online privacy and security policy

our commitment to privacy

Your privacy is very important to BlueOx Credit Union. Part of our operation of this website involves the collection and use of information about you. This privacy policy explains what type of information we collect and what we do with that information to allow you to make choices about the way your information is collected and used. This privacy policy may change from time to time, so please check it often.

protecting children’s privacy online

The Children’s Online Privacy Protection Act (COPPA) was passed by Congress in October 1998, with a requirement that the Federal Trade Commission (FTC) issue and enforce rules concerning children’s online privacy. The primary goal of the Act and the Rule is to place parents in control over what information is collected from their children online. BlueOx Credit Union does not knowingly solicit, collect, nor is our website designed or directed to use personal information from children under the age of 13 without containing verifiable consent from their parents. For more information regarding COPPA, visit ftc.gov.

what information do we collect?

In general, you can visit the public portion of this website without identifying who you are or revealing any information about yourself. Information collected online can generally be categorized as anonymous or personally identifiable. Anonymous information is information that cannot be connected to the identity of a specific individual. Personally identifiable information is information that specifically identifies a particular user, such as name, address or phone number. An example of anonymous information is the fact that, while this website may record the number of visits to a particular page that occur in a given period of time, it does not necessarily tell us the names or other identifying information of every visitor. Many users of this website will choose not to provide any personally identifiable information; therefore, those individuals are anonymous to us, and any data collected about their use of this website is anonymous information.

automatic anonymous information

When you visit our site, we collect certain technical and routing information about your computer. For example, we log environmental variables such as browser type, operating system, and the Internet Protocol (IP) address of your originating Internet Service Provider, to try to bring you the best possible service. We also record search requests and results to try to ensure the accuracy and efficiency of our search engine. We use your IP address to track your use of the site, including pages visited and the time spent on each page. We collect this information and use it to measure the use of this website and to improve its content and performance. All of the information that is automatically submitted to us by your browser is considered anonymous information. To the extent we share such information with third parties, it is not traceable to any particular user and will not be used to contact you.

cookies

This site uses cookies. Cookies are small data files, typically made up of a string of text and numbers, that assign you a unique identifier. This information enables your computer to have a “dialogue” with our site and permits us to administer our site more efficiently and to provide a more tailored and user-friendly service to you. You may set your browser to notify you when you receive a cookie or to prevent cookies from being sent; if you do so, this may limit the functionality we can provide you when you visit our site.

Third parties that link on this site may use cookies or collect other information when you go to their site. We do not control the collection or use of your information by these companies. You should contact these companies directly if you have any questions about their collection or use of information about you.

how do we use information we collect?

We collect personally identifiable information only for providing the services you request, generating statistical studies, conducting marketing research, improving products and services, sending you surveys, and notifying you of new products and any other changes to our site or services that may affect you. When you submit personally identifiable information to us, you understand that you are agreeing to allow us to access, store and use that information for those purposes.

We will not sell or give any personally identifiable information to any third parties except with your consent or as may be required by law enforcement or judicial authorities to provide personally identifiable information to the appropriate governmental authorities. If requested by law enforcement or judicial authorities, we will provide this information on receipt of the appropriate documentation. We may also release information to law enforcement agencies or other third parties if we feel it is necessary to protect the safety and welfare of our personnel or to enforce our terms of use.

security

We operate secure data networks protected by industry standard firewall and password protection systems. Our security and privacy policies are periodically reviewed and enhanced as necessary, and only authorized individuals have access to the personally identifiable information provided by our users. We do not; however, guarantee that unauthorized, inadvertent disclosure will never occur, and disclaim any warranties, express or implied.

linked third-party sites

As a convenience to you, we may provide on this site links to websites operated by other entities (collectively the “Linked Sites”). If you use any Linked Sites, you will leave this site. If you decide to visit any Linked Site, you do so at your own risk and it is your responsibility to take all protective measures to guard against viruses or other destructive elements. Linked Sites, regardless of the linking form, are not maintained, controlled or otherwise governed by BlueOx Credit Union. The content, accuracy, opinions expressed, and other links provided by Linked Sites are not investigated, verified, monitored or endorsed by BlueOx Credit Union, which does not endorse, make any representations regarding, or warrant any information, goods, and/or services appearing and/or offered on any Linked Site. Links do not imply that BlueOx Credit Union or this site sponsors, endorses, is affiliated or associated with, or is legally authorized to use any trademark, trade name, logo, or copyright symbol displayed in or accessible through the links, or that any Linked Site is authorized to use any trademark, trade name, logo or copyright symbol of BlueOx Credit Union. BlueOx Credit Union is neither responsible for nor will it be liable under any theory based on (i) any Linked Site; (ii) any information and/or content found on any Linked Site; or (iii) any site(s) linked to or from any Linked Site. If you decide to visit any Linked Sites and/or transact any business on them, you do so at your own risk. BlueOx Credit Union reserves the right to discontinue any Linked Site at any time without prior notice. Please contact the webmasters of any Linked Sites concerning any information, goods, and/or services appearing on them.

