CFI Group US Privacy Policy, EU-U.S Data Privacy Framework and CCPA Statement
CFI Group is a worldwide firm that helps its clients to maximize shareholder (or other stakeholder) value by optimizing employee and customer satisfaction. Employee and customer satisfaction is typically measured through some type of survey and is never resold.
CFI Group appreciates your confidence in us. Security encryption of your information using industry best practices is utilized to help keep your information anonymous and confidential. This privacy policy covers all information collected on www.cfigroup.com as well as information collected through CFI Group’s surveys that it executes on its clients’ behalf.
This privacy policy governs any data or personally identifiable information collected through a survey sponsored, hosted, or managed by CFI Group. Personally identifiable information means any information that individually identifies a particular respondent, such as name, address, phone number, or email address.
We follow generally accepted industry standards to protect the personal information submitted to us, both during transmission and once we receive it. If you have any questions about security on our US website, you can email [email protected].
CFI Group conforms with the California Consumer Privacy Act (CCPA) and customers may request to have their data removed via the following link: https://studio.cfigroup.com/privacyshield/request.
Since CFI Group is a worldwide organization, we also comply with the EU-U.S. Data Privacy Framework program (EU-U.S. DPF) as set forth by the U.S. Department of Commerce. CFI Group has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Program Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
The U.S.-EU Data Privacy Framework includes several privacy principles concerning the protection of personal information. A list of these principles and how CFI Group meets these requirements follow.
Notice and Choice
Information Collection & Use
Visitors to the CFI Group site may request more information about CFI Group by filling out one or more of our available online forms. Forms on the site include: a contact us form, a request more information form, or an information download form. The standard information request forms include: First name, Last name, Email, Phone and Company. The information collected through these forms is used solely to contact the visitor to resolve any questions and/or comments that they might have or to respond to a request to contact them.
Companies using CFI Group’s products to collect feedback may share personal information as part of the data collection process. Information may include one or more items such as First name, Last name, Address, Phone, and Email. Users providing feedback to a Company using CFI Group’s products can choose to provide their user information or can opt-out and choose to be anonymous. Companies use this information to provide follow-up to their customers and/or employees that post feedback. CFI Group does not share or sell any of the information to any third party other than to the company that it was provided to for follow-up.
Users who access CFI Group products must provide username and password to log in to a CFI Group product. This information is kept confidential and is only used to help identify and access CFI Group’s product functionality.
If you have questions, concerns, or complaints contact CFI Group US at:
Phone: 1-734-930-9090
Email: [email protected]
Mail: 3916 Ranchero Drive
Ann Arbor, MI 48108
Onward Transfer
Information Sharing and Disclosure
In cases of onward transfer to third parties of data of EU individuals received pursuant to the EU-US Data Privacy Framework, CFI Group is potentially liable.
CFI Group does not share or disclose personal identifiable information with Third Parties. If our policy changes in the future, we will notify individuals and offer choice as to whether they want their information shared. Customers that use CFI Group’s products to collect personal information must agree to abide by the same principal guidelines followed by CFI Group. Since CFI Group is in the business of conducting surveys, results from a survey most commonly are presented in aggregated form. Respondents may not be contacted with any marketing-oriented message unless they expressly consent to be contacted in such a way. Under no circumstances does CFI Group share personally identifiable information with any person or entity outside of the particular CFI Group client relationship, unless it we are required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.
Partners
CFI Group does not share your information with any partner companies, unless given your permission. We will not sell your information to any newsletter or mailing list companies.
Children
CFI Group seeks a safe environment for all Internet users. CFI Group is a family-friendly company and does not publish information that is not suitable for children or minors.
Legal Disclaimer
We reserve the right to disclose personal information as required by law and when we believe that disclosure is necessary to protect our rights and/or comply with a judicial proceeding, court order, or legal process served on our website.
Terms
No party other than CFI Group and participating customers are allowed to access information stored on our servers. Doing so is a violation of federal and state law. CFI Group has taken caution by placing security measures and firewalls on all network servers to prevent outside parties from accessing private information. In the event of a breach of security or attempted breach of security, CFI Group will vigorously pursue those parties illegally accessing information on our servers, both civilly and criminally.
Access and Data Integrity
Your Account Access
Your Account Access CFI Group acknowledges the right of individuals to have access to their data, for more information on how individuals can access their personal data, please see the “Personally Identifiable Information” section below. Usernames and passwords are stored in our databases. All passwords are encrypted. Account information is kept secure and used solely by our customers to access your client account, and to facilitate communication. Company administrators have permission to make corrections or changes to their account information as needed. User information is stored only when a user voluntarily gives this information for use by a client company. No information is released outside of the CFI Group system.
Personally Identifiable Information
If your personally identifiable information changes, or you want to review it, you may make the request by emailing [email protected]. To have it removed from our US systems, you may request that we update/remove it by going to https://studio.cfigroup.com/privacyshield/request.
Security
The security of your personal information is important to us. We follow general accepted industry standards to protect the personal information submitted to us, both during transmission and once we receive it. If you have any questions about security on our Web site, you can email us at [email protected].
Enforcement
Privacy Complaints by European Union Citizens:
In compliance with the EU-US Data Privacy Framework Program’s Principles, CFI Group is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC) and commits to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to the DPF Principles.
European Union citizens with inquiries or complaints regarding this privacy policy should first contact CFI Group US at:
CFI Group
Attention: Data Protection Officer
3916 Ranchero Drive
Ann Arbor, MI 48108
[email protected]
CFI Group has further committed to refer unresolved privacy complaints under the DPF Principles to an independent dispute resolution mechanism, Data Privacy Framework Services, operated by BBB National Programs. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://bbbprograms.org/programs/all-programs/dpf-consumers/ProcessForConsumers for more information and to file a complaint. This service is provided free of charge to you.
If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See https://www.dataprivacyframework.gov/framework-article/ANNEX-I-introduction
Vulnerabilities
Any discovered vulnerabilities in CFI Group products or solutions should be reported to the following: [email protected]