Certos.com Website Privacy Notice
Effective: November 17, 2025
This Privacy Notice applies to visitors of our website, Certos.com.
Thank you for visiting Certos.com. We take your privacy seriously and we want you to be fully informed about how you can be in control of your Personal Information.
This Privacy Notice applies to our website, Certos.com (the “Website”). It describes the Personal Information we collect, how it’s used and disclosed, and the choices you can make. We strive for transparency but if anything remains unclear, do not hesitate to contact us at the email address below with any questions or feedback you may have.
To make this Privacy Notice easy to find, we make it available in the footer section of all Certos.com webpages. You may also email privacyoffice@earlywarning.com to request a copy by US mail.
By using this Website, you expressly consent to our collection, use, disclosure, and retention of your Personal Information as described in this Privacy Notice, including future updates. In other words, please do not use this Website if you do not agree with this Privacy Notice.
What do you want to learn more about?
Certos.com Website Privacy Notice
1. When this Privacy Notice applies
This Privacy Notices applies to our website, Certos.com (the “Website”)
2. What is Personal Information?
For the purpose of this Privacy Notice, “Personal Information” means information that identifies or can be used to identify you directly or indirectly. Examples of Personal Information include, but are not limited to, first and last name, email address, telephone number, IP address. Personal Information does not include information obtained from public sources or information that is made available by federal, state, or local governments. Personal Information also does not include deidentified, anonymized, or aggregate information.
3. Personal Information we’ve collected, used, and/or disclosed
If you’ve visited our Website in the past 12 months, we may have collected, used, and/or disclosed the following categories of Personal Information about you for a business purpose(s):
- Personal and online identifiers
- Examples:
- Name, email address, IP address, unique online identifiers
- Categories of sources from which Personal Information is collected:
- All categories listed below in Section 4
- Business purpose(s) for collection, use, and disclosure:
- All purposes listed below in Section 5
- Disclosed for business purpose(s) to the following categories of third parties:
- All categories listed below in Section 6
- Sold or shared to the following categories of third parties:
- Length of time Personal Information is intended to be retained: (unless subject to a legal hold)
- Up to 26 months for 4a below
- Length of business/commercial relationship plus up to 10 years (for B2B Personal Information received via a form on the Website to become a Network Financial Institution) for 4b below
- Certain identifying personal information
- Examples:
- Address, telephone number
- Categories of sources from which Personal Information is collected:
- Directly from you when you use a form on the Website to request information about our products and services
- Business purpose(s) for collection, use, and disclosure:
- All purposes listed below in Section 5
- Disclosed for business purpose(s) to the following categories of third parties:
- All categories listed below in Section 6
- Sold or shared to the following categories of third parties:
- Length of time Personal Information is intended to be retained: (unless subject to a legal hold)
- Length of business/commercial relationship plus up to 10 years (for B2B Personal Information received via a form on the Website to become a Network Financial Institution) for 4b below
- Internet or other electronic network activity information
- Examples:
- Browsing history, search history, interactions with our Website
- Categories of sources from which Personal Information is collected:
- From your device when you use the Website
- Business purpose(s) for collection, use, and disclosure:
- All purposes listed below in Section 5
- Disclosed for business purpose(s) to the following categories of third parties:
- All categories listed below in Section 6
- Sold or shared to the following categories of third parties:
- Length of time Personal Information is intended to be retained: (unless subject to a legal hold)
- Up to 26 months for Category 4a below
4. How we collect Personal Information
We collect Personal Information when you use the Website, including:
- From your device: We and our service providers collect technical data about your device (e.g. website usage data); and
- Directly from you: We collect Personal Information that you give us if you submit a form on our Website.
5. How we use Personal Information
When you visit our Website, we collect, use, and disclose Personal Information for the following business purposes:
- to prevent, detect, and protect against security incidents, fraud, and prohibited or illegal activities;
- to undertake activities to verify or maintain the quality or safety of our services;
- to perform services (for us or our service providers) such as providing website analytics;
- for internal research for technological development, demonstration, and improvement;
- for internal operations;
- to enforce our terms and conditions;
- to debug, identify, and repair errors that impair existing intended functionality;
- to create, develop, operate, deliver, maintain, and improve the Website;
- for legal compliance;
- to respond to your requests and comply with your stated communication preferences;
- for business partner inquiries (B2B), to respond to your requests made through the Website for white papers regarding our products and services, to send you information about our products and services that we believe you will find beneficial, and to comply with your stated communication preferences;
- to provide you with a safe, efficient, and customized experience; and
- to provide other services you request.
6. Who we disclose Personal Information to
We may disclose Personal Information to the following categories of third parties listed below for the business purposes described above in Section 5:
- our service providers (e.g., companies that help us operate our Website);
- law enforcement, government agencies and other authorized third parties (to whom we may be required by law to disclose information); and
- other entities with your consent.
