Privacy Policy
Last Updated Feb 10, 2024
The purpose of this Privacy Notice (“Notice”) is to inform the representatives of our business customers and other individuals (“you” or “your”) who share personal information with BoostSSL™ and its Affiliated Websites listed below (“we,” “us,” “our”) of how we collect and process personal information and your rights you may have concerning your personal information that you share with us.
Data Controller Information
DigiCert will act as data controller of personal information you share with and that is processed by BoostSSL™ and Affiliated Websites. DigiCert is headquartered at 2801 North Thanksgiving Way, Suite 500, Lehi, Utah 84043. To contact DigiCert, please see Contact Information below. · BoostSSL™ and our valued partners will act as joint controllers with respect to personal information transferred from BoostSSL™ to our valued partners for the purpose of providing you with the certificate services and related products that you have requested or purchased from our valued partners. We encourage you to carefully read the privacy policies posted on our valued partners’ websites to understand their privacy and security practices.
What This Privacy Policy Covers
This Notice applies to all DigiCert and RWS employees, agents, networks, servers, products, websites, mobile applications, online services, platforms, devices, and/or technology that collect and process your personal information that have access to and process the personal information you shared with BoostSSL™ and its Affiliated Websites.
Purpose of Processing
BoostSSL™ and Affiliated Websites process your personal information for the purpose of providing you with expert support services and access to vendors and their prices related to digital certificates and other products. For more information, see below on How Do We Use Your Information?
Lawful Basis of Processing
BoostSSL™ and its Affiliated Websites only process your personal information where it has a basis or justification under applicable law to do so. For agents and representatives of our business customers, we process your personal information according to a legitimate interest that we have in servicing our customer which you represent, by providing the products and/or services that our business customer has requested or purchased, and to perform the services that are necessary to process your personal information. For other customers, as applicable and depending on your location and/or the service or product you have requested or purchased, we may process your personal information to take steps to enter a written agreement and/or fulfill our obligations under a written agreement with you. Where required, we may also obtain your affirmative, express consent to process your personal information
What Personal Information Do We Collect
During the previous 12-months and/or while you engage BoostSSL™ and its Affiliated Websites, we collect and/or process the following personal information:
· Business Contact Information : First and last name, email address, postal address, telephone and fax number(s), IP address, usernames and related account information, job title, employer, and certain payment details.
Cookies and Tracking Technology
Cookies are small files that a site or its service provider transfers to your computer's hard drive through your web browser. Cookies enable the site's or service provider's systems to recognize your browser and capture and remember certain information. We use cookies to help us remember and process the items in your shopping cart and compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future.
Do We Collect Validation or Biometric Information
· Validation data: BoostSSL™ and Affiliated Websites do not collect or process validation data. Instead, validation data will be collected and processed by the certificate authority that owns the product-brand that you purchase. · Biometric data: BoostSSL™ and Affiliated Websites do not collect or process biometric data. However, for our European customers and potentially customers in other areas, if you engage certificate services powered by DigiCert and choose to use DigiCert’s Remote Identity Verification (“RIV”) process, then DigiCert collects biometric data as part of that process. For our European customers, please note that biometric data is processed and stored in the Netherlands and Switzerland. For more information on DigiCert’s privacy practices related to RIV, please see DigiCert’s Remote Identity Verification Privacy Notice here.
How Do We Use Your Information
We use your personal information to provide certificate services and related products that you have requested. We may also use your personal information for the following purposes:
Information Security
The security of your personal information is of the utmost importance to us. We have implemented and maintain internal technical and organizational measures in accordance with industry best practices and applicable data protection laws. Among other security measures, we have industry-standard encryption for data at rest and data in transit. While our security practices align with commercially reasonable protocols, we cannot guarantee absolute security of your personal information. For questions about our security practices, please contact DataProtectionOfficer@BoostSSL.com.
Where Do We Store Your Information and For How Long
We store your information in the United States using Amazon Web Services and a secure server where all personal data is transmitted using industry standard cryptography. After your transaction has been processed, your personal information, including credit card information and other financial information related to your transaction, will not be stored on our servers. We retain personal information only for legitimate business purposes and as long as necessary to fulfill our commitment to provide products and/or services to you (or the business customer you represent). Third-Party Sub-Processors We maintain a list of third-party processors, some of which may process your personal information on our behalf for the purpose of providing you with the products or services you have requested. You may view our list of sub-processors here.
Your Rights With Respect to Your Personal Information
You may have certain rights regarding your personal information. You may submit a request to access your information, request portability, request deletion, restrict processing of your personal information, request correction, and, in certain cases, you may object to us processing your personal information and submit a request to withdraw processing.
Filing a Complaint
For BoostSSL™ and Affiliated Website customers, you may file a complaint regarding our privacy practices by emailing us at DataProtectionOfficer@BoostSSL.com. In compliance with the EU-U.S. DPF and the Swiss-U.S. DPF, BoostSSL™ and its Affiliated Websites commit to resolve DPF Principles-related complaints about our collection and use of your personal information. EU, UK, and Swiss individuals with inquiries or complaints regarding our handling of personal data received in reliance on the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF should first contact the Data Privacy Officer (DPO). If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please contact or visit https://go.adr.org/dpf_irm.html for more information or to file a complaint. The services of ICDR-AAA are provided at no cost to you.
Children's Privacy
BoostSSL™ and Affiliated Websites platforms and applications do not knowingly collect personal information from children under the age of 18 and are not directed toward children. If you believe we might have personal information belonging to a child under the age of 18, please contact BoostSSL™ at DataProtectionOfficer@BoostSSL.com.
Applicability
Our Terms and Conditions of use of our products and services may override the terms of this Notice with respect to use of our products and services.
Changes to This Notice
If we decide to change this Notice, we will post those changes on this page. For material changes to this Notice, we will send interested parties an email notification.
Contacting Us
If there are any questions regarding this privacy policy or the data we have collected about you, contact us at DataProtectionOfficer@BoostSSL.com or at:
Data Privacy Officer - BoostSSL, 15233 Ventura Blvd., Suite 1100, Sherman Oaks, CA 91403
