We appreciate the confidence that you place in BDI and understand the responsibilities it demands of us. Our objective will always remain the same -- to serve your needs with integrity throughout every process BDI performs for your organization. At the center of this commitment is the Privacy and Security Policy outlined in this document. It describes the safeguards in place to protect the personal information you provide to us and how we seek to protect your interests in this area.
Our organization is responsible for your customers' personal information when under our control. Our organization has designated individuals who are held accountable for compliance with the Policies described in this notice.
BDI will protect your customers' personal information by using appropriate security safeguards. We will remain alert and prepared to adapt these measures to address potential threats, hazards, or unauthorized access.
Personal information is retained and disclosed as necessary to serve our customers (and their customers) and otherwise only in accordance with applicable law. Personal information about our customers (and their customers) is not used or disclosed to any third parties except:
We protect the quality and integrity of your personally identifiable information by implementing appropriate technical and organizational measures, such as using encryption for transmission of IDs and passwords, to help us keep your information secure and accurate.
Below is a high-level diagram of the BDI eStatement Web application.
This diagram reveals that BDI's eStatement application has security safeguards at several strategic locations.
Up to 256-bit SSL is used to encrypt any sensitive information transmitted to, or received from, the member over the Internet. SSL makes spying a tremendously difficult task and alleviates identity spoofing, information disclosure, and data tampering. Our SSL Certificates are from Thawte, an industry recognized certificate authority.
BDI utilizes state of the art firewalls to control access and protect sensitive information. Industry leading intrusion detection/prevention technology monitors all incoming and outgoing traffic and filters out any abnormal data requests. Internal network and application controls protect database servers from unauthorized access from within BDI's private network.
Highly-sensitive data, such as customer (end-user) passwords, are encrypted using a strong cryptographic routine before being stored in the database.
We will electronically post a written notice upon any material change to this Policy.
Questions regarding this statement can be achieved at this site or may be directed to:
Information on Privacy Policies
Business Data, Inc.
361 N. Oak St.
Inglewood, CA 90302