Keeping it Private (Privacy Policy)

Allied Steel Fabricators believes strongly in protecting our customers in every way possible. We are customers too, and we all worry about what happens to our information when we make purchases!! Please read this policy before using or submitting information to this site. This policy is designed to inform you of our store practices and the use and disclosure of customer information.

By using this site, you agree to all terms of this privacy policy. By submitting information via this site, you are consenting to the collection, use, and disclosure of information in accordance with this privacy policy, the terms and conditions of this site including limitations on damages and application of the law of the State of Nevada, and any provisions that may be presented at the time information is collected.

Like most websites we collect information from our customers whether through online order processes, or through normal business communications such as via email, customer feedback, etc. The information collected may be personally identifiable information such as name, address, email address, phone numbers, etc. We ALWAYS use this information responsibly and in accordance with PCI security standards.

Some areas of our site require you to submit information such as during order processing, signing up for our newsletter subscriptions, and to participate in other promotional services. You are always informed at each collection point, as to what information is required and what information is optional to include. If you ever wish to modify your email subscriptions, there is a opt-out link at the bottom of our newsletters.

Like most websites, during navigation or through promotional email, certain information may be collected without you actively providing it. This can be done through the use of "Cookies", small data files transferred to your computer when you allow your browser to accept cookies. Cookies allow your browser to be recognized each time you visit a particular site and make use easier by saving passwords, purchases, and settings. This tracking allows us to determine which products and services are most popular, so we can create updates and improvements to better serve our customers. You can always choose to disable cookies by turning them off in your browser.

We may collect IP addresses and/or automatic information for system administration purposes. An IP address is an identification number automatically assigned to your computer when you access the internet, we identify your computer by it's IP address. For example, when you request pages from our site our computers log your IP address. When you request pages from our site automatic information is collected including the page browsed, the time, the source of a request, the type of browser requesting the page, the previous viewed page, ect. This analytic data allows us to determine how visitor's arrive to our site, what our most popular content is, and what customers are interested in particular types of content, and the such.

Except where otherwise stated, Allied Steel Fabricators may use the information you provide to improve the quality of our site's content, to communicate information to you if requested, to customize your display according to your preferences, for marketing and research purposes, to complete orders, and for purposes specified in this policy. If personal information is provided we may combine it with other actively collected information and/or passively collected information, unless otherwise specified at the point of collection.

We only disclose personally identifiable information to 3rd parties we use to support our business. Such as credit card fulfillment services, technical support, delivery services, chat providers, email/newsletter service providers, forum service providers, management services, and financial institutions. Information is only released on a need to know basis and all of our service providers must also follow all PCI Security Compliance requirements.

We may also release any information that we believe to be appropriate to comply with the law, enforce our site policies, and to protect others' as well as our own safety, rights, and property.

We never sell, trade, or release any customer information to outside parties. ("outside parties" does not include Allied Steel Fabricators, our website hosting providers, and other 3rd parties that we use to support our business.)

We have included "Links" on our site to other sites we think you may find interesting or relevant to our business. While we always screen a site before we add a link, we take no responsibility for other sites policies or practices. You should always consult that site's privacy policy before providing them any personal information.

We take all reasonable measures to ensure your personally identifiable information is protected during all transmissions and to protect that information against loss, abuse, disclosure, unauthorized access, alteration, or destruction in accordance with this policy, our terms of use, and all PCI Security regulations. However, no internet communication is ever 100% secure or error-proof. Please do not send identifiable information via email, as email is one of the most un-secure methods of transmission!! Always keep your passwords, usernames, and any ID numbers in a safe place, and it is recommended to change all passwords frequently.

We follow all PCI Security Compliance requirements for enhancing payment account data security. PCI DSS is a security standard that sets requirements for security management, policies, procedures, network setup, software design, and other protective measures. The PCI Security Council was founded in 2006 by American Express, Discover Financial Services, JCB International, Mastercard Worldwide, and Visa Inc. They wanted to create consistent data security measures around the world and they continually update or modify their requirements in order to address any new payment security risks.

The measures Allied Steel Fabricators takes in order to protect our customers and comply with all requirements include, but is not limited to:

  1. We have built and maintain a secure network.
  2. We have firewalls installed and up to date on all computers in our network.
  3. We regularly test all security systems and processes.
  4. We use unique passwords on all of our systems and never use vendor-supplied defaults for passwords or other security parameters.
  5. All users use 10+ digit passwords that use a mixture of upper/lower cases and numbers, passwords are changed weekly.
  6. We protect all Cardholder data.
  7. We protect any stored customer data.
  8. We use SSL 128-bit encryption during all data transmissions across open, public networks.
  9. We maintain a vulnerability management program.
  10. We develop and maintain secure systems and applications.
  11. We implement strong access control procedures.
  12. We maintain strong information security polices for our employees and contractors.
  13. Access to Cardholder information is restricted to need to know.
  14. Each person who has computer access is assigned a unique ID and their access is restricted to need to know information only.
  15. We restrict physical access to Cardholder information.
  16. We never transmit Cardholder account numbers to Cardholders for transactions.
  17. We never store or retain Card Validation Codes
  18. We do not store or retain Magnetic Strip data, Pin data, or AVS data. Only Cardholder account number, Cardholder name, and Cardholder expiration date can be retained after transaction authorization.
  19. We destroy all media containing obsolete transaction data that contains Cardholder information.
  20. We keep all systems and media that contains Card account, Cardholder, or transaction information (either physical or electronic) secure so as to prevent access by, or disclosure to any unauthorized party.
  21. For internet transactions copies of the transaction records may be delivered in either electronic or paper format.
  22. All external connections to our network (such as: employee remote access, third party payment processing, and maintenance) all follow the PCI Security Compliance Standards.
  23. All connections to and from the authorization and settlement environment must also follow PCI Security Compliance Standards (such as: connections for employee access or for devices such as firewalls, and routers) and data repository outside of the authorization and settlement environment.
  24. Allied Steel Fabricators regularly checks PCI Security Compliance Practices and industry standards for any updates in policies and compliance standards. We strive to make your shopping as safe as possible and will continue take all security precautions possible.
  25. We reserve the right to modify or change our privacy policy, any modifications or changes will be posted on this page. Changes will only apply to information collected after the date the modification or change was made. This policy was last modified on March 12, 2010.