- Collection of information from site visitors
- Our commitment to security
- Use of data collected
- Using your credit card to buy products online
- Sharing of postal mailing lists with outside companies
- Sharing of email addresses with outside companies
- Special provisions for 3rd-party content
- Your right to opt-out
- Our right to contact users
- Special provisions for ProSystem fx®
- Sample privacy notification for clients of ProSystem fx customers
- European Safe Harbor Participation
- The General Data Protection Regulation
We may collect and/or track 1) home server domain names, 2) Email addresses, 3) information knowingly provided by visitors on online forms, registration forms, surveys, polls, our online stores, and contest entries (including demographic and personal profile data) and 4) aggregate and user-specific information about which pages visitors access.
Keeping your information secure is very important to us. We employ electronic, physical and procedural safeguards and best practices to protect your information. For your convenience we have included below additional information about safeguards employed for ProSystem fx products. Due to the nature of the Internet we cannot fully guarantee that your information will never be unlawfully intercepted or accessed.
We use "cookies" on our websites to personalize and enhance your website visits. A cookie is a text file that is placed on your hard drive by our web server. Cookies are uniquely assigned to a computer, and your computer will only allow our web servers to access our cookies. The most important thing to understand about cookies is that they pose no danger to you. They cannot be used to collect secret information about you or your computer or to provide information about you to other companies.
Cookies provide a convenience by saving you time on subsequent visits and personalizing your web experience. For example, when you return to our website, cookies enable us to remember information from prior visits such as items left in your shopping cart. Cookies may save data such as name, password, user-name, shopping cart data, screen preferences, pages viewed, and ads clicked. Credit card information is never saved in cookies.
You have the right to delete cookies placed on your hard drive, which will erase the data automatically saved during your visit. However that will mean that our sites will not recognize you when you return. You may also modify your web browser to notify you before accepting cookies, or to decline all cookies. We strongly suggest that you accept cookies from us, since they help provide you a more seamless, personalized, and effective web browsing experience and keep our site compelling and informative.
Personal data collected may be used for editorial and feedback purposes, marketing and promotional purposes, statistical analysis of users' behavior, product development, content and layout improvement, and to inform advertisers and business partners as to how many visitors have seen or clicked on their advertisements. Information may also be made available to contractors as needed for maintenance of our systems / infrastructure.
Aggregate data on visitors' home servers may be used for internal purposes or provided to third parties. Individually identifying information, such as names, postal and Email addresses, phone numbers and other personal information which visitors voluntarily provide may be added to our databases and used for future calls and mailings regarding site updates, new products and services, upcoming events and the status of orders placed online. To opt-out of future calls or mailing, please email your request here.
OnlineStore.cch.com and CCHGroup.com do not retain, make public, sell, or distribute customers' credit card information, and it is never saved in your cookies. Our websites use encryption to safeguard credit card transactions. In the unlikely event that we are responsible for a loss through credit card fraud we will absorb the first $50 of the loss, which is the limit of an individual's personal liability.
As professionals, many CCH, a Wolters Kluwer business and Wolters Kluwer Law & Business customers and website visitors want to be informed of the latest products and services available in their fields, therefore we may share customer postal mailing lists with outside companies whose products and services we believe may be of interest to you. These lists may contain names, street addresses, and telephone numbers. But we want to respect your wishes about such contacts.
Please contact Customer Service to "opt out" of having your individual information (name and address and business telephone number) shared with other companies.
- If you believe your contact information was collected by the research & publishing division of CCH, a Wolters Kluwer business or Wolters Kluwer Law & Business, please call 800-344-3734 or contact us via http://support.cch.com/contact/.
- If your information was collected while doing business with CCH ProSystem fx, please call 800-739-9998, and select option 1 then option 2, or contact us via http://support.cch.com/contact/.
Contact lists are updated regularly, but it may take up to 90 days before your information is removed from a list.
We do our best to exclude from contact lists people who choose to opt out. However, this is an automated process and we cannot guarantee that every variation on the name, spelling, and/or address will be identified and suppressed. The more information you provide, the more likely we will be to correctly exclude you from our mailing and calling lists.
We do not share email addresses collected on CCHGroup.com, Business.cch.com, Hr.cch.com, Health.cch.com, CorporateCounsel.cch.com, BCTraining.cch.com, Athand.cch.com/bc/, www.cch.com, www.SalesTax.com, www.SureTax.com and support.cch.com, with outside companies.
We may from time to time send email messages to you about outside companies' products and services that we believe would be of interest to you. We will provide you the ability to opt out of future email messages from these outside companies and will provide you their privacy policies. CCH is not responsible for the privacy policies or opt-out practices of these outside companies.
You may opt out of having your personal data used for secondary purposes, disclosed to third parties, or used to send promotional correspondence to you by contacting us via postal mail, Email or telephone at the contact addresses provided on each website. We do our best to exclude from contact lists those customers who choose to opt out. However, we cannot guarantee that every variation on the name, spelling, and/or address will be identified and suppressed. There may also be variants relating to the manner in which our businesses use customer information that cannot be reliably suppressed.
To opt out of receiving marketing contacts via email, postal mail, or telephone, please email your request here.
