Business people working in private cubicles at a coworking office

Jensen Hughes Privacy Statement

Updated February 20, 2026.

The website is operated by and on behalf of Jensen Hughes - including its affiliates, divisions, business units and subsidiaries ("Company").

To establish personal data protections, the Company has implemented a privacy policy that incorporates foundational privacy principles and concepts that support compliance with applicable privacy laws and regulations. This Privacy Statement summarizes how our policy applies to our website and related communications and services ("Services") but excludes services that state that are offered under a different privacy statement or policy.

This Privacy Statement applies to personal information the Company may collect through this website, and to other information we may collect in the course of our business. The Company will determine the purposes and means of processing personal data provided to, collected by or for, or processed in connection with our Services. As either an Anonymous Visitor or a Registered User of our Services, the collection, use and sharing of personal data is subject to this Privacy Statement and updates.

Jensen Hughes respects your privacy and does not sell, rent or loan any personal data collected. Any information that you give Jensen Hughes will be treated in a careful and secure manner and only for legal and authorized purposes consistent with this Privacy Statement.

This Privacy Statement does not apply to personal information relating to the Company's own employees. The collection, processing and handling of Company employees' personal information is governed by Company policies.

Jensen Hughes  is the data controller responsible for determining the purpose and method of processing your personal data.

Contact us at: Privacy@jensenhuges.com

Before or at the time we collect personal data, we will inform you of our identity, the purposes of processing, legal bases where applicable, categories of recipients, retention, transfers, and your rights.

Specifics of how personal data will be collected and administered is described below.

 

What data do we collect?

Data you provide us

We collect information from you when you fill out a form. When contacting us through our site, as appropriate, you may be asked to enter your: name, e-mail address, mailing address, phone number, company name and/or job title. We collect data and process data when you:

  • Register or complete a contact, or information request form
  • Voluntarily complete a customer survey or provide feedback via email
  • Use or view our website via your browser’s cookies
  • Follow or connect with us via social media or the telephone
  • Shared with us at events and trade shows
  • Request an interview with a Jensen Hughes spokesperson
  • Request a Jensen Hughes expert
  • Apply for a position with the Company
     

If submitting a Request for Proposal (RFP) or Forensic Assignment (FA)

In addition to the data listed above, when submitting an RFP or FA, you may provide personal data on other individuals associated with the request. This information includes, but is not limited to:

  • Insured’s information (name, address, phone number)
  • Billing information (name, address, phone number)
  • Loss location (address)
  • Claim and/or evidence description, which may include names, addresses and phone numbers

If applying for a position with the Company, please be aware of the following:

  • We collect personal data from you when you provide, post or upload a document to our site, such as when you fill out a form or submit a CV/resume.
  • You have choices about the information on your applicant profile, such as your education, work experience, and skills. You should only include information relevant to job qualifications for our recruitment and hiring process.
  • When you apply for U.S.-based positions, we are legally required to ask you to identify your race, ethnicity, gender, veterans and disability statuses. However, you are under no obligation to provide that information.
  • Sensitive Personal Data / Sensitive Personal Information: Some categories (e.g., health data, biometric data, religious beliefs, genetic data) are considered sensitive and are subject to stricter rules. We collect or process such data only where a lawful basis applies and with appropriate safeguards. 

Data we automatically collect

We also collect data indirectly through the use of cookies, website analytics and through social media. Data may also be collected and stored based on your interaction and behavior with our website and email communications.

Legal Reasons for Processing  (when applicable):

We process your personal information only when we have a valid legal basis to do so under applicable data protection laws, including the following circumstances:

  • You have given us your clear consent.
  • We need the information to fulfill a contract with you or to take steps you’ve asked us to take before entering into a contract.
  • We have a legitimate business reason to use the information, and your rights do not outweigh that reason.
  • We are required to process the information to comply with a legal obligation.

 

How will we use your data?

Our Company collects data to allow us to better service our clients and your needs. We collect the identified data to address our legitimate business interest in providing services to our customers and other interested individuals. This interest is not overridden by your personal interests, rights and freedoms in protecting your personal data. The personal data you provide may be used to:

  • Communicate with you about our services, future events and updates about Jensen Hughes, in accordance with your communication preferences.
  • Operate, evaluate, and improve our business
  • Analyze our products, services, and websites
  • Perform market research
  • Contact you during the recruitment and hiring process

We process personal data only for specific, explicit, and legitimate purposes described in this Privacy Statement and will not use it for incompatible purposes without  notice and, where required by law, obtaining your consent.

