Legends Bank - Legendary Service. Extraordinary People.

Legends Bank Digital Services Privacy Policy

Effective date: August 1, 2022

Your privacy is important to us. To better protect your privacy, we provide this notice explaining our online information practices and the choices you can make about the way your information is collected and used.

This Digital Services Privacy Policy, in combination with other relevant privacy notices that we may provide to you (e.g., pursuant to financial privacy laws), inform you of the policies and practices regarding collection, use, and disclosure of any personal information that we and our service providers collect from or about users in connection with our website and digital services.

Information Collection and Use

We only collect information about you if we have a reason to do so – for example, to provide services, to communicate with you, or to make our services better. We store personal information for only as long as we have a reason to keep it.

Mobile Banking App Data

We will collect the financial and transaction information necessary to provide you with the services specific to those applications, including account numbers, payment card expiration dates, payment card identification, verification numbers, and transaction and payment history.

Personal Data

Some pages of our website and digital services (such as our Contact Us page, Accessibility page, and other pages) contain online web forms (contact forms) that you may choose to use. To complete these forms, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you (“Personal Data”). Personally identifiable information may include, but is not limited to:

• Email address
• First name and last name
• Street Address (including city, state, and zip code)
• Phone number (including area code)

Collected form data is not made public. Form data is protected and accessed by Legends Bank employees and our Service Providers (please see “Service Providers”). Please note: No contact form on our website or digital services should be considered as a secure method of sending private information to the bank. Do not use a contact form to send sensitive information such as passwords, account numbers, or social security numbers.

Personal Information Collected via Technology

We and our service providers may automatically log information about you, your computer or mobile device, and your interaction over time with our services, our communications, and other online services, such as:

• Device data, such as your computer’s or mobile device’s operating system type and version, manufacturer and model, browser type, screen resolution, RAM and disk size, CPU usage, device type (e.g., phone, tablet), IP address, unique identifiers, language settings, mobile device carrier, radio/network information (e.g., Wi-Fi, LTE, 5G), and general location information such as city, state, or geographic area.
• Online activity data, such as pages or screens you viewed, how long you spent on a page or screen, the website you visited before browsing to the Service, navigation paths between pages or screens, information about your activity on a page or screen, access times, and duration of access.
• Cookies, which are text files that websites store on a visitor’s device to uniquely identify the visitor’s browser or to store information or settings in the browser for the purpose of helping you navigate between pages efficiently, remembering your preferences, enabling functionality, and helping us understand user activity and patterns.
• Local storage technologies, like HTML5 and Flash, that provide cookie-equivalent functionality but can store larger amounts of data, including on your device outside of your browser in connection with specific applications.
• Web beacons, also known as pixel tags or clear GIFs, which are used to demonstrate that a webpage or email was accessed or opened, or that certain content was viewed or clicked.
• Location Information. If you have enabled location services and agree to the collection of your location when prompted, we will collect location data when you use our website or digital services, this includes our Mobile Banking Apps when they are closed or not in use; for example, to provide our fraud detection services. If you do not want us to collect this information, you may decline the collection of your location when prompted or adjust the location services settings on your device.
• We also collect other types of personal information that you provide voluntarily, such as any information requested by us if you contact us via email regarding support for our services.

How We Collect This Data – Tracking & Cookies

We may employ third-party companies and individuals to facilitate our website and digital services not operated by us (“Service Providers”), to perform web-related services, or to assist us in analyzing how our website or digital services are used.

These third parties have access to information only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

Usage Data

Google Analytics and Google Ads use cookies, through which we may collect information on which pages of our website are accessed and used (“Usage Data”).

• Your web browser automatically sends us (and we may retain) information such as the:
  • Internet domain through which you access the Internet (e.g., yourServiceProvider.com if you use a commercial Internet service provider, or yourSchool.edu if you use an Internet account from your school);
  • Internet Protocol address of the computer you are using;
  • Type of browser software and operating system you are using;
  • Date and time you access our site; and
  • The Internet address of the site from which you linked directly to our site.

• We will use this information as aggregate data to help us maintain our site, e.g., to determine the number of visitors to different sections of our site, to ensure the site is working properly, and to help us make our site more accessible and useful.
• We will not use this information to identify individuals, except for site security or law enforcement purposes.
• We will not obtain Personal Data information about you when you visit our site unless you choose to provide such information (please see Personal Data above).

What are Cookies?

Cookies are files with small amounts of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyze our website and services.

Service Providers

We may use third-party Service Providers that help us manage and maintain our website or digital services, and/or provide cookies to monitor and analyze the use of our website or digital services. These may include, but are not limited to:

Google Analytics

Legends Bank uses a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our website. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.

You can opt-out of having made your activity on our website available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (gtag.js, analytics.js) from sharing information with Google Analytics about visit activity.

For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy

Google Ads

Legends Bank may use an online advertising service developed by Google, through which we may pay to display brief advertisements, service offerings, product listings, and video content to web users within the Google ad network. Google Ads uses conversion tracking to help us see when ads lead to conversions from various sources. For example, Google Ads makes it possible to track when a visitor completes an action on our website. This could be clicking a link, or any other valuable action.

