Privacy Policy

NORTH AMERICA AND ASIA PRIVACY NOTICE

EFFECTIVE DATE: December 4, 2019

I.          SCOPE

This Privacy Policy applies to all JM employees and third parties except those that are European Union data subjects.    

II.        POLICY STATEMENT

This Privacy Policy applies to information about you that Johns Manville (“JM,” “we,” “our,” “us”) may obtain when you visit www.jm.com and other authorized JM-affiliated websites, each of which provides a link to this Privacy Policy (collectively, the “Sites”). This Privacy Policy describes how we may collect, use, share/transfer and retain information about you; your choices regarding our use of your information; how we safeguard your information; and how you may contact us regarding our privacy practices.

III.       POLICY

Collection of Personal Information

Information You Provide

We may obtain information that you provide directly to us on the Sites, for example when you contact us, provide website feedback, create an account, sign up for notifications regarding news, products and promotions, respond to surveys, submit comments, submit a service or substitution request, or register for classes or trainings. This information may include personal information, which is information that can be used to identify you individually, such as your name, phone number, home address, company name, job title, and email address.

For certain features on the Sites, you may submit the personal information of others. For example, when registering for in-person or on-site classes or trainings, you may provide information related to your emergency contact including their name, phone number, and other contact information. When you submit personal information about others, you represent that you have obtained their consent to provide and disclose their personal information to us.

Information Collected Automatically

In addition to information that you submit to us, we may collect certain information automatically, such as IP addresses, device identifiers, browser characteristics, operating system details, language preferences, referring URLs, length of visits, and pages viewed. We collect this information using various tools and technologies such as cookies and web server logs. A cookie is a piece of data that a website can send to your browser, which may then be stored on your computer as an anonymous tag that identifies your computer, but not you. Many web browsers are set to accept cookies by default, but you may be able to set your browser to notify you before you receive a cookie, or to remove or reject cookies. Please note that if you disable cookies, you may not be able to use certain features of the Sites or other websites and disabling cookies may invalidate opt outs that rely on cookies to function.

The Sites may also use GPS (global positioning systems) software, geo-filtering, and other location-aware technologies that can locate you (sometimes precisely) for purposes such as verifying your location and delivering or restricting content based on your location. Our JM location finder feature may access and use information about your device location (e.g., based on your IP address) to suggest appropriate JM locations. The Sites may request that you turn on location technologies. You may be able to toggle on or off location technologies using your Internet browser (e.g., Google Chrome). If you disable location technologies, you may not be able to use certain features of the Sites.

We may use third-party web analytics services, such as Google Analytics, to help us analyze how visitors use the Sites. To learn more about opting out of data collection through Google Analytics, visit https://tools.google.com/dlpage/gaoptout.

Your web browser may have settings that allow you to transmit a “Do Not Track” signal when you visit various websites or use online services. Like many websites, these Sites are not designed to respond to “Do Not Track” signals received from browsers. To learn more about “Do Not Track” signals, visit http://www.allaboutdnt.com/.

Please note that we or third parties may collect personal information about your online activities over time and across different devices and online properties when you use the Sites.

Use of Personal Information

We may use personal information we collect through the Sites to:

  • Respond to your inquiries and fulfill your requests;
  • Process your registration and identify you as a user;
  • Allow you to participate in surveys;
  • Contact you with information, including transactional or promotional information;
  • Improve the Sites and our marketing or develop new services;
  • Administer and troubleshoot the Sites;
  • Analyze your use of the Sites and personalize and enhance your experience;
  • Comply with applicable laws, regulations, or legal process, as well as industry standards and our company policies;
  • Prevent, investigate, identify, stop, or take any other action with regard to suspected or actual fraudulent or illegal activity, or any activity that violates our policies;
  • As otherwise stated in this Privacy Policy, the Terms or the other privacy policies or terms and conditions; and
  • For any other purpose, in accordance with applicable law.

Sharing and Transfer of Personal Information

We may permit our agents, vendors, consultants, and other service providers to access information obtained through the Sites to carry out work on our behalf. Our service providers use personal information that we disclose to them only for the purpose for which it was disclosed. We may also share and transfer your personal information among JM's group companies. Because we operate as part of a global business, the recipients referred to above may be located outside the jurisdiction in which you are located.

