Privacy Policy

PRIVACY POLICY

CreditRiskMonitor.com, Inc. (“CreditRiskMonitor®” or “We”) respects and protects the privacy of the individuals that use CreditRiskMonitor’s credit reporting services and other products and services (collectively, the “Service”) through its website. This Privacy Policy (the “Policy”) describes the types of information we may collect from you or that you may provide when you visit the websites located at supplychainmonitor.com or https://info.supplychainmonitor.com (our “Websites”), CreditRiskMonitor’s social media websites and/or accounts (the “Social Media Sites”) and/or otherwise use the Service, and our practices for collecting, using, maintaining, protecting, and disclosing that information. As used in this Policy, the word “Sites” shall include the Websites and Social Media Sites. This Policy applies to information we collect:

  • On the Sites
  • In e-mail, text, and other electronic messages between you and the Sites
  • When you use or otherwise interact with the Service or interact with our advertising on third-party websites, platforms, and services

Please read this Policy carefully to understand our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, your choice is not to use our Sites. By using the Sites, you accept and agree to be bound and abide by this Policy and our Terms of Use (the “Terms of Use”), incorporated herein by reference. This Policy was last updated on November 16, 2023.

Information Collection and Use
CreditRiskMonitor collects various types of information when you register with CreditRiskMonitor and when you use the Sites, including information:

  • by which you may be personally identified, including without limitation your name, address, e-mail address, and telephone number (collectively, “Personal Information”);
  • that is about you but individually does not identify you; and/or
  • about your internet connection, the equipment you use to access our Sites, and usage details, including without limitation the pages you request and the information that you input while on the Sites

We collect this information:

  • Directly from you when you provide it to us
  • Automatically as you navigate through the Sites. Information collected automatically may include usage details, clickstream data, IP addresses, and information collected through cookies and other tracking technologies
  • From third parties, for example, our business partners

Information You Provide to Us
The information we collect on or through our Sites may include:

  • Information that you provide by filling in forms on our Sites, including, without limitation, your name, address, e-mail address, and telephone number. This includes information provided at the time of registering to use our Websites, subscribing to the Service, logging in via single-sign-on (SSO) services, or requesting further services. We may also ask you for information when you enter a contest or promotion sponsored by us, and when you report a problem with our Websites and/or the Service
  • Records and copies of your correspondence (including e-mail addresses), if you contact us
  • Details of transactions you carry out through our Websites and the fulfillment of your orders. You may be required to provide financial information before taking certain activity on our Websites
  • Your search queries and other activity on the Sites

You also may provide information to be published or displayed on public areas of the Sites, or transmitted to other users of the Sites and/or third parties, including without limitation posts, comments and reviews (collectively, “User Contributions”). Your User Contributions are posted on and transmitted to others at your own risk. Although we may limit access to certain web pages on the Sites, please be aware that no security measures are perfect or impenetrable. Therefore, we cannot and do not guarantee that your User Contributions will not be viewed by unauthorized persons.

Information We Collect Through Automatic Data Collection Technologies
As you navigate through and interact with our Sites, we may use automatic data collection technologies to collect certain information about your equipment, browsing actions, and patterns, including details of your visits to our Sites, your Internet Protocol (IP) address, traffic data, usage details, clickstream data, location data, metadata, the webpages you visit within the Sites, and other communication data and the resources that you access and use on the Sites; and information about your computer and internet connection, operating system, and browser type (collectively, “Tracking Information”). Tracking Information may also include information we collect about your online activities over time and across third-party websites or other online services, including without limitation the Internet website or URL from which you came prior to accessing the Sites and the Internet website or URL to which you go after leaving the Sites. Tracking Information shall include information that we collected previously from you as well as information collected on an ongoing basis. Personal Information, User Contributions, and Tracking Information shall collectively be referred to as “PII”. PII shall not include any aggregated, anonymized, and/or other non-personally identifiable information that we collect, process, retain, transfer, or otherwise use.

