Privacy Policy
Introduction
ComplianceHub is pleased to welcome you to our web site. By accessing any area of this site, and using the services provided, the user acknowledges this notice, and agrees with and acknowledges the terms, conditions and responsibilities as set out below.
Trademarks
Certain trademarks, service marks, trade names, images, logos, design, text, graphics and pictures on this web site are proprietary to ComplianceHub. They may NOT be copied, reproduced, republished, posted, transmitted or distributed in any way. The user may print, in hard copy, portions of the web site only in connection with placing or having placed an order with ComplianceHub. The use of any such material for any other reason, on any other web site, or the modification, distribution or republication of this material without prior written permission from ComplianceHub is strictly prohibited. Except as may be expressly provided, nothing contained herein shall be construed as conferring any license, software or right under copyright or other intellectual property rights. C3Compliant, LLC owns and operates this web site.
Information Collected and Stored Automatically
Your privacy is important to us. When you visit this web site to browse, you do so anonymously. C3Compliant, LLC does not collect personally identifying information about you.
We collect and store for an indefinite period certain information for system administration and in order to create reports. This is statistical data about our users’ browsing actions and patterns, and does not identify any individual. This information includes:
The only cookies in use on our site are for Google Analytics. Google Analytics is a web analytics tool that helps website owners understand how visitors engage with their website. Google Analytics customers can view a variety of reports about how visitors interact with their website so that they can improve it.
Google Analytics uses first-party cookies to track visitor interactions which are used to collect information about how visitors use our site. We then use the information to compile reports and to help us improve our site.
Cookies contain information that is transferred to your computer’s hard drive. These cookies are used to store information, such as the time that the current visit occurred, whether the visitor has been to the site before and what site referred the visitor to the web page.
Google Analytics collects information anonymously. It reports website trends without identifying individual visitors. You can opt out of Google Analytics without affecting how you visit our site – for more information on opting out of being tracked by Google Analytics across all websites you use, visit this Google page.
Disclosure Regarding Google Display Advertising and Google Analytics Features
We use Google AdWords Remarketing to display relevant ads tailored to you based on what parts of the C3Compliant, LLC website you have viewed by placing a cookie on your machine that show specific pages you have visited. The cookies do not identify you or provide access to your computer. Google AdWords Remarketing allows us to tailor our marketing to better suit your needs and only display ads that are relevant to you.
We have implemented Google Analytics features based on Display Advertising (Google Display Network Impression Reporting and Google Analytics Demographics and Interest Reporting). We use first-party cookies (such as the Google Analytics cookies) to identify trends in the usage of our website, assess what information is of most and least interest, determine technical design specifications, and identify system performance or problem areas, which may be published in reports for internal use. This information is NOT shared with anyone beyond the support staff to this web site except when required by Law Enforcement investigation. You can learn how Google Analytics collects and processes information here.
Visitors can opt-out of Google Analytics for Display Advertising and customize Google Display Network ads using the Ads Settings.
Information Collected from E-mail
You may voluntarily provide us with personally identifying information, for example your mailing address, in an electronic message or web-based form. Information collected in this manner is used solely for responding to your request unless noted in the specific web page where your request is made. We do not share this information with government agencies, commercial and non-commercial entities, or the public unless noted on a particular web page. Any information that you provide to us in an e-mail may be subject to disclosure under a Freedom of Information Act request. We also retain an e-mail log of the time each message is received, the time each message is forwarded, the delivery status of each message, and a unique e-mail identifier number. The e-mail log may be retained indefinitely.
Client Information
Client access is required to use the email upload, store, download, and analyze email (Services). A User ID and password will be used to authenticate to ComplianceHub Services. You are responsible for keeping your User ID and password confidential. The use of your User ID and password by you or any other person with or without your knowledge or consent, in connection with Compliance Hub Dashboard, binds you legally and makes you responsible for any such online transaction. You should promptly notify ComplianceHub if you become aware or suspicious of unauthorized use of your User ID and password.
Clients are authenticated to a secure site, using industry standard SSL encryption. Software tags called "cookies" are used to identify and verify clients when they access the client side of our web site and to store return client information so that repetitive keystrokes are minimized. Cookies are used to remember client preferences and maximize performance of our services.
Attempts to authenticate to the client side of our web site using user IDs and passwords are logged and audited. Client information and logs are maintained for purposes of security and accuracy. ComplianceHub will not sell client information to any other person, organization, or entity, however certain third party support services may have access to this information for the purposes of maintaining or improving the site or Services.
Law & Order
We may disclose your information to third parties if we determine that such disclosure is reasonably necessary to (a) comply with the law; (b) protect any person from death or serious bodily injury; (c) prevent fraud or abuse of ComplianceHub or our users; or (d) protect Compliance Hub’s property rights.
