Last Updated: April 16, 2019
SCOPE OF POLICY
COLLECTION OF PERSONAL INFORMATION
We may collect certain types of Personally Identifiable Information when you create or update your Account, or when we create an Account on your behalf, such as your name, address, and email address. We may also collect certain types of Personally Identifiable Information when you use the Services, such as fingerprint scans. The purpose of colleting such information is to permit you to use the Services.
Providing us with your Personally Identifiable Information is entirely voluntary. If you do not wish to consent to the collection and use of your Personally Identifiable Information, you are not required to do so. However, if you do not consent to the collection and use of your Personally Identifiable Information, you will not be able to use the Services, and if you do not wish to provide certain types of information, your use of the Services may be adversely affected and you may not receive certain communications.
COLLECTION OF OTHER TYPES OF INFORMATION
ACCESS TO PERSONAL INFORMATION
You may access or request access to the Personally Identifiable Information in your Account at any time through the AuthX platform or by sending a request to: firstname.lastname@example.org.
AuthX reserves the right to decline commercially unreasonable request to access the Personally Identifiable Information in your Account.
UPDATES TO PERSONAL INFORMATION
You may update the Personally Identifiable Information in your Account at any time through the AuthX platform or by sending a request to: email@example.com.
AuthX reserves the right to decline commercially unreasonable request to update the Personally Identifiable Information in your Account.
You agree to promptly update the Personally Identifiable Information in your Account if such information changes, particularly your name, address, telephone number, and email address.
USE OF PERSONAL INFORMATION
AuthX may use your Personally Identifiable Information to permit you to use the Services and for related purposes, including to communicate with you about the Services and to facilitate the operation of AuthX’s business. For example, we may send you communications to confirm the creation of your Account, changes made to your Account, and purchases made through your Account; to provide you with information about the use of the Services; to respond to your requests for customer support; to respond to your questions, comments, or complaints; to request feedback about the Services; and to send you information about updates, improvements, and/or other modifications to Services and our policies.
You may opt-out of receiving some or all types of electronic communications when you create an Account, by modifying your Account preferences, or by sending a request to firstname.lastname@example.org. However, if you do not consent to the receipt of any types of communications, you will not be able to use the Services, and if you do not consent to the receipt of certain types of communications, you may not receive important communications and your use of the Services may be adversely affected.
DISCLOSURES OF PERSONAL INFORMATION
We may also disclose your Personally Identifiable Information to certain third parties under the following circumstances.
DISCLOSURES TO PRODUCT/SERVICE PROVIDERS
AuthX may disclose certain Personally Identifiable Information to product and/or service providers who assist us in providing Services. The Personally Identifiable Information disclosed to such companies will be limited to information sufficient to provide the Services, to support the Services, to enhance the Services, or to verify or supplement the information in your account.
AuthX may also disclose certain Personally Identifiable Information to companies whose products or services are used or may be used in connection with the Services. The Personally Identifiable Information disclosed to such companies will be limited to information sufficient to contact you electronically, and will be used only for the purpose of providing you with information about third-party products or services used in connection with the Services or third-party products or services that we believe may be of interest to you. You may receive communications from such companies and are responsible for your interactions with such companies, including your decision to use any products or services provided by such companies. You may opt-out of the disclosure of your Personally Identifiable Information to such companies when you create an account, by modifying your Account preferences, or by sending a request to email@example.com.
DISCLOSURES TO OTHER ENTITIES
The disclosure of Personally Identifiable Information to third parties to comply with valid legal demands for such information is governed by AuthX’s Government Disclosures Policy.
DESTRUCTION OF PERSONAL INFORMATION
AuthX and the third-party product/service providers who assist AuthX in processing Personally Identifiable Information take reasonable steps to prevent destruction, alteration, disclosure, misuse, and unauthorized access to your Personally Identifiable Information.
Sensitive information, including your login information, is protected through encryption during transmission over the Internet. Servers and other devices used for processing your information at AuthX and third-party vendors are kept in controlled environments where access to your information is limited to authorized persons.
AuthX’s security policies and practices comply with HITRUST, ISO 270001, and PCI-DSS standards, and we are certified as compliant by the governing bodies for each of those standards.
CONFIDENTIALITY OF COMMUNICATIONS
You agree that, aside from any Personally Identifiable Information contained in your communications with AuthX, your communications with AuthX are not confidential. Such communications, including any communications containing any ideas, concepts, or suggestions regarding the Services, improvements to the Services, or new Services, may be used by AuthX for any purpose.
We do not knowingly collect personally identifiable information from children under the age of 13 without parental consent. If we learn that we have collected the personally identifiable information of a child under the age of 13 without parental consent, we will take steps to delete the information as soon as possible.