Last Updated: September 20, 2019
At Capitol Retirement Strategies, we are committed to protecting your privacy and security. A summary of how we collect, use, share and secure information obtained through our Services is set forth below.
Personal Information We Collect – When you visit or use the Services, we may gather certain information about the device or browser you are using via automated means (e.g., cookies and web beacons) including, but not limited to, device identifiers, IP address, browser version and configuration, operating system details, language preferences, and length of visits. We also collect information that you voluntarily provide when using the Services. For example, if you commence a financial planning process with one of our affiliates, we may collect the information you provide or authorize us to collect, such as your name, e-mail address and certain financial information. If you choose to open an account with one of our affiliates, we may also collect other personal information, such as your full legal name, contact information, date of birth, Social Security Number and other information that may be used to identify you.
- To recognize you as a regular user;
- To remind us of your identity;
- To track your progress;
- To measure and analyze website traffic patterns to understand how our users’ habits are similar or different from one another;
- To compile statistics on usage patterns; and
- To conduct other research.
In addition, we may use information collected online through automated means to track your activity over time and across websites, as well as across different devices you use to access the Internet.
Many web browsers provide options to allow you to stop accepting new cookies, or to disable existing cookies. Please be aware that if you disable cookies on your browser, you may not be able to use certain features of the Services or other websites, and disabling cookies may invalidate opt-outs that rely on cookies to function.
How We Share Information About You – We may share information we collect about you with business partners with whom we work, such as our affiliates and other companies that help us market products and services to you. In addition, we may permit our agents, vendors, consultants, and other service providers to access information we collect about you through the Services to carry out work on our behalf.
We may also disclose information about you to third parties: (1) if we are required to do so by law, regulation, or legal process (such as in response to a court order or subpoena); (2) when we believe disclosure is necessary or appropriate to prevent physical harm or financial loss, or in connection with an investigation of suspected or actual illegal activity; or (3) in the context of a business negotiation or transaction relating to CRS or any affiliated entity (e.g., further to a merger, reorganization, liquidation, or any other business transaction), including negotiations of such transactions.
Your Choices – Keeping information about you up-to-date is important. If you are a customer of an affiliated broker-dealer in the CRS network, you may update, correct or delete contact information by contacting your financial professional. As a customer of an affiliated broker-dealer, you can also learn more about how and why we share information about you and your options related to such sharing by reviewing the broker-dealer’s Consumer Privacy Notice (available on your broker-dealer’s website and from your financial professional).
If you are a customer or a financial professional who has enrolled in online Services with CRS or one of its affiliates, you can access your profile, review contact information that is stored, and revise certain types of information by signing into your online account. To make any other updates, customers should contact their financial professionals, and financial professionals should contact their CRS-affiliated broker-dealer.
Additionally, if you are a customer, financial professional or just a visitor, you can unsubscribe from marketing emails sent by CRS by following the unsubscribe instructions included in our emails. Please note that even if you opt out of receiving such communications from us, we may continue to send you non-promotional emails, such as communications regarding our ongoing relationship with you.
How We Respond to Do Not Track Signals – Your internet browser may offer what is referred to as a “do not track” configuration that allows your browser to automatically signal your privacy preferences to certain websites that you visit. Industry standards related to this technology continue to evolve, and we have not yet identified a consensus on how to respond to such signals. Therefore, our websites do not currently respond to the “do not track” signals issued by browsers.
Children’s Privacy – We do not knowingly solicit personal information from children under the age of 13 through our Services, and we do not knowingly market to children under the age of 13. If we learn that we have received information directly from a child who is under the age of 13, we will delete the information in accordance with applicable law.
This Internet Security Statement covers the measures that Capitol Retirement Strategies takes to help secure your personal information. Capitol Retirement Strategies maintains a comprehensive Information Security Program based on ISO 27001/27002 and NIST SP 800-53 standards. The program is comprised of administrative, technical, operational and physical safeguards that are designed to protect the personal information of our customers.
Some of the core features of the program include:
- Policies, standards, processes and guidelines that govern information technology resources to protect information assets and safeguard personal information
- Technologies such as firewalls, encryption, endpoint protection, intrusion detection, Virtual Private Networks, log aggregation and analysis, SPAM Filtering as well as data loss prevention
- Verification of security controls conducted both internally and by independent third parties
- Ongoing internal and external threat and vulnerability assessment and remediation
- 24/7/365 monitoring of our systems and networks to detect weakness and potential intrusions
- Processes executed at consistent intervals, designed to continuously assess and remediate potential security risks
- Continuous identification, assessment and management of enterprise and branch level risk
- Due diligence to manage risk when selecting and retaining external vendors and service providers that help us service your needs
- Ongoing Continuous and mandatory security awareness program for all staff and branch personnel
- Continuous training of staff in financial and technology best practices, products and processes
Encryption – Encryption technology is designed to secure personal and confidential communications between your computer and Capitol Retirement Strategies servers, so that they are protected from being read by any third parties. Capitol Retirement Strategies’ web and mobile applications require a minimum 128-bit SSL TLS encryption, which is the de-facto industry standard for encrypting and safeguarding websites.
Sessions and System Inactivity – All Capitol Retirement Strategies websites and mobile applications allowing access to client personal information require all users to log in with a user name and password. While you are logged in, if you leave your browser window open, Capitol Retirement Strategies applications will automatically log you out after a period of inactivity. Similarly, if you close your browser window or mobile application window without logging out, you will be automatically logged out. Both of these measures are designed to protect your information from unintended access by a passerby or different user of your computer.
Other Security Measures – Capitol Retirement Strategies engages in a number of other security activities to help ensure the safety and privacy of your personal information. Capitol Retirement Strategies’ Information Security Program is comprehensive and is designed to allow our representatives to use the tools and software we provide with confidence.
Note: Due to the ongoing nature of security monitoring, this Internet Security Statement is subject to change without notice to you, so we recommend that you review it regularly.
CONTACT AND UNSUBSCRIBE INFORMATION
220 Main St Suite 200
Gaithersburg, MD 20878
If you would like to unsubscribe from marketing emails sent by Capitol Retirement Strategies you can do so by clicking the unsubscribe link included in the footer of our emails.