Privacy Notice

This Privacy Notice explains who we are, how we collect, share and use personal information about you, and how you can exercise your privacy rights.

Effective: June 2022

Last Updated: June 2022

CSG Systems International, Inc.

CSG Systems International, Inc. and our affiliated companies and subsidiaries respect your right to privacy. This Privacy Notice explains who we are, how we collect, disclose and use personal information about you, the user of the CSG website acting on behalf of yourself or the business entity you represent (“you”, “your”, or “yourself”), and how you can exercise your privacy rights.

You can access specific topics on this Privacy Notice by clicking on the relevant links below:

Introduction

Personal Information Collected

Use of Your Information

Disclosures of Personal Information

Legal Basis for Processing Personal Information

Security of Your Personal Information

International Data Transfers

Data Retention

Your Data Protection Rights

Cookies

Information Related to Children

How to contact us

Updates to this Privacy Notice

For Our Suppliers

How to Contact Us

 

INTRODUCTION

CSG is a leading business support solutions provider and trusted partner, offering business support solutions, revenue management, customer experience and digital monetization solutions.

This Privacy Notice covers CSG Systems International, Inc. and its corporate affiliates and subsidiaries, including CSG Systems, Inc., Intec Billing, Inc., Independent Technology Systems Limited and Intec Billing Ireland Ltd (collectively, “CSG” or “we”); this Privacy Notice does not cover CSG Forte Payments, Inc., which is subject to its own privacy notice and practices. For a full list of our global operating companies, please click here. This Privacy Notice applies to personal information that we collect through our website at csgi.com (“Site”), from your use of CSG’s systems, applications, and services (except where we are acting as a processor/service provider as described below), from you at sales or promotional events or from third parties for marketing or other purposes (the “Services”). If you have any questions or concerns about our use of your personal information, please contact us using the contact details provided at the bottom of this Privacy Notice.

For the purposes of this Privacy Notice, CSG is a controller (i.e., responsible party) for the personal information practices described in this Privacy Notice. Additionally, this Privacy Notice does not apply to the extent we process personal information in the role of a processor or service provider (as applicable) on behalf of our business customers. For detailed privacy information about where a CSG business customer or a customer affiliate who uses the services is the controller or business (as applicable), please contact the respective business customer directly. We are not responsible for the privacy or data security practices of our business customers, which may differ from those set forth in this Privacy Notice.

In connection with the provision of specific Services, we may provide additional “just-in-time” disclosures or additional information about our data processing practices. These notices may supplement this Privacy Notice or clarify CSG’s privacy practices in the circumstances described or may provide you with additional choices about how CSG processes your personal information.

For the avoidance of doubt, this Privacy Notice applies to all users across the world. Some users, including those who are in the European Union, European Economic Area, the United Kingdom (“EU/EEA/UK”), Brazil, South Africa and/or certain states in the United States may have additional rights depending on where they are located, which are also described in this Privacy Notice.

Please read this Privacy Notice carefully. Providing your personal information is voluntary, and by accessing or using the Site and/or the Services, you: (i) acknowledge that you have read and understood this Privacy Notice; and (ii) agree that your access to and use of the Services are subject to the Privacy Notice and related Terms of Use (including any applicable limitations on damages and the resolution of disputes).

 

PERSONAL INFORMATION COLLECTED

Personal information (i.e., personal data or similar term(s) under applicable law) generally refers to any information that can be linked to an identified or identifiable person.

The personal information that we may collect about you, or have collected about you in the past 12 months, varies depending on the context of our interactions with you. This broadly falls into the following categories:

Information that you provide voluntarily
We may collect the following information directly from you acting in your professional capacity:

• Basic Information: name and contact information (e.g., mailing address, email address, telephone number), date of birth, job title and responsibilities, company, trade association information, and any other personal information that you submit to us during the course of conducting business with us.
• Registration Information: information required to fulfill requests to receive newsletters, download or subscribe to content, and register for conferences.
• Marketing Information: information gathered from your participation in trade shows, seminars, and conferences, as well as credentials, product or service interests, and preferences or other information submitted to us for marketing purposes.
• Compliance Information: government identifiers and eligibility data.
• Financial Information: billing and account information.

If you are applying for a position at CSG or a CSG affiliate, our collection and processing of your personal information can be found on our Job Applicant Privacy Notice.

