SecurTest Privacy Policy 
Revised: March 30, 2025

Introduction

The following is the SecurTest, Inc. and its U.S.-based subsidiary iReviewNow LLC (collectively “SecurTest” “we”, “our”, “us”) online privacy policy, which governs how visitor information (your information) is gathered and used on SecurTest and iReviewNow Internet sites. Please take a few minutes to read this policy carefully.

About SecurTest, Inc. 

SecurTest, Inc. is a U.S.-based Consumer Reporting Agency (CRA) that prepares Consumer and Background Reports for authorized users, employers, and consumers under the provisions of the federal Fair Credit Reporting Act (FCRA), among other state and federal laws, rules, and regulations. We are also a global background screening company that provides background reports for employers and countries. 

About iReviewNow, LLC 

iReviewNow, LLC is a U.S.-based information company that allows consumers to securely review their consumer or background reports, dispute inaccuracies, explain adverse or derogatory information, and/or explain self-rehabilitation or improvement steps taken since the adverse actions.

Overview of our Privacy Policy

Our Privacy policy is very simple: SecurTest only collects applicant data pursuant to written Authorization and Disclosure under the FCRA and only disseminates consumer or background reports to employers or consumers as directed in the written authorization or when such reports are part of an attorney-client work product or permissible purpose. In other words, data is only collected and distributed at the direction and authorization of consumers, attorneys or for purposes permitted by law. The data is maintained in a secured site. SecurTest maintains strict policies and procedures in all aspects of its operation to protect the privacy of consumers.

Your Information that We May Collect Online 

You can affirmatively submit to SecurTest or iReviewNow certain user information pertaining to your interaction with us. User information may include a search query (such as the name and location of a business or consumer) or other information as described more fully below. You can also provide location information (so that you can search near you or in an area you specify), or billing information. We also may infer your geographic location based on your IP address or other information. User information may also include information pertaining to a complaint, such as your name, postal and e-mail address, phone and facsimile numbers, vehicle information such as vehicle identification number, and description of the complaint or customer review.

SecurTest is a provider of information and consumer reporting agency that helps businesses, non-profit organizations, and federal, state, and local governments make informed hiring and retention decisions. We screen applicants, employees, and consumers, reduce fraud, mitigate risk, facilitate business decisions, and make our world safer, while protecting consumer privacy. These Privacy Principles will also help the consumer, applicant, or subject of our background screening programs understand how we use and safeguard their information, such as social security numbers and dates of birth.

Our Privacy Principles apply to Personally Identifiable Information, which includes Sensitive Personally Identifiable Information that is collected, maintained, used, or disseminated by SecurTest in delivering information products and services through any SecurTest company or line of business. Many of our products are already subject to important privacy protections provided by federal and state laws, such as the Fair Credit Reporting Act and its state law counterparts. We give careful attention to our privacy policies, which we review and change as necessary and appropriate. To underscore our commitment to privacy and our vision that good privacy is good business, we have adopted the following Privacy Principles. [1]

The policy includes our corporate privacy principles and Fair Information Practice Principles of notice, choice, access, security, and accountability. This online privacy policy applies to all sites owned and operated by:

SecurTest, Inc.
600 Grand Panama Boulevard
Suite 202
Panama City Beach, FL 32407

(800) 445-8001 - corporatecompliance@securtest.com

Our Websites are:

www.securtest.com
www.ireviewnow.com

Protecting Children

Our websites are not designed with the purpose of attracting any person under age 18. SecurTest does not knowingly collect or maintain any personal information from children under the age of 18, unless they have applied for employment or are employed by an employer requiring a background report, also known as a consumer report, as defined by the FCRA.

Cookies and Other Persistent Identifiers 

SecurTest or third parties we contract with may use persistent identifiers such as cookies, embedded scripts, web beacons, pixel tags, log files, or similar technologies to collect certain information about visitors to our site and interactions with our online and mobile information or advertisements.

For example, we may automatically collect certain non-personal information from you, including but not limited to your browser type, device type, geographical location, operating system, unique device identifier of any of your computer(s) or device(s) that are used to access the site, software version, Internet Protocol ("IP") address, phone model, phone operating system, and the domain name from which you accessed the site. We also may collect information about your use of the site, including the date and time you visit the site, the areas or pages of the site that you visit, the amount of time you spend viewing or using the site, the number of times you return to the site, other click-stream or site usage data, emails that you open, forward or click-through to our site, advertising that you click on, and other sites that you may visit.

