U.S.-EU Safe Harbor
PRBC complies with the U.S.-EU Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use and retention of personal information from European Union member countries. PRBC has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access and enforcement.
To learn more about the Safe Harbor program and to view PRBC’s certification, please visit the Safe Harbor website at www.export.gov/safeharbor.
SAFE HARBOR PRINCIPLES
Notice: When PRBC collects non-public personal information directly from EU data subjects, PRBC provides the individuals with appropriate notice regarding the manner and circumstances in which the personal information may be used and transferred to third parties and to the US for processing under the U.S.-EU Safe Harbor Framework. When PRBC receives transfers of personal information from the EU to the United States, PRBC requires contractual provisions from the EU data controller that the personal information has been provided to PRBC in accordance with the applicable EU Member State data protection law, to ensure the individuals have been provided with appropriate notice regarding how their information will be used.
Choice: When PRBC collects non-public personal information directly from EU data subjects, PRBC provides the individuals with choice regarding the manner and circumstances in which the personal information may be used and shared with third parties, including the opportunity to opt-out. When PRBC receives transfers of personal information from the EU to the United States, PRBC requires contractual provisions from the EU data controller that the personal information has been provided to PRBC in accordance with the applicable data protection laws, to ensure the individuals have been provided with appropriate choice regarding how their information may be used, including the opportunity to opt-out.
Onward Transfer: PRBC complies with the Notice and Choice principles above for all EU data disclosed or transferred to a third party. In the event PRBC utilizes data processors to perform tasks on behalf of and/or under the instruction of PRBC, PRBC requires its data processors to enter into a written agreement with PRBC, which requires them to provide the same level of protection that PRBC provides.
Security: PRBC maintains physical, electronic, technical and procedural safeguards to monitor and protect its systems and personal information in its possession from loss, misuse, unauthorized access, disclosure, alteration and destruction.
Data Integrity: PRBC takes reasonable steps to ensure that personal information in its possession is accurate, complete, current and reliable for its intended use.
Access: An individual may contact PRBC to learn whether or not personal information relating to him or her is found in PRBC’s databases. This right applies only to personal information about the individual making the request and is subject to other limitations as defined by law, or where the burden or expense of providing access would be disproportionate to the risks related to the privacy of the individual or where the rights of other individuals would be violated. Upon request, PRBC will grant individuals reasonable access to the personal information that PRBC retains about such individual in accordance with applicable law and reasonable compliance and audit procedures. In addition, PRBC will take reasonable steps to correct, amend or delete information that is demonstrated by individuals to be inaccurate or incomplete.
Enforcement: Any questions or concerns regarding PRBC’s collection, maintenance, use or disclosure of EU personal information or PRBC’s compliance with the Safe Harbor principles or this Policy, should be directed to PRBC’s office at the following address: MicroBilt Corporation, Attention: Consumer Affairs Department, P.O. Box 440693, Kennesaw, Georgia 30160, USA. PRBC will investigate and attempt to resolve questions, complaints and disputes in accordance with the principles contained in this Policy. For issues that are not adequately addressed or resolved directly between PRBC and the complainant, PRBC has agreed to participate in the dispute resolution procedures established by the European Data Protection Authorities to resolve disputes pursuant to the Safe Harbor Principles.
CHANGES TO THIS POLICY
Effective Date: December 10, 2012