BDI Privacy Policy

Privacy Commitment

Business Data, Inc. (“BDI”) is committed to privacy and we appreciate the confidence that you place in our company and the responsibilities it demands. Our objective will always remain the same -- to serve your needs with integrity throughout every interaction or service we may perform for you or your organization.

At the center of this commitment is our Privacy Policy describing the safeguards in place to protect the privacy of individuals that visit our website and use our services. This Privacy Policy describes our practices in connection with how we collect, store, use, and protect information about or relating to you.

About BDI

BDI is a national business-to-business service provider specializing in the creation and delivery of documents and marketing communications for Web Channels, Traditional Mail and Archive Solutions. Established in 1984, BDI serves a wide range of financial service institutions, health care companies, municipalities and other commercial organizations. Our mission is to match solutions to customer needs with an eye on future technology and service requirements. To learn more about BDI, please visit www.businessdatainc.com.

What We Collect and Use

BDI collects personal information from, and therefore this policy applies to:

• Individuals who visit our website; and
• Customers who contract or register to use BDI’s products, services and solutions (“Services”).

Personal information refers to the following types of information we may use, including:

• Contact details such as your name, email address, postal address and telephone number;
• Comments, feedback, posts and other submitted content via a web form;
• Interest and communication preferences including marketing permissions where appropriate;
• Location information (e.g., the country in which you are based); and
• IP address information and information relating to your use of the website.

BDI has not and will not sell, share, or trade your information to third parties for any purpose, including for advertising, displaying ads, or other commercial marketing purposes.

Website

BDI will collect no personal information about you when you visit our website unless you choose to provide that information to us. If you do nothing during your visit but browse through the website, read pages, or download information, we will gather and store certain information about your visit automatically. This information does not identify you personally. We automatically collect and store only the following information about your visit:

• The Internet domain (for example, "xyzcompany.com" if you use a private Internet access account, or "mycompany.org" if you connect from a corporate Internet access account) and IP address (an IP address is a number that is automatically assigned to your computer whenever you are surfing the Web) from which you access our website;
• The type of browser and operating system used to access our site;
• The date and time you access our site;
• The pages you visit; and
• If you linked to the businessdatainc.com website from another website, the address of that website.

We use this information to help make our site more useful to visitors -- to learn about the number of visitors to our site and the types of technology our visitors use.

If you choose to provide us with personal information -- as in an email to a website manager or someone else, or by filling out a form with your personal information and submitting it to us through our website -- we use that information to respond to your message and to help us get you the information you have requested. We do not collect personal information for any purpose other than to respond to you.

Cookies

We sometimes collect anonymous information from visits to our websites or use of our systems through various technologies such as cookies and clickstream data. A cookie is a small text file containing a user ID that is automatically placed on a computer or other device when visiting a website. Cookies record the pages visited and the actions taken on a website, but do not contain any personal information. Clickstream data is used to track movement within our domain and measure customer activity. From time to time, BDI may use this anonymous information to:

• Analyze trends and statistics to help provide better customer service;
• Personalize users’ experience and to allow us to deliver the type of content and service offerings in which you are most interested;
• Improve our website and systems in order to better serve you;
• Allow us to better service you in responding to customer service requests;
• Administer contests, promotions, surveys or other features; or
• Send periodic emails regarding BDI systems, products and services.

Most web browsers allow some control of cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit allaboutcookies.org.

Google Analytics

We use Google Analytics, which uses cookies to help us to gauge the number of people that visit businessdatainc.com and to analyze how they use it. The information generated by the cookies about your use of our website (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information for the purpose of evaluating your use of our website, compiling reports on website activity and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties when required to do so by law, or where such third parties process the information on Google's behalf. Google undertakes not to associate your IP address with any other data held by Google. To opt out of being tracked by Google Analytics across all websites, please visit tools.google.com.

Surveys

From time to time, our site may request information from users via a survey. Participation in these surveys is completely voluntary and the user therefore has a choice whether or not to disclose this information. Information requested may include contact information (such as name and address), and demographic information (such as zip code, age level, etc.). Survey information will be used only for purposes outlined in the survey itself.

Log Files

We use IP addresses to enforce ACLs, analyze trends, administer the site, track user’s movement, and gather broad demographic information for aggregate use. IP addresses are not linked to personally identifiable information.

Links

This website may contain links to other sites. Please be aware that BDI is not responsible for the privacy practices of such sites. We encourage our users to be aware when they leave our site, and to read the privacy statements of each and every website that collects personally identifiable information. This privacy statement applies solely to information collected by this website.

Maintaining Safeguards

BDI uses a variety of safeguards, controls, and procedures to prevent unauthorized access to or use of personal information including, but not limited to:

• Maintaining administrative, technical, and physical safeguards to protect your personal information;
• Training personnel and restricting information access to persons with a need to know for providing the Services; and
• Imposing contractual commitments and procedures requiring service providers and business associates, if any, to adhere to privacy and security policies consistent with our own.

All reasonable measures are taken to ensure that your personal information is kept secure and we remain alert and prepared to adapt these measures to address evolving threats and vulnerabilities.