You can still use our websites if you have set your browser to reject cookies or tracking identifiers, but it may prevent you from viewing or accessing some of the features of our sites.

How We Use Your Information 

We will use information you affirmatively submit to us for the purpose for which it is submitted, such as to reply to your email, respond to your inquiry, handle your background request, publish your customer review or comment, process billing transactions, register your participation for one or more of our services or products, respond to requests related to program participation, review applications for employment, and communicate with you when necessary. We may also use such information to provide operational notices, in program record-keeping and to conduct research on industry marketplace practices. We may publish aggregate data, but the aggregate data will not include any user information you provided to us.

We may use third party contractors to act on our behalf, and these contractors are obligated to not disclose or use your information for other purposes.

We rely on information collected from our users to develop new services and conduct analysis to enhance current content and services. Information collected from you may be used to review usage and operations of our site and address any resulting issues with our site.

At certain points where your information is collected on our site, there may be a box where you may indicate you would like to be on a mailing list to receive information about our services or products. This election box only appears in places where the service collecting your information maintains such lists. You can remove your name from our mailing list by utilizing the appropriate unsubscribe feature contained in the emails.

We may also use the information we collect from you to enhance your online experience and provide you with customized site content and targeted information on the site, across third party sites, or through your mobile device.

Other Purposes 

We may also share your information under the following circumstances:

We respond to requests from governmental agencies or where required by law (such as by subpoena, investigative demand, court order or regulation).

We may share information where our records indicate a company may be engaged in fraudulent activity or other unfair or deceptive practices that we believe should be referred to a governmental agency or a private organization whose work is consistent with our mission.

We may share information with appropriate governmental authorities, where warranted by a company's failure to comply with various federal or state laws or regulations.

We may share information with appropriate persons or governmental authorities, where your communication suggests possible harm to others.

International Transfers 

If you are visiting our site from outside the United States, be aware that your information will be transferred to, and maintained on, computers located within the United States. The collection, use, retention, and any other processing of your information will be governed by United States law and further by the specific jurisdictions within the United States where that information is stored, unless otherwise specified. Please refer to the various sections below for more information regarding data transferred from the EU, Switzerland, and other parts of the globe.

LEGAL COMPLIANCE

SecurTest requires clients to adhere to all laws, including all federal and state laws, the Equal Employment Opportunity Commission (EEOC) and their state and local counterparts, and the Fair Credit Report Act, among any others that apply.

The Privacy Act of 1974, 5 U.S.C. § 552a, establishes a code of fair information practices that governs the collection, maintenance, use, and dissemination of personal information maintained in systems of records by federal agencies. A system of records is a group of records under the control of an agency from which information is retrieved by the name of the individual or by some identifier assigned to the individual. (SecurTest is not a federal agency as defined by the Privacy Act of 1974. However, our guiding principles use applicable or similar privacy rules that are listed in the Act, such as “No Disclosure without Your Consent” and our methods for safeguarding your information.)

INFORMATION COLLECTION - Personally-Identifiable Information

These sites only collect Personally Identifiable Information (“PII”) from you based on your authorization, such as for a background investigation with an employer, prospective employer, government entity, or contractor of a government entity. PII collected with your consent may include, for example, name, e-mail address, resume information, address, telephone number, date of birth, social security number, driver’s license or government identification numbers, or any inquiries you may make directly through our websites or that you have authorized a SecurTest client to provide for a background report.

How We Protect Personally Identifiable Information

1. You must consent to provide PII information about yourself.

2. We collect PII information securely via secure online (internet), fax, mail, or other secure systems that only our clients, the consumer, and SecurTest can view.

3. We do not sell or redistribute your PII information to third parties. Except where required by our federal government clients, our background reports do not contain any PII information. Thus, the report does not include your date of birth or social security number. Where a federal government user, such as the Department of Defense (DoD) and its military branches, requires PII information in our background reports, the report can only be viewed through secure online access that meets the strict security procedures approved by the DoD.

4. We need your social security number, date of birth, address, name, maiden name, and other names to perform the background investigation. We also need your driver’s license number if we are required to report your driving record. We use this information to check court and other government records to ensure that we find and only report information about you. An accurate background investigation cannot be performed without PII information since a name match could result in reporting inaccurate information or information that is not your background or record.

Credit Reports

Some employers or authorized users require a credit report as part of their application or employment requirements. We follow U.S. federal and state laws, including the Fair Credit Reporting Act (FCRA) and California laws, among others.

