Information Collected

Certa collects and stores information that you provide in connection with your Account and Funding requests. When you submit a pre-qualification Funding application, Certa’s Platform will automatically collect and store all of the requested information. Certa, its business partners and other companies providing services to or on behalf of Certa (such as companies assisting with the operation or features of Certa’s Platform, advertising and promotional campaigns, surveys, contests) may use various technologies (such as cookies, web beacons, pixel tags, click-through URL links) to provide enhanced functionality (e.g. Security Credentials) and aggregate traffic data. Cookies may be delivered in first party or third party context. Certa’s Platform also uses cookies and web beacons in association with emails Certa may deliver and to capture limited information (such as user-agent, HTTP referrer, last URL used by client and server-side clickstream) about visits to Certa’s Platform. As technology evolves, information may be gathered through other means as well. You have choices with respect to management of cookies on your computer. All major browsers allow you to block or delete cookies from your computer system. To learn more about your ability to manage cookies and web beacons, please consult your browser’s privacy features.

Certa’s Platform currently uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses “cookies,” which are text files placed on your computer to help the website analyze how users use Certa’s website. The information generated by the cookie about your use of Certa’s website (including your IP address) will be transmitted to and stored by Google on servers wherever they are located. Certa has no control over the location or use of any data stored by Google. In addition to the information you provide, information may be collected from other sources and combined with that which you provide.

Certa also captures information with respect to your mobile device settings in connection with, and your use of Certa’s Platform through Certa’s mobile application. Mobile device information gleaned includes, without limitation, the mobile number associated with each mobile device registered to your Account, the types of mobile devices used, each mobile device’s unique device ID, its IP address and operating system, geo-location and date/time stamps, the type of mobile internet browsers used by and the telecommunications carrier associated with each mobile device. Because some of the communication between Certa and you occurs through your mobile carrier’s network, your carrier also may have access to the information transmitted. Certa has no control over and you should contact your mobile carrier to better understand your mobile carrier’s treatment of any information transmitted through your mobile device. Certa also gathers usage statistics, metrics or other data generated by your use of your mobile device. Certa may combine your information with that of other users and share the combined data with a variety of third parties.

If your location is enabled on your mobile device or the Certa’s Products and Services you order use location-enabled products or services, you will be sending Certa information that may reveal your actual location in real-time. You understand that location-based services that are provided through Certa’s Platform require a location to function properly, and your use signifies your agreement to allow Certa to use your location for such purposes. If you do not want Certa to use location-based information, please refrain from using the location based service or click “DON’T ALLOW” when your mobile device requests your location-based information.

Use and Sharing of Collected Information

In general, Certa uses and/or discloses all information gained through or gleaned from and/or through access to Certa’s Platform or as a result of use of Certa’s Products and Services (i) for the purpose for which such information was provided and to enforce any agreements we (or any Funders) have with you; (ii) for marketing, advertising or promotional purposes; (iii) to our service providers, legal, financial and other advisors in connection with seeking their advice or services; (iv) to comply with applicable laws; (v) to respond to governmental inquiries; (v) to comply with legal process or orders; (vi) in an emergency; (vii) to protect Certa’s Platform, Certa’s Products and Services, Certa’s rights or property, the rights or safety of Certa customers or others; or (viii) to investigate fraud, a problem, claim or dispute. When you use Certa’s Platform, Certa’s Products or Services, you authorize Certa to use all information collected as provided in the Terms Agreement.

Certa (and/or Funders) use information collected to process and enforce your Funding requests and for any other purpose for which it is provided to Certa and/or other Funders. Protecting the security of information in connection with your Funding requests is very important to Certa. In addition to robust firewall technology and server access security, when you transmit sensitive information to Certa, Certa’s Platform protects your information in transmission both to and from Certa’s Platform by encrypting it in combination with identity authentication. Once Certa receives your transmission, it takes reasonable precautions to secure it on Certa’s Platform using appropriate data security procedures for ongoing security checks, authentication and subsequent resolution.

Certa and/or third parties it engages to provide services on Certa’s behalf use information collected through your use of Certa’s Platform to analyze traffic patterns, maintain and support Certa’s Platform and/or its provision of Certa’s Products and Services, as well as Funders other than Certa. Such third parties may have access to your information as necessary to perform their services to or on behalf of Certa and/or provide Funding. Certa may also use information (and information collected from other web analytics service providers we engage from time to time) to evaluate use of the Certa Platform, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google and other web analytics providers may also transfer this information to third parties where required to do so by law, or to facilitate third party processing of the information on Google’s behalf. Google will not associate your IP address with any other data held by Google. As previously mentioned, you may refuse the use of cookies by selecting the appropriate settings on your browser. However, please note that if you do this, you may not be able to use the full functionality of Certa’s Platform. By using Certa’s Platform, you consent to the processing of data about you by Certa, Google and/or other web analytics service in the manner and for the purposes disclosed above.

Once received, Certa stores information in its secure database in the United States in accordance with U.S. laws. Certa retains all data collected in connection with your Account, your use of Certa’s Products and Services, as well as that relating to Funding, for as long as (i) your Account is open, (ii) you continue using Certa’s Products and Services, (iii) have outstanding Funding obligations and as otherwise required by law or internal company policy. Please note that some or all of the information you provide or that Certa collects may be required in order for Certa’s Platform to function properly. We may also be required to retain documents and/or information for a period of time designated by law or company policy. Certa may duplicate its database, including PII, to enable Certa to restore its database if necessary. These copies may be stored at secure locations inside and/or outside the United States.

The privacy statements in these Terms of Service only address your disclosure to, and Certa’s use of, your personally identifiable information. Certa has no control over collection or use of your personally identifiable information or non-personally identifiable information by third parties whose websites, products or services you may access as a result of hyperlinks accessible from Certa’s Platform. We encourage you to read the privacy statements located on other websites and/or contact them to better understand their privacy practices generally and their treatment of any information collected as a result of your accessing a hyperlink. We do not control and hence you agree that we are not liable for their use or misuse of your personally identifiable information.

If Certa is or should it become part of a family of companies, unless otherwise prohibited by law, all companies within the Certa family may share all information collected as a result of your use of Certa’s Products and Services. If Certa, or an Certa division, unit or subsidiary, were to sell all or any part of Certa’s assets or equity, merge with or be acquired by one or more third parties or if it were to cease operations, Certa may, in its sole discretion, transfer, sell or assign information collected through access to Certa’s Platform and/or use of Certa’s Products and Services. All information collected would then be subject to the acquiring entity’s privacy terms which may differ from those of Certa. As a result, upon completion of the transaction, one or more of these entities may contact you directly.

Please note that the internet and wireless telecommunications networks are open media, subject to the reliability of hosting services, internet intermediaries, your internet service provider and other providers whose reliability is not controlled or guaranteed by Certa. No data transmission via the internet or mobile device can be guaranteed to be 100% secure. As a result, while Certa strives to protect your personal information and privacy, including by the data security measures described below, it cannot guarantee or warrant the security of any information you disclose or transmit via the internet and/or your mobile device and vice versa. Certa is not responsible for the theft, destruction, or inadvertent disclosure of your personally identifiable information. You acknowledge this risk when accessing or using Certa’s Platform and/or Certa’s Products and Services. Please do not transmit sensitive information to Certa via e-mail. e-mail is not a secure communication method and should never be used to transmit credit card, bank account or other sensitive information. The transaction encryption capabilities offered by Certa’s payment processor service provider through Certa’s Platform offers reliable protection from unauthorized access and the safest way to pay fees for Certa’s Products and Services.

Please direct all inquiries with respect to Certa’s privacy and data security procedures and/or complaints with respect to Certa’s handling of a specific individual’s PII should be directed to inquiries@certagrp.com.