Disclosure. We will not trade, sell, or rent your PII to third parties, except that we reserve the right to transfer your PII to appropriate third parties in the event that we sell all or part of our business, make a sale or transfer of all or substantially all of our assets, or in the event that we are involved in a merger. In the event that we disclose your information in the course of any such sale, transfer, or merger, your information will remain subject to the terms and conditions of this policy and any amendments thereto. Also, if we do disclose your PII in the course of a sale, transfer, or merger of one of our companies, please be advised that we will continue to store your PII until such time as you request that it be deleted. We will not otherwise make your information available to third parties, except when necessary to assist our service providers and vendors in completing authorized undertakings, and/or where necessary to provide confirmation of purchases to persons or entities who require such information to ensure successful fulfillment of any purchases made on our site. We do, however, reserve the right to disclose user PII without user permission in order to protect our legal rights, to comply with the law or legal process, to protect the integrity of our site, and/or to protect the safety and security of site users and visitors. Internally, your information will only be available to employees who have the proper security clearance.
Security. We use a variety of methods to protect your information, both during transmission and after receipt, from unauthorized access, use and disclosure. Any PII that you transmit to us is protected during transmission by Secure Sockets Layer (SSL) technology. SSL technology enables encryption of sensitive information during online transmissions. Any PII that you transmit to us, with the exception of credit card information, is then stored on our database servers. Our database servers are both firewall protected and password protected. In addition, while stored on our database servers, your user password will be encrypted with the 128-bit Advanced Encryption Standard (AES). Our database servers are stored with an off-site agent in secure facilities, and can only be accessed by an authorized representative of our off-site agent. Our off-site agent takes numerous physical security measures to protect our database servers from unauthorized access, including: electronic surveillance by Electronic Protection Systems, Inc.; dedicated network operations center support 24/7/365; security keys to access the server co-location area; and combination locks on doors used to access equipment in the server co-location area. Your credit card information, once collected, is sent to Authorize.net LLC (a CyberSource Corporation company), for additional storage security. Once your credit card information has been sent to Authorize.net LLC, we can make authorized transactions using your credit card, but even we are unable to access your credit card information. Authorize.net LLC uses various tools, including encryption technology, to protect confidential data both during the transmission of such data and while such data is being stored. Authorize.net LLC also uses software programs to identify unauthorized attempts to upload or modify information stored in its systems, or to otherwise cause damage to its systems. In the event that we elect to use a different payment processor, notice of such election and notice of the payment processor’s data security practices will be posted as amendments to this policy. While we strive to provide a secure data transfer and storage environment, there are always potential security risks when doing business over the Internet. Consequently, we do not represent or guaranty that the information that you transmit to us will remain secure against all unauthorized access or use. You can assist us with our efforts by preventing unauthorized access to your user password and to your computer. You should make sure that you sign off when finished using a shared computer, and you should otherwise take precautions to protect your user password. If your user password becomes compromised for any reason, you should immediately change your password, and notify us.