RISC Management Inc. provides subscribing organizations with online functionality to assess field activities, employee perceptions, and management standards via electronic data collection and reporting.
Subscribing corporations input corporate information to our secure database at www.riscmanagement.com. Data includes corporate registry information (administrator name / phone number, email address), billing address, user names, observer names, contractor names, and job titles.
Provincial and Federal Privacy Protection Legislation Compliance
RISC Management is fully compliant with federal and provincial personal privacy legislation. All corporate data is accessed and management via our secure website and subscriber administered user name and passwords. Personal data collected is restricted to individual names and job titles. There is no other personal data collected.
Data Collection Practices
RISC Management collects general information regarding visitors and users of the www.riscmanagement.com website. Typical information collected includes the browser software being used and the user’s domain name. Actions may be taken to identify an individual where there is indication of improper use of the website.
RISC Management does not sell, market, trade, or license data for any purpose. RISC Management may publish and / or distribute website and database usage and trend data in aggregate compilations from any or all subscribers. At no time will a subscriber / corporation, any contractor affiliated with a subscriber / corporation or any individual affiliate with a subscriber / corporation or contractor be identified by RISC Management in any report without prior written approval.
RISC Management does not support the transmission of unsolicited email communications (spam). We will not send unsolicited data to any subscriber, or potential subscriber, nor will we forward unsolicited information of any kind.
RISC Management does not collect credit card information.
Personally identifiable Information
RISC Management collects individually identifiable information from registered users to complete subscription transactions, administer individual accounts, provide customer support and meet government regulatory requirements. Account Administrators may be contacted as necessary for these purposes.
RISC Management may contract the services of third-party health, safety and environmental professionals and or corporations to assist with evaluation and audit activities. Third-party organizations, serving as agents for RISC Management, are contractually bound by this policy and regulatory requirements.
When necessary or appropriate, RISC Management may disclose information in response to a court order, or subpoena, or when otherwise legally required. RISC Management may also disclose information as appropriate to protect its corporate or legal rights. RISC Management periodically compiles registration data, site usage, and demographic information for internal analysis such as researching and identifying market segments and, other business planning needs.
The RISC Management website (www.riscmanagement.com) is a Soltrus Secure Site that incorporates 128-bit encryption technology. Soltrus, operator of the Verisign Trust Network, assures clients and their subscribers that data transfers and financial transactions are secure. RISC Management subscribers provide data to the website with the following assurances:
- The www.riscmanagement.com website has a VeriSign Secure Server ID, authenticated by Soltrus.
- Soltrus has verified the organizational name and that RISC Management Inc. has the proof of right to use.
- This site legitimately runs under the auspices of RISC Management Inc.
- All information sent to this site, if in an SSL session, is encrypted and protected against disclosure to third parties.
Administrative security is established primarily through our Users’ Agreement, our contracting policies and our hiring policies. The RISC Management Users’ Agreement prohibits the transfer of a subscriber’s information by another subscriber to a non-subscribing party. Violation of the Users’ Agreement can result in permanent suspension of access to www.riscmanagement.com and a severing of the commercial relationship between RISC Management and the offending subscriber.
RISC Management personnel complete extensive data handling training including specific instruction on federal and provincial privacy protection legislation. Further, each RISC Management employee signs a confidentiality and non-disclosure agreement at the time of hire.
Periodic Revision of Data Protection Practices
To keep up with the rapidly evolving Internet environment, RISC Management will periodically upgrade our data protection policies and communicate changes to our clients. Minor changes may be made at any time without notice. We will update the version number and date of the notice when such changes are made. If we make a major change in the way that we use, disclose or protect Internet registration information, we will highlight the change in this notice and will provide advance notice of the change on the web site.
Click here to download in PDF format
Last Revised Date: April 2011