The Heritage Group Privacy Policy
As a provider of products and services that involve compiling personal and often, sensitive-information, protecting the confidentiality of that information has been, and will continue to be, a top priority at The Heritage Group. Our privacy promise derives from basic principles of trust, ethics and integrity: 1) We collect only the client information necessary to consistently deliver responsive products and services. At The Heritage Group we collect information that helps us serve your retirement planning and record keeping needs; provide high standards of service; develop and offer new products or services for our customers and potential customers; and fulfill legal and regulatory requirements. We rely solely on you, the plan sponsors, to provide accurate and timely information for company and employee data. 2) We maintain safeguards to ensure information security. Information security is one of our highest priorities. This priority is emphasized by our internal Code of Conduct, this Privacy Policy, and the contracts and agreements that we sign with external suppliers and partners. Employees who violate our policies and procedures regarding privacy are subject to disciplinary actions, and our partners and suppliers are bound to uphold our procedures regarding privacy under the terms of our legal contracts with them. We limit access to personal information about our clients and their employees to our employees who need to know that information to provide products and services to you. We have implemented physical, electronic and procedural safeguards to limit access to personal information. 3) We limit how, and with whom we share customer information. First, and foremost, we do not sell lists of customers, nor do we disclose customer information to marketing companies outside of The Heritage Group and its affiliates. We will share customer information for the following reasons: We may be required by law or regulation to disclose information to third-parties for example, in response to a plan audit, qualified domestic relations order, subpoena, to prevent fraud, and to comply with federal state and industry regulators. Other than what is described previously we will not share information regarding our plan sponsors and their employees with third parties to market products. |