The OSRT Web site uses state-of-the-art advanced encryption, firewall and other technology to ensure the security of personal information. Although OSRT will make every reasonable effort to protect personal information from loss, misuse or alteration by third parties, Internet users should be aware that there is always some risk involved in transmitting personal information over the Internet.
Distribution of Member Contact Information
The Ohio Society of Radiologic Technologists (OSRT) respects the privacy of its members' contact information to include postal addresses, telephone numbers, fax numbers and email addresses. OSRT does not sell or share member personal data/information for any reason. Members must recognize that their individual contact information is available from other sources that OSRT cannot control.
Affiliates and Volunteers
As an ASRT affiliate, OSRT volunteers, individuals and organizations that participate with OSRT in joint projects may use contact information provided by OSRT for OSRT and ASRT (or other pertinent Societies) professional business only. In these circumstances, OSRT members are made aware that their contact information is being shared for said purposes.
Information We Collect, How We Use it and Privacy on the Internet
OSRT collect the following personal information that you submit to OSRT through a membership application, volunteer application, and professional conference registration forms. This includes phone numbers, email addresses, credit card information, and postal address. We do not share or distribute any credit card information, and it is removed from OSRT’s PayPal system after the transaction is settled (see PayPal information below).
OSRT may use the collected personal information for the following purposes:
- Contacting you by email or postal mail for distribution of the OSRT Newsletter, member renewals, voting, continuing education and other information related normal OSRT business.
- Reporting collective (generic non-personal) OSRT membership data to ASRT or other national professional entity for the purposes of tracking, or conducting statistical comparison data.
Financial Data and PayPal
No credit card information is stored on the OSRT server; PayPal is the payment processor for OSRT. Using PayPal for payment processing ensures a high level of security. Your online payment is processed via PayPal, a highly secure payment processing engine. PayPal uses industry-leading technology to keep your information safe.
PayPal automatically encrypts your confidential information in transit from your computer to OSRT using the Secure Sockets Layer protocol (SSL) with an encryption key length of 128-bits (the highest level commercially available). Before you even register or log in to the PayPal site, OSRT’s server checks that you're using an approved browser - one that uses SSL 3.0 or higher. Once your information reaches the PayPal site, it resides on a server that is heavily guarded both physically and electronically. PayPal servers sit behind an electronic firewall and are not directly connected to the Internet, so private information is available only to authorized computers.
Committed to Data Integrity
PayPal Web site Payments Standard has achieved PCI DSS compliance certification under the Visa Cardholder Information Security Program and the MasterCard Site Data Protection Program. In addition, PayPal has achieved the American Institute of Certified Public Accountant's Statement of Auditing Standards #70 (SAS70) certification.
The challenge in data privacy is to share data while protecting personally identifiable information. The fields of data security and information security design utilize software, hardware and human resources to address this issue. As the laws and regulations related to Data Protection are constantly changing, OSRT makes best efforts to keep abreast of any changes in the law and continually reassesses compliance with data privacy and security regulations.
Privacy on the Internet
The following applies to the OSRT Web site:
- OSRT respects the privacy of its Internet users and will protect that privacy by all means necessary.
- OSRT only collects information that personally identifies individuals when individuals provide such specific information on a voluntary basis based on the OSRT’s business process needs. In all such cases, OSRT will collect only information that is voluntarily provided by the individual, and will undertake procedures to keep such information strictly confidential. Individual information provided to OSRT will not be sold or made available to a third party.
- OSRT reserves the right, however, to perform statistical analyses of user behavior and characteristics in order to measure interest in and use of the various sections of its sites so as to improve design and navigation and to gather marketing information. Only aggregated data from these analyses (not individual data) will be used for this purpose.
OSRT may at times track Web site traffic. If a visitor merely browses through the OSRT Web site or downloads files, we may collect certain information by automatic operation of this site's web servers. This information includes: the name of the domain and host from which they access the Internet; the Internet protocol (IP) address of the computer; browser software and operating system; the date and time of site access; and the Internet address of the Web site from which they linked directly to the OSRT site. OSRT may use this information, which does not identify the visitor, to enhance the site experience for members or other visitors.
Choices and Access to Personal Information
OSRT desires to accurately maintain your personal information for record-keeping purposes. Members are encouraged to correct or update their User Profile by following these steps:
- Go to www.osrt.org
- Log in using your username and password.
- Select Update your Profile under the User Menu on the right.
- To edit your password, click on Change my Password from the User Menu.
- Update your information and click on the submit button.
OSRT’s privacy standards are based on nine principles:
- Accountability: An organization is responsible for personal information under its control and shall designate an individual or individuals who are accountable for the organization’s compliance with these principles.
- Identifying purposes: The purposes for which personal information is collected will be identified by the organization at or before the time the information is collected.
- Consent: The knowledge and consent of the individual are required for the collection, use or disclosure of personal information, except where inappropriate.
- Limiting collection: The collection of personal information will be limited to that which is necessary for the purposes identified by the organization. Information will be collected by fair and lawful means.
- Limiting use, disclosure and retention: Personal information will not be used or disclosed for purposes other than those for which it was collected, except with the consent of the individual or as required by law. Personal information will be retained only as long as necessary for the fulfillment of these purposes.
- Accuracy: Personal information will be as accurate, complete and up-to-date as is necessary for the purposes for which it is to be used.
- Safeguards: Personal information will be protected by security safeguards appropriate to the sensitivity of the information.
- Openness: An organization will make readily available to individuals specific information about its policies and practices relating to the management of personal information.
- Challenging compliance: An individual may address a challenge concerning compliance with the above principles to the designated individual or individuals accountable for the organization’s compliance.
Links to Other Web Sites
How to Contact Us
Changes in this Privacy and Security Information