Effective: January 1st, 2010
Last Update: May 24, 2018
Introduction and Scope
Categories of Personal Data and How We Receive It
Truth Technologies may receive certain personal data relating to you from our clients in connection with providing the Services. Such personal data may include biographical information, contact information, national identification number and other information that may be contained on an identification document, and other information our clients specifically provide to us on a case-by-case basis.
Basis and Purposes of Processing
We delete personal data submitted to us by our clients within 90 days of the termination of the applicable service agreement unless applicable law requires a different retention period.
Sharing Personal Data with Third Parties
Other than as described below, personal data provided to Truth Technologies in connection with the Services is not disclosed, transmitted, shared, rented or sold to any third-parties.
We share personal data with our service providers who process personal data on behalf of Truth Technologies and who agree to use the personal data only to enable us to perform the Services for our clients. Our service providers include businesses that provide hosting services, cloud storage services and infrastructure services. We require these third parties to demonstrate that they also adhere to the Privacy Shield Principles or provide at least the same level of privacy protection as is required by the Privacy Shield Principles.
Truth Technologies remains responsible and liable under the Privacy Shield Principles if any third-party agents that it engages to process the personal data on our behalf do so in a manner inconsistent with the Principles, unless Truth Technologies is not responsible for the event giving rise to the damage.
Other Disclosure of Personal Data
We may disclose your personal data: (i) to the extent required by law or if we have a good-faith belief that such disclosure is necessary in order to comply with official investigations or legal proceedings initiated by governmental and/or law enforcement officials, or private parties, including but not limited to: in response to subpoenas, search warrants, or court orders, (ii) if we sell or transfer all or a portion of our company’s business interests, assets, or both, or in connection with a corporate merger, consolidation, restructuring, or other company change, or (iii) to our subsidiaries or affiliates but only if necessary for business and operational purposes.
If we must disclose your personal data in order to comply with official investigations or legal proceedings initiated by governmental and/or law enforcement officials, we may not be able to ensure that such recipients of your personal data will maintain the privacy or security of your personal data.
Commitment to Security of Data
Access and Review
If you are a data subject about whom we store personal data, you may have a right to request access to your personal data, update, correct, or delete your personal data, and to object to processing, request restriction of processing, or exercise your right to data portability. To submit such requests or raise any other questions, please contact the organization that provided your personal data to us. We make a reasonable effort to provide our clients with the means to comply with the requests of their data subjects.
Privacy of Children
Our Services are not directed at, or intended for use by, children under the age of 13. We do not knowingly process personal data related to anyone under 18. Children should always get permission from a parent or guardian before sending their personal data over the Internet. If you believe your child may have provided us with personal data, please contact us at email@example.com.
EU-US Privacy Shield Framework
In compliance with the Privacy Shield Principles, Truth Technologies commits to resolve complaints about our collection or use of your personal data. EU individuals with inquiries or complaints regarding our processing of personal data may contact Truth Technologies’ Data Protection Officer, James D. Cormier of VeraSafe, via the Internet at https://www.verasafe.com/about-verasafe/contact-us/, or by postal mail at: VeraSafe, 22 Essex Way #8203, Essex, Vermont 05451 USA.
Please allow us up to four weeks for a reply.
Truth Technologies has further committed to refer unresolved privacy complaints under the Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU Privacy Shield, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit http://www.bbb.org/EU-privacy-shield/for-eu-consumers for more information or to file a complaint. Truth Technologies is subject to the investigatory and enforcement powers of the US Federal Trade Commission, which is the competent supervisory body under the Privacy Shield program.
Where a complaint cannot be resolved by any of the recourse mechanisms mentioned above, individuals may have a right under certain conditions to invoke binding arbitration under the Privacy Shield Panel (as provided for under Privacy Shield Annex I) as recourse mechanism of “last resort”. If you are a resident of the European Union whose personal data we process, you may also have the right to file a complaint with a data protection regulator in one or more of the EU Member States.
Truth Technologies, Inc.
5621 Strand Boulevard, Suite 305
Naples, FL 34110 USA
VeraSafe has been appointed as Truth Technologies’ representative in the European Union for data protection matters (“EU Representative”), pursuant to Article 27 of the General Data Protection Regulation of the European Union (the “GDPR”). In accordance with Article 27 of the GDPR, VeraSafe may be contacted by supervisory authorities or data subjects in addition to Truth Technologies about matters related to the processing of personal data. VeraSafe, in its capacity as our EU Representative, may be contacted using this contact form: https://www.verasafe.com/privacy-services/contact-article-27-representative/
Alternatively, VeraSafe, as our EU Representative, may be contacted by postal mail as follows:
|VeraSafe Ireland Ltd
North Point House
North Point Business Park
New Mallow Road
Policies and procedures
Last Update: February 12, 2018
- Definitions. Capitalized terms used in, and not otherwise defined in these Policies and Procedures, have the meanings ascribed to them in the Agreement between Truth Technologies, Inc. (“TTI”) and Subscriber (“Agreement”).
