Compliant Privacy & Security Policy

1. Purpose

This policy outlines our commitment to the safe handling, storage, and transmission of payment card information. We are dedicated to maintaining the highest security standards in compliance with the Payment Card Industry Data Security Standard (PCI DSS) and other applicable regulations.

2. Scope

This policy applies to all users of our website, including customers, employees, and partners involved in processing, transmitting, or storing payment card data, as well as individuals who opt in to receive SMS communications from CG Insurance LLC.

3. Data Collection and Use

We collect only the necessary personal and payment information required to process transactions or provide requested services. Information collected may include:

Names, email addresses, and billing addresses.
Payment details (processed securely).
Phone numbers for communication purposes.

SMS Consent:
By submitting your phone number, you expressly consent/opt-in to receiving SMS text messages from CG Insurance LLC.

Types of Messages: SMS messages may include account updates, policy notifications, appointment reminders, and customer service information.

4. SMS Privacy & Data Sharing

We respect your privacy and are committed to protecting your personal data.

We do not share, sell, trade, or otherwise disclose your SMS opt-in consent or phone number to any third party or affiliate under any circumstances.
SMS consent and phone numbers are used solely by CG Insurance LLC to send communications that you have agreed to receive.
You may withdraw your consent at any time by replying STOP to any SMS message you receive.

5. SMS Disclosures

If you consent to receive SMS from CG Insurance LLC, you agree to the following:

You will receive SMS messages related to insurance updates, reminders, or customer service.
Reply STOP to opt-out; reply HELP for support.
Message & data rates may apply.
Messaging frequency may vary.
Our full privacy policy and terms can always be found at: https://cginsurance.info/privacy-policy/

6. Security Measures

Data Encryption: All payment transactions are conducted through an SSL-encrypted connection to protect your data during transmission.
Storage: We do not store full card details. Sensitive information like the full credit card number and CVV are not retained after the transaction.
Access Control: Access to sensitive payment and personal information is restricted to authorized personnel only.

7. Compliance with PCI DSS

Our organization complies with the Payment Card Industry Data Security Standard (PCI DSS) by:

Maintaining a secure network with firewalls and anti-virus protection.
Regularly monitoring and testing networks.
Implementing strong access control measures.

8. Third-Party Services

Our website may use third-party services for payment processing. These providers comply with the PCI DSS requirements and ensure the security of payment data.

9. Breach Notification

In the event of a data breach, we will promptly notify affected individuals and relevant authorities as required by applicable laws and regulations.

10. Updates to the Policy

This policy may be updated periodically to reflect changes in legal requirements, telecommunications rules, or our internal security practices. Updates will be posted on this page with the “last updated” date.