This privacy statement applies to Ethicontrol client related services provided via websites as subdomains of ethicontrol.com, services and products that collect data and display these terms. It does not apply to any Ethicontrol site, service or product that does not display or link to this statement or that contains its own privacy statement.
Ethicontrol does not publish text, images, or multimedia content that portray nudity, foul language, violence or other information not suitable for children. Web sites maintained by Ethicontrol are not directed to children under the age of 13. Ethicontrol will not knowingly collect or maintain personally identifiable information from or about anyone under 13. Ethicontrol is committed to complying with privacy laws to which it is subject and adhering to the highest industry standards for privacy.
Ethicontrol is not responsible for content saved to any Ethicontrol's system by Hotline/Ethicsline/Trustline/Trustbot/Trustchat reporters or client company representatives.
Collection and Use of Information
Ethicontrol collects different kinds of information in order to provide you with the best products and services and to operate effectively. Some of this information is provided directly by you, while other information may be provided by your employer in connection with use of our products and services. We may also gather information by observing how you interact with our website, products and services.
What information we collect:
- Registration: When you, or your organization, sign up to use our sites or services, or you sign up to attend a webinar or get additional information about our products and services, we may receive certain necessary information such as your name, job title and contact information such as email address, phone number and address.
- Account/Report Access: To access some of our products and services you may be required to provide us specific information (such as your login credentials) that allows us to verify your identity before accessing certain data we host. This identity verification information is kept secure on our private servers and is only used to assist you in accessing your account or report; this information is not released outside of the relevant Ethicontrol system unless specifically authorized.
- Hotline/EthicsLine Reporters: No personally identifying information is automatically collected from reporters using Ethicontrol applications. Personally identifying information, such as name and e-mail address, is stored only when a reporter voluntarily gives this information for use by a client company.
How we collect information:
Ethicontrol gathers information about how you use our sites and services in a number of ways, including:
- Web forms, such as when you type information into a registration form.
- Technologies like cookies (please see Cookies for more information about this technology).
- Web logging, which enables us to collect the standard information your browser sends to every web site you visit such as your IP address, browser type and language, and the site you came from as well as pages you visit and links you click on within our site.
How we use Personal Information:
Licensed Users of Products and Services:
Personally identifiable information such as name, contact information, username and password is stored in our database for access to and use of certain software applications. This information is kept secure on our private servers and is only used to assist you in accessing your account. No information is released outside of the Ethicontrol system unless specifically authorized.
No personally identifiable information is automatically collected from reporters submitting a case. Personally identifying information, such as name and e-mail address, is collected and stored only when a reporter voluntarily gives this information.
Use of Cookie, Clear Gif and Log File Technology:
Technologies such as: cookies, beacons, tags, and scripts are used by use and our tracking utility partners. These technologies are used in analyzing trends, administering the site, tracking users’ movements around the site and to gather demographic information about our user base as a whole. We may receive reports based on the use of these technologies by these companies on an individual as well as aggregated basis.
A “cookie” is a small text file that is stored on a user’s computer.
Ethicontrol utilizes Cookie technology on our sites for purposes of Website traffic analysis such as the time/date of the visit, the time/date of last visit, the page viewed, the referring site, and other data. Ethicontrol also tracks click behavior in the e-mails it sends out. This data is used to update specific user-profile information, ascertain the areas of most interest to opt-in e-mail recipients, and to personalize e-mail messages to them.
We also use session ID cookies for access to products and services by our licensed users and reporters. These session Cookies are used to make it easier to navigate our site, products and services. A session ID Cookie expires when your browser is closed.
If you reject Cookies, you may still use portions of our site, but your ability to use some areas of our site, products or services, may be limited.
Important for reporters:
You can choose an option to use a cookie free and script free version of a requested web-page. We provided such pages to guarantee additional anonymity protection.
In limited circumstances, and with appropriate notice to licensed users, we will use persistent Cookies (Cookies that do not expire when your browser is closed). In these situations, licensed users are required to consent to the placement of a Cookie prior to it being activated and consent may be withdrawn at any time by simply accessing the form and un-ticking the box giving Ethicontrol permission to store the information. Any persistent Cookie that is unused for 30 days will automatically expire.
We and our third party tracking-utility partners employ a software technology called clear gifs (a.k.a. Web Beacons/Web Bugs), that help us better manage content on our site by informing us what content is effective. Clear gifs are tiny graphics with a unique identifier, similar in function to cookies, and are used to track the online movements of Web users. In contrast to cookies, which are stored on a user’s computer hard drive, clear gifs are embedded invisibly on Web pages and are about the size of the period at the end of this sentence. We do not tie the information gathered by clear gifs to our customers’ personally identifiable information.