- Performance. TTI will use commercially reasonable efforts to update, augment and maintain the Content, as compiled from selected public records and other sources. Subscriber accepts all Service, Content and Data provided by TTI on a “AS IS” basis, with no warranty or guarantee as to the truth, accuracy or completeness of the Service, Content and Data. THERE ARE NO WARRANTIES, EXPRESS OR IMPLIED, BY TTI AND THE INFORMATION PROVIDERS IN CONNECTION WITH THE SERVICE, CONTENT OR DATA, INCLUDING, BUT NOT LIMITED TO, WARRANTIES FOR MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NON-INFRINGEMENT OF THIRD PARTY RIGHTS, OR THAT THE SERVICE, CONTENT OR DATA IS CORRECT, ERROR FREE, COMPLETE, AND/OR CURRENT AND UP TO DATE, OR THAT THE SERVICE, CONTENT OR DATA WILL BE SECURE, TIMELY DELIVERED, UNINTERRUPTED, FREE OF VIRUSES OR OTHER HARMFUL COMPONENTS, OR WILL SUFFICIENTLY OPERATE IN COMBINATION WITH ANY OTHER HARDWARE, SOFTWARE SYSTEM OR DATA.
- Support. TTI will offer e-mail support through the Sentinel™ Web site at https://sentinel.truthtechnologies.com and https://cayman.TruthTechnologies.com. All support e-mails submitted during regular business hours will be answered within one (1) business day.
- Interruption of Service.
- Scheduled Interruptions. Subscriber acknowledges that the Service may be temporarily interrupted or curtailed due to equipment modifications, upgrades, relocations, repairs and other similar activities during the operation and upgrade of the Service. Subject to the terms of Subscriber’s Agreement, no reduction of payments will be made in the case of scheduled interruption of the Service, provided such interruptions do not exceed 24 hours during any consecutive 30-day period, excluding planned maintenance (i.e. planned Downtime) or regularly scheduled and/or planned Content updates.
- Data Source Update. TTI uses the following update schedule for data sources: Monday – Friday: World-Check, OFAC, HMT, EU.
- Force Majeure. TTI will not be liable for loss or damage resulting from any delay or non-performance due to any cause or causes beyond its reasonable control, including an act of the Subscriber, malfunctioning or nonfunctioning of equipment, a delay in transportation, acts of God, fire, flood, earthquake, storm, war, sabotage, riot, civil commotion, or because of any law, rule, regulation, order or other action by any public authority, provided TTI (i) gives the Subscriber written notice of such cause promptly, and (ii) uses its reasonable commercial efforts to correct such failure or delay.
- Internet connectivity. Because Subscriber will access the Service over the public Internet, temporary disruptions of network connectivity will occur from time to time. Internet traffic is usually routed through many different Internet backbone providers on the way to its destination. TTI will not be liable for interruption or delays in transmission or errors or defects in transmission or failure to transmit when caused by any Internet backbone provider.
- Liability. Except as otherwise expressly provided in Subscriber’s Agreement, in no event shall TTI be liable for any damages due to interruption of Service except for a pro-rata refund of fees actually paid by Subscriber for the Service and then only in any amount in proportion to the actual downtime attributable to such interruption of Service.
- Audit. Subscriber understands and agrees that in order to ensure compliance with applicable law; TTI reserves the right to conduct periodic reviews of Subscriber’s activity and may, on a random basis, contact Subscriber to provide documentation of executed searches using the Service. TTI shall also investigate all legitimate reports of abuse or misuse of the Service.
- Data Breach. In the event of a data breach, Subscriber whose data was affected by the breach will be notified by TTI.
- Law Enforcement Requests for Disclosure. Subscriber shall be notified of any legally binding request for disclosure of the Personal Data by a law enforcement authority unless otherwise prohibited, such as a prohibition under law to preserve the confidentiality of a law enforcement investigation.
- Conflict. In the event of any conflict between the terms of Subscriber’s Agreement and these Policies and Procedures, the terms of Subscriber’s Agreement shall control unless such Agreement provides otherwise.