The CTEH, LLC (CTEH®) Carbon software platforms, which include websites located at CarbonCM.com and carbonapps.io, Privacy and Security Policy (referred to herein as “Policy”) provides users with the information regarding the collection and use of information that can personally identify you whether you are a first-time or repeat user of Carbon software, which include websites located at CarbonCM.com and carbonapps.io (collectively referred to herein as the “Service”). This Policy describes the choices available to you regarding our use of your personal information and how you can access and update this information. Unless different terms and conditions are specified in a form or contract provided to you by CTEH, the terms and conditions of this Privacy Policy apply to CTEH’s collection and use of personally-identifying information collected and stored on our websites.
Scope
This Policy applies to ALL users of CarbonCM.com and carbonapps.io.
All CTEH and its affiliates’ executives, directors, managers, assistants, and employees, as well as all our consultants, contractors, interns, and users of the Service, including but not limited to customers and clients, are bound by the terms of this Policy. This Policy shall include The Center for Toxicology and Environmental Health, LLC dba CTEH, LLC and its affiliates and any other entity either now existing or hereinafter organized that falls under the umbrella of Montrose Environmental Group, Inc., which is the parent company of CTEH. All employees, as well as consultants enrolled in Qualified[BF1] [AP2] , and interns are responsible for following this Policy. This Policy is to be distributed to all persons using or accessing CTEH information resources and assets. Furthermore, our privacy statement is posted on our websites under Privacy (https://www.cteh.com/carbon-privacy).
Information Collection and Use
The Service collects contact information from users upon account creation. We will not sell, share, or rent this contact information to others in ways different from what is disclosed in this statement. Such data is securely stored and heavily guarded to prevent unauthorized access.
Registration
To use the Service, a user must first complete the electronic registration form. During registration a user is required to give their contact information (such as name, email address) and unique identifiers (such as username and password). This information is only used to contact the user about the services on our site for which they have expressed interest.
Tracking Technologies
Technologies used by the Service include cookies and scripts. These technologies are used in analyzing trends, administering the site, tracking users’ movements around the site and to gather demographic information about our user base as a whole. We may produce aggregated reports based on the use of these technologies by our users on an individual as well as aggregated basis.
We use cookies to remember users’ settings and for authentication. Users can control the use of cookies at the individual browser level. If you reject cookies, you may still use our site, but your ability to use some features or areas of our site may be limited.
As is true of most web sites, we gather certain information automatically and store it in log files. This information may include internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, and date/time stamp. CTEH does not link this automatically collected data to other information we collect about you.
Security
The Service takes every precaution to protect our users’ information. When users submit sensitive information via the website, your information is protected through end-to-end encryption. We implement all necessary measures to maintain high-level protection against unauthorized access. Once your information reaches us, it resides on servers that are heavily guarded both physically and electronically.
- Physical security: The Service is hosted on highly reliable, secure, and redundant servers, located in secure colocation facilities, which deliver multi-level physical security for mission-critical Internet operations. All areas of the facilities are monitored and recorded using CCTV, and all access points are controlled.
- Application security: All servers are sitting behind an electronic firewall. All drives use NTFS partitions. All Microsoft patches, hot fixes, and updates are installed on an as needed basis, and the most critical are installed immediately upon release. All hyperlinks are secured with Secure Sockets Layer protocol (SSL) encryption. The Service automatically encrypts your confidential information in transit from your computer to ours using the SSL with an encryption key length of 256-bits and encrypts it at rest using Transparent Data Encryption (TDE).
Correcting and Updating Personal Information
If a user’s personally identifiable information changes, or if users no longer desire our service and want to close their account, we will endeavor to provide a way to correct, update, or “disable” access to users. When a user is no longer active, their role will be changed to “disabled”. We will retain your information for as long as your account is active or as needed to provide the Service to you and our clients or customers. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
Limitations
It is CTEH’s policy to respect the privacy of its customers and users of the Service. Therefore, CTEH will not monitor, edit, or disclose the contents of your personal account unless required to do so by law, in accordance with a judicial or other governmental subpoena, warrant, or order. Or unless CTEH believes that such action is necessary to; (1) conform to the law or comply with legal process; (2) protect and defend the rights or property of CTEH and/or its affiliates; or (3) act under exigent circumstances to protect the personal safety of its customers, users, or the public.
Links to Third-Party Sites
The Service interfaces may include links to other websites whose privacy practices may differ from those of CTEH. If you submit personal information to any of those sites, your information is governed by their privacy policies. We encourage you to carefully read the privacy policy of any website you visit.
Changes in this Privacy Statement
If we decide to change our privacy policy, we will post those changes to this privacy statement, the homepage, and other places we deem appropriate so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it.
We reserve the right to modify this privacy statement at any time, so please review it frequently. If we make material changes to this policy, we will provide a notice on our home page prior to the change becoming effective.
Contact Us
If you have questions or complaints regarding our privacy policy or practices, please contact us at:
E-mail: webquestion@cteh.com
Phone: 501-801-8500
Postal address: 5120 Northshore Drive, North Little Rock, Arkansas 72118