AIB INTERNATIONAL PRIVACY POLICY
Updated as of July 15, 2022
Introduction
American Institute of Baking and AIB International, Inc. (collectively, “AIB,” “we,” “our,” or “us”) respects the privacy of your information. This Privacy Policy is designed to assist you in understanding how we collect, use and safeguard the information you provide to us in using our website (the “Site”) and the services provided through our Site (the “Services”).
From time to time, we may change this Privacy Policy. If we do, we will post an amended version on this webpage. If we make material changes to our Privacy Policy, we may also notify you by other means, such as sending an email or posting a notice on our home page. If required by applicable data protection laws, we will obtain your consent to any material changes. Please review this Privacy Policy periodically.
Please also refer to our Terms of Service regarding the proper usage of the Sites and Services.
This Privacy Policy covers the following topics:
At AIB, we help food and beverage supply chain companies apply the highest standards of integrity, while partnering with them to continuously improve their food safety best practices.
AIB’s offices are located at 1213 Bakers Way, Manhattan, Kansas 66502. AIB is the data controller of all personal data collected from residents of the European Economic Area or the United Kingdom.
Through your use of the Site and Services, we will collect personal data from you. For purposes of this Privacy Policy, “Personal Data” refers to any information relating to an identified or identifiable natural person that we maintain in an accessible form.
Information You Provide
When you use the Site or Services, you may voluntarily provide us with the following types of Personal Data:
Information as You Navigate Our Site and Services
We automatically collect certain Personal Data through your use of the Site and Services, including the Application. We will automatically collect certain Personal Data, such as the following:
Third Party Information
In some cases, we may receive certain Personal Data from you about a third party. For example, when you register for a webinar, you may provide a third party’s first and last name, and email address. If you submit any Personal Data about another individual to us, you are responsible for making sure that you have the authority to do so and to allow us to use their Personal Data in accordance with this Privacy Policy.
We use the Personal Data we collect to provide the Services to you, to improve our Services and Site, and to protect our legal rights. In addition, we may use the Personal Data we collect to:
We may share the information that we collect about you in the following ways:
Like many other companies, we use cookies and other tracking technologies (such as pixels and web beacons). To learn more about how we use cookies and to change your cookie settings, please see our Cookie Policy.
Google Analytics
We use Google Analytics, a web analytics service provided by Google, Inc. Google Analytics uses Cookies or other tracking technologies to help us analyze how users interact with the Site and Services, compile reports on their activity, and provide other services related to their activity and usage. The technologies used by Google may collect information such as your IP address, time of visit, whether you are a returning visitor, and any referring website. The technologies used by Google Analytics do not gather information that personally identifies you. The information generated by Google Analytics will be transmitted to and stored by Google and will be subject to Google’s privacy policies. To learn more about Google’s partner services and to learn how to opt-out of tracking of analytics by Google, click here.
Google reCAPTCHA
We utilize Google reCAPTCHA, which is a free service that protects websites from spam and abuse using advanced risk analysis techniques to tell humans and bots apart. Google reCAPTCHA works differently depending on what version is deployed. For example, you may be asked to check a box indicating that you are not a robot or Google reCAPTCHA may detect abusive traffic without user interaction. Google reCAPTCHA works by transmitting certain types of information to Google, such as the referrer URL, IP address, visitor behavior, operating system information, browser and length of the visit, cookies, and mouse movements. Your use of Google reCAPTCHA is subject to Google’s Privacy Policy and Terms of Use. More information as to Google reCAPTCHA and how it works is available here.
To ensure that your Personal Data receives an adequate level of protection, we have put in place appropriate procedures with the service providers we share your Personal Data with to ensure that your Personal Data is treated by those service providers in a way that is consistent with and which respects the applicable laws on data security and privacy. For example, we use payment processors, cloud data storage, client relationship management, learning management system, shipping fulfilment, accounting software, and marketing service providers.
We operate internationally and transfer information to the United States for the purposes described in this policy. The United States may have privacy and data protection laws that differ from, and are potentially less protective than, the laws of your country. Your Personal Data can be subject to access requests from governments, courts, or law enforcement in the United States according to the laws of the United States.
