Who we are – Our website address is: http:www.kurtthomasfoundation.com
What personal data we collect and why we collect it
How long we retain your data
For users that register on our website, we store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
How we protect your data
We use administrative, organizational, technical, and physical safeguards to protect the Personal Information we collect and process. Our security controls are designed to maintain an appropriate level of data confidentiality, integrity, and availability.
KTF handles payment card data in a manner consistent with the Payment Card Industry Data Security Standard (PCI-DSS). For example, when you make a payment on our website using your credit card, we use SSL encryption for transmission of the credit card number.
What data breach procedures we have in place
In the event that the foundation becomes aware of a security breach which we believe has resulted or may result in the unauthorized access, use or disclosure to nonpublic personal information of End Users, we will promptly investigate the matter and notify the applicable Agencies of such breach. Such investigation will be without delay, consistent with (1) legitimate needs of law enforcement; (2) measures necessary to determine the scope of the breach; (3) efforts to identify the individuals affected; and (4) steps to restore the reasonable integrity of the foundations' systems.
The State Regulatory Agencies will be responsible for notifying their affected End Users and any other parties of any security breach in accordance with applicable law. Responsibility for notifying affected End Users and other third parties of any security breach will be in accordance with agreements between the foundation and the respective Agencies. Unless otherwise required by law, the Kurt Thomas Foundation is not responsible for notifying End Users or any other parties of any such breach.
Industry regulatory disclosure requirements
If you are in the United Kingdom, you have a number of important rights under the General Data Protection Regulations, free of charge. In summary, those include rights to:
If you would like to exercise any of those rights, please:
CONTACT US at email@example.com