The information we collect automatically may include Personal Information or we may maintain or associate the information we collect automatically with Personal Information we collect in other ways or receive from third parties. It helps us to improve our Sites and to deliver a better and more personalized service, including by enabling us to:

  • Estimate our audience size and usage patterns
  • Store information about your preferences, allowing us to customize our Sites according to your individual interests
  • Speed up your searches
  • Recognize you when you return to our Websites

The technologies we use for this automatic data collection may include:

  • Cookies (or browser cookies). A cookie is a small file placed on the hard drive of your computer. You may refuse to accept browser cookies by activating the appropriate setting on your browser. However, if you select this setting you may be unable to access certain parts of our Sites. Unless you have adjusted your browser setting so that it will refuse cookies, our system will issue cookies when you direct your browser to our Sites
  • Flash Cookies. Certain features of our Sites may use local stored objects (or Flash cookies) to collect and store information about your preferences and navigation to, from, and on our Sites. Flash cookies are not managed by the same browser settings as are used for browser cookies
  • Web Beacons. Pages of our the Sites and our e-mails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or opened an e-mail and for other related website statistics (for example, recording the popularity of certain website content and verifying system and server integrity)

Cookies We Collect

Strictly Necessary Cookies

CRMZUserSessionKey: This temporary (session-only) cookie is set when a registered user successfully logs in to our Websites, using their CreditRiskMonitor credentials. It is composed of the date and time of the login, plus a randomly generated unique key, and indicates that this particular browser has been authenticated. This cookie is deleted when the browser is closed, and becomes invalid after 24 hours, even if the browser remains open. This cookie is required and database access is enforced on the server-side. Data: String (Example: 5/30/2018 10:42:32 AMcEG79r7nh2Cf45d2ikuA188). Potential Pll: No

Functional Cookies

CRMZUserName: On successful login, we will set our user's username into this cookie, provided they have not chosen High Privacy in their user preferences. It is updated with each login, so if they log in as someone else, it is overwritten each time. Data: String (Example: jdoe1). Potential Pll: Yes – may include PII such as the user’s surname

_bv####: This cookie is used for browser verification in two-step authentication. Data: Date and Time. Potential PII: Yes - used ID is referenced in the cookie name

CRMZ_li: This cookie makes our marketing website aware of when users are logged in. It is set only upon successful login and is cleared if the user logs off. It respects the High Privacy setting, therefore, if our user is using High Privacy, we will not store their UserId in the string. Data: String (Example: 106351). Potential PII: No - if the user has selected High Privacy

CRMZ_ut: This cookie is a single character that indicates a user’s “class” and it allows us to distinguish between subscribers, trial users, and internal users. Data: Letter (Example: A). Potential PII: No

UserGroupID: With this cookie, we can identify that a user is a member of a group of users with access to specific confidential information. This cookie is advisory only and database access is enforced on the server-side. Data: Number (Example: 0). Potential PII: No

ProviderId: With this cookie, we can identify that a user is a member of a group of users who have access to certain trade information. This cookie is advisory only and database access is enforced on the server-side. Data: Number (Example: 0). Potential PII: No

crmzCC: This cookie indicates that we have checked to see if the user had any cookies under the crmz.com website and they are copied over. Data: Date and Time (Example: 5/30/2018 10:40:16AM). Potential PII: No

FirstVisit: At the first request to any non-marketing web page, we will send the current Date/Time in the FirstVisit cookie (only if it doesn't exist) as a simple way to let us know when the user first came to the site. Data: Date and Time (Example: 5/30/2018 10:40:16AM). Potential PII: No

ThisVisit: This temporary (session-only) cookie is used to record the date and time of the first page of a specific visit to our info website by a browser. Whether the user eventually logs into our website or not, all subsequent pages visited by that browser in that session will contain that same cookie. This cookie is deleted when the browser is closed. Data: Date and Time (Example: 5/30/2018 10:40:16AM). Potential PII: No

PrintSettings: This cookie saves our user's printing preferences. Data: Example: “PrintSettings=YYNNNUYYYY”. Potential PII: No

TermsOfService: The cookie that lets us know that a user has accepted our terms of service. Data: Letter (Example: Y). Potential PII: No

PastDueBreakPoint: This cookie is used to set control colors on certain trade payment pages. Data: Number (Example: 30). Potential PII: No

TradeTabPageSize: This cookie is used to control how many records are shown in trade reports. Data: Number (Example: 30). Potential PII: No

stns: This cookie verifies the user browser with two-step authentication. Data: Date and Time (Example: 5/30/2018 10:40:16AM). Potential PII: No

Hot Sauce Cookies

We share some of our cookies with our marketing friends over at Hot Sauce to ensure your user experience is easier and more enjoyable.

