Privacy and Cookies Policy

Last modified: July 26, 2024

Introduction

Security First ("Company", "we", "us", or "our") respect your privacy and are committed to protecting it through our compliance with this policy.

Security First Insurance Company values you as a customer and we share your concerns regarding the privacy of your nonpublic personal information. As a provider of products and services that involve compiling personal and sometimes sensitive information, protecting the confidentiality of that information is a top priority for Security First.

Our Privacy Principles:

  • We do not sell personal information.
  • We do not share personal information with nonaffiliated parties that would use your personal information for their own marketing purposes.
  • We contractually require any person or organization providing products or services on our behalf to protect Security First personal information.
  • We have procedural, technical, and physical safeguards in place to protect your personal information.

This policy describes the types of information we may collect from you or that you may provide to Security First and our practices for collecting, using, maintaining, protecting, and disclosing that information.

This policy applies to information we collect:

  • Through our website or, mobile application, and our representatives’ or third-party vendors’ websites or mobile applications, including through mobile and desktop applications you download from our website and any app store or the like, or our representatives’ or third-party vendors’ websites or mobile applications ("WebApp").
  • In email, text, and other electronic messages between you and us and our representatives, third-party vendors, and applicable WebApps.
    Through the mail or any other courier service.
  • By phone.
  • Provided in person to a company representative.
  • When you interact with our advertising and applications on third-party websites or mobile applications and services, if those applications or advertising include links to this policy.
  • From social media.

It does not apply to information collected by:

  • us offline or through any other means, including on any other WebApp operated by Company or any third party; or 
  • any third party, including through any application or content (including advertising) that may link to or be accessible from or on our WebApp.

Please read this policy carefully to understand Our policies and practices regarding your Please read this policy carefully to understand Our policies and practices regarding your information and how we will treat it. If you do not agree with our policies and practices, your choice is not to provide Us your information by any of the means listed above. By providing Us your information by any of the means listed above, you agree to this privacy policy. This policy may change from time to time (see Changes to Our Privacy Policy). Your continued use of any of the means of providing Us your information after we make changes is deemed to be acceptance of those changes, so please check the policy periodically for updates. 

Children Under the Age of 16

Our WebApp is not intended for children under 16 years of age. No one under age 16 may provide any information or personal information to or on our WebApp. We do not knowingly collect personal information from children under 16. If you are under 16, do not use or provide any information on our WebApp or through any of its features, register on our WebApp, make any purchases or signup through our WebApp, use any of the interactive or public comment features of our WebApp, or provide any information about yourself to us, including your name, address, telephone number, email address, or any screen name or username you may use. If we learn we have collected or received personal information from a child under 16 without verification of parental consent, we will delete that information. If you believe we might have any information from or about a child under 16, please contact us at policyservices@securityfirstflorida.com.    

California residents under 16 years of age may have additional rights regarding the collection and sale of their personal information. Please see Your California Privacy Rights for more information.

Information We Collect About You and How We Collect It

We collect and use information we need to conduct our business, to advise you of our products and services, and to provide you with customer service. We may collect and maintain several types of information from and about you, our customer, needed for these purposes. 

We may collect and maintain information from and about you, including information:

  • By which you may be personally identified, such as name, postal address, e-mail address, telephone number, or any other identifier by which you may be contacted online, offline, or through a mobile application ("personal information").
  • That is about you but individually does not identify you. 
  • About your internet connection, the equipment you use to access our WebApp, and usage details.

We collect this information:

  • Directly from you when you provide it to us.
  • Automatically as you navigate through the site. Information collected automatically may include usage details, IP addresses, location information, and information collected through cookies, web beacons, and other tracking technologies.
  • From third parties, for example, any business partners.

The information collected varies depending on the products or services you request, and may include: 

  • Information provided on applications and related forms, including, without limitation, your name, address, telephone number, age of your home, and type of construction.
  • Information from your transactions with us and our affiliates or others, including, without limitation, how long you have been a Security First customer, your payment history, your type of insurance coverage, your premiums, underwriting information and claims records.

We routinely collect information from third-party consumer reporting agencies - including information related to prior loss/claim history and/or credit history. In the event that your rate is impacted, or your policy is canceled or non-renewed because of information obtained from a third-party provider, you should know:

  • the decision is made by Security First only, not the third-party provider;
  • the name(s) and phone number(s) of the third-party provider(s) will be provided to you;
  • you may obtain that information free of charge if requested within 60 days by contacting the third-party provider directly; and
  • you have the right to dispute the information by contacting your agent or Security First.