Thrive Creative Group

This is the company that helps Legends Bank manage and maintain our website. Thrive Creative Group has access to our website and our Google Analytics and Google Ads data. We require Thrive Creative Group to follow this Digital Services Privacy Policy for the protection of personal information they may have access to. For more information on Thrive Creative Group’s privacy policy, please visit: https://thinkthrive.com/privacy/

Links to Other Sites

Our website and digital services may contain links to other sites that are not operated by us. If you click on a third-party link, you will be directed to that third-party’s site. We strongly advise you to review the privacy policy of every site you visit. This is especially true for any social media platform, including, but not limited to:

• Twitter: https://twitter.com/en/privacy
• Facebook: https://www.facebook.com/policy.php
• LinkedIn: https://www.linkedin.com/legal/privacy-policy
• Google Maps: https://policies.google.com/privacy

We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

How and Why We Use Information

We may use the data we collect for various purposes to:

• Provide and maintain our website and digital services
• Allow you to participate in interactive features of our website and digital services when you choose to do so
• Provide customer care and support
• Provide analysis or valuable information so that we can improve our website and digital services
• Monitor the usage of our website and digital services
• Detect, prevent, and address technical issues

Sharing Information

How We Share Information

We do not sell our users’ private personal information.

Legends Bank may disclose your Personal Data in the good faith belief that such action is necessary to:

• Comply with a legal obligation
• Protect and defend the rights or property of Legends Bank
• Prevent or investigate possible wrongdoing in connection with our website or digital services
• Protect the personal safety of users of our website, digital services, or the public
• Protect against legal liability

We share information about you in the limited circumstances spelled out below and with appropriate safeguards of your privacy:

• Subsidiaries, Employees, and Independent Contractors: We may disclose information about you to our subsidiaries, our employees, and individuals who are our independent contractors that need to know the information in order to help us provide our services or to process the information on our behalf. We require our subsidiaries, employees, and independent contractors to follow this Digital Services Privacy Policy for personal information that we share with them.
• Legal Requests: We may disclose information about you in response to a subpoena, court order, or other governmental request.
• Compliance and Protection: We may use your personal information to prevent, identify, investigate/deter fraudulent, harmful, unauthorized, unethical, or illegal activity, including cyberattacks and identity theft. Also, to audit our internal processes for compliance with legal and contractual requirements and internal policies as well as to enforce the terms and conditions that govern our services.
• Legitimate Use: We may use your personal information to identify you as a legitimate user in our systems such as our Mobile Banking Apps and to provide administration of those services.
• To Protect Rights, Property, and Others: We may disclose information about you when we believe in good faith that disclosure is reasonably necessary to protect the property or rights of us, third parties, or the public at large. For example, if we have a good faith belief that there is an imminent danger of death or serious physical injury, we may disclose information related to the emergency without delay.
• Business Transfers: In connection with any merger, sale of company assets, or acquisition of all or a portion of our business by another company, or in the unlikely event that Legends Bank goes out of business or enters bankruptcy, user information would likely be one of the assets that is transferred or acquired by a third-party. If any of these events were to happen, this Digital Services Privacy Policy would continue to apply to your information and the party receiving your information may continue to use your information, but only consistent with this Digital Services Privacy Policy.
• Aggregated or De-identified Information: We may share information that has been aggregated or reasonably de-identified, so that the information could not reasonably be used to identify you. For instance, we may publish aggregate statistics about the use of our website.

How Long We Keep Information

We generally discard information about you when we no longer need the information for the purposes for which we collect and use it – which are described in the section above on How and Why We Use Information and we are not legally required to continue to keep it. For example, we keep the web server logs for a period of time in order to, among other things, analyze traffic on our website and investigate issues if something goes wrong.

Security

While no online service is 100% secure, we work very hard to protect information about you against unauthorized access, use, alteration, or destruction, and take reasonable measures to do so, such as monitoring our website and digital services for potential vulnerabilities and attacks.

Choices

You have several choices available when it comes to information about you:

• Limit the Information that You Provide: you may choose not to use any of the online forms (contact forms) available on our website or digital services. You may instead call us directly: 1-866-391-1925.
• Limit Access to Information on Your Mobile Device: Your mobile device operating system should provide you with the ability to discontinue our ability to collect stored information. If you do so, you may not be able to use certain features of our website or digital services.
• Set Your Browser to Reject Cookies: Please see the section below on How to Manage Cookies.
• Geo-Location Tracking: If you initially consented to the collection of geo-location information through our services, you could subsequently stop the collection of this information at any time by changing the preferences on your mobile device. Please note, however, that if you withdraw consent to our collection of location information, you may no longer be able to use some features of our services or Mobile Banking Apps.
• Email or SMS Communications: If you have signed up to receive email marketing communications, you can unsubscribe at any time by clicking the “unsubscribe” link included at the bottom of the email or other electronic communication. Alternatively, you can opt out of receiving marketing communications by contacting us at the information under “Contact Us” below. If you provide your phone number through our services, we may send you notifications by SMS, such as to provide a fraud alert. You may opt out of SMS communications by unlinking your mobile phone number through our services.

How to Manage Cookies

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our website or digital services.

You can choose not to accept cookies from any website or digital services, by changing the settings of your browser. You can also delete cookies stored in your browser at any time.

For more information about cookies, including how to delete them from your computer and configure your browser to refuse them from any other site, visit the following resource, or refer to your individual browser settings for additional information on disabling cookies:

• USA.gov/optout-instructions

Children’s Privacy

Our website or digital services do not address anyone under the age of 13 (“Children”).

We do not knowingly collect or retain personally identifiable information from anyone under the age of 13. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers. For more information on the Children’s Online Privacy Protection Act (COPPA), please visit the Federal Trade Commission website at www.ftc.gov.

Changes to This Digital Services Privacy Policy

We may update our Digital Services Privacy Policy from time to time. We will notify you of any material changes by posting the new Digital Services Privacy Policy on our website or in our digital services and update the “effective date” at the top.

You are advised to review this Digital Services Privacy Policy periodically for any changes and those changes are effective when they are posted.

Contact Us

If you have a question about this Digital Services Privacy Policy, please contact us.

Legends Bank
PO Box 1066
Clarksville, TN 37041-1066
customerservice@legendsbank.com
1-866-391-1925