Welcome to the Office of the Comptroller's (CTR) website. Your privacy is one of our top priorities. The following policy applies only to the use of the Office of the Comptroller's website. Other web sites operated by other state agencies have established their own policies. We strongly suggest that you read the privacy policies for each Commonwealth website that you visit and any external site that you visit through a link appearing at this site. The Internet websites to which links are provided in this site are not under the control of the Comptroller. Access to any other Internet sites linked to this site is at the user's own risk.
A Privacy Partnership
Your privacy with respect to the use of this website results from a partnership between the Commonwealth and you, the user. At this website, we attempt to protect your privacy to the maximum extent possible. However, because some of the information that we receive through this website is subject to the Public Records Law, Massachusetts General Laws Chapter 66, Section 10, we cannot ensure absolute privacy. Information that you provide to us through this site is secure and protected, but some of that information may be made available to members of the public under that law. This policy informs you of the information that we collect from you at this site, what we do with it, to whom it may be disseminated, and how you can access it. Based on this information, you can make an informed choice about your use of this site. You can maximize the benefits of your privacy partnership with the Commonwealth by making informed choices about whether to share personally identifiable information with us through this site.
Personally Identifiable Information
We use the term "personally identifiable information" or "highly sensitive information" to mean any information that could reasonably be used to identify you, including your name, address, e-mail address, Social Security number, birth date, bank account information, credit card information, or any combination of information that could be used to identify you.
Information Voluntarily Provided by You
This site collects voluntary information from you through surveys, e-mails and any comments posted on social media pages hosted by this website (such as blogs and wikis). E-emails sent by you to this site could contain personally identifiable information, so consider the content of these e-mails prior to submission.
Information Collected from Emails
The Office of the Comptroller is a public agency according to the Public Records Law, Massachusetts General Laws Chapter 66, Section 10. All information in the possession of the Office of the Comptroller is potentially a public record, and, depending on the circumstances, part or all of an e-mail message may be subject to disclosure under the Public Records Law. If you send us an e-mail message, the information you submit (including any personally identifiable information such as your e-mail address) will be disclosed to CTR staff to assist us in fulfilling our official duties. We may also send the information to other government agencies involved in any administration of this website. We will not disclose the information to other parties, except for official purposes or as required by the Public Records Law. We do not sell names, addresses or other personally identifying information for commercial purposes or for any other reason.
Information Automatically Collected and Stored by this Site
This website employs the use of " Persistent Cookies." The purpose of these Persistent Cookies is to collect and aggregate data regarding the site's visitor activity for CTR to continuously evaluate and update its website services. You may elect to disable the Persistent Cookies. However, disabling persistent cookies may affect your ability to view or interact with this website. The site also uses temporary "session cookies" to allow visitors to interact with the portal and to use online applications. "Session cookies" do not allow us to personally identify a visitor. These cookies are stored only in memory and are deleted when the user's browser is shut down.
The site does collect and store indefinitely your computer's Internet Protocol ("IP") address, which identifies the machine connecting to this site, but does not identify you as an individual. The site also collects and stores information about the date and time of your visit, whether a file you have requested exists, and how many "bytes" of information were transmitted to you over the web from this site. We use your IP address to assess the frequency of visits to this site and the popularity of its various pages and functions. We will not attempt to match any personally identifiable information that you provide to us with your IP address, unless there are reasonable grounds to believe that doing so would provide information that is relevant and material to a criminal investigation.
Dissemination of Your Personally Identifiable Information
We do not sell any personally identifiable information, whether collected through this website or submitted to the Commonwealth in conjunction with using functions on the website, and there is no direct or online public access to this information. However, once you voluntarily submit personally identifiable information to us related to your use of the Portal, its dissemination is governed by the Public Records Law, the Massachusetts General Laws Chapter 66A (Fair Information Practices Act), Executive Order 504, and other applicable laws and regulations.
For this reason, part or all of the information you send us may be provided to a member of the public in response to a public record request. There is a cost of access charged for a request for public records. Please Note: There are pieces of information, such as credit card numbers, TIN, username or password that are not considered public for the purposes of a public records request. For more information on the types of data exempted from disclosure under the Public Records Law, please read the Secretary of the Commonwealth's Public Records Law.
In addition, the information that you voluntarily submit will be disclosed only to Commonwealth employees, officials or those under contract with the Commonwealth with a "need to know" for purposes of fulfilling their job responsibilities. The information will be used for such purposes as: answering your questions, responding to your requests for assistance, generating summary statistics about usage, auditing applications and detecting fraud, aiding in the planning, design and development of the CTR portal and fulfilling the Commonwealth's legal obligations.
We will collect and aggregate the information you provide through surveys for purposes of market research to improve this portal by making it more responsive to customer needs. Where appropriate, we may provide the information submitted by you to the person or company that is the subject of your inquiry or to a government agency responsible for the matters referred to in your communication.
Your Access and Opportunity to Correct
The Public Records Law and the Fair Information Practices Act provide you certain rights to get information about you that is in our records. To learn more about the circumstances, under which you can get and correct this information, please click on the above references to these laws.
Because information sent to this site is not encrypted, you should not send messages containing information that you consider highly sensitive to this website. We use standard security measures to ensure information provided by you, including your personally identifiable information, is not lost, misused, altered, or unintentionally destroyed. We also use software programs to monitor network traffic to identify unauthorized attempts to upload or change information or otherwise cause damage. Except for authorized law enforcement investigations, no attempts are made to identify individual users or their usage habits.
Special Protections Against Misuse of Personally Identifiable Information Within Commonwealth Offices
In 2008, Governor Deval Patrick issued Executive Order 504, which enhanced the privacy protection given to any information about you as a named individual held by the Executive Department of state government. Executive Order 504 limits the collection and dissemination of personally identifiable information within the Executive Department and requires Executive Department agencies to enhance the security and integrity of such data. This website complies with Executive Order 504 so all of the personally identifiable information that you submit to this site is given the privacy protections set forth in Executive Order 504.
For questions about your privacy while using this web site, please contact firstname.lastname@example.org.