Information You Provide to Us

The information we collect on or through any WebApp may include:

  • Information that you provide by filling in forms on our WebApp. This includes information provided at the time of registering to use our WebApp, subscribing to our service, posting material, or requesting further services. We may also ask you for information when you report a problem with our WebApp.
  • Records and copies of your correspondence (including email addresses) if you contact us.
  • Details of transactions you carry out through our WebApp and of the fulfillment of your orders. You may be required to provide financial information before transacting/placing an order through our WebApp.
  • Your search queries on our WebApp.
  • Any product or service you select through Us.   

Information We Collect Through Automatic Data Collection Technologies  

As you navigate through and interact with our WebApp, we may use automatic data collection technologies to collect certain information about your equipment, browsing actions, and patterns, including:

  • Details of your visits to our WebApp, including traffic data, location data, logs, and other communication data and the resources that you access and use on the WebApp.
  • Information about your computer, mobile device, and its internet or mobile connection, including your IP address, operating system, and browser type.

The technologies we use for automatic data collection may include:

  • Cookies (or browser cookies). A cookie is a small file placed on the hard drive of your computer. You may refuse to accept browser cookies by activating the appropriate setting on your browser. However, if you select this setting, you may be unable to access certain parts of our WebApp. Unless you have adjusted your browser setting so that it will refuse cookies, our system will issue cookies when you direct your browser to our WebApp.
  • Flash Cookies. Certain features of our WebApp may use local stored objects (or Flash cookies) to collect and store information about your preferences and navigation to, from, and on our WebApp. Flash cookies are not managed by the same browser settings as are used for browser cookies. For information about managing your privacy and security settings for Flash cookies, see Choices About How We Use and Disclose Your Information.
  • Web Beacons. Pages of our WebApp and our e-mails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or opened an email and for other related WebApp statistics (for example, recording the popularity of certain WebApp content and verifying system and server integrity). 

We do not collect personal information automatically, but we may tie this information to personal information about you that we collect from other sources, or you provide to us.

How We Use Your Information

We use your customer information to enhance our service to you, underwrite your policies, process your claims, ensure proper billing, service your account, measure your interest in our products or services, improve existing products and develop new ones, and monitor customer trends. As permitted by federal and state laws, we may enter into agreements to share or exchange information with companies engaged to work with us to enhance the quality of the services provided to you. Under these agreements, the companies may receive information about you, but they are required to safeguard this information and they may not use it for any other purposes. Such third parties are required by Security First to conform to our privacy standards.

We do not disclose any nonpublic personal information about you to any third parties except as permitted by law. We do not sell personal information to anyone, and we do not share personal information with nonaffiliated companies that would use that information to market their own products or services to you. We may be required by law or regulation to disclose information to third parties. For example, we may be required to disclose information in response to a subpoena, to prevent fraud, or to comply with rules of, or inquiries from, industry regulators.

We use information that we collect about you or that you provide to us, including any personal information:

  • To present our WebApp and its contents to you.
  • To provide/push information to you, in our sole discretion, regarding weather and other impact events in relation to providing you services related to any policy you may have with us.
  • To provide you with information, products, or services that you request from us.
  • To fulfill any other purpose for which you provide it.
  • To provide you with notices about your account/subscription, including expiration and renewal notices.
  • To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection.
  • To notify you about changes to our WebApp or any products or services we offer or provide through it.
  • To allow you to participate in interactive features on our WebApp.
  • To resolve payment issues and disputes.
  • In any other way we may describe when you provide the information.
  • For any other purpose with your consent.

We may also use your information to contact you about our own and third-parties' goods and services that may be of interest to you. If you do not want us to use your information in this way, please check the relevant box located on the form on which we collect your data (the order form/registration form) adjust your user preferences in your account profile. For more information, see Choices About How We Use and Disclose Your Information.

Disclosure of Your Information

We may disclose aggregated information about our users, and information that does not identify any individual, without restriction. 

