Privacy Policy


INTRODUCTION

Kentucky Employers’ Mutual Insurance (“KEMI”) is committed to protecting the privacy of personally identifiable information (“Personal Information” or “PII”) collected about you and other visitors (collectively, “Users”) while you use websites, access portals, and software programs operated by KEMI (collectively, the “Service”). Read this Privacy Policy (“Policy”) in its entirety so that you will understand all of the practices and procedures that relate to your online privacy. This Policy outlines the PII that KEMI may collect and how we will use that information. 

By your use of the Service, you signify your assent to this Policy. If you do not assent to this Policy, you are not permitted to use the Service. By your use of the Service following posted changes to this Policy, you signify your assent to those changes.

This Policy applies to the Service, which includes our website, https://www.kemi.com/, and its subdomains, our KEMI access portals, and all of the websites and internet properties owned or operated by us, regardless of the medium by which the Service is accessed by Users (e.g., via a web or mobile browser).

WHAT INFORMATION WE COLLECT

We are the sole owner of information collected through the Service. We collect several types of information from and about Users of the Service, including:

Personal Information: We may collect PII from you when you complete forms, navigate web pages, use the KEMI access portals, and in connection with other activities, services, features, or resources we make available through the Service. PII means any information that is linked or reasonably linkable to an identified or identifiable natural person. PII does not include publicly available information from government records, deidentified or aggregate information, or information excluded from the scope of applicable laws.

The types of PII we may collect, use, store, and disclose include the following categories of information:

CategoryType of Information
Contact Information and IdentifiersFirst Name, Last Name, Age, Gender, Email, Phone Number, IP Address, Postal Address, Social Security Number, Federal Tax Identification Number, Policy Number
Financial InformationCredit/Debit Card Number, Expiration Date, Security Code, Payment History, Underwriting, Audit, and Claim Documents
Internet Browser Information and ActivitiesBrowsing History, Referring and Exit Pages, Browser Information and Language, Search History, Operating System, Device Type, Mobile Device Identifiers, Interactions with the Service, including the KEMI access portals
Geolocation DataGeolocation, Beacon Based Location, GPS location
You may disable our use of certain internet identifiers and activities through your device or browser settings.

Deidentified Information: We may collect (i) deidentified information and (ii) aggregate information which may not by itself reasonably identify you as the source when you navigate the Service (“Deidentified Information”). Deidentified Information may include: (i) device type, (ii) device operating system, (iii) internet browser type, (iv) internet service provider, (v) referring/exit pages, (vi) date/time stamp, and (vii) clickstream information. We will take reasonable measures to ensure that Deidentified Information we collect is not personally identifiable and may not later be easily used to identify you as required by applicable law.

HOW WE COLLECT INFORMATION

The information we collect depends on what Users do when they visit or utilize the Service. We collect PII and Deidentified Information in various ways, including:

Directly from You: We collect PII when you voluntarily submit PII to us while completing forms on the Service and in connection with other activities, services, features, or resources we make available on the Service. The PII we collect depends on what you do when you visit or utilize the Service or how you choose to communicate with us.

Through Your Use of the Service: We may collect PII and Deidentified Information that your browser transmits when you use the Service. We may also collect Deidentified Information about how you access and interact with the Service through the use of automated tracking technologies, such as session cookies, persistent cookies, and web beacons.

A cookie is a small data file that is transferred to an internet browser, which enables the Service to remember and customize your subsequent visits. We may use session cookies to make it easier for you to navigate the Service. Session cookies expire when you close your browser. We may also use persistent cookies to track and target your interests to enhance your experience on the Service. Persistent cookies remain on your device for an extended period of time. 

Most internet browsers automatically accept cookies. However, you can instruct your internet browser to block cookies or to provide you with a warning prompt before you accept cookies from the Service. Please refer to your internet browser’s instructions to learn more about these functions. If you reject cookies, the functionality of the Service may be limited and you may not be able to participate in several of the Service’s features. Additionally, we may use web beacons, which are single-pixel, electronic images embedded in the Service that allow us to gather information about your browsing activities on the Service.

From Data Analytics Providers: We may collect PII and Deidentified Information about you from our data analytics service providers, such as Google Analytics, to help us measure traffic and usage trends for the Services and to understand more about the demographics and behaviors of our Users. To learn more about Google’s privacy practices, click here. To access and use the Google Analytics Opt-out Browser Add-on, click here.