For any transfers of Personal Data from the European Economic Area (EEA), Switzerland or the United Kingdom that we make to other entities as described in this Privacy Policy, we use appropriate safeguards to ensure for the lawful processing and transfer of the Personal Data, including, when appropriate, the use of standard contractual clauses approved by the European Commission. To obtain a copy of the safeguards, contact us at [email protected].
Some internet browsers incorporate a “Do Not Track” feature that signals to websites you visit that you do not want to have your online activity tracked. Given that there is not a uniform way that browsers communicate the “Do Not Track” signal, the Site does not currently interpret, respond to or alter its practices when it receives “Do Not Track” signals.
Depending on your location (and reflecting applicable law), you may have been asked to indicate your preferences, provide us with your consent regarding the receipt of such information from us, and indicate how you would like to receive it.
Wherever you are located, we will send you marketing communications based on any preferences you may have expressed.
We only want to send you information in which you are interested. If you do not want to receive these communications or would like to understand more about other unsubscribe options, please contact us as set out in the “How to Contact Us” section below.
For email communications, you can opt-out and/or manage your preferences by clicking on the unsubscribe link provided at the bottom of any email you receive from us. You also may submit a request to us at [email protected]. If we call you with information you do not want to receive, you can advise us of this during the telephone call.
The Site may contain links that will let you leave the Site and Services and access another website. Linked websites are not under our control. Except as stated below, this Privacy Policy applies solely to Personal Data that is acquired on this Site. We accept no responsibility or liability for these other websites.
We maintain commercially reasonable security measures to protect the Personal Data we collect and store from loss, misuse, destruction, or unauthorized access. However, no security measure or modality of data transmission over the Internet is 100% secure. Although we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee absolute security.
The Site and Services are not intended for children under 16 years of age. We do not knowingly collect, use, or disclose personal information from children under 16.
The legal basis for collecting and using the Personal Data described above will depend on the Personal Data concerned and the specific context in which we collect it.
Consent
We may process your Personal Data based on your consent such as when you create an account or when you ask us to send certain kinds of marketing communications. You have the right to withdraw your consent at any time without affecting the lawfulness of the processing based on consent before its withdrawal.
Our Legitimate Interests
We may process your Personal Data if doing so is necessary for our legitimate interests and your rights as an individual do not override those legitimate interests. For example, when we process your Personal Data to carry out fraud prevention activities and activities to increase network and information security, to market directly to you, to expand our business activities and to improve our services and the content and functionality of our Site.
To Perform a Contract
We may process your Personal Data to administer and fulfill contractual obligations to you.
To Enable Us to Comply with a Legal Obligation
We may process your Personal Data to comply with legal obligations to which we are subject. This may include any requirement to produce audited accounts and to comply with legal process.
Necessary for the Exercise or Defense of Legal Claims
If you bring a claim against us or we bring a claim against you, we may process your Personal Data in relation to that claim.
If you have any questions about or need further information concerning the legal basis on which we collect and use your Personal Data for any specific processing activity, please contact us using the “How to Contact Us” section below.
Your Rights
Access Your Personal Data
You have the right to obtain from us confirmation as to whether or not we are processing Personal Data about you and, if so, the right to be provided with the information contained in this Privacy Policy. You also have the right to receive a copy of the Personal Data undergoing processing.
Rectify Your Personal Data
You have the right to ask us to rectify any inaccurate Personal Data about you and to have incomplete Personal Data completed.
Restrict Our Use of Your Personal Data
You have the right to ask us to place a restriction on our use of your Personal Data if one of the following applies to you:
Object to Our Use of Your Personal Data
You have the right to object to our use of your Personal Data where our reason for using it is based on our legitimate interests or your consent (rather than when the reason for using it is to perform an obligation due to you under a contract with us).
Delete Your Personal Data
You can ask us to delete your Personal Data if:
However, this right is not absolute. Even if you make a request for deletion, we may need to retain certain information for legal or administrative purposes, such as record keeping, maintenance of opt-out requirements, defending or making legal claims, or detecting fraudulent activities. We will retain information in accordance with the “How Long Is Your Personal Data Kept” section below.
