The privacy principles in this Policy are based
on the Safe Harbor Principles.
NOTICE: Where the Company collects
Personal Information directly from individuals in the EU, it will
inform them about the type of Personal Information collected, the
purposes for which it collects and uses the Personal Information,
and the types of non-agent third parties to which the Company
discloses or may disclose such Personal Information, and the choices
and means, if any, the Company offers individuals for limiting the
use and disclosure of their Personal Information. Notice will be
provided in clear and conspicuous language when individuals are
first asked by the Company to provide Personal Information directly
to the Company, or as soon as practicable thereafter, and in any
event before the Company uses or discloses the Personal Information
for a purpose other than that for which it was originally collected.
Where the Company receives Personal Information from its
subsidiaries, affiliates or other non-affiliated entities in the EU,
the Company will use and disclose such Personal Information only in
accordance with the notices provided by such entities and the
choices made by the individuals to whom such Personal Information
relates.
CHOICE: The Company will offer
individuals the opportunity to choose whether their Personal
Information is (a) to be disclosed to a non-agent third party, or
(b) to be used for a purpose other than the purpose for which it was
originally collected or subsequently authorized by the individual,
each such choice being an "opt-out." For Sensitive Personal
Information, the Company will give individuals the opportunity to
affirmatively and explicitly consent to (a) the disclosure of the
Sensitive Personal Information to a non-agent third party or (b) the
use of the Sensitive Personal Information for a purpose other than
the purpose for which it was originally collected or subsequently
authorized by the individual, each such consent, if given, being an
"opt-in.". The Company will provide individuals with reasonable
mechanisms to exercise their "opt-out" or "opt-in"
choices.
DATA INTEGRITY: The Company will
use Personal Information only in ways that are compatible with the
purposes for which it was collected or subsequently authorized by
the individual. The Company will take reasonable steps to ensure
that Personal Information it is authorized to use or disclose is
relevant to its intended use, accurate, complete and current prior
to such use or disclosure.
TRANSFERS TO AGENTS: The Company
will obtain written assurances from its agents to whom it discloses
Personal Information under this Policy that they will safeguard
Personal Information consistent with this Policy. Examples of
appropriate assurances that may be provided by agents include: a
contract obligating the agent to provide at least the same level of
protection as is required by the relevant Safe Harbor Principles,
being subject to EU Directive 95/46/EC (the EU Data Protection
Directive); Safe Harbor certification by the agent; or being subject
to another European Commission adequacy finding, assurance that the
agent will comply with the terms of such other adequacy finding.
Where the Company becomes aware that an agent is using or disclosing
Personal Information in a manner contrary to this Policy, the
Company will take reasonable steps to prevent or stop the use or
disclosure.
ACCESS AND CORRECTION: Upon
request, the Company will grant individuals reasonable access to
Personal Information that it holds about them. In addition, the
Company will take reasonable steps to permit individuals to correct,
amend, or delete information that is demonstrated to be inaccurate
or incomplete.
SECURITY: The Company will take reasonable
precautions to protect Personal Information in its possession from
loss, misuse and unauthorized access, disclosure, alteration and
destruction.
ENFORCEMENT: The Company will
conduct compliance audits of its relevant privacy practices to
verify adherence to this Policy. Any employee that the Company
determines is in violation of this Policy will be subject to
disciplinary action up to and including termination of employment.
DISPUTE RESOLUTION: Any questions
or concerns regarding the use or disclosure of Personal Information
should be directed to the Company's Privacy Office at the address
given below. The Company will investigate and attempt to resolve
complaints and disputes regarding unauthorized use and disclosure of
Personal Information in accordance with the principles contained in
this Policy. For complaints that cannot be resolved between the
Company and the complainant, the Company has agreed to participate
in the dispute resolution procedures of the panel established by the
European data protection authorities to resolve disputes pursuant to
the Safe Harbor Principles.
LIMITATION ON APPLICATION OF
PRINCIPLES
Adherence by the Company to these
Safe Harbor Principles may be limited (a) to the extent required to
respond to a legal or ethical obligation; and (b) to the extent
expressly permitted by an applicable law, rule or regulation.
CHANGES TO THIS
SAFE
HARBOR PRIVACY POLICY
This Policy may be amended from
time to time, consistent with the requirements of the Safe Harbor
Principles. An appropriate notice will be posted on the Company's
web page
www.businessprotection.com.
Contact Info:
Donna Anacker
Business Protection Systems
5041 La Mart Drive, Suite 220
Riverside,
CA 92507
USA
Tel: 1-800-594-3714 or 1-951-341-5050
Facsimile 1-951-341- 5049