We strongly encourage consumers/applicants to check their credit reports free at https://www.annualcreditreport.com/. Three credit bureaus collect and report credit information. Checking your credit before applying for employment or before authorizing a credit report allows you to identify any inaccurate information with these credit bureaus. SecurTest does not collect credit information and only reports the credit bureau report where you have authorized the report. SecurTest has no method to correct credit bureau reports, and as such, the consumer assumes all responsibilities for contacting credit bureaus if the credit file or report contains any inaccuracies.

INFORMATION USE AND CONSUMER CHOICE

The information collected by our websites is used only for responding to your inquiries or those authorized by you and our clients. We may contact you in response to your comments or inquiries, as part of the maintenance of your account with us (if you have one), or to complete a background investigation or compliance process, which will assist in ensuring the accuracy of our reports and compliance with the Fair Credit Reporting Act, among other state and federal laws. If you decide that you do not want to receive further e-mails from SecurTest, you can reply to the e-mail and place in the subject line, “OPT OUT.” You may also call 800-445-8001 with a request that we not continue to e-mail you. We do not use outside data sources to enrich marketing data obtained online. We do not use any information about you, including email addresses, except in compliance with our duties and obligations.

ACCESS AND CORRECTION

As an information company, we value having our data as accurate as possible. Accordingly, we strive to maintain the accuracy of the information collected through our websites. As the inventor of iReviewNow, we have the only consumer-friendly transparent system for you to ensure background and consumer reports are accurate and accessible to you at the same time as the employer or entity you authorized for us to prepare a report. You are our most important tool in ensuring that their data is complete and accurate. We will provide you access to your personally identifiable information for as long as we maintain that information in an accessible format. Similarly, we permit and encourage you to correct inaccuracies in the information you submit to us through our websites, by email, telephone, or using iReviewNow. If you wish to correct any inaccurate information you have submitted to any of these sites, please call (800) 445-8001. SECURITY We take steps to protect against the loss, misuse, or unauthorized alteration of personally identifiable information collected through this website. We recognize the importance of security for all personally identifiable information collected by our website. We exercise care in providing secure transmission of your information. Once we receive personally identifiable information, we take steps to protect its security on our systems. In the event we request or transmit sensitive information, such as Social Security Numbers, we use accepted industry standards, such encryption programs and software. We strictly limit access to personally identifiable information to those employees who need access to carry out their job responsibilities. All our employees have undergone extensive background screening, FASTscreen testing, and have their criminal history reviewed every 90 days to ensure your information is in trusted hands.

POLICY CHANGES

We reserve the right the revise this policy as needed. As such, in the event revisions are made, we will prominently post announcements on our websites that describe the details of the revisions.

PERSONAL INFORMATION DISCLOSURE: UNITED STATES OR OVERSEAS

In preparing a consumer report or investigative consumer report, we only send information about the subject of the report outside the United States if our client or you ask for information from a jurisdiction outside the United States. For example, if a prospective employee worked outside of the United States, our client might ask for a criminal history report for the country in which the prospective employee worked. When we do this kind of report, we send enough information to identify the subject of the report. We do not send your personal identifier information outside the United States except where such is required to conduct a background investigation, which is authorized by the subject of the investigation.

OPT-OUT OPTION

You Can Opt Out of Receiving Further Marketing from SecurTest at any time. We will send you information about our various products and services or other products and services we feel may be of interest to you. If you do not want to receive such mailings, simply tell us when you give us your personal information. Alternatively, at any time you can easily opt out of receiving further marketing from SecurTest by emailing us at optout@securtest.com. Please type “OPT OUT” in the subject line of your email.

Securtest CALIFORNIA consumer PRIVACY act policy

California Civil Code Section 1798.83 permits customers or subjects of our background reports (consumer reports) of SecurTest, Inc. who are California residents to request certain information regarding its disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please send an e-mail to CaliforniaRequest@securtest.com or write us: SecurTest, Inc. California Consumer Protection Department 600 Grand Panama Blvd., Suite 202, Panama City Beach, FL 32407. 

Introduction

SecurTest, Inc. is committed to the responsible use of information and protecting individual privacy rights. SecurTest strives to provide services to businesses, consumers, and government agencies that help make sound hiring decisions, mitigate risk, facilitate more informed business decisions, and make society safer.

SecurTest, Inc. (the “Company” or “we”) has developed this California privacy policy out of respect for the privacy of our clients, visitors to our website, job applicants, and independent contractors. This policy describes the personal information we collect, use, and disclose about individual clients, consumers, applicants, and contractors who visit or interact with this website, visit our Company headquarters, purchase, or inquire about any of our services, contract with us to provide services, apply for a position of employment, or otherwise interact or do business with us.