We may disclose personal information that we collect, or you provide as described in this privacy policy:

  • To contractors, service providers, and other third parties we use to support our business and who are bound by contractual obligations to keep personal information confidential and use it only for the purposes for which we disclose it to them.
  • To a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Security First's assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by Security First about our WebApp users is among the assets transferred.
  • To third parties to market their products or services to you if you have consented to or not opted out of these disclosures. We contractually require these third parties to keep personal information confidential and use it only for the purposes for which we disclose it to them. For more information, see Choices About How We Use and Disclose Your Information.
  • To fulfill the purpose for which you provide it. 
  • For any other purpose disclosed by us when you provide the information.
  • With your consent.

We may also disclose your personal information:

  • To comply with any court order, law, or legal process, including to respond to any government or regulatory request.
  • To enforce or apply our terms of use or terms and conditions and other agreements, including for billing and collection purposes.
  • If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of Security First, our customers, or others. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction.

Choices About How We Use and Disclose Your Information

We strive to provide you with choices regarding the personal information you provide to us. We have created mechanisms to provide you with the following control over your information: 

  • Tracking Technologies and Advertising. You can set your browser to refuse all or some browser cookies, or to alert you when cookies are being sent. If you disable or refuse cookies, please note that some parts of this site may then be inaccessible or not function properly.

California residents may have additional personal information rights and choices. Please see Your California Privacy Rights for more information.

Accessing and Correcting Your Information

You can review and change your personal information by logging into our WebApp and visiting your account profile page if that capability exists on the WebApp. 

You may also send us an email at policyservices@securityfirstflorida.com to request access to, correct or delete any personal information that you have provided to us. We cannot delete your personal information except by also deleting your user account. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect.

California residents may have additional personal information rights and choices. Please see Your California Privacy Rights for more information. 

Your California Privacy Rights

If you are a California resident, California law may provide you with additional rights regarding our use of your personal information. To learn more about your California privacy rights, visit Your California Privacy Rights

Data Security

We take our responsibility to protect the privacy and confidentiality of personal information very seriously. We maintain physical, electronic and procedural safeguards that comply with federal standards to store and secure information about you from unauthorized access, alteration and destruction. We continually review our privacy and personal information security policies and practices, monitor our computer networks, and test the strength of our security. Under our control policies, for example, access to personal information is restricted to individuals who need it in order to service your policy, or provide products and services to you, and who are trained in the proper handling of such information.

We have implemented measures designed to secure your personal information from accidental loss and from unauthorized access, use, alteration, and disclosure. All information you provide to us is stored on secured servers behind firewalls from our third-party providers of business services. Additionally, any information stored by Security First is stored on secured servers behind firewalls. Any payment transactions will be encrypted using SSL technology. 

The safety and security of your information also depends on you. Where we have given you (or where you have chosen) a password for access to certain parts of our WebApp, you are responsible for keeping this password confidential. We ask you not to share your password with anyone. 

Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information transmitted to our WebApp. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the WebApp. 

Your Rights and Choices 

This section describes your rights and explains how to exercise those rights. Depending on applicable law where you reside or are located, you may be able to assert certain rights identified below with respect to your personal information. If any of the rights listed below are not provided to you under the law that governs the processing of your personal information, we have absolute discretion in providing you with those rights. Please note, your rights in relation to your personal information are not absolute. Depending upon the applicable law, access to your rights under the applicable law may be denied: (i) when denial of the request is required or authorized by law; (ii) when granting the request would have a negative impact on another's privacy; (iii) to protect our rights and properties; (iv) where the request is frivolous or vexatious, or for other reasons.

Right to Know

You may have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months (the "right to know"). Once we receive your request and confirm your identity (see Exercising Your Rights, we will disclose to you:

The categories of personal information we collected about you.

The categories of sources for the personal information we collected about you.

Our business or commercial purpose for collecting or selling that personal information.

The categories of third parties with whom we share that personal information.

The third parties to whom we disclosed your personal information.

If we sold or disclosed your personal information for a business purpose, two separate lists disclosing:

sales, identifying the personal information categories that each category of recipient purchased; and 

disclosures for a business purpose, identifying the personal information categories that each category of recipient obtained. 

The specific pieces of personal information we collected about you (also called a data portability request).

We do not provide a right to know disclosure for B2B personal information.

