(877) 822-7566

EFZ ENTERPRISES, LLC
INHERALINK®

Security Statement
Last Update: December 17, 2021

Maintaining the security and integrity of your data is a top priority. You will have peace of mind knowing multiple layers of protection are in place.

Secure Data Protections

We use a combination of TLS 1.2 and AES 128. This varied strategy ensures data is encrypted both in transit and at rest. Click here to find out more about data protection.

Latest Technology

We use the latest technologies to protect against HTTPS connection downgrades, XSS vulnerabilities, and SQL Injection.

Two-Factor Authentication

We offer two factor authentication for each account. This enhanced security protects against threats such as weak passwords.

AWS Web Application Firewall

We use AWS WAF to protect your account from bots and other web exploits. This complex system blocks common attack patterns.

1. Types of Information Collected

In order to better provide you with our numerous services, we collect three types of information about our users: Personally Identifiable Information, Secure Information, and Nonpersonally Identifiable Information. Our primary goal in collecting information from you is to provide you with a smooth, efficient, and customized experience while using our site.

Personally Identifiable Information: This refers to information that lets us know the specifics of who you are, including, but not limited to contact information. When completing your membership, you may be asked to provide a credit card number or ACH account information. Depending upon the activity, some of the information we ask you to provide is identified as mandatory and some as voluntary. If you do not provide the mandatory data with respect to a particular activity, you will not be able to engage in that activity.

Secure Information: This refers to your private, sensitive, personal information that you privately submit through the site, including your date of birth, social security number, health and medical information, financial information and legal information. Although we are not a Covered Entity under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), some of the health and health related information would otherwise be considered “Protected Health Information” or “PHI,” as defined under HIPAA. While we may know whether and when you submitted a particular type or category of Secure Information, we do not in the course of our standard daily business operations have access to the content or details of any Secure Information you privately submit through the site because it is encrypted.

If you are a client, we will only share your Secure Information with your designated member that has granted you access to the site and their team members who have access to the sit, your collaborating advisor(s), and your authorized parties only as you or your designated member that has granted you access to the site have granted opt in permission as allowed for under the site (collectively, “Authorized Users”). We do not share your Secure Information with any other persons except certain health care providers as described below or when we are required to by law or in other rare circumstances, as described below.

Nonpersonally Identifiable Information: This refers to information that does not by itself identify a specific individual. We gather certain information about you based upon where you visit on our site in several ways. This information is compiled and analyzed on both a personal and an aggregated basis. This information may include the Web site’s Uniform Resource Locator (“URL”) that you just came from, which URL you next go to, what browser you are using, and your Internet Protocol (“IP”) address. A URL is the global address of documents and other resources on the World Wide Web. An IP address is an identifier for a computer or device on a Transmission Control Protocol/Internet Protocol (“TCP/IP”) network, such as the World Wide Web. Networks like the Web use the TCP/IP protocol to route information based on the IP address of the destination. In other words, an IP address is a number that is automatically assigned to your computer whenever you are surfing the web, allowing web servers to locate and identify your computer. Computers require IP addresses in order for users to communicate on the Internet.

2. Security of Information

At our site you can be assured that your Personally Identifiable Information and Secure Information is secure, consistent with current industry standards. The importance of security for all Personally Identifiable Information and Secure Information associated with our user is of utmost concern to us. Your Personally Identifiable Information and Secure Information is protected in several ways. Access by you to your Personally Identifiable Information and Secure Information is available through a password. This password is securely hashed, and not stored in plaintext.. We recommend that you do not divulge your password to anyone, nor reuse your password across different sites on the internet. In addition, your Personally Identifiable Information and Secure Information resides on a secure server that only selected EFZ Enterprises, LLC personnel and contractors have access to via password. We encrypt your Personally Identifiable Information and Secure Information and thereby prevent unauthorized parties from viewing such information when it is transmitted to us or to you.

In order to most efficiently serve you, credit card transactions and ACH transactions are handled by established third party financial institutions. They receive the information needed to verify and authorize your credit card or other payment information.

Unfortunately, no data transmission over the Internet or any wireless network can be guaranteed to be 100% secure. As a result, while we strive to protect your Personally Identifiable Information and Secure Information, you acknowledge that: (a) there are security and privacy limitations of the Internet which are beyond our control; (b) the security, integrity and privacy of any and all information and data exchanged between you and us through this site cannot be guaranteed; and (c) any such information and data may be viewed or tampered with in transit by a third party.

3. Cookies

The site does not store any personally identifiable information about visitors to our site. The site uses information only in aggregate form to track the total number of visitors to our site. When a user visits the site it uses a technology called "non-persistent cookies". A non-persistent cookie is a token that a server gives to your browser when you access a site or a section of a site. Our server uses a non-persistent cookie when you are providing or updating information to keep you from having to enter your password more than once during your visit to our site. This cookie is deleted once you leave our website.


If you have any questions about this Security Statement, the practices of this site, or your dealings with this site, please contact us by sending a letter to:

EFZ Enterprises, LLC

Attn: Privacy Compliance Officer

8500 Keystone Crossing, Suite 555
Indianapolis, Indiana 46240

You may also contact us by email at support@inheralink.com.