Employee Confidential Privacy Statement
This privacy statement applies to Employee Confidential websites, services and products that collect data and
display these terms. It does not apply to any Employee Confidential site, service or product that does not display or
link to this statement or that contains its own privacy statement.
Employee Confidential LLC and its partners and affiliates are committed to protecting your privacy in a variety of ways
including using industry accepted security measures to protect against loss, misuse and alteration of data contained in our
systems. This Privacy Policy is designed to describe how we secure and maintain our customers' and visitors' personal
information when collected on sites which link to this Privacy Policy. This includes employeeconfidential.com and
campus-confidential.com Any information given to us will never be sold, rented, traded, shared or leased other than as
outlined in this Policy.
Employee Confidential does not publish text, images, or multimedia content that portray nudity, foul language, violence or
other information not suitable for children. Web sites maintained by Employee Confidential are not directed to children
under the age of 13. Employee Confidential will not knowingly collect or maintain personally identifiable information from
or about anyone under 13. Employee Confidential is committed to complying with privacy laws to which it is subject and
adhering to the highest industry standards for privacy.
Employee Confidential is not responsible for content saved to any Employee Confidential system by reporters or client
company representatives
Collection and Use of Information
Employee Confidential collects different kinds of information in order to provide you with the best products and services
and to operate effectively. Some of this information is provided directly by you, while other information may be provided
by your employer in connection with use of our products and services. We may also gather information by observing how
you interact with our website, products and services.
What information we collect:
To enable us to provide you with a service meeting your needs we will collect the following personal information
and details related to your enquiry, claim or service including payment details:
Registration: When you, or your organization, sign up to use our sites or services, or you sign up to attend a
webinar or get additional information about our products and services, we may receive certain necessary
information such as your name, job title and contact information such as email address, phone number and
Account/Report Access: To access some of our products and services you may be required to provide us specific
information (such as your login credentials) that allows us to verify your identity before accessing certain data we
host. This identity verification information is kept secure on our servers and is only used to assist you in accessing
your account or report; this information is not released outside of the relevant Employee Confidential system
unless specifically authorized.
Reporters: No personally identifying information is automatically collected from reporters using Employee
Confidential cloudware. Personally identifying information, such as name and e-mail address, is stored only
when a reporter voluntarily gives this information for use by a client company.
We only collect and process sensitive personal data where it is critical for the delivery of our service and without which,
our services cannot be provided. We will therefore not seek your explicit consent to process this information, as it is
required by us to provide the service you have requested and is legitimized by its criticality to the service delivery. If you
object to use of this information then we will be unable to offer you that product or service.
How we collect information:
Employee Confidential gathers information about how you use our sites and services in a number of ways, including:
Web forms, such as when you type information into a registration form;
Technologies like cookies (please see Cookies for more information about this technology)
Web logging, which enables us to collect the standard information your browser sends to every web site you visit
such as your IP address, browser type and language, and the site you came from as well as pages you visit and
links you click on within our site
How we use Personal Information:
Employee Confidential uses the information we collect to operate and improve our products and services, to communicate
with you and to undertake statistical analysis. We may also take the opportunity to contact you about products that are
closely related to those you already hold with us, provide additional assistance or tips about these products or services and
notify you of important functionality changes to our platforms and website.
When Employee Confidential collects personally identifiable information from visitors to our sites, the information
collected from opt-in users is used only to respond to visitors' requests. In instances where opt-in participants' requests
relate to Employee Confidential partners, we will provide personally identifiable information only to respond to that
request. Employee Confidential does not sell, rent, lease, trade or share visitors' personally identifiable information other
than as outlined in this Policy. When you provide us with your personally identifiable information or otherwise choose to
sign up to receive email communications from us, we will use that information to send those communications to you.
Individuals may "opt-in" and "opt-out" of receiving e-mail communications through selections available on e-mails
received. For participants of our web seminars, the only personally identifiable information we share is webinar registration
information and it is only shared with our web seminar presenters to provide this service. They are not permitted to use this
information for their own marketing purposes.
Licensed Users of Products and Services:
Personally identifiable information such as name, contact information, username and password is stored in our database for
access to and use of certain software applications. This information is kept secure on our private servers and is only used to
assist you in accessing your account. No information is released outside of the Employee Confidential system unless
specifically authorized.
No personally identifiable information is automatically collected from reporters submitting a case. Personally
identifying information, such as name and e-mail address, is collected and stored only when a reporter voluntarily
gives this information.
Use of Cookie, Clear Gif and Log File Technology:
Technologies such as cookies, beacons, tags, and scripts are used by us and our tracking utility partners. These
technologies are used in analyzing trends, administering the site, tracking users’ movements around the site and to gather
demographic information about our user base as a whole. We may receive reports based on the use of these technologies
by these companies on an individual as well as aggregated basis.
A “cookie” is a small text file that is stored on a user’s computer.
Employee Confidential utilizes Cookie technology on our sites for purposes of Website traffic analysis such as the
time/date of the visit, the time/date of last visit, the page viewed, the referring site, and other data. Employee Confidential
also tracks click behavior in the e-mails it sends out. This data is used to update specific user-profile information, ascertain
the areas of most interest to opt-in e-mail recipients, and to personalize e-mail messages to them.
We also use session ID cookies for access to products and services by our licensed users and reporters. These session
Cookies are used to make it easier to navigate our site, products and services. A session ID Cookie expires when your
browser is closed.
If you reject Cookies, you may still use portions of our site, but your ability to use some areas of our site, products or
services, may be limited.
