Privacy statement
We know that you are concerned with how your personal and financial information is treated. This privacy statement sets forth our current policies and demonstrates our commitment to your financial privacy. We may, however, change the content or services found on our website, and consequently, our privacy statement at any time in the future. Please revisit this page from time to time to be sure that you are familiar with any changes to our policy. Your continued use of our website following any modifications to this privacy statement will be conclusively deemed acceptance of any changes.

Collection and use of information

As a user of the public portion of the site you are not required to provide us with any personal information, and we do not monitor or collect any personally identifiable information from you on your use of the public portions of our site. We do not use cookies to create user profiles or to monitor individual user behavior.

If you register to use the password-protected portions of our site, we will ask you to provide us with certain information about yourself.
We maintain personal information relating to users of our web site in a password-protected electronic file outside of our website or its servers, and we limit access to such information to employees who need to have such information to provide services to you. We will only use such information about you to verify your identity and eligibility to receive certain products or services, to provide information to you about product and services that we believe may be of interest of you, to record your interest in products and services that we offer, and to respond to your requests for information.

In addition, we may disclose information about you if requested or ordered to do so in the course of a legal or regulatory proceeding, or to protect our rights and interests and those of our business partners.

Except as expressly set forth herein, we will not transfer your personal information to any non-Gridstone entity for commercial purposes without your permission. We will not sell, rent, or lease your personal information.

Confidentiality and security
We emphasize to our employees the confidential nature of customer information and the high level of importance we place on maintaining this confidentiality.

Gridstone protects all customer information behind an Internet firewall. Gridstone secures all confidential connections using individual passwords and advanced encryption and authentication technology including but not limited to Secure Socket Layers (SSL) connections between web browsers and our secure servers for confidential exchanges, plus digital certificates for all on-line transactions.

Global transmission

The information you submit may be transferred outside of the United States. This and all other transmissions will remain secure and under our sole control. By clicking the "I accept" or "Submit" button where you agree to offer your information in return for services, a trial subscription or more information about Gridstone Research, you consent to such a transfer. You may also unsubscribe to services where you have previously opted to subscribe for them.

Access to your personal data
You may inquire as to whether we are keeping personal data about you collected from the web site by sending an email to If you request, we will provide you with a readable copy of the personal data that we keep about you within 60 days. In connection with any such request, we will require proof of your identity.
We allow you to challenge the data that we hold about you and, where appropriate, you may have the data deleted, amended, or completed.

We reserve the right to refuse to provide you with a copy of your personal data, but will set forth the reasons for our refusal. You are free to challenge our decision to refuse to provide you with a copy of your personal data.

Although we have tried to create a secure and reliable website for our users, the confidentiality of any communication or material transmitted via our website or by e-mail cannot be guaranteed. When disclosing any personal information, all users should remain mindful of the fact that it is potentially accessible to others, and consequently, can be collected and used by others without user consent. Accordingly, users should consider carefully if they want to submit information that they would not want disclosed and should recognize that their use of the Internet and our website is solely at their own risk. We have no responsibility or liability for the security of personal information transmitted via the Internet.

If you have any questions or complaints about this Privacy Statement or any matters related to the use of information and data collected via this web site, please contact


Gridstone Research takes the privacy, security and confidentiality of your information extremely seriously. If you would like to discuss our privacy and security policy, as well as the measures we take to ensure the confidentiality of your information, please email

Security Infrastructure

We provide state-of-the-art security measures to our customers to ensure the privacy and security of their sensitive data. Our hardware has been configured to give maximum protection to the application and the database. As an added security measure we do not make public any system configuration information.

Among other security measures, we provide:

  Experienced, professional engineers and security specialists dedicated to round-the-clock data and systems protection
  Ongoing evaluation of emerging security developments and threats
  A secure, scalable, managed deployment environment
The following are the individual elements of Gridstone's security strategy that provide a secure operating environment for the Gridstone system as a whole.

Physical Security
Gridstone's production environment is hosted in Allentown, Pennsylvania at a facility that provides 24-hour physical security, including specific measures such as:
  Access to data centers limited to essential personnel only through biometric security measures.
  FM-200 gas fire suppression extinguishes fires without damage to equipment
  Motion detectors
  Glass-break detectors
  Air temperature sensors tied into alarm system
Network Security
All elements of the Gridstone network are protected by a restrictive firewall which only allows authorized types of traffic to access the Gridstone web servers.

Network Reliability
Each element of the Gridstone system's network is fully redundant, including redundant OC-3 connections, fiber optic SONET ring and is constantly monitored.

All communications between customer browsers and the Gridstone application are encrypted using industrial-strength SSL sessions, featuring CA-signed 1024-bit public keys and 128-bit session keys. The lock icon in the browser indicates data is being securely transmitted and received while logged into the Gridstone application.

Users access the Gridstone system with a combination of user ID and secret password that is only known to the user. The Gridstone system forces users to choose high quality passwords with restrictions on length, and these passwords are stored in a hashed form so that not even Gridstone staff can read them.

Data Confidentiality
All data entered into the Gridstone Research Platform by a customer is owned by that customer. We regard your data as being completely confidential and proprietary to you. Gridstone's staff has no access to customer data, and no Gridstone employee can directly enter our database server. Your data is segregated and only you can view your information.

The only information specifically authorized Gridstone staff can access are the details of your subscription, such as your name, your firm and your telephone number.

Hardened Operating Systems
Security has played a key factor in choosing the operating systems to host the Gridstone production system. All operating systems used are hardened by removing all unnecessary processes and services, manually tweaking required services for maximum security, and keeping all systems up to date with the vendors' latest security patches and recommended practices.

Data Backup
All customer data is backed up regularly and stored in a secure facility. Customer data can be promptly restored in a disaster recovery scenario.

Use of the Gridstone Research platform is subject to the terms and conditions of the 'Terms and Conditions' and the 'Privacy Statement'. Gridstone Research may change its security infrastructure and/or this security datasheet from time to time.


© 2006, Gridstone Research All Rights Reserved.