Right to Delete 

You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions (the "right to delete"). Once we receive your request and confirm your identity (see Exercising Your Rights to Know or Delete), we will review your request to see if an exception allowing us to retain the information applies. We may deny your deletion request if retaining the information is necessary for us or our service provider(s) to: 

Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, fulfill the terms of a written warranty or product recall conducted in accordance with federal law, or otherwise perform our contract with you.

Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.

Debug products to identify and repair errors that impair existing intended functionality.

Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.

Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information's deletion may likely render impossible or seriously impair the research's achievement, if you previously provided informed consent.

Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.

Comply with a legal obligation.

Make other internal and lawful uses of that information that are compatible with the context in which you provided it.

We will delete or deidentify personal information not subject to one of these exceptions from our records and will direct our service providers to take similar action. 

We do not provide these deletion rights for any B2B personal information.

Right to Correct

You have the right to request that we correct any incorrect personal information that we collect or retain from you, subject to certain exceptions.

Response Timing and Format

We will confirm receipt of your request within ten (10) business days. If you do not receive confirmation within the 10-day timeframe, please email support@eyebutler.com.

We endeavor to substantively respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time (up to another 45 days), we will inform you of the reason and extension period in writing.

If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option. 

Any disclosures we provide will only cover the 12-month period preceding our receipt of your request. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.

We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request. 

Right to Portability

Under certain circumstances, you may have the right to receive personal information we hold about you in a structured, commonly used, and machine-readable format so that you can provide that personal information to another entity. We do not provide a right to data portability disclosure for B2B personal information.

Non-Discrimination

We will not discriminate against you for exercising any of your rights. Unless permitted by law, we will not:

Deny you goods or services.

Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties.

Provide you a different level or quality of goods or services.

Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.

Right to Object to Automated Decision Making/Profiling

You may have the right not to be subject to a decision that is based solely on automated processing (where a decision is taken about you using an electronic system without human involvement) which significantly impacts your rights. No decision will be made by us about you solely on the basis of automated decision making which has a significant impact on you.

Right Not to Provide Consent or to Withdraw Consent

We may seek to rely on your consent in order to process certain personal information. Where we do so, you have the right not to provide your consent or to withdraw your consent at any time. This does not affect the lawfulness of the processing based on consent before its withdrawal.

Right to Limit Processing

You may have the right to request that we limit our processing of your personal information in certain circumstances. For instance, this right is available if you contest the accuracy of the personal information, or you objected to our processing.

Right to Opt out of the Sale of Personal Information

If we sell your personal information, you may have the right to direct us to stop selling your personal information. Please note that opting out of the sale of your personal information does not affect other types of sharing, such as sharing with our service providers for business purposes. Additionally, opting out may limit the services and features we can offer you, as some services require the sharing of personal information.

Right to Opt out of Targeted Advertising

You may have the right to opt out of the sharing of your personal information to third parties for behavioral or cross-contextual advertising purposes. Many websites use cookies, pixels, and similar technology, and share certain information, such as your IP address or device identifiers, to certain third-party advertisers in order to improve your user experience and to optimize our marketing activities. You have the right to direct us not to share or use your personal information for targeted advertising purposes to the extent that we do so.

Right to Appeal

You may have the right to appeal if we refuse to take action on your rights request. Instructions on how to appeal will be provided to you upon such a denial, but in any event, such instructions will be substantially similar to those provided below for submitting requests.

Exercising Your Rights

To exercise your rights above, please submit a request by either: 

Only you, or someone legally authorized to act on your behalf, may make a request exercising your rights to your personal information. To designate an authorized agent, contact us in accordance with this section and meet the verification requirements you will be given. 

You may also make a request to exercise your rights on behalf of your child by submitting your request in accordance with this section and meeting the verification requirements you will be given. 

If you are a California or Colorado resident, you may only submit a request to know twice within a 12-month period. We may charge a reasonable fee for multiple requests in the same 12-month period, as permitted by law. Your request to know or delete must:

  • Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative, which may include:
    • Verification requirements as detailed in our app or as given to you when you contact us.
    • Parent or guardian verification requirements as detailed in our app or as given to you when you contact us.
  • Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.

We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. 

You do not need to create an account with us to submit a request to exercise your rights. 

We will only use personal information provided in the request to verify the requestor's identity or authority to make it.

