Lemos&Crane takes the privacy of its registered users and subscribers seriously. This privacy statement demonstrates our firm commitment to privacy and data protection practices. The following discloses our information gathering and dissemination practices for this web site.
- Information use
Information provided by our users and subscribers via registration enables us to:
The user can opt-out of future mailings and the option to unsubscribe from the service is included in emails.
- Process, validate and verify subscriptions
- Generally collate aggregate site traffic information
- Send the user information and contact the user when necessary
- Send email notifications of new site features, news, topic updates etc.
- Display user's name, job title and organisation only to other registered users of the site
We do not rent, sell, share or trade any of our users personal details on our email lists to any outside organisations. We reserve the right to contact any user at any time regarding subscription renewals or other subscription-related queries.
- Cookies only contain as much information as was disclosed to the site that sent it.
- Cookies do not take information from your hard drive, delete files or contain viruses
- Cookies are small files (100s of bytes) and do not pose a disk space problem
- The information in each cookie cannot be readily decoded or used in any other way.
- Log files
We use log files to analyse trends, monitor user's visits and gather broad demographic information for aggregate use.
This site contains links to other sites. Lemos&Crane is not responsible for the privacy practices of other sites. This privacy statement applies soley to information collected by this web site.
- Discussion Forum
This site makes a discussion forum available to its users and subscribers. Please remember that any information that is disclosed in these areas becomes public information and you should exercise caution when deciding to disclose any personal information.
- Surveys and feedback requests
From time to time our site requests information from users via surveys or similar. Participation in these is completely voluntary and the user therefore has a choice whether or not to disclose any information requested.
The site has security measures in place to protect the loss, misuse and alteration of the information under our control. In addition to this we have security measures in place to protect our customer database and access to this is restricted internally.
Contact Us if you have any questions about this privacy statement, the practices on this site, or your dealings with this web site.
Information security procedures
The personal data held by Lemos&Crane consists of name, email address, job title, organisation name and address details obtained when a user signs up to a Lemos&Crane website. A user chosen password is stored as a hash to ensure that, should a breach occur, the plain text password is unavailable.
Public access to the sites is controlled by an email/password combination, with only the name, job title and organisation name available to other website users. Private access to this data is through a password protected online customer relationship management system (CRM) that can only be accessed by staff through an encrypted Secure Sockets Layer connection with access further limited to a small range of IP addresses.
This data is primarily stored on a web server hosted with a 3rd party. This managed server is kept up to date with security patches and is located in a physically secure data centre. This data centre is physically secure with safety locks and is continually monitored by 150+ permanently recording video cameras to ensure that only authorised personnel can enter. Direct Internet access to this server is available only though a secure shell by the Web Administrator.
Backups of this data are taken every day and copied to a file server situated at the Lemos&Crane office in a physically secure sever room. Backups of the file server are also made daily and are stored off site on a daily rotating basis. Should data need to be restored to the web server or a new web server this can be carried out directly from either of the two backups.
Logs are kept of all access to the websites and CRM by means of server logs that keep a record of IP address, access time and page accessed. Should a breach occur this information would enable details of the breach to be investigated.