We collect several types of information from and about users of Our Online Services. You may submit to Us, through Our Online Services or by other means, information including:
By which you may be personally identified, such as name, postal address, e-mail address, telephone number, social security number, medical records, taxpayer identification numbers, information surrounding claims, notice of claims and coverage determinations, letters of credit, credit instruments, debt information, actuarial information including pricing, premiums and loss analysis, documents prepared in the context of the hiring process such as job applications, resumes, certifications and educational or training records and professional licensing numbers and national practitioner Identification number (“NPI”). "personal data"
We collect this information:
Information You Provide to Us
The information We collect on or through Our Online Services may include:
As you navigate through and interact with Our Online Services, We may use automatic data collection technologies to collect certain information about your equipment, browsing actions, and patterns, including:
Google Analytics. We use Google Analytics to understand how you and others navigate on our web site. Pursuant to our agreement with Google, certain information about you is gathered by their software. A description of how Google uses this information can be found at Google.com/Policies/Privacy/Partners. Google updates this policy from time to time so you should periodically review this site.
The information We collect automatically is only statistical data and does not include personal information. It helps Us to improve our Online Services and to deliver a better and more personalized service, including by enabling Us to:
The technologies We use for this automatic data collection may include:
Web Beacons. Pages of Our Online Services and our e-mails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of certain website content and verifying system and server integrity).
We need certain Personal Data in order to provide you with certain products and Services. You will be asked to provide this information — and by doing so demonstrate that you agree to this Policy and its Terms. This consent, which you may withdraw at any time, provides Us with the legal basis We need to process your Personal Data. If you do not agree to this Policy, you may not use Our Services.
Who We Are: For the purpose of the GDPR, the data controller of your Personal Data is ProAssurance of 100 Brookwood Place, Suite 300, Birmingham, AL 35209. You may contact Us at PrivacyPolicy@ProAssurance.com.
b. Must Read Sections: Please carefully review the sections entitled “Data Security and International Transfer” and “Your Rights Regarding Personal Data.”
Summary:
We never sell Our users’ Personal Data. To provide the Services, We share Personal Data with service providers who are contractually obliged to comply with all applicable laws (i.e., GDPR and other data privacy laws) and who only have access to the Personal Data required for them to provide the relevant Services. We may share Personal Data among our various affiliates, all of whom are bound by this Policy, and with an acquirer if We are sold or merged. Finally, We can disclose Personal Data where required by law or where We believe it is necessary to protect our rights or those of Our other users.
We use information that We collect about you or that you provide to Us, including any personal information:
We may also use your information to contact you about Our own goods and services that may be of interest to you. For more information, see Choices About How We Use and Disclose Your Information.
We may disclose aggregated information about Our data subjects in Our systems, and information that does not identify any individual, without restriction.
We may disclose personal information that We collect or you provide as described in this Privacy Policy:
Summary:
We strive to protect the safety and security of all data in our possession, including Personal Data, through a variety of means, and We continually work to improve and update these practices. However, We cannot and do not guarantee the security of Personal Data We process. As noted elsewhere in this Policy, Personal Data may be transferred to jurisdictions with less strict privacy and related regulations than those in your home country, including the U.S., but We employ technical and other measures that comply with EU regulations to protect Personal Data belonging to EU residents when processed in the U.S.
We use physical, technical and administrative measures to safeguard Personal Data. While We strive to protect your Personal Data, no method of data transmission or storage is totally secure; therefore, We cannot guarantee the security of Personal Data in Our control. If you believe that any of your Personal Data may have been compromised by Us or the use of the Services, please contact Us immediately at PrivacyPolicy@ProAssurance.com.
Your information, including Personal Data that We collect from you, may be transferred to, stored at and processed by Us, our Affiliates and service providers outside your home country, including in the United States, where data protection and privacy regulations may not offer the same protections as in other parts of the world. When We do so, We will take the steps described in this Policy, which are designed to ensure that all Personal Data We or our vendors process (regardless of where it originates) is handled as required by the EU. By using the Services, you agree to the transfer, storing or processing of your data in accordance with this Policy.
You have choices regarding the personal information you provide to Us and there are mechanisms to provide you with the following control over your information:
We do not control third parties' collection or use of your information to serve interest-based advertising. However these third parties may provide you with ways to choose not to have your information collected or used in this way. You can opt out of receiving targeted ads from members of the Network Advertising Initiative ("NAI") on the NAI's website.
You can review and change your personal information by logging into the Website and visiting your account profile page.
You may also send Us an email at PrivacyPolicy@ProAssurance.com to request access to, correct or delete any personal information that you have provided to Us. We cannot delete your personal information except by also deleting your user account. We may not accommodate a request to change information if We believe the change would violate any law or legal requirement, cause the information to be incorrect or if We need to maintain the information for a legitimate business purpose.
Your California and Nevada Privacy Rights
If you are a California or Nevada resident, there may be laws that provide you with additional rights regarding our use of your personal information. To learn more about your California privacy rights, please visit our Privacy Notice for California Residents, which can be found at www.proassurance.com/privacy-policy/CA. To learn more about your Nevada privacy rights, please see the ProAssurance Privacy Notice for Nevada Residents, below.
Summary:
The GDPR grants EU residents certain rights regarding their Personal Data, including the right to access and modify Personal Data held by providers, and to have providers “forget” Personal Data that is no longer relevant. In some cases, you may exercise these rights from within the Services, but you may always contact Us to do so as well. Please include information about which rights you are seeking to exercise if you contact us. We may need to verify your identity before fulfilling your request.
