Background Information Services, Inc. is committed to safeguarding sensitive information and protecting the privacy and identity of the individuals who are screened through our services. BIS understands the concern for security and has taken great measures to protect integrity, availability and confidentiality.
Information Use/Voluntary Submission
In the course of business, Background Information Services, Inc., must collect certain pieces of information to be used in connection with conducting a background check. The information that BIS collects is absolutely necessary to perform a background check. Background checks that BIS performs are completed with the understanding that the consumer has given permission for the check to be conducted and personal information has been provided knowingly and is fully aware of the types of information being sought for their background check.
Personal information may be shared with third parties for the sole purpose of performing these authorized checks. These third parties may include credit bureaus, city,
county, state and federal agencies and third party businesses that BIS partners with to provide our services.
BIS does not provide information submitted to it for any purpose other than conducting the background check at a point in time for which permission has been granted. Additionally, BIS does not utilize the resulting information to build a secondary database to be used in the future or to resell or distribute the information in any form, with the exception of providing results to our contracted client for the intended and authorized purpose.
BIS has taken exceptional steps to ensure that sensitive information remains secure. BIS utilizes an extremely secure environment. Data is stored on Compaq Alpha Servers
with a commercially supported Unix operating system (TRU64DU). Any web-based forms that collect or reflect sensitive information are located on an SSL site that is
password protected, with AES 256-bit session encryption. All passwords are stored encrypted. BIS'
site is located at
Our systems capture the IP address, time, userid and date. Any activity while in the system is recorded and logged. Clients can specify individual IP addresses or a range of IP’s that are allowed access to BIS systems. BIS does log all login sessions.
BIS has an Intrusion Detection System that will flag an account after three invalid attempts and will lock the account out from logging in for a period of time and
some circumstances manual access must be restored by BIS. The system can identify dictionary attempts at username and password logins. Unauthorized users can be blocked from website for activity deemed suspicious.
BIS monitors employee access to information; BIS’ system tracks every computer number that accesses, changes or reports information within our system. Employee access is continually monitored. Physical access to records is restricted. BIS’ building is secure and has security personnel that conduct walk-throughs at regular intervals. Visitors are escorted while on the premises; our offices and mainframe rooms are restricted access areas. Keyed access to physical offices is limited to upper management.
BIS has protocols in place internally for maintaining confidentiality and privacy. BIS has numerous safeguards in place to promote sound practices in securing the sensitive information that we handle.
Safe Harbor Frameworks
BIS complies with the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe
Harbor Framework as set forth by the U.S. Department of Commerce regarding the
collection, use, and retention of personal information from European Union member
countries and Switzerland. BIS has certified that it adheres to the Safe Harbor
Privacy Principles of notice, choice, onward transfer, security, data integrity, access,
and enforcement. To learn more about the Safe Harbor program, and to view BIS'
certification, please visit http://www.export.gov/safeharbor
As Required By Law
BIS may disclose your personal information if required to do so by law or in the good faith belief that such action is necessary to conform to the edicts of the law or comply with legal process.
BIS' website contains links to third party sites. Please be aware that these companies' privacy policies may differ from
BIS. BIS is not responsible for the practices of these sites. BIS' policy relating to privacy pertains to information collected by BIS.
Browser Level Information
BIS Web servers automatically collect information about a site user's IP address, browser type and the URL that you just came from and which URL you next go to by reading this information from the user's browser (information provided by every user's browser). This information is collected in a database and used--in an aggregated, anonymous manner--in our internal analysis of traffic patterns within our Web site.
Most Web site browsers automatically accept cookies, but you can usually change your browser settings to display a warning before accepting a cookie, or to refuse all cookies. However, if you choose to disable the receipt of cookies from our Web site, you may not be able to use certain features of the site.