CRMZUserName: On successful login, we will set the user’s username into this cookie, provided they have not chosen High Privacy in their user preferences. It is updated with each login, so if they log in as someone else, it is overwritten each time. Data: String (Example: hotsauce). Potential PII: Yes - username

CRMZ_li: This cookie makes our marketing site aware of when users are logged in. It is set only upon successful login and is cleared if the user logs off. It respects the High Privacy setting, therefore, if our user is using High Privacy, we will not store their UserId in the string. Data: String (Example: 106351). Potential PII: No – if the user has selected High Privacy

CRMZ_ut: This cookie is a single character that indicates a user’s “class” and it allows us to distinguish between subscribers, trial users, and internal users. Data: Letter (Example: A). Potential PII: No

has_js: This cookie keeps track if the user has JavaScript installed. Data: 1 or 0. Potential PII: No

userHasName: This cookie keeps track of the user’s CreditRiskMonitor username to determine whether the user already has an registered licenseor not. We may autofill the username in the “login” field at the top of the webpage. Data: True or False. Potential PII: No

userLoggedIn: This cookie keeps track of whether the user has logged into CreditRiskMonitor’s credential required site or not. Data: True or False. Potential PII: No

Additional Cookies

Google Analytics: https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage

YouTube and Google Ad Services: https://policies.google.com/technologies/types

DoubleClick: https://support.google.com/dfp_premium/answer/2839090?hl=en

LinkedIn: https://www.linkedin.com/legal/cookie-policy

Hotjar: https://www.hotjar.com/legal/policies/cookie-information

Marketo: https://documents.marketo.com/legal/cookies

We also use "session-only" cookies to maintain logins; these cookies contain no Personal Information and are deleted when your browser is closed. You can set your browser to refuse all or some browser cookies or to alert you when cookies are being sent. To learn how you can manage your Flash cookie settings, visit the Flash player settings page on Adobe’s website. If you disable or refuse cookies, please note that some parts of this site may then be inaccessible or not function properly. Most Internet browsers can be set to transmit digital “Do Not Track” requests to websites. Such websites may but are not required to comply with “Do Not Track” requests. At this time, CreditRiskMonitor does not respond to any digital “Do Not Track” requests.

How We Use Your Information
We use information that you provide us, we collect from you or that is otherwise about you, including without limitation any PII:

  • To present our Sites and their contents to you
  • To provide you with information, products, or services that you request from us or to fulfill any other purpose for which you provide it
  • To market and promote our products and services and any enhancements to same, including without limitation any new products and/or services
  • To provide technical support for the Sites and our products and services
  • To provide you with notices about your account including expiration and renewal notices
  • To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection
  • To notify you about changes to our Sites or any products or services we offer or provide through it
  • To contact you about our own and third-parties goods and services that may be of interest to you
  • To allow you to participate in interactive features on our Sites
  • In any other way, we may describe when you provide the information
  • For any other purpose with your consent

Disclosure of Your Information
We may disclose and use information that you provide us, we collect from you or that is otherwise about you, including without limitation any PII, in aggregated, anonymized, and/or other non-personally identifiable forms, without restriction (except to the extent prohibited by applicable law), including by disclosing same to third parties and creating information derived from same.

We may also disclose information that you provide us, we collect from you or that is otherwise about you, including without limitation any PII:

  • To our subsidiaries and affiliates
  • To contractors, service providers, and other third parties we use to support our business and who are bound by contractual obligations to keep PII confidential and use it only for the purposes for which we disclose it to them
  • To a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of CreditRiskMonitor’s assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which PII about users of our Sites is among the assets transferred
  • To third parties to market their products or services to you if you have consented to these disclosures. We contractually require these third parties to keep PII confidential and use it only for the purposes for which we disclose it to them
  • To fulfill the purpose for which you provide it. For example, if you give us an e-mail address to contact an individual for promotional purposes, we will transmit the contents of that e-mail and your e-mail address to the recipients
  • For any other purpose disclosed by us when you provide the information
  • With your consent

