Last Updated and Effective: December 30,2019
Consent to Use Personal Information
For the purposes of the Data Protection Act(s) 1984 and 1998 (as applicable), NPA or its agents must store, host and otherwise process the information (including personal data) supplied by the User when registering for this Web site. NPA may send such data outside the European Economic Area for processing. If you reside in the European Union, please indicate your consent that the personal information you have provided may be transferred and stored in countries outside of the EU, including the United States. User supplies as defined above when registering for the Web site in order to allow NPA (or its designated agents) to use the information to send the User unsolicited direct mail advertisements, promotions, and solicitations for third parties' products and services.
Type of Data Collected
While using Our Services (website, blog, app) we may ask you to provide us with certain personally identifiable information (PII) through direct web forms that can be used to contact or identify you. We collect information from you when you register on our site to make use of our services, place an order, subscribe to a newsletter, or respond to a survey. PII may include, but is not limited to:
• Email address
• First and last name
• Phone number
• Work or Business name
• Mailing Address, State, Province, Zip/postal code, City
• Billing Address, State, Province, Zip/postal code, City
• Credit card information (NPA does not store this data)
• Usage data
Usage Data may be collected automatically when using the Service.
Usage Data may include information such as your Device's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
When you access the Service by or through a mobile device, We may collect certain information automatically, including, but not limited to, the type of mobile device you use, your mobile device unique ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browser you use, unique device identifiers and other diagnostic data.
We may also collect information that your browser sends whenever you visit our Service or when you access the Service by or through a mobile device.
How do we use your information?
We may use the information we collect from you when you become an NPA member, register, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, browse the website, or use certain other site features in the following ways:
• To personalize your experience with offering in which you are most interested
• To improve our website in order to better serve you
• To allow us to better service you in responding to your customer service requests
• To administer a contest, promotion, survey or other site feature
• To process your order
• To ask for ratings and reviews of services or products
• To follow up with you after correspondence (email or phone inquiries)
How do we store and protect your information?
Your personal information is stored in databases contained behind secured networks and is only accessible by a limited number of persons with special access rights to such systems and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.
We implement a variety of security measures when a user places an order, enters, submits, or accesses their information to maintain the safety of your personal information.
All credit card transactions are processed through a gateway provider and are not stored or processed on our servers.
Credit Card Account Information
NPA does not disclose credit card account information provided by its members and customers. When members and customers choose to pay using their credit cards, NPA submits the information needed to obtain payment to the appropriate clearinghouse.
How can you make changes to your information?
As an NPA member, you may make changes to some of your Personal Information (name, email address, mailing and billing addresses, current place of employment and position) online via the Member Page. If not a n NPA member or for any additional relationship information, please contact us directly:
• Phone: 1-888-NPA-NPA0 (888-672-6720)
• Email: firstname.lastname@example.org
Do we use 'cookies'?
• Help remember and process the items in the shopping cartYou can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser settings. Since every browser is a little different, look at your browser's Help Menu to learn the correct way to modify your cookies.
• Understand and save user's preferences for future visits
• Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We may also use trusted third-party services that track this information on our behalf.
If users disable cookies in their browser:
If you turn cookies off it will turn off some of the features of the site.
NPA does not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when it's release is appropriate to comply with the law, enforce our site policies, or protect ours or others' rights, property or safety.
However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.
On occasion, NPA may provide limited data to third parties that offer products and services. These limited data include names, job titles, companies and preferred mailing address, but do not include phone numbers, fax numbers or e-mail addresses. Users may request NPA to refrain from disclosing the data it collects to third parties on the membership application form, or any other form on which they are providing information; an opt-out box will appear on each form on which a user provides information. Alternatively, users may contact NPA at www.npa.org or (888) NPA-NPA0 to express their preferences if they determine later that they do not wish to have the information shared.
We may include or offer third-party products or services on our website.
The NPA Web site contains links to other web sites. NPA has no control over and is not responsible for the privacy policies or content of such sites.
We may, along with third-party vendors such as Google use first-party cookies (such as the Google Analytics cookies) and third-party cookies (such as the DoubleClick cookie) or other third-party identifiers together to compile data regarding user interactions with ad impressions and other ad service functions as they relate to our website.
Users can set preferences for how Google advertises to you using the Google Ad Settings page. Alternatively, you can opt out by using the Google Analytics Opt Out Browser add-on.
California Online Privacy Protection Act (CalOPPA)
Users can visit our site anonymously.
You can change your personal information by:
• Visiting your NPA Member page at npa.org
• Calling: 1-888-NPA-NPA0 (888-672-6720)
• Email: email@example.com
Do Not Track Signals
There is no accepted standard on how to respond to Do Not Track signals. NPA takes privacy and security very seriously and strives to put our customers first in all aspects of our business. With regard to DNT, we do not respond to DNT signals in browsers because no standard has yet been adopted.
Children Online Privacy Protection Act (COPPA)
When it comes to the collection of personal information from children under the age of 13 years old, the Children's Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States' consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children's privacy and safety online.
NPA does not specifically market to children under the age of 13 years old.
Legal Basis for Processing Personal Data under GDPR
The Network Professioanl Association may process Personal Data under the following conditions:
• Consent: You have given Your consent for processing Personal Data for one or more specific purposes.In any case, we will gladly help to clarify the specific legal basis that applies to the processing, and in particular whether the provision of Personal Data is a statutory or contractual requirement, or a requirement necessary to enter into a contract.
• Performance of a contract: Provision of Personal Data is necessary for the performance of an agreement with You and/or for any pre-contractual obligations thereof.
• Legal obligations: Processing Personal Data is necessary for compliance with a legal obligation to which the NPA is subject.
• Vital interests: Processing Personal Data is necessary in order to protect Your vital interests or of another natural person.
