Website

Our Website may be accessed through the URLs www.thecompliancestore.net or www.thecompliancestore.com.

You are required to provide certain personal information in order to subscribe to our Website and utilize our services (including setting-up a trial subscription), to place an order, to make a payment, to make suggestions or recommendations, to request certain other services or information, or to participate in certain other features of the Website.  You also may voluntarily provide other personal information on web forms, surveys, in chat rooms, discussion forums, or in other manners on the Website.

Additionally, our Website contains embedded videos that are hosted by a third-party video hosting site.  This video hosting service tracks anonymous data on your interactions with the embedded video content, such as the number of views and clicks, as well as the time of day videos are viewed and the duration of each view.  If you have subscribed to our services and register for an account, we will collect information about you, including your name, email address, and other information related to that account.

Linked Websites

In addition to our Website listed above, the Website may contain links to third party sites relevant to the content you are viewing on the Website or a service you request.  This Policy does not govern or control the use of data on those websites and we strongly recommend you review the privacy policies of those sites before providing any information through those sites.  Links to third party sites are provided as a convenience to you, and Compliance Store has not and does not represent that it has reviewed or endorses the information available on those linked sites at any point in time.  You are responsible for any due diligence you believe necessary or desirable when using those linked sites.

Newsletters

Compliance Store publishes newsletters from time to time.  Newsletters may be delivered to you by mail or email depending on the preferences selected in your account.  You can opt out of any newsletter by clicking “unsubscribe” in the email, sending an email to customerservice@thecompliancestore.com, or by changing your options in your account settings on the Website.  Opting out of newsletter subscriptions will not affect your receipt of emails related to your account and the transactions you initiate through your account or your receipt of print materials provided in conjunction with your subscription(s).

Discussion Forums / Chat Rooms

This Website provides public discussion forums through discussion lists, bulletin boards, chat rooms or other mechanisms (collectively, the “Discussion Forums“) to allow subscribers with similar interests to share information and/or post questions.  Any information that you disclose in a Discussion Forum is, by design, shared with the public and is not confidentially maintained.

Because of the nature of the Discussion Forums, any information you disclose may be accessed, disclosed, or collected by third parties and as a result may be used by such third parties in ways that we are unable to control or predict.  We are not responsible for third parties’ misuse of any personal information, including personal health information, individually identifiable health information, and protected health information. You should think carefully before disclosing any information, and particularly any patient’s individually identifiable health information or personal health information, in the Discussion Forums.

Physicians and other health care professionals accessing or using the Website and particularly the Discussions Forums should remember their obligation to keep patients’ protected health information private under Health Insurance Portability and Accountability Act (“HIPAA“).  As such, physicians and other health care professionals should not disclose any patient’s individually identifiable health information or other protected health information that would allow other Website visitors and subscribers or third parties to determine the identity of a particular client/patient.  When discussing a patient’s particular condition(s), you should not reveal a patient’s name, address, or other individually identifiable health information that would directly or indirectly identify a particular patient.  You agree to defend, indemnify, and hold us harmless from any claims arising out of your disclosure of individually identifiable health information or patient identifiable information on the Website, including, without limitation, in a Discussion Forum.

Communications from Us

Compliance Store communicates via telephone and sends emails on its own behalf. In addition, Compliance Store may from time to time engage third parties to email or call you on our behalf regarding your subscription and ways we can improve our services, among other things.  We do not collect personal information from you when contacting you in this manner, but we may use the contact information you have provided to us in other ways related to the Website.

Surveys

We sometimes offer surveys through our Website.  When you respond to a survey, we may collect a variety of information relevant to that survey.  Some surveys may collect personally identifiable information, and others do not obtain personally identifiable information.  Each survey will indicate whether or not it is collecting personally identifiable information.  No survey collecting personally identifiable information will collect personal health information, individually identifiable health information, or other protected health information that must remain private under HIPAA.

Other Sources

When appropriate based on the services you request through the Website or based on your employment inquiries, we may obtain personally identifiable information about your from third party sources, such as credit reporting agencies and state and federal agencies.  You will be notified as part of the transaction that we will obtain such information and we will maintain all such information in accordance with this Policy.

