Please be advised that EDM retains records relating to professional services that we provide so that we are better able to assist you with your needs and, in some cases, to comply with professional guidelines. While we strive to update changing client information on a contemporaneous basis, we ask you to monitor any such information for errors. In order to guard your non-public personal information from unauthorized disclosure, we maintain physical, electronic and procedural safeguards that comply with our professional standards. With respect to online privacy, we employ certain internet specific practices to maintain the security of your information, including but not limited to firewall barriers, encryption and authentication procedures.
In the event that these policies change, EDM will provide you with a sufficient amount of time to opt out of any disclosure provisions. Nevertheless, EDM will provide a copy of its annual privacy notice to all clients upon inception of our engagement. In addition, each of our active clients shall be provided with a copy of our privacy notice within ninety (90) days following the close of EDM’s fiscal year.
EDM tracks visitors to its website, and visitor data is used for analytics and marketing purposes. EDM is compliant with the European Union’s General Data Protection Regulation (GDPR) policy, so EDM will respect visitors’ requests for records of their data that EDM has. In addition, GDPR allows visitors to request EDM to remove their data. To learn more about GDPR, please visit: https://bit.ly/2Fa05Kl.
Safe Harbor Compliance (data transfers from the European Union and Switzerland to the United States of America): Empaxis Data Management complies with the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries and Switzerland. Empaxis Data Management has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Safe Harbor program, and to view Empaxis Data Management’s certification, please visit http://www.export.gov/safeharbor/.
The U.S. Department of Commerce and the European Commission have agreed to a data protection framework called the “U.S.-EU Safe Harbor Framework” that consists of a set of privacy principle documents and related FAQs. The U.S. Department of Commerce and the Federal Data Protection and Information Commissioner of Switzerland have agreed to a similar data protection framework called the “U.S.-Swiss Safe Harbor Framework”. The Safe Harbor Frameworks describe how organizations that receive personal data from the European Union and Switzerland should provide information about purpose of collection (Notice), participation (Choice), Onward Transfer, Security, Data Integrity, Access, and Enforcement. A discussion of these data handling issues can be found at the Commerce Department’s Safe Harbor website at http://export.gov/safeharbor/ and the Safe Harbor Privacy Principles and FAQs of the U.S.-EU Safe Harbor Framework and the U.S. Swiss Safe Harbor Framework are currently are available in full at https://www.privacyshield.gov/welcome.
Communications relating to Empaxis Data Management’s Safe Harbor certification, and inquiries concerning the recourse mechanism for unresolved Safe Harbor complaints, can be sent to the company’s Safe Harbor compliance administrator.