DTSC Website Privacy Policy Statement

The California Department of Toxic Substances Control (DTSC) is committed to protecting the privacy rights of individuals, as enumerated in Article 1 of the California Constitution, the Information Practices Act of 1977, and other state and federal laws.

It is DTSC’s policy to limit the collection and safeguard the privacy of personal information submitted to, collected by, or maintained by the DTSC. DTSC’s information management practices conform to the requirements of the Information Practices Act (Civil Code section 1798 et seq.), the Public Records Act (Government Code section 6250 et seq.), Government Code Sections 11015.5 and 11019.9, and other applicable laws pertaining to information privacy.

DTSC adheres to the following principles in connection with the collection and management of any personal information obtained by DTSC while you are using this website:

DTSC collects personal information on individuals only as allowed by law. Personal information, as defined in the Information Practices Act, includes information that identifies or describes an individual including, name, Social Security number, physical description, home address, home telephone number, education, financial matters, and medical or employment history. DTSC only collects personal information about individuals through DTSC’s Website only if an individual provides such information to DTSC voluntarily through sending e-mail or submitting forms or surveys.

DTSC limits the collection of personal information to what is relevant and necessary to accomplish a lawful purpose of DTSC. For example, DTSC may need to know an individual’s home address, e-mail address, or telephone number, in order to answer the individual’s questions or in order to provide requested assistance.

DTSC does not collect home, business or e-mail addresses, or account information from persons who simply browse the Department’s Internet Website. The information that DTSC automatically collects includes the domain name or Internet Protocol address that relates to the machine used to access DTSC’s Website, the type of browser and operating system used, the date and time when DTSC’s Website is visited, Web pages displayed, and any forms that are uploaded. DTSC collects personal information about individuals through DTSC’s Website only if an individual provides such information to DTSC voluntarily through e-mail, registration forms, or surveys.

DTSC uses session cookies to improve the overall usability of the website. When a consumer visits DTSC’s website, cookies are created to store variables and inputs as the user navigates through the web page to keep track of personal preferences during the user experience. The primary purpose of a cookie is to identify and customize web pages specifically for the user. For example, cookies may be used to greet consumers personally or to remember what a consumer had in a shopping cart from the last time a consumer visited a website. On this website, a temporary cookie may be placed on a consumer’s computer to facilitate the interaction between it and this website. For example, a temporary cookie may be used in connection with fields, forms, applications, etc. available to consumers on this website. The intention of cookies is not to collect or store information about the consumer, but to enhance user experience. Consumers may prevent cookies from being placed on their computer by accessing the consumer’s browser preferences menu and deleting existing cookies. Before taking such steps, please be advised that some websites may not function properly if a consumer chooses to block the placement of cookies on its computer.

DTSC endeavors in each instance to tell people who provide personal information to DTSC the purpose for which the information is collected. DTSC strives to tell persons, who are asked to provide personal information, about the general uses that DTSC will make of that information. DTSC does this at the time of collection. With each request for personal information, DTSC provides information on the authority under which the request is made, the principal uses DTSC intends to make of the information and the possible disclosures DTSC is obligated to make to other government agencies and to the public.

DTSC may share personal information with third-party entities who provide website hosting services to DTSC. DTSC may engage third parties to provide website hosting services to DTSC. In connection with such services, DTSC may share personal information with said third parties only to the extent such information is necessary for the third-party to perform website hosting services to DTSC and only to the extent permitted by law.

DTSC provides an administrative process to people who provide personal information with an opportunity to review that information. DTSC allows individuals who provide personal information to review the information and contest its accuracy or completeness.

DTSC uses Google Analytics to help improve DTSC’s website. DTSC uses Google Analytics to help understand how consumers interact with DTSC’s website in order to improve the website. For more information, you can read Google’s security and privacy policies for Google Analytics. You can choose not to have your data used by Google Analytics by downloading their opt-out browser add-on.

DTSC uses personal information only for the specified purposes, or purposes consistent with those purposes, unless DTSC obtains the consent of the subject of the information, or unless required or allowed by law or regulation. The Public Records Act exists to ensure that California government is open and that the public has a right to have access to appropriate records and information possessed by many state and local government agencies. At the same time, there are exceptions to the laws that recognize the public’s right to access public records. These exceptions serve various needs, including maintaining the privacy of individuals. In the event of a conflict between this privacy policy and the Public Records Act, the Information Practices Act or other law governing the disclosure of records, the applicable law will control.

DTSC uses information security safeguards. Regarding the personal information of individuals collected or maintained by DTSC, reasonable precautions are taken by DTSC to protect such information against loss, unauthorized access, and illegal use or disclosure. DTSC uses Secure Socket Layer (SSL) encryption software to protect the security of individuals’ personal information during transmission of such information through DTSC’s Website. Such personal information is stored by DTSC in secure locations. DTSC’s staff is trained on procedures for the management of personal information, including limitations on the release of information. Access to personal information is limited to those members of DTSC’s staff whose work requires such access. Confidential information is destroyed according to DTSC’s records retention schedule. DTSC conducts periodic reviews to ensure that proper information management policies and procedures are understood and followed.

In general, DTSC encourages all individuals to use appropriate safeguards to secure their computers and the information on those computers.

DTSC endeavors to notify consumers of material changes to this privacy policy. In the event material changes are made to this privacy policy, DTSC will endeavor to notify consumers of said changes by updating this privacy policy.

DTSC will provide additional explanations of DTSC’s privacy policy, if requested. If any individuals have any further questions about DTSC’s privacy policy, they are encouraged to contact the DTSC Information Privacy Officer at +1 (916) 322-7289.

Effective date: 10/24/2019