Who We Are
TOCICO 5665 Southwestern Blvd #37C
Hamburg, New York 14075 United States
Phone: +1 (716) 440-9186
Email: admin@tocico.org
TOCICO is a 501(c)(3) nonprofit corporation incorporated in the State of Washington, USA.
TOCICO acts as the data controller for personal information collected through its websites, learning platforms, and related services.
What This Policy Covers
What This Policy Covers
This policy applies to users of our website https://www.tocico.org and our learning platform who:
-
Join TOCICO as members
-
Register for events, certifications, or webinars
-
Purchase content
-
Interact with us via forms or email
This policy also applies to individuals who interact with our website, learning platforms, or services, including visitors whose technical information may be collected through cookies, analytics tools, or security technologies.
Information We Collect
We collect personal information from members and event participants including:
-
Name
-
Job title
-
Organization
-
Email address
-
Phone number
-
Mailing address
-
Certification history and membership status
-
Course progress and completion data
-
Payment information (processed securely through third-party processors)
We may also collect technical information such as IP address, browser type, device information, and usage data when you interact with our website or learning platform.
Children’s Privacy We do not knowingly collect data from children under 13. Users must confirm they are 13 or older during registration. If we learn we have collected information from a child under 13, we will promptly delete it.
How We Use Your Information
We process your information for the following purposes:
Contract Performance
-
Provide access to member content and resources
-
Register users for webinars, events, and certification exams
-
Process payments and deliver purchased content
-
Maintain certification records and membership status
Legitimate Interests
-
Send membership renewal reminders and service notifications
-
Improve website performance and member services
-
Ensure platform security and prevent fraud • Respond to support inquiries
Consent
-
Send newsletters and TOC community updates
-
Send promotional emails about conferences and events
-
Announce new courses or educational content
These legal bases are used in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR) where applicable.
Cookies and Tracking Technologies
We use cookies and similar technologies to improve functionality and site performance.
A cookie consent tool allows you to manage preferences when you first visit our site and anytime thereafter.
Types of cookies may include:
Essential Cookies
Required for basic site functionality and login sessions.
Analytics Cookies
Used to understand how users interact with the website.
Security Cookies
Used to detect and prevent automated access or fraudulent activity.
You can also manage cookies through your browser settings.
Third-Party Services
TOCICO uses third-party service providers to deliver certain services such as course hosting, payment processing, email communications, analytics, and certification services.
Examples include:
-
Thinkific – learning platform and course hosting
-
Stripe and Authorize.net – payment processing
-
Email marketing platforms – member communications
-
Analytics services – website usage insights
-
Certification delivery partners
These providers may process personal information according to their own privacy policies and contractual agreements with TOCICO.
TOCICO is not responsible for the independent privacy practices or security controls of third-party service providers.
Data Storage and Security
Your information is stored using secure systems operated by TOCICO and our service providers.
TOCICO implements reasonable administrative, technical, and organizational measures designed to safeguard personal information.
These safeguards may include:
-
Encrypted connections (HTTPS/SSL)
-
Secure hosting environments
-
Role-based access controls
-
Monitoring and security technologies provided by trusted vendors
While TOCICO takes reasonable measures to protect personal information, no method of transmission over the internet or electronic storage is completely secure. TOCICO cannot guarantee absolute security.
Data Breach Response
In the unlikely event of a data breach affecting personal information, TOCICO will notify affected individuals and relevant authorities when required by applicable law.
Data Retention
TOCICO retains personal information only as long as necessary to fulfill the purposes described in this policy, comply with legal obligations, resolve disputes, and maintain certification or membership records where appropriate.
Typical retention periods may include:
Member account data – while the account remains active Certification records – retained for verification purposes Payment and transaction records – up to 7 years for tax and legal compliance Communication records – retained as needed for support and operational purposes
Users may request deletion of their account subject to legal or operational retention requirements
Your Rights
You have the right to:
-
Access personal data held about you
-
Correct inaccurate or incomplete information
-
Request deletion of your personal data (subject to retention obligations)
-
Request export of your data in a portable format
-
Object to certain data processing activities
-
Opt out of marketing communications
To exercise these rights:
-
Update account information in your member portal
-
Use the unsubscribe link in marketing emails
-
Contact admin@tocico.org
TOCICO will respond to valid requests within the timeframes required by applicable law.
International Privacy Rights
European Economic Area (EEA)
Under the General Data Protection Regulation (GDPR), individuals may have additional rights including the right to lodge a complaint with a data protection authority and withdraw consent for certain data processing activities.
When transferring personal data from the EEA to the United States, TOCICO uses appropriate safeguards such as contractual agreements with service providers and security measures designed to protect personal information.
California Residents
TOCICO does not sell personal information. Where applicable, California residents may request information about personal data collected and request deletion subject to legal exceptions.
Email Communications
TOCICO sends two categories of email:
Marketing Emails
-
Newsletters and community updates
-
Conference and event announcements
-
Course and educational content updates
Transactional Emails
-
Membership renewals
-
Certification exam notifications
-
Webinar confirmations
-
Account and password notifications
-
Payment receipts and invoices
You may unsubscribe from marketing emails at any time using the unsubscribe link or your account settings.
Changes to This Policy
TOCICO may update this Privacy Policy from time to time to reflect changes in operational practices or legal requirements.
Updates will be posted at: www.tocico.org/privacy
The “Last Updated” date will reflect the most recent revision.
Contact Information
If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact:
Jennifer Eckman
General Manager
TOCICO
5665 Southwestern Blvd #37C
Hamburg, NY 14075
Phone: +1 (716) 440-9186
Email: admin@tocico.org
For privacy-specific inquiries:
This privacy policy is provided in English. In the event of any conflict between translated versions and the English version, the English version shall prevail.