CSID combines multiple layers of protection and goes beyond basic credit monitoring for 360 degrees of identity defense. We offer comprehensive protection that reviews your credit and non-credit identity records in order to protect your identity. Protecting our subscriber’s privacy is at the forefront of CSID.
If you are visiting our site from a country in the European Union (EU) please also refer to the section relating to this below.
- WHAT INFORMATION DO WE COLLECT AND WHY?
We may collect personal information from which you can be identified, such as your name, date of birth, postal and e-mail address, phone number, national identifier or social security number (as applicable) and credit card details.
We will use this data to access and monitor various data sets that you request us to monitor as part of your identity protection service and for the prevention and detection of fraud. When you close your account, we may continue to share information about you according to our legal and regulatory requirements.
We will use the information you provide us solely for the purpose of providing you with the products and services you have requested and for administering our relationship with you, internal business purposes, our product or service development and/or statistical analysis, except as specifically noted below in Section 3 and Section 8.
In some instances, we may ask information from you about others (such as your child’s information). We will only use that information for the specific reason for which it was provided to us.
- DO WE DISCLOSE OR SHARE YOUR PERSONAL INFORMATION?
In order for us to provide you with our identity protection service and for the prevention and detection of fraud, we will share your personal information with third parties who perform services on our behalf. Depending on the service you have requested, we may share your name, e-mail address, national identifier or social security number (as applicable), income, account balances, payment history and credit history with credit bureaus. We will also share your billing information with a credit card processing company in order to bill you for goods and services. These companies are authorized to use your personal information only as necessary to provide these services to us.
As may be required by law, we may also disclose your personal information, for example to comply with a subpoena, or similar legal process, when we believe in good faith that the disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
In addition, in the event of a merger, acquisition, or any form of sale of some or all of our assets to a third party, we may also disclose your personal information to the third parties concerned or their professional advisors. In the event of such a transaction, the personal information held by CSID will be among the assets transferred to the buyer.
- IS YOUR INFORMATION SECURE?
We have appropriate physical, technical and organizational measures in place to protect your data when held by CSID that comply with relevant legal and best practice requirements. When you enter sensitive information (such as a credit card, social security number or login credentials) as part of the enrollment process, we encrypt the transmission of that information using secure socket layer technology (SSL).
When you submit information to CSID through our website, you should be aware that your information is transmitted across the Internet and that no method of transmission over the Internet is 100% secure. Although we take reasonable security measures to protect your information when we receive it, you also need to ensure you take appropriate steps to protect your information.
- INFORMATION RELATED TO DATA COLLECTED FOR OUR CLIENTS
In most cases, CSID resells its services through its commercial clients (“Clients”). Accordingly, CSID does not have a direct relationship with the individuals whose personal data it processes when CSID acts as a wholesaler of its services. If you are a customer of one of our Clients and would no longer like to be contacted by one of our Clients that resells our services, please contact the specific Client that you interact with directly. We may transfer your personal information to third parties who perform services on our behalf or help us provide our services.
An individual who seeks access, or who seeks to correct, amend, or delete enrollment data should direct his or her query to CSID’s Client (the data controller). If requested to edit enrollment data by our Client, we will respond within 30 days. In some cases, we will edit enrollment data on behalf of our Clients. When managing choice options on behalf of our Clients, we will also respond to any requests within 30 days. We will retain personal data we process on behalf of our Clients for as long as needed to provide services to our Client. CSID will retain this personal information for so long as necessary to comply with our legal, compliance and audit obligations, to resolve disputes and to enforce our agreements.
- WILL WE SEND YOU OFFERS OF OTHER CSID PRODUCTS AND SERVICES?
Our range of identity protection products and services is constantly evolving to match the increasingly sophisticated market in which we operate. We will not send you details of other CSID products or services or those of any reputable third parties without your prior consent and you can change your mind at any time by contacting us. If you no longer wish to receive our promotional communications, you may opt-out of receiving them by following the instructions included in each communication or by e-mailing us at the e-mail address provided below or by contacting us through one of the methods listed below.
- ARE YOU VISITING OUR WEBSITE FROM A COUNTRY IN THE EUROPEAN UNION (E.U.)?
CSID, based in the United States, maintains servers in both the United States and the United Kingdom. If you are visiting our website from outside the United States, your personal information, in some rare instances, may be transferred to, stored, and/or processed in the United States. If your personal information enters our servers in the United States, CSID will protect your data in accordance with the Safe Harbor Principles outlined below.
The United States Department of Commerce and the European Commission have agreed on a set of data protection principles and frequently asked questions (the “Safe Harbor Principles”) to enable U.S. companies, such as CSID, to satisfy the requirement under European Union law that adequate protection be given to personal information transferred from the E.U. to the United States.
CSID complies with the U.S.–E.U. Safe Harbor framework and the U.S.–Swiss Safe Harbor framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data from European Union member countries and Switzerland. CSID has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Safe Harbor program, please visit http://www.export.gov/safeharbor/ and to view CSID’s certification, please visit https://safeharbor.export.gov/companyinfo.aspx?id=28491.
CSID participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework. CSID is committed to subjecting all personal data received from European Union (EU) member countries, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List.