We may also disclose information that you provide us, we collect from you or that is otherwise about you, including without limitation any PII:

  • To comply with any law, statute, regulation, court order, or another legal process, including to respond to any government or regulatory request
  • To enforce or apply our Terms of Use Agreement and other agreements, including for billing and collection purposes
  • If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of CreditRiskMonitor, our customers, or others

You must protect the privacy of your own information. You must take precautions to protect the security of all PII that you may transmit to, from, or through the Sites over any home networks, routers, private wireless (WiFi) networks, public WiFi networks, and all other communication technologies. You must use encryption and other privacy techniques to prevent unauthorized persons from intercepting and/or receiving any such personal information. You are solely responsible for the security of all such information at all times. Consistent with the foregoing, you shall not utilize unencrypted, open access, or otherwise unsecured networks in connection with your access to and/or use of the Sites.

CreditRiskMonitor’s Social Media Sites
CreditRiskMonitor maintains accounts and sites on independent third-party social media websites, platforms, and applications including without limitation, Facebook, Twitter, and LinkedIn. Your use of CreditRiskMonitor’s Social Media Sites shall be subject to all of the following: this Policy; the Terms of Use Agreement; and the terms of use, privacy policy, and all other applicable terms and conditions for each social media site and platform on which CreditRiskMonitor’s Social Media Sites reside, as in effect at such time.

In addition, when you register to use social media websites and platforms in general, you are generally required to furnish profile and other information to such websites and platforms in accordance with their own internal policies. Therefore, by using CreditRiskMonitor’s Social Media Sites, you are authorizing CreditRiskMonitor to collect and retain information about you, including your profile and other information that you have disclosed to such social media websites and platforms, including without limitation Personal Information, and other information arising from your access and use of CreditRiskMonitor’s Social Media Sites, including without limitation Tracking Information. You expressly consent to CreditRiskMonitor’s collection, processing, retention, transfer, and other use of such information in accordance with this Policy and the Terms of Use Agreement.

Mobile Device Users of CreditRiskMonitor’s Sites
You can access and use CreditRiskMonitor’s Sites with virtually any mobile communications device such as a tablet, smartphone, or wearable device that has an Internet browser application (a “Mobile Device”), subject to any registration requirements with CreditRiskMonitor and provided that you subscribe or have access to a mobile telecommunications network. You are solely responsible to pay any and all service and/or telecommunications provider fees for mobile Internet access to CreditRiskMonitor’s Sites including all applicable text messaging fees and data and other charges. CreditRiskMonitor shall not be responsible for any technical or other difficulties that you may experience when you use any Mobile Device or public or private mobile communications network to access or use any of CreditRiskMonitor’s Sites. Some of the features of CreditRiskMonitor’s Sites may not be available or accessible when you view CreditRiskMonitor’s Sites using a Mobile Device. You understand that CreditRiskMonitor is providing its Sites to you on an “as is” basis without any warranty or guarantee whatsoever.

In addition to the Tracking Information described above, when you use a Mobile Device to access and/or use the Sites, CreditRiskMonitor may collect, process, retain, transfer, or otherwise use information and metadata about geographic location, mobile device, your mobile network, IP address, and other information, including without limitation information about nearby devices including Mobile Devices, WiFi access points and cellular communications towers that can be derived technologically from the use of your Mobile Device. CreditRiskMonitor is entitled to use this information as described in this Policy.  

Most Mobile Devices allow a user to control and disable location services, cookies, and other privacy settings. Please refer to the instructions for your Mobile Device for additional information.  

There are many potential risks when you use a Mobile Device. If your Mobile Device is lost, stolen, or compromised, or if someone else gains access to your mobile network, your personal information could be compromised or hacked. CreditRiskMonitor expressly disclaims any and all liability and responsibility for any such compromise and/or hack and any and all damages arising from same.

E-Commerce Transactions
All financial transactions conducted on the Sites shall be carried out using a third-party merchant service provider that is not affiliated with or under the control of CreditRiskMonitor. All payment options on the Sites are made through such merchant service. You agree to be bound by the terms, conditions, and policies of such merchant service provider. You agree that CreditRiskMonitor shall not be responsible for any transactions or dealings conducted through such merchant service provider. You further agree that CreditRiskMonitor shall not be responsible for any financial transactions or dealings conducted through the Sites, including by any third-party merchant service providers. It shall be the user’s responsibility to pay any fees, charges, and/or costs associated with the use of any merchant service providers on the Sites. Presently, CreditRiskMonitor uses Paya, Inc. as its third-party merchant service provider. Paya, Inc.’s website is located at https://www.paya.com. You agree to be bound by the terms, conditions, and policies of Paya, Inc.

