About this Policy
This policy does not apply to any non-BCSF Corporation affiliates. It also does not apply to the practices of our licensees or business partners, such as vendors and advertisers.
Requests and Submissions on this Website
When you are on this website, you may take certain types of action, such as asking a question about an insurance issue or product. While BCSF owns insurance companies, BCSF is not itself in the business of insurance. Your request and information will be shared with the responsible BCSF business or agent so that may respond to your question or request.
Categories of Information Collected by Our Companies
Our companies collect and maintain a wide range of nonpublic personal information about prospective, current, and former insureds and others. Here are some examples of the types of information that our insurance businesses may collect:
- Contact: We might collect your name, and home and business address. We might also collect your email address and telephone numbers.
- Financial: We might collect your credit card number or other payment information and payment history.
- Insurance: We might collect information about your insurance claims. We might also collect your social security number and driver’s license number.
- Demographic: We might collect information about your marital status or your family members.
- Other: We might collect information about the type of browser you use. We might also look at what part of our sites you visit. We might also collect information about the links you select on our sites that take you to third party websites.
How Information About You is Collected
Our companies are engaged in a variety of insurance businesses and may collect information about you a variety of different ways. Here are some examples:
- We may collect information directly from you. For example, we may collect information when you make an insurance request, decide to make a purchase, or submit an email or form to us.
- We may collect information from you passively. For example, we might use tracking tools like cookies and web beacons, and pixel tags.
- We may get information from third parties. For example, our businesses might get information about you from a credit reporting agency and other authorized providers of personal information.
How Your Personal Information is Used
Our companies may use your personal information a variety of different ways. Here are some examples:
- To process your requests. For example, our businesses will use your information to generate a rate quote.
- As described when your information was collected.
- For marketing purposes. For example, as permitted, our businesses may use your information to tell you about themselves or about products or services they think you will like.
- To customize your experience with us. For example, to tailor your website visit to fit your interests.
- For our other legitimate business purposes. For example, we may combine information that we get about you from third parties with information we already have.
- As otherwise permitted by law.
How We Share Information
- With vendors and others who provide services for us. For example, our insurance businesses might share your information with insurance agents or insurance brokers. We might also share your information with companies that maintain databases used by the insurance industry.
- With a successor to all or part of our business. For example, any part of our BCSF companies or business was sold we might sell the customer list as an asset in the transaction.
- For legal reasons or to investigate fraud. Our businesses will disclose information to compliance assessors. These include insurance regulators and auditors. We may also disclose information in response to a court order or subpoena. We will also share information if we believe it is necessary to cooperate with law enforcement. We might also share information in response to a government request. We will also share information as otherwise permitted by law.
- As part of our insurance business. For example, our businesses may share information with insurance rating organizations. We might also share information with credit reporting agencies, guaranty funds, and compliance assessors.
- With our affiliates as permitted by law. For example, we will not share your personal information with other BCSF companies for marketing purposes except as allowed by applicable law.
- We will also share information for other valid business purposes as permitted by law.
You can choose not to provide us with some or all requested information. If you do not provide it, though, we may not be able to fulfill your request. You can also set your browser up to reject cookies. If you do this, some of the features of our website will not work.
How We Secure Information
BCSF takes steps to protect personal information that we receive consistent with applicable laws and our internal policies and procedures. These steps vary depending on the nature of information and include computer safeguards, and secured files and buildings.
The Internet is public, and we cannot promise that your information will remain secure. We encourage you to use caution when disclosing information online. Do not share your passwords with other people and select passwords that are secure.
We retain your information for as long as necessary to carry out the purposes described here. We will also store information for retention periods required by law. Our information storage practices are not affected by the termination of any customer relationship.
Our sites are operated in the United States. Our businesses only sell insurance in the United States. If you are located outside of the United States, please be aware that information you provide to us may be sent to the United States. By using our sites and giving us your information, you agree to such transfer. You also understand that the U.S. may not provide the same level of protections as the laws of the country in which you are located.
Our sites might include links to third-party sites. If you click on one of those links, you will be taken to websites we do not control. This policy does not apply to the information practices of those sites.
We do not direct our sites to children under the age of 13 and do not knowingly collect personally identifiable information from children under the age of 13. If you are a parent of a child under 13, and you believe that your child has provided us with information about him or herself, please contact us. To learn more about how to protect your child online, visit the FTC’s website.
California Consumer Privacy Act
BCSF is committed to maintaining and protecting the confidentiality of your personal information. The California Consumer Privacy Act (“CCPA”) provides consumers who reside in California certain rights regarding their personal information. This policy explains how we obtain, use, and disclose personal information, and your rights relating to your personal information under the CCPA.
Right to Opt-Out: If a business sells consumer personal information, they must provide the consumer the right to “opt-out” of their information being sold. Please note that BCSF does not sell consumer personal information.
