Information We May Collect
When you visit our websites, we may collect personal information from or about you when it is entered by you or sent to us, including but not limited to:
We may also receive information about your transactions directly from your financial institution in order to process your rewards or redemptions transactions.
Usage and Other Information
Additional Sources of Information
Use of Information
We use the information discussed above in a number of ways, such as:
We may also use data that we collect on an aggregate or anonymous basis (such that it does not identify any individual customer, directly or indirectly) for various business purposes, where permissible under applicable laws and regulations.
We will hold your personal information on our systems for as long as is necessary to perform the relevant processing activity, or as long as is set out in any relevant contract you hold with us. This is a case by case determination that depends on things like the nature of the data, why it is collected, why it is processed, and relevant legal or operation retention needs. For example, we may retain your data for as long as you hold a rewards account so that we may process and fulfill your future award transactions. We may also be legally required to hold some types of information to fulfil our statutory obligations. We review our retention periods for personal information on a regular basis. When the relevant processing activity has been completed, we may destroy your data, or alternatively anonymize the data in such a way that you are not personally identifiable, either directly or indirectly.
Sharing of Information
Figg may share the information we collect from and about you with our affiliates and other third parties to bring you a range of quality and reliable products and services designed to meet your needs. For example, we may share your information with:
Where appropriate, we will limit sharing of your information in accordance with the choices you have provided us.
We may share anonymous or aggregated information (such that it does not identify any individual customer, directly or indirectly) with third parties to help deliver products, services, and content that are tailored to the users of our online services and for other purposes. Otherwise, Figg will never sell or rent any of your personal information, and we will never share your personal information publicly without your consent.
Understanding Cookies, Web Beacons and Other Tracking Technologies
“Cookies” are small amounts of data a website can send to a visitor’s web browser. They are often stored on the device you are using to help track your areas of interest. Cookies may also enable us, our service providers or other companies we work with to analyze your use of our online services over time to customize your experience. Most web browsers allow you to adjust your browser settings to decline or delete cookies, but doing so may degrade your experience with our online services.
Clear GIFs, pixel tags, web beacons are typically one-pixel, transparent images located on a webpage or in an email or other message. These, or similar technologies may be used on our sites and in some of our digital communications (such as email or other marketing messages). They may also be used when you are served advertisements or you otherwise interact with advertisements outside of our online services. These are principally used to help recognize users, assess traffic patterns and measure site or campaign engagement. Our sites do not respond to Do Not Track signals.
You may see advertisements when you use some of our online services. These advertisements may be for our own products or services, or for products and services offered by third parties. Which advertisements you see is often determined using the information we, our affiliates, service providers, and other companies that we work with have about you, including information about your relationships with us (e.g., types of accounts held, transactional information, location of activity). To that end, where permitted by applicable law, we may share with others the information we collect from and about you.
Linking to Third-Party Websites
Transferring Your Information
Basis for Processing – European Union Residents
Data protection law in Europe requires a “lawful basis” for collecting and retaining personal information from residents of the European Economic Area. Our lawful bases include:
The security of your information is our top priority. We use physical, electronic, and procedural safeguards that comply with federal and international standards to protect and limit access to your personal information. Figg also actively monitors our systems and your account for suspicious or fraudulent activity.
Managing Employee Conduct
Figg has an absolute commitment to integrity, our related values and ethical standards, and the associated business conduct we expect from all our employees. These standards include specific guidelines about how employees must safeguard confidential information, including our customers’ data.
Figg maintains compliance with all required data protection regulations that apply to the information systems and data we collect. Figg regularly validates its security, operational, and business practices, both internally and through third party audits.
Figg uses at minimum 128-Bit Encryption each time you access your account(s) and perform transactions on our portals. Look for the website URL to start with https:// or have a lock symbol, such as the one shown below:
Figg regularly tests the web security of our sites and products.
As another security measure, Figg enforces session timeouts after several minutes of inactivity on our sites and products. To ensure your security, in some cases we ask that you re-enter your User ID and password to resume your activity.
Figg continuously monitors the registration, login, and activities of accounts to detect fraudulent or unauthorized use of your account.
What can you do to help?
Please note that information you send to us electronically may not be secure when it is transmitted to us, depending on the systems and communication channels you use. We recommend that you do not use unsecure channels to communicate confidential information to us.
Controlling Your Personal Information
Below describes how and why Figg processes and shares your personal information, and under which circumstances you can limit certain activities. Whenever we process your data for the reasons listed below, we will ensure that we always keep your personal data rights in mind.
Updating Your Information
Keeping your account information up-to-date is very important. You may review or update certain account information by logging in and accessing your profile, depending on the Figg product or service portal used. If you cannot change the incorrect information online, or you prefer to request changes offline, please refer to the “Know Your Options” section below.
EU-U.S. PRIVACY SHIELD
Figg complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions. Figg is responsible for the processing of personal data that it receives through the Privacy Shield Framework, as well as the personal data that it subsequently transfers to a third party acting as an agent on behalf of Figg, unless Figg proves it is not responsible for the event.
With respect to personal data received or transferred pursuant to the Privacy Shield Framework, Figg is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, Figg may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have contacted Figg about your issue as described in this policy and are still unhappy with our response, you may also contact your local EU Data Protection Authority (DPA) or the Swiss Commissioner, as applicable, regarding your issue. Figg commits to cooperate with the panel established by the EU DPAs or the Swiss Commissioner, as appropriate, and to comply with the advice given by the panel(s) with regard to data transferred from the EU and Switzerland. More information is available here and here. Finally, under certain conditions more fully described on the Privacy Shield website, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.
Know Your Options
Users or Site visitors residing in certain locations, including the European Union, Switzerland, and California, may be afforded certain additional rights regarding their personal information. Except where an exception or exemption applies, these rights may include the right to: 1) request access to the information we have collected about you, as well as the right to review our data collection practices related to you, 2) request deletion of your personal information that we hold about you, 3) request correction of the data we hold about you, and 4) not to be discriminated against due to your exercise of any of the preceding rights. While these rights are not globally applicable, all of our customers are entitled to request access to the personal information that we hold about them. To ensure that your personal information is accurate and complete, please contact us through the email address below regarding any errors or updates affecting the personal information that we may hold.
If you have contacted Figg and have further questions about how to protect yourself, or if you have any concerns about how Figg handles or processes your personal information, you may contact the data protection authority for your area: