Data Security Policy

Data Security Policy AllProQuotes (www.AllProQuotes.com):

1. Introduction
AllProQuotes & Our Parent Company MagicLeadsMedia are committed to maintaining the security, confidentiality, and integrity of consumer data collected and processed through our lead generation activities. This Data Security Policy outlines our procedures for safeguarding data in compliance with industry standards and the requirements set by Verisk Marketing Solutions for the Jornaya LeadID platform & Active Prospect for the Trusted Form.

2. Data Collection and Handling

• We collect consumer data solely for legitimate marketing purposes and in accordance with applicable laws and regulations.

• All data collected is stored securely and is only accessible to authorized personnel.

• Sensitive consumer information is never shared, sold, or distributed without explicit consent.

3. Data Security Measures

• Encryption: All sensitive data is encrypted at rest and in transit using industry-standard encryption protocols (e.g., AES-256, TLS 1.2+).

• Access Control: Role-based access control (RBAC) is enforced to limit data access to authorized personnel only.

• Firewall and Intrusion Detection: Network firewalls and intrusion detection/prevention systems (IDS/IPS) are deployed to monitor and mitigate potential threats.

• Secure Storage: Data is stored in secure cloud environments with compliance certifications such as SOC 2, ISO 27001, and GDPR/CCPA standards.

4. Data Retention and Disposal

• Consumer data is retained only for as long as necessary to fulfill its intended purpose and in accordance with legal and regulatory requirements.

• Upon expiration of the retention period, data is securely deleted using industry-standard methods (e.g., secure erasure, data shredding).

5. Compliance and Auditing

• Regular security audits and compliance checks are conducted to ensure adherence to best practices and industry standards.

• Employees undergo regular training on data security, compliance, and best practices.

6. Incident Response and Reporting

• A dedicated incident response plan is in place to address data breaches, unauthorized access, or security threats.

• In the event of a data breach, affected parties and regulatory authorities will be notified in accordance with applicable laws.

7. Contact Information
For any inquiries related to data security or privacy, please contact:
Magic Leads Media
Data Protection Officer: Ali Jamal
Email: security@MagicLeadsMedia.com
Phone: 329-823-9339

This policy is reviewed and updated periodically to ensure compliance with evolving security standards and regulatory requirements.