When collecting, storing, and retrieving your firm's data, including but not limited to electronically filed returns, returns submitted to us for customer support, and returns submitted to us for service center processing - extensive internal controls are maintained by us and by any of the contractors we may engage throughout the process to ensure security and confidentiality. Data sent from your firm to ProSystem's secure servers are encrypted to ensure safety and privacy during transmission. Data encryption is the process of transforming information into a complex arrangement of illegible data. In addition, ProSystem's Internet-based systems are protected behind firewalls and all mission critical servers are deployed in a cluster environment to provide an even greater level of security and protection against system failure. All data is maintained and backed-up on a regular schedule to provide adequate redundancy and ensure that the integrity of information is never jeopardized.
Our employees as well as those of any contractor we may engage are subject to a strict employment policy regarding confidentiality, and internal access to customer data is restricted to highly trained personnel on an 'as-needed' basis. Information provided by your firm is used strictly for lawful business purposes and is never shared with third parties without your consent, except as required by law.
As you may know, the Gramm-Leach-Bliley Act and related Federal Trade Commission (FTC) regulations required that financial service providers - including CPAs - disclose a privacy notice to all their non-business individual clients beginning July 1, 2001.
As a service to your firm, we have prepared the below sample privacy notice that you may send to your clients to comply with this provision. Because your clients may also be interested to learn about the measures your tax software provider takes to protect their privacy, we have included the ProSystem fx Tax Privacy Statement in this document.
You may copy and paste the notice below and distribute it to your client base via Email, include it in a newsletter, or customize it with your firm's letterhead for standard mail. For added convenience, you can use the ProSystem fx Tax Production Processing tool to run labels for your entire client mailing list. We hope this will be helpful to your firm in responding efficiently and conscientiously to the Gramm-Leach-Bliley Act.
Sample Privacy Notice
(Insert Your Firm Name) Privacy Statement
The law requires that CPAs and all other personal financial service providers disclose their privacy policies to clients in a written notice. These policies pertain to non-public personal information about current and former clients. Of course, (Insert Your Firm Name) has always protected your right to privacy with professional standards that are even more stringent than those required by law. In order to assist you with your professional needs and, in some cases, to comply with professional guidelines, we retain records relating to the professional services we provide you. We have rigorous physical, electronic, and procedural safeguards in place to protect these records, and they are accessed internally only on an 'as-needed' basis.
Non-public personal information is never collected without your authorization, and we do not disclose such information except as required or permitted by law. Permitted disclosures include third parties who assist us in providing services to you, such as CCH Incorporated, the vendor providing us with our ProSystem fx tax compliance software.
We provide our CCH Axcess Product to corporate customers in Europe (“European Product”), and, in conjunction with such product, we receive in the US certain personally identifiable information about individual consumers of such customers in the European Union (“EU”) and Switzerland (“European Customer Data”). We recognize that the EU has an “omnibus” data protection regime established pursuant to the European Commission Data Protection Directive (95/46/EC) (the “Directive”) and that Switzerland has implemented its own comprehensive data protection law. The Directive and Swiss data protection law generally restrict the transfer of personally identifiable information about individuals in Europe to the United States, unless there is “adequate protection” for such information when it is received in the United States. To address the transfer restrictions in the Directive and Swiss law that apply to transfers of European Customer Data in connection with the CCH Axcess Product, we adhere to the EU and Swiss Safe Harbor Privacy Principles published by the US Department of Commerce (“Safe Harbor”). We act as a data processor on behalf of our European customers with respect to European Customer Data, and accordingly follow each customer’s instructions with regard to the collection, processing and protection of European Customer Data. Our customers act as the data controller for any European Customer Data. If any consumer in the EU or Switzerland has any questions about our handling of his/her European Customer Data, such consumer should first contact the customer to whom the European Customer Data was initially provided, as this may be the most efficient means of addressing such issues. Consumers in the EU or Switzerland may also reach out to the CCH Safe Harbor Privacy Contact by contacting CCHSafeHarbor@WoltersKluwer.com . Questions that are not otherwise resolved with the relevant customer and/or with us may also be directed to local EU or Swiss data protection authorities. To learn more about the Safe Harbor program, and to view CCH’s certification, please visit http://www.export.gov/safeharbor/.
To protect the personal data of individuals and customers in the European Union and to keep up with everchanging technology, as per the May 25, 2018 the General Data Protection Regulation (GDPR) will come into effect. The GDPR impacts every organization which stores or processes personal data of individuals across the European Union. The GDPR aims to strengthen the rights of individuals over their personal data and creates a harmonized personal data protection standard.
As a trusted partner to professionals, we want our customers to be confident that their personal data is protected. Consistent with the Wolters Kluwer company values and business principles, data privacy is at the heart of our approach to the GDPR. We fully understand the importance of data privacy standards to our customers and we recognize the obligations that apply to managing, storing and processing personal data. At Wolters Kluwer, we are committed to protecting our customers’ personal data. We deliver on this promise by striving to keep information secure and respecting the rights of individuals.
With the Wolters Kluwer Corporate Privacy Office, we are fully engaged in a cross-functional GDPR program. We are reviewing data processes (policies, standards and documentation) and practices throughout our company and are implementing changes to further enhance protection of personal data. We are training our employees on their responsibilities and new ways of working related to GDPR; we are partnering with third parties and vendors to ensure their compliance; and we are assessing customer contracts and working with our customers to help to support them.