 

How do we share your data?

We do not sell or otherwise disclose personal data that you provide to us or that we collect, except as described in this Privacy Statement. We may share personal data with trusted service providers that perform services on our behalf (i.e., collections assistance). When  engaging these service providers, we implement appropriate contractual,  confidentiality and security  safeguards to ensure your personal data is used only for legal and authorized purposes that are consistent with this Privacy Statement.

Categories of Recipients may include:

  • IT hosting and system maintenance providers
  • Security and fraud-prevention partners
  • Analytics providers
  • Recruitment and background processing providers
  • Professional advisers (such as legal or audit firms)
  • Regulators, courts, or government authorities where required by law

All recipients are required to process personal data only for documented purposes and to implement appropriate technical and organizational security measures to protect it.

 

Is data transferred and how is it stored?

As global organization, we may transfer personal data across national boarders in accordance with applicable data protection laws. Personal data collected by Jensen Hughes may be stored and processed in the United States and our affiliates and subsidiaries in other countries. We will take all reasonable and appropriate measures to safeguard the transfer of your personal data and ensure that your privacy rights continue to be protected.

Cross-Border Transfers:

  • Saudi Arabia: International transfers are made only in compliance with the Personal Data Protection Law (PDPL), under permitted conditions, with appropriate safeguards in place and, where required, approval from the Saudi Data and Artificial Intelligence Authority (SDAIA).
  • EU/EEA/UK: Where personal data is transferred outside these regions, we rely on an adequacy decision or appropriate safeguards—such as Standard Contractual Clauses—to ensure enforceable rights and effective legal remedies are available.

Our Company securely stores your data in the following ways:

  • On secure web, email and data cloud hosting services
  • On internal servers and computers including laptops
  • On mobile devices
     

Data Retention 

 We retain personal data only for as long as necessary for the purposes stated or as required by law.

 

Security

We have reasonable and appropriate electronic and physical security measures in place to protect against the loss, misuse and alteration of the information under our control. Please be advised, however, that while we strive to protect your personally identifiable information and privacy, no technology, data transmission or system is guaranteed or warranted to be 100% secure.

If we become aware of a personal data breach that is likely to result in a risk to your rights or freedoms, we will notify the relevant supervisory authority in accordance with applicable law. Where required, we will also notify affected individuals without undue delay, providing information about the nature of the breach, the likely consequences, and the measures taken or proposed to address it. We will document all personal data breaches and maintain records as required by applicable data protection laws.

Your data protection rights

You may withdraw consent at any time; withdrawal does not affect processing already performed under valid consent, and we may continue processing where another lawful basis applies.

In addition, under applicable data protection laws, you have the right to: 

  1. receive information on what personal data Jensen Hughes is collecting;
    1. (ii) receive access to such data and, if necessary, have it changed so it is correct;
    2. (iii) have your personal data deleted;
    3. (iv) restrict Jensen Hughes from processing, or limit the way we may process, your personal data; and
    4. (v) obtain a copy of the personal data we have collected.

You may contact us by e-mail or as described in the “How to Contact Us” section below to exercise your rights described above.

 

How to File a Privacy Complaint

If you believe your personal data has been processed in violation of applicable data protection laws, you have the right to lodge a complaint with the relevant supervisory authority:

  • California Residents (CPRA): You may file a complaint with the California Privacy Protection Agency (CPPA), the authority responsible for enforcing the California Consumer Privacy Act, as amended by the CPRA.
  • European Union / EEA Residents (GDPR): You may lodge a complaint with your local data protection authority in the EU/EEA member state where you reside, work, or where the alleged infringement occurred. You can find the contact information of the data protection supervisory authority in your country here.
  • PDPL Jurisdictions: You may file a complaint with the competent data protection authority in your country of residence, in accordance with applicable Personal Data Protection Law requirements.

We encourage you to contact us first at privacy@jensenhughes.com so we can address your concerns directly; however, this does not affect your right to lodge a complaint with a supervisory authority at any time.

 

Cookies

Cookies are text files placed on your computer to collect standard Internet log information and visitor behavior information. When you visit our websites, we may collect information from you automatically through cookies or similar technology.

For further information, visit allaboutcookies.org.

How do we use cookies?