Personally Identifiable Information

1. Through the methods described above, we may collect personally identifiable information about you. We may also collect personally identifiable information when you contact our office or customer service via email or phone or in person.  We may also collect information about you when you apply for a job with Compliance Store or as part of your employment or contract if you are an employee or contractor of Compliance Store.
2. The types of personal information we collect may include, but is not necessarily limited to:
   • Your Name
   • Your Company’s Name
   • Your Mailing Address
   • Your Email Address
   • Your Phone Number(s)
   • Your Professional Information (such as license numbers, title, and job function)
   • Birthdate
   • Your Subscriber Credentials (including Subscriber ID and/or Password)
   • Other Identifiers that Allow People to Call You
3. We do not collect personally identifiable health information.
4. Except for information that we are required to maintain for employment or work verification purposes, your disclosure of information to us is voluntary. However, if you do not wish to provide such information, we may not be able to provide some services and information to you.
5. Financial Information: If you provide a credit card number, debit card number, bank account information, or other payment credentials (“Financial Information”), that information is processed by our third party payment processor. Compliance Store does not receive access to your Financial Information; however, our payment processor retains that information in accordance with its own privacy policy in order to allow us to process payments or issue refunds if necessary. A link to the payment processor’s privacy policy is accessible on the screens that collect your Financial Information, and we strongly encourage you to review the payment processor’s privacy policy before submitting your Financial Information.  Charges from us will appear on your statements as from “The Compliance Store.”  If you provide us with Financial Information over the phone or verbally in person, we will enter your Financial Information into the payment processors system for processing.

Non-Personally Identifiable Information

Through the methods described above, as well as through technical tracking technologies such as cookies and web beacons, we may automatically track and collect non-identifying and aggregate information from all visitors to the Website. This information may include, for example, your queries on our Website, the pages of the websites you visit and how long you view each page, and the browser you use to access the Website.

1. Access and Usage Details

   Through the technical tracking technologies described above, we may collect information about your internet connection, the equipment you use to access the Website, which pages of the Website you access and how long you view each page, and other details about your use of our Website.

2. Changes in Use

   The information we collect may be used for different purposes as we continue to expand our service offerings.  If we make any material changes to the way we use your personally identifiable information, we will post that information with this Policy.  Your use of the Website after we post the new Policy indicates acceptance of our new Policy.

   All information that we collect, both identifying and non-identifying, is referred to in this Policy as the “Collected Information.”

We use the Collected Information as described above to provide the information or services you have requested, to fulfill an order you have placed, to make you aware of new offerings we provide, to pre-populate certain fields when you register for a new subscription or other service, or to process your employment application. We also used the Collected Information to better design our Website and improve our services to you.

In order to further improve our services, we may use the Collected Information to conduct surveys, to contact you about your experience using the Website, to provide you with offers we feel may be of interest, to conduct studies designed to improve our services, or for other reasons. We may also engage third parties solely to conduct these activities on our behalf and we may provide the Collected Information to such third parties for use in conducting such activities on our behalf. If we engage a third party to conduct such an activity, we will require the third party not to use Collected Information for any purpose other than completing the requested activity on our behalf.

We may, on occasion, choose to share your personally identifiable contact information (such as your mailing address or your email address) with select third parties whose products or services we believe are consistent with our policies and the general interest of our subscribers and may be of interest to you. We do not sell your personally identifiable contact information. While many of these promotions will be valuable to you, if you prefer not to have your contact information shared with third parties for this purpose, you may have your name removed from these lists by emailing us at customerservice@thecompliancestore.com or making a change to your preferences on your account page on the Website.

When you are employed by, contracted by, or provided services by Compliance Store, there is certain information we are required by law to collect and maintain. For all other information we collect, you have options about providing the information and about how we use it.

You may opt out of any promotional emails or mailings that we may provide. You may change your preferences about use of your personal information, in one of the following ways:

• By clicking the appropriate box on the form, survey, subscription page, or registration page;
• By emailing us at customerservice@thecompliancestore.com;
• By accessing your account page for our Website; and/or
• By writing to us via U.S. mail at:

The Compliance Store
355 Industrial Park Boulevard
Montgomery, AL 36117

Please note that Compliance Store does not sell our subscriber data to any third parties.

This opt-out does not apply to information provided to Compliance Store as a result of product purchase, warranty registration, product service experience, employment or contracting, or other transactions with the Compliance Store, and you cannot opt out of such communications.

While you are using the Website, we may use various automatic data collection technologies to collect information about your equipment, browsing actions and patters, which may include about your usage of the Website, including your equipment, browsing actions, and patterns; your IP address, geographical information, browser type and version; the pages you view and the amount of time you spend on each page. Some of this information is anonymous data that is aggregated and gathered via Google Analytics to provide statistics related to the performance of our Website so that we can optimize our Website and so that we can provide metrics to advertisers. We also use this data so that we may offer a better experience, including sharing information with these subscribers about news stories or third-party advertising that is relevant based on browsing history.