In the past 12 months, we have not sold or shared Personal Information from the Website. For purposes of this Privacy Notice, "sale" means the disclosure of Personal Information to a third-party for monetary or other valuable consideration and "share" means the disclosure of Personal Information to a third party for cross-context behavioral advertising.
7. Your choices
Business Partners (B2B)
If you’ve previously expressed interest in our products and services for your financial institution and you no longer wish to receive marketing communications regarding our products and services, you can indicate your communication preference within the direct communication from us (e.g., by using the unsubscribe link in the email you receive from us) or by emailing marketing@earlywarning.com. Please allow us a reasonable period of time in order to satisfy your request, as some communications may already be in progress.
8. Minors’ privacy
Our Website is not intended for children under the age of 13. We do not knowingly solicit or collect information from any individuals under the age of 13. We also do not sell or share information that is collected from our Website and therefore we have not sold or shared information about minors. For information about the Children’s Online Privacy Protection Act (COPPA), visit the FTC website: www.ftc.gov.
9. California Network Participants/Business Partners (B2B) residents’ privacy rights
If you are a California resident and you’ve interacted with us on behalf of your Network Participant/company/business (i.e., you’ve expressed interest in our products/services for your financial institution), the following data privacy rights are available to you:
- Third party direct marketing: Request a list of what Personal Information (if any) we’ve shared with third parties for their own direct marketing purposes in the preceding calendar year and the names and addresses of those third parties.
- How? We do not share Personal Information with third parties for their own direct marketing purposes. Therefore, we have not shared Personal Information with third parties for direct marketing purposes within the last 12 months.
- Be informed: Know the categories and specific pieces of Personal Information we collected about you, our business purposes for collecting Personal Information, the categories of sources that we’ve collected Personal Information from, the categories of third parties that we’ve disclosed Personal Information to, whether we’ve sold or shared Personal Information to a third party in the preceding 12 months, and the categories of third parties with which we’ve sold or shared Personal Information.
- How? Review this Privacy Notice in its entirety to learn more about the Personal Information we collect, why we collect Personal Information, the sources from which we collect Personal Information from, and who we may disclose Personal Information to. To submit a California Network Participants/Business Partner (B2B) Data Privacy Rights Request, see the below for instructions.
- Access: Access your Personal Information that we’ve collected about you in the preceding 12 months following your request.
- How? Review this Privacy Notice in its entirety to learn more about the Personal Information we collect, why we collect Personal Information, the sources from which we collect Personal Information from, and who we may disclose Personal Information to. To submit a California Network Participants/Business Partner (B2B) Data Privacy Rights Request, see the below for instructions.
Note: You may request that we disclose the above information beyond the 12-month period for Personal Information collected on or after January 1, 2022, unless doing so proves impossible or would involve a disproportionate effort.
- Correct inaccurate data: Request that we correct inaccurate Personal Information that we maintain about you.
- How? Review this Privacy Notice in its entirety to learn more about the Personal Information we collect, why we collect Personal Information, the sources from which we collect Personal Information from, and who we may disclose Personal Information to. To submit a California Network Participants/Business Partner (B2B) Data Privacy Rights Request, see the below for instructions.
Note: To the extent required by, and in accordance with applicable law, we will use commercially reasonable efforts to correct your Personal Information as directed by you, considering the nature and the purposes of maintaining your Personal Information. Under certain circumstances, we may not be able to correct your information because we have a legal obligation or other reason in which we must retain it in its current state (e.g., the nature of the data, the source of the data, to comply with law).
- Delete data: Request that we delete your Personal Information.
- How? Review this Privacy Notice in its entirety to learn more about the Personal Information we collect, why we collect Personal Information, the sources from which we collect Personal Information from, and who we may disclose Personal Information to. To submit a California Network Participants/Business Partner (B2B) Data Privacy Rights Request, see the below for instructions.
Note: Under certain circumstances, we may not be able to delete your information because we have a legal obligation or other reason that we must retain it.
- Limit data: Limit the use of sensitive Personal Information.
- How? Our website does not collect sensitive Personal Information.
- Opt out: Opt out of the sale or sharing of your Personal Information.
- How? In the past 12 months, we have not sold or shared Personal Information from the Website. For purposes of this Privacy Notice, “sale” means the disclosure of Personal Information to a third-party for monetary or other valuable consideration and “share” means the disclosure of Personal Information to a third party for cross-context behavioral advertising.
- Free from discrimination: Be free from discrimination for exercising your privacy rights.
- How? We will not discriminate against you for exercising your choices and rights.