Our Company uses cookies in a range of ways to improve your experience on our website, including:

  • Keeping you signed in
  • Understanding how you use our website
  • Improving the usability of our website
  • Tracking and analyzing web traffic

Where required by law, we obtain your consent for non‑essential cookies and provide choices to withdraw consent at any time.

What types of cookies do we use?

There are a number of different types of cookies, however, our website uses:

  • Functionality cookies: Our Company uses these cookies so that we recognize you on our website and remember your previously selected preferences. These could include what language you prefer and location you are in. A mix of first-party and third-party cookies are used.
  • Session cookies: These allow websites to link the actions of a user during a browser session only, for example on amecfw.com a session cookie is used to remember the details a user provides when downloading images from our image library. This means that if the user downloads more than one image they only need to enter their details once during that session. Session cookies expire after a browser session i.e., as soon as you close the browser window
  • Persistent cookies: These are cookies which are stored on a user's device in between browser sessions which allow the preferences or actions of the user to be remembered. Jensen Hughes does not use these type of cookies
  • First party cookies: This is the general name for cookies which are set by the website visited by a user
  • Analytical cookies: These are cookies used to collection information about how people access and use a website and are the type mostly used on our site.

How to manage cookies

You can set your browser not to accept cookies, and the above website tells you how to remove cookies from your browser. However, in a few cases, some of our website features may not function as a result.

 

Transparency in Coverage

This link leads to the machine-readable files that are made available in response to the federal Transparency in Coverage Rule and includes negotiated service rates and out-of-network allowed amounts between health plans and healthcare providers. The machine-readable files are formatted to allow researchers, regulators, and application developers to more easily access and analyze data.

Privacy policies of other websites

Our Company website contains links to other websites. This Privacy Statement applies only to our website, so if you click on a link to another website, you should read their privacy statement.

Updates to our privacy statement

Our Company keeps its privacy statement under regular review and places any updates on this web page. We will post the updated version and indicate at the top when it was most recently updated.

How to Contact Us

Unsubscribe or Opt-out

If you would like us to update information we have about you or if you no longer wish to be contacted by Jensen Hughes, you may contact us:

By email at info@jensenhughes.com

Or send a written request to:

Jensen Hughes
8830 Stanford Boulevard, Suite 300
Columbia, MD 21045, USA

In addition, you may also opt out by using the unsubscribe option on an email.

Questions

If you have any questions or comments about this Privacy Statement or any issue relating to how we collect, use, or disclose personal data, or you may contact us:

Corporate Compliance Officer
Jensen Hughes, Inc.
8830 Stanford Boulevard, Suite 300
Columbia, MD 21045, USA
compliance@jensenhughes.com

 

 

Jurisdiction‑Specific Notices

A) Saudi Arabia – PDPL

We comply with PDPL and its Implementing Regulations, including transparency obligations, purpose limitation, security controls, breach notifications within 72 hours to SDAIA, and international transfer controls (including approvals where required).

B) European Economic Area (EEA) / GDPR

Your GDPR Rights & Response Times: You have rights of access, rectification, erasure, restriction, portability, objection, and rights relating to automated decisionmaking; we respond within one month (extendable for complex cases).

Automated DecisionMaking (if used): If we make decisions solely by automated means that produce legal or similarly significant effects, we will provide meaningful information about the logic involved and your rights to obtain human review and to contest the decision.

International Transfers: Where transfers occur outside the EEA/UK, we rely on adequacy or appropriate safeguards such as Standard Contractual Clauses (SCCs).

C) California – CCPA as amended by the CPRA (CPRA)

Notice at Collection: At or before collection, we disclose categories of Personal Information (PI) and Sensitive PI collected; purposes; whether PI is sold or shared; and retention periods or criteria by category.

Categories of PI We May Collect through this websiteIdentification and Contact Information and Technical Data 

Your California Rights: Right to know/access, delete, correct; right to optout of sale and/or sharing (including for crosscontext behavioral advertising); right to limit use/disclosure of Sensitive PI; right to nondiscrimination.

If you which to exercise a privacy right, email your request to info@jensenhughes.com. We respond within 45 days (extendable) and follow verification procedures per regulations.

Do Not Sell or Share – Jensen Hughes does not sell, rent or loan any personal data collected.

Minors: We do not collect PI of consumers under.

CaliforniaSpecific Retention Disclosure: Jensen Hughes does not retain PI longer than reasonably necessary for the disclosed purposes.