Whenever you visit our website, we will collect some information from you automatically simply by you visiting and navigating through this site, and some voluntarily when you submit information using various forms on the website, enroll in or subscribe to our newsletter or marketing communications, request information, or use any of the other interactive portions of our website. Through this website, we will collect information that can identify you and/or your activity.

Additionally, whenever you communicate, interact, or do business with us, whether online or at our headquarters, or whether you are contracted to perform services for us or apply for a position of employment, we will be collecting personal information from you or about you during our interaction or dealings with you.

Scope of Application

The California Consumer Privacy Act (the “CCPA,” as codified in Cal. Civ. Code §1798.100 et seq.) is a data privacy law that provides California residents with several privacy protections. It is important to note that the CCPA does not apply(or has specific exceptions) to the types of business services provided by SecurTest that are governed by the federal Fair Credit Reporting Act (the “FCRA”) as a consumer reporting agency, such as employment background screening If you are a U.S. resident, and were the subject of a background screen, and would like to exercise your rights under the FCRA; you can do so by emailing us at privacy@securtest.com.

Outside of FCRA-type services, the following SecurTest services may be subject to the CCPA, depending on your organization’s use of the services:

• Drug Testing
• Driver Services
• Fleet Compliance
• Fingerprinting
• I9 Services

This California Consumer Privacy Act privacy policy is provided by SecurTest that either (1) acts as a business within the meaning of the CCPA or (2) is controlled by SecurTest and uses the SecurTest name. This policy refers to these companies as “we” or “us.” California law requires us to disclose to California residents certain information regarding the categories of Personal Information we collect. For purposes of this section, “Personal Information” has the meaning provided by the California Consumer Privacy Act (the “CCPA”) and may exclude certain publicly available information, deidentified, aggregated, subject to GLBA, FCRA, HIPAA, or the Driver’s Privacy Protection Act of 1994, or otherwise exempt or excluded from the CCPA.

Use of Personal Information

SecurTest uses the Personal Information about you, which is subject to the CCPA, for the following purposes:

• Providing services to our clients (usually your employer).
• Enhancing and improving the services we provide our clients.
• Developing new functionality to offer to our clients.
• Establishing and maintaining communications with you and the SecurTest client you work with.
• Meeting legal, security, processing, and regulatory requirements.
• Ensuring the terms of the Service Agreement are complied with.
• Establishing, enforcing, or defending legal claims.
• Protecting against fraud, suspicious, or other illegal activities.
• Compiling statistics for analysis of the Sites and our business.

We may use Personal Information for any of the above purposes, but such use will be necessary and proportionate for such purpose.

Personal Information We Collect

SecurTest collects Personal Information in several different ways. We collect Personal Information from you directly when you interact with our services (“direct data collection”). We collect Personal Information automatically when you interact with our website or mobile applications (“navigational data collection”). Finally, we collect Personal Information from publicly available databases, such as public government records or other data compilers (“third-party data collection”).

Direct Data Collection

As part of our direct data collection, we collect the following categories of Personal Information about California consumers:

• Personal identifiers (such as first and last name, postal address, telephone number, social security number, and driver’s license).
• Sensitive Personal Information (such as physical characteristics, insurance policy number, bank account number, credit card number, debit card number, general financial information, medical information, health insurance information, precise geolocation information, race, or gender).
• Commercial or transactional data (such as records of property, products, or services purchased, obtained, or considered; vehicle information; insurance claims; insurance underwriting information); and
• Credential information (such as professional or employment-related information and educational information).

This information will be collected directly from you.

Third-Party Data Collection

As part of our third-party data collection, we collect the following categories of Personal Information about California consumers:

• Personal identifiers (such as first and last name, postal address, telephone number, social security number, and driver’s license).
• Sensitive Personal Information (such as physical characteristics, insurance policy number, bank account number, credit card number, debit card number, general financial information, medical information, health insurance information, race, or gender).
• Commercial or transactional data (such as records of property, products, or services purchased, obtained, or considered; vehicle information; insurance claims; insurance underwriting information); and
• Credential information (such as professional or employment-related information and educational information).

We will collect all this information from public sources or third parties legally permitted to provide such data.

