What personal information do we collect from the people that visit our blog, website, or app?
When signing up for emails or offers on our site, you may be asked to enter your name, email address, phone number, or other details, as appropriate, to help optimize your experience.
When do we collect information?
We collect information from you when you subscribe to a newsletter, engage in a chat session, or enter information on our site.
How do we use your information?
We may use the information we collect from you when you sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:
- To personalize your experience and to enable us to deliver the type of content and product offerings in which you are most interested.
- To allow us to better serve you when responding to your customer service requests.
- To send periodic emails regarding other ITR products and services.
- To follow up with you after correspondence (live chat, email, or phone inquiries).
How do we protect your information?
Our website is scanned on a regular basis for security holes and vulnerabilities in order to make your visit to our site as safe as possible.
We use regularly scan for malware.
Your personal information is contained behind secured networks and is only accessible to a limited number of persons, who have special access rights to such systems and are required to keep the information confidential.
To maintain the safety of your personal information, we implement a variety of security measures when you enter, submit, or access your information.
What Personally Identifiable Information do we collect and why?
ITR Economics collects PII data from clients as needed. This information includes contact information such as names, addresses, phone numbers, and email addresses, as well as computer IP addresses. We collect this needed information so that we can maintain a professional business relationship with our clients.
How do we permanently erase your information completely?
- Customer Care will receive notification by email or phone with a request from a client to delete their PII data. Once the request has been received, ITR will internally notify all relevant parties of the request, and all internal parties will cease using that client's personal data.
- An email is sent to the client to confirm that the process of removing their information from all databases (internal and third party) in which it is stored has begun.
- Customer Care will notify our IT department of the request, and, together, the two departments will locate all of the client's in-house PII data.
- The following internal databases will be searched: CRMs, ITR website, and accounting software.
- PII data for said client will be deleted permanently upon identification. Retrieval of that information will be impossible. A request to delete PII is final and not reversible.
- ITR can provide records of the deletion via logs upon request.
- Our IT department will notify our third-party vendors of the information that must be deleted from their databases. Third-party vendors are required to confirm the deletion of PII information in order to authenticate its successful removal from their systems per the client's request. Due to the agreements in place between ITR and its third-party vendors, which include a clause affirming GDPR compliance, written communication will suffice for this purpose.
- Once the process is completed, an email is sent to the client confirming the removal of all PII data from the location(s) the data was stored.
- All ITR employees will be required to complete a GDPR course annually via ITR's Learning Management System so that they will stay educated on the proper policy.
Do we use "cookies"?
- Understand and save users' preferences for future visits.
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to deny all cookies. You do this through your browser settings. As each browser is different, consult your browser's help menu to learn how to modify your cookies settings.
If users disable cookies in their browser:
If you do not accept cookies, some of the features that would make your site experience more efficient may not function properly.
Our specific uses of cookies:
- Google Analytics keeps track of a user as they browse.
- Adaptive Images is an image-resizing plugin for responsive images. The cookie keeps track of screen resolution and expires after session close.
- Drupal uses a cookie to store whether the user is using JS or not (most likely to save on load times if not). This expires on session close.
- Twitter gathers information from our widget in the footer. Information on that can be found here: https://twitter.com/en/privacy
We do not sell, trade, or otherwise transfer your Personally Identifiable Information to outside parties without providing advance notice. This does not include website hosting partners and other parties that assist us in operating our website, conducting our business, or serving our users, so long as those parties have agreed to keep PII confidential. We may also release information when its release is appropriate to comply with the law, enforce our site policies, or protect our or others' rights, property, or safety. However, non-personally identifiable information on visitors may be provided to other parties for marketing, advertising, or other uses.
Freshdesk chat support sites
- Freshdesk GDPR compliance - https://freshdesk.com/gdpr
We do not include or offer third-party products or services on our website.
Google's advertising requirements can be summed up by Google's Advertising Principles. They are put in place to provide a positive experience for users: https://support.google.com/adwordspolicy/answer/1316548?hl=en
We have implemented the following:
We, along with third-party vendors such as Google, use first-party cookies (such as the Google Analytics cookies) to compile data regarding user interactions such as page views and other information as it relates to our website.
Users can set preferences for how Google advertises to you using the Google Ad Settings page. Alternatively, you can opt out by visiting the Network Advertising Initiative Opt Out page or by using the Google Analytics Opt Out Browser add-on.
California Online Privacy Protection Act
According to CalOPPA, we agree to the following:
- Users can visit our site anonymously.
How does our site handle Do Not Track signals?
We honor Do Not Track signals, and we do not track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.
Does our site allow third-party behavioral tracking?
It is also important to note that we do not allow third-party behavioral tracking.
COPPA (Children's Online Privacy Protection Act)
When it comes to the collection of personal information from children under the age of 13 years, the Children's Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the United States' consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children's privacy and safety online.
We do not specifically market to children under the age of 13 years.
Fair Information Practices
The Fair Information Practice Principles form the backbone of privacy law in the United States, and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with the Fair Information Practice Principles, we will take the following responsive actions should a data breach occur:
- We will notify you via email within 7 business days.
- We will notify the users via in-site notification within 7 business days.
- We also agree to the Individual Redress Principle, which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute noncompliance by data processors.
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to stop emails from being sent to them, and spells out tough penalties for violations.
We collect your email address in order to:
- Send information and respond to inquiries and/or other requests or questions.
- Market to our mailing list or continue to send emails to our clients after they opt in.
To be in accordance with CAN-SPAM, we agree to do the following:
- Not use false or misleading subjects or email addresses.
- Identify the message as an advertisement in some reasonable way.
- Include the physical address of our business or site headquarters.
- Monitor third-party email marketing services, if used, for compliance.
- Honor opt-out/unsubscribe requests quickly.
- Allow users to unsubscribe via a link at the bottom of each email.
If at any time you would like to unsubscribe from receiving future emails, you can email us at firstname.lastname@example.org.
- Follow the instructions at the bottom of each email to be removed from that mailing list.
77 Sundial Ave Suite #710W
Manchester, New Hampshire 03103
Last Edited on 2021-06-18