Information that we collect automatically
When you visit our Site or use our Services, we may collect certain information automatically from your device. Specifically, the information we collect automatically may include information like your IP address, device type, unique device identification numbers, browser-type, geographic location, and other technical information. We may also collect information about how your device has interacted with our Site or our Services, including the pages accessed and links clicked.

Collecting this information enables us to better understand the visitors who come to our Site or use our Services, where they come from, and what content on our Site or connected to our Services is of interest to them. We use this information for our internal analytics purposes and to improve the quality and relevance of our Site and our Services to our visitors and customers.

Some of this information may be collected using cookies and similar tracking technology, as explained in the Cookies Section below.

Information that we obtain from third party sources
From time to time, we may receive personal information about you from third party sources (including from companies that also provide marketing lead information and/or your employer to the extent your organization is acting as our customer).

 

USE OF YOUR INFORMATION

The information listed above is collected for the following purposes, as applicable:

• For everyday business purposes, such as account management, contract management, website administration, corporate governance, and reporting obligations.
• To respond to your requests or provide you with information about our Services.
• To communicate with you about the Services.
• To provide support, personalize, maintain and enhance the Services and the Site.
• To comply with and enforce applicable legal requirements, agreements and policies.
• To develop and improve our marketing activities, including identifying new customer opportunities, sending marketing communications and displaying personalized advertisements and content.
• To prevent, detect, identify, investigate, respond and protect against potential or actual claims, liabilities, prohibited behavior and criminal activity.
• For other business purposes such as data analysis, identifying usage trends, determining the effectiveness of our Services and to enhance, customize and improve our features, products and Services.
• To perform other activities consistent with this Privacy Notice.

 

DISCLOSURES OF PERSONAL INFORMATION

We may disclose, or in the past 12 months have disclosed, your personal information to the following categories of recipients:

 

LEGAL BASIS FOR PROCESSING PERSONAL INFORMATION

Our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it.

However, in most instances, we collect personal information from you based on the following legal grounds:

Consequences of Not Providing Personal Information
You are not required to provide all of the personal information defined in this Privacy Notice in order to use our website or to interact with us offline. If you do not provide certain personal information, however, certain functionality will not be available to you, and we may not be able to respond to your requests, perform a transaction with you, or provide you with marketing that we believe you would find valuable.

If you have questions about or need further information concerning the legal basis on which we collect and use your personal information, please contact us using the contact details provided under the How to Contact Us Section below.

 

SECURITY OF YOUR PERSONAL INFORMATION

We use appropriate technical and organizational measures to protect the personal information that we collect and process about you. The measures we use are designed to provide a level of security appropriate to the risk of processing your personal information.

 

INTERNATIONAL DATA TRANSFERS

Your personal information may be transferred to, and processed in, countries other than the country in which you live. These countries may have data protection laws that are different to the laws of your country. However, we have taken appropriate safeguards to require that your personal information will remain protected in accordance with this Privacy Notice.

If we transmit personal information across national boundaries, we take reasonable steps do so in compliance with any national laws that govern the cross-border transfer of information, including laws in Brazil, the EU, and/or the UK. For example, we have taken steps to facilitate the transfer of personal information that we receive about residents of the European Union, Switzerland and the United Kingdom. These steps include implementing the European Commissions’ Standard Contractual Clauses and the UK Standard Contractual Clauses for the transfer of personal information.

Depending on your location, our standard contractual clauses can be provided to you on request. We have implemented similar appropriate safeguards with our third party service providers and partners and further details can be provided upon request.

CSG Systems International, Inc., CSG Systems, Inc., and Intec Billing, Inc. (“CSG US”) each continue to comply with its respective obligations and commitments under the EU-US and Swiss-US Privacy Shield Frameworks (collectively, “Privacy Shield”), including the onward transfer provisions, as set forth by the US Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and Switzerland, as applicable, to the United States.

CSG US no longer relies on the Privacy Shield as a lawful mechanism to transfer your personal information. CSG US has certified to the US Department of Commerce that it adheres to the Privacy Shield Principles.

CSG US’ commitments under the Privacy Shield are subject to the investigatory and enforcement powers of the United States Federal Trade Commission. In certain situations, CSG US may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. To learn more about the Privacy Shield Program, and to view our certification, please visit https://www.privacyshield.gov/.

