As insurance technology rapidly evolves, companies stuck in legacy processes risk falling behind, making it crucial for CEOs to understand their CIO’s strategy. This document highlights key questions CEOs should ask to ensure operational readiness, scalability, and future growth in a complex, regulated industry.
Privacy Statement
Effective as of April 8, 2024
EIS Group, Inc. and its affiliates (collectively, the “EIS” or “we”, “us”, “our”) respect your privacy. The following Privacy Statement explains how EIS governs, collects, discloses and uses personal information you provide to us via www.eisgroup.com and its related web pages https://blog.eisgroup.com/, https://www.eisgroup.com/eis-must-reads/ (collectively the “Website”).
We may update this Privacy Statement from time to time. Please regularly check the Website for information about revisions to this Privacy Statement. By continuing to use the Website or providing us information through your use of the Website after we make a change to the Privacy Statement, you accept the updated provisions in the Privacy Statement.
Table of Contents
About EIS
EIS is an insurtech SaaS company that delivers platform and cloud-based products both to small and large insurance providers and operates globally. Our product suite includes policy, billing, claims, customer service management, and analytic software and services. EIS is a technology innovator in the insurance industry space. Our cloud-enabled and mobile-ready, unified platform of core was built to facilitate the efficiency of transactions between insurance carriers and their customers. Our solutions empower insurers to digitize core insurance operations, create the essential data foundation and deliver easier-than-easy experiences that attract a new generation of customers.
Definitions
Cookies are small text files that are placed on your device when you browse the web. There are two types of cookies, depending on the following factors:
- Timeframe: the period the cookie is valid, either for a session or until deleted (persistent).
- Party: The party that places the cookie on your device, which is either the website you are visiting (1st Party) or generated by a website other than the one you are presently visiting (3rd Party).
European Economic Area (“EEA”) includes EU countries (Austria, Belgium, Bulgaria, Croatia, Republic of Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, and also Iceland, Liechtenstein, and Norway.
IP Address is a numerical label assigned to each device connected to a computer network that uses the Internet Protocol for communication. An IP address serves two main functions: host or network interface identification and location addressing.
Personal Information refers to any data that can be used to identify a specific individual. Also, synonymous with the terms personal data and personally identifiable information. Personal Information includes but is not limited to names, mailing address, email address, and phone numbers, IP address, login IDs, social media posts, or digital images, geolocation, biometric, and behavioral data.
Special categories of Personal Information include the following: race, ethnicity, political, trade union, religion, health, biometric, genetic, and sexual orientation.
“Process”, “Processes”, “Processing” or “Processed” means any operation or set of operations which is performed upon Personal Information (Personal Data) whether or not by automatic means, including, without limitation, accessing, collecting, recording, organizing, structuring, retaining, storing, adapting or altering, retrieving, consulting, using, disclosing by transmission, disseminating or otherwise making available, aligning, combining, blocking, restricting, erasing and destroying Personal Data and any equivalent definitions in applicable Data Protection and Privacy Laws to the extent that such definitions should exceed this definition.
Personal Information Collection and Use
EIS collects Personal Information regarding users and visitors of our Website in the manner described in this section below. We only use Personal Information for the purposes for which it has been collected.
Job Applicants
We collect Personal Information (contact information, home address, nationality, job title, employment history, education history, work permit status, assessments) from people interested in working at EIS. We will only use such information to evaluate the applicant for employment-based opportunities. Our basis for processing here is both the consent of the individual applying and our legitimate interests. Applicant information is shared with our vendors and suppliers for processing job applicant information. We do not sell or share applicant information for any other purpose.
Resume and other Personal Information will be additionally processed if you are hired as part of the onboarding process and during your employment.
Disclosure of sensitive Personal Information (such as information about your health, race, ethnicity, religion, or sexual orientation) during your application is not required, but rather voluntarily disclosed.
