Why Digital Transformation Is a Revolution for CX
3 Words to Evoke Partnership and Transformation
3 Benefits of a Cloud-Based AP Solution
Integrate Customer Payment Options on One Platform
How to Streamline Check-Based Payments
Get Started on a Sustainable Communications Plan
Improve Business Security and Control, Starting Now
Bridge the Gap Between Digital and Traditional Channels
Our use of information we collect as a service provider or processor for our customers is limited by the restrictions placed on that information by our clients and their privacy policies. You can learn more about how your information is collected and used by our clients by reviewing the privacy policies of the businesses that you engage with.
We will use personal information about you only for the purposes and in the manner set forth below, which describes the steps we take to ensure the processing of personal data is in compliance with applicable data protection law, including California’s Consumer Privacy Act (“CCPA”) and the European Union’s General Data Protection Regulation (“GDPR”).
We collect the following categories of information from and about you:
Personal Information is information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked with a particular individual. We may ask you to provide your Personal Information voluntarily as you interact with us on the Site, or that we may collect it automatically as you use the Site. Personal Information may include, but is not limited to, your:
The Personal Information we collect, the basis of processing and the purposes of processing are detailed below (see “Sharing and Disclosure of Information” section below). Sometimes, these activities are carried out by third parties. The Personal Information we collect about you helps us manage our relationship with you, primarily by allowing us to respond to your questions, to improve website experience, and to notify you of our Services. We also collect information from you for potential employment purposes.
Non-Personally Identifiable Information
We may also collect data about you that is not personally identifiable. Examples of such data include your device operating system type, browser type, domain, and other system settings. We may collect data about the website that you were visiting before you navigated to our Site, and the website that you visit after you leave our Site. We collect this data to help us better understand our Site traffic and to optimize our delivery of the Site to you.
Individuals in the European Union
For individuals in the EU, “Personal Data” has the meaning described in Article 4.1 of the GDPR. The following lawful bases support our processing activities under the GDPR:
The Personal Information about you that we collect includes information within the categories of data defined by California state privacy laws and provided below. Under the CCPA, “Personal Information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked with a particular consumer or household. Personal Information does not include:
(1) de-identified or aggregated information;
(2) “publicly available information” that is lawfully made available from federal, state, or local government records; or
(3) information excluded from the CCPA, such as Protected Health Information or medical information that is subject to HIPAA, or other personal information covered by certain other privacy laws, such as the Fair Credit Reporting Act, the Gramm-Leach-Bliley Act, or California Financial Information Privacy Act, and the Driver’s Privacy Protection Act of 1994.
The following categories also represent the categories of Personal Information that we have collected over the past 12 months. Inclusion of a category in the list below indicates only that, depending on the services and products we provide you, we may collect some information within that category. It does not necessarily mean that we collect all information listed in a particular category for all of our customers. We do not and will not sell Personal Information about you, as defined by CCPA. We also have not done so for the last 12 months.
We use Google Analytics, a third party analytic tool which uses tags to
measure, analyze, and report on access to and usage of our Site. Google Analytics is a web analytics service
offered by Google that tracks and reports website traffic. When you access the Site, your web browser
automatically sends certain information to us and to Google, which is used to
understand how visitors to our Site engage with our Site. This data is shared with other Google
services. Google may use the collected data to contextualize and personalize
the ads of its own advertising network.
Google Analytics does not collect sensitive information on our Site, as
described in the Google AdWords sensitive category restrictions.
You can opt-out of having made your activity on
the Site available to Google Analytics by installing the Google Analytics
opt-out browser add-on: https://tools.google.com/dlpage/gaoptout. The add-on
sharing information with Google Analytics about visits activity.
For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy?hl=en.
USE OF INFORMATION COLLECTED
We use the information we collect from or about you for the following purposes:
SHARING AND DISCLOSURE OF INFORMATION
We may share or disclose your information to the following categories of third parties and for the following reasons:
We disclose the personal information we collect about you for a business purpose to the following categories of third parties: service providers for website services, email services, and data analytics services.
We provide you the opportunity to opt-out of
marketing communications by clicking the “unsubscribe” link in email
communications or by contacting us using the contact information provided
below. We will process your request as soon as possible in accordance with
applicable law, but please be aware that in some circumstances you may receive
a few more messages until the unsubscribe request is processed.
Additionally, we may send you information
regarding our Services, such as information about changes to our policies and
other notices and disclosures required by law. Generally, users cannot opt-out
of these communications, but they will be primarily informational in nature,
rather than promotional.
Our website contains links to other sites. When you follow these links to those sites, the operators of those websites may collect information about you. OSG does not review, control or monitor the practices, information or materials on any other websites, and are not responsible or liable for the communications, information, content or materials from or the practices and policies (including without limitation privacy or data collection practices or policies) of any of those sites. If you have any questions about how these other sites use your information, you should review their policies and contact them directly.
RIGHTS AVAILABLE TO CALIFORNIA RESIDENTS
Under the CCPA, residents of California are provided with certain rights regarding their Personal Information (as defined in the CCPA). The following section outlines these rights:
If none of the foregoing exceptions applies, and we delete the information in compliance with your verifiable request, we will also direct our applicable service providers to delete your personal information.
You or an authorized agent registered with the California Secretary of State that you authorize to act on your behalf, may exercise the Rights twice in a 12-month period. Your verifiable request must include sufficient detail for us to understand, evaluate, and respond to it. It must also provide sufficient information that allows us to reasonably verify that you are the individual about whom we have collected Personal Information or an authorized agent representing the individual. Please note that in some cases we may need to obtain information from you as part of the verification process to verify your identity to a reasonable degree. We may require you to provide Personal Information as part of the verification process. For authorized agents, we may require a signed, written authorization, a notarized affidavit, or a valid power of attorney. We will only use this information for the purpose of verifying the requestor’s identity or authority. To exercise these rights, please email us at *protected email* or complete the CCPA Request Form using the link below:
We received your message and you will be contacted by one of our respresentatives regarding your inquiry.