In compliance with the Privacy Shield Principles, CSG US commits to resolve complaints about our collection or use of your personal information. EU or Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact CSG US at [email protected] CSG US has further committed to refer unresolved Privacy Shield complaints to JAMS, an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please visit JAMS website for more information or to file a complaint. The services of JAMS are provided at no cost to you.

Regardless of any other provisions in this Privacy Notice, CSG US may disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements or as may be otherwise permitted by the Privacy Shield. You are entitled to access, review, and update your personal information as further described in the Your Data Protection Rights Section below.

 

DATA RETENTION

How long we retain your personal information depends on the context in which, and purposes for which, we collected it. We generally retain personal information for as long as necessary for achieving the purposes for which it was collected or processed, unless a different retention period is required by applicable law, including the retention periods required under the GDPR and CCPA.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

 

YOUR DATA PROTECTION RIGHTS

Depending on where you live and the types of personal information at issue, you may have certain rights with respect to your personal information. For example, under local applicable laws, including those in the European Union/European Economic Area, United Kingdom, Brazil, South Africa and/or certain states in the United States (e.g., California) you may have the rights listed below. Please note that many of these rights are subject to exceptions and limitations. For example, certain laws generally do not apply to information that you provide to us while acting in your professional capacity (e.g., California).

You may learn more about these rights or exercise these rights by going to the CSG Data Rights Request Portal or by contacting us as set out in the How to Contact Us Section below.

You have the right to complain to a data protection authority about our collection and use of your personal information. For more information, please contact your local data protection authority. This information can be found under the How to Contact Us Section below.

If you choose to assert any of these rights under applicable laws, we will respond within the time period prescribed by applicable law. Please note that many of the above rights are subject to exceptions and limitations. If we are not able to provide the requested information or make the change you requested, you will be provided with the reasons for such decisions. Under local law, you may be entitled to lodge a complaint with your local data protection authority.

Your rights and our responses will vary based on your state or country of residency. Please note that you may be located in a jurisdiction where we are not obligated, or are unable, to fulfill a request. In such a case, your request may not be fulfilled.

We do not discriminate against individuals who exercise any of their rights described in this Privacy Notice. However, CSG may require use of your personal information to provide access to the Services. Therefore, when you exercise your deletion right, in particular, you may lose access to certain aspects of the Services that require your personal information.

Rights Request and Verification Process
Only you, or a person registered with the applicable government entity, where required (e.g., California), and that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information.

You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:

Our verification process may also include a request for additional information to confirm your identity or your authorized agent’s identity (such as your name, email address and date of birth) or to obtain proof that you have given your authorized agent permission to act on your behalf. If our verification process is successful, we will respond to your request within the time and in the manner required by applicable law. If we cannot validate the identity of you and/or your authorized agent or obtain proof that you have given your authorized agent permission to act on your behalf, we will attempt to contact you to inform you.

We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.

We will deliver our written response by mail or electronically, at your option. Any disclosures we provide will only cover the 12-month period preceding the verifiable consumer request’s receipt. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance, specifically by electronic mail communication.

Authorized Agents
If you designate an authorized agent to submit requests to exercise certain privacy rights on your behalf, we will require verification that you provided the authorized agent permission to make a request on your behalf. You must provide us with a copy of the signed permission you have given to the authorized agent to submit the request on your behalf and verify your own identity directly with us. If you are an authorized agent submitting a request on behalf of an individual, you must attach a copy of the following information to the request:

  1. A completed Authorized Agent Designation Form indicating that you have authorization to act on the individual’s behalf.
  2. If you are a business, proof that you are registered with the applicable government entity, to conduct business in your jurisdiction, including the Secretary of State of California.

COOKIES

Cookies are small text files that are placed on your computer or mobile device when you visit a website. For purposes of this Notice, cookies also include similar technologies, such as pixels, web beacons and social network plugins (collectively, “cookies”). Cookies help the website remember information about your visit, which can make it easier to visit the site again and make the site more useful to you. Some cookies are deleted once you close your browser (session cookies), while other cookies are retained even after you close your browser so that you can be recognized when you return to a website (persistent cookies). More information about cookies and how they work is available at www.allaboutcookies.org.

What Types Of Cookies Do We Use?
Cookies on our Site are generally divided into the following categories:

Additional information regarding the reasons we specifically use cookies is set out below in the next section.

