Â
PRIVACY POLICY
Last Updated: July 16, 2026
SUMMARY OF KEY POINTS
- What personal information do we collect? We collect your name, email address, account details, payment information, device data, and website usage analytics.
- Do we process any sensitive personal information? We process standard payment information to facilitate your transactions securely, but we do not collect highly sensitive data like biometrics or social security numbers.
- Do we collect information from third parties? We primarily collect data directly from you, though we also gather technical and tracking data through tools like the Facebook Pixel to understand how you interact with our services.
- How do we use your information? We use your data to manage your training registrations, process payments, communicate with you, improve our website, and send relevant marketing updates.
- Who do we share your personal information with? We share data only with essential service providers (like payment processors and hosting platforms), within the Steel River family of companies for operational purposes, and when required by law.
- What are your privacy rights? Depending on your state of residence, you have the right to access, correct, delete, and port your data, as well as the right to opt out of targeted advertising and the "sale" or "sharing" of your information.
- How can you contact us? You can reach our privacy team anytime at marketing@cranetechusa.com.
1. INTRODUCTION
Welcome to the North American Crane Bureau (NACB). For more than 35 years, we have been a leading provider of crane, rigging, heavy equipment, and industrial safety training throughout North America. As a proud member of the Steel River family of companies, we help operators, inspectors, safety professionals, and trainers develop the skills needed to work safely in industrial environments. Just as we are committed to advancing workplace safety and supporting the industries that power critical infrastructure, we are equally committed to protecting your privacy.
This Privacy Policy explains how we collect, use, and protect your personal information when you visit our website, register for our training and certification programs, or interact with our digital services. We believe in being transparent about our data practices so you can make informed decisions about your privacy. If you have any questions after reading this policy, please reach out to us using the contact information provided at the end of this document.
2. WHAT WE COLLECT & WHY
We collect information to provide you with a seamless experience, from browsing our course catalog to completing your certifications. We organize our data collection into three main categories.
Information You Give Us Directly
When you register for an account, sign up for one of our 400+ annual safety training programs, or contact our support team, we ask for specific details. This includes your name, email address, professional title, and payment information. We need this information to secure your spot in our classes, process your financial transactions, and issue your certifications. Legal basis: Contractual necessity and your consent.
Information Collected Automatically
As you navigate our website, we automatically collect technical data to ensure our platform functions correctly and to understand how visitors use our resources. This includes your device information (such as your browser type and operating system), usage analytics (like which training pages you visit most), and cookies. This helps us optimize our website and troubleshoot technical issues. Legal basis: Legitimate business interest.
Information from Third Parties
We utilize third-party tools, specifically the Facebook Pixel, to help us measure the effectiveness of our advertising and understand user behavior. This tool collects tracking data that allows us to see how users interact with our site after clicking an ad, helping us deliver more relevant content to safety professionals who might benefit from our programs. Legal basis: Consent and legitimate business interest.
3. HOW WE USE YOUR INFORMATION
We use the information we collect for specific, clearly defined purposes that support our business operations and enhance your experience.
- Core Service Delivery:Â We use your account and payment data to process your registrations, manage your classroom or hands-on learning schedules, and deliver advanced crane simulation technologies. (Contract basis)
- Service Improvement:Â By analyzing usage data, we continuously refine our 40+ specialized training programs and improve our website's navigation. (Legitimate interest)
- Communication:Â We use your contact details to send transactional emails, such as registration confