Privacy Policy

CreditRiskMonitor (“CRMZ”) respects and protects the privacy of the individuals that use CRMZ's credit reporting services ("CRMZ Information Service"). Individually identifiable information about you is not willfully disclosed or shared with any third party.

Information Collection and Use

CRMZ collects personal information when you register with CRMZ and when you use the CRMZ Information Service. Once you register with CRMZ and sign in to our services, you are not anonymous to us. CRMZ collects information about your transactions with us. CRMZ automatically receives and records information on our server logs from your browser, including your IP address, CRMZ cookie information, and the page you request. This information is logged to provide technical support for the website, to diagnose system performance or problem areas, and to detect attempts to damage or gain unauthorized access to our website. For more information, please visit the Personal Data Collection and Use section in our Privacy Shield listed below.

Cookies

Cookies allow websites to store small pieces of information on your computer between visits. CRMZ uses cookies to improve the quality of our service by saving preferences and other information about your usage.

Cookies Collection Information

Our cookies may contain personally identifiable information, but only if you allow such cookies to be accepted. We also use "session only" cookies to maintain logins; these cookies contain no personally identifiable information or PII and are deleted when your browser is closed. CRMZ does not disclose its cookies to third parties except as may be required by a valid legal process such as a search warrant, subpoena, statute, or court order.

Cookies We Collect

Strictly Necessary Cookies

Cookie NameUsageDataPotential PII?
CRMZUserSessionKeyThis temporary (session-only) cookie is set when a registered user successfully logs in to our web site, using their CreditRiskMonitor credentials.  It is composed of the date and time of the login, plus a randomly generated unique key, and indicates that this particular browser has been authenticated.  This cookie is deleted when the browser is closed, and becomes invalid after 24 hours, even if the browser remains open. This cookie is advisory only and database access is enforced on the server side.String (Example: 5/30/2018 10:42:32 AMcEG79r7nh2Cf45d2ikuA188)No

Functional Cookies

Cookie NameUsageDataPotential PII?
CRMZUserNameOn successful login, we will set our user's username into this cookie, provided they have not chosen High Privacy in their user preferences. It is updated with each login, so if they login as someone else, it is overwritten each time.UsernameYes – may include PII such as the user’s surname
_bv####This cookie is used for browser verification in two-step authenticationDate and TimeYes - used ID is referenced in the cookie name
CRMZ_liThis cookie makes our www site aware of when users are logged in. It is set only upon successful login and is cleared if the user logs off. It respects the High Privacy setting, therefore, if our user is using High Privacy, we will not store their UserId in the string.String (Example: 106351)No - if the user has selected High Privacy
CRMZ_utThis cookie is a single character that indicates a user’s “class” and it allows us to distinguish between subscribers, trial users, and internal users.Letter (Example: A)No
UserGroupIDWith this cookie, we can identify that a user is a member of a group of users with access to specific confidential information. This cookie is advisory only and database access is enforced on the server side.Number (Example: 0)No
ProviderIdWith this cookie, we can identify that a user is a member of a group of users who have access to certain trade information. This cookie is advisory only and database access is enforced on the server side.Number (Example: 0)No
crmzCCThis cookie indicates that we have checked to see if the user had any cookies under the crmz.com website and they are copied over.Date and TimeNo
FirstVisitAt the first request to any info.creditriskmonitor.com page .ASP or .ASPX, we will send the current Date/Time in the FirstVisit cookie (only if it doesn't exist) as a simple way to let us know when the user first came to the site.Date and Time (Example: 5/30/2018 10:40:16AM)No
ThisVisitThis temporary (session-only) cookie is used to record the date and time of the first page of a specific visit to our info web site by a browser.  Whether the user eventually logs into our web site or not, all subsequent pages visited by that browser in that session will contain that same cookie. This cookie is deleted when the browser is closed.Date and TimeNo
PrintSettingsThis cookie saves our user's printing preferences.Example: “PrintSettings=YYNNNUYYYY”No
TermsOfServiceThe cookie that lets us know that a user has accepted our terms of service.Letter (Example: Y)No
PastDueBreakPointThis cookie is used to set control colors on certain trade payment pages.Number (Example:30)No
TradeTabPageSizeThis cookie is used to control how many records are shown in trade reports.Number (Example: 30)No
stnsThis cookie verifies user browser with two-step authentication.Date and TimeNo

Hot Sauce Cookies

We share some of our cookies with our marketing friends over at Hot Sauce to ensure your user experience is easier and more enjoyable.

