Updated
June 2023
CRC Group is committed to protecting your
privacy and developing technology that gives you the most powerful and safe
online experience. This Statement of Online Privacy Practices applies to the
CRC Group site and governs data collection and usage. By using the CRC Group
site, you consent to the data practices described in this statement.
1.
What does this Policy Cover?
This CRC Group Statement
of Online Privacy Practices (“Privacy Policy”) describes how we collect
information when you visit or use CRC Group’s websites, and other online
services (“Online Services”) that link to this Privacy Policy. It also
describes how we use and share such information and explains your privacy
rights and choices.
Our Online Services are intended for a U.S. audience. The terms “CRC,”
“we,” “us,” or “our” mean CRC Group Wholesale & Specialty and its U.S.
affiliates. “You” means an individual who visits our Online Services and does
not refer to a business or other entity or to individuals outside the U. S.
CRC Group’s business address is CRC Insurance Services, LLC, 1
Metroplex Drive, Ste. 400, Birmingham, AL, USA.
Our email is salessupportteam@crcgroup.com, Customer Service may be reached at 888-219-0464.
2.
What
isn’t covered by this policy?
This Privacy Policy
does not apply to the websites or services of CRC Group’s businesses and
affiliates that do not directly link to this policy. Some CRC Group businesses
and affiliates have their own privacy policies, which can be found on their
websites. It also does not apply to non-
CRC
Group companies, such as third-party websites to which we link online. Please
review the privacy policies of other websites and services you visit to
understand their privacy practices.
3.
Other
important notices
Our CCPA Notice At
Collection related to the California Consumer Privacy Act applies to
certain information we collect about California residents.
4.
What information does CRC Group collect?
When you visit a CRC
Group website, application, or otherwise interact with us online, we may collect
the following information:
- Your browser type (such
as Google Chrome, Microsoft Edge, Apple Safari, Mozilla Firefox)
- Your Internet
Protocol or “IP” address (Your IP address is a number that is
automatically assigned to your device by your Internet Service Provider.
An IP address is identified and logged automatically whenever you visit a
site, along with the time of the visit and the page(s) that were visited)
- The presence of
any software and hardware on your device that may be necessary to view our
site
- Configuration
information about the device you are using, including, but not limited to,
your device type, web browser type
and version, operating system type and version, display/screen settings,
and language preferences, domain names, access times and referring website
addresses.
- Personal
information submitted on applications, forms, and onsite electronic
messaging. Types of personal information typically include:
- Name
- Address
- Email
- Telephone number
- Website analytics
information to determine what CRC Group services are the most popular. This
data is used to deliver customized content and advertising within CRC
Group to customers whose behavior indicates that they are interested in a
particular subject area.
5. How
does CRC Group use the information collected?
The information we
collect online helps CRC Group to:
- Effectively manage
your account:
- Ensure your identity and protect the
security of your personal and account information from unauthorized access
- Operate the CRC Group website and deliver the
services you have requested
- Respond to product applications and questions
- Fulfill regulatory
requirements
- Analyze our site
usage and enhance the user's experience:
- Diagnose server problems
- Alert users of any possible software compatibility
issues
- Help us make decisions about how various
technologies are used and identify usage trends
- Send marketing communications:
- Inform you of
other products or services available from CRC Group and its affiliates
- Contact you via surveys to conduct research about
your opinion of current services or of potential new services that may be
offered
- Prevent and detect
fraud
- Protect against
risks to security:
- Monitor network activity logs
- Detect security incidents and conduct
data security investigations
- Protect against malicious, deceptive,
fraudulent, or illegal activity
We only use personal
information that we have about you when we have a legal basis to use such
personal information under applicable data protection laws.
CRC Group does not sell, rent or lease its customer lists to
third parties.
6.
How does CRC Group share the information it collects?
CRC Group shares your
information in different ways as permitted and required by law. For example, we
may share your information with:
- Affiliates and
other entities of the CRC Group
- Businesses with
which we partner to offer products and services for our clients or prospective
customers
- Service providers
that provide various services to us, such as those we use to help detect
and prevent fraud
- Government
entities and other third parties as needed for legal or similar purposes,
such as:
- To respond to requests from our regulators
- To respond to a warrant, subpoena, governmental
audit or investigation, law enforcement request, legal order, or other legal
process
- To facilitate a merger, acquisition, sale,
bankruptcy, or other disposition of some or all of our assets
- To exercise or defend legal claims
Please note, we may also share aggregated and de-identified data, such as aggregated statistics regarding product usage, with third parties.
We reserve the right to
transfer personal information we have about you in the event we sell or
transfer all or a portion of our business or assets (including, without
limitation, in the event of a reorganization, dissolution, or liquidation).
7.
What if I am visiting the CRC Group website from outside the
United States?
If you are
visiting the CRC Group website, please be aware that your personal information
may be transferred to, or stored and processed in, the United States. We will
rely on legally provided mechanisms (for example, derogations such as
performance of a contract) to lawfully transfer personal data across
borders.
8.
How long does CRC Group retain records?
We
store your personal information as long as it is required to meet our
contractual and legal obligations, or if we have a legitimate business need to
do so.
9.
What technologies does CRC Group use?
CRC Group and its
online advertising and marketing partners may employ various technologies to collect
information, including:
- Cookies - Cookies are pieces of
information stored directly on your device. Cookies provide information
that is used for security purposes, to facilitate navigation, to display
information more effectively, and to personalize/customize your online
experience. The cookies CRC Group uses do not collect or store any
personally identifiable information about you. CRC Group uses persistent
cookies to learn how visitors use our site, such as which pages are viewed
the most, to identify the most common navigation paths, or to customize
the presentation of information on the site. CRC Group also uses session
cookies to learn how visitors use our site or for login access and
authentication purposes. Session cookies are no longer active after you
log off the service that initiated them, and all session cookies are
automatically deleted when you close all browser windows. CRC Group may
also partner with third parties, including, but not limited to,
Google (see Advertising, below), to track user activity on our
website. You can choose to block or disable these cookies as most devices
and browsers offer their own privacy settings. Doing so, however, may
result in diminished performance on our site.
- Marketing pixels,
web beacons, clear GIFs, or other technologies -
This technology may be placed on
certain pages of our website, applications, emails, and other marketing
initiatives. These tags usually work in conjunction with cookies and allow
us to measure the effectiveness of our site and compile statistics about
usage and response rates.
- Advertising: CRC Group uses certain Google Analytics services and products, which helps
companies facilitate the delivery of relevant content. The use of Google
Analytics shares certain limited information with Google. Visit the Google
Analytics website for more information on opting-out of certain services
or limiting Google Analytics tracking.
Google Analytics Opt-out Browser Add-on Download Page
- Firewalls,
passcodes, data encryption, and other safety features -
CRC Group uses these
technologies to ensure that the information you provide us remains
secure.
- Third-party
plugins -
Other
companies may have plugins that appear on certain pages of our website or
applications. Some of these, for example, may be from social media
companies (for example, Linked In). These plugins may collect information,
such as information about the pages you visit, and share it with the
company that created the plugin even if you do not click on the plugin.
These third-party plugins and the way they operate are governed by the
privacy policies and terms of the companies that created them.
10.
How does CRC Group interact with me online?
Online advertising on CRC Group websites
and applications
CRC Group advertises
its products and services on pages within our sites. To make the content and
advertising as informative and useful as possible, CRC Group may target and
personalize content and advertisements for products and services on our site.
Online advertising on third-party
websites and applications
CRC Group may advertise its
products and services on websites and applications not affiliated with CRC
Group. The third-party companies we hire to display these ads use their own
tracking technologies to measure the effectiveness of these ads and to
understand your interests. Many of our third-party partners have their own
privacy policies. We encourage you to review these policies carefully.
Some of our third-party
advertising is interest-based and may use information about your online
interests to customize the online ads you see. CRC Group has adopted the use of
the AdChoices Icon for our
interest-based advertising (excluding ads appearing on platforms that do not
accept the icon). Anyone receiving an interest-based ad can click on the
displayed icon to receive more information. The AdChoices Icon does not prevent
you from receiving advertisements; instead, it allows you to control whether
you receive interest-based advertisements and from which companies.
Visit the Digital Advertising Alliance website for
more information about the AdChoices Icon and interest-based advertising]. If
you would like to know more about how to opt out with your specific browser and
device, go to you may visit the
DAA Webchoices Browser Check and NAI Opt
Out of Interest-Based Advertising
tools for additional
options. You can also
download
the AppChoices app
to opt out in mobile apps.
Social media
CRC Group provides
experiences on social media platforms such as LinkedIn, or YouTube that enable
online sharing and collaboration. We use social media to facilitate social
engagement and sharing, when such sharing is appropriate and safe. Please note,
any content you post, such as pictures, information, opinions, or any personal
information that you make available to other participants on these social
platforms, is subject to the terms of use and privacy policies of those
platforms. Please refer to them to better understand your rights and
obligations with regard to such content.