In limited circumstances, and with appropriate notice to licensed users, we will use persistent Cookies (Cookies that do not
expire when your browser is closed). In these situations, licensed users are required to consent to the placement of a Cookie
prior to it being activated and consent may be withdrawn at any time by simply accessing the form and un-ticking the box
giving Employee Confidential permission to store the information. Any persistent Cookie that is unused for 30 days will
automatically expire.
As is true of most Web sites, we gather certain information automatically and store it in log files. This information includes
Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring/exit pages, operating system,
date/time stamp, and clickstream data. We use this information to analyze trends, to administer the site, to track users’
movements around the site and to gather demographic information about our user base as a whole. We do not link
automatically collected data through the use of Cookies and log files to personally identifiable information.
Log Files
As true of most web sites, we gather certain information automatically and store it in log files. This information may
include Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring/exit pages, operating
system, date/time stamp, and/or clickstream data. We do not link this automatically collected log information with other
information we collect about you.
Secure Communications
Employee Confidential will take reasonable precautions to protect personal information in its possession from loss, misuse
and unauthorized access, disclosure, alteration and destruction.
For licensed users and reporters, communications between the Employee Confidential site and a user's web browser are
accomplished using, at a minimum, 128 bit SSL encryption and various third party security certificates to protect
confidential data. Employee Confidential does not allow users to transfer or receive confidential information unless they are
using a validated 128 bit (or greater) encrypted session.
We follow generally accepted industry standards to protect the personal information submitted to us, both during
transmission and once we receive it. However, no method of transmission over the Internet, or method of electronic storage,
is 100% secure. Therefore, while we strive to use commercially acceptable means to protect your personal information, we
cannot guarantee its absolute security.
Automatic Information Storage
Session Variables may be used temporarily in your system cache to create ease-of-use during your transaction. Examples of
such information are automatically produced alphanumeric numbers held during your session on our site to facilitate page-
to-page transactions. We only store name, e-mail, phone, address, company name or any other identifying information for
licensed users; no information is stored for others unless otherwise stated in this policy.
Links to Other Sites
Our Site includes links to other Web sites whose privacy practices may differ from those of Employee Confidential. If you
submit personal information to any of those sites your information is governed by their privacy statements. We encourage
you to carefully read the privacy statement of any Web site you visit.
Sharing your information
No company other than Employee Confidential is allowed to access information stored on our servers, unless expressly
authorized by Employee Confidential. Unauthorized access to this information is a violation of the law. Employee
Confidential has placed security measures and firewalls on all network servers in an attempt to prevent outside parties from
accessing private information. In the event of a breach of security, Employee Confidential will press charges to the fullest
extent possible against those parties illegally accessing information on our servers.
The data we collect about you may be transferred to, and stored at, a destination outside of the European Union (“EU”) and
the European Economic Area (“EEA”). It may also be processed by staff operating outside of the EEA who works for EC
or for one of EC’s suppliers. Such staff may be engaged in, amongst other things, the provision of information you have
requested. If we provide information to a third party we will require it and any of its agents and/or suppliers to take all steps
reasonably necessary to ensure that your data is treated securely and in accordance with this Fair Processing Notice.
GDPR and Safe Harbor Framework
Employee Confidential complies with the General Data Protection Regulation (GDPR), the U.S.-EU and U.S.-Swiss Safe
Harbor Frameworks as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of
personal information from EU countries and Switzerland. Employee Confidential adheres to the Safe Harbor Privacy Principles
of notice, transfer, security, integrity, access, and enforcement. Microsoft Azure is Employee Confidential's Data Subprocessor.
Access to Personal Information
Upon request by mail or e-mail (to the addresses noted below in the Contact Information section) and after verifying their
identity, Employee Confidential will grant individuals reasonable access to personal information that it holds about them,
unless otherwise legally unable to do so. In addition, Employee Confidential will take reasonable steps to permit
individuals to correct, amend, or delete information that is demonstrated to be inaccurate or incomplete. Employee
Confidential shall provide a response to an access request within 30 days of receiving such request.
We will retain your information for as long as your account is active or as needed to provide services to your organization.
We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce
our agreements.
Disclosure Pursuant to Judicial or Government Subpoenas, Warrants or Orders
We reserve the right to disclose your personally identifiable information as required by law and when we believe that
disclosure is necessary to protect our rights and/or comply with a judicial proceeding, court order, or legal process served
on us.
Business Transfer
In the event Employee Confidential goes through a business transition, such as a merger, acquisition by another company,
or sale of all or a portion of its assets, your personally identifiable information will likely be among the assets transferred.
You will be notified via prominent notice on our Web site for 30 days of any such change in ownership or control of your
personal information
Breach of Privacy Policy
If you have received unwanted, unsolicited e-mail sent by Employee Confidential or from any Employee Confidential
system or purporting to be sent via Employee Confidential, please forward a copy of that e-mail with your comments to
privacybreach@employeeconfidential.com for review.
Contact Information
Questions or comments regarding this Policy should be submitted to Employee Confidential by mail or e-mail as follows:
Employee Confidential, Inc.
Attention: Privacy Officer
Changes To This Privacy Policy
Any updates or changes to our privacy statement will be posted to this privacy statement, the home page, and other places
we deem appropriate so that you are aware of what information we collect, how we use it, and under what circumstances, if
any, we disclose it. We reserve the right to modify this privacy statement at any time, so please review it frequently. If we
make material changes to this policy, we will notify you here, by e-mail, or by means of a notice on our home page prior to
the change becoming effective.