Privacy Policy

ErgMAPS has developed online ergonomic risk assessment and case management software programs which allow company employees and Safety Professionals to identify and mitigate ergonomic risk.

ErgMAPS recognizes that privacy is very important to our clients and the employees of our clients, and we pledge to protect the security and privacy of any personal information that is entered into our software. This includes employee’s names, addresses, telephone numbers, email addresses and any information that can be linked to an individual. ErgMAPS strives to collect, use and disclose personal information in a manner consistent with the laws of the countries in which it does business, but it also has a tradition of upholding the highest ethical standards in its business practices.

COMMITMENT

ErgMAPS complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce.  ErgMAPS has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF.  ErgMAPS has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF.  If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern.  To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.

NOTICE

ErgMAPS will notify individuals about the purposes for which data is collected and used about them. Notice will be provided in clear and conspicuous language when individuals are first asked to provide personal information to ErgMAPS, or as soon as practicable thereafter, and in any event before ErgMAPS uses the information for a purpose other than that for which it was originally collected.

Where ErgMAPS receives personal information from their subsidiaries, affiliates or other entities in the EU and Swiss , they will use and disclose such information in accordance with the notices provided by such entities and the choices made by the individuals to whom such personal information relates.

CHOICE

ErgMAPS  will offer individuals the opportunity to choose (opt-out) whether their personal information is (a) to be disclosed to a non-agent third party, or (b) to be used for a purpose other than the purpose for which it was originally collected or subsequently authorized by the individual. A phone number will be present for those wishing to opt-out and still be able to reach a health and safety professional.

ONWARD TRANSFER (Transfers to Third Parties)

ErgMAPS does not disclose personal information to third parties without consent from our users. . ErgMAPS will obtain assurances from their agents that they will safeguard personal information consistently with this Policy. Examples of appropriate assurances that may be provided by agents include: a contract obligating the agent to provide at least the same level of protection as is required by the relevant EU-US Data Privacy Framework (DPF) Principles, being subject to EU Directive 95/46/EC (the EU Data Protection Directive),  certification by the agent, or being subject to another European Commission adequacy finding. When ErgMAPS becomes aware that an agent is using or disclosing personal information in a manner contrary to this Policy, ErgMAPS will take reasonable steps to prevent or stop the use or disclosure.

SECURITY FOR PERSONAL DATA

ErgMAPS is committed to safeguarding the Personal Data that it receives.  While ErgMAPS takes reasonable precautions to protect Personal Data in its possession from loss, misappropriation and unauthorized access, disclosure and destruction. There is the possibility, under certain conditions, for the individual to invoke binding arbitration.

ErgMAPS uses a combination of online and offline security technologies, procedures and organizational measures to help safeguard Personal Data.  For example, facility security is designed to prevent unauthorized access to our computers. Our computers are safeguarded and only accessible by finger print verification.  Our software uses SSL encryption technology to send data from the web to the database.  ErgMAPS also protects Personal Data through the use of firewalls, role-based restrictions and, where appropriate, encryption technology.  Individuals who have been granted access to Personal Data will be made aware of their responsibilities to protect such information and will be provided training and instruction on how to do so.  ErgMAPS may disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. ErgMAPS will be organization’s liable in cases of onward transfers to third parties.

ACCESS AND CORRECTION

Upon request, ErgMAPS will grant individuals reasonable access to personal information that it holds about them. In addition, ErgMAPS will take reasonable steps to permit individuals to correct, amend, or delete information that is demonstrated to be inaccurate or incomplete.

DATA INTEGRITY

ErgMAPS will not process your Personal Information in a way that is incompatible with the purposes for which it has been collected or subsequently authorized by you. To the extent necessary for those purposes, ErgMAPS will take reasonable steps to ensure that Personal Information is relevant for its intended use, accurate, complete and current.

ENFORCEMENT

ErgMAPS will conduct compliance audits of its relevant privacy practices to verify adherence to this policy. Any employee that ErgMAPS determines is in violation of this policy will be subject to disciplinary action up to and including termination of employment. ErgMAPS organization will be subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC). Complaints or concerns for employees  that cannot be resolved internally will be referred to the Data Protection Panel comprised of EU or Swiss data protection regulators.

CHANGES TO THIS POLICY

This policy may be amended from time to time, consistent with the requirements of the EU-US Data Privacy Framework (DPF) Principles. The revisions will take effect on the date of publication of the amended policy, as stated.

COMPLAINTS

In compliance with the EU-US Data Privacy Framework (DPF), ErgMAPS commits to resolve complaints about your privacy and our collection or use of your personal information.  European Union or Swiss citizens with inquiries or complaints regarding this privacy policy should first contact ErgMAPS at:

ErgMAPS Privacy Office
76 Engert Ave Suite 8B
Brooklyn, NY 11222

Email: privacy@Ergmaps-us.com

ErgMAPS has further committed to refer unresolved privacy complaints under the EU-US Data Privacy Framework (DPF)Principles to an independent dispute resolution mechanism, the BBB EU-US Data Privacy Framework (DPF), operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed by ErgMAPS, please visit the BBB EU-US Data Privacy Framework (DPF) web site at  www.bbb.org/EU-privacy-shield/for-eu-consumers/ for more information and to file a complaint.

CONTACT INFORMATION

Questions or comments regarding this Policy should be submitted to the ErgMAPS Privacy Office by mail or e-mail as follows:

ErgMAPS Privacy Office
76 Engert Ave Suite 7A
Brooklyn, NY 11222

Email: privacy@Ergmaps-us.com

This Privacy Policy is effective January 1, 2024

Pursuant to the Data Privacy Framework (DPF), Beverly Stacy remains liable for the transfer of personal data to third parties acting as our agents unless we can prove we were not a party to the events giving rise to the damages.