Cookie NameUsageDataPotential PII?
CRMZUserNameOn successful login, we will set the user’s username into this cookie, provided they have not chosen High Privacy in their user preferences. It is updated with each login, so if they login as someone else, it is overwritten each time.String (Example: hotsauce)Yes - username
CRMZ_liThis cookie makes our www site aware of when users are logged in. It is set only upon successful login and is cleared if the user logs off. It respects the High Privacy setting, therefore, if our user is using High Privacy, we will not store their UserId in the string.String (Example: 106351)No – if the user has selected High Privacy
CRMZ_ut

This cookie is a single character that indicates a user’s “class” and it allows us to distinguish between subscribers, trial users and internal users.

Letter (Example: A)No
has_jsThis cookie keeps track if the user has JavaScript installed.1 or 0No
userHasNameThis cookie keeps track of the user’s CreditRiskMonitor username to determine whether the user already has an info site account or not. We may autofill the username in the “login” field at the top of the webpage.True or FalseNo
userLoggedInThis cookie keep track of whether the user has logged into CreditRiskMonitor’s info site or not.True or FalseNo

Additional Cookies

Cookie NameAdditional information, as well as opt in and opt out instructions
Google Analyticshttps://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage
YouTube and Google Ad Serviceshttps://policies.google.com/technologies/types
DoubleClickhttps://support.google.com/dfp_premium/answer/2839090?hl=en
LinkedInhttps://www.linkedin.com/legal/cookie-policy
Hotjarhttps://www.hotjar.com/legal/policies/cookie-information
Salesfusionhttps://www.salesfusion.com/cookie-policy/

Internet Commerce

CRMZ uses a third party credit card processing company to process on-line payment for CRMZ credit reports. CRMZ is committed to data security with respect to personal information that is collected on our site and is shared with these entities in order to complete the transaction. These entities are not permitted to use the personal information for any other purpose.

Your Consent and Changes to the Privacy Policy

By using the CRMZ Information Service and our web site, you consent to the collection and use of your information as we have outlined in this policy and to our Terms of Use Agreement. CRMZ may decide to change this Privacy Policy from time to time. When we do, we will post those changes on this page so that you are always aware of the information we collect, how we use it, and under what circumstances we disclose it.

***

CreditRiskMonitor.com, Inc. Privacy Shield Policy

This Privacy Shield Policy (“Policy”), effective as of May 2, 2018, describes how CreditRiskMonitor.com, Inc. (“CreditRiskMonitor”, “we” or “us”) collects, uses, and discloses certain personally identifiable information about an individual that we receive from customers in the European Union and Switzerland (“Personal Data”). Personal Data shall not include any aggregated and/or anonymized information that we receive, collect, process, transfer or otherwise use.

CreditRiskMonitor complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from European Union and Switzerland to the United States, respectively. CreditRiskMonitor has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern.  To learn more about the Privacy Shield program, and to view our certification page, please visit https://www.privacyshield.gov

For purposes of enforcing compliance with the Privacy Shield, CreditRiskMonitor is subject to the investigatory and enforcement authority of the U.S. Federal Trade Commission.

Personal Data Collection and Use

Our Privacy Policy describes the categories of Personal Data that we may receive as well as the purposes for which we use that Personal Data: first and last name, e-mail address, company name, title, business address, postal code, country and telephone number. We process Personal Data for the following purposes: to provide access to CreditRiskMonitor’s proprietary internet-based news and financial analysis service and related services (collectively, the “Service”), to provide technical support for the Service including for the CreditRiskMonitor website located at https://www.creditriskmonitor.com (the “Website”), to market and promote the Service and Service enhancements, to develop improvements to the Service, to diagnose system performance or problem areas, and to detect attempts to damage or gain unauthorized access to the Website. CreditRiskMonitor will only process Personal Data in ways that are compatible with the purposes that CreditRiskMonitor collected it for, or for purposes the individual later authorizes. Before we use your Personal Data for a purpose which is materially different than the purpose we collected it for or that you later authorized, we will provide you with the opportunity to opt in. CreditRiskMonitor maintains reasonable procedures to help ensure that Personal Data is reliable for its intended use, accurate, complete, and current.

