Under the California Consumer Privacy Act of 2018 (CCPA), River City Bank (the “Bank”) is required to inform California residents who are employees, job applicants, contractors, or any other consumer not exempted from the CCPA about the categories of personal information the Bank collects and the purposes for which the collected information will be used. This notice contains the disclosures required to comply with the CCPA.
The CCPA does not apply to personal information covered by certain privacy laws, including the Fair Credit Reporting Act (FCRA), the Gramm-Leach-Bliley Act (GLBA), the California Financial Information Privacy Act (CFIPA), and the Driver’s Privacy Protection Act of 1994.
The Bank’s collection practices are as follows:
Categories of Information We Collect and Disclose
In the past 12 months, the Bank has collected and disclosed for a business purpose one or more of the following categories of information from consumers who are not exempted from the CCPA:
A. Personal Identifiers – Examples: real name, alias, postal address, social security number, driver’s license number, online identifier, or other similar identifiers.
B. Personal Information categories listed in the California Customer Records statute (Cal. Civ. Code 1798.80(e)) – Examples: name, telephone number, education, employment history. Some personal information included in this category may overlap with other categories.
C. Professional or employment-related information – Examples: Current or past job history and/or performance evaluations.
D. Inferences drawn from other personal information – Examples: Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
E. Characteristics of protected classifications under California or federal law – Examples: race, gender, and veteran or military status.
F. Commercial Information – Examples: records of personal property, products or services purchased, obtained, or considered.
Sources We Obtain Information From
A. Job application with the Bank.
B. Information you provide to obtain employee benefits, loans, or deposit accounts.
C. Information received from credit reporting agencies.
D. Internet sites such as LinkedIn and Indeed.
E. Public records and governmental entities.
F. Service providers or companies, such as credit reports.
Use of the Information We Collect
In the past 12 months, the Bank has used or disclosed personal information collected for one or more of the following business purposes and objectives:
A. To process, evaluate, and communicate with you about your application for a job, loan, or deposit account; including to check references or your background.
B. To evaluate and determine which contractor to use.
C. To comply with Affirmative Action Requirements under Executive Order 11246 and all federal and state laws, rules, and regulations..
D. To respond to law enforcement requests, court order, or subpoenas.
E. To approve or decline loan or deposit account applications.
F. To service those products and services you have with River City Bank.
Sharing and Disclosing of Information
We do not share your information except as allowed by law. We share information only with those vendors providing servicing of your products and services, and require they not sell, share, or use your information for any other purpose. We share information with consultants, auditors, and regulators for institutional risk analysis and mitigation.
Selling of Information
We do not sell your information.
Rights under the CCPA
California residents who are not exempted from the CCPA have the right to:
A. Request the Bank disclose to you the following information from the past 12 months:
1. The categories of personal information collected about you;
2. The categories of sources from which the personal information was collected;
3. The purpose of collecting the personal information about you; and
4. The specific personal information that we collected, used, and disclosed about you.
B. Request the Bank delete personal information we collected from you, unless the information collected is exempted by the CCPA or required to be retained by federal or state regulations and laws; and
C. Non-discrimination from the Bank for exercising your rights under the CCPA.
How to Exercise Rights under the CCPA
Only you or someone legally authorized to make a request on your behalf, i.e. authorized agent, may submit a verifiable request related to your personal information. Requests to know or delete categories of personal information collected can be submitted to River City Bank by:
Calling (800) 564-7144
Writing to us at:
River City Bank
Attn: CCPA Compliance
2485 Natomas Park Dr., Suite 100
Sacramento, CA 95833
Responding to Requests
We will acknowledge receipt of all requests within 10 business days and will respond using the same method the request was made. This initial response will include additional information the Bank may need to verify the identity of the requestor and process the request. The Bank will take reasonable precautions to verify the identity of the requestor and will process your request within 45 days, as required by the CCPA.
The Bank is prohibited by the CCPA from honoring certain requests. For example, the Bank will be unable to honor requests if we cannot verify the requestor’s identity or if an exception to the Act applies. If the Bank cannot honor your request, we will provide an explanation why we are unable to do so in our written response to the requestor.
Contact Information
Any questions, comments, or concerns about your rights under the CCPA, or River City Bank’s privacy policies and practices regarding the collection and use of your personal information, please contact us at: (800) 564-7144.
Revised: 4/30/21