Navigational Data Collection

For visitors to our website or users of our mobile applications (collectively, the “Sites”), we may also collect information using commonly used information-gathering tools, such as cookies and web beacons (collectively “Navigational Data”). Navigational Data includes standard information from your web browser (such as browser type and browser language), your Internet Protocol (“IP”) address, and the actions you take on the Site (such as the web pages viewed and the links clicked), embedded scripts, and entity tags (ETags). Where Navigational Data is attributable to you, directly or indirectly, we will consider it Personal Information.

Cookies

Like many companies, we may use cookies on the Site. Cookies are pieces of information shared between your web browser and a website. The use of cookies enables a faster and easier experience for the user. A cookie cannot read data off your computer’s hard drive. There are different kinds of cookies with different functions:

• Session cookies are only stored on your computer during your web session. They are automatically deleted when the browser is closed.
• Persistent cookies: A persistent cookie is stored as a file on your computer and remains there when you close your web browser. The cookie can be read by the website that created it when you visit that website again.
• First-party cookies: The function of this type of cookie is to retain your preferences for a particular website for the entity that owns that website. They are stored and sent between a SecurTest Party’s servers and your computer’s hard drive. They are not used for anything other than personalization, as you set. These cookies may be either Session or Persistent cookies.
• Third-party cookies: The function of this type of cookie is to retain your interaction with a particular website for an entity that does not own that website. They are stored and sent between the third-party server and your computer’s hard drive. These cookies are usually Persistent cookies.

IP Addresses

When you visit our Sites, we collect your IP addresses to track and aggregate visitor behavior. For example, we use IP addresses to monitor the regions from which users navigate the Sites.

Embedded Scripts

An embedded script is programming code designed to collect information about your interactions with the Site, such as the links you click on. The code is temporarily downloaded from our web server (or a third-party service provider), is active only while you are connected to the Site and is deactivated or deleted thereafter.

We use the above technologies (or ones we incorporate in the future) for the purposes set out above or as permitted by law.

Automated Preference Signals

Some browsers have attempted to implement the draft “Do Not Track” (“DNT”) standard of the World Wide Web Consortium (“W3C”). As this standard has not been finalized and is not generally accepted in the industry, the Sites are incompatible with DNT. Additionally, since we do not deploy third-party cookies for purposes of cross-contextual behavioral advertising, the Site does not respond to Global Privacy Control signals or similar browser settings.

Disclosure of Personal Information

We do not disclose any Personal Information about you to third parties except as stated in this Privacy Policy, as otherwise permitted by law, or as authorized by you. We may disclose Personal Information for any purposes stated in this Policy or as otherwise permitted by applicable law.

Third parties to whom we generally disclose information are required by law or a contract with us to keep your Personal Information confidential and secure, to use and disclose such Personal Information for purposes that a reasonable person would consider appropriate in the circumstances, and for purposes described earlier in this Policy.

Service Providers

We may disclose Personal Information to our Service Providers for any of the purposes stated in this Policy. Because a number of the service providers we use are in the United States, your Personal Information may be processed and stored inside the United States, and the U.S. government, courts, law enforcement, or regulatory agencies may be able to obtain disclosure of your Personal Information under US laws. We do not disclose Personal Information to service providers outside the scope of obtaining services from them. We may disclose your personal information to background screening providers or educational institutions upon your consent as part of our background screening services.

SecurTest Clients

Due to the nature of your relationship with a SecurTest client, we consider your personal information a business record of the client affiliated with you. As such, we may disclose your Personal Information to the client affiliated with you. We will do this for any of the purposes specified in this Policy, as well as upon your request or the client’s request.

Other Legally Required Disclosures

SecurTest reserves the right to disclose, without your prior permission, any Personal Information about you or your use of the Site if we have a good faith belief that such action is necessary to: (a) protect and defend the rights, property or safety of SecurTest, our employee, other users of the Site, or the public; (b) enforce the terms and conditions that apply to use of the Site; (c) as required by a legally valid request from a competent governmental authority; or (d) respond to claims that any content violates the rights of third-parties. We may also disclose Personal Information as we deem necessary to satisfy any applicable law, regulation, legal process, or governmental request.

Should law enforcement contact us with a demand for Personal Information, we will attempt to redirect the law enforcement agency to request that data directly from you. If compelled to disclose Personal Information to law enforcement, we will promptly notify you and provide you a copy of the demand unless legally prohibited from doing so. If we are compelled by law to delete Personal Information, we will promptly comply and, if legally permitted, notify you of such deletion.

