Last Updated: [1/10/2023]
This Privacy Policy describes the privacy practices of Cross Financial Corp. and its affiliated companies and subsidiaries (“Cross Insurance,” “Cross,” “we,” “us,” or “our”) and how we handle personal information that we collect through our website (the “Site”).
This Privacy Policy does not apply to any personal information we may collect from you offline or through other sources, such as any related services we offer to you on behalf of other vendors.
If you have applied for or taken steps to establish an account with us, please also review our GLBA Consumer Privacy Notice. We provide additional information for California users below.
Information you provide to us:
• Contact and account information, such as your first and last name, email and mailing addresses, phone number, username and password.
• Employment information. If you apply for a career on our website, we may collect the following information from you: Name, address, email address, phone number, licenses, credits, and degrees, and information regarding employment that you are interested in.
• Policy information, including information regarding insured items, properties, plan and pricing information, and information regarding claims and claims history, if applicable.
• Feedback or correspondence, such as information you provide when you contact us with questions, feedback, product reviews, or otherwise correspond with us online.
• Usage information, such as information about how you use the Services and interact with us, including information you provide when you use any interactive features of the Services.
• Marketing information, such as your preferences for receiving communications about our activities, events, and publications, and details about how you engage with our communications.
• Payment and transactional information needed to pay your premiums on or through the Site (including name, payment card information, bank account number, billing information) and your purchase history. Payment card information is processed by our payment service provider, Stripe, and we do not have access to payment card numbers. Please see the “Paying bills” section below for additional information.
• Other information that we may collect which is not specifically listed here, but which we will use in accordance with this Privacy Policy or as otherwise disclosed at the time of collection.
Information we obtain from third parties:
Automatic data collection. We and our service providers may automatically log information about you, your computer or mobile device, and your interaction over time with our Services, our communications and other online services, such as:
We use the following tools for automatic data collection:
To operate our Site:
For research and development. To analyze and improve the Site and to develop new products and services, including by studying use of our Site.
Marketing and advertising. We and our advertising partners may collect and use your personal information for marketing and advertising purposes, including:
To comply with law. As we believe necessary or appropriate to comply with applicable laws, lawful requests, and legal process, such as to respond to subpoenas or requests from government authorities.
For compliance, fraud prevention, and safety. To: (a) protect our, your or others’ rights, privacy, safety or property (including by making and defending legal claims); (b) enforce the terms and conditions that govern our services; and (c) protect, investigate and deter against fraudulent, harmful, unauthorized, unethical or illegal activity.
To create anonymous data. To create anonymous data from your personal information and other individuals whose personal information we collect. We make personal information into anonymous data by removing information that makes the data personally identifiable to you. We may use this anonymous data and share it with third parties for our lawful business purposes, including to analyze and improve our services, conduct research, and promote our business.
Affiliates. We may share your personal information with our corporate parent, subsidiaries, and affiliates, for purposes consistent with this Privacy Policy.
Service providers. We may share your personal information with third party companies and individuals that provide services on our behalf or help us operate our services (such as customer support, hosting, analytics, email delivery, marketing, and database management services).
Advertising partners. We may share your personal information with third party advertising companies, including for the interest-based advertising purposes described above.
Insurance carriers. We may share your personal information with insurance carriers in order to obtain quotes to provide to you.
Professional advisors. We may disclose your personal information to professional advisors, such as lawyers, bankers, auditors and insurers, where appropriate in the course of the professional services we obtain from them.
For compliance, fraud prevention and safety. We may share your personal information for the compliance, fraud prevention and safety purposes described above.
Business transfers. We may sell, transfer or otherwise share some or all of our business or assets, including your personal information, in connection with a business transaction (or potential business transaction) such as a corporate divestiture, merger, consolidation, acquisition, reorganization or sale of assets, or in the event of bankruptcy or dissolution. In such a case, we will make reasonable efforts to require the recipient to honor this Privacy Policy.