We use clear gifs in our HTML-based emails to let us know which emails have been opened by recipients. This allows us to gauge the effectiveness of certain communications and the effectiveness of our marketing campaigns.
As true of most web sites, we gather certain information automatically and store it in log files. This information may include internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data. We do not link this automatically collected log information with other information we collect about you.
Local Storage Objects (Flash/HTML 5)
We use Local Storage Objects (LSOs) such as HTML 5 to store content and preferences. Third parties with whom we partner to provide certain features on our site to display advertising based upon your web browsing activity use LSOs such as HTML 5 to collect and store information. Various browsers may offer their own management tools for removing HTML 5 LSOs.
Ethicontrol will take reasonable precautions to protect personal information in its possession from loss, misuse and unauthorized access, disclosure, alteration and destruction.
For licensed users and reporters, communications between the Ethicontrol site and a user's web browser are accomplished using, at a minimum, 128 bit SSL encryption and various third party security certificates to protect confidential data. Ethicontrol does not allow users to transfer or receive confidential information unless they are using a validated 128 bit (or greater) encrypted session.
We follow generally accepted industry standards to protect the personal information submitted to us, both during transmission and once we receive it. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.
If you have any questions about security on our Web site, you can e-mail us at email@example.com with "Questions about Web site Security" in the subject line. We do not link this automatically-collected data to personally identifiable information.
Automatic Information Storage
Session Variables may be used temporarily in your system cache to create ease-of-use during your transaction. Examples of such information are automatically-produced alphanumeric numbers held during your session on our site to facilitate page-to-page transactions. We only store name, e-mail, phone, address, company name or any other identifying information for licensed users; no information is stored for others unless otherwise stated in this policy.
Use of Third Party Services
Ethicontrol contracts with select third parties for Web-based services that include e-mail delivery and content streaming, that may collect non-personally identifiable visitor data including IP address and pages visited. These third parties may only use personally identifiable information, for example, e-mail addresses, for the service requested and not for their own marketing purposes.
Ethicontrol also contracts with select third parties in connection with the delivery of services to our clients. These third parties may not use any personally identifiable information other than to provide the specific contracted services.
No company other than Ethicontrol is allowed to access information stored on our servers, unless expressly authorized by Ethicontrol. Unauthorized access to this information is a violation of the law. Ethicontrol has placed security measures and firewalls on all network servers in an attempt to prevent outside parties from accessing private information. In the event of a breach of security, Ethicontrol will press charges to the fullest extent possible against those parties illegally accessing information on our servers.
EU-U.S. Privacy Shield
Ethicontrol participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework. Ethicontrol is committed to subjecting all personal data received from European Union (EU) member countries, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List. [https://www.privacyshield.gov/list]
Ethicontrol is responsible for the processing of personal data it receives, under the Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Ethicontrol complies with the Privacy Shield Principles for all onward transfers of personal data from the EU, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the Privacy Shield Framework, Ethicontrol is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, Ethicontrol may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
Under certain conditions, more fully described on the Privacy Shield website [https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint], you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
U.S. — Swiss Safe Harbor Framework
Ethicontrol, LLC complies with the U.S. – Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use and retention of personal data from Switzerland. Ethicontrol has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the U.S. – Swiss Safe Harbor program, and to view Ethicontrol’s certification, please visit https://safeharbor.export.gov/swisslist.aspx.
Access to Personal Information
Upon request, Ethicontrol will provide you with information about whether we hold, or process on behalf of a third party, any of your personal information. To make a request please contact us at firstname.lastname@example.org with “Personal Information Request” in the subject line, and provide us with full details in relation to your request, including your contact information, your company’s name and any other detail you feel is relevant..
Upon request by mail or e-mail (to the addresses noted below in the Contact Information section), Ethicontrol will grant individuals reasonable access to personal information that it holds about them, unless otherwise legally unable to do so. In addition, Ethicontrol will take reasonable steps to permit individuals to correct, amend, or delete information that is demonstrated to be inaccurate or incomplete. Ethicontrol shall provide a response to an access request within 30 days of receiving such request.
We will retain your information for as long as your account is active or as needed to provide services to your organization. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
If you have received unwanted, unsolicited e-mail sent by Ethicontrol or from any Ethicontrol system or purporting to be sent via Ethicontrol, please forward a copy of that e-mail with your comments to email@example.com for review.