Unlike ever before, data privacy and the protection of personal information are of paramount concern to our transportation, utility, telecom, waste, and banking customers around the world.
We at Cass Information Systems, Inc. respect your privacy and are committed to safeguarding your personal information. This is why we want you to have a clear picture of how we intend to treat the personal information that you provide to us and how it will be processed and managed by us.
As a company serving these diverse sectors worldwide, we have put in place policies and procedures to ensure that the personal information that you provide and we collect is properly protected in compliance with the latest data privacy laws and regulations. These policies and procedures are indicative of the same level of care that we deliver to our customers every day so that they may achieve visibility, control, and efficiency in their supply chains, communications networks, facilities, and operations.
Effective Date: December 19, 2018
Eric H. Brunngraber, CEO
We collect personal information and data directly from you and in our transactions and interactions with you. We also occasionally obtain information about you from verification services and commercial sources, such as to acquire permission-based marketing lists.
We use your personal information to provide (and facilitate the provision of) services to our customers as well as to respond to their inquiries for the same.
We explicitly do not sell your personal information or our contacts to outside parties, including marketers.
We only market other services to you with your consent, based on your marketing preferences. You may create or change your privacy preferences in connection with our marketing efforts by contacting us at firstname.lastname@example.org.
You may also amend your cookie preferences for any website through your browser settings. However, please remember that cookies are often used to enable and improve certain functions of a website, including our own. If you choose to switch off or disable certain cookies, it is likely to affect how our Site works on your computer, smartphone, or device.
Cass Europe and Cass TEM UK
Cass Europe and Cass TEM UK, our European affiliates, have taken appropriate and reasonable measures to comply with the European Union (“EU’s”) General Data Protection Regulation (“GDPR”). Their externally-facing GDPR privacy statement may be found here and applies to the personal information of their customers, contacts, vendors, and agents, when the GDPR applies to such personal information.
We take the privacy of our employees’ data seriously as well. For the time being, US-based Cass employees can obtain a copy of our domestic internal privacy statement by contacting our US Privacy Manager at email@example.com and EU resident employees can obtain a copy of our internal privacy statement for Cass Europe and Cass TEM UK by contacting our EU or UK Privacy Managers at +31 76 5315 384 or +44 1256 679510, respectively. In time, we aspire to apply a single set of standards to all employee and non-employee personal information that we process, regardless of the citizenship or residency of the data subject.
We also elect to participate in the EU-U.S. Privacy Shield Framework regarding the collection, use, and retention of personal information transferred from the EU and European Economic Area (“EEA”) member countries to the United States (the “Privacy Shield”) pursuant to the Privacy Shield. Our Non-HR Data Privacy Shield Policy can be found here.
How to Contact Us
Cass Information Systems, Inc.
Attn: US Privacy Manager
2444 Powerscourt Drive, Suite 550
St. Louis, MO 63131
Click on one of the links below to jump to a specific section:
Personal Information We Collect and How We Use It
We may collect personal information from individuals through our website or by other means (such as email, mail, phone, business partners’ contact information, and other third-parties such as commercial data vendors and public databases). The principal ways you may provide the information and the types of information you may submit, as well as the ways we may use the information, are listed below.
Business Purposes – On our website you may be able to register using your personal information to gain access to information related to your business relationship with us or the services Cass offers. We use these details to provide you with access to information about your business relationship with us and to facilitate your use of the website or mobile applications. You may also choose to provide, or we may obtain, your personal information at trade shows or from our distributors. It is in our legitimate business interests to use this personal information so that we can manage our business relationships and carry out marketing and sales activities.
Careers – Individuals apply for jobs with Cass through our website, third-party job posting sites, job fairs, or directly to the various business locations. The personal information job seekers provide through this process is often maintained by third-party service providers. This personal information may be maintained in locations within the United States, accessible to our recruiting team, and shared with our corporate affiliates for the purpose of evaluating job seekers for permanent and temporary positions with our company. The personal information submitted by job seekers, such as name, contact details, and any other information relevant to the application is used to evaluate their qualifications for employment and to contact them regarding possible employment opportunities. It is in our legitimate business interests to use this personal information in the selection process and to communicate with you, and it is necessary to provide us with this personal information so that we can assess and evaluate your application.
Contractual Obligations – If you are a vendor or an independent contractor, we may ask you to provide personal information such as your name, contact details, or business and financial details to establish and administer your account, process payments, and for compliance with internal and legal requirements. We use your personal information for this purpose so that we can comply with our contractual obligations to you.
