Trust Science places the highest priority on maintaining the protection of privacy and the security of personally identifiable information.
This policy document guides the development and implementation of broad privacy practices, procedures, and other supporting materials, as well as articulating context-specific commitments to preserving privacy.
These commitments are major drivers behind all other Trust Science policies, standards, and practices.
Note: At no time may a staff member for themselves, or on behalf of any other party, access, transmit, copy, use, create, alter, delete, or move personal information – or media containing same – for anything other than Trust Science business purposes for which the individual to which the data refers has consented.
The development and execution of privacy controls follows ISO document 29100:2011 – “Information technology — Security techniques — Privacy framework”, and incorporates PIPEDA’s fair information principles.
The scope of this document is all information assets owned, controlled, or stored by Trust Science and any / all directly controlled entities / subsidiaries, and all staff employed by the same in any capacity – and includes all data provided by Trust Science to clients of / subscribers to Trust Science’s services without limitation.
This document establishes a baseline practice with respect to protecting personal data, legislative / contractual compliance surrounding personal data, and designing, developing, and operating systems and services that interact with personal data. Other requirements may exist in specific scopes, such as geographic regions, or related to specific partnerships.
Business purposes are those functions which have been disclosed to clients, and those processes that support the same.
Personally Identifiable Information (PII) is that data which has been disclosed to and / or collected by Trust Science which can uniquely be attributed to a single individual.
Data owners are those individuals who are the source of their own PII.
Data custodians are those agents who store, use, transmit, or otherwise interact with PII, under consent from the PII owner for clearly communicated business purposes.
Privacy is respecting the obligations that Trust Science has under law and contract to owners of personal information.
Third parties are those agents who assist Trust Science, either / both directly and indirectly, to achieve its business purposes.
Responsibilities for the Protection of Privacy
All staff members must observe all privacy and security-related practice documents at all times when interacting with Trust Science data, systems, and processes, and with individuals interacting with Trust Science.
These responsibilities include, but are not limited to:
The Chief Security and Privacy Officer is responsible for the maintenance of this document, for identifying and articulating practices related to privacy, auditing same for effectiveness and compliance, and for the overall coordination of privacy functions.
No staff member may access PII without first having passed all background checks and having signed a binding NDA.
Staff are required, when dealing with third parties, to contractually oblige that those third parties apply protection of privacy controls verifiably as strong as, or better than those applied by Trust Science.
Staff must follow all Trust Science protection of privacy standards, practices, and guidelines at all times.
Staff who fail to observe these requirements will be subject to discipline, up to and including termination.
This document must be reviewed no less than annually, in the event of any identified deficiency, or in a material change to privacy expectations by the Chief Security and Privacy Officer or their designate.
Trust Science® is a member of the American Financial Services Association (AFSA), the Canadian Lenders Association (CLA), the National Automotive Finance Association (NAF), The Online Lenders Alliance (OLA) and the Texas Consumer Finance Association (TCFA).
Trust Science® is committed to Fair Credit Reporting Act (FCRA) compliance and helping you protect and understand your consumer profile. For more information, please see our Consumer Disclosure Page.
Trust Science®, Credit Bureau 2.0® and Troo® are trademarks that are legally registered to www.TrustScience.com Inc. by the U.S. Patent & Trademark Office.
Credit Bureau+™, Six°Score™, Smart Consent™, Hidden Prime™, Invisible Prime™, Credit Bureau 3.0™, Credit Bureau 4.0™, Personal Credit Bureau™, Personal Data Vault™, Auto Six°Score™, Auto Bureau™, Auto Credit Bureau™, Rating Agency 2.0™, Cashflow Bureau™, One Touch Lending™, Lead to Loan™, Lender in the Cloud™, Fl°wbuilder™, Fl°wbuilder™, FCRA-Compliant Insights From Lead to Loan™, Go Beyond the Bureau™, Fixing the Credit Catch-22™, Find Invisible Primes™, and Helping Lenders Find Great Borrowers™ are trademarks of www.TrustScience.com Inc.