Instructions for Submitting a California Network Participants/Business Partner (B2B) Data Privacy Rights Request
To submit a California Network Participants/Business Partner (B2B) Data Privacy Rights Request, send an email to privacyoffice@earlywarning.com with "California Network Participants/Business Partner (B2B) Data Privacy Rights Request" in the subject line. In the body of the email, please include:
- Your first name
- Your last name
- The name of your financial institution/business/company
- Your business email address or business telephone number
- Your California address
- Your business relationship with us (financial institution/business partner)
- Your request (access, correct, or delete personal information)
Please note the above-listed rights are subject to certain exceptions. For instance, we cannot disclose or permit access to specific pieces of Personal Information if the disclosure or access would present a certain level of risk to the security of the Personal Information, your account with us, or the security of our systems or networks. We may decline your request if we cannot verify your identity or confirm the Personal Information that we maintain belongs to you. If we cannot honor your request, we will let you know.
Upon receipt of your “California Network Participants/Business Partner (B2B) Data Privacy Rights Request” email, we will acknowledge receipt of your request and let you know how long we expect it will take us to complete your request (typically 45 days or less for most requests).
When you make a request, we will attempt to verify that you are who you say you are. For example, we will attempt to match information that you provide in making your request with information that we have on file. We may need to request additional information from you to verify your identity or to understand the scope of your request, although you will not be required to create an account with us to submit a request or have it fulfilled.
You may designate an authorized agent to make a request on your behalf. Your authorized agent will be required to produce a signed authorization from you and additional identity verification may be required. Authorized agent requests may be made by sending an email to privacyoffice@earlywarning.com.
10. Our data retention practices
We generally retain information for as long as it is necessary and relevant for our operations and to comply with applicable law. See Section 3 for more information.
11. How we use cookies and tracking technologies
Like most websites, we and our service providers (e.g. website analytics providers) use “cookies” and similar technologies (e.g., pixels, web beacons) to gather information when you use our Website to improve the visitor experience.
Some of these tracking technologies provide basic functions of the Websites, assess the Websites’ performance, provide site functionality, and help us maintain the security of our Websites.
We use the following types of cookies on our Website:
- Strictly Necessary Cookies: These cookies are needed to provide basic functions on the Website. We may use cookies and tracking technologies required to prevent fraudulent activity, improve security, and/or for system administration.
- Analytics and Performance-Related Cookies: We may use these cookies to assess the performance of our Website, including as part of our analytic practices to improve the services offered through the Website. These cookies may be used to prevent fraudulent activity and improve security.
- Functionality-Related Cookies: We may use these cookies to tell us, for example, whether you have visited the Website before or if you are a new visitor and to help us identify the features in which you may have the greatest interest.
During some visits we may use software tools to measure and collect session information, including page response times, download errors, time spent on certain pages and page interaction information.
A few additional important things you should know about our use of tracking technologies (e.g., cookies, HTML stored technologies):
- We offer certain features that are available only through the use of tracking technologies.
- We use both persistent and temporary tracking technologies. Tracking technologies (e.g., cookies) can either be persistent (i.e., they remain on your computer until you delete them) or temporary (i.e., they last only until you close your browser). You are always free to decline tracking technologies if your browser permits, although doing so may interfere with your use of the Website. Refer to the help section of your browser, browser extensions, or installed applications for instructions on blocking, deleting, or disabling tracking technologies such as cookies.
- We use cookies and tracking technologies with your prior consent as obtained through your use of this Website.
- You may encounter tracking technologies/cookies from our third-party service providers that we have allowed on our Website that assist us with various aspects of our Website operations and services, such as Google Analytics.
For more information about the use of information collected by cookies and similar technology on our Website, please review Sections 3, 4, 5 and 6 of this Privacy Notice.
How We Respond to Do Not Track Signals for California Residents: California Business & Professions Code Section 22575(b) (as amended effective January 1, 2014) provides that California residents are entitled to know how we respond to "Do Not Track" browser settings. We do not currently take actions to respond to Do Not Track signals because a uniform technological standard has not yet been developed. We continue to review new technologies and may adopt a standard once one is created.
12. Links to third party websites
Our Website may contain links to other third-party websites, such as our Channel Partners. When you leave our Website and visit those websites, you are bound by the privacy notices of those websites. We are not responsible for the privacy practices of these third-party websites, which are governed by their own privacy notices and practices.
13. How we protect Personal Information
To help us protect your Personal Information, we maintain technical, physical, and administrative security measures to protect against loss, misuse, unauthorized access, disclosure, or alteration. Some of the safeguards we use are firewalls, data encryption, physical access controls to our data centers and information access authorization controls.
14. Where Personal Information is stored
We are located in the United States. Our operations use a network of computers, cloud-based services, and other infrastructure and information technology that are based in the United States. Additionally, we may use third-party service providers that may process and/or store your Personal Information in the United States, the European Union, and in other countries.
15. Changes to this Privacy Notice
From time to time, we may update this Privacy Notice. You agree that we may notify you about material changes in the way we treat Personal Information by placing a notice on the Website. You should check the Website frequently for updates.
16. How to contact us
If your questions are not answered in this Privacy Notice, you may email us at privacyoffice@earlywarning.com, or write to us at Early Warning Services, LLC., Attn: Privacy Office, 5801 N Pima Rd, Scottsdale, AZ 85250.