Limiting Disclosure

Personal information is retained and disclosed as necessary to serve our customers and provide Services, and otherwise only in accordance with applicable law. Personal information about our customers or their customers is not used or disclosed to any third parties except:

• As required in rendering the services you request;
• As required by law (e.g., subpoena or investigation);
• As may be appropriate to protect against fraud or illegal activity or as otherwise permitted by law; and
• If you elect to disclose, or specifically direct us to disclose any personal information to a third party.

As provided above, BDI will not sell, share, or trade your personal information to outside third parties.

Information Security and Quality

We safeguard the quality and integrity of your personal information by implementing a broad range of technical and organizational security measures, such as penetration and vulnerability testing, malware scanning, and intrusion detection. Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems and are required to keep the information confidential.

In addition, all personal information you supply is encrypted at rest and transmitted via the latest TLS technology. When users submit personal information via the website, such information is protected online and offline.

Internet Security

Below is a high-level diagram of a BDI Web application.

This diagram reveals that BDI's Web application has security safeguards at several strategic locations.

• Up to 256-bit TLS is used to encrypt any sensitive information transmitted to or received over the Internet. TLS makes spying a tremendously difficult task and alleviates identity spoofing, information disclosure, and data tampering.
• Data at Rest Encryption technology (AES-256 encryption standard) is used on all data storage. BDI utilizes technology that is FIPS certified and satisfies regulatory requirements for government agencies, banking, financial, healthcare and other G2000 enterprise customers who consider data security products and solutions.
• BDI utilizes firewalls to control access and protect sensitive information. Intrusion detection and prevention technology monitors all incoming and outgoing traffic and filters out any abnormal data requests. Internal network segmentation and application controls protect database servers from unauthorized access from within BDI's private network.
• Highly-sensitive data, such as IDs and passwords, are encrypted using a strong cryptographic routine before being stored in the database.

Regulations

To the best of BDI’s knowledge, this Privacy Policy and BDI’s Services comply with all applicable federal, state and local laws, statutes, rules, regulations and ordinances pertaining to data protection including, but not limited to, to the Gramm-Leach-Bliley (GLB) Act of 1999 (15 U.S.C. §§ 6801-6809), including the Financial Privacy Rule (Subtitle A: Disclosure of Nonpublic Personal Information, codified at 15 U.S.C. §§ 6801–6809), the Safeguards Rule (Subtitle A: Disclosure of Nonpublic Personal Information, codified at 15 U.S.C. §§ 6801-6809), and the Pretexting Protection (Subtitle B: Fraudulent Access to Financial Information, codified at 15 U.S.C. §§ 6821–6827); the Fair Credit Reporting Act (FCRA) of 1996 (15 U.S.C §1681); the General Data Protection Regulation (EU) 2016/679 (GDPR); and The California Consumer Privacy Act (CCPA) of 2018 (AB375, Title 1.81.5). BDI’s compliance with privacy laws and regulations are audited regularly by BDI’s General Counsel and Data Protection Officer, its Security Council, and BDI consumers including their independent counsel and senior administrative staffs. Independent auditors further examine BDI federal and state regulatory compliance on an annual basis. Most updates are obtained through regulatory agency alerts, new feeds, legal reviews and security blogs and BDI regularly provides its customers with published announcements of new and upcoming regulatory changes with the goal of generating early awareness and dialogue.

California Privacy

The California Consumer Privacy Act (“CCPA”) provides consumers with specific rights regarding their personal information. You have the right to request that a business subject to the CCPA disclose certain information to you about its collection and use of your personal information over the past 12 months. In addition, you have the right to ask such business to delete personal information collected from you, subject to certain exceptions. If the business sells personal information, you have a right to opt-out of that sale. Finally, a business cannot discriminate against you for exercising a CCPA right.

When offering services to its customers, BDI acts as a “service provider” under the CCPA and our receipt and collection of any consumer personal information is completed on behalf of our customers in order for us to provide services. Individuals should direct requests for access or deletion of their personal information under the CCPA to the organization with whom they have a direct relationship. BDI customers are directed to submit CCPA related requests to BDI through ClientConnect.

Opting-Out/Correction/Updating Personal Information

Users who no longer wish to receive updates, participate in surveys, or have contact via email with BDI may opt-out of receiving these communications. Moreover, if your personal information changes, we will endeavor to provide a way to correct or update such personal information provided to us. This can be done by sending an email to: helpdesk@businessdatainc.com.

Policy Updates

This Privacy Policy is current as of the date first set forth above, however, we reserve the right to make changes from time to time consistent with applicable privacy laws and principles. If we make changes, we will notify you by revising the date and, in some cases, we may provide you with additional notice; such as an email if you have an account linked to a valid email address, or another manner through the Services that we believe is reasonably likely to reach you.

Contact Us

Please direct any questions or concerns regarding this Privacy Policy to:

Privacy Policy Information
Business Data, Inc.
361 North Oak St.
Inglewood, CA 90302
helpdesk@businessdatainc.com
Telephone: (310) 412-1290
Fax: (310) 412-1060

We will acknowledge your inquiry and attempt to reply or resolve your concerns as soon as possible.

Thank you,

Business Data, Inc.