We do not solicit or do business in Europe, but some of Our insureds and individuals associated with our business do reside in Europe and from time to time We receive job applications through Our Website from residents of Europe. If you are a resident of Europe, you have the following rights with respect to your Personal Data that We process:
If you wish to exercise any of these rights, please contact Us at PrivacyPolicy@ProAssurance.com or as set forth below. In your request, please make clear: (i) what Personal Data is concerned; and (ii) which of the above rights you would like to enforce. For your protection, We may only implement requests with respect to the Personal Data associated with the email address you send your request from, and We may need to verify your identity before implementing your request. We will try to comply with your request as soon as reasonably practicable, but in any event within thirty (30) days of your request. We may need to retain certain information for recordkeeping purposes or to complete any transactions that you began prior to requesting such change or deletion
It is our policy to post any changes We make to our privacy policy on this page with a notice that the privacy policy has been updated on the Website home page. If We make material changes to how We treat Our users' personal information, We will notify you by one of the following means: email to the primary email address specified in your account, first class postal mail or through a notice on the Website home page. The date the Privacy Policy was last revised is identified at the top of this page. You are responsible for ensuring We have an up-to-date active and deliverable email and physical addresses for you, and for periodically visiting our Website and this Privacy Policy to check for any changes.
If you have questions, concerns, or complaints about this Policy or Our data collection or processing practices, or if you want to report any security violations, please contact Us at PrivacyPolicy@ProAssurance.com or by writing the address below:
ProAssurance Corporation
Attn: Legal Department
100 Brookwood Place, Suite 300
Birmingham, AL 35209
EU Users Only. We hope to resolve any complaint brought to Our attention promptly; however, if your complaint has not been adequately resolved, you may always contact your local data protection supervisory authority, a list of which is available here: EDPB.Europa.eu/About-EDPB/Board/Members_en.
We commit to cooperate with the panel established by the EU data protection authorities (DPAs) and comply with the advice given by the panel regarding human resources data transferred from the EU in the context of the employment relationship. Please contact Us to be directed to the relevant DPA contacts at PrivacyPolicy@ProAssurance.com
Effective Date: January 1, 2020
This Privacy Notice for Nevada Residents supplements the information contained in ProAssurance's Privacy Policy (ProAssurance.com/PrivacyPolicy) and applies solely to all visitors, users, and others who reside in the State of Nevada. We adopt this notice to comply with the Nevada Privacy Law (NRS 603A.300- 603A.360) hereinafter, “NPL.”
Our Website collects or allows you to upload information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device ("personal information"). In particular, ProAssurance.com has collected the following categories of personal information from its consumers within the last twelve (12) months:
Category
|
Examples
|
Collected
|
A. Identifiers. |
A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver's license number, passport number, or other similar identifiers. |
YES |
B. Customer records personal information categories. |
A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver's license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories. |
YES
|
C. Protected classification characteristics. |
Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information). |
YES |
D. Commercial information. |
Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies. |
YES |
E. Biometric information. |
Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data. |
NO |
F. Internet or other similar network activity. |
Browsing history, search history, information on a consumer's interaction with a website, application, or advertisement. |
YES |
G. Geolocation data. |
Physical location or movements. |
NO |
H. Sensory data. |
Audio, electronic, visual, thermal, olfactory, or similar information. |
NO |
I. Professional or employment-related information. |
Current or past job history or performance evaluations. |
YES |
J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)). |
Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records. |
NO |
K. Inferences drawn from other personal information. |
Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes. |
NO |
We obtain the categories of personal information listed above from the following categories of sources:
We may use or disclose the personal information We collect for one or more of the following business purposes:
We will not collect additional categories of personal information or use the personal information We collected for materially different, unrelated, or incompatible purposes without providing you notice.
We may disclose your personal information to a third party for a business purpose. When We disclose personal information for a business purpose, We enter a contract that describes the purpose and requires the recipient to both keep that personal information confidential and not use it for any purpose except performing the contract.
We share your personal information with the following categories of third parties:
Disclosures of Personal Information for a Business Purpose
In the preceding twelve (12) months, Company has disclosed the following categories of personal information for a business purpose:
In the preceding twelve (12) months, We have not sold any personal information.
Nevada Residents
The NPL provides certain rights to Nevada residents in addition to the disclosures descried in sections 1-6 about the information We collect and how it is used. These additional rights are described below:
a. Deletion Request Rights
You have the right to request that We delete any of your personal information that We collected from you and retained, subject to certain exceptions. Once We receive and confirm your verifiable consumer request (see Exercising Access, Data Portability, and Deletion Rights), We will delete (and direct our service providers to delete) your personal information from Our records, unless an exception applies.
We may deny your deletion request if retaining the information is necessary for Us or Our service provider(s) to:
b. Response Timing and Format
We endeavor to respond to a verifiable consumer request within Sixty (60) days of its receipt. If We require more time (up to 90 days), We will inform you of the reason and extension period in writing.
If you have an account with Us, We will deliver our written response to that account. If you do not have an account with Us, We will deliver Our written response by mail or electronically, at your option.
Any disclosures We provide will only cover the 12-month period preceding the verifiable consumer request's receipt. The response We provide will also explain the reasons We cannot comply with a request, if applicable.
We reserve the right to amend this privacy notice at Our discretion and at any time. When We make changes to this privacy notice, We will post the updated notice on the Website and update the notice's effective date. Your continued use of Our Website following the posting of changes constitutes your acceptance of such changes.
If you have any questions or comments about this notice, the ways in which We collect and use your information described below and in the Privacy Policy, your choices and rights regarding such use, or wish to exercise your rights under Nevada law, please do not hesitate to contact Us at:
Email: PrivacyPolicy@ProAssurance.com
Postal Address:
ProAssurance Corporation
Attn: Legal
100 Brookwood Place, Suite 300
Birmingham, AL 35209