You agree that the products and/or services offered on the Sites may be impacted and/or changed by any change to the services offered by third-party merchant service providers. You agree not to seek any recovery or recourse from CreditRiskMonitor relating to any financial transactions in which you engage via the Sites and that you shall look exclusively to such merchant service providers, and not to CreditRiskMonitor, for any and all recovery and recourse. You agree that CreditRiskMonitor may charge a separate service fee in connection with any products offered and sold on its Sites.

Risks
CreditRiskMonitor strives to protect the Personal Information, confidentiality, and privacy of each user. However, CreditRiskMonitor cannot and does not guarantee the security of any Personal Information or content, or materials that you disclose online or submit to CreditRiskMonitor via the Sites or otherwise, and you do so solely at your own risk.

You acknowledge that you are aware of security and privacy limitations including but not limited to:

  • the global accessibility of CreditRiskMonitor’s Sites on the Internet; 
  • the technological limitations of security, privacy, and authentication measures and features on Internet sites and specifically on CreditRiskMonitor’s Sites;
  • the risk that data or information is transmitted to or from CreditRiskMonitor’s Sites may be subject to eavesdropping, sniffing, spoofing, forgery, spamming, “impostering”, tampering, breaking passwords, harassment, fraud, electronic trespassing, hacking, denial of service attacks, nuking, system contamination (including computer viruses, Trojan horses, worms, defects, date bombs, time bombs, malware, ransomware, bugs, executables or other items of a destructive nature or any other malicious computer codes, scripts, applications or programs) causing unauthorized, damaging, or harmful access to and/or retrieval of information and data on your computer or network;
  • the risk that data or information on any of CreditRiskMonitor’s Sites may be subject to other security or privacy hazards, may not reach its destination, or may reach an erroneous address or recipient;
  • unauthorized access by third parties; and
  • the content or the privacy policies of other websites and social media websites and platforms, including without limitation those to which CreditRiskMonitor may link or be linked

Children Under the Age of 13
Our Sites are not intended for children under 13 years of age. No one under age 13 may provide any information to the Sites. We do not knowingly collect personal information from children under 13. If you are under 13, do not use or provide any information on the Sites or on or through any of its features, use any of the interactive or public comment features of the Sites or provide any information about yourself to us. If we learn we have collected or received personal information from a child under 13, we will delete that information.

Your California Privacy Rights
California’s “Shine the Light” law (California Civil Code Section § 1798.83) permits users of our Websites that are California residents to request certain information regarding our disclosure of Personal Information to third parties for their direct marketing purposes. To make such a request, please send an e-mail to dataprivacy@creditriskmonitor.com with the words "California Shine the Light Privacy Request" in the subject line or in the body of your e-mail.

General Provisions

You and CreditRiskMonitor have agreed to this Policy within the State of New York for all purposes. Any and all claims, disputes or legal proceedings arising out of or relating to this Policy including, without limitation, its validity, interpretation, performance, or breach, shall be adjudicated exclusively in the United States District Court for the Southern District of New York or the Supreme Court of the State of New York, County of New York. You expressly consent to the exclusive jurisdiction of such courts over you. You expressly waive any claim of forum non conveniens. This Policy and its validity and effect shall be interpreted under and governed by the substantive laws of the United States of America and the State of New York, without regard to principles of conflict of laws or statutes.

WAIVER OF JURY TRIAL. YOU AND CREDITRISKMONITOR EACH HEREBY KNOWINGLY, VOLUNTARILY, AND INTENTIONALLY WAIVE, TO THE FULLEST EXTENT PERMITTED BY APPLICABLE LAW, THE RIGHT TO TRIAL BY JURY IN ANY CLAIM, DISPUTE, OR LEGAL PROCEEDING ARISING OUT OF OR RELATING TO THIS AGREEMENT.

