OFAC API Logo

Privacy

Effective March 1, 2024

Thank you for partnering with Rock and Welch (“we”, “us”, “our”). We are committed to safeguarding your personal information and privacy, as well as your organization’s confidential data. This policy explains how OFAC-API.com (a service of Rock and Welch LLC) collects, processes, stores and protects information related to users of this website as well as the products and services we provide. It also provides details about any rights you may have. The information we process differs based on how you interact with us, which will be explained below.

This policy applies to any person accessing the OFAC-API website, using OFAC-API products and services, or for whom we collect information regarding in the process of providing products and services. We refer to our products and services, including the OFAC-API website as our “Services”.

Who We Are

Rock and Welch is a Limited Liability Company located in Florida, United States that provides various consulting and software services, for example, OFAC-API.com.

Information and Data We Collect and Process

The types of information and data we collect, process and share and the associated retention policies depend on how you interact with us and the Services you use, as outlined by the use cases below.

We only share information with your consent, to comply with laws, to provide you with services or to fulfill business obligations. We keep your personal information as long as necessary to provide the Service it was collected for, or for other essential purposes as outlined below.

Website visitors

  1. What we collect: Metrics on how you use the site, for example which pages you visit, the type of web browser and operating system you use, your timezone, how often you visit the website and information about how you navigate to the website. Data that identifies you such as IP address and cookie identifiers.
  2. How do we use this data: As part of consolidated website traffic data which is analyzed in an effort to improve our sites layout and content.
  3. How long is this data retained: This information is kept only as long as required to fulfill its purpose as outlined in this privacy policy, and in no case greater than 1 year.
  4. Who may receive this data: Internal marketing teams, product and relationship managers responsible for marketing and advertisements. External marketing automation providers and website analytics providers.

Individuals who submit information via forms on our website, including Contact Us and Product Subscription forms.

  1. What we collect: Identifiable information you provide to us, such as your name, your contact information and your company.
  2. How do we use this data: We use the information you provide to us to respond to your query, provide you with relevant product information, assist in account creation, assist with product troubleshooting, provide you with administrative information and feedback, and other business purposes.
  3. How long is this data retained: Information related to sales interactions is kept up to 2 years beyond your decision not to engage in business with us.
  4. Who may receive this data: Internal marketing teams, product and relationship managers responsible for marketing and advertisements. External marketing automation providers and website analytics providers.

Individuals and organizations who use our Services

  1. What we collect: Identifiable information such as your name, your email and postal address, your phone number and information about your organization such as its name, address, phone number and website address. Account credentials such as username and password for product access. Device information such as your IP address and the type of web browser and operating system you use to access our Services. Payment information necessary to process your payment if you make a purchase including payment card number, expiration date and security code. All payment data is collected and stored by a payment processor and you should review its privacy policies.
  2. How do we use this data: This information is used in the license and account creation process of our Services and in any subsequent business processes such as invoicing and collection of recurring payments.
  3. How long is this data retained: Retention policies for personal data related to our Services are determined based on the following guidelines:
    1. Personal and payment information is retained as long as necessary to fulfill the purposes we collected it for, and typically as long as you or your organization use our Services, unless a longer retention period is permitted by law.
    2. Information related to you or your organization's use of our Services, for example confidential information, is retained as long as necessary to provide those Services or any duration defined in a contract between us or as required by applicable law.
      1. When we no longer have a legitimate purpose to process your personal information, we will make reasonable efforts to delete it.
      2. We retain user and organizational contact information after the termination of your organization's Service to continue to communicate with you.
  4. Who may receive this data: Internal support and account personnel, external payment processors, Service administrators.
    1. All payment data is collected and stored by a payment processor and you may contact us by email for details on accessing the payment processor's privacy policy.
    2. Users who access subscription or license based Services controlled by their employer or organization may have personal information and usage data related to the Service shared with authorized Service administrators.

Is Data Transferred Internationally

Our Services are deployed to data centers located in the United States. If you access our website or services, be aware that your information may be stored and processed in the United States, and may not be granted the same protections as in your home country.

How We keep Information Secure

Rock and Welch places the highest priority on the security of your personal information as well as your organizations confidential data. As such, we have put in place appropriate security controls designed to protect the security of any personal or confidential data we process.

Our security policy closely aligns with generally accepted standards, and we regularly review and update them as necessary. As we make reasonable efforts to protect your security, you should be aware that data transmission over the internet cannot always be guaranteed to be 100% secure. We cannot and do not warrant the security of any personal information you transmit, and transmission of personal information is at your own risk.

Your Rights

You may have rights under applicable law related to the access and control over your personal data. These rights may include the right to request access to a copy of your personal information, the right to rectification, the right to erasure, the right to restrict processing, the right to withdraw consent and the right to data portability. While we will honor your rights under applicable law, these rights do not always apply in all cases.

If we process data based on your prior consent, please be aware that the withdrawal of that consent does not affect the lawfulness of any processing prior to its withdrawal.

You may contact us via mail or email to exercise any of these rights.

At any time, you may request we update or close your account. Upon your request to close your account, we will make reasonable efforts to delete personal data and data related to the usage of our Services from our databases. Some information may be retained to comply with applicable laws, enforce our Terms of Service or any contract between us, assist in any investigations, prevent fraud or troubleshoot problems.

Children's Privacy

We do not knowingly collect personal information from or market to children under the age of 18, as our Services are intended for adults. If we find that the personal information of a minor has been collected, we will terminate the account and delete any data associated with it.

Changes to this Policy

This Policy is subject to updates, and any changes will be posted on our website along with the date the changes were made. You are encouraged to periodically review this Policy to be aware of any changes. Any material changes to this policy may be communicated to you by additional notice, such as an email notification or a statement on our website.

Contacting Us

If you have any questions or comments regarding this Policy, you may contact us by email at contact@ofac-api.com.