal to websites requesting that a user’s activity not be tracked.  At this time, our Sites and Services do not respond to “do not track” signals.

9. Contact Us

If you have any questions about our Sites, Services, or this Privacy Policy, please contact us at privacy@checkreservoir.com.