YOU AGREE TO WAIVE ANY RIGHTS TO PARTICIPATE IN A CLASS ACTION OR REPRESENTATIVE ACTION WITH RESPECT TO A CLAIM, DISPUTE, OR LEGAL PROCEEDING ARISING OUT OF OR RELATING TO THIS POLICY. IN ANY SUCH CLAIM, DISPUTE, OR LEGAL PROCEEDING, YOU AGREE NOT TO JOIN OR CONSOLIDATE CLAIMS, DISPUTES OR LEGAL PROCEEDINGS BY OR AGAINST OTHER CUSTOMERS IN COURT OR OTHERWISE PARTICIPATE IN ANY CLAIM AS A CLASS REPRESENTATIVE, CLASS MEMBER, OR IN A PRIVATE ATTORNEY GENERAL CAPACITY.

No action or inaction by CreditRiskMonitor may be construed as a waiver of this Policy or any part thereof. If any of the provisions of this Policy are held to be invalid, unenforceable, or illegal, the validity, enforceability, and legality of the remaining provisions of this Policy shall not be affected thereby and shall continue in full force and effect.

Your Consent and Changes to the Privacy Policy

By using the Service and/or our Sites, you consent to the collection, processing, retention, transfer, and other use of your information as we have outlined in this Policy and to our Terms of Use Agreement. We may decide to change this Policy from time to time. When we do, we will post any changes we make to our Policy on this webpage. Your continued use of the Sites after we make changes is deemed to be acceptance of those changes. You are responsible for periodically visiting our Sites and this Policy to check for any changes.

Contact Information
To ask questions or comment about this Policy and our privacy practices, contact us at: dataprivacy@creditriskmonitor.com.

Copyright© 2023 by CreditRiskMonitor.com, Inc. All content and materials contained in and on CreditRiskMonitor’s Sites is intellectual property belonging exclusively to CreditRiskMonitor and/or their respective owners, and is protected by international, federal, and state copyright and other laws and international treaties. Any copying, republication, redistribution, creation of derivative works, or public performance of such content and/or materials is strictly prohibited. CreditRiskMonitor reserves the right to enforce its copyright, trademark, and other legal rights and interests to the maximum extent permitted under the law. All rights of CreditRiskMonitor are expressly reserved.

***

CreditRiskMonitor.com, Inc. Data Privacy Framework Policy

This Data Privacy Framework Policy (“Policy”), effective as of June 1, 2021, describes how CreditRiskMonitor.com, Inc. (“CreditRiskMonitor”, “we” or “us”) collects, uses, and discloses certain personally identifiable information about an individual that we receive from customers in the European Union, the United Kingdom, and Switzerland (“Personal Data”). Personal Data shall not include any aggregated and/or anonymized information that we receive, collect, process, transfer, or otherwise use. This Policy supplements our Privacy Policy located at https://www.creditriskmonitor.com/privacy-policy (the “Privacy Policy”).

CreditRiskMonitor complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. CreditRiskMonitor has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF. CreditRiskMonitor has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/

For purposes of enforcing compliance with the DPF Frameworks, CreditRiskMonitor is subject to the investigatory and enforcement authority of the U.S. Federal Trade Commission.

Personal Data Collection and Use
Our Privacy Policy located at https://www.creditriskmonitor.com/privacy-policy describes the categories of Personal Data that we may receive as well as the purposes for which we use that Personal Data: first and last name, e-mail address, company name, title, business address, postal code, country, and telephone number. We process Personal Data for the following purposes: to provide access to CreditRiskMonitor’s proprietary internet-based news and financial analysis service and related services (collectively, the “Service”), to provide technical support for the Service including for the CreditRiskMonitor websites located at https://www.creditriskmonitor.com or https://www.info.creditriskmonitor.com (the “Websites”), to market and promote the Service and Service enhancements, to develop improvements to the Service, to diagnose system performance or problem areas, and to detect attempts to damage or gain unauthorized access to the Websites. CreditRiskMonitor will only process Personal Data in ways that are compatible with the purposes that CreditRiskMonitor collected it for, or for purposes the individual later authorizes. Before we use your Personal Data for a purpose that is materially different than the purpose we collected it for or that you later authorized, we will provide you with the opportunity to opt-in. CreditRiskMonitor maintains reasonable procedures to help ensure that Personal Data is reliable for its intended use, accurate, complete, and current.

