BriteVerify adheres to the core privacy of data protection compliance regarding the collection, use, and retention of personal information from European Union member countries and Switzerland.
Conduct an independent risk assessment into whether the proposed data transfer will provide an adequate level of protection for the rights of the data subjects; and
If we do not find that there is an adequate level of protection, we put into place adequate safeguards to protect the rights of the data subjects. This is ensured by way of a contractual agreement with any applicable data controller or data processor to whom data is transferred, where possible using the European Commission model clauses in respect of transfers from controller to controller and in respect of transfers from controller to processor.
We only engage in transfers of personal data outside the EEA to a country whose data protection laws have not been approved by the European Commission as providing adequate protection for data subjects’ rights if there is an adequate level of protection for the rights of data subjects.
In assessing adequacy, we consider general adequacy criteria and legal adequacy criteria. If our assessment of the ‘general adequacy criteria’ reveals that, in the particular circumstances of the case, the risk to the rights of data subjects associated with the transfer is low, we may consider that an exhaustive analysis of the ‘legal adequacy criteria’ may not be necessary. If a high risk is identified (for example, in the event that the data is particularly sensitive) then a more comprehensive investigation of the legal adequacy criteria would be carried out.
The criteria we consider in making the assessment is as set out below:
The nature of the personal data;
The purposes for which the data is intended to be processed;
The period during which the data is intended to be processed;
The country or territory of origin of the information contained the data;
The country or territory of the final destination of the information;
Any security measures taken in respect of the data in the country or territory of destination.
The law in force in the country or territory in question;
The international obligation of the recipient country or territory;
The rules or codes of practice which govern the processing of personal data in the third country.
If adequacy is established by way of our assessment, then we would proceed with the transfer of the data. If adequacy is not established by way of our assessment, then we would seek to enter into a contractual relationship with the data controller or data processor in question to ensure that the security of the data is maintained to our required standards before any transfer takes place.
Original Certification Date: September 1, 2016
Next Certification Due Date: September 1, 2017
BriteVerify and its parent/subsidiary company Origin Ads, LLC participates in and have certified its compliance with the EU-U.S. Privacy Shield Framework. BriteVerify is committed to subjecting all personal data received from European Union (EU) member countries, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, visit the U.S. Department of Commerce’s Privacy Shield List. https://www.privacyshield.gov/list
BriteVerify is responsible for the processing of personal data it receives, under the Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. BriteVerify complies with the Privacy Shield Principles for all onward transfers of personal data from the EU, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the Privacy Shield Framework, BriteVerify is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, BriteVerify may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
Under certain conditions, more fully described on the Privacy Shield website https://www.privacyshield.gov, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
Last Certification Date: 10/02/2016
Next Certification Due Date: 10/02/2017
BriteVerify complies with the U.S. – Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use and retention of personal data from Switzerland. BriteVerify has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Safe Harbor program, and to view BriteVerify certification, please visit https://safeharbor.export.gov/swisslist.aspx.
When you visit the BriteVerify website or use BriteVerify Services, we collect information sent to us by your computer or your mobile device.
The information sent to us includes the following: data about the BriteVerify pages you access, your computer IP address, device ID or unique identifier, device type, geo-location information, computer and connection information, mobile network information, statistics on page views, traffic to and from the sites, referral URL, and standard web log data and other information.
We will collect and store any information you enter on the BriteVerify website or provide to us in context of using our site, applications, services, or tools.
When you visit the BriteVerify website or use BriteVerify Services, we also collect information about your transactions and your activities. In addition, if you open a BriteVerify account and use BriteVerify Services, we will collect the following types of information:
Contact information, such as your name, address, phone, email and other similar information.
Financial information, such as credit card numbers that you link to your BriteVerify account or provide when you use BriteVerify Services.
By using BriteVerify Services you may provide contact information of your prospects or customers such as name, email address, postal address, phone number, and IP address for the express purpose of receiving data verification results from BriteVerify Services. BriteVerify claims no direct relationship with the individuals whose data it verifies nor does BriteVerify claim any ownership of any data provided for the purposes of delivering verification services.
Briteverify collects information for our clients; if you are a customer of one of our Clients and would no longer like to be contacted by one of our Clients that use our service, please contact the client that you interact with directly.
BriteVerify may also transfer personal information to companies that help us provide our service. Transfers to subsequent third parties are covered by the provisions in this Policy regarding notice and choice and the service agreements with our Clients.
BriteVerify acknowledges that you have the right to access your personal information. BriteVerify has no direct relationship with the individuals whose personal data it processes. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data should direct their query to the BriteVerify's Client (the data controller). If the Client requests BriteVerify to remove the data, we will respond to their request within a reasonable timeframe.
BriteVerify agrees to maintain as confidential all data provided by Users for the purposes of verification, to not disclose data to anyone within our organization without a need to receive it for the specific purpose for which it is being disclosed to us, and to not disclose this data to any 3 rd party except when the 3rd party is an approved contractor helping to deliver BriteVerify Services or when required to do so by law. In no event shall this data be used to contact any names, email addresses, postal addresses, or phone numbers provided to us for verification.
