Privacy Policy for AEP Economic Development, a unit of American Electric Power (AEP)

American Electric Power Company, Inc. and its subsidiaries and affiliates (collectively “AEP”) are committed to respecting your concerns about privacy. This Privacy Policy describes the practices of AEP’s Economic Development team (“AEPED”) regarding the collection and use of your personal information.

Personal information we collect and process

Because AEPED operates on a business-to-business (B2B) model, the categories and volume of personal information we collect and process is limited to:

  • Business contact information – This category includes information such as your name, your organization’s name, your job title or role, your business address, your business phone number, and your business email address.
  • Network and information security information – This category includes information such as your IP address, network location, operating system, browser, and URLs of pages you visit on our site.

How we collect personal information

There are several different ways you may share personal information with us:

  • By filling out a form on our website – If you ask us to contact you, you will need to provide sufficient business contact information to enable the contact.
  • By contacting us in person, over the phone or through email – If you contact us, it is likely that you will provide your business contact information to enable future contact.
  • Through contact with or use of a third party – AEPED works with marketing organizations in the economic development field, and they may put us in contact with you by providing your business contact information.
  • Passively through our website – We collect network and information security information when you visit our website. Also, our site uses “cookies” to help personalize your online experience. A cookie is a text file that is placed on your computer’s hard disk, mobile phone, or other device by a website server. Cookies do not damage your device. Most browsers automatically accept cookies. However, you can accept or decline cookies at any time by modifying your browser setting. If you choose to decline cookies, you may not be able to experience fully some features of our website.

How we use personal information (business purpose)

  • We use your business contact information to communicate with you about the provision or potential provision of AEPED services to the organization you represent.
  • We use the network and information security information that we collect to ensure the security of our systems and data, including the personal information that you share with us.

Third-Party Links and Add-Ins

AEPED’s website may link to, or embed content from, other third-party websites. When we link to other websites or embed their content, AEPED’s privacy practices no longer apply. You should refer to the privacy policy of that third party for information about their privacy practices.

Contacting Us

If you have any questions about this Policy, or about AEPED’s data privacy practices, please contact us:
American Electric Power
Economic Development Team
1 Riverside Plaza
Columbus, Ohio 43215
USA

Email – privacy@aep.com
Telephone – 1.833.795.1194 (toll-free)

Notice for Residents of the European Union

It is important to understand that AEPED is not established in the EU and performs no processing activities in the EU. Further, AEPED operates on a B2B business model, does not offer goods and services to data subjects in the EU, and does not monitor the behavior of data subjects in the EU.

The following information is for residents of the EU and other countries where the EU’s General Data Protection Regulation (GDPR) or a similar law applies:

  • Controller – The controller is AEPED and the contact details are stated above;
  • Data Protection Officer (DPO) – AEPED is not legally required to have a data protection officer and thus does not have one;
  • Purpose – The purpose of the processing of each category of personal data is stated above.
  • Legal basis – AEPED has several legal basis for processing the information we collect. The primary legal basis for processing business contact information is your consent to this processing. The legal basis for processing network and information security information is our legitimate interest in network and information security;
  • Recipients – The recipients or categories of recipients of your personal data are our and IT hosting and service providers and, if necessary, government agencies and vendors involved with incident response procedures;
  • Transfer – AEPED intends to transfer your personal data to the US, where it operates. No adequacy decision and no adequate safeguards apply to these transfers. Instead, they are made on the basis of your explicit consent, as allowed by GDPR Article 49(1)(a);
  • Retention – Business contact information will be retained by AEPED as long as the organization represented by the data subject is a customer or potential customer of AEPED, plus 3 years. Due to the nature of the business, long lead times are not unusual, and AEPED may use business contact information to maintain regular, periodic contact with potential customers for many years. Network and information security information will be retained for 13 months;
  • Automated decision-making – AEPED does not perform any automated decision making with regard to the information you provide to us;
    • Request a copy of your personal information stored by AEPED;
    • Request that we correct any inaccurate or incomplete personal information;
    • Withdraw consent to the processing of your personal information;
    • Request that we stop processing your personal information;
    • Request that we delete your personal data; and
    • Lodge a complaint with your relevant data protection authority.
  • Rights – If you are a resident of the EU, you have the right to:
    • Request a copy of your personal information stored by AEPED;
    • Request that we correct any inaccurate or incomplete personal information;
    • Withdraw consent to the processing of your personal information;
    • Request that we stop processing your personal information;
    • Request that we delete your personal data; and
    • Lodge a complaint with your relevant data protection authority.

California Consumer Privacy Act Privacy Notice for California Residents

In addition to the information above, California requires that we provide the following information:

  • Sale – AEPED does not sell your personal information. Pursuant to California law, AEPED has not sold personal information in the last 12 months.
  • Collection and Use – Categories of personal information collected and the business purpose for doing so are identified above.
  • Disclosure of personal information – AEPED’s Customer Relationship Management (CRM) system is provided and hosted by a third party, so disclosure of business contact information in one sense is routine and has happened within the last 12 months. On the other hand, disclosure of business contact information and network and information security information to government agencies (law enforcement, for example) and to vendors involved with incident response procedures is rare and has not taken place within the last 12 months.
  • Rights – You have the right to opt out of the sale of personal information. In addition, you have the right to request details regarding the information we may have collected about you through your interactions with AEPED. You may also request that we modify, update, change, remove or delete certain personal information that you have previously provided. If you wish to exercise your California privacy rights with regard to the information you may have shared with us, please contact us at privacy@aep.com or on the phone at 1.833.795.1194 (toll-free). In order to verify your request, you may need to provide us with proof of your identity, including for example, a copy of your driver’s license. Under California law, a consumer may also designate an authorized agent to make a request under the California Consumer Privacy Act. If you use an authorized agent, we may require you to submit proof that the agent acts on your behalf.
  • Non-discrimination – Under California law, we cannot discriminate against you because you exercise your rights under the California Consumer Privacy Act.

Children’s Privacy

We do not knowingly collect any information from children under the age of 16. If we learn that a child under the age of 16 has provided us with personal information, we will delete it in accordance with applicable law. If you are a parent or guardian and believe we have collected information from your child in a matter not permitted by law, please contact us.

Updates to this Privacy Policy

This Privacy Policy was last updated March 15, 2021. We periodically update this Privacy Policy. We will post any changes on this page when updating this Privacy Policy.