We also may share and transfer your information:

  • If we are required to do so by law, regulation, or legal process (such as in response to a subpoena or court order or similar government request for information);
  • To respond to requests by government agencies, including law enforcement authorities;
  • When we believe disclosure is necessary or appropriate to prevent physical harm or financial loss, or in connection with an investigation of suspected or actual illegal activity;
  • To enforce our policies, or to protect legal rights, property, or safety; and
  • With third parties, to investigate or address possible criminal or fraudulent activity.

In addition, we reserve the right to disclose any information we obtain through the Sites in the event we sell or transfer all or a portion of our business or assets (e.g., further to a merger, reorganization, liquidation, or any other business transaction), including negotiations of such transactions.

Security

We take reasonable measures to protect your information from loss, theft, misuse, unauthorized access, disclosure, alteration, and destruction. Nevertheless, transmission via the Internet and online digital storage are not completely secure and we cannot guarantee the security of your information collected through the Sites.

Retention

In general, we will retain your personal information for the period necessary to fulfill the purposes outlined in this Privacy Policy unless a longer retention period is required or allowed by law. For example, we will keep your information in order to:

  • maintain business records for analysis and/or audit purposes;
  • comply with record retention requirements under the laws;
  • defend or bring any existing or potential legal claims; and/or
  • deal with any queries or complaints you may have.

Linked Websites

The Sites may include links to websites that are owned and/or operated by third parties. This Privacy Policy does not apply to those websites, which may have their own privacy policies or notices that you should review to understand how they may use or disclose your personal information. JM is not responsible for the content or privacy practices of any linked websites that are operated by third parties. For example, the Sites may link to JM’s Careers portal, which is operated and controlled by a third-party service provider. Any personal information you submit through the Careers portal is governed by the third-party service provider’s own privacy policy and terms and conditions.

Social Features

The Sites may include features that are designed to permit interactions that you initiate between the Sites and third-party websites or services, including third-party social networks (collectively, “Social Features”). For example, you may be able to “like” or “share” content from the Sites on other websites or services.

If you use Social Features on the Sites, both JM and the third-party services that operate those Social Features may have access to certain information about you and your use of both the JM and third-party websites. The information we collect in connection with your use of Social Features is subject to this Privacy Policy. The information collected and stored by the third parties remains subject to those third parties’ privacy practices, including whether the third parties continue to share information with us, the types of information shared, and your choices with regard to what is visible to others on those third-party websites or services.

User-Generated Content

The Sites may enable users to submit their own content, such as comments, messages, questions, or other information (“User-Generated Content”). We or others may store, display, reproduce, publish, distribute, or otherwise use User-Generated Content online or offline in any media or format (currently existing or hereafter developed) and may or may not attribute it to you. Others may have access to this User-Generated Content and may have the ability to share it with third parties. If you choose to submit User-Generated Content to any public area of the Sites, your User-Generated Content will be considered “public” and will be accessible by anyone. Please note that we do not control who will have access to the information that you choose to make available to others and cannot ensure that parties who have access to such information will respect your privacy or keep it secure. We are not responsible for the privacy or security of any information that you make publicly available on the Sites or what others do with information you share with them on the Sites. We are not responsible for the accuracy, use, or misuse of any User-Generated Content that you disclose or receive from third parties through the Sites.

Your Choices

Changing your Personal Information

You may make changes to your personal information, including keeping your information accurate, by accessing your account settings or contacting us at privacy@jm.com.

Email Communications

You may make changes regarding receiving email communications from us by exercising options indicated at the bottom of each email communication or contacting us at privacy@jm.com. If you register an email press release account, you may make changes to your email press release and alert options through your account settings. Please note that even if you opt out of receiving promotional communications from us, we may continue to send you non-promotional emails, such as communications regarding our ongoing relationship with you.

