Quest Relocation Group Privacy Policy

1. Introduction

This Quest Relocation Group Privacy Policy (this Privacy Policy) describes the practices of Quest Relocation Group (Quest, we, us, or our) with respect to the collection and handling of Personal Information. Quest provides a suite of services related to relocation services to its corporate clients, including employee home purchase and property rental assistance, school search assistance and similar services (collectively, the “Services”).

It also describes our data use practices in connection with visitors to this website at www.questrelocation.com (Website) and describes how you may access or correct or cause the deletion of Personal Information about you. By using the Website, you consent to our collection and use of your Personal Information in accordance with this Privacy Policy. If you do not agree to the terms of this Privacy Policy, please do not use the Website. If we make material changes to our Privacy Policy, we will advise you of the changes through postings on the Website.

2. Definitions

Client means Quest’s corporate clients who contract for the Services in order to relocate their employees.

Data Subject or you refers to an individual whose PI is being collected and processed. Such individuals include Client employees and their family members who are being relocated, and, in California, the EU, EEA, and UK, the employees of Clients who are managing the business relationship with Quest. Individuals who visit our Website are also Data Subjects.

Data Protection Laws means (i) the General Data Protection Regulation (Regulation 2016/679); (ii) the EU e-Privacy Directive (Directive 2002/58/EC); (iii) any national data protection laws in the Member States of the EEA made under or pursuant to (i), (ii) or (iii); and (iv) the analogous laws enacted in Switzerland; (v) the analogous laws of the UK; and (vi) the consumer privacy laws of California, Colorado, Connecticut, Delaware, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, and Virginia Under the European Data Protection Laws, the Client is generally the Controller of the data relating to Data Subjects being relocated, and Quest is the Processor.

Under the U.S. Data Protection laws, the Client is the Business and Quest is a Service Provider.

European Jurisdictions means the EEA, EU, Switzerland, and the UK.

Personal Data, Personal Information, or PI means data identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer. It does not include information that is publicly available.

Process or Processing means any use of PI including collecting, recording, organizing, structuring, storing, adapting or altering, amending, retrieving, consulting, sharing, disclosing, making available, aligning or combining, restricting, transferring outside the European Jurisdictions or erasing or destroying it.

Subcontractor means an independent contractor engaged by Quest in order carry out part of the Services for the benefit of the Client.

3. Transfer of Personal Data to U.S.

Quest is located in the United States. If you are located in a jurisdiction with comprehensive laws regulating PI, please be aware that PI you provide to us is being transferred to and stored in a jurisdiction whose laws may not provide the same level of protection for such data as those of your own jurisdiction.

4. PI Collected about Relocating Data Subjects – Category, Purpose, and Sharing

A. To Deliver the Services

We and our Clients agree on Services to be rendered to particular Data Subjects in connection with the relocation of such Data Subjects. As part of this process for Clients, Quest collects data about the Data Subjects from the controller (Quest’s Clients), or from the Data Subjects themselves through telephone consultations, questionnaires, or other methods of communication. Other than review of Data Subjects’ LinkedIn or other relevant social media profiles to inform our provision of the Services, we do not collect PI of such Data Subjects other than as provided to us by Clients or directly by the Data Subjects themselves.

Specifically, we collect the following basic information for each Service project: name, telephone number, email address, current address, city of destination, timing of relocation, and upcoming travel to destination. We collect the following information optionally, depending on which Services are being requested: preference for housing in city of destination (purchase or rental), salary, ages of Data Subjects within family unit, hobbies and interests of Data Subjects within family unit, preferences for schools for school age children, languages spoken and needs for local assistance with documentation requirements such as drivers’ licenses. We may also review and add the social media profiles (LinkedIn, etc.) to our file for each Data Subject in order to better tailor our Services to the needs of the particular individuals being relocated.

B. Customer Satisfaction Surveys

We may use the PI of Data Subjects who have received relocation Services to send out surveys inquiring about satisfaction with our Services. We use the data collected from survey responses to improve our Services and to report back to Clients (using only aggregate, non-personal data) on satisfaction levels.