Feedback – You may be able to submit feedback on our website. If you choose to give us your feedback, we may ask you for your personal information. We may also ask you about your experience using our website. It is in our legitimate business interests to use the personal information you provide to enhance our website, evaluate the quality of our services, or to communicate with you about our services.
Information Technology Security – We may collect personal information when detecting and defending against security threats in accordance with our legitimate business interests and our legal obligations. We use various IT tools to detect and defend against online security threats (e.g., attacks, viruses, malware, spam, phishing, malicious web content), to promote business continuity of our information systems and assets, and to maintain optimal performance of our IT systems. To ensure physical security of our facilities we may, where permitted under local law, utilize surveillance systems and/or location tracking while you are on Cass property.
Other Uses of Information – We may use the personal information you provide to us for internal general business purposes in accordance with our legitimate business interests. These purposes include administration of our website, data analytics, fraud prevention, and compliance with our legal obligations, standards, policies and procedures (i.e., due diligence checks and sanctioned and embargoed screening, where necessary).
We may obtain your explicit consent to collect and use certain types of personal information when we are required to do so by law.
Information We Collect by Automated Means
When you visit and interact with our website and applications, we may collect “Other Information” that does not inherently reveal your specific identity, in order to learn how to best tailor our website for our visitors’ needs. Examples of what Other Information we may collect and how we and third-party service providers may collect this information include:
Browser and Device Information – Certain information is collected by most browsers or automatically through your device, such as your computer type, operating system, name and version, device manufacturer and model, Internet browser type and version, and the name and version of the online services you are using. We use this information to ensure that the online services function properly.
IP Address – Your IP address is a number that is automatically assigned to the computer that you are using by your Internet Service Provider (ISP). An IP address may be identified and logged automatically in our server log files whenever a user accesses the online services, along with the time of the visit and the page(s) that were visited. Collecting IP addresses is standard practice and is done automatically by many websites, applications and other services. We use IP addresses for purposes such as calculating usage levels, diagnosing server problems and administering our online services. We may also derive your approximate location from your IP address to understand from what regions of the world our website visitors come.
How We Share Your Information
Corporate Affiliates – We may share the information you provide (such as information about your orders, enquiries, applications, or use of our website) with our affiliates for marketing, recruitment, and internal reporting purposes. We do this to run our business more efficiently and to have a better understanding of our customers across business lines.
Marketing Partners – In some cases, we may permit certain network advertising companies and publishers to collect personal information on our website. In addition, our business partners may access personal information about you that we have combined with such business partners’ data. We may collaborate with our business partners to jointly send tailored promotional communications to you using the combined set of information. If you prefer not to receive these joint communications, you can opt out by following the instructions included in any such communication.
Non-Personal Information – We may share non-personal information, such as aggregate user statistics, demographic information, and usage information with third parties.
Sharing With Your Consent – Our services may present you with the opportunity to opt in to receive information or marketing offers from third parties or to otherwise consent to the sharing of your information with third parties. If you agree to have your personal information shared, your personal information will be disclosed to the third-party subject to the privacy notice and business practices of that third party.
Links to Other Sites
How We Protect Personal Information
In proportion to the sensitivity of the information, we maintain reasonable administrative, technical, and/or physical safeguards and appropriate security measures to protect personal information from loss, misuse or unauthorized access, disclosure, alteration, or destruction of the personal information you provide. However, we cannot absolutely guarantee the security of your personal information, as no electronic data transmission or storage of information is completely secure. If an incident is reported affecting your personal information, we will investigate and comply with all required reporting obligations.
International Transfers of Personal Information
How Long is Personal Information Retained
We will keep your personal information for as long as we have a relationship with you. Once our relationship with you has come to an end, we will retain your personal information for a period of time that enables us to:
We will delete your personal information when it is no longer required for these purposes. If there is any information that we are unable, for technical reasons, to delete entirely from our systems, we will put in place appropriate measures to prevent any further processing or use of the personal data.
Updating Your Personal Information
Our services are generally not directed to children under 16. We do not knowingly collect personal information from anyone under 16 without parental consent. If you become aware that we have collected personal information from a child under the age of 16 without parental consent, please let us know so we can take appropriate action.
How to Contact Us
Cass Information Systems, Inc.
US Privacy Manager
12444 Powerscourt Drive, Suite 550
St. Louis, Missouri 63131
Cass Europe B.V.
EU Privacy Manager
Graaf Engelbertlaan 75
+31 76 5315 384
Cass TEM UK Limited
UK Privacy Manager
+44 1256 679510