Rifco National Auto Finance Corporation Personal Information Protection Policy for FF/500 Members
RIFCO is committed to safeguarding the personal information entrusted to us. We manage your personal information in accordance with Alberta’s Personal Information Protection Act and other applicable laws. This policy outlines the principles and practices we follow in protecting your personal information.
This policy applies to RIFCO Inc. and its subsidiary, Rifco National Auto Finance Corporation. The policy also applies to any person providing services on our behalf.
A copy of this policy is provided to any Member on request.
What Is Personal Information?
Personal information means information about an identifiable individual. This includes an individual’s name, home address and phone number, age, sex, marital or family status, an identifying number, financial information, educational history, etc.
What Personal Information Do We Collect?
We collect only the personal information that we need for the purposes of working with our FF/500 Members including personal information needed to:
- Identify you
- To administer the FF/500 Reward Program including the management of Member accounts to accurately record and update account status;
- To market, manage, and process Member rewards and redemptions, including incentive events;
- To communicate information and offers to Members;
- To understand and analyze members responses, needs and preferences;
- To develop, enhance, market and/or provide products and services to meet those needs; and
- To enable Members to participate in marketing promotions and contests.
- To report on FF/500 Member activity to a Member’s employing Dealers if requested.
- To comply with legal and regulatory requirements
We ask for consent to collect, use or disclose Member personal information, except in specific circumstances where collection, use or disclosure without consent is authorized or required by law. We may assume your consent in cases where you volunteer information for an obvious purpose. Where express consent is needed, we will normally ask Members to provide their consent orally (in person, by telephone), in writing (by signing a consent form or credit application, by checking a box on a form, or electronically (by clicking a button).
A Member may withdraw consent to the use and disclosure of personal information at any time, unless the personal information is necessary for us to fulfill our legal obligations. We will respect your decision, but we may not be able to provide you with certain products and services if we do not have the necessary personal information.
We may collect, use or disclose Member personal information without consent only as authorized by law. For example, we may not request consent when the collection, use or disclosure is reasonable for an investigation or legal proceeding, to collect a debt owed to our organization, in an emergency that threatens life, health or safety, or when the personal information is from a public telephone directory.
Use and Disclosure of Personal Information?
We use and disclose Member personal information only for the purposes for which the information was collected, except as authorized by law. For example, we may use Member contact information to deliver goods. The law also allows us to use that contact information for the purpose of collecting a debt owed to our organization, should that be necessary.
If we wish to use or disclose your personal information for any new business purpose, we will ask for your consent.
Safeguarding Personal Information?
We make every reasonable effort to ensure that Member information is accurate and complete. We rely on our Members to notify us if there is a change to their personal information that may affect their relationship with our organization. If you are aware of an error in our information about you, please let us know and we will correct it on request wherever possible.
In some cases, we may ask for a written request for correction.
We protect Member personal information in a manner appropriate for the sensitivity of the information. We make every reasonable effort to prevent any loss, misuse, disclosure or modification of personal information, as well as any unauthorized access to personal information.
We use appropriate security measures when destroying Member personal information, including shredding paper records and permanently deleting electronic records.
We retain Member personal information for only as long as is reasonable to fulfill the purposes for which the information was collected or for legal or business purposes.
Access to Records Containing Personal Information
Members of RIFCO have a right of access to their own personal information in a record that is in our custody or under our control, subject to some exceptions. For example, organizations are required under the Personal Information Protection Act to refuse to provide access to information that would reveal personal information about another individual. Organizations are authorized under the Act to refuse access to personal information if disclosure would reveal confidential business information. Access may also be refused if the information is privileged or contained in mediation records.
If we refuse a request in whole or in part, we will provide the reasons for the refusal. In some cases where exceptions to access apply, we may withhold that information and provide you with the remainder of the record.
You may make a request for access to your personal information by writing to RIFCO Privacy Officer. You must provide sufficient information in your request to allow us to identify the information you are seeking.
You may also request information about our use of your personal information and any disclosure of that information to persons outside our organization. You may also request a correction of an error or omission in your personal information.
We will respond to your request within 45 calendar days, unless an extension is granted. We may charge a reasonable fee to provide information, but not to make a correction. We will advise you of any fees that may apply before beginning to process your request.
Questions and Complaints
If you have a question or concern about any collection, use or disclosure of personal information by RIFCO, or about a request for access to your own personal information, please contact RIFCO Privacy Officer in the first instance:
RIFCO Privacy Officer
Phone: 1-888-303-2001 ext 7005
If you are not satisfied with the response you receive, you should contact the Information and Privacy Commissioner of Alberta:
Office of the Information and Privacy Commissioner of Alberta
Suite 2460, 801 – 6 Avenue, SW
Calgary, Alberta T2P 3W2
Phone: (403) 297-2728 Toll Free: 1-888-878-4044
E-mail: firstname.lastname@example.org Web site: www.oipc.ab.ca