Privacy policy

Last updated: May 24, 2026

Introduction

SupplierDiversity.com ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website.

Information We Collect

Information You Provide

We collect information you voluntarily provide when you:

  • Complete our certification eligibility quiz
  • Use our document checklist generator
  • Create a capability statement
  • Subscribe to our newsletter
  • Request to connect with certification consultants
  • Contact us through our website

This information may include your name, email address, phone number, business name, and certification interests.

Automatically Collected Information

When you visit our website, we automatically collect certain information, including:

  • IP address and browser type
  • Pages visited and time spent on pages
  • Referring website addresses
  • Device and operating system information

How We Use Your Information

We use the information we collect to:

  • Provide and improve our services and tools
  • Send you relevant information about certifications
  • Connect you with certification consultants (with your consent)
  • Respond to your inquiries and requests
  • Analyze website usage to improve user experience
  • Comply with legal obligations

Information Sharing

We do not sell your personal information. We share information in the following limited circumstances:

  • Service providers (sub-processors): third-party vendors who help us operate the site. Current sub-processors include Google (Analytics, AdSense, Funding Choices), Stripe (payment processing), Cloudinary (media hosting), Sentry (error monitoring), Render (web hosting), and email delivery providers used for transactional and newsletter messages. Each sub-processor is bound by data-processing terms and only handles data necessary for the service they provide.
  • Certification consultants: when you request to be matched with a consultant, we share your contact information and certification interests with relevant consultants you choose to be matched with.
  • Financing partners and lenders: when you click a lender or financing-product link, you are redirected to the lender's own site under its own privacy practices. We log the click for attribution and reporting; we do not transmit your contact information to the lender unless you submit a form on the lender's site.
  • CertifyAll filing partners (when applicable): if you purchase the CertifyAll service, we transmit the business information and documents you provide to the certifying agencies you are applying to, in the format each agency requires (email, online portal, or postal mail).
  • Buyers and suppliers in the marketplace: if you create a public supplier profile, the information you publish is visible to buyers and the general public. Buyer-supplier messages exchanged through our messaging tool are private to the two parties (and to our staff for moderation and safety review).
  • Legal requirements: when required by law, subpoena, or other valid legal process, or to protect our rights, property, or the safety of others.
  • Business transfers: in connection with a merger, acquisition, or sale of assets, your information may be transferred to the successor entity, subject to the protections described in this Privacy Policy.

Imported Business Profiles

To make our supplier directory useful from day one, we import business records from publicly available federal data sources, including the U.S. General Services Administration's SAM.gov registry. These imported profiles display business name, location, certifications, and other information that is already public record. They are not indexed by search engines until a business owner claims the profile and completes their listing.

If you are the owner of an imported business and want to claim, edit, hide, or remove your profile, you can do so at any time at /suppliers/unclaimed/ or by emailing contact@supplierdiversity.com.

Crowdsourced Research

Our outcomes survey program collects optional, voluntary responses from diverse-business owners about their certification and contracting experiences. Survey responses are reviewed by our team before any individual response is displayed publicly, and we only display responses where the respondent explicitly opted in to publication. Aggregate statistics (counts, averages, processing-time medians) may be shared with research partners (including APEX accelerators and PTACs) to support the supplier diversity ecosystem. We do not share individually identifiable survey responses with research partners without separate consent.

Cookies and Tracking

We use cookies and similar tracking technologies to enhance your experience, measure site performance, and serve relevant advertising. You can control cookie settings through your browser preferences.

Advertising and Third-Party Vendors

SupplierDiversity.com displays advertising provided by Google AdSense and other third-party ad networks. These services use cookies and similar technologies to serve ads based on your prior visits to our site and other websites.

  • Google AdSense: Google, as a third-party vendor, uses cookies (including the DoubleClick DART cookie) to serve ads on our site. Google's use of advertising cookies enables it and its partners to serve ads to you based on your visits to our site and other sites on the Internet.
  • Opting out: you may opt out of personalized advertising by visiting Google's Ads Settings or aboutads.info to opt out of third-party vendors' use of cookies for personalized advertising.
  • Analytics: we use Google Analytics to understand how visitors interact with our site. Google Analytics uses cookies to collect anonymous traffic data.

For more information about how Google uses data when you use our site, see Google's Privacy & Terms.

EU/UK Users (GDPR)

If you are located in the European Economic Area or the United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR). Where required, we obtain your consent before serving personalized advertising through a Google-certified Consent Management Platform (Funding Choices). You may withdraw your consent at any time by re-opening the consent banner from your browser settings or contacting us. We rely on legitimate interest as the legal basis for security logging, fraud prevention, and core service operation; on contract performance as the basis for delivering paid services you purchase; and on consent for personalized advertising and marketing emails.

California Residents (CCPA / CPRA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act:

  • The right to know what personal information we collect, how we use it, and who we share it with
  • The right to request deletion of your personal information
  • The right to correct inaccurate personal information
  • The right to opt out of the "sale" or "sharing" of personal information for cross-context behavioral advertising
  • The right not to be discriminated against for exercising any of these rights

We do not sell personal information for money. We do share certain online identifiers (cookies, advertising IDs) with Google for personalized advertising, which California law treats as "sharing." To opt out of this sharing, visit our advertising consent settings or use the Global Privacy Control signal in your browser. To exercise any other CCPA right, email contact@supplierdiversity.com.

Children's Privacy (COPPA)

SupplierDiversity.com is intended for business owners and procurement professionals and is not directed at children under 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will delete that information promptly. If you believe a child has provided us with personal information, please contact us at contact@supplierdiversity.com.

Data Retention

We retain personal information for as long as your account is active or as needed to provide the services you've requested. After account deletion, we retain limited transactional records (for example, paid-service order history and payment receipts) for up to seven years to meet tax, accounting, and dispute-resolution requirements. We retain analytics and advertising logs for no more than 26 months. Aggregated, de-identified statistics may be retained indefinitely.

Data Security

We implement appropriate technical and organizational measures to protect your personal information. No method of transmission over the Internet is 100% secure.

Your Rights

Depending on your location, you may have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your information
  • Opt out of marketing communications

To exercise these rights, contact us using the information below.

Changes to This Policy

We may update this Privacy Policy from time to time. We'll notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this Privacy Policy, contact us at:

contact@supplierdiversity.com