The information we collect using these automated technologies is anonymous, but we may maintain it or associate it with personal information we collect in other ways or receive from third parties. Use of the anonymous data in this way allows us to improve our Website and provide information in a more efficient and customized manner. The technologies we may use for these purposes may include:

Cookies

Cookies are bits of data or files that store small amounts of data and are placed on the hard drive of your computer or the memory of your mobile device. The cookies collect and retain some of the data discussed above about your visit to our Website. You may refuse to accept browser settings by activating the appropriate settings in your browser or on your device; however, if you refuse cookies, you may be unable to access certain parts of our Website or to use certain portions of our services. Unless you have adjusted your browser or device settings to opt out of cookies our Website will issue cookies when you direct your browser to our Website, and you consent to such use of cookies.

Keep in mind that the selections you make for cookie settings, and other settings, may apply to all websites you visit and may impact the functionality of all websites.

Flash Cookies

Certain features of our Website may use local stored objects (or Flash cookies) to collect and store information about your preferences and navigation to, from, and on our Website. Flash cookies are not managed by the same browser settings that are used to manage browser cookies.

Web Beacons

Pages of our the Website and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit us, for example, to count users who have visited those pages or opened an email and to determine other related Website statistics (for example, recording the popularity of certain website content and verifying system and server integrity).

Tracking Pixels

Some special advertising pages displayed by our newsletters or on the Website may include tracking pixels provided by outside companies or advertising agencies. These tracking pixels collect anonymous data related to the ad performance. Advertiser links may direct you to pages with cookies that are associated with advertisers and their respective agencies. Compliance Store has no access to this information, and we do not control these third parties’ tracking technologies or how they may be used. If you have any questions about an advertisement or other targeted content, you should contact the responsible provider directly.

For employment purposes, more specific data is collected and held by Compliance Store for employees, former employees, and contractors of the company.  For prospective employees, this data is held for a maximum of one year, unless you become employed or engaged under contract.  This data is used only for its intended purposes and is shared only with certain employees. This data is subject to the company’s confidentiality policy and other policies outlined in the company’s employee handbook.  Externally, this data is shared only with outside companies with whom you have given Compliance Store permission to share your data, such as payroll and benefits administration.

In order to contact you regarding a subscription renewal, we may engage a third-party telemarketing firm to call you about your subscription.  Such calls are placed on behalf of Compliance Store, and we share your relevant contact and subscription information with the telemarketing firms to allow them to contact you regarding your subscription renewal and to update your contact information if necessary. These third parties are not allowed to use your information beyond the scope of their work for Compliance Store.  If you do not want to receive calls regarding your subscription to Compliance Store, you may notify us via email at customerservice@thecompliancestore.com, modify your settings on the account page of the Website, or let the caller know when you are contacted.

We reserve the right, but do not assume the responsibility, to monitor usage of the Website.

The Website is not designed or intended to for children under the age of 16. We do not knowingly collect any personally identifiable information, whether or not such information is voluntarily provided, from any person we actually know is under the age of 16. If you are under 16, do not use or provide any information on this Website or through any of its features, register on the Website, make any purchases through the Website, use any of the interactive or public comment features of this Website, or provide information about yourself to us, including your name, address, telephone number, email address, or any screen name or user name you may use. If we are made aware that we have actually collected or received personal information about a person under the age of 16, we will promptly delete that information from our records in a timely fashion.  If you believe we might have any information from or about a child under age 16, please contact us at customerservice@thecompliancestore.com.

California residents under 16 may have additional rights.  Please see the California Privacy Rights section below regarding the specific rights of California residents.

The California Consumer Protection Act (“CCPA“) provides consumers who are California residents with specific rights regarding their personal information. If you are a California resident, this section describes your CCPA rights and explains how to exercise those rights.

• Access to Specific Information and Data Portability Rights

You have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months. Once we receive and confirm your verifiable consumer request (see <>), we will disclose to you:

1. 1. • The categories of personal information we collected about you;
      • The categories of sources for the personal information we collected about you;
      • Our business or commercial purpose for collecting or selling that personal information;
      • The categories of third parties with whom we share that personal information; and
      • The specific pieces of personal information we collected about you (also called the data portability request).

• Deletion Request Rights

You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request (see <>), we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies.