Given the very public
nature of social media, it is critical that we all safeguard confidential
financial information. If you post information on a CRC Group site that we feel
should be shielded from public view, we will remove it. This includes not only
specific details about your CRC Group accounts and other private, confidential
information (such as your Social Security number), but details of information
relayed in private conversations between you and CRC Group representatives.
Please know that in taking down or editing your posts, we are focusing our
experience and best judgment to keep your personal information safe.
Email
Email transmitted
across the internet is normally not protected and may be intercepted and viewed
by others. Therefore, you should refrain from sending any confidential or
private information via unsecured email to CRC Group. We'll never ask you to
send confidential information to us via email, such as your logon ID, password,
full account numbers, or Social Security number.
Occasionally, we will
retain the content of your email—and our replies—to confirm proper responses to
your questions and requests, to comply with legal and regulatory requirements,
and to ensure that we consistently deliver an enjoyable client experience to
you.
CRC Group
may provide links to non-CRC Group companies, such as business partners or
other resources. If you choose to link to websites not controlled by CRC Group,
we are not responsible for the privacy or security of these sites, including
the accuracy, completeness, reliability or suitability of their information. If
you are asked to provide information on one of these sites, we urge you to
carefully study their privacy policies before sharing.
Control your online and other privacy
preferences
In summary, the
following links can help you to customize and control your privacy preferences
when interacting with CRC Group online:
We will respond to the Global Privacy Control signal as explained
further in our CCPA Notice at Collection. At this time, we do not currently
respond to other browser “do not track” signals or other mechanisms that allow
you to tell websites you do not want to have online activities tracked.
11.
How does CRC Group protect my children?
CRC Group strictly
follows the federal guidelines of the Children’s Online Privacy Protection Act
(COPPA), which gives parents control over what type of information is collected
online about their children. We do not knowingly collect, maintain, or use
personally identifiable information from children under age 13 on our websites.
We are not responsible for the data collection and use practices of
nonaffiliated third parties that are linked from our websites. Visit the
Federal Trade Commission’s
COPPA Website for more information.
12.
How does CRC Group protect me from fraud and
secure information?
To protect
personal information from unauthorized access and use, we use security measures
that comply with applicable federal and state laws. These measures may include
device safeguards, secured files and buildings, as well as oversight of our
third- party service providers to ensure information remains confidential and
secure.
13.
How can I make sure my information is accurate,
and use my individual rights?
Keeping your account
information accurate and up to date is very important. If your account
information is incomplete, inaccurate, or not current,
please contact your agent, or the broker or
underwriter assigned to your account. You
can also email us at
salessupportteam@crcgroup.com or
call: 888-219-0464.
We respond to all
requests we receive from individuals wishing to exercise their data protection
rights in accordance with applicable data protection laws.
Please
see additional information regarding what may be available under the California
Consumer Privacy Act (CCPA)
here. We will ask you to verify your identity
to help us respond efficiently to your request.
Under non-U.S. data
protection laws, you may have the right to complain to a data protection
authority about our collection and use of your personal information.
14.
What is CRC
Group’s Cellular Phone Identity Verification
Statement?
To help us verify your
identity, you authorize your wireless operator (AT&T, Sprint, T-Mobile®, US
Cellular®, Verizon, or any other branded wireless operator) to use your mobile
number, name, address, email, network status, customer type, customer role,
billing type, mobile device identifiers (IMSI and IMEI) and other subscriber
status details, if available, to allow us to verify your identity, and to
compare information you have provided to us with your wireless operator account
profile information for the duration of our relationship.
15.
How will CRC Group notify me about online privacy practices
updates?
CRC Group’s Online Privacy Practices may be revised from time to time,
so please review them periodically. Any changes will become effective when we
post the revised Practices on the site (Please note the effective date listed
at the top of this page). If we revise our Online Privacy Practices in a
material way, we will provide a conspicuous notice on our website when any
changes take effect.
16.
How can I contact CRC Group?
CRC Group welcomes your comments
regarding this Statement of Online Privacy Practices. If you believe that CRC
Group has not adhered to this Statement
, please contact CRC Group at salessupportteam@crcgroup.com.
We will use commercially reasonable efforts to promptly determine and remedy
the problem.
For California state privacy law information, please
see
here.