From Third Party Service Providers: We may collect PII about you from other third parties whose privacy practices may differ from the practices described in this Policy. For example, service providers working on our behalf may collect PII from you to assist us in completing a transaction or handling a claim. We do not make any representations or warranties concerning, and will not in any way be liable for, any informational content, products, services, software, or other materials available through third parties. Your use of third parties’ services and/or third party websites is governed by and subject to the terms and conditions of those third parties and/or third party websites. We encourage you to carefully review the privacy policies and statements of such third parties and/or third party websites.

HOW WE DISCLOSE INFORMATION

We DO NOT sell, lease or otherwise share any PII or Deidentified Information about Users with or to any third-party companies or individuals; provided, however, that we may disclose Users’ PII and Deidentified Information to third parties for a business purpose as described below:

To Our Affiliates: We may disclose your PII and Deidentified Information to Affiliates (including companies within the KEMI group) and Service Providers, as applicable, as permitted by law.

To Service Providers: We may disclose your PII and Deidentified Information to third party service providers that assist us in completing transactions, handling claims, servicing policies, providing user support, communicating with Users, promoting our services, or otherwise providing support to us relating to the operation of the Service. For example, KEMI may use third-party tools to improve the browser experience of users of the Service. The use of this tool may involve disclosure of users’ PII or Deidentified Information. We do not disclose PII to third party service providers for their own marketing purposes.

Law Enforcement, Safety, and Legal Processes:  We may disclose your PII and Deidentified Information to law enforcement or other government officials if it relates to a criminal investigation or alleged criminal activity.  We may also disclose your PII and Deidentified Information: (i) if required or permitted to do so by law; (ii) for fraud protection and credit risk reduction purposes; (iii) in the good-faith belief that such action is necessary to protect our rights, interests, or property; (iv) in the good-faith belief that such action is necessary to protect your safety or the safety of others; or (v) to comply with a judicial proceeding, court order, subpoena, or other similar legal or administrative process.

Sale or Acquisition of Assets:  If we become involved in a transaction involving the sale of our assets, such as a merger or acquisition, or if we are transferred to another company, we may disclose and/or transfer your PII and Deidentified Information as part of the transaction. If the surviving entity in that transaction is not us, the surviving company may use your PII and Deidentified Information pursuant to its own privacy policies, and those policies may be different from this Policy.

HOW WE USE INFORMATION

We may use Users’ PII for lawful business purposes to help enhance Users’ experience. These purposes include:

Providing the Service: We may use your PII to provide you with our products or services, maintain your account, service or change your policy, handle or process a claim, or complete a transaction.

Direct Marketing: We may use your PII to send you promotional materials. You have the right to opt-out of receiving direct marketing.

Customer Service and User Communications: We may use your PII to help us respond to your inquiries, questions, requests, and support needs more efficiently.

User Experience Personalization:  We may use your information to personalize the Service to your interests and preferences. We may also use Users’ PII and/or Deidentified Information in the aggregate to analyze Users’ browsing and usage activities and patterns in order to understand Users’ interests and preferences with respect to the Service and our services.  This will help us optimize your experience in the Service.

Business Optimization:  We may use your PII and/or Deidentified Information to improve the content on our web pages, to customize the content and layout of our web pages, and in managing our everyday business needs. We may also use your feedback to improve the Service and our services. All of this is done with the intention of making the Service more useful for you.

Safety and Security: We may use your PII and/or Deidentified Information to promote the safety and security of the Service, our users, and other parties. For example, we may use the information to authenticate users, facilitate secure payments, protect against fraud and abuse, respond to a legal request or claim, conduct audits, and enforce our terms and policies.

We will not collect additional categories of PII or use PII we collected for materially different, unrelated, or incompatible purposes without providing you notice.

CONTROL YOUR PERSONAL INFORMATION

To view and change the PII that we have about you, contact us directly by sending an email to communications@kemi.com.

In addition, if you do not wish for us to share your PII with any third parties working on our behalf to serve our customers, please let us know by sending your request to communications@kemi.com. Please note that exercising these opt-out rights may limit your ability to receive the full range of our products and services.

Further, if you do not wish to receive promotional emails from us, please let us know by using the opt-out response device that can be found at the bottom of every email we deliver or by emailing us at communications@kemi.com. Please be aware that although you may opt-out of promotional emails, we reserve the right to email you administrative notices regarding the Service, as permitted under the CAN-SPAM Act.

We reserve the right to ask for information verifying your identity prior to disclosing any information to you.  Should we ask for verification, the information you provide to verify your identify will be used only for that purpose, and all copies of this information in our possession will be destroyed when the process is complete.