We may deny your deletion request if retaining the information is necessary for us or our service provider(s) to:

1. 1. • Complete the transaction for which we collected the personal information, provide a service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, fulfill the terms of a written warranty or product recall conducted in accordance with federal law, or otherwise perform our contract with you;
      • Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities;
      • Debug products to identify and repair errors that impair existing intended functionality;
      • Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law;
      • Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 seq.);
      • Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research’s achievement, if you previously provided informed consent;
      • Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us;
      • Comply with a legal obligation; and/or
      • Make other internal and lawful uses of that information that are compatible with the context in which you provided it.

• Exercising Access, Data Portability, and Deletion Rights

To exercise the access, data portability, and deletion rights described above, please submit a verifiable consumer request to us by emailing us at customerservice@thecompliancestore.com.

Only you, or someone legally authorized to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of minor child of whom you have legal custody or guardianship. To designate an authorized agent to obtain your information, please email customerservice@thecompliancestore.com and include your agent’s information. We will contact you at the telephone number we have on file to confirm the request.

You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:

1. 1. 1. 1. Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative, which may include:
            • Us requesting that the person whose information is requested provide us with a signed statement acknowledging that the person submitting the request is his or her authorized representative;
            • Us requesting that you verify your own identity directly with us but providing certain information so that we can confirm it matches the information in our possession; and/or
            • Us requesting that the authorized representative submit written, verified documents confirming his or her status as your authorized representative either generally or specifically for purposes of this request.
         2. Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.

We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you.

We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.

• Response Timing and Format

We endeavor to respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing.

For all subscribers, we will deliver our written response to the subscriber’s account. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option, to the physical or email address that we have on file for you. Only if we do not have a physical or email address on file for you and we are still able to verify your identity, we will send the response to your request to the physical or email address that you provide.

Any disclosures we provide will only cover the 12-month period preceding the verifiable consumer request’s receipt. The response we provide will also explain the reasons we cannot comply with the request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.

We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

• Personal Information Sales Opt-Out and Opt-In Rights

If you are 16 years of age or older, you have the right to direct us not to sell your personal information at any time (the “right to opt-out“). We do not sell the personal information of consumers we actually know are less than 16 years of age. Consumers who opt-in to personal information sales may opt-out of future sales at any time.

To exercise the right to opt-out, you (or your authorized representative) may submit a request to us at customerservice@thecompliancestore.com or change your settings in your account on the Website.

Once you make an opt-out request, we will wait at least twelve (12) months before asking you to reauthorize personal information sales. However, you may change your mind and opt back in to personal information sales at any time by contacting us in the same manner.

You do not need to create an account with us to exercise your opt-out rights. We will only use personal information provided in an opt-out request to review and comply with the request.

• Non-Discrimination

We will not discriminate against you for exercising any of your CCPA rights. However, please note that certain information is necessary to provide our services to you. Unless permitted by the CCPA, we will not:

1. 1. • Deny you goods or services;
      • Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties;
      • Provide you a different level or quality of goods or services; or
      • Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.

However, we may offer you certain financial incentives permitted by the CCPA that can result in different prices, rates, or quality levels. Any CCPA-permitted financial incentive we offer will reasonably relate to the value of your personal information and contain written terms that describe the program’s material aspects. Participation in a financial incentive program requires your prior opt-in consent, which you may revoke at any time. We do not currently offer any financial incentives.

To prevent unauthorized access, maintain data accuracy, and ensure the correct use of information, we have put in place physical, electronic, and managerial procedures to safeguard and secure the personal information we collect online from accidental loss and from unauthorized access, use, alteration, and disclosure. However, we ask that you also implement procedures to safeguard your personal information. For instance, please keep your login and subscription information confidential and also do not disclose individually identifiable health information via Discussion Forums or otherwise on our Website.

Unfortunately, the transmission of information, particularly the transmission of information via the internet, is not and cannot be completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information transmitted to us in person or through our Website. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on our Website.

We respect the intellectual property rights of all parties and require the same of all subscribers to our Website. If you believe that any of the information or material posted on our Website infringes your copyright interest, please provide us with written notice via mail or email, including a signature of the person authorized to act on behalf of the owner of the copyright interest; a description of the copyrighted work that you claim has been infringed upon; a description of where the material you claim is infringing is located on the site; your address, telephone number, and email address; a statement by you that you have a good-faith belief that the disputed use is not authorized by the copyright owner, its agent or the law; and a statement by you, under penalty of perjury, that the above information in your notice is accurate and that you are the copyright owner or authorized to act on the copyright owner’s behalf. Such notices can be sent to:

The Compliance Store
Attn:  Legal
355 Industrial Park Blvd
Montgomery, Alabama 36117

customerservice@thecompliancestore.com