Interest-Based Advertising

We may use your personal information to conduct Interest-based Advertising on third-party websites or services. Certain third parties may participate in the Digital Advertising Alliance (“DAA”) AdChoices Program and may display an advertising option icon for interest-based ads that links to an opt-out tool which allows you to exercise certain choices regarding targeting. You can learn more about the DAA AdChoices Program at http://www.youradchoices.com/ and its opt-out program for mobile apps at http://www.aboutads.info/appchoices. In addition, certain advertising networks and exchanges may participate in the Network Advertising Initiative (“NAI”). NAI has developed a tool that allows consumers to opt out of certain interest-based ads delivered by NAI members’ ad networks. To learn more about opting out of such targeted advertising or to use the NAI tool, see http://www.networkadvertising.org/choices/. Please be aware that, even if you are able to opt out of certain kinds of interest-based ads, you will continue to receive non-targeted ads. We are not responsible for the effectiveness of, or compliance with, any third-parties’ opt-out options or programs or the accuracy of their statements regarding their programs.

California Privacy Rights

California law permits customers in California to request certain details about how their personal information is shared with third parties, if the personal information is shared for those third parties’ own direct marketing purposes. We do not share personal information with third parties for those third parties’ own direct marketing purposes. Californians may request information about our compliance with this law by contacting us at privacy@jm.com or by postal mail sent to:

Attn: Chief Privacy Officer

Johns Manville

717 17th Street

Denver, CO 80202

To make a request, please provide sufficient information for us to determine if this applies to you, attest to the fact that you are a California resident, and provide your current California address to which we will send our response. Your inquiry must specify “California Privacy Rights Request” in the subject line of the email or the first line of the letter, and include your name, street address, city, state, and ZIP code. Please note that we are only required to respond to one request per customer each year.

Information for Users Outside the United States

If you are visiting the Sites from outside the United States, please be aware that information we obtain about you will be processed in the United States or in other jurisdictions. By using the Sites, you acknowledge and consent to the international transfer, share and processing of your personal information as described in this Privacy Policy. Please be aware that the data protection laws and regulations that apply to your personal information transferred to the United States or other countries may be different from the laws in your country of residence.

Revisions

This Privacy Policy is subject to change at our discretion. We will indicate changes, including material changes, to the Privacy Policy by updating the “Effective Date” at the top of this page. Your continued use of the Sites after any update to this Privacy Policy will constitute your acceptance of the changes.

Contact information

Please direct comments or questions regarding this Privacy Policy via e-mail to privacy@jm.com.

IV.       EFFECTIVE DATE AND REVISIONS

The effective date of this version of the Policy is December 4, 2019.

This Policy was reviewed on December 4, 2019. 

EU PRIVACY NOTICE 

EFFECTIVE DATE: November 25, 2019

Introduction

Johns Manville (“JM,” “we,” “us,” “our”) is committed to fulfilling our responsibilities under the European Union’s General Data Protection Regulation (“GDPR”) in relation to the collection, retention, use, and other processing of EU personal data.  This Privacy Notice sets forth how we process EU personal data obtained via our websites – including www.jm.com, www.jmroofing.news, www.jmroofing.events, www.jmextramile.com, www.jmtcsafety.com, homeinsulation@jm.com, and www.jminsulationinsider.com (collectively, the “Sites”) – in our role as a data controller (i.e., when we are responsible for determining the purpose and means of the processing).

Personal Data We Collect

Personal data collected via the Sites may include:

  • Contact data.  You may provide us with your contact details, such as your name, phone number, home address, company name, job title, and email address (for example, when you contact us, provide website feedback, or register for classes or trainings (e.g., through Johns Manville Roofing Institute)).
  • Authentication Data.  To verify the identity of registered users we may collect a user name, password, and other similar authentication information (for example, if you register an email press release account we will ask that you provide a username and password).
  • Account Information.  In addition to contact data, when creating an account on one of the Sites you may provide us with additional information about yourself (for example, if you register an email press release account, you may provide us with URLS to your website, blog, Twitter, Facebook, and LinkedIn, and, if you are an accredited member of the news media, a picture of your media badge).
  • Interests and Notification Preferences.  The Sites may provide mechanisms for you to sign up for notifications regarding products and promotions JM believes are of interest to you based on our interests and preferences (for example, through our Submittal Wizard).
  • Business Project Information.  You may submit information related to your business projects, including information on the project’s address (for example, through our Submittal Wizard or when you submit a Services Request).
  • Supplier Application Information.  You may provide information about yourself and your company such as your contact information and your company’s contact information (for example, if you apply to become one of our suppliers through the Supplier Partnership contact form).
  • Job Application Information.  If you apply for a job through our Careers Page we or our vendor may collect personal data such as your name, e-mail address, physical address, phone number, and CV.
  • Device Information.  We may obtain information about devices that access our Sites, including the type of device, its operating system, device settings, unique device identifiers, and error data.
  • Location Information.  The Sites may use GPS (global positioning systems) software, geo-filtering, and other location-aware technologies to locate you (sometimes precisely) (note: you may be able to toggle on or off location technologies using your internet browser (e.g., Google Chrome); if you disable location technologies, you may not be able to use certain features of this Sites).
  • Information About Others.  The Sites may also allow you submit personal data about third parties (for example, when registering for in-person or on-site classes or trainings, you may provide information related to your emergency contact including their name, phone number, and other contact information).  When you submit personal data about third parties, you represent that you have obtained the third party’s consent to disclose their personal data to us.
  • Other Information You Provide.  This includes emails and other communications that you send us or otherwise contribute such as feedback and user support inquiries regarding the Sites (note: please be aware that information you post on public parts of our Sites may be visible to anyone).

