Employee Privacy
California Employee Privacy Policy & Notice at Collection
The California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) (the CCPA and CPRA are referred to herein as “California Law”) grants California residents some rights over how Cardinal Financial manages your personal information. The purpose of this California Employee Privacy Policy is to provide California residents who are applying for a job with or employed by Cardinal Financial with information about why and how we collect and use your personal information and also serves as our “notice at collection” under California Law. Please be aware the following applies solely to California residents.
The chart below details the categories of information we collect and the business purpose(s) for which we use the information. We generally collect the information directly from you, but we may, in accordance with applicable law, collect additional information from outside sources, such as credit bureaus and governmental entities. We may share your personal information, on a confidential basis, with outside companies, but we DO NOT sell your personal information or allow these outside companies (with whom we have shared your information) to utilize the information for any reason other than to complete the business purpose for which the information was shared.
Category | Examples | Business Purpose(s) |
---|---|---|
Identifiers | name, alias, date of birth, government identifiers, social security number | employment authorization verification, determining benefits, adhering to legal requirements, maintaining the security of our systems and data, conducting investigations, and day-to-day business operations |
Contact information | mailing address, email address, emergency contact | hiring decisions, determining compensation and benefits, adhering to legal requirements, maintaining the security of our systems and data, conducting investigations, and day-to-day business operations |
Employment information | work history, references, performance and disciplinary records, criminal records, academic and training records | hiring decisions, determining compensation and benefits, training, conducting performance reviews, adhering to legal requirements, maintaining the security of our systems and data, conducting investigations, and day-to-day business operations |
Benefits information | spouse and dependent information, accommodation information, health information, leave and vacation information | determining compensation and benefits, adhering to legal requirements, maintaining the security of our systems and data, conducting investigations, and day-to-day business operations |
Systems information | log-in information, internal communications, recordings, browsing history, IP addresses | adhering to legal requirements, maintaining the security of our systems and data, conducting investigations, and day-to-day business operations |
Financial information | pay history, payroll information, withholdings, expenses, banking details | determining compensation and benefits, conducting performance reviews, adhering to legal requirements, maintaining the security of our systems and data, conducting investigations, and day-to-day business operations |
Demographic information | Date of birth, gender, race/ethnicity, veteran status | determining benefits and adhering to legal requirements |
Other information you share with us | feedback surveys, hobbies, t-shirt size | day-to-day business operations |
In some cases and upon proper request, you may be entitled to a report detailing the categories of personal information we have collected and shared about you (“Right to Know”), to have Cardinal Financial correct your personal information (“Right to Correct”), and/or to deletion of your personal information (“Right to Delete”).
In order to exercise any Right to Know, Correct or Delete you may have, you will need to submit a request to our Human Resources Department by calling 704-994-8018 or sending an email to [email protected]. Cardinal Financial will attempt to respond to a verifiable request within 45 days of receipt. If we require more time (up to 90 days) we will inform you in writing of the reason for requiring more time and the additional time required to respond.