If you do exercise a valid right to have your Personal Data deleted, please keep in mind that deletion by third parties to whom the information has been provided might not be immediate and that the deleted information may persist in backup copies for a reasonable period (but will not be available to others).
Transfer Your Personal Data to Another Service Provider
You may request that we transfer some of the Personal Data you have provided to you or another service provider in electronic copy. This applies to Personal Data we are processing to service a contract with you and to Personal Data we are processing based on your consent.
To exercise any of these rights, please contact us as described in the “How to Contact Us” section below.
Make a Complaint
If you have any concerns or complaints regarding our processing of your Personal Data, please contact us as described in the “How to Contact Us” section below and we will do our best to answer any question and resolve any complaint to your satisfaction.
If, for whatever reason, you feel we do not meet the standards you expect of us, you are also entitled to make a complaint to your local supervisory authority:
EU Data Protection Authorities (DPAs)
Swiss Federal Data Protection and Information Commissioner (FDPIC)
Information Commissioner’s Office (United Kingdom)
How Long Is Your Personal Data Kept?
We will retain your Personal Data for as long as necessary to fulfill the purposes for which we collect it and as set out in this Privacy Policy and for the purpose of satisfying any legal, accounting, or reporting requirements that apply to us.
Notice to Nevada Residents
Nevada law allows Nevada residents to opt-out of the sale of certain types of personal information. Subject to a number of exceptions, Nevada law defines “sale” to mean the exchange of certain types of personal information for monetary consideration to another person. We do not currently sell personal information as defined in the Nevada law. However, if you are a Nevada resident, you still may submit a verified request to opt-out of sales and we will record your instructions and incorporate them in the future if our policy changes. Opt-out requests may be sent to [email protected].
Notice to California Residents
The California Consumer Privacy Act (CCPA) requires that we provide California residents with a privacy policy that contains a comprehensive description of our online and offline practices regarding the collection, use, disclosure, and sale of personal information and of the rights of California residents regarding their personal information. This section of the Privacy Policy is intended solely for, and is applicable only as to, California residents. If you are not a California resident, this does not apply to you and you should not rely on it.
The CCPA defines “personal information” to mean information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular California resident or household. Personal information does not include publicly available, deidentified or aggregated information. For purposes of this “Notice to California Residents” section we will refer to this information as “Personal Information.”
The CCPA contains an exception that is relevant to us. Some of the CCPA’s privacy rights explained below do not apply to personal information collected in a business-to-business context. That is information reflecting a written or verbal communication or a transaction between us and a consumer, where the consumer is acting as an employee, owner, director, officer, or contractor of another entity and when the communication or transaction occur solely within the context of us conducting due diligence regarding or providing or receiving a product or service to or from such entity.
If you are a California resident, you have the right to request that we disclose what Personal Information we have collected about you in the 12-month period preceding your request. This right includes the right to request any or all of the following:
Collection of Personal Information
We currently collect and, in the 12 months prior to the Effective Date of this Privacy Policy, have collected the following categories of Personal Information:
The Personal Information is collected from California residents directly and from marketing service providers. Not all categories of Personal Information are collected from each source.
In addition to the purposes stated above in the section “Collecting and Using Information” we currently collect and have collected and sold the above categories of Personal Information for the following business or commercial purposes:
Disclosure of Personal Information
The following table identifies the categories of Personal Information that we disclosed for a business purpose to service providers or sold to third parties in the 12 months preceding the Effective Date of this Privacy Policy and, for each category, the category of service providers or third parties to whom the Personal Information was disclosed or sold.
