X
.

USAFact, Inc. Privacy Shield Policy

Introduction

USAFact, Inc. (the “Company”) combines the latest Internet technologies with an experienced, professional staff to deliver a proven resource to hundreds of clients across a variety of industries. Processing large numbers of reports daily, the Company offers a variety of background screening packages for businesses of any size. Protecting consumer privacy is important to USAFact, Inc. The Company and its affiliate subsidiaries (hereinafter collectively referred to as the “Company,” “we,” “us” or “our”) adhere to the Privacy Shield Agreement concerning the transfer of personal data from the European Union (“EU”) to the United States of America and vice versa. Accordingly, we follow the Privacy Principles published by the U.S. Department of Commerce (the “Principles”) with respect to all such data. USAFact, Inc. complies with the U.S.-EU Privacy Shield Framework and the U.S.-Swiss Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries and Switzerland.  Personal information is used for the purpose of background screening. USAFact, Inc. has certified that it adheres to the Privacy Shield Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Privacy Shield program, and to view Company’s certification, please visit https://www.privacyshield.gov/list.  If there is any conflict between the policies in this privacy policy and the Principles, the Principles shall govern. This privacy policy outlines our general policy and practices for implementing the Principles, including the type of information we gather, how we use it and the notice and choice affected individuals have regarding our use of and their ability to correct that information. This privacy policy applies to all personal information received by the Company whether in electronic, paper or verbal format.

 

Definitions

Personal Information or Information means information that (1) is transferred from  the  EU  to  the  United  States;  (2) is  recorded  in  any  form;  (3) is  about, or pertains to  a specific individual;  and (4) can be linked to that individual.

Sensitive Personal Information means personal information that reveals race, ethnic origin, sexual orientation, political opinions, religious or philosophical beliefs, trade union membership or that   concerns an individuals health.

 

Principles Notice

Company shall inform an individual of the purpose for which it collects and uses the Personal Information (background screening) and the types of non-agent third parties to which the Company discloses or may disclose that Information. Company shall provide the individual with the choice and means for limiting the use and disclosure of their Personal Information. Notice will be provided in clear and conspicuous language when individuals are first asked to provide Personal Information to the Company, or as soon as practicable thereafter, and in any event before the Company uses or discloses the Information for a purĀ­pose other than for which it was originally collected.

 

Choice

For Sensitive Personal Information, the Company will give individuals the opportunity to affirmatively or explicitly consent to the disclosure of the information for a purpose other than the purpose for which it was originally collected or subsequently authorized by the individual. Company shall treat Sensitive Personal Information received from an individual the same as the individual would treat and identify it as Sensitive Personal Information.

 

Onward Transfers

Company shall ensure that any third party for which Personal      Information      may be disclosed  subscribes  to  the   Principles   or   are           subject to     law providing    the same level of privacy  protection  as  is  required  by  the  Principles    and   agree  in writing  to  provide    an   adequate   level  of   privacy  protection.

 

Data Security

Company shall take reasonable steps to protect the Information from loss, misuse and unauthorized access, disclosure, alteration and destruction. Company has put in place appropriate physical, electronic and managerial procedures to safeguard and secure the Information from loss, misuse, unauthorized access or disclosure, alteration or destruction.

All data will be secured with both physical and software-based security, including encryption of files; and all transmissions of data via the Internet will be secured with at least 128-bit TLS or SSL encryption.

 

Data Integrity

Company shall only process Personal Information in a way that is compatible with and relevant for the purpose for which it was collected or authorized by the individual. To the extent necessary for those purposes, Company shall take reasonable steps to ensure that Personal Information is accurate, complete, current and reliable for its intended use.

 

Access

Company shall allow an individual access to their Personal Information and allow the individual to correct, amend or delete inaccurate information, except where the burden or expense of providing access would be disproportionate to the risks to the privacy of the individual in the case in question or where the rights of persons other than the individual would be violated.

 

Company may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

 

Enforcement

Company uses a self-assessment approach to assure compliance with this privacy policy and periodically verifies that the policy is accurate, comprehensive for the information intended to be covered, prominently displayed, completely implemented and accessible and in conformity with the Principles. We encourage interested persons to raise any concerns using the contact information provided and we will investigate and attempt to resolve any complaints and disputes regarding use and disclosure of Personal Information in accordance with the Principles.

If a complaint or dispute cannot be resolved through our internal process, we agree to dispute     resolution using JAMS as Alternative Dispute Resolution Provider under the EU-U.S. Privacy Shield Program and the Swiss-U.S. Privacy Shield Program.

Under certain conditions, binding arbitration may be invoked. Company is subject to the investigatory and enforcement powers of the FTC.

 

Amendments

This privacy policy may be amended from time to time consistent with the requirements of the Privacy Shield. We will post any revised policy on this website.

 

Information Subject to Other Policies

The Company is committed to following the Principles for all Personal Information within the scope of the Privacy Shield Agreement. However, certain information is subject to policies of the Company that may differ in some respects from the general policies set forth in this privacy policy.

 

Contact Information

Questions, comments or complaints regarding the Companys Privacy Shield Policy or data collection and processing practices can be mailed or emailed to:

USAFact, INC.

6240 Box Springs Blvd     

Riverside, CA 92507

info@usafact.com


Effective date: January 16, 2018


NAPBS Background Screening Credentialing Council Accredited

 

CA Private Investigator License #1589

NJ Private Investigator License #8439