What are cookies?
Cookies are small text files placed on your devices, such as a computer, tablet or mobile, when you are browsing the Internet and websites. A cookie tracks and stores a wide range of information about your use of the website.
You can easily adjust the settings of your browser to control the activation or deactivation of cookies. By proceeding beyond this page, you are consenting to our cookie and data storage settings. Please be aware that disabling cookies may impact your user experience and prevent you from using certain parts of our websites.
M.C. Dean, Inc. respects your privacy and is committed to protecting it through our compliance with this policy.
This policy describes the types of information M.C. Dean (‘we”) may collect from you or that you may provide when you visit the website www.mcdean.com (our “Website”), or any of M.C. Dean’s other websites, our affiliate websites, or elsewhere, and our practices for collecting, using, maintaining, protecting, and disclosing that information.
This policy applies to information we collect:
- On this website.
- In email, text, and other electronic messages between you and this website.
- Through mobile and desktop applications you download from this website, which provide dedicated non-browser-based interaction between you and this website.
- When you interact with our advertising and applications on third-party websites and services, if those applications or advertising include links to this policy.
It does not apply to information collected by:
- Use offline or through any other means, including on any other website operated by Company or any third party (including our affiliates and subsidiaries); or
- Any third party, including our affiliates and subsidiaries, including through any application or content (including advertising) that may link to or be accessible from the Website
California Privacy Rights
This policy does not apply to workforce-related personal information collected from California-based employees, job applicants, contractors, or similar individuals. That policy may be accessed on our M.C. Dean internal company Intranet.
Information We Collect
Our website collects information that identifies, relates to, describes, references, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer, household, or device (“personal information”). Personal information does not include:
- Publicly available information from government records.
- Deidentified or aggregated consumer information.
- Information excluded from the CCPA’s scope:
- Health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA), clinical trial data, or other qualifying research data;
- Personal information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FCRA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver’s Privacy Protection Act of 1994.
Information Security Policy
Protection of company assets is vital to M.C. Dean’s success. To this end, we have documented, implemented, and institutionalized an information security management system that is in line with the International Standard for Information Security, ISO/IEC 27001. Specifically, at M.C. Dean we are committed to:
Compliance to this policy is mandatory. All M.C. Dean personnel and external service providers who have any involvement with information and associated assets covered by the scope of the Information Security Management System, are responsible for implementing this policy and shall have the support of the Chief Executive (CEO) who has approved the policy.
Information Security Objectives
- To conform with all applicable legal, regulatory, statutory, and contractual requirements, including:
a. Achieving and maintaining the ISO 27001 Certification for the Corporate Information System (CIS) and InfraLink Cloud Services with zero major nonconformities. b. Achieving and maintaining the Cybersecurity Maturity Model Certification (CMMC) for the M.C. Dean United States (MCDUS) Controlled Unclassified Information (CUI) enclave and InfraLink Cloud Services. c. Achieving a Federal Risk and Authorization Management Program (FedRAMP) authorization for the InfraLink Software as a Service (SAAS).
- To improve situational awareness and reporting on phishing attacks by educating users on how to identify and report phishing emails.
- To attain 100% compliance with audit and review schedules by ensuring that all management system and technical controls are reviewed in a timely manner through vulnerability scans, Data Loss Prevention scans, and audit log reviews.
- To ensure 100% of employees and relevant contractors receive security awareness training.
- To ensure 100% projects are adhering to guidelines in the Information Security Policy for Project Management.
- To perform risk assessments on 100% of M.C. Dean’s subcontractors. The policy along with the objectives shall be reviewed at least once a year.