Changes to Our Privacy Policy

It is our policy to post any changes we make to our privacy policy on this page with a notice that the privacy policy has been updated on the WebApp home page. If we make material changes to how we treat our users' personal information, we will notify you through a notice on the WebApp home page. The date the privacy policy was last revised is identified at the top of the page. You are responsible for periodically visiting our WebApp and this privacy policy to check for any changes.

Contact Information

To ask questions or comment about this privacy policy and our privacy practices, or to register a complaint or concern please contact us at: policyservices@securityfirstflorida.com.

Accurate Information

It is important that the information we maintain about you is accurate and complete. If you see information in your policy, billing statements, or elsewhere, which suggest that our information is incomplete or inaccurate, please contact your local agent or our customer service department and we will update your information as needed.

Please reference your policy number on any correspondence sent to our office:

Security First Insurance Company
P.O. Box 105651
Atlanta, GA 30348-5651

Privacy Policy is Not Evidence of Insurance Coverage

This privacy notice is not evidence of insurance coverage and should not be accepted by anyone as evidence that insurance coverage is in force.


 

Security First’s Privacy Policy for California Residents

Effective Date: July 26, 2024
Last Updated/Reviewed on: July 26, 2024

This Privacy Policy for California Residents supplements the information contained in Security First's WebApp Privacy and Cookies Policy and applies solely to all visitors, users, and others who reside in the State of California ("consumers" or "you"). We adopt this notice to comply with the California Consumer Privacy Act of 2018 (CCPA) and the California Privacy Rights Act of 2020 (CPRA) and any terms defined in the CCPA and CPRA have the same meaning when used in this Policy. 

Information We Collect

Our WebApp collects/We collect information that identifies, relates to, describes, references, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer, household, or device ("personal information"). Personal information does not include:

  • Publicly available information from government records.
  • Deidentified or aggregated consumer information.
  • Information excluded from the CCPA's scope, like:
    • health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA), clinical trial data, or other qualifying research data;
    • personal information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FCRA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver's Privacy Protection Act of 1994.

In particular, our WebApp has/we have collected the following categories of personal information from consumers within the last twelve (12) months: 

Category

Examples

Collected

A. Identifiers.

A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver's license number, passport number, or other similar identifiers.

Yes

B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).

A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver's license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information.

Some personal information included in this category may overlap with other categories.

Yes

C. Protected classification characteristics under California or federal law.

Age (40 years or older), race, color, ancestry, ethnic origin, national origin, citizenship, religion or creed, religious beliefs, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, status as transgender/non-binary, pregnancy or childbirth and related medical conditions), sexual orientation, sexuality, status as a victim of crime, veteran or military status, genetic information (including familial genetic information).

 

Yes

D. Commercial information.

Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.

Yes

E. Biometric information.

Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.

Yes

F. Internet or other similar network activity.

Browsing history, search history, information on a consumer's interaction with a website, application, or advertisement.

Yes

G. Geolocation data.

Physical location or movements, precise geolocation.

Yes

H. Sensory data.

Audio, electronic, visual, thermal, olfactory, or similar information.

Yes

I. Professional or employment-related information.

Current or past job history or performance evaluations, union membership.

Yes

J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)).

Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records. 

No

K. Inferences drawn from other personal information.

Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.

Yes

 

Our WebApp obtains/We obtain the categories of personal information listed above from the following categories of sources:

  • Directly from you. For example, from forms you complete or products and services you purchase.
  • Indirectly from you. For example, from observing your actions on our WebApp.
  • Sources listed in Security First’s WebApp Privacy and Cookies Policy.

Use of Personal Information

We may use or disclose the personal information we collect for one or more of the following purposes: 

  • To fulfill or meet the reason you provided the information. For example, if you share your name and contact information to request a price quote or ask a question about our products or services, we will use that personal information to respond to your inquiry. If you provide your personal information to purchase a product or service, we will use that information to process your payment and facilitate delivery. We may also save your information to facilitate new product orders or process returns.
  • To provide/push information to you, in our sole discretion, regarding weather and other impact events in relation to providing you services related to any policy you may have with us. 
  • To provide, support, personalize, and develop our WebApp, products, and services.
  • To create, maintain, customize, and secure your account with us.
  • To process your requests, purchases, transactions, and payments and prevent transactional fraud.
  • To provide you with support and to respond to your inquiries, including to investigate and address your concerns and monitor and improve our responses.
  • To personalize your WebApp experience and to deliver content and product and service offerings relevant to your interests, including targeted offers and ads through our WebApp, third-party sites, and via email or text message (with your consent, where required by law).
  • To help maintain the safety, security, and integrity of our WebApp, products and services, databases and other technology assets, and business.
  • For testing, research, analysis, and product and service development and offerings, including to develop and improve our WebApp, and any products, and services.
  • To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
  • As described to you when collecting your personal information or as otherwise set forth in the CCPA.