Stewardship of your data is critical to us and a responsibility that we embrace. We believe that our users' data should receive the same legal protections regardless of whether it's stored on our services or on their home computer's hard drive. We will require that any information request be accompanied by the appropriate legal documents and supported by a valid legal basis. We will carefully review each request; we will only provide the minimum information compelled by legal process unless the inquest involves the potential abuse of the privileges of using our services. We'll abide by the following Government Request Principles when receiving, scrutinizing and responding to government requests for our users' data. We will require that any information request be accompanied by the appropriate legal documents and supported by a valid legal basis. We will be transparent regarding the process to our users and carefully review each request, ultimately providing only what data is legally required to be disclosed for the particular investigation:
ComplianceHub Business Admins
If you are a ComplianceHub Business user, your administrator may have the ability to access and control your ComplianceHub Business account. Please refer to your employer's internal policies if you have questions about this. If you are not a ComplianceHub Business user but interact with a ComplianceHub Business user, members of that organization may be able to view the name, email address and IP address that were associated with your account at the time of that interaction.
Data Security
ComplianceHub will rarely if ever have any access to or control or in any way handle data stored, uploaded, downloaded, or transferred while using these Services, including any cardholder data, protected health Information (“PHI”), personally identifiable information ("PII") or other Confidential Information that may be included in your use of these Services, and that all access to and control of such data will, except under extraordinary circumstances, remain under your exclusive administrative domain and control. ComplianceHub has no duty or obligation to supervise or advise you on the manner in which you administer access to and control of such data. C3Compliant, LLC will sign a Business Associate Agreement with business accounts that may contain specific requirements for Business Account customers.
Retention
Email information stored on our Services is retained only for the duration specified by you. Account information will be retained for as long as required to provide Services. If you delete your account, we'll also delete this information. But please note: (1) there might be some latency in deleting this information from our servers and back-up storage; and (2) we may retain this information if necessary to comply with our legal obligations, resolve disputes, or enforce our agreements.
Security, Intrusion, and Detection
For site security purposes, and to ensure that this service remains available to all users, all network traffic is monitored in order to identify unauthorized attempts to upload or change information, or otherwise cause damage or conduct criminal activity. Unauthorized attempts to defeat or circumvent security features, to use the system for other than intended purposes, to deny service to authorized users, to access, obtain, alter, damage, or destroy information, or otherwise to interfere with the system or its operation are prohibited. Evidence of such acts may be disclosed to law enforcement authorities and result in criminal prosecution under the Computer Fraud and Abuse Act of 1986 (Pub. L. 99-474) and the National Information Infrastructure Protection Act of 1996 (Pub. L. 104-294), (18 U.S.C. 1030), or other applicable criminal laws. Anyone using or accessing this system expressly consents to such monitoring.
Disclaimer for Hypertext Links
Neither ComplianceHub, C3Compliant, LLC, nor its contributors are responsible for the content of any off-site web sites that are referenced by or that reference the C3Compliant, LLC web site. The user acknowledges that neither C3Compliant, LLC nor its contributors are responsible for any defamatory, offensive, misleading or illegal conduct of other users, links, or third parties and that the risk of injury from the foregoing rests entirely with the user.
Links from ComplianceHub web pages on the WWW to other sites, or from other sites to ComplianceHub’s web site do not constitute an endorsement by ComplianceHub. These links are for convenience only. It is the responsibility of the user to evaluate the content and usefulness of information obtained from other sites.
ComplianceHub disclaims responsibility for the privacy policies and customer information practices of third-party Internet sites linked to our web Site.
US-EU Safe Harbor Compliance
C3Compliant, LLC complies with the U.S.-EU Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries. C3Compliant, LLC has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Safe Harbor program, and to view C3Compliant, LLC’s certification, please visit http://www.export.gov/safeharbor/
Modifications/Enforcement
C3Compliant, LLC reserves the right to modify this Privacy Policy from time to time without notice and at the sole discretion of C3Compliant, LLC. Such modifications shall be effective when posted. If you have any inquiries or concerns regarding the C3Compliant, LLC privacy policy or its compliance with this privacy policy, please contact C3Compliant, LLC via email at Legal@C3Compliant.com or via mail at 5080 N. 40th Street, Suite 300, Phoenix, AZ 85018 Attn: Legal. If you believe that C3Compliant, LLC has operated in a manner inconsistent with or in violation of this Privacy Policy, please contact us immediately, via email at Legal@C3Compliant.com or via mail at 5080 N. 40th Street, Suite 300, Phoenix, AZ 85018 Attn: Legal, to remedy the inconsistency or problem. If the inconsistency or problem is not remedied by C3Compliant, LLC to your satisfaction, please contact the American Arbitration Association at www.adr.org for an independent review and resolution of the issue.
Disclaimer of C3Compliant, LLC Information
All information provided by C3Compliant, LLC on this web site is made available to provide immediate access for the convenience of interested persons. While C3Compliant, LLC believes the information to be reliable, human or mechanical error remains a possibility. Therefore, C3Compliant, LLC does not guarantee the accuracy, completeness, timeliness, or correct sequencing of the information. Neither C3Compliant, LLC, nor any of the sources of the information, shall be responsible for any error or omission, or for the use of, or the results obtained from the use of, this information.
Disclaimer of Endorsement
Reference herein to any specific commercial products, processes, or services by trade name, trademark, manufacturer, or otherwise, does not constitute or imply its endorsement, recommendation, or favoring by C3Compliant, LLC.