Third-Party Agents or Service Providers
We may transfer Personal Data to our third-party agents or service providers who perform functions on our behalf as described in our Privacy Policy, including providing access to CreditRiskMonitor’s Service, to provide technical support for the CreditRiskMonitor Websites, to diagnose system performance or problem areas, to market and promote the Service and Service enhancements, and to detect attempts to damage or gain unauthorized access to the Websites. Under certain circumstances, we may remain liable for the acts of our third-party agents or service providers who perform services on our behalf for their handling of Personal Data that we transfer to them.

CreditRiskMonitor will require its Agents to safeguard personal information consistent with this Policy by contract obligating the Agent to provide at least the same level of protection as is required by the EU-U.S. and Swiss-U.S. DPF and the UK Extension to the EU-U.S. DPF Principles.

Disclosures In Response to Lawful Request
Under certain circumstances, we may be required to disclose your Personal Data in response to valid requests pursuant to law, court order, other legal processes, or by public authorities, including to meet national security or law enforcement requirements.

Security
CreditRiskMonitor maintains reasonable and appropriate security measures to protect Personal Data from loss, misuse, unauthorized access, disclosure, alteration, or destruction in accordance with the DPF Principles.

Access, Correction, or Deletion Rights
You have the right to access the Personal Data that we hold about you and to request that we correct, amend, or delete it if it is inaccurate or processed in violation of the DPF Principles. These access rights may not apply in some cases, including where providing access is unreasonably burdensome or expensive under the circumstances or where it would violate the rights of someone other than the individual requesting access. If you would like to request access to, correct, amend, or delete your Personal Data, you can submit a written request to the contact information provided below in the “Contact Us” section. We may request specific information from you to confirm your identity. In some circumstances, we may charge a reasonable fee for access to your information. If a request for access, correction, or deletion of Personal Data might prevent us from providing services to you due to contractual or legal reasons, we will inform you of this result prior to fulfilling your request.

We will also provide EU, UK, or Swiss individuals with opt-out or opt-in choice before we share their data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. 

To limit the use and disclosure of your personal information, please submit a written request to the “Contact Us: section listed below.

Questions or Complaints

In compliance with the EU-U.S. and Swiss-U.S. Data Privacy Framework Principles, and the UK Extension to the EU-U.S. DPF, CreditRiskMonitor commits to resolve complaints about your privacy and our collection or use of your Personal Data. European Union, UK, or Swiss individuals with inquiries or complaints regarding this privacy policy should first contact CreditRiskMonitor at:

CreditRiskMonitor.com, Inc. 
Attn: Data Privacy Department
704 Executive Boulevard, Suite A
Valley Cottage, NY 10989

Or by e-mail to dataprivacy@creditriskmonitor.com

We will investigate and attempt to resolve any complaints or disputes regarding the use or disclosure of your Personal Data within forty-five (45) days of receiving your complaint. 

CreditRiskMonitor has further committed to refer unresolved privacy complaints under the Data Privacy Framework Principles to a U.S.-based independent dispute resolution mechanism, BBB NATIONAL PROGRAMS. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbbprograms.org/dpf-complaints for more information and to file a complaint. This service is provided free of charge to you.

In compliance with the DPF Principles, CreditRiskMonitor commits to resolving complaints about our collection or use of your personal information. Swiss individuals with inquiries or complaints regarding our EU-U.S. DPF, UK Extension to the EU-U.S. DPF, and Swiss-U.S. DPF policy should first contact CreditRiskMonitor at: dataprivacy@creditriskmonitor.com

CreditRiskMonitor has further committed to cooperate with the panel established by the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved DPF complaints concerning human resources data transferred from Switzerland in the context of the employment relationship.

Binding Arbitration

If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf

Contact Us

If you have any questions about this Policy or would like to request access to your Personal Data, please contact us as follows: 

CreditRiskMonitor.com, Inc. 
Attn: Data Privacy Department
704 Executive Boulevard, Suite A
Valley Cottage, NY 10989

Or by e-mail to dataprivacy@creditriskmonitor.com

Changes to This Policy
We reserve the right to amend this Policy from time to time, including without limitation in connection with DPF requirements.