• Public interests: Processing Personal Data is related to a task that is carried out in the public interest or in the exercise of official authority vested in the NPA.
• Legitimate interests: Processing Personal Data is necessary for the purposes of the legitimate interests pursued by the NPA.
Your Rights under the GDPR
The Network Professional Association undertakes to respect the confidentiality of Your Personal Data and to guarantee You can exercise Your rights.
• Request access to Your Personal Data. The right to access, update or delete the information We have on You. Whenever made possible, you can access, update or request deletion of Your Personal Data directly within Your account settings section. If you are unable to perform these actions yourself, please contact Us to assist You. This also enables You to receive a copy of the Personal Data We hold about You.Exercising of Your GDPR Data Protection Rights
• Request correction of the Personal Data that We hold about You. You have the right to have any incomplete or inaccurate information We hold about You corrected.
• Object to processing of Your Personal Data. This right exists where We are relying on a legitimate interest as the legal basis for Our processing and there is something about Your particular situation, which makes You want to object to our processing of Your Personal Data on this ground. You also have the right to object where We are processing Your Personal Data for direct marketing purposes.
• Request erasure of Your Personal Data. You have the right to ask Us to delete or remove Personal Data when there is no good reason for Us to continue processing it.
• Request the transfer of Your Personal Data. We will provide to You, or to a third-party You have chosen, Your Personal Data in a structured, commonly used, machine-readable format. Please note that this right only applies to automated information which You initially provided consent for Us to use or where We used the information to perform a contract with You.
• Withdraw Your consent. You have the right to withdraw Your consent on using your Personal Data. If You withdraw Your consent, We may not be able to provide You with access to certain specific functionalities of the Service.
You may exercise Your rights of access, rectification, cancellation and opposition by contacting Us. Please note that we may ask You to verify Your identity before responding to such requests.
You have the right to complain to a Data Protection Authority about Our collection and use of Your Personal Data. For more information, if You are in the European Economic Area (EEA), please contact Your local data protection authority in the EEA.
California Consumer Protection Act (CCPA)
Your Rights under the CCPA
• The right to notice. You must be properly notified which categories of Personal Data are being collected and the purposes for which the Personal Data is being used.
• The right to access / the right to request. The CCPA permits You to request and obtain from the NPA information regarding the disclosure of Your Personal Data that has been collected in the past 12 months by the NPA or its subsidiaries to a third-party for the third party's direct marketing purposes.
• The right to say no to the sale of Personal Data. You also have the right to ask the NPA not to sell Your Personal Data to third parties. You can submit such a request by updating your member profile at www.npa.org or notifying firstname.lastname@example.org.
• The right to know about Your Personal Data. You have the right to request and obtain from the NPA information regarding the disclosure of the following:• The categories of Personal Data collected• The right to delete Personal Data. You also have the right to request the deletion of Your Personal Data that have been collected in the past 12 months.
• The sources from which the Personal Data was collected
• The business or commercial purpose for collecting or selling the Personal Data
• Categories of third parties with whom We share Personal Data
• The specific pieces of Personal Data we collected about You
• The right not to be discriminated against. You have the right not to be discriminated against for exercising any of Your Consumer's rights, including by:• Denying goods or services to You
• Charging different prices or rates for goods or services, including the use of discounts or other benefits or imposing penalties
• Providing a different level or quality of goods or services to You
• Suggesting that You will receive a different price or rate for goods or services or a different level or quality of goods or services
Exercising Your CCPA Data Protection Rights
In order to exercise any of Your rights under the CCPA, and if you are a California resident, You can email email@example.com, call us at 1-888-672-6720 or visit our Contact Us Form at https://www.npa.org/public/contactus.cfm.
The NPA will disclose and deliver the required information free of charge within 45 days of receiving Your verifiable request. The time period to provide the required information may be extended once by an additional 45 days when reasonably necessary and with prior notice.
We will not discriminate against you for exercising any of your CCPA rights. We will not:
• Deny you goods or servicesSale of Personal Information
• Charge you a different price or rates for goods or services, including through granting discounts or other benefits, or imposing penalties
• Provide you a different level of quality goods or services
• Suggest that you may receive a different price or rate for goods or services or a different level of goods or services
The Network Professional Association does not sell personal information.
Personal Information Disclosed for Business Purposes
We engage certain trusted third parties to perform functions and provide services to us, including error monitoring, debugging, performance monitoring, payment processing, customer relationship, database storage and management, and direct marketing campaigns. We may share your Personal Information with these third parties, but only to the extent necessary to perform these functions and provide such services. We also require these third parties to maintain the privacy and security of the Personal Information they process on our behalf.
• Evalon - https://www.elavon.com/privacy-policy.htmlSystem support providers
• WellsFargo - https://www.wellsfargo.com/privacy-security/
• Newtek Technology Solutions - https://www.newtekwebhosting.com/privacy-policy/
Fair Information Practices
We will take the following responsive action, should a data breach occur:
We will notify you via email within 7 business days
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
We collect your email address in order to:
• Send information, respond to inquiries, and/or other requests or questionsTo be in accordance with CANSPAM, we agree to the following:
• Process orders and to send information and updates pertaining to orders
• Send you additional information related to your product and/or service
• Market to our mailing list or continue to send emails to our clients after the original transaction has occurred
• Not use false or misleading subjects or email addresses
• Identify the message as an advertisement in some reasonable way
• Include the physical address of our business or site headquarters
• Monitor third-party email marketing services for compliance, if one is used
• Honor opt-out/unsubscribe requests quickly
• Allow users to unsubscribe by using the link at the bottom of each email.
If at any time you would like to unsubscribe from receiving future emails, follow the instructions at the bottom of each email to be promptly removed.
The Network Professional Association
1401 Hermes Lane
San Diego, CA 92154