CSID is responsible for the processing of personal data it receives, under the Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. CSID complies with the Privacy Shield Principles for all onward transfers of personal data from the EU, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the Privacy Shield Framework, CSID is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, CSID may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
Under certain conditions, more fully described on the Privacy Shield website, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
Upon request CSID will provide you with information about whether we hold, or process on behalf of a third party, any of your personal information. To request this information please contact us at firstname.lastname@example.org.
You may access, correct, or request deletion of your personal information by logging in to your account, contacting us at email@example.com. We will respond to these requests within a reasonable timeframe.
We may retain your information for as long as your account is active or as needed to provide you services, comply with our legal, compliance and audit obligations, resolve disputes and enforce our agreements.
CSID’s privacy principles outlined below are based on the Safe Harbor Principles. Rest assured that your personal information experiences the same level of data protection that you enjoy in the E.U.
NOTICE, CHOICE AND DATA INTEGRITY – relevance, retention and accuracy
At the time we collect your personal data we will state clearly the purposes for which your data will be required and any third parties to whom it may be disclosed. If we ever decide to send you communications regarding other CSID products and services that you do not currently receive, we will only send you such information after acquiring your consent.
We will use the information you supply us for the purposes of providing you with the services you have requested and for administering our relationship with you, internal business purposes, statistical analysis, and as described in Sections 3 and 8.
We will take reasonable steps to ensure that all personal information is relevant to its intended use; accurate; complete; and current.
We will use your personal information for your identity protection services. Specifically, we monitor your submitted data and provide you with notifications of potential compromised data. When you deactivate your account, we may continue to share information about you according to our legal and regulatory requirements.
We will keep your personal information only as long as needed for the purposes for which we collected it, or as necessary to comply with our compliance requirements, legal obligations, resolve disputes, and enforce our agreements.
ACCESS AND CORRECTION
If your personal information changes, you may correct, update, or amend it by making the change on your subscriber profile page.
If you no longer desire to use our services, you may deactivate your account by contacting us through your designated Member Services representative.
You may request a copy of the information we hold about you so you can correct or amend information that may be inaccurate or incomplete by writing to your designated Member Services representative. In addition, we will ask you to provide sufficient evidence of your identity for your own protection so we can ensure that information is being released to the correct person. We will respond to your request within 30 days.
To request the deletion of your information, please contact us through one of the methods listed below. In some cases, our business requirements and legal obligations may prevent us from being able to delete your information.
DATA SHARING AND INTERNATIONAL TRANSFERS
If we transfer your personal information to another country, we will take appropriate measures to protect your privacy and the personal information we transfer.
We, and the third parties we engage to perform analytics services, automatically collect certain general information when you access our website, via Cookies, Log Files, Web Beacons, Flash LSOs and other tracking technologies (the “Tracking Technologies”). We and the third parties we engage use these Tracking Technologies to administer and improve our website and the content on it, including to track user movements around the website, to gather usage information and statistics about how our website is used, to permit users to log in or enroll in our services, to store user preferences, and to customize content.
We may combine the information we have automatically collected from you with other information we collect about you. We do this to improve services we offer you, to improve, analytics, or website functionality, and to develop new products and services. The following are some examples of information we may collect:
- CSID Website pages you view
- Emails that you open or forward
- Links you click on
- Forms you complete
In connection with the website, for example during the enrollment process or upon log into the website portal, information about your computer, such as the device ID and other accompanying technical attributes and characteristics, may be accessed, retained and used by us or our service providers to analyze trends, track users’ movements on the website, and to gather demographic information about the user base as a whole. If you access our website through a mobile device, we also may collect information about your device, such as the device ID or another identifier as permitted by the manufacturer.
We, and the third parties we engage to perform analytics services, use both session ID cookies and persistent cookies. Specifically, we use session-based cookies in order to store language and other country specific preferences such as support contact information. CSID may also utilize cookies in order to track internal metrics of site usage. A session ID cookie expires when you close your browser. A persistent cookie remains on your hard drive for an extended period of time. Persistent cookies also enable us to track and target the interests of our users to enhance the experience on our site. You can remove persistent cookies by following directions provided in your Internet browser’s “help” file. You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. However, this may prevent you from taking full advantage of the website.
As is true of most websites, we gather certain information automatically and store it in log files. This information may include Internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data. We do not link this automatically collected data to other information we collect about you.
Third parties with whom we partner to provide certain features on our website also use HTML5 to collect and store information. Various browsers may offer their own management tools for removing HTML5.
WHICH INTERNET ADVERTISING PROGRAMS WE ENGAGE
We may use third party-placed tracking pixels and cookies from Google. When we send your email address to Costco, Costco and/or its marketing partners and service providers may convert your email address into a unique value which can be matched by Google with a user on Google’s AdWords platform to allow Costco to serve you interest-based advertising. Although we and Costco do not provide any other personal information to Google, they may gain insights about individuals who respond to these ads. You may manage your advertising preferences by visiting Google’s Ads Settings.
We may partner with other companies to provide interest-based advertising, both on and off this website. If this occurs, we will provide you with an opportunity to opt-out when these advertisements are served. If you would like more information about this practice and to know your choices for not having this information used by third-party service providers, please visit http://www.networkadvertising.org/managing/opt_out.asp.
- LINKS TO OTHER WEBSITES
- SOCIAL MEDIA WIDGETS
CSIdentity Corporation d/b/a Complete ID
Attn: Legal Department
1501 S. Mopac Exp., Suite 200
Austin, TX 78746
Effective Date: January13, 2017