Website Privacy Policy Overview
New Commonwealth Fund (NCF) values your privacy and believes you have a right to know what data we collect, for what purposes, and how the information is typically used and if or when it is shared with third parties. We also recognize your right to manage permissions regarding your personal information, including the option to have your information deleted from our records.
This policy is meant for, and directed towards, visitors to the newcommonwealthfund.org website.
What We Collect and How It’s Used
Non-Personally Identifiable Information (Cookies):
We use cookies on our website to track non-personally-identifiable information regarding visitors to our site, including (but not limited to) user location, device type, pages visited, referral sources, and basic behavior on our site, including (but not limited to) time on page, bounce rate, number of sessions, and pages per session. Our cookies also collect information on demographics such as age, gender, interest, or affinity categories. Usage of a cookie is in no way linked to any personally identifiable information on our site and we do not/will not identify users or facilitate the merging of personally identifiable information with non-personally identifiable information collected through any Google advertising product.
To delete cookies or instruct your web browser to delete or refuse cookies, you can visit the help pages of your web browser. You may also choose to use the Google opt-out feature, found here.
Personally-Identifiable Information (includes the following):
Name
Email Address
Company Name
We only collect this information though the normal course of business via our on-line contact/estimate request form. We use this information to respond to requests for information and provide customer service.
We have adopted and follow a strict process for ensuring your personal information is safeguarded and secure within our office systems. For information regarding our internal information security processes and policies, please contact the data security team member listed under the contact section of this policy.
Third-party information-sharing:
We do not sell or rent customer lists or personally-identifiable information to any third parties. We will only share your information with third parties outside of our company, including providers of contracted products and services, in order to process requests, provide information or offers, or provide customer service per your request.
Please note that our website may contain links to other websites and social media platforms not managed or controlled by NCF, therefore we cannot verify the security of these external sites.
Website Security Measures
To protect your information on-line, we have implemented the following security measures:
Website SSL certificate which enables the https protocol and allows secure connections from a web server to a browser.
GDPR Compliance
The General Data Protection Regulation (GDPR) took effect on May 25, 2018. This regulation standardizes data privacy laws across the European Union (EU). You are entitled to exercise GDPR rights if you’re an EU citizen.
Breach Notification
In the event of a data breach where personally-identifiable information is disclosed to parties outside of our organization and without consent, we will notify all users that are and/or may be involved within 72 hours of our discovery of the breach. Notification will occur via email advising the nature of the breach, what information was or may have been disclosed, and what actions we are taking to mitigate damages and repair the situation.
Right to Access
Under the GDPR, you have a right to access the information we collect, in electronic form. To receive a copy of your information, please send a request via email, originating from the email address we have on-file, to the to the data security representative listed below. Kindly include your name, email address, phone number, and a brief message requesting a report of your personally-identifiable information.
Right to Be Forgotten
To have all of your personally-identifiable information permanently removed from our records, please send an email request to the data security representative listed below, including your name, email address, phone number, and a brief message requesting removal of your personal information from our records.
Contact
For all inquiries and requests relating to data security and website privacy, including requests under GDPR for access and to be forgotten, please contact our data security representative at [email protected]