We will not collect additional categories of personal information or use the personal information we collected for materially different, unrelated, or incompatible purposes without providing you notice.


Sharing Personal Information

We may share your personal information by disclosing it to a third party for a business purpose. We only make these business purpose disclosures under written contracts that describe the purposes, require the recipient to keep the personal information confidential, and prohibit using the disclosed information for any purpose except performing the contract. In the preceding twelve (12) months, Company has disclosed personal information for a business purpose to the categories of third parties indicated in the chart below.

We do sell personal information and in the preceding twelve (12) months, Company has sold personal information.

Personal Information Category

Category of Third-Party Recipients

Business Purpose Disclosures

Sales

A: Identifiers.

Advertising networks
Internet service providers
Data analytic providers
Operating systems and platforms
Social networks
Data brokers or aggregators
Service providers

Yes

B: California Customer Records personal information categories.

Advertising networks
Internet service providers
Data analytic providers
Operating systems and platforms
Social networks
Data brokers or aggregators
Service providers

Yes

C: Protected classification characteristics under California or federal law.

Advertising networks
Internet service providers
Data analytic providers
Operating systems and platforms
Social networks
Data brokers or aggregators
Service providers

Yes

D: Commercial information.

Advertising networks
Internet service providers
Data analytic providers
Operating systems and platforms
Social networks
Data brokers or aggregators
Service providers

Yes

E: Biometric information.

None

None

F: Internet or other similar network activity.

Advertising networks
Internet service providers
Data analytic providers
Operating systems and platforms
Social networks
Data brokers or aggregators
Service providers

None

G: Geolocation data.

Advertising networks
Internet service providers
Data analytic providers
Operating systems and platforms
Social networks
Data brokers or aggregators
Service providers

Yes

H: Sensory data.

None

None

I: Professional or employment-related information.

Advertising networks
Internet service providers
Data analytic providers
Operating systems and platforms
Social networks
Data brokers or aggregators
Service providers

Yes

J: Non-public education information.

None

None

K: Inferences drawn from other personal information.

None

None

 

Your Rights and Choices

The CCPA provides consumers (California residents) with specific rights regarding their personal information. This section describes your CCPA rights and explains how to exercise those rights.

Right to Know

You have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months (the "right to know"). Once we receive your request and confirm your identity (see Exercising Your Rights to Know or Delete), we will disclose to you:

  • The categories of personal information we collected about you.
  • The categories of sources for the personal information we collected about you.
  • Our business or commercial purpose for collecting or selling that personal information.
  • The categories of third parties with whom we share that personal information.
  • The third parties to whom we disclosed your personal information.
  • If we sold or disclosed your personal information for a business purpose, two separate lists disclosing:
    • sales, identifying the personal information categories that each category of recipient purchased; and 
    • disclosures for a business purpose, identifying the personal information categories that each category of recipient obtained. 
  • The specific pieces of personal information we collected about you (also called a data portability request).

We do not provide a right to know disclosure for B2B personal information.

Right to Portability

Under certain circumstances, you may have the right to receive personal information we hold about you in a structured, commonly used, and machine-readable format so that you can provide that personal information to another entity. We do not provide a right to data portability disclosure for B2B personal information.

Right to Delete

You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions (the "right to delete"). Once we receive your request and confirm your identity (see Exercising Your Rights to Know or Delete), we will review your request to see if an exception allowing us to retain the information applies. We may deny your deletion request if retaining the information is necessary for us or our service provider(s) to: 

  1. Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, fulfill the terms of a written warranty or product recall conducted in accordance with federal law, or otherwise perform our contract with you.
  2. Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
  3. Debug products to identify and repair errors that impair existing intended functionality.
  4. Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.
  5. Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et. seq.).
  6. Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information's deletion may likely render impossible or seriously impair the research's achievement, if you previously provided informed consent.
  7. Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.
  8. Comply with a legal obligation.
  9. Make other internal and lawful uses of that information that are compatible with the context in which you provided it.