Please review our candidate privacy statement for more information on how we process candidate or job application data.
Feedback
We may collect feedback from visitors to our Website. In connection with such feedback, we collect names and email addresses. We may use the information that you provide to contact you regarding your feedback. Please note that any feedback you provide will become the property of EIS.
Cookies and Tracking Pixels
A cookie is a piece of data stored on the user’s computer or device, usually with the Web browser, containing information about the user. Cookies improve your ability to use our Website. For instance, cookies enable our Website to recognize you as you navigate through the pages of our Website.
Tracking pixels, also known as web beacons, are objects embedded within a Web page that track a user’s access. We and third-party services on our behalf may use tracking pixels to track your activity on our Website and collect, store and use this information to optimize our Website’s experience.
By using our Website, you have the opportunity to consent to the use of cookies and tracking pixels described in this Privacy Statement. If a user rejects the cookie, it is still possible to use the Website, but the user will be limited in some areas of our Website. Cookies can also enable us to track and target the interests of our users to enhance the experience on our Website or serve to advertise through retargeting methods on third-party sites. If you opt-out of using cookies, we may employ a cookie only to help us remember this preference. If you would like further information on the cookies we employ, please contact us via the email address provided below.
Our Website makes use of third-party services that help us improve our users’ experience. The following paragraphs describe the cookies and data collection employed by these third-party services.
Google Analytics is a web analytics service provided by Google. Google Analytics may use cookies or other means to help us analyze how users use the Website. The information generated by the cookie about your use of the Website (including your IP address) will be transmitted to and stored by Google on servers in the United States.
Google will use this information to evaluate your use of the Website, compiling reports on Website activity and providing other services relating to the Website activity and internet usage. Google may use the data collected to contextualize and personalize the ads of its advertising network. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. By using this Website, you consent to the processing of data about you by Google in the manner and for the purposes set out above. You can also opt-out of Google’s advertising tracking cookie or use a browser plugin to opt-out of all Google Analytics tracking software. Find more information about Google’s privacy practices here: http://www.google.com/intl/en/policies/.
HubSpot is a marketing and sales platform and uses cookies to collect, store and use information regarding activity on our Website. A list of HubSpot’s various cookies is provided here: http://knowledge.hubspot.com/cookies.
LinkedIn is the world’s largest professional network with hundreds of millions of members and growing rapidly. LinkedIn’s mission is to connect the world’s professionals to make them more productive and successful.
LinkedIn Cookies and other ad technology such as beacons, pixels, and tags help us serve relevant ads to you more effectively. They also help us provide aggregated auditing, research, and reporting for advertisers, understand and improve our service, and know when content has been shown to you. Note: Because your web browser may request advertisements and beacons directly from third-party ad network servers, these networks can view, edit, or set third-party cookies, just as if you had requested a web page from their site. Ads served by LinkedIn may also set third-party cookies, in order to understand how it works, please visit the following page: https://www.linkedin.com/legal/cookie-policy.
IP Addresses
We gather your IP address when you access the Website. We use IP addresses to analyze trends, administer, maintain, and improve the Website, track user’s movement, personalize (at the company level), and gather broad demographic and behavioral information for aggregate use. We do not use your IP address in a manner that will specifically identify you (name).
Contact Information
We may collect your contact information (name, job title, company, and email address) if you choose to provide this information. By opting in, consenting to the collection of this information, you should be aware that we additionally use this information for marketing, to study trends, and to improve our products. If you no longer wish to receive emails from us, or you wish to view what emails that you have signed up for, you may review or update your consent options/preferences at any time by following the instructions included in the emails you receive.