Your Rights Regarding Personal Information

California residents have certain rights with respect to the Personal Information collected by businesses. As a California resident, you may exercise the following rights regarding your Personal Information:

The Right To Know

This section applies only to California residents who are natural persons; it does not apply to any entities (whether business, non-profit, or governmental). If you are a California resident, you have the following rights:

(a) the categories and specific pieces of Personal Information we collect, use, and disclose about you; (b) the categories of sources of the Personal Information; (c) the categories of Personal Information that we have disclosed to third parties for a business purpose, and the categories of recipients to whom this information was disclosed; (d) the business or commercial purposes for collecting Personal Information.

• The right to correct Personal Information that may need to be corrected.
• The right to request that we delete the Personal Information we have collected from you.
• Any disclosure of your Personal Information to a SecurTest client is at your direction.
• The right not to receive discriminatory treatment for the exercise of the privacy rights conferred by the CCPA.

Please note that these rights are not absolute and are subject to several exceptions. Should we decline any request to exercise a right noted below, we will explain the reason for our declining such request.

Rights Under the CCPA and CPRA

1. The right to request, up to 2 times in a 12-month period, that we identify to you (1) the categories of personal information we have collected about you going back to January 1, 2022, unless doing so would be impossible or involve disproportionate effort, or unless you request a specific time period, (2) the categories of sources from which the personal information was collected, (3) the business or commercial purpose for collecting, selling, or sharing this information, (4) the categories of third parties with whom we share or have shared your personal information;

2. Right to Access. The right to request, up to 2 times in a 12-month period, that we disclose to you, free of charge, the specific pieces of personal information we have collected about you going back to January 1, 2022, unless doing so would be impossible or involve disproportionate effort, or unless you request a specific time period.

Right to Delete. The right to request, up to 2 times in a 12-month period, that we delete personal information that we collected from you, subject to certain exceptions.

Exercising Your Rights

To exercise any of the above rights, please contact us using the following information and submit the required verifying information, as further described below:

By email at privacy@securtest.com

By phone at 1-800-845-6004

By mail to:

600 Grand Panama Blvd., Suite 202,
Panama City Beach, FL 32407

Privacy Policy for California Residents
Privacy Policy

Use of Credit Reports – California Residents

SecurTest generally does not provide credit reports where the subject of the report lives in California due to Assembly Bill 22 that became effective on January 1, 2012. California clients requesting credit reports MUST ensure compliance with all applicable laws and provide proof of the need for a credit report as part of the consumer authorization. Employers must adhere to the California law, as there are strict rules and restrictions on ordering and using consumer credit reports for hiring or employment purposes. Clients with applicants or employees residing in California that require credit reports as part of the employment process are required to submit a separate authorization and statement of purpose that the subject of the investigation must sign when ordering such credit reports from SecurTest.

Verification Process and Required Information

Note that we may need to request additional information from you to verify your identity or understand the scope of your request, although you will not be required to create an account with us to submit a request or have it fulfilled. To exercise your rights for a copy of the specific pieces of Personal Information we process under the CCPA, we will require you to provide, at a minimum, first name, last name, social security number, and address. For requests submitted by mail, you will need to send copies of two forms of identification that include your first name, last name, and current address.

In certain circumstances, we may decline a request to exercise the right to know and/or right to deletion, particularly where we are unable to verify your identity or where the information is subject to an exemption, as discussed above.

Authorized Agent

You may designate an authorized agent to make a CCPA request on your behalf through the designated methods set forth in these disclosures, where we can verify the authorized agent’s authority to act on your behalf.

For requests to know or delete Personal Information: (i) receiving a power of attorney valid under the laws of California from you or your authorized agent; or (ii) receiving sufficient evidence to show that you have: (a) provided the authorized agent signed permission to act on your behalf; (b) verified your own identity directly with us pursuant to the instructions set forth in these Disclosures; and (c) directly confirmed with us that you provided the authorized agent permission to submit the request on your behalf. This may be done by mailing two forms of identification showing your first name, last name and current address and a signed authorization allowing an agent to request information on your behalf.

Safeguards

We have reasonable safeguards appropriate to the sensitivity of the information we maintain. Safeguards will vary depending on the sensitivity, format, location, amount, distribution, and storage of the Personal Information. They include physical, technical, and managerial measures to keep Personal Information protected from unauthorized access. Note that due to the nature of the Internet and related technology, we cannot absolutely guarantee the security of Personal Information disclosed over the Internet, and SecurTest expressly disclaim any such obligation.