We will acknowledge your right to know or deletion request within ten (10) business days of receipt and provide information about how we will process the request. In many cases we will respond to your request within 45 days. In some cases we may extend the time to respond for another 45 days. If this extension is necessary, we will give you notice and the reason that we need the additional time to respond.
If we are unable to verify your identity or your
authority to make the request within 45 days, we cannot fully respond to you
and may deny your request. We may in
such cases elect to treat the deletion request as an opt-out request. For requests seeking specific pieces of
information, we will treat it as a request for the disclosure of the categories
of Personal Information about the consumer.
We retain records of your
requests, including the request data, nature of the request, manner of
submission, the response and any basis of denial for a period of 24 months.
We will not discriminate
against you in terms of services, the level or quality of services, or pricing
for exercising any of your CCPA rights. If there are excessive requests, we may
charge a reasonable fee as permitted under the CCPA.
RIGHT TO OPT-OUT OF DATA SALES FOR NEVADA RESIDENTS
We do not sell your covered information, as defined by Section 603A.320 of the Nevada Revised Statutes. If you reside in Nevada, you have the right to submit a request to us at *protected email* regarding the sale of covered information. Please include “Nevada” in your email subject line, and include the following information in your email: your name, Nevada resident address, and email address. We will respond within sixty (60) days of receiving your request.
RIGHTS FOR INDIVIDUALS LOCATED IN THE EUROPEAN UNION
Under the GDPR, individuals in the European Union are provided with certain rights regarding their Personal Data, as defined under that Regulation. The following section provides notice of these rights:
To find out more about your data subject rights
under GDPR, you may contact the data protection agency of your member country,
for e.g., the Data Protection Commission of Ireland.
To exercise your rights, please contact us: our
contact details are in the “Contact Us” section below. Please make it clear
which right(s) you want to exercise, for example by heading your letter “right
to object” if you wish to exercise the right to object.
NOTICE REGARDING PUBLIC POSTING AREAS
Please note that any information you include in a message you post to any public posting area is available to anyone with Internet access. If you do not want people to know your email address, for example, do not include it in any message you post publicly. PLEASE BE EXTREMELY CAREFUL WHEN DISCLOSING ANY INFORMATION IN PUBLIC POSTING AREAS. OSG IS NOT RESPONSIBLE FOR THE USE BY OTHERS OF THE INFORMATION THAT YOU DISCLOSE IN PUBLIC POSTING AREAS.
We implement appropriate technical and organizational security measures to ensure the security of your Personal Information. Please understand, however, that no data transmissions over the Internet can be guaranteed to be 100% secure. Consequently, OSG cannot ensure or warrant the security of any information you transmit to us and you understand that any information that you transfer to us is done at your own risk. If we learn of a security system breach, we may attempt to notify you electronically so that you can take appropriate protective steps. By using the Services or providing Personal Information to us, you agree that we can communicate with you electronically regarding security, privacy and administrative issues relating to your use of the Services. Depending on where you live, you may have a legal right to receive notice of a security breach in writing.
INTERNATIONAL DATA TRANSFERS
OSG is based in the U.S. If you choose to
provide us with information, please understand that your Personal Information
may be transferred to the U.S. and that we may transfer that information to our
affiliates and subsidiaries or to other third parties, across borders, and from
your country or jurisdiction to other countries or jurisdictions around the
world. If you are visiting from the EU or other regions with laws governing
data collection and use that may differ from U.S. law, please note that you are
transferring your Personal Information to the U.S. and other jurisdictions
which may not have the same levels of data protection as the EU, and Personal
Information may be subject to access by and disclosure to law enforcement
agencies in the U.S.
We put in place
appropriate operational, procedural and technical measures in order to ensure
the protection of your Personal Information. You acknowledge you understand
that by providing your Personal Information: (i) your Personal Information will
be used for the uses identified above in accordance with this Policy; and (ii)
your Personal Information may be transferred to the U.S. and other
jurisdictions as indicated above, in accordance with applicable law.
In the event that all or part of our assets are sold or acquired by another party, or in the event of a merger, we retain the right to transfer your Personal Information to the successor business. The new business would retain the right to use your Personal Information according to the terms of this privacy notice as well as to any changes to this privacy notice as instituted by the new business.
HOW WE RESPOND TO DO-NOT-TRACK SIGNALS
At this time our website does not recognize automated browser signals regarding tracking mechanisms, which may include “Do Not Track” instructions.
DATA RETENTION PERIODS
OSG retains your Personal Information for as long as necessary for the purposes for which it was collected. In certain instances, we may keep it longer:
We reserve the right to change this Policy. When we do, we will also revise the “Effective Date” at the top of this Policy. If we make material changes to the Policy, we will notify you by placing a prominent notice on our website and/or by sending you an email at the email address we have on file for you. We encourage you to periodically review this Policy to keep up to date on how we are handling your Personal Information.
OSG is committed to permission-based e-mail marketing
practices and, in support thereof, has established this no-tolerance Anti-Spam
OSG has no tolerance for the sending of spam and
unsolicited mail. To ensure CAN-SPAM compliance, OSG requires that every e-mail
deployed through OSG with the primary purpose of delivering commercial content
meets the following criteria:
If you have any questions, comments or concerns about our privacy practices or this Policy, please contact us at:
OSGosgconnect.com*protected email*100 Challenger Road, Suite 303Ridgefield Park, NJ 07660201-871-1100