 

How and Why We Use Your Personal Data

We may process personal data to:

  • Transact with you, respond to your comments, questions and requests, provide customer service, send you informational notices, and contact you if we need to obtain or provide additional information.
  • Process your Sites registration and identify you as a user.
  • Verify your location and deliver or restrict content based on your location.
  • Facilitate, manage, personalize, and improve our user and partner relationships.
  • Prevent and address fraud, breach of policies or terms, and threats or harm.
  • Ensure the security and integrity of the personal data we process.
  • Comply with applicable legal requirements.

Our processing of such personal data is carried out pursuant to the following legal bases:

  • The processing is necessary for us to provide you with the products and services you request, or to respond to your inquiries.
  • We have a legal obligation to process your personal data, such as to comply with applicable tax and other government regulations or to comply with a court order or binding law enforcement request.
  • To protect your vital interests, or those of others.
  • We have a legitimate interest in carrying out the processing activity.  In particular, we have a legitimate interest in the following cases:
    • To analyze and improve the safety and security of the Sites.  This includes implementing and enhancing security measures and protections and protecting against fraud, spam, and abuse.
    • To maintain and improve the Sites. 
    • To operate the Sites and provide you with certain tailored information and communications to develop and promote our network and opportunities.
  • You have consented to the use of your personal data.  When you consent, you can change your mind at any time.  

If we make a material change to how we process your personal data, we will notify you as appropriate and may also modify this Privacy Notice.

How We May Share Your Personal Data

We may share your personal data:

  • With our affiliates, partner organizations, or suppliers when it is reasonably necessary or desirable, such as to help provide services to you or analyze and improve the Sites.
  • With our staff, agents, vendors, consultants, and other service providers who perform functions on our behalf.  For example, we may use third parties to help us provide customer support, manage our advertisements on other platforms, and send marketing and other communications on our behalf.
  • To abide by applicable law or protect rights and interests.  For example, we may disclose your personal data if we determine that such disclosure is reasonably necessary to comply with the law, protect our or others’ rights, property, or interests, or prevent fraud or abuse. 
  • If we are involved in a reorganization, merger, acquisition, or sale of some or all of our assets.

 

How We Use Tracking Technologies

We may utilize online identification tools—such as cookies, web beacons, pixels or similar tracking technologies—in accordance with applicable law and requirements.  “Cookies” are small text files placed on your device when you visit a website; they store information which is sent back to our servers or those of third parties.  As described in more detail below, we use such technologies to:

  • Recognize new or past users.
  • Store your profile or authentication credentials if you are registered on the Sites.
  • Improve the Sites and to better understand your use of the Sites.
  • Integrate with third-party social media websites.
  • Serve you with interest-based or targeted advertising.
  • Observe your behaviors and browsing activities over time across multiple websites or other platforms.
  • Better understand the interests of our Sites users.

Some cookies are required for certain uses of the Sites.  For example, if you choose to register an account through the Sites, we will use cookies to facilitate your registration and remember your preferences.

Different types of cookies may be used for specific purposes, for example:

  • Functional cookies and cookies from third parties may be used for analysis and marketing purposes.  Functional cookies enable certain parts of the website to work properly, retain user preferences, and allow users to log in using social network user credentials.
  • Analysis cookies may collect information on how visitors use a website, the content and products that website users view most frequently, and the effectiveness of third-party advertising. 
  • Advertising cookies assist in delivering ads to relevant audiences.  This may include, for example, placing ads at the top of search results.

