The data controller collecting the data described herein is Comply Exchange Limited, a United Kingdom Private Limited Company. By submitting data on the Comply Exchange website, the visitor is providing explicit consent to the transmission of the data collected on the website for the fulfilment of their voluntary requests.
We collect only personally identifiable information that is specifically and voluntarily provided by visitors to the Comply Exchange website. Comply Exchange receives limited identifiable information, such as name, title, company address, email address, and telephone and fax numbers, from website visitors. Typically, identifying information is collected to:
- Register for certain areas of the site
- Inquire for further information
- Distribute requested reference materials
Demographic information, including gender and occupation, is not actively sought. It is Comply Exchanges policy to limit the information collected to only the minimum information required to complete a visitor’s request. In any instance where non-mandatory information is sought, the website visitor will be notified of this at the point of collection.
Visitors are also able to send email through the site. Their messages will contain the user’s screen name and email address, as well as any additional information the user may wish to include in the message.
Comply Exchange’s intention is not to seek any sensitive information through our website unless legally required. Sensitive information includes a number of types of data relating to: race or ethnic origin; political opinions; religious or other similar beliefs; trade union membership; physical or mental health; sexual life or criminal record. We suggest that you do not provide sensitive information of this nature.
Use of Data
A user may choose to provide personal information in the following examples:
- Order publications
- Participate in bulletin boards, discussion or message forums
- Contact us for further information
Information attained by the site is used only for the intended purpose stated at the time that the information is collected. This data is not shared with other third parties, unless otherwise disclosed at the point of collection. If there is an instance where such information may be shared, the visitor will be asked for permission beforehand.
Except for the mailing list initiative described above, where visitors explicitly choose to receive specific marketing or other materials, Comply Exchange will not use personal data collected from our websites to facilitate unsolicited marketing activities.
Cookies and Log Files
If you are concerned about cookies, most browsers permit individuals to decline cookies. In most cases, a visitor may refuse a cookie and still fully navigate our websites, however other functionality in the site may be impaired. After termination of the visit to our site, you can always delete the cookie from your system.
In order to properly manage our website we may anonymously log information on our operational systems, and identify categories of visitors by items such as domains and browser types. These statistics are reported in the aggregate to our webmasters. This is to ensure that our website presents the best web experience for visitors and is an effective information resource.
It is Comply Exchange’s policy only to disclose information to third parties under the following circumstances:
- As required by law through subpoena, search warrant or other legal process
- When explicitly requested by a visitor
- When required to deliver publications or reference materials requested by a visitor
- When required to facilitate conferences or events hosted by a third party
Comply Exchange’s policy is to disclose information to third parties upon visitors submitting their requests (e.g., when ordering a publication, we display the party fulfilling the order).
Comply Exchange websites do not collect or compile personally identifying information for dissemination or sale to outside parties for consumer marketing purposes, or host mailings on behalf of third parties.
Third Party Links
Contact information about visitors (such as information generated though registration for access to areas on the site) will be kept as long as the information is required to completely service the contact request or until a user requests that we delete that information. Mailing list information, discussion posts and email are kept for only the period of time considered reasonable to facilitate the visitor’s requests.
User ID and Passwords
Visitors may be required to register to gain access to areas of the Comply Exchange website, for example to gain access to our demonstration area. In these cases we may require visitors to register in order to obtain a user-id and password for authentication and secure access to the transaction or business confidential or proprietary information services.
Personally identifiable information provided to Comply Exchange through its ComplyPro website is provided voluntarily by visitors. Should visitors subsequently choose to unsubscribe from mailing lists or any site registrations, we will provide instructions on the appropriate website area or in communications to our visitors; or a visitor may contact the webmaster of the appropriate site by emailing the support desk at: firstname.lastname@example.org
Each visitor has the right of access to personal data they have submitted through the websites to ComplyPro.
User updates of information should be handled by going back through the registration process. Inquiries about the accuracy of identifying information previously submitted to Comply Exchange through its website, or requests to have outdated information removed, should be directed to: email@example.com. Comply Exchange is committed to providing reasonable and practical access to visitors to allow them the opportunity to identify and correct any inaccuracies. When requested and practical, Comply Exchange will delete identifying information from current operational systems.
When personally identifiable information is retained, Comply Exchange assumes responsibility for keeping an accurate record of the information once a visitor has submitted and verified the data. Comply Exchange does not assume responsibility for verifying the ongoing accuracy of the content of personal information. When practically possible, if Comply Exchange is informed that any personal data collected through a website is no longer accurate, Comply Exchange will make appropriate corrections based on the updated information provided by the authenticated visitor.
Comply Exchange has implemented generally accepted standards of technology and operational security in order to protect personally identifiable information from loss, misuse, alteration or destruction. Only authorised Comply Exchange personnel are provided access to personally identifiable information and these employees have agreed to ensure confidentiality of this information.
Changes to this Privacy Statement
We may make changes to our terms and conditions from time to time. You should check this page regularly to see our most up to date terms. We tell you about any changes to our terms and conditions by showing the date of the changes in the ‘Last updated’ section below. By using the website after the date we make any changes, you are agreeing to the changes.