BriteVerify may collect and retain any information learned as a part of the verification process and will use this information to improve system performance, provide fraud management services, and protect users of BriteVerify Services.
Authentication and Fraud Detection: In order to help protect you from fraud and misuse of your personal information, we may collect information about you and your interactions with our website or BriteVerify Services. We may also evaluate your computer, mobile phone or other access device to identify any malicious software or activity.
When you use our Mobile Applications, or access one of our mobile optimized sites, we may receive information about your location and your mobile device, including a unique identifier for your device. Most mobile devices allow you to control or disable location services in the device's settings menu. If you have questions about how to disable your device's location services, we recommend you contact your mobile service carrier or the manufacture of your particular device.
We will share your personal information with third parties only in the ways that are described in this privacy statement.
We may provide your personal information to companies that provide services to help us with our business activities such as fulfilling your order or offering customer service. These companies are authorized to use your personal information only as necessary to provide these services to us.
We may also disclose your personal information as required by law, such as to comply with a subpoena, bankruptcy proceedings, or similar legal process when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
If BriteVerify is involved in a merger, acquisition, or sale of all or a portion of its assets, you will be notified via email and/or a prominent notice on our website, of any change in ownership, uses of your personal information, and choices you may have regarding your personal information. We may also disclose your personal information to any other third party with your prior consent.
Upon request BriteVerify will provide you with information about whether we hold any of your personal information. You can review, or edit or delete your personal information by logging into your account at https://app.briteverify.com/users/sign_in and clicking on the Account Settings link. You can also close your account by sending an email request to email@example.com or by calling +1.855.862.7483. If you request that we close your account we will disable your account in our database but will not fully delete your personal information until we have collected any fees owed, resolved disputes, assisted with any investigations, or taken other actions as required or permitted by law. We will respond to any of these requests within a reasonable timeframe.
We will retain your information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
BriteVerify will retain personal data we process on behalf of our Clients for as long as needed to provide services to our Client. BriteVerify will retain and use this personal information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
We implement a variety of security measures to maintain the safety of your personal information when you register for a BriteVerify account or supply us with data for verification purposes.
All credit card information provided during sign-up is transmitted via Transport Layer Security (TLS) technology and encrypted in our Payment gateway providers' database. This information is only accessible by those with special access rights to such systems. Anyone with this access is required to keep this information confidential.
Any credit card information supplied will be kept on file in order to process future payments for BV Services rendered. Credit card information may be deleted at any time should you choose to stop using BV Services by sending a written request to firstname.lastname@example.org.
You may also supply data to BriteVerify as a part of the verification process. Information about how we keep this information secure in both transit and in rest will be sent upon request. Please send an email to email@example.com to request a copy of BriteVerify's Data Security document.
BriteVerify respects your Inbox and will not abuse the email address provided during signup. Email messages will be sent to you for the following purposes:
To more effectively respond to your customer service requests and support needs;
To communicate changes to BV products, terms, and policies;
To send invoices or payment notifications for BV Services rendered; or
To provide information about changes to your account status.
We use session ID cookies and persistent cookies on our Site and on our platform. We use session cookies to make it easier for you to navigate our site. A session ID cookie expires when you close your browser. A persistent cookie remains on your hard drive for an extended period of time. You can remove persistent cookies by following directions provided in your Internet browser's 'help' file.
We set a persistent cookie to store your passwords so you don't have to enter it more than once. Persistent cookies also enable us to track and target the interests of our users to enhance the experience on our site.
Technologies such as: cookies or similar technologies are used by BriteVerify and our analytics or service providers, Google Analytics and Intercom.io. These technologies are used in analyzing trends, administering the site, tracking users' movements around the site and to gather demographic information about our user base as a whole. We may receive reports based on the use of these technologies by these companies on an individual as well as aggregated basis.
We partner with a third party to either display advertising on our Web site or to manage our advertising on other sites. Our third party partner may use technologies such as cookies to gather information about your activities on this site and other sites in order to provide you advertising based upon your browsing activities and interests. If you wish to not have this information used for the purpose of serving you interest-based ads, you may opt-out by clicking here or if located in the European Union click here. Please note this does not opt you out of being served ads. You will continue to receive generic ads.
Our blog is managed by a third party application that may require you to register to post a comment. We do not have access or control of the information posted to the blog. You will need to contact or login into the third party application if you want your personal information that was posted to the comments section removed. To learn how the third party application uses your information, please review their privacy statement.
Our website includes Social Media Features, such as the Facebook Like button, and Widgets, such as the Share This button or interactive mini-programs that run on our website. These Features may collect your Internet protocol address, which page you are visiting on our website, and may set a cookie to enable the Feature to function properly. Social Media Features and Widgets are either hosted by a third party or hosted directly on our website. Your interactions with these Features are governed by the privacy statement of the company providing it.