Please read this Policy carefully. Your continued use of this site after any change in this Policy will constitute your acceptance of such change.
You can contact us about any queries you have regarding this Policy at email@example.com.
The term “Personal Data” as used in this Policy refers to any information relating to an identified or identifiable natural person (“data subject”); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his/her physical, physiological, mental, economic, cultural or social identity.
Personal Data does not include data from which you can no longer be identified, such as anonymized aggregate data.
Data We Collect from You and How We Use It
The data collected via the website varies depending on how you interact and use the site.
In general, you may browse our website without providing any personally identifiable information about yourself.
Non-personally identifiable and technical information is collected automatically when you visit our websites, such as the type of operating system, the type of browser you are using, and your IP address. We use this information for internal purposes such as to administer the site, better understand how the site is being used and improve usability.
Personal Data is collected when submitted directly by you through our website for such purposes as subscribing to firm mailing lists, registering for events or webinars, or requesting information.
The types of Personal Data requested and collected via the website may include:
Basic information, such as your name, your employer, your title or position, and your relationship to a person;
Contact information, such as your physical address, email address, and phone numbers(s);
Information you provide to use for the purposes of attending meetings and events, including access and dietary requirements;
Any other information relating to you which you may provide to us.
If you join one or more of our mailing lists or otherwise submit Personal Data to us through our site, we will process that information for the purpose for which it was collected.
Security of Information
Windham is committed to keeping your nonpublic information secure and restricts access to client information only to those employees and third parties who need to know such information in order to provide financial products or services. Windham maintains physical, electronic, and procedural safeguards to ensure that all client information remains secure. It is Windham’s policy to work only with third parties who treat nonpublic personal information with the same level of importance that Windham does.
How Personal Data is Shared
We may share your information with our trusted third-party service providers, including such technology providers as website and mailing list hosting services. In sharing information with service providers, we ensure that your data is kept secured and used only in accordance with this Policy.
We reserve the right to disclose Personal Data if required by law or if we reasonably believe that use or disclosure is necessary to protect our rights and/or to comply with judicial or regulatory proceedings, a court order, or other legal processes.
California’s “Shine The Light” law permits California residents to annually request and obtain information free of charge about what personal information is disclosed to third parties for direct marketing purposes in the preceding calendar year. Windham does not distribute your personal information to outside parties for their direct marketing.
Transfer of Information Across National Borders
This site is hosted on servers located in the U.S., and all data is expected to remain in the U.S.
The safety of your Personal Data is important to us. The Firm uses various technical and organizational measures to ensure that your data is secure. These measures include encryption and intrusion detection, and prevention technologies. However, the transmission of information via the Internet is not completely secure. While we take appropriate measures to safeguard against unauthorized disclosures of information, we cannot guarantee the security of your data.
How long Personal Data is retained
We only retain Personal Data for as long as necessary to fulfill the purposes for which it was collected and processed, including for the purposes of satisfying any legal, regulatory, accounting, or reporting requirements.
We will delete your Personal Data when it is no longer reasonably required for the permitted uses, or you withdraw your consent (where applicable), provided that we are not legally required or otherwise permitted to continue to hold such data. We may retain your Personal Data for an additional period to the extent deletion would require us to overwrite our automated disaster recovery backup systems or to the extent, we deem it necessary to assert or defend legal claims during any relevant retention period.
You have certain rights over your Personal Data, including the right to withdraw consent.
In circumstances in which the GDPR applies, you may:
Require us to rectify the Personal Data we hold about you, where that data is incorrect;
Require that we restrict the processing of your Personal Data in certain circumstances;
Request access to the Personal Data that we hold about you;
Require that, in certain circumstances, we delete the Personal Data we hold about you;
Require that we provide you with the information that we hold about you in a structured, commonly used, and machine-readable format; and/or
Withdraw your consent to the collection or processing of your Personal Data for marketing purposes at any time.
You also have the right to complain to your local regulator about our data processing activities in relation to your Personal Data if you think they infringe applicable data protection laws.
Changes to this Policy
We reserve the right to update this Policy at any time, and we will make an updated copy of such Policy available on our website.
Policy last updated February 2020.