C. General Uses

We may also use PI to analyze and improve our products and services, to better understand our Clients, their needs and the needs of their personnel being relocated, to investigate or settle any disputes, to collect amounts due to us, and to meet our legal obligations such as providing PI requested under subpoena or other mandatory legal process or by a government authority.

D. Sharing

We will not share your PI with third parties without your permission, other than (i) as necessary or appropriate to carry out the Services, (ii) comply with applicable law, court order or other judicial process, (iii) enforce or apply agreements with you, (iv) protect the rights, property, or safety of us, other users or third parties, (v) as noted in the two paragraphs immediately following below, or (vi) as otherwise required or permitted under applicable law.

Though this is not likely, if Quest is ever sold (in whole or in part) or reorganized in terms of corporate structure, we may disclose and/or transfer PI to the potential purchaser of our business. In such case, we will take reasonable efforts to be sure the PI remains subject to the undertakings set forth in this Privacy Policy. We will not sell PI other than in connection with a sale or reorganization of the company.

We may also hire Subcontractors to provide some Services to our Clients. In such cases, we transfer to such Subcontractors the PI about the individuals being relocated as necessary to enable the Subcontractors to carry out their contracted Services. All such Subcontractors are required under agreements to maintain all PI in confidence and to use the PI only in order to provide the requested Services.

E. Summary

The table below summarizes this Section 4 by category of PI:

5. PI Collected about Client Business Relationship Data Subjects – Category, Purpose, and Sharing

Quest collects and stores certain PI in the course of maintaining its business relationships with its Clients. Data collected may include corporate name, address and phone number (where applicable), as well as the name, email address, mailing address, and phone number of the individual representatives of such Clients. This data is collected and processed to carry out business transactions requested by such Clients, to receive and make payment on such business transactions, and to communicate with such persons about Quest’s Services. This PI is generally not covered by the U.S. consumer privacy laws except for California, but it is Personal Data under applicable European Jurisdiction law. The table below summarizes this Section 5 by category of PI:

6. PI Collected from Website Visitors– Category, Purpose, and Sharing

We collect certain information automatically from visitors to our Website, such as IP address. Most of this information is necessary to respond to your requests to see specific pages of our Website.
If you submit additional PI to us via our Website, such as by filling out a Contact Us Form, we will use the information to respond to your requests.
We do not share or sell information about your Website visit for online behavioral advertising purposes (OBA). Our Website does not drop behavioral advertising cookies or other trackers on your device. OBA is the targeting of advertising to you based on your online behavior across websites over time. It does not include “retargeting,” which is when we cause you to see ads for our service after you have seen one of our ads or visited our Website.

7. Opting Out of Email Promotional Communications

When you complete a Contact Us Form, and provide us with your email address as the preferred means of communication, we consider this consent to send you email promoting our Services. You may choose to discontinue receiving any promotional emails by following the opt-out instructions contained in the email or otherwise by contacting us as described below under “Contact Us.” Please allow at least ten (10) days for us to process any such request.

8. Children Under 16
Our Website is not directed to children under the age of 16. If you are a child under the age of 16, please do not use the Website.

9. Data Retention
We store your PI only as long as necessary to perform the Services and to comply with applicable laws regarding corporate records.

10. Security

Quest has implemented reasonable organizational, technical and administrative security measures in place to protect the loss, misuse and alteration of the PI under our control. We also require our Subcontractors to take similar measures. Within our organization, only our employees who need to access the information to perform a specific task have access to your PI. However, in the course of providing the Quest Services, some PI is being transmitted via email over the Internet. No electronic data transmission can be guaranteed as 100% secure. As a result, while we strive to protect your PI during transmission, we cannot ensure or warrant the security of any PI you transmit to us or receive from us.

11. Suggestions
Suggestions, materials or other intellectual property sent to us are the property of Quest, and you hereby relinquish any claim to such items, or for remuneration for the same. All such items are deemed non-confidential and we shall have no obligation of any kind with respect to such items and shall be free to use and distribute them to others, including making products or services using or incorporating them.

12. Contacting Us

Quest has appointed a Data Protection Officer (DPO) as the person with responsibility for our data protection compliance. Our DPO can be contacted at contact@questsocal.com.

If you are located in a European Jurisdiction and our Client (the data “controller” under GDPR) is using our Services to Process your Personal Data, you may contact our Client to object, restrict, access, correct or delete your Personal Data. If you need help8. finding contact information for a Client’s privacy office, please contact our DPO as outlined above.

13. PROVISIONS APPLICABLE ONLY TO INDIVIDUALS SUBJECT TO US STATE LAWS

Under the law of several states (California, Colorado, Connecticut, Delaware, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, and Virginia) residents have some or all of the following rights list below. Please note that most of the PI we collect and process is on behalf of our Clients. If we have your PI as a result of our relationship with a Client (your employer), we will forward all of your requests to exercise the rights below to the Client, and then follow their instructions as to how to respond to the request. Alternatively, you can contact the Client directly.

A. Right to know. You have the right to know (i) what categories of PI we are collecting about you and for what purposes, (ii) the sources from whom we obtain PI; (iii) what categories of PI we are sharing and selling and for what purposes, and (iv) the categories of third parties to whom we are sharing or selling. This information is summarized in the tables at Section 4, 5 (California residents only), and 6. We do not sell your PI or share it for the purposes of OBA.

B. Right to access. You have the right to request that we disclose to you, in addition to the categories listed immediately above, the specific pieces of PI we collected about you in the past twelve months.

If you believe that the PI we hold about you requires correction (for example, because the information is inaccurate, out-of-date, incomplete, irrelevant or misleading), you may request that the information be corrected using our contact details set out below. If you would like for us to completely remove your PI, you can contact us, however we are not required to delete your PI if we have a regulatory, operational or administrative requirement to keep it.

C. Right to delete. You have the right to request that we delete any of the PI that we collected from you and retained, subject to certain exceptions. You can also delete your account. Once we receive and confirm your verifiable consumer request to delete as described in Section 13-F below, and receive instructions from the Client (as applicable), we will delete (and direct our Subcontractors to delete) your PI from our records, unless an exception applies. We may deny your deletion request if retaining the information is necessary for us or our service provider(s) to:

Complete the transaction for which we collected the PI, provide a service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you.
Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
Debug products to identify and repair errors that impair existing intended functionality.
Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.
Comply with a legal obligation.

D. Right to data portability. You have the right to receive a copy of your electronic PI in a readily-usable format.

E. Right to opt out of certain sharing with third parties. You have the right to direct us to stop disclosing your PI to third parties for monetary or other consideration. We do not make such disclosures.

F. Exercising access, data portability, and deletion rights. To exercise the access, data portability, and deletion rights described above, please complete and submit this form. Only you, or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your PI. You may only make a consumer request for access or data portability twice within a 12-month period. You can also delete your account yourself. We cannot respond to your request or provide you with PI if we cannot verify your identity or authority to make the request and confirm the PI relates to you. Making a verifiable consumer request does not require you to create an account with us. We will only use PI provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.

G. Non-Discrimination. We will not discriminate against you for exercising any of your state law rights.

14. PROVISIONS APPLICABLE TO INDIVIDUALS LOCATED IN THE EU/EEA/UK AND SWITZERLAND

The provisions of the below portion of the Privacy Policy are applicable to Data Subjects located in the EU/EEA/UK and Switzerland. For purposes of this section, we refer to PI as Personal Data, the European term.

A. Additional Definitions

Consent or Agree means your freely given, specific, informed and unambiguous expression of your wishes through a statement or other clear affirmative action such as checking a box or signing a consent form which indicates your agreement to our Processing of Personal Data relating to you.

Third Party includes our Subcontractors who we authorize to process your Personal Data or other information to help us with the activities described in this Privacy Policy. It may include government bodies and public agencies and authorities.

B. Transferring Your Data; Consent

Quest is headquartered in the US, and has operations, entities and service providers in the US and throughout the world. As such, we and our service providers may transfer your personal information to, or access it in, jurisdictions (including the United States) that may not provide equivalent levels of data protection as your home jurisdiction. We take steps to ensure that your Personal Data receives an adequate level of protection in the jurisdictions in which we process it.

While Quest was formerly certified as complying with the Privacy Shield Framework, Quest has withdrawn from the Privacy Shield Framework; however, we will continue to apply the Privacy Shield Principles (as defined in the Privacy Shield Framework) to the Personal Data that we received while participating in the Privacy Shield.

By submitting Personal Data to Quest, to the fullest extent permitted under applicable Data Protection Laws, you consent to this transfer and the other Processing by us described in this Privacy Policy.

C. Data Protection Principles & Best Practice Standards

Quest Processes Personal Data in accordance with the following data protection principles and industry best practice standards:

Quest Processes Personal Data lawfully, fairly and in a transparent manner consistent with Data Protection Law, and its obligations to its clients.
Quest collects Personal Data only for specified, explicit and legitimate purposes consistent with Data Protection Law, and its obligations to its clients.
Quest Processes Personal Data only where it is adequate, relevant and limited to what is necessary for the purposes of Processing consistent with Data Protection Law, and its obligations to its clients.
Quest keeps accurate Personal Data and takes reasonable steps to ensure that inaccurate Personal Data is rectified or deleted without delay consistent with Data Protection Law and its obligations to its clients.
Quest keeps Personal Data only for the period necessary for Processing consistent with Data Protection Law and its obligations to its clients.
Quest adopts appropriate measures to make sure that Personal Data is secure, and protected against unauthorized or unlawful processing, and accidental loss, destruction or damage.
Quest and/or its Client informs Data Subjects located in the European Jurisdictions the reasons for Processing their Personal Data, how it uses their Personal Data and the legal basis for Processing by providing them this Privacy Policy and related notices, disclosures, and consent forms at the time of intake.

Where applicable, Data Subjects will be given the choice to Consent to having their Personal Data collected by way of a disclosure and consent form provided to them by Quest or our Client prior to Quest beginning relocation services. Data Subjects can decline to include certain Personal Data in their intake forms, thereby stating they do not give their Consent to have that Personal Data collected or used. By Consenting to receive relocation Services using the submitted Personal Data, you as Data Subject are agreement to allow Quest to disclose Personal Data and other information about them to our Client and to our sharing that information with our Subcontractors.

All Data Subjects in the European Jurisdictions are asked to inform Quest’s relevant Client or us immediately about any changes in their Personal Data.

Quest will not Process Personal Data that qualifies as Special Categories of Personal Data for purposes other than to carry out the Services unless the Processing is:

(a) permitted by applicable European Jurisdiction laws;

(b) necessary for administering justice or for exercising statutory, governmental, or other public functions;

(d) in the vital interests of an individual in in the European Jurisdictions or another person;

(e) required to provide medical care or diagnosis; or

(f) necessary to carry out Quest’s legal obligations under applicable law.

D. Personal Data Transfers to Independent Third Parties

Quest will disclose Personal Data to Third Parties other than those identified above only if:

required by law or legal process (e.g., lawful requests by public authorities, including disclosures to law enforcement authorities in connection with their duties or to meet national security requirements);
to investigate, prevent or take actions against illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of our terms of use, or as otherwise required by law.
to protect and defend the legal rights, property/or and legitimate interests of Quest and/or its employees, Clients, Subcontractors and/or Third Parties; or
where necessary for Quest to perform a contractual obligation owed to a Client or for other lawful purposes.

E. Complaints

Individuals in the UK may also make data privacy and/or data use complaint about Quest to the UK Information Commissioner’s Office (ICO) here https://ico.org.uk/concerns/. Individuals in the EU/EEA can also make a complaint to the Data Protection Authority in the EU/EEA Member State where they live or work listed here: http://ec.europa.eu/justice/dataprotection/article-29/structure/data-protection-authorities/index_en.htm.

Effective Date of Privacy Policy: February 4, 2026

Screenshot 2026-02-10 at 12.36.04 PM.png

Screenshot 2026-02-10 at 12.46.03 PM.png

Screenshot 2026-02-10 at 12.56.01 PM.png