As the custodian of our clients' data, we are committed to protecting the personal information of our participants and institutional clients. This Policy applies to any information you provide to Wespath through its website and mobile applications (collectively, "websites"), as well any information we collect from other sources. This Policy is a statement of our practices and of your rights regarding your information.
Throughout this website, "Wespath" refers to the General Board of Pension and Health Benefits of The United Methodist Church, Incorporated in Illinois and its affiliate the UMC Benefit Board Inc.
Wespath gathers the following information about users:
Wespath uses other companies, agents or contractors ("Service Providers") to enhance security and limit fraud in connection with our participants' use of the website. In the course of providing such services, these Service Providers may have access to your personal or other information such as device IDs or unique identifiers, device and software characteristics (e.g., type and configuration), connection information, statistics on page views, referral URLs, ad data, IP address, and standard web log information. We do not authorize them to use or disclose participant personal information except in connection with providing their services.
You can manage third-party advertising preferences for some of the third parties we work with to serve advertising across the Internet by utilizing the choices available at http://www.networkadvertising.org/managing/opt_out.asp and http://www.aboutads.info/choices. For E.U. specific information, please visit http://www.youronlinechoices.eu/.
Please keep in mind, that we use browser cookies to improve the functionality of the website and to enhance your experience on Wespath.org. Therefore, changing your browser or device settings to refuse, disable or delete cookies may impact your use of some of the features or services on our website as they may not function properly without cookies.
Disabling or clearing cookies also may affect cookie-based opt-outs by either preventing you from using such cookie-based opt-outs or clearing opt-outs that you previously set, in which case you would have to revisit the applicable pages and renew your opt-out after clearing cookies. Please also keep in mind that browser cookie management tools will not remove flash cookies or prevent other automatic collection methods from functioning.
For mobile users, you also have numerous controls in your Operating System that enable you to choose whether to allow cookies. For some information on controlling your mobile choices, click here. We do not guarantee that all of the third parties we work with will honor the elections you make using any of these options.
Please note that you may not opt out of receiving administrative and transactional communications, legal notices, e-mails about changes to our terms, policies or business practices.
Because there currently is not an industry or legal standard for recognizing or honoring Do Not Track ("DNT") signals, we do not respond to them at this time.
We will not knowingly collect information from website visitors under the age of 16 years.
In specific circumstances, we may store your personal information for longer periods of time so that we have an accurate record of your dealings with us in the event of any complaints or challenges, or if we reasonably believe there is a prospect of litigation relating to your personal information or dealings.
Wespath has implemented reasonable physical, technical, and administrative security standards to protect personal information from loss, misuse, unauthorized access, alteration, or destruction. Although we take reasonable steps to safeguard personal information, no practices are 100% secure, and we do not guarantee the security of information. Outages, attacks, human error, system failure, unauthorized use or other factors may compromise the security of user information at any time. You must protect against unauthorized access to your computer and important information. We strongly recommend that you log off each time you finish using a shared computer and do not save passwords in Web browsers
Under California Civil Code Section 1798.83, individual customers who reside in California and who have an existing business relationship with us may request information about our disclosure of certain categories of personal information to third parties for the third parties' direct marketing purposes, if any.
To make such a request, send an e-mail with the subject heading "California Privacy Rights" to [email protected] or write to us by post at: Wespath Benefits and Investments, 1901 Chestnut Ave., Glenview, IL 60025. In your request, please attest to the fact that you are a California resident and provide a current California address for our response. Please be aware that not all information sharing is covered by these California privacy rights requirements and only information on covered sharing will be included in our response. This request may be made no more than once per calendar year.
Controllers of Personal Data
Wespath Benefits and Investments, 1901 Chestnut Ave., Glenview, IL 60025, is the data controller of the personal data processed through the website.
Legal Bases for Processing Personal Data
If you are an individual located in the European Union (EU), we collect and process personal data about you where we have a legal basis for doing so under applicable EU laws. This means we collect and process your data only when:
Where we rely on your consent to process your personal data, you have the right to withdraw or decline consent at any time. Some examples of where we rely on your consent to process your personal data include sending you our newsletter and marketing e-mails. If you wish to withdraw your consent, please contact us at [email protected].
Some examples of our legitimate interests and the personal data being processed include:
Where we rely on our legitimate interests to process your personal data, you may have the right to object. More information on exercising this right can be found in the Individual Rights section below.
If you have any questions about or need further information concerning the legal basis on which we collect and use your personal data, please contact us at [email protected].
If you are located in the EU, you have certain rights under EU data protection law with respect to your personal data, including the right to request access to, correct, and delete your personal data. You may also have the right to receive a copy of your personal data in a commonly used and machine-readable format, and to transmit such data to another controller. You also may object to processing of your personal data, or ask that we restrict the processing of your personal data in certain instances.
To request deletion of, access to, or to make changes to your personal data, or to otherwise any of the rights in this section, please contact us at [email protected]. If you delete or limit the use of your personal data, or if you transmit your personal data to another controller, you may not be able to use all of our website's functionalities or services.
Transfers, Storage, and Processing
Our website is operated from and hosted on servers located in the United States. If you access and use our website from a location outside of the United States, any personal data you provide to us or that is otherwise collected may be transferred to and processed in the United States or any other jurisdiction in our sole discretion. Users of our website should be aware that the laws that apply to the use and protection of personal data in the United States or other countries or jurisdictions to which we transfer, or in which we process, personal data may differ from those of your country of residence. Users who access or use our website from jurisdictions outside of the United States do so at their own choice and risk and are solely responsible for compliance with local law. While we take steps to safeguard your personal data, the United States has NOT been deemed by the European Commission to ensure an adequate level of protection for personal data. Accordingly, the level of protection provided in the United States or other non-EU countries and jurisdictions from which you may access our website may not be as stringent as that under EU data protection standards or the data protection laws of some other countries, possibly including your home jurisdiction.
By consenting to personal data transfers upon account sign up, you consent to allow your personal data to be transferred across borders to the United States or to other countries or jurisdictions in which Wespath or its third-party associates may process personal data.