Changes

If there is any material change to your rights under this Policy, SecurTest will provide you with notice of such change 30 calendar days before the changes go into effect. As part of this notice, SecurTest may post a notice of the change on the Site in a clear and conspicuous manner for the 30-day calendar-day notice period. SecurTest may also communicate the change via email or postal mail if this is the way that SecurTest normally corresponds with you. Please note that your continued use of the Site once this 30 calendar day period is over indicating your agreement to the changes that were the subject of the notice.

4. Right to Correct. The right to request that we correct inaccurate personal information (to the extent such an inaccuracy exists) that we maintain about you.

5. The right to designate an authorized agent to submit one of the above requests on your behalf. See below for how you can designate an authorized agent; and

6. The right to not be discriminated or retaliated against for exercising any of the above rights, including an applicant’s and independent contractor’s right not to be retaliated against for exercising the above rights.

You can submit any of the above types of consumer requests through any of the 3 options below:

1. Submit an online request to privacy@securtest.com

2. Call our privacy toll-free line at 1-800-445-8001.

How We Will Verify That it is You Are Submitting the Request

If you are a California resident, when you submit a Right to Know, Right to Access, Right to Delete, or Right to Correct request through one of the methods provided above, we will ask you to provide some information to verify your identity and respond to your request. Specifically, we will ask you to verify information that can be used to link your identity to particular records in our possession, which depends on the nature of your relationship and interaction with us. For example, we may need you to provide your name, email, phone number, IP address, browser ID, amount of your last purchase with the business, and/or date of your last transaction with the business.

Responding to Your Right to Know, Right to Access, Right to Delete, and Right to Correct Requests

Upon receiving a verifiable request from a California resident, we will confirm receipt by ten business days after receiving it. We endeavor to respond to a verifiable request within forty-five (45) calendar days of receipt. If we require more time (up to an additional 45 calendar days, or 90 calendar days total from the date we receive your request), we will inform you of the reason and extension period in writing. We will deliver our written response by mail or electronically, at your option. Our response will also explain why we cannot comply with a request, if applicable.

We only charge a fee to process or respond to your verifiable request if it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide a cost estimate before completing your request.

For a request to correct inaccurate personal information, we will accept, review, and consider any documentation you provide, and we may require that you provide documentation to rebut our own documentation that the personal information is accurate. You should make a good-faith effort to provide us with all necessary information at the time that you make the request to correct. We may deny a request to correct if we have a good faith, reasonable, and documented belief that a request to correct is fraudulent or abusive. If we deny your request to correct, we shall inform you of our decision not to comply and provide an explanation as to why we believe the request is fraudulent.

If You Have an Authorized Agent:

If you are a California resident, you can authorize someone else as an authorized agent who can submit a request on your behalf. To do so, you must either (a) execute a valid, verifiable, and notarized power of attorney or (b) provide other written, signed authorization that we can then verify. When we receive a request submitted on your behalf by an authorized agent who does not have a power of attorney, that person will be asked to provide written proof that they have your permission to act on your behalf, and we will also contact you and ask you for information to verify your own identity directly with us and not through your authorized agent. We may deny a request from an authorized agent if the agent does not provide your signed permission demonstrating that they have been authorized by you to act on your behalf.

FREQUENTLY ASKED QUESTIONS

• How secure is my information?

  SecurTest recognizes the importance of secure online transactions and takes steps to safeguard the privacy of information you provide through online forms. For your online authorization or use of iReviewNow, programs encrypt the information you provide on the request form before transmission to our secure computer systems. This information is decrypted only upon receipt by us. Physical, electronic, and procedural safeguards designed to guard your personally identifiable information are maintained in strict adherence to government and industry regulations and standards. Further, our website’s security protocols and measures are designed to protect the personally identifiable information you provide from unauthorized access or alteration. These measures include physical security, technological security measures, and encryption of certain information.

• Is it safe to provide my Social Security Number, government issued identification number or Date of Birth?

  You must provide your Social Security Number, Date of Birth, and at times government issued identification numbers, such as passport or driver’s license numbers for us to conduct a background investigation. We use this information to ensure we only report records associated with you, as a name match could result in reporting information that is not your record. The site’s security protocols and measures are designed to protect the personally identifiable information you provide from unauthorized access or alteration. As an added security measure, except when your report is transmitted to those entities requiring your PII data, such as government users, we do not report your date of birth and mask your social security number where no more than the last four digits are visible.

• How does the online authentication process work?