We will delete or deidentify personal information not subject to one of these exceptions from our records and will direct our service providers to take similar action. 

We do not provide these deletion rights for any B2B personal information.

Right to Correct

You have the right to request that we correct any incorrect personal information that we collect or retain from you, subject to certain exceptions.

Right to Object to Automated Decision Making/Profiling

You may have the right not to be subject to a decision that is based solely on automated processing (where a decision is taken about you using an electronic system without human involvement) which significantly impacts your rights. No decision will be made by us about you solely on the basis of automated decision making which has a significant impact on you.

Right Not to Provide Consent or to Withdraw Consent

We may seek to rely on your consent in order to process certain personal information. Where we do so, you have the right not to provide your consent or to withdraw your consent at any time. This does not affect the lawfulness of the processing based on consent before its withdrawal.

Right to Limit Processing

You may have the right to request that we limit our processing of your personal information in certain circumstances. For instance, this right is available if you contest the accuracy of the personal information, or you objected to our processing.

Right to Opt out of the Sale of Personal Information

If we sell your personal information, you may have the right to direct us to stop selling your personal information. Please note that opting out of the sale of your personal information does not affect other types of sharing, such as sharing with our service providers for business purposes. Additionally, opting out may limit the services and features we can offer you, as some services require the sharing of personal information.

Right to Opt out of Targeted Advertising

You may have the right to opt out of the sharing of your personal information to third parties for behavioral or cross-contextual advertising purposes. Many websites use cookies, pixels, and similar technology, and share certain information, such as your IP address or device identifiers, to certain third-party advertisers in order to improve your user experience and to optimize our marketing activities. You have the right to direct us not to share or use your personal information for targeted advertising purposes to the extent that we do so.

Right to Appeal

You may have the right to appeal if we refuse to take action on your rights request. Instructions on how to appeal will be provided to you upon such a denial, but in any event, such instructions will be substantially similar to those provided below for submitting requests.

Exercising Your Rights

To exercise your rights above, please submit a request by either: 

Only you, or someone legally authorized to act on your behalf, may make a request to know or delete related to your personal information. To designate an authorized agent, contact us in accordance with this section and meet the verification requirements you will be given. 

You may also make a request to know or delete on behalf of your child by submitting your request in accordance with this section and meeting the verification requirements you will be given. 

You may only submit a request to know twice within a 12-month period. Your request to know or delete must:

  • Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative, which may include:
    • Verification requirements as detailed in our app or as given to you when you contact us.
    • Parent or guardian verification requirements as detailed in our app or as given to you when you contact us.
  • Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.

We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. 

You do not need to create an account with us to submit a request to know or delete. 

We will only use personal information provided in the request to verify the requestor's identity or authority to make it. 

Response Timing and Format

We will confirm receipt of your request within ten (10) business days. If you do not receive confirmation within the 10-day business days timeframe, please contact policyservices@securityfirstflorida.com.

We endeavor to substantively respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time (up to another 45 days), we will inform you of the reason and extension period in writing.

If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option. 

Any disclosures we provide will only cover the 12-month period preceding our receipt of your request. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.

We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request. 

Non-Discrimination

We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:

  • Deny you goods or services.
  • Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties.
  • Provide you a different level or quality of goods or services.
  • Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.

Other California Privacy Rights

California's "Shine the Light" law (Civil Code Section § 1798.83) permits users of our WebApp that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please send an email to policyservices@securityfirstflorida.com or call us at (877) 333-9992.

Changes to Our Privacy Policy

We reserve the right to amend this privacy policy at our discretion and at any time. When we make changes to this privacy policy, we will post the updated notice on the WebApp and update the notice's effective date. Your continued use of our WebApp following the posting of changes constitutes your acceptance of such changes.

Contact Information

If you have any questions or comments about this notice, the ways in which Security First collects and uses your information described here and in Security First’s WebApp Privacy and Cookies Policy, your choices and rights regarding such use, or wish to exercise your rights under California law, please do not hesitate to contact us at:

If you need to access this Policy in an alternative format due to having a disability, please contact policyservices@securityfirstflorida.com or call us at (877) 333-9992.