Last Updated: May 2021
What does this Privacy Notice cover?
CSG Systems International, Inc. respects your right to privacy. This Privacy Notice explains who we are, how we collect, share and use personal information about you, the user of the CSG website acting on behalf of yourself or the business entity you represent (“You”, “Your”, or “Yourself”), and how You can exercise Your privacy rights. This Privacy Notice covers CSG Systems International, Inc. and its corporate affiliates and subsidiaries, including CSG Systems, Inc., Intec Billing, Inc., Independent Technology Systems Limited and Intec Billing Ireland Ltd (collectively, “CSG” or “We”). For a full list of our global operating companies, please click here. This Privacy Notice only applies to personal information that We collect through our website at csgi.com (“Site”), from Your use of CSG’s systems, applications, and services (the “Services”), from You at sales or promotional events or from third parties for marketing purposes. If You have any questions or concerns about our use of Your personal information, please contact us using the contact details provided at the bottom of this Privacy Notice.
We recommend that You read this Privacy Notice in full to ensure You are fully informed. However, if You only want to access a particular section of this Privacy Notice, then You can click on the relevant link below to jump to that section.
CSG is a leading business support solutions provider and trusted partner, offering business support solutions, revenue management, customer experience and digital monetization solutions. CSG is headquartered in the United States but has subsidiaries throughout the world. For more information about CSG Systems International, Inc., please see the “About CSG” section of this Site.
Personal information means information that identifies You or allows CSG to contact You, like Your name or email address. The personal information that We may collect about You, or have collected about you in the past 12 months, varies depending on the context of our interactions with you. This broadly falls into the following categories:
The personal information that You are asked to provide, and the reasons why You are asked to provide it, will be made clear to You at the point We ask You to provide Your personal information.
When You visit our Site or use our Services, We may collect certain information automatically from Your device. In some countries, including countries in the European Union, European Economic Area and/or the United Kingdom (“EU/EEA/UK”), this information may be considered personal information under applicable data protection laws.
Specifically, the information We collect automatically may include information like Your IP address, device type, unique device identification numbers, browser-type, geographic location, and other technical information. We may also collect information about how Your device has interacted with our Site or our Services, including the pages accessed and links clicked.
Collecting this information enables us to better understand the visitors who come to our Site or use our Services, where they come from, and what content on our Site or connected to our Services is of interest to them. We use this information for our internal analytics purposes and to improve the quality and relevance of our Site and our Services to our visitors and customers.
Some of this information may be collected using cookies and similar tracking technology, as explained further in our upcoming Cookie Notice.
From time to time, We may receive personal information about You from third party sources (including from companies that provide marketing lead information), but only where We have checked that these third parties either have Your consent or are otherwise legally permitted or required to disclose Your personal information to us.
The types of information We collect from third parties include Your name and contact information and we use the information We receive from these third parties to provide You with information regarding our products and services, our industry insights and for other direct marketing purposes.
We use the information collected about You for a variety of reasons, including for the following purposes, as applicable:
We may disclose, or in the past 12 months have disclosed, Your personal information to the following categories of recipients:
If You are from the EU/EEA/UK, our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which We collect it.
However, we will normally collect personal information from You only where We have Your consent to do so, where We need the personal information to perform a contract with You or where the processing is in our legitimate interests and not overridden by Your data protection interests or fundamental rights and freedoms.
If You have questions about or need further information concerning the legal basis on which We collect and use Your personal information, please contact us using the contact details provided under the How to contact us section below.
We use appropriate technical and organizational measures to protect the personal information that we collect and process about You. The measures We use are designed to provide a level of security appropriate to the risk of processing Your personal information.
Your personal information may be transferred to, and processed in, countries other than the country in which You live. These countries may have data protection laws that are different to the laws of Your country. Specifically, while our Site servers are located in the United States, our affiliated companies and third-party service providers and partners operate around the world. This means that when We collect Your personal information we may process it in any of these countries.
However, we have taken appropriate safeguards to require that Your personal information will remain protected in accordance with this Privacy Notice.
If We transmit personal information across national boundaries, We make reasonable efforts do so in compliance with any national laws that govern the cross-border transfer of information. For example, We have taken steps to facilitate the transfer of personal information that We receive about residents of the European Union, Switzerland and the United Kingdom. These steps include implementing the European Commissions’ Standard Contractual Clauses for the transfer of personal information.
Our standard contractual clauses can be provided to EU/EEA/UK residents on request. We have implemented similar appropriate safeguards with our third-party service providers and partners and further details can be provided upon request.
CSG Systems International, Inc, CSG Systems, Inc., and Intec Billing, Inc. (“CSG US”) each continue to comply with its respective obligations and commitments under the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks (collectively, “Privacy Shield”), including the onward transfer provisions, as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland, as applicable, to the United States.
