top of page

Compliance and Data Security Policy

Effective Date: 07/01/2025

 

At Atrium Insights Group Inc. ("we," "our," or "us"), we are committed to maintaining the highest standards of compliance and data security to protect our customers' information and ensure our services meet legal, regulatory, and industry requirements.

 

This Compliance and Data Security Policy outlines our approach to maintaining compliance with applicable laws, as well as the measures we take to secure the personal and financial information of our customers.

 

Compliance with Industry Regulations

We are committed to complying with relevant laws and regulations, including but not limited to:

  • Payment Card Industry Data Security Standard (PCI-DSS): We adhere to the PCI-DSS standards to protect cardholder data during transactions, ensuring the security of payment information.

  • General Data Protection Regulation (GDPR): For customers in the European Union, we comply with GDPR provisions that protect personal data and provide transparency in how data is used.

  • California Consumer Privacy Act (CCPA): We comply with CCPA, ensuring transparency regarding the collection, use, and sharing of personal information for California residents.

  • Anti-Money Laundering (AML) and Know Your Customer (KYC) Regulations: We implement policies and practices to detect and prevent financial crimes, including money laundering and fraud.

 

We are committed to continuously monitoring and adapting our business practices to ensure full compliance with any new or updated regulations that may apply to our industry.

 

Data Security Measures

We take the protection of personal and financial data very seriously and employ comprehensive measures to safeguard it from unauthorized access, use, or disclosure. Our data security practices include:

  • Encryption: All sensitive data, including customer payment information, is encrypted using industry-standard protocols to ensure that it is securely transmitted and stored.

  • Access Control: We limit access to personal data to only those employees or third-party service providers who need it to perform their job functions. All access is governed by strict authentication and authorization procedures.

  • Firewalls and Intrusion Detection Systems: We use advanced firewalls and intrusion detection systems to safeguard our networks from unauthorized access and cyber threats.

  • Regular Security Audits: We conduct regular internal and external security audits to identify vulnerabilities and take corrective action as necessary.

  • Data Retention and Disposal: We retain personal and payment data only for as long as necessary to fulfill the purposes for which it was collected. Once this data is no longer needed, it is securely destroyed following industry best practices.

 

Incident Response Plan

In the event of a data breach or security incident, we have a robust Incident Response Plan in place to ensure prompt action to mitigate the risks. This includes:

  • Immediate notification to affected individuals.

  • Investigation of the breach to identify the source and impact.

  • Cooperation with law enforcement and relevant authorities as necessary.

 

Employee Training

We provide ongoing training to our employees to ensure that they understand the importance of data security and comply with all internal procedures and regulations. Employees are required to complete training on an annual basis to stay up-to-date with the latest security practices.

 

Customer Rights and Transparency

We respect your right to privacy and transparency regarding your personal information. You have the right to:

  • Access, update, or delete your personal information.

  • Withdraw consent for certain data processing activities.

  • Request information regarding the security measures we have in place to protect your data.

If you have any concerns about the security of your personal data or wish to exercise your rights under applicable data protection laws, please contact us using the details provided below.

 

Contact Us

If you have any questions regarding this Compliance and Data Security Policy, or if you wish to exercise your rights concerning your personal data, please contact us at:

  • Address: 30 N Gould St Set N, Sheridan, WY 82801

  • Phone: (844) 869-5521

  • Email: info@atriumgrp.com

bottom of page