Access or update your information. If you have used our payment portal or registered for an account with us, you may review and update certain information in your account profile by logging into the payment portal or your account.
Opt out of marketing communications. You may opt out of marketing-related emails by following the opt-out or unsubscribe instructions at the bottom of the email or by contacting us at privacy@crossagency.com. You may continue to receive service-related and other non-marketing emails.
Online tracking opt-out. There are a number of ways to opt out of having your online activity and device data collected through our Sites, which we have summarized below:
Note that because these opt-out mechanisms are specific to the device or browser on which they are exercised, you will need to opt out on every browser and device that you use.
Do Not Track. Some Internet browsers may be configured to send “Do Not Track” signals to the online services that you visit. We currently do not respond to “Do Not Track” or similar signals. To find out more about “Do Not Track,” please visit http://www.allaboutdnt.com.
Paying bills
Payments for insurance policies secured through Cross or our affiliates are handled by Stripe, and the information you provide to Stripe in connection with your payment information and transactions is handled in accordance with Stripe’s Terms of Service and Privacy Policy. Your payment data is stored by Stripe. For more information, please read Stripe’s Services Agreement here and Privacy Statement here.
Please note that any payments made directly to the carriers who write the policies, rather than through Stripe on our Site, are handled in accordance with the carriers’ respective Terms of Service and Privacy Policies. We encourage you to review those policies prior to using their bill pay systems.
Other sites, mobile applications and services
Our Sites may contain links to other websites, mobile applications, and other online services operated by third parties. These links are not an endorsement of, or representation that we are affiliated with, any third party. In addition, our content may be included on web pages or in mobile applications or online services that are not associated with us. We do not control third party websites, mobile applications or online services, and we are not responsible for their actions. Other websites and services follow different rules regarding the collection, use and sharing of your personal information. We encourage you to read the privacy policies of the other websites and mobile applications and online services you use.
Security practices
We use reasonable organizational, technical and administrative measures designed to protect against unauthorized access, misuse, loss, disclosure, alteration and destruction of personal information we maintain. Unfortunately, data transmission over the Internet cannot be guaranteed as completely secure. Therefore, while we strive to protect your personal information, we cannot guarantee the security of personal information.
Our Site is not intended for use by children under 13 years of age. If we learn that we have collected personal information through the Site from a child under 13 without the consent of the child’s parent or guardian as required by law, we will use our best efforts to delete it, consistent with applicable law.
We are required by the California Consumer Privacy Act of 2018 (“CCPA”) to provide this CCPA notice (“CCPA Notice”) to California residents to explain how we collect, use, and share their personal information, and the rights and choices we offer California residents regarding our handling of their personal information.
This CCPA Notice does not apply to the personal information we collect, use, or disclose about:
Please note that the CCPA limits these rights by, for example, prohibiting us from providing certain sensitive information in response to an access request and limiting the circumstances in which we must comply with a deletion request.
Do Not Sell My Personal Information
Although we do not sell personal information, like most websites, we use cookies and other online tracking technologies on our websites. You may limit our use of online tracking technologies as described in the Online Tracking Opt-Out Guide section above.
International users
By using our Site, you understand and acknowledge that your personal information will be transferred from your location to our facilities and servers in the United States.
We reserve the right to modify this Privacy Policy at any time. If we make material changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy and posting it on our Site. We may also provide notification of changes in another way that we believe is reasonably likely to reach you, such as via e-mail (if you have an account where we have your contact information) or another manner through our Site.
Any modifications to this Privacy Policy will be effective upon our posting the policy and/or upon implementation of the new changes on our Site (or as otherwise indicated at the time of posting).
How to contact us
Please direct any questions or comments about this Policy or privacy practices to privacy@crossagency.com. You may also write to us via postal mail at:
Cross Insurance Agency
491 Main Street
P.O. Box 1388
Bangor, ME 04402
Attn: Privacy Officer
A boutique personal insurance agency that focuses exclusively on customized risk management solutions for successful individuals and families. Protecting assets since 1923.