  To assure that we have your consent to conduct the background investigation, we require that you have signed an authorization form or given authorization by electronic signature. An electronic signature is a specific process wherein you consent to the background check, our policies, and our procedures as if signing the document. The End-User of our reports have agreed to securely store your authorizations. Often your authorizations are securely transmitted to SecurTest or iReviewNow and securely stored on our computer servers or systems. We authenticate your identity utilizing the personal identification information you provide, including, but not limited to, your Social Security number and date of birth. For your protection, if your identity cannot be authenticated, you will receive further instructions on how to verify your identity. Failure to authenticate your identity is not an indicator of fraudulent activity or identity theft.

• How can I learn more about guarding against internet fraud and protecting my personal information?

  OnGuardOnline.gov provides practical tips from the federal government and the technology industry to help you be on guard against phishing and internet fraud, secure your computer, and protect your personal information.

• How do I request a “fraud alert” be placed on credit file?

  You have the right to ask that nationwide consumer credit reporting companies place “fraud alerts” in your file to let potential creditors and others know that you may be a victim of identity theft. A fraud alert can make it more difficult for someone to get credit in your name because it tells creditors to follow certain procedures to protect you. It also may delay your ability to obtain credit. You may place a fraud alert in your file by calling just one of the three nationwide consumer credit reporting companies. As soon as that agency processes your fraud alert, it will notify the other two, which then also must place fraud alerts in your file.

  Equifax: 1-877-576-5734. www.alerts.equifax.com
  Experian: 1-888-397-3742. www.experian.com/fraud
  TransUnion: 1-800-680-7289. www.transunion.com

DATA INTEGRITY AND SECURITY

SecurTest and iReviewNow uses reasonable efforts to maintain the accuracy and integrity of Personal Data and to update it as appropriate. We have implemented physical and technical safeguards to protect Personal Data from loss, misuse, and unauthorized access, disclosure, alternation, or destruction. For example, electronically stored Personal Data is stored on a secure network with firewall protection, and access to SecurTest's electronic information systems requires user authentication via password or similar means. SecurTest also employs access restrictions, limiting the scope of Employees who have access to Data Subjects’ Personal Data.

Further, SecurTest uses secure encryption technology to protect certain categories of data. All data is encrypted (for example using HTTPS) when it is transmitted outside SecurTest’s firewall, and certain types of data are encrypted at all times in the System. Despite these precautions, no data security safeguards guarantee 100% security all the time.

Jurisdiction

You agree in using our websites that jurisdiction shall be in Bay County, Florida, USA where allowed by law.

Updates 

If we change this policy in the future, we will post the changes here and indicate the date of the changes at the top of the policy.

Problems or Complaints with Our Privacy Policy 

If you have a complaint about our compliance with this privacy policy, you may contact us at privacy@securtest.com.   

INTERNATIONAL DATA TRANSFERS

SecurTest complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. SecurTest has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. SecurTest has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the DPF Principles and/or the Swiss-U.S. DPF Principles (DPF Principles), the Principles shall govern. To learn more about the Data Privacy Framework Program (DPF Program), and to view our certification, please visit https://www.dataprivacyframework.gov/.

With respect to personal data received or transferred pursuant to the DPF Program, SecurTest is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission.

Pursuant to the DPF Program, EU, UK, and Swiss individuals have the right to obtain our confirmation of whether we maintain personal information relating to you in the United States. Upon request, we will provide you with access to the personal information that we hold about you. You may also correct, amend, or delete the personal information we hold about you. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data transferred to the United States in reliance on the DPF Program should direct their query to privacy@securtest.com. If requested to remove data, we will respond within a reasonable timeframe.

We will provide an individual opt-out choice, or opt-in for sensitive data, before we share your data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. To request to limit the use and disclosure of your personal information, please submit a written request to privacy@securtest.com

In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

If you are an EU, UK, or Swiss Individual, where we transfer your personal data to third party service providers who perform services for us or on our behalf, we are responsible for the processing of that data by them and shall remain liable if they process your personal data in a manner inconsistent with the DPF Principles, unless we prove that we are not responsible for the event giving rise to the damage.

In compliance with the DPF Principles, SecurTest commits to resolve DPF Principles-related complaints about your privacy and our collection or use of your personal information. European Union, United Kingdom, and Swiss individuals with inquiries or complaints regarding our handling of personal data in reliance on the DPF should first contact SecurTest

SecurTest has further committed to refer unresolved DPF Principles-related complaints to a U.S.-based independent dispute resolution mechanism, BBB NATIONAL PROGRAMS. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed by us, please visit www.bbbprograms.org/dpf-complaints for more information and to file a complaint. This service is provided free of charge to you.

If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See https://www.dataprivacyframework.gov/framework-article/ANNEX-I-introduction for more information on this process.