Third-Party Agents or Service Providers

We may transfer Personal Data to our third-party agents or service providers who perform functions on our behalf as described in our Privacy Policy, including: to provide access to CreditRiskMonitor’s Service, to provide technical support for the CreditRiskMonitor Website, to diagnose system performance or problem areas, to market and promote the Service and Service enhancements, and to detect attempts to damage or gain unauthorized access to the Website. Under certain circumstances, we may remain liable for the acts of our third-party agents or service providers who perform services on our behalf for their handling of Personal Data that we transfer to them.

CreditRiskMonitor will require its Agents to safeguard personal information consistent with this Policy by contract obligating the Agent to provide at least the same level of protection as is required by the EU-U.S. and Swiss-U.S. Privacy Shield Principles.

Disclosures In Response to Lawful Request

Under certain circumstances, we may be required to disclose your Personal Data in response to valid requests pursuant to law, court order, other legal process or by public authorities, including to meet national security or law enforcement requirements.

Security

CreditRiskMonitor maintains reasonable and appropriate security measures to protect Personal Data from loss, misuse, unauthorized access, disclosure, alteration, or destruction in accordance with the Privacy Shield.

Access, Correction or Deletion Rights

You have the right to access the Personal Data that we hold about you and to request that we correct, amend, or delete it if it is inaccurate or processed in violation of the Privacy Shield. These access rights may not apply in some cases, including where providing access is unreasonably burdensome or expensive under the circumstances or where it would violate the rights of someone other than the individual requesting access. If you would like to request access to, correct, amend or delete your Personal Data, you can submit a written request to the contact information provided below in the “Contact Us” section. We may request specific information from you to confirm your identity. In some circumstances we may charge a reasonable fee for access to your information. If a request for access, correction or deletion of Personal Data might prevent us from providing services to you due to contractual or legal reasons, we will inform you of this result prior to fulfilling your request.

We will also provide an EU or Swiss individuals with opt-out or opt-in choice before we share their data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. 

To limit the use and disclosure of your personal information, please submit a written request to the “Contact Us” section listed below.

Questions or Complaints

In compliance with the EU-U.S. and Swiss-U.S. Privacy Shield Principles, CreditRiskMonitor commits to resolve complaints about your privacy and our collection or use of your Personal Data.  European Union or Swiss individuals with inquiries or complaints regarding this privacy policy should first contact CreditRiskMonitor at:

CreditRiskMonitor.com, Inc.
Attn: Lawrence Fensterstock, SVP & CFO
704 Executive Boulevard, Suite A
Valley Cottage, N.Y. 10989

Or by email to: dataprivacy@creditriskmonitor.com

We will investigate and attempt to resolve any complaints or disputes regarding the use or disclosure of your Personal Data within forty-five (45) days of receiving your complaint.

CreditRiskMonitor has further committed to refer unresolved privacy complaints under the Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD, operated by the Council of Better Business Bureaus.  If you do not receive timely acknowledgement of your complaint, or if your complaint is not satisfactorily addressed, please visit https://www.bbb.org/EU-privacy-shield/for-eu-consumers for more information and to file a complaint.

Binding Arbitration

You may have the option to select binding arbitration for the resolution of your complaint under certain limited conditions, provided you have taken the following steps: (1) raised your compliant directly with CreditRiskMonitor and provided us the opportunity to resolve the issue; (2) made use of the independent dispute resolution mechanism identified above in the “Questions or Complaints” section; and (3) raised the issue through the relevant data protection authority and allowed the U.S. Department of Commerce an opportunity to resolve the complaint at no cost to you.  For more information, please visit the EU-U.S. Privacy Shield Annex I Binding Arbitration Mechanism webpage at: http://go.adr.org/privacyshieldannex.html.

Contact Us

If you have any questions about this Policy or would like to request access to your Personal Data, please contact us as follows: 

CreditRiskMonitor.com, Inc.
Attn: Lawrence Fensterstock, SVP & CFO
704 Executive Boulevard, Suite A
Valley Cottage, New York 10989

Or by email to: dataprivacy@creditriskmonitor.com

Changes to This Policy

We reserve the right to amend this Policy from time to time, including without limitation in connection with the Privacy Shield's requirements.