Skip to main content
All CollectionsGuides
Data Security and Privacy
Data Security and Privacy

Review Rally's data security and privacy certifications and compliance measures.

Sophie avatar
Written by Sophie
Updated over 6 months ago

Securing your customer’s data is core to Rally’s DNA and has been our top priority from day one. Visit our Security and Privacy page to check out all the security and privacy measures that we’ve put in place to protect your data and keep your research process compliant. Check out our Vanta Trust Report.

Certifications and Compliance

SOC 2 Type II

Rally is SOC 2 Type II certified, demonstrating we have the appropriate controls in place to mitigate risks related to security, privacy, confidentiality, availability, and processing integrity.

To request a copy of our SOC 2 Type II report, email us at [email protected].

GDPR + CCPA Compliant

Rally is GDPR and CCPA compliant and is committed to helping our customers comply with GDPR and CCPA for their research. We enable our customers to fulfill all the data subject rights requirements under the GDPR.

HIPAA Compliant

HIPAA (Health Insurance Portability and Accountability Act) compliance signifies that Rally adheres to strict security and privacy standards set by the U.S. Department of Health and Human Services. This compliance ensures that protected health information (PHI) is handled and stored securely, safeguarding participant confidentiality and privacy.

Consent and opt-out

Rally enables consent forms as part of the research recruitment process. We also provide unsubscribe and opt-out links for participants to remove themselves from panels or studies.

Right to be forgotten

Rally is committed to supporting users’ right to be forgotten. When removing user data within Rally, we ensure all data is removed from our system and our sub-processors. Users can request data deletion directly from Rally by emailing [email protected].

Data portability

Within Rally, you can view all data associated with your user. For an export of this data, you can email [email protected].

We never sell any data

Rally is focused on improving your research process, not selling your data. We will never sell any data.

Rally has a DPA for our customers in the EEA. Contact [email protected] to receive a copy. Read more about commitments to GDPR and CCPA.

Did this answer your question?