Last updated: May 24, 2018
Our privacy practices cover all our technologies and business processes and are based on the following principles:
Notices – IEP provides reasonable notice when Personal Data is collected and also discloses the purpose for which individual data is collected, stored, and processed
Choice – Individuals are informed of their available choices in providing Personal Data
1. Information We Collect
1.1. IEP collects Personal Data and Non-Personal Data from you when you visit our website, when you send us information or communications, and when you download and use our Services.
1.2. Personal Data
We collect Personal Data from you. “Personal Data” is any information relating to an identified or identifiable natural person. An identifiable natural person is an individual who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
We only collect Personal Data that is necessary, relevant, and limited in relation to the Services we are providing to you. We only collect and store Personal Data that is provided by you or that you have given us permission to read from your system. We do not generate or collect additional Personal Data outside of what you provide. For example, we read an email address as an identifier, e.g. firstname.lastname@example.org, but we do not allow the addition of a natural language name unless that explicitly exists in the customer system, e.g. John Doe, and our system has been configured by you to read that name.
Like most internet services, we automatically gather data about you or your device browser including your IP address, cookies, and the pages you request. We store this information in log files each time you visit our website or access your account on our network. This data allows you a better experience using our Services.
1.3. Non-Personal Data
To make our website and Services more useful to you, our servers (which may be hosted by a third-party service provider) collect “Anonymous Data” from you, such as browser type, operating system, domain name, and/or a date/time stamp for your visit. Anonymous Data has all Personal Data references removed such that the data cannot be reverse engineered or in any way attributed to the individual from which the information was collected. Anonymous Data collected by IEP includes information about the date and time of the anonymous user’s visit and about how they have used our Services.
Information from Children
We neither direct or target our Services to, nor do we intentionally collect Personal Data from, children who are under the age of 16. Further, we request that these individuals do not provide Personal Data through our Services. If we find that an individual under the age of 16 has created an account with us, we may disable that account or seek to have a parent or guardian provide consent for the child’s account.
Personal Health Information and Sensitive Information
IEP’s Services are not intended for, and you shall not use them to receive, send or otherwise process Personal Health Information (PHI) as defined by the Health Insurance Portability and Accountability Act of 1996 as amended (HIPAA) or any sensitive Personal Data (e.g. information related to racial or ethnic origin, health or health records, political opinions, religion, or criminal background), unless otherwise provided in your written agreements with IR.
2. How We Collect Your Information
– Identifying you as an account holder
– Requiring you to re-enter your password after a certain period of time has elapsed to protect you against unauthorized persons accessing your account
– Keeping track of preferences you specify while you are using our Services
2.3. How We Respond to Do Not Track Signals
Please note that your browser settings may allow you to automatically transmit a “Do Not Track” signal to websites and online services you visit to disable the tracking of an individual user. There is no industry consensus as to what “Do Not Track” means in this context. Similar to many websites and online service providers, IEP does not alter its practices when it receives a “Do Not Track” signal from a visitor’s browser.
2.4. Personal Data Collected by or Shared with Third Parties
Social Media Features and Widgets
3. How We Use Your Information
3.1. We use Personal Data to pursue our lawful business interests, which generally consist of responding to requests that you make to us, aiding us in serving you better, or providing Services to you. We collect only the information necessary for these purposes.
3.2. IEP uses your Personal Data in the following specific ways:
– Facilitate the creation of a secure your account on our network;
– Identify you as a user in our system;
– Provide improved administration of our website and Services;
– Identifying you as an account holder;
– Provide improved administration of our website and Services;
– Research, analytics and reporting;
– Send you a welcome e-mail to verify ownership of the e-mail address provided when your account was created;
– Send you administrative e-mail notifications, such as security or support and maintenance advisories;
– Respond to your inquiries related to employment opportunities or other requests;
– Send promotional communications;
– Provide you with hardcopy or electronic newsletters, or surveys;
3.3. If you choose not to provide your information to us, then we may not be able to provide you with certain requested Services or information.
4. How We Share Your Information
4.1. Regardless of any choices you make regarding your Personal Data (as described below), IR may disclose Personal Data and Non-Personal Data if it believes in good faith that such disclosure is necessary to:
Investigate, prevent, or take action regarding illegal activities, suspected fraud, or as otherwise required to comply with relevant laws, regulations, legal process or a government request (including to meet national security or law enforcement requirements) or to respond to subpoenas or warrants served on IR;
Respond to an emergency which we believe in good faith requires us to disclose data to assist in preventing a death or serious bodily injury;
Protect or defend the rights, security, integrity or property of IEP or users of the products or related services or to enforce our agreements and policies.
4.3. We do not sell, trade, or share the Personal Data collected from our Services to third parties other than as outlined in this policy.
5. Storage and Processing.
5.1. The information that IEP collects may be stored and processed in the United States, Europe, Australia, or any other country in which IEP or its subsidiaries, affiliates or service providers maintain facilities.
5.2. EU Data Transfers
The transfer of Personal Data from an EU country or organization to a non-EU country or organization falls under and requires compliance with certain safeguards in the EU General Data Protection Regulation. To support compliance, IEP requires execution of Standard Contractual Clauses with the other party before any such transfer may take place.
5.3. Data Access and Retention
IEP retains Personal Data we process on behalf of our users for as long as is needed, to provide our Services. IEP may also retain Personal Data as necessary to comply with our legal obligations, resolve disputes and enforce our agreements.
5.4. Information Related to Data Processed for Our Customers
6. How We Protect Your Information.
6.1. IEP is committed to protecting the security of Personal Data and the Non-Personal Data of any format or media. We use appropriate security measures to protect the security of your data both online and offline. All Personal Data is encrypted in transit and at rest, all Non-Personal Data is encrypted in transit. When you enter sensitive information (such as a credit card number) on our order forms, we encrypt the transmission of that information using secure socket layer technology (SSL). We also require you to enter a password to access your account information. Please do not disclose your account password to unauthorized people.
6.3. In the event that Personal Data is compromised as a breach of security, IEP will promptly notify you in compliance with applicable laws.
7. Your Choices
7.2. You can contact us to exercise your rights of access, modification and deletion or to object to the processing of your personal data by sending an email to email@example.com. At any time, you may withdraw previously given consent to the collection or use of your Personal Data. This will not affect the lawfulness of processing based on your consent before withdrawal.
8. Articles and Blogs
8.1. We post submitted articles and blogs on our website which may contain Personal Data. We do obtain the writers’s consent via email prior to posting the article or blog to post their name along with their submission. If you want your submission removed please contact us at firstname.lastname@example.org.
9. Unauthorized Profiles
9.1. If an account/profile was created without your knowledge/authorization, please contact us at email@example.com to request removal of the profile.
10. Questions, Concerns or Complaint
10.1. If you have any questions, concerns, or complaints regarding the way we collect and handle your information, please contact our Data Protection Officer by email at firstname.lastname@example.org, or by mail at 205 Pacific Highway, Level 4, St Leonards, NSW 2065, Australia, Attn: Privacy Officer.
10.2. IEP will take any privacy compliant seriously and we will aim to resolve any issue in a timely manner. You may have the right to submit a complaint to a data protection authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority.