Last updated: 06/29/2023
1. Information Collection and Use
We collect several types of information from and about users of our Site and Services, including:
- Personal Identification Information: Name, email address, mailing address, phone number, financial information, and other information you provide when you fill out a form, make a purchase, or use our Services.
- Sensitive Financial Information: Credit scores, credit history, financial data of consumers and businesses necessary for providing our Services, and other sensitive financial information required for loan origination, servicing, and management.
- Non-Personal Identification Information: Browser type, operating system, IP address, and other technical information about your device and internet connection.
We use this information to:
- Provide and improve our products and services.
- Process transactions and manage user accounts.
- Respond to your inquiries and customer service requests.
- Send periodic emails, if you have opted-in to receive them, about our products, services, and promotions.
- Analyze user behavior to enhance the user experience and improve the functionality of our Site and Services.
2. Data Ownership and Storage
Our clients own the data that they provide and collect through our Services. We act as a facilitator and provide the storage and processing of the data on behalf of our clients. All data, including sensitive financial information, is stored in a secure, cloud-based environment. We implement strict security measures to protect the integrity and confidentiality of the data.
3. Compliance with U.S. and Canadian Privacy Laws
We are committed to complying with applicable privacy laws and regulations in both the United States and Canada. This includes, but is not limited to, the Federal Trade Commission Act (FTC Act), the California Consumer Privacy Act (CCPA), the Virginia Consumer Data Protection Act (VCDPA), and the Personal Information Protection and Electronic Documents Act (PIPEDA) in Canada. We have implemented privacy practices and procedures that meet the requirements of these laws, including obtaining consent, limiting the collection and use of personal information, and ensuring appropriate security measures are in place.
We use "cookies" to help personalize and enhance your experience on our Site. Cookies are small files that your web browser places on your computer's hard drive for record-keeping purposes and sometimes to track information about you. You can choose to disable cookies in your browser settings, but doing so may affect the functionality of our Site and Services.
5. Third-Party Services
We may use third-party service providers to help us operate our Site and Services or administer activities on our behalf, such as sending out newsletters or surveys. We may share your information with these third parties for those limited purposes, provided that you have given us your permission.
We take reasonable measures to protect your personal information, including sensitive financial information, but please remember that no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee its absolute security.
7. Links to Other Websites
8. Children's Privacy
Our Site and Services are not intended for use by children under the age of 13. We do not knowingly collect personally identifiable information from children under 13. If you are a parent or guardian and you learn that your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from children under 13 without verification of parental consent, we will take steps to remove that information from our servers.
9. Data Retention
We retain personal data collected through our Site and Services for as long as necessary to fulfill the purposes for which it was collected, comply with our legal obligations, resolve disputes, and enforce our agreements. We implement appropriate measures to delete or anonymize personal data when it is no longer needed.
10. International Data Transfers
We may transfer personal data across borders or store data in servers located in different countries, including the United States and Canada. We ensure compliance with data protection laws and regulations in each jurisdiction by implementing appropriate safeguards, such as standard contractual clauses, to protect your personal information during cross-border transfers.
11. User Rights (for EU and California Users)
Inform users of their rights under the GDPR (for EU users) and the California Consumer Privacy Act (CCPA, for California residents). These rights may include the right to access, rectify, or delete their personal data, the right to data portability, the right to object to or restrict processing, and the right to withdraw consent.