Compliance Trainings International Compliance:
Collecting Personal Information:
We collect personally identifiable information, like names, postal addresses, email addresses, etc., when voluntarily submitted by our visitors. The information you provide is used to fulfill your specific request, unless you give us permission to use it in another manner, for example to add you to one of our mailing lists. We will not sell or give away any lists or other data that we may retain.
When you submit personal information to Compliance Trainings through this Site, you understand and agree that this information may be transferred across national boundaries and may be stored and processed in any of the countries in which Compliance Trainings maintain offices. You also acknowledge that in certain countries or with respect to certain activities, the collection, transferring, storage, and processing of your information may be undertaken by trusted vendors and partners of Compliance Trainings. Such vendors and partners are bound by contract not to use your personal information for their own purposes or provide it to any third parties.
Use of Personal Information:
With the exception of credit card information, we store the information from your order form to allow us to track consulting issues or refer to a previous order to help provide customer service. We do not store credit card information.
We may share information with government agencies or other companies assisting us in fraud prevention or investigation. We may do so when: (a) permitted or required by law; or, (b) trying to protect against or prevent actual or potential fraud or unauthorized transactions; or, (c) investigating fraud which has already taken place. The information is not provided to these companies for marketing purposes, and, (d) act in urgent circumstances to protect the personal safety of users of Compliance Trainings, its websites, or the public.
Links to Other Sites:
Our servers may track IP addresses and referring pages to help with site maintenance and improvements. This data is viewed only as anonymous statistics to show the busiest times of the day or week, pages with errors and how effective our advertising has been. This information is not used for any other purpose. Compliance Trainings may use this aggregate, non-identifying statistical data for statistical analysis, marketing, or similar promotional purposes.
Commitment to Data Security:
Your personally identifiable information is kept secure. Only authorized employees and agents have access to this information. Inside the company, data is stored in password-controlled servers with limited access. All emails and newsletters from this site allow you to opt out of further mailings.
EU-US Privacy Shield:
For the personal data that we receive from EEA, we remain compliant with EU-US Privacy Shield as specified by the United States Department of Commerce pertaining to personal data collection, retention and use from EU countries. We adhere to the Privacy Shield principles of notice, choice, accountability for onward transfers, security, data integrity & purpose limitation, access and recourse, enforcement and liability when processing personal data from the EEA in the US.
Access to information:
You have the right to access the personal data we collect about you in the EEA and to request that we correct, amend, or delete it if it is inaccurate or processed in violation of the Privacy Shield. These access rights may not apply in some cases, including where we must comply with legal requirements or if providing access is unreasonably burdensome or expensive under the circumstances or where it would violate the rights of someone other than the individual requesting access.
If you would like to request access to, correction, or deletion of your personal data collected in the EEA, you can submit a written request using the contact information provided below. We may request specific information from you in order to confirm your identity. In some circumstances, we may charge a reasonable fee for access to your information.
Processing information for our customers and GDPR:
Where we process personal information in connection with the provision of our services and solutions to our customers, we only collect, process and store personal information to support and provide those solutions. We act as data processors on behalf of our customers and do not use such information for our own purposes.
Compliance Trainings as Data Processor:
As a service provider to its customers, Compliance Trainings applications may capture personal data (name, email address, contact info, company affiliation) to track the records entered into the system from an authentication and authorization perspective. In this capacity, Compliance Trainings acts as a data processor on behalf of its customers.
As a data processor, Compliance Trainings has put in place appropriate technical and organizational measures to help ensure that its processing activities meet the requirements of GDPR, some of which we have described in this statement.
Compliance Trainings has implemented various security measures including controls and application and network level security audits by third-parties as well as robust standard operating procedures to manage any security incidents.
Compliance Trainings is committed to ensuring that it has data transfer and data management mechanisms in place as required by the GDPR.