We will make commercially reasonable efforts to respond to opt-out requests, account cancellation requests (if applicable), and handle requests to access, update, change, delete, or otherwise control your PII as quickly as possible.

CONFIDENTIALITY AND SECURITY

KEMI will use commercially reasonable efforts to ensure that no unauthorized parties have access to any of your PII. We restrict access to Users’ PII to those individuals and entities who need to know that information in order to provide products or services to you. We will use commercially reasonable efforts to train and oversee employees and those acting on behalf of KEMI to ensure that your PII will be handled responsibly and in accordance with this Policy. We currently maintain physical, electronic and procedural safeguards to guard your PII.

Communications with the Service, including the KEMI access portals, containing confidential information require that a “secure session” be established. Such communication between KEMI and its authorized users is encoded using Secure Sockets Layer (SSL) technology utilizing a minimum of 128-bit encryption. All information entered into KEMI’s online e-business applications database is stored in a secure location on KEMI’s internal network and KEMI takes commercially reasonable precautions to prevent access by anyone not authorized.

Please be aware that while we attempt to protect your PII, we cannot guarantee or warrant that your PII will be completely secure (i) from misappropriation by hackers or from other nefarious or criminal activities, or (ii) in the event of a failure of computer hardware, software, or a telecommunications networks.

CHILDREN’S PRIVACY

We believe that protecting the privacy of children is very important. The Service is not designed to attract individuals under the age of 18. In accordance with the Children’s Online Privacy Protection Act (COPPA), we do not collect or store any personal information, even in aggregate, about children under the age of 18. If we discover we have received any information from a child under the age of 18 in violation of this Policy, we will delete that information immediately. If you believe that KEMI has any information from or about anyone under the age of 18, please contact us at the Contact Information specified below.

CALIFORNIA PRIVACY RIGHTS

California’s “Shine the Light” law permits Users of the Service that are California residents to request certain information regarding our disclosure of PII to third parties for their direct marketing purposes. To make such a request, please contact us at the Contact Information provided below.

DATA RETENTION

We will retain Users’ PII while they maintain an account with us or to the extent necessary to provide the Service. Thereafter, we will keep personal information for as long as necessary: (i) to respond to any queries from users; (ii) to demonstrate we treated users fairly; (iii) for ordinary business continuity procedures; or (iv) to comply with any applicable laws. We delete PII within a reasonable period after we no longer need the information for the purposes set out in this Policy.

LINKED SITES

The Service may contain links to various other websites or applications (“Linked Sites”). KEMI assumes no responsibility for the content or practices of Linked Sites accessed through the Service, and the existence of such Linked Sites should not suggest or imply any affiliation or endorsement by KEMI of the Linked Sites. KEMI is not responsible for the privacy practices of the Linked Sites. This Policy applies solely to information collected through the Service. We encourage you to be aware of when you leave the Service and read the privacy policies of Linked Sites.

DO NOT TRACK DISCLOSURES

Some web browsers may transmit “do-not-track” signals to websites with which the browser communicates. The Service does not honor these “do-not-track” signals.

SPAM

We do not participate in bulk email solicitations that you have not consented to receive (i.e., “Spam”). We do not sell or disclose user lists or email address lists to unrelated third parties. Except as otherwise provided herein, we do not share PII with any third-party advertisers.

REVISIONS TO THIS POLICY

KEMI reserves the right to update this Policy from time-to-time in our sole discretion. If our privacy practices change materially in the future, we will post an updated version of the privacy policy to the Service. It is your responsibility to review this Policy for any changes each time you use the Service. We will not lessen your rights under this Policy without your explicit consent. If you do not agree with the changes made, we will honor any opt-out requests made after the Effective Date of a new privacy policy.

CONTACT INFORMATION

The Service is operated by KEMI, which may be contacted by e-mail at customerservice@kemi.com or by regular mail at 250 West Main Street, Suite 900, Lexington, KY 40507.

Questions about this Policy should be directed to KEMI at legalnotices@kemi.com. Questions about our products or services should not be directed to this address and will not be replied to.

Please use this Contact Information only for legal and privacy matters. For all other inquiries, refer to the Contact Us section of our home page.

EFFECTIVE DATE

This Policy was last modified as of January 1, 2024. This version of the privacy policy replaces and supersedes any prior privacy policies applicable to the Service.

Unless otherwise indicated, all material on this website © 1997-2022 Kentucky Employers’ Mutual Insurance.

All rights reserved.