Lawful Basis for Processing Your Personal Information
European Union Data Protection Law requires a “lawful basis” for collecting and processing Personal Information from residents of the European Economic Area. Our lawful bases for processing your Personal Information depending on a particular situation, normally include:
- Processing is based on your consent
- Processing is based on legitimate interests
- Processing is necessary due to the fulfillment of a contract
- Processing is necessary to fulfill a legal obligation
California Residents
CCPA NOTICE FOR CALIFORNIA RESIDENTS
This CCPA Notice for California Residents (“Notice”) supplements our Privacy Statement by explaining the privacy rights of visitors and users of our Website (“customers” or “you”) only if they reside in the State of California. This Notice to is provided under California law, including the California Consumer Privacy Act (“CCPA”), Cal. Civ. Code 1798.100, et seq.
(I) COLLECTION, USE, AND SHARING OF INFORMATION
Where you interact with our Website, EIS collects information that identifies, relates to, describes, references, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer (you) or your household/device (“Personal Information”). Information about the categories of personal data we collect, the purposes of the processing, and any sharing of your personal data can be found from the following sections of this Statement:
- Personal Information we collect
- Lawful basis for processing
- Disclosures
(II) CALIFORNIA CONSUMER RIGHTS
If you are a California resident, you have certain rights under the CCPA:
- Right to know. You have the right to know what data is being collected about a consumer and for what purpose.
- Right to access. You may request us to provide information about how we have collected and used your Personal Information during the past 12 months.
- Right to delete. You have the right to request erasure of your Personal Information, however, subject to certain exceptions.
- Right to opt-out of sale or sharing of Personal Information. You have the right to opt out of the sale or sharing of your Personal Information to or with third parties.
- Right to correct. You have the right to request correction of your Personal Information. After we validate your request, we will correct inaccurate Personal Information we hold about you, unless legal exceptions apply.
- Right to limit use and disclosure of sensitive Personal Information. You have the right to restrict the usage of your sensitive Personal Information collected.
- The right to non-discrimination. You have the right to be free from discrimination related to your exercise of your privacy rights.
Data Transfers
Your Personal Information may be collected and stored by us or our affiliates in different countries. We can also transfer your Personal Information between countries. Therefore, your Personal Information may be processed outside of the country of your jurisdiction, which does not guarantee the same level of protection. The Personal Information that we collect may be transferred to and stored at, a destination outside the United States, European Economic Area (“EEA”), or in other countries that we operate. We have ensured that the safeguards we implemented guarantee an adequate level of protection in relation to cross-border Personal Data transfers.
Links
This Website may contain links to other websites. Please be aware that EIS is not responsible for the privacy practices of third-party websites. We encourage our users to be aware when they leave our Website to read the privacy statements of every website that they visit and browse. This Privacy Statement applies solely to information collected by this Website.
Children
We do not purposely gather Personal Information from individuals that are younger than 13. We ask that individuals under the age of 13, not to send us their Personal Information. If we discover that we have gathered Personal Information from a child under age 13, we will promptly erase that data.
Security
The information collected on this Website is protected. We maintain physical, technical, and administrative controls and procedures designed to safeguard the information we collect through the Website. We have implemented adequate technical and organizational measures to protect personal data against unauthorized, accidental, or unlawful destruction, loss, alteration, misuse, disclosure, or access and against all other unlawful forms of processing.
We employ Secure Socket Layer (SSL) encryption on this Website. You can identify a secure page because of the lock icon on the bottom of the address section of your browser.
We securely store the information we collect, store, own, and process on behalf of customers both at rest and in transit. We further limit access to Personal Information to employees based on their roles and duties. Additionally, we limit access to third-party vendors/suppliers who provide us with assistance in processing that information.
Third-Party Websites
We may disclose your Personal Information to our third-party service providers and/or partners for a business purpose. We take measures to ensure that these third parties safeguard your Personal Information.
EIS may share your information with its subsidiaries and corporate affiliates. Other companies besides EIS and its affiliates may operate or host the Website or the computers that operate the Website, store or process data for us, and provide services related to the information requests that you have submitted or communications we provide to you.
