The California Department of Toxic Substances Control (DTSC) is committed to protecting the privacy rights of individuals, as enumerated in Article 1 of the California Constitution, the Information Practices Act of 1977, and other state and federal laws.
It is DTSC’s policy to limit the collection and safeguard the privacy of personal information submitted to, collected by, or maintained by the DTSC. DTSC’s information management practices conform to the requirements of the Information Practices Act (Civil Code section 1798 et seq.), the Public Records Act (Government Code section 6250 et seq.), Government Code Sections 11015.5 and 11019.9, and other applicable laws pertaining to information privacy.
DTSC adheres to the following principles in connection with the collection and management of any personal information obtained by DTSC while you are using this website:
DTSC collects personal information on individuals only as allowed by law.
DTSC limits the collection of personal information to what is relevant and necessary to accomplish a lawful purpose of DTSC. For example, DTSC may need to know an individual’s home address, e-mail address, or telephone number, in order to answer the individual’s questions or in order to provide requested assistance. Personal information, as defined in the Information Practices Act, includes information that identifies or describes an individual including, name, Social Security number, physical description, home address, home telephone number, education, financial matters, and medical or employment history.
DTSC endeavors in each instance to tell people who provide personal information to DTSC the purpose for which the information is collected. DTSC strives to tell persons, who are asked to provide personal information, about the general uses that DTSC will make of that information. DTSC does this at the time of collection. With each request for personal information, DTSC provides information on the authority under which the request is made, the principal uses DTSC intends to make of the information and the possible disclosures DTSC is obligated to make to other government agencies and to the public.
DTSC provides an administrative process to people who provide personal information with an opportunity to review that information. DTSC allows individuals who provide personal information to review the information and contest its accuracy or completeness.
DTSC uses personal information only for the specified purposes, or purposes consistent with those purposes, unless DTSC obtains the consent of the subject of the information, or unless required or allowed by law or regulation. The Public Records Act exists to ensure that
DTSC uses information security safeguards. Regarding the personal information of individuals collected or maintained by DTSC, reasonable precautions are taken by DTSC to protect such information against loss, unauthorized access, and illegal use or disclosure. DTSC uses Secure Socket Layer (SSL) encryption software to protect the security of individuals’ personal information during transmission of such information through DTSC’s Website. Such personal information is stored by DTSC in secure locations. DTSC’s staff is trained on procedures for the management of personal information, including limitations on the release of information. Access to personal information is limited to those members of DTSC’s staff whose work requires such access. Confidential information is destroyed according to DTSC’s records retention schedule. DTSC conducts periodic reviews to ensure that proper information management policies and procedures are understood and followed.
In general, DTSC encourages all individuals to use appropriate safeguards to secure their computers and the information on those computers.