CSG US no longer relies on the Privacy Shield as a lawful mechanism to transfer your personal information. CSG US has certified to the U.S. Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this Privacy Notice and the Privacy Shield Principles, the Privacy Shield Principles shall govern. CSG US remains liable if it fails to meet its obligations under the Privacy Shield and is responsible for the event giving rise to damage. Notwithstanding the foregoing, under the Privacy Shield Principles, CSG remains liable in cases of onward transfers to third parties of personal information in a manner inconsistent with the Principles, unless we prove that we are not responsible for the event giving rise to the damage.
CSG US’ commitments under the Privacy Shield are subject to the investigatory and enforcement powers of the United States Federal Trade Commission. In certain situations, CSG US may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/.
In compliance with the Privacy Shield Principles, CSG US commits to resolve complaints about our collection or use of your personal information. EU or Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact CSG US at [email protected]. CSG US has further committed to refer unresolved Privacy Shield complaints to JAMS, an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please visit JAMS website for more information or to file a complaint. The services of JAMS are provided at no cost to you.
Regardless of any other provisions in this Privacy Notice, CSG US may disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements or as may be otherwise permitted by the Privacy Shield. You are entitled to access, review, and update Your personal information as further described in the Your Data Protection Rights section below.
If you have any questions, concerns or complaints regarding CSG’s handling of personal information or compliance with our commitments under the Privacy Shield please contact us at [email protected] If We are unable to satisfactorily resolve Your complaint relating to the Privacy Shield, CSG has committed to refer unresolved Privacy Shield complaints to JAMS, an alternative dispute resolution provider located in the United States. If You do not receive timely acknowledgment of Your complaint from us, or if We have not addressed our complaint to Your satisfaction, please contact or visit here for more information or to file a complaint. The services of JAMs are provided at no cost to You. CSG US is also subject to the investigatory and enforcement powers of the Federal Trade Commission with respect to the Privacy Shield. In addition, under certain conditions more fully described on the Privacy Shield website, You may invoke binding arbitration for non-monetary issues when other dispute resolution procedures have been exhausted. To learn more, please visit here.
We retain personal information We collect from You where We have an ongoing legitimate business need to do so or to comply with applicable legal requirements.
When We have no ongoing legitimate business need to process Your personal information, We will either delete or anonymize it or, if this is not possible (for example, because Your personal information has been stored in backup archives), then We will securely store Your personal information and isolate it from any further processing until deletion is possible.
You have the following data protection rights:
We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws.
The California Consumer Privacy Act of 2018 (“CCPA”) provides consumers (California residents) with specific rights regarding their personal information. This section describes Your CCPA rights and explains how to exercise those rights.
Access to Specific Information and Data Portability Rights
You have the right to request that We disclose certain information to You about our collection and use of Your personal information over the past 12 months. Once We receive and confirm Your verifiable consumer request, We will disclose to You:
Deletion Request Rights
You have the right to request that We delete any of Your personal information that We collected from You and retained, subject to certain exceptions. Once We receive and confirm Your verifiable consumer request, We will delete (and direct our service providers to delete) Your personal information from our records, unless an exception applies.
We may deny Your deletion request if retaining the information is necessary for us or our service provider(s) to:
Exercising Access, Data Portability, and Deletion Rights
Only You, or a person registered with the California Secretary of State that You authorize to act on Your behalf, may make a verifiable consumer request related to Your personal information. You may also make a verifiable consumer request on behalf of Your minor child.
You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:
We cannot respond to Your request or provide You with personal information if We cannot verify Your identity or authority to make the request and confirm the personal information relates to You. We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.
Response Timing and Format
We endeavor to respond to a verifiable consumer request within forty-five (45) days of its receipt. If We require more time We will inform You of the reason and extension period in writing. We will deliver our written response by mail or electronically, at Your option. Any disclosures We provide will only cover the 12-month period preceding the verifiable consumer request’s receipt. The response We provide will also explain the reasons We cannot comply with a request, if applicable. For data portability requests, We will select a format to provide Your personal information that is readily useable and should allow You to transmit the information from one entity to another entity without hindrance, specifically by electronic mail communication.
We do not charge a fee to process or respond to Your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If We determine that the request warrants a fee, We will tell You why We made that decision and provide You with a cost estimate before completing Your request.
If you have any questions or concerns about our use of your personal information, please contact our Global Privacy Department at: [email protected].
We do not knowingly collect or solicit personal information from anyone under the age of 16. If You are under 16, please do not use the Site or send any personal information about Yourself to us. If We learn that We have collected personal information from a child under age 16, We will delete that information as quickly as possible. If You believe that a child under 16 may have provided us personal information, please go to [email protected].
We may update this Privacy Notice from time to time in response to changing legal, technical or business developments. When We update our Privacy Notice, We will take appropriate measures to inform You, consistent with the significance of the changes We make. We will obtain Your consent to any material Privacy Notice changes if and where this is required by applicable data protection laws.
You can see when this Privacy Notice was last updated by checking the “last updated” date displayed at the top of this Privacy Notice.
Our suppliers that are personal information processors may access a security breach notification form here.