Cookies are either “session” cookies which are deleted when you end your browser session, or “persistent” cookies, which remain until you delete them or the party who served the cookie removes it. 

Through your device or browser settings you may change your settings to disallow certain Sites’ features, disabling certain tracking technologies.  For example, turning off location tracking through your device’s or browser’s settings will disable the Sites’ location tracking technologies.  You can set your browser settings either to receive our cookies or use our Sites without cookie functionality.  To control flash cookies visit this link.  Please note that if you restrict the use of tracking technologies, some functions of the Sites may be unavailable, and we will not be able to present you with personally-tailored content. 

We may link the information collected by tracking technologies with other information we collect from you pursuant to this Privacy Notice.  Similarly, the third parties who serve tracking technologies on our Sites may link personal data we collect from you to other information they collect.  Specifically, we may use Google Analytics.  To opt out of Google Analytics, visit their opt-out mechanism.

For more information on our use of tracking technologies and cookies, contact us at privacy@jm.com.

How We Protect Your Personal Data

We maintain appropriate technical and organizational safeguards designed to help protect personal data from unauthorized disclosure or access and accidental or unlawful destruction, loss, or alteration.  Although we use reasonable efforts to safeguard personal data, we cannot guarantee the security of your information obtained through the Sites.

How Long We Retain Your Personal Data

We will store your personal data for no longer than is necessary for the performance of our obligations or to achieve the purposes for which the information was collected, or as may be permitted under applicable law.  To determine the appropriate retention period, we will consider the amount, nature, and sensitivity of the data; the potential risk of harm from unauthorized use or disclosure of the data; the purposes for which we process the data and whether we can achieve those purposes through other means; and the applicable legal requirements.  Unless otherwise required by applicable law, at the end of the retention period we will remove personal data from our systems and records or take appropriate steps to properly anonymize it.

Links to Third-Party Websites

Some features of the Sites may open your preferred internet browser on your device and allow you to access certain third-party websites.  These websites are governed by their own privacy policies, terms, and cookie policies.  We encourage you to read the policies and terms of websites that the Sites may link to.

Personal Data Transfers

If we transfer your personal data out of the European Economic Area (“EEA”) to countries not deemed by the European Commission to provide an adequate level of personal data protection, the transfer will be based on one of the following safeguards recognized by the European Commission as providing adequate protection for personal data, where required by EU data protection legislation:

  • Contracts approved by the European Commission which impose data protection obligations on the parties to the transfer. 
  • The EU - U.S. Privacy Shield Framework (for transfers to third parties in the United States that have self-certified to the Framework).

For further information on the mechanism(s) used to transfer your personal data, please contact us at privacy@jm.com.

Your Rights and Choices

The GDPR provides EU data subjects with certain rights regarding their personal data.  Subject to certain conditions, you may ask us to take the following actions in relation to your personal data that we hold:

  • Provide you with information about our processing of your personal data and give you access to your personal data.
  • Update or correct inaccuracies in your personal data.
  • Delete your personal data.
  • Transfer a machine-readable copy of your personal data to you or a third party of your choice.
  • Restrict the processing of your personal data.
  • Object to our processing of your personal data for direct marketing purposes.
  • Object to reliance on our legitimate interests as the basis for processing of your personal data.

You may exercise some of these rights and choices through Sites’ features such as editing your account settings when you are logged in.  Additionally, you can submit these requests by email to privacy@jm.com or our postal address provided below.  We may request specific information from you to help us confirm your identity prior to processing your request.  Applicable law may require or permit us to decline your request.  If we decline your request, we will tell you why, subject to legal restrictions. 

If you would like to submit a complaint about our use of your personal data or our response to your requests regarding your personal data, you may contact us at privacy@jm.com or submit a complaint to the data protection regulator in your jurisdiction.  You can find information about your data protection regulator here.

How to Contact Us

To make a query, raise a concern, or exercise your data protection rights, please contact us at privacy@jm.com.  

The data controller for your personal data is Johns Manville, which you may contact by via email at privacy@jm.com or at the following address:

Johns Manville

717 17th Street, 12th floor

Denver, CO 80202

Attn: Data Privacy