biometric information privacy and consent

scope and overview

This policy outlines how BlueOx Credit Union, its vendors, and/or the licensor of the BlueOx Credit Union’s consumer verification software processes biometric data collected from you for identity verification and fraud prevention purposes. 

biometric data defined

As used in this policy, biometric data includes “biometric identifiers” and “biometric information”. “Biometric identifier” means a retina or iris scan, fingerprint, voiceprint, or scan of hand or face geometry. As the term is used in this policy, the selfie photograph you upload to the software for use in the biometric algorithm is considered a "biometric identifier." “Biometric information” means any information, regardless of how it is captured, converted, stored, or shared, based on an individual’s biometric identifier used to identify an individual.  

disclosure and Authorization Policy

To the extent that BlueOx Credit Union, its vendors, and/or the licensor of the BlueOx Credit Union’s consumer verification software collect, capture, or otherwise obtain biometric data relating to a consumer, BlueOx Credit Union must first: Inform each consumer that BlueOx Credit Union, its vendors, and/or the licensor of the BlueOx Credit Union’s consumer verification software are collecting, capturing, or otherwise obtaining the employee’s biometric data, and that the BlueOx Credit Union is providing such biometric data to its vendors and the licensor of the BlueOx Credit Union’s consumer verification software; Inform the consumer of the specific purpose and length of time for which the consumer’s biometric data is being collected, stored, and used; and Receive consent by the consumer authorizing BlueOx Credit Union, its vendors, and/or BlueOx Credit Union’s consumer verification software to collect, store, and use the consumer’s biometric data for the specific purposes disclosed by the BlueOx Credit Union, and for BlueOx Credit Union to provide such biometric data to its vendors and the licensor of the BlueOx Credit Union’s consumer verification software. BlueOx Credit Union, its vendors, and/or the licensor of the BlueOx Credit Union’s consumer verification software will not sell, lease, trade, or otherwise profit from employees’ biometric data; provided, however, that the BlueOx Credit Union’s vendors and the licensor of the BlueOx Credit Union’s consumer verification software may be paid for products or services used by BlueOx Credit Union that utilize such biometric data. This policy is intended to comply with all federal, state, and local laws.

purpose for the Collection of Biometric Data

BlueOx Credit Union, its vendors, and/or the licensor of BlueOx Credit Union’s consumer verification software collect, store, and use biometric data solely for identity verification and fraud prevention purposes.

disclosure

BlueOx Credit Union will not disclose or disseminate any biometric data to anyone other than its vendors and the licensor of the BlueOx Credit Union’s consumer verification software providing products and services using biometric data without/unless: First obtaining consumer consent to such disclosure or dissemination; The disclosed data completes a financial transaction requested or authorized by the consumer; Disclosure is required by law or ordinance; or Disclosure is required pursuant to a valid warrant or subpoena issued by a court of competent jurisdiction.

security

BlueOx Credit Union shall use a commercially reasonable standard of care to store, transmit and protect from disclosure any biometric data collected. Such storage, transmission, and protection from disclosure shall be performed in a manner that is the same as or more protective than the manner in which BlueOx Credit Union stores, transmits and protects from disclosure other confidential and sensitive information, including personal information that can be used to uniquely identify an individual or an individual’s account or property, such as genetic markers, genetic testing information, account numbers, PINs, driver’s license numbers and social security numbers.

retention

BlueOx Credit Union shall retain consumer biometric data only until, and shall request that its vendors and the licensor of BlueOx Credit Union’s consumer verification software permanently destroy such data when, the first of the following occurs: The initial purpose for collecting or obtaining such biometric data has been satisfied, such as verification of consumer identity; Request of consumer to destroy the biometric data; or Within 30 days of consumer’s provisioning of biometric data.

contact information

If you have any questions about our use, storage, or security of your biometric data you can contact us at: contactcenter@blueoxcu.org.

biometric information consumer consent

As outlined in the “Biometric Information Privacy Policy”, I understand and consent to the collection, use, retention, storage, and/or disclosure or re-disclosure of data or images from biometric verification technology by BlueOx Credit Union, its vendors, and/or the licensor of the BlueOx Credit Union’s consumer verification software. I acknowledge that I have been given a copy of the Policy, or that the Policy has been made accessible to me, and I have had an opportunity to review it and request any additional information concerning the BlueOx Credit Union’s procedures and safeguards for collecting, maintaining, using, disclosing, sharing, storing, and/or destroying this data.