Disclosures
In addition to the uses described above in this Privacy Statement we may use and disclose information, including Personal Information submitted by you and/or collected by the Website or otherwise subject to this Privacy Statement, to the extent reasonably necessary for any one or more of the following purposes:
(i) to correct technical problems and malfunctions in how we provide our Website to you and to technically process your information;
(ii) to protect the security and integrity of the Website;
(iii) to protect our rights and property and the rights and property of others;
(iv) to respond to claims that your information violates the rights or interests of third parties;
(v) to comply with applicable law;
(vi) to respond to judicial process; and
(vii) to the extent permitted under other provisions of law, to provide information to law enforcement agencies and for an investigation on a matter related to public safety, as applicable.
You understand and agree that technical processing of your information is and may be required:
(a) to send and receive messages regarding your use of the Website;
(b) to conform to the technical requirements of connecting networks;
(c) to conform to the limitations of our Website;
(d) to conform to other, similar technical requirements.
Storage and Retention of Your Personal Information
We may store information collected via the Website, only for as long as is necessary to fulfill the purposes and use described in this Privacy Statement. The time period for which we store your information depends on the purposes for which it was collected and/or if it is required to comply with applicable laws. Please note that obligatory retention periods for personal data vary based on the relevant law. A longer retention period could be required for the period of litigation or investigations or by EIS internal retention policies and procedures.
Updating Your Personal Information
We want to ensure that the Personal Information we store about our users is correct, current, and complete. To update your information collected via the Website, please contact us via the email contact below. We will take steps to make sure that any updates that you provide are processed promptly.
Your rights relating to Your Personal Information
Depending on where you reside and applicable privacy laws, you may have certain rights relating to your Personal Information.
These rights may include the following rights:
- Right of access. This right enables you to receive information on how we process your personal data and a copy of the personal data we hold about you. This right may be restricted by legislation, protection of other data subjects’ privacy rights and our business practices and business secrets.
- Right to be informed. This right enables you to get clear and concise information about what we do with your personal data.
- Right to erasure (“right to be forgotten”). This right enables you to request the deletion of your personal data under certain circumstances. We will comply with such request unless we have a valid legal basis not to do so, or a legal obligation to preserve the data.
- Right to rectification. This right enables you to request correction of incorrect or incomplete Personal Information we have collected about you.
- Right to data portability. You have the right to move, copy or transfer your Personal Information to another controller upon condition that the Personal Information you sent to us was furnished in a structured and commonly used format.
- Right to object to processing. You have the right to object to the processing of your Personal Information under certain circumstances. For example, if we do not have legitimate grounds to process your Personal Information.
- Right to restriction of processing. This right enables you to request to restrict processing of some categories of Personal Information when certain circumstances apply.
- Right to withdraw consent. This right enables you to withdraw your consent if the lawful basis for processing was your consent.
- Right not to be subject to automated decision-making. This right enables you not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you.
- Right to lodge a complaint. You have the right to make a complaint to the relevant supervisory authority. However, we would appreciate solving the issue amicably and dealing with your concerns and other questions before you send a claim to the supervisory authority.
The rights mentioned above are not absolute and vary from country to country.
Please note that under certain circumstances, a request to exercise your rights and obtain access or information held by us may be subject to a fee to cover our costs in providing you with details of this information. Please contact us regarding the rates we charge for such requests.
You may have your data removed from our databases at any time. Similarly, you may request access to the data we have on file, by emailing the address below. Additionally, EIS will alert downstream recipients of deletion requests such as our partners, processors, vendors, and suppliers.
Notification of Changes
If we decide to change our Privacy Statement, we will post those changes on our Website. If at any point we decide to use your Personal Information in a manner different from that stated at the time it was collected, we will notify you by way of an email to the email account you provided to us. We will use information following the version of the Privacy Statement under which the information was collected.
Contact Information
All questions, concerns, or communications regarding Privacy Statement should be directed to Privacy@eisgroup.com.