Category of Personal Information |
Category of Third Parties |
Category of Service Providers |
Identifiers (name, postal address, email address) |
Advertising networks |
Payment processor; delivery service provider; shipping fulfillment; cloud data storage; accounting software; client relationship management; learning management system |
Telephone number |
Payment processor; delivery service provider; shipping fulfillment; cloud data storage; client relationship management |
|
Credit and debit card number |
Payment processor |
|
Internet or other electronic network activity information (browsing history; search history; and information regarding consumer’s interaction with website, application or advertisement) |
Cloud data storage |
|
Commercial information (records of products or services purchased) |
Client relationship management; learning management system |
|
Professional or employment-related information |
Learning management system |
|
Inferences drawn from above information to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes |
Learning management system |
|
Cookies, beacons , pixel tags, mobile ad identifiers, or other similar technology |
Advertising networks *Please see “Cookies and Other Tracking Technologies” section above for more information as to our use of cookies |
We do not knowingly collect or sell the Personal Information of minors under 16 years of age.
If you are a California resident, you have the right to request that we delete the Personal Information about you that we have collected. However, per the CCPA, we are not required to comply with a request to delete if it is necessary for us to maintain the Personal Information in order to, for example, complete a transaction, detect security incidents, comply with a legal obligation, or otherwise use the Personal Information, internally, in a lawful manner that is compatible with the context in which you provided the information.
How to Submit a Request to Know or Delete
You may submit a request to know or delete by calling us at 800-633-5137, emailing us at [email protected].
Our Process for Verifying a Request to Know or Delete
If we determine that your request is subject to an exemption or exception, we will notify you of our determination. If we determine that your request is not subject to an exemption or exception, we will comply with your request upon verification of your identity and, to the extent applicable, the identity of the California resident on whose behalf you are making such request.
We will verify your identity either to a “reasonable degree of certainty” or a “reasonably high degree of certainty” depending on the sensitivity of the Personal Information and the risk of harm to you by unauthorized disclosure or deletion as applicable.
For requests to access categories of Personal Information and for requests to delete Personal Information that is not sensitive and does not pose a risk of harm by unauthorized deletion, we will verify your identity to a “reasonable degree of certainty” by verifying at least two data points that you previously provided to us and which we have determined to be reliable for the purpose of verifying identities.
For requests to access specific pieces of Personal Information or for requests to delete Personal Information that is sensitive and poses a risk of harm by unauthorized deletion, we will verify your identity to a “reasonably high degree of certainty” by verifying at least three pieces of Personal Information previously provided to us and which we have determined to be reliable for the purpose of verifying identities. In addition, you will be required to submit a signed declaration under penalty of perjury stating that you are the individual whose Personal Information is being requested.
If you are a California resident, you have the right to direct us to stop selling your Personal Information.
The CCPA defines “sell” to mean selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating orally, in writing, or by electronic or other means, a California resident’s Personal Information to another business or a third party for monetary or other valuable consideration.
How to Submit a Request to Opt-Out
You may submit a request to opt-out by clicking on this link: “Do Not Sell My Personal Information.”
We will not discriminate against California residents if they exercise any of the rights provided in the CCPA as described in this section “Notice to California Residents.”
If you are submitting a request on behalf of a California resident, please submit the request through one of the designated methods discussed above. After submitting the request, and if the request is not subject to an exemption or exception, we will require additional information to verify your authority to act on behalf of the California resident.
We do not disclose personal information obtained through our Site or Services to third parties for their direct marketing purposes. Accordingly, we have no obligations under California Civil Code § 1798.83.
Depending on the jurisdiction in which you are located, you may have certain rights with respect to your Personal Data. For example, you may have the following rights:
If you would like to exercise your legal rights, please contact us at [email protected]. We will process your request in accordance with any applicable legal requirements.
For a description of the legal bases for which we collect your Personal Data, please see the section “Your Personal Data and Your Rights –Europe and the United Kingdom Only – Legal Bases for Processing Your Personal Data” above.
We are committed to ensuring this Privacy Policy is accessible to individuals with disabilities. If you wish to access this Privacy Policy in an alternative format, please contact us as described below.
For questions or concerns about our privacy policies or practices, please contact us at:
AIB International, Inc.
Attn: Privacy Compliance Officer
PO Box 3999
1213 Bakers Way
Manhattan, KS 66503
[email protected]
La inocuidad alimentaria debe ser una prioridad para su negocio. Nuestro equipo se asociará con usted para lograrlo.
Conversemos sobre cómo podemos iniciar el proceso.