Why Do We Use Cookies?
We may use the information collected through cookies and related tracking technologies for the following purposes:

How To Opt-Out?
Most web browsers automatically accept cookies, but you can usually change your browser settings to prevent this. If you disable cookies, your ability to use some features of the Site may be limited. For mobile devices, you may be able to manage certain cookies using your built-in mobile device settings and controls. Any choices concerning cookies are browser- and/or device-specific. If you clear your cookies from your browser on any of your devices, your choices will need to be reset. You should check how to do this on your device(s) and operating systems.

Some cookie providers may also offer opportunities to control your preferences. To learn how to opt-out of Google Analytics, an Analytics cookie, please visit https://tools.google.com/dlpage/gaoptout. To learn how to opt-out of Twitter Pixel, an Advertising cookie, please visit https://help.twitter.com/en/safety-and-security/privacy-controls-for-tailored-ads.

Because CSG participates in advertising networks, you may see our ads on other websites or mobile applications. Depending on where you live, you may be able to opt-out of ad network interest-based advertising or provide your consent to the same. To learn more about how to opt-out of ad network interest-based advertising in the US, please visit www.aboutads.info/choices and http://www.networkadvertising.org/choices/.

Do Not Track Signals
Do Not Track (“DNT”) is a privacy preference that visitors can set in their web browsers. When a visitor turns on DNT, the browser sends a message to websites requesting that they do not track the visitor. At this time, we do not respond to these signals.

 

INFORMATION RELATED TO CHILDREN

We do not knowingly collect or solicit personal information from anyone under the age of 18 or the applicable age of majority in the country in which you are located. If you are under 18, please do not use the Site or send any personal information about yourself to us. If we learn that we have collected personal information from a child under age 18, we will delete that information as quickly as possible. If you believe that a child under 18 may have provided us personal information, please go to [email protected]

 

LINKED THIRD PARTY SITES

We may provide links to other third party websites through the Services solely as a convenience to you. However, such linking does not mean, and should not be interpreted to mean, that CSG endorses, is affiliated with or makes any representations concerning such third party websites. CSG neither reviews, controls, nor is responsible for these third party sites or any content therein. By using such links, you will leave the Services. If you decide to access any of the third party sites linked to the Services, you do so entirely at your own risk. CSG shall not be liable for any consequences arising from use of any third party websites to which the Services link.

 

UPDATES TO THIS PRIVACY NOTICE

We may update this Privacy Notice from time to time in response to changing legal, technical or business developments. When we update our Privacy Notice, we will take appropriate measures to inform you, consistent with the significance of the changes we make. We will obtain your consent to any material Privacy Notice changes if and where this is required by applicable data protection laws.

You can see when this Privacy Notice was last updated by checking the “last updated” date displayed at the top of this Privacy Notice.

 

FOR OUR SUPPLIERS

Our suppliers that are personal information processors may access a security breach notification form here.

 

HOW TO CONTACT US

If you have any questions or concerns about our use of your personal information or you would like to exercise your rights in relation to your personal information, or if you wish to lodge a complaint about our privacy practices, please contact our Global Privacy Department at:

MAIL:
CSG, Attn: Global Privacy Lead
18020 Burt Street,
Omaha, Nebraska 68022
USA

TELEPHONE:
1-800-274-0111

EMAIL:
[email protected].

 

Our EU Representative

If you are located in the European Union (“EU”) and have any questions or comments about this Privacy Notice, any issue relating to your personal information, or if you would like us to update your preferences, you may contact our EU representative. Please include your name and the name of the business to which your request refers.

EMAIL:
[email protected] with a cc: to [email protected]

MAIL:
Intec Billing Ireland Limited
Attn: Director
Marin House, IDA Business Park
Dangan, Galway
H91 A06C
Ireland

 

Our UK Representative

If you are located in the United Kingdom (“UK”) and have any questions or comments about this Privacy Notice, any issue relating to your personal information, or if you would like us to update your preferences, you may contact our UK representative. Please include your name and the name of the business to which your request refers.

EMAIL:
[email protected] with a cc: to [email protected]

MAIL:
Independent Technology Systems Limited
Attn: Director
Albion House, Cherlsey Road
Woking, Surrey
GU21 68D
United Kingdom