Right to Request Personal Information: As a consumer, you have the right to know and the right to request that we disclose to you what personal information we collect, use, and disclose. You have the right to request the categories of personal information we have collected and store about you, in accordance with the categories of information listed in the CCPA and set forth in the table below. In addition, you have the right to request categories of sources of personal information we collected about you, the business or commercial purpose for collecting, the categories of third parties with whom we share that personal information, and the specific pieces of personal information we have collected about you. Categories of personal information that we disclosed about you for a business purpose may also be requested, with the appropriate lists provided under the CCPA.
Upon receipt of a verifiable consumer request, we will promptly take steps to disclose and deliver, free of charge to you, the personal information required by this section and within the timeframes permitted for responding to the exercise of this or other applicable rights. The information may be delivered by mail or electronically. We may provide personal information to you at any time following a verified request. We are not required to provide personal information to you more than twice in a 12-month period.
Right to Delete Personal Information: You have the right to request we delete personal information we, or our service providers, store about you, subject to certain limitations. The CCPA recognizes that there are certain business purposes that allow us to retain your information.
Identity Verification: Prior to accessing or disclosing any information pursuant to a data request, we may ask you for additional information to allow us to verify your identity. A verifiable consumer request must provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or that the requestor is the authorized representative of the data subject. A verifiable request must also include sufficient detail that allows us to properly understand, evaluate, and respond to it.
If you are making a request on behalf of another individual, we may ask you to provide us with information regarding your legal authority to act on behalf of such individual. You may also make a verifiable consumer request on behalf of your minor child. Please indicate in your request if either of these apply, as additional verification may apply.
In general, our verification process includes reviewing the information submitted in the request, comparing it to the right(s) requested; the number of verification points/methods required by the CCPA; and the type, sensitivity, and risk of information requested, including to the consumer, from unauthorized disclosure or deletion. An account is not required with us to make a request. We will use personal information provided in a verifiable consumer request to verify the requestor’s identity and authority to make the request, or otherwise as permitted by the CCPA. We will respond to a verifiable consumer request within 45 days of its receipt. If additional time is required to respond to the request (up to 90 total days), we will inform you of the reason for the extension in writing. A response to a consumer request will be provided as required by the CCPA, such as through an account (if one exists), or otherwise by mail or electronically.
Access Request Responses: There may be certain instances in which we will deny your request to access, receive, or delete personal information. For example, we may deny requests where any such access or disclosure would interfere with our regulatory or legal obligations, where we cannot verify your identity, and where exemptions or exceptions are permitted by the CCPA, including frequency limitations. We also have the ability under the CCPA to deny requests if it would result in disproportionate cost or effort. If we will not substantively complete a request made under the CCPA, we will provide you with an explanation within a reasonable time period and as required by law.
Categories of Personal Information: Personal information is collected and may be used to provide the services to you, to perform obligations under agreements, to provide information and notifications to you or an authorized representative, to protect the rights and safety of you and/or others, to comply with court and other legal requirements, for business purposes and as otherwise set forth in the CCPA, to conduct organizational and operational needs, and as otherwise described when collecting personal information or within this page.
A request for personal information collected and/or deletion, noted above, may involve categories and/or specific pieces of information. However, certain exemptions and exceptions may apply in responding to a request.
The CCPA applies to several categories of personal information. The table below provides descriptions of each category of personal information and identifies whether BCSF collects such information and collected such information from consumers within the past 12 months:
|Category/Examples||Collected by BCSF|
A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver’s license number, passport number, or other similar identifiers.
|Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))|
A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories.
|Protected classification characteristics under California or federal law|
Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).
Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.
|Internet or other similar network activity|
Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement.
Physical location or movements.
Audio, electronic, visual, thermal, olfactory, or similar information.
|Professional or employment-related information|
Current or past job history or performance evaluations.
|Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99))|
Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.
|Inferences drawn from other personal information|
Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
Personal information may also be collected from a consumer in the context of current or former job applicant, employee, director, officer, or contractor. Additional information collected may include emergency contact and information to administer benefits, including the provision of benefits to another person.
“Personal information” does not include information that is lawfully made available from federal, state, or local government records or consumer information that is deidentified or aggregated. The CCPA does not apply to health or medical information subject to the Health Insurance Portability and Accountability Act of 1996 (HIPAA), information covered by the California Confidentiality of Medical Information Act (CMIA) or clinical trial data, and personal information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FCRA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver’s Privacy Protection Act of 1994.
Business purposes may include auditing, legal and regulatory compliance, security, debugging, the performance of services (including claims analysis and payment), internal research, and testing/improvement.
Categories of sources from which personal information was directly and indirectly collected in the past 12 months include from you and/or authorized agents; interaction with our platforms and services; and third parties. This could include information obtained on websites and services from third parties that interact with us in connection with the services we perform.
Categories of third parties with whom the business shared personal information in the past 12 months include authorized agents, affiliates, service providers (such as those described previously), contractors, and authorized third parties.
Non-Discrimination: We will not discriminate or retaliate against you for exercising any rights provided to you under the CCPA. However, if you refuse to provide your personal information to us or ask us to delete your personal information, and that personal information is necessary for us to provide you with goods or services, we may not be able to complete that transaction.
Alternate Formats: If you need this policy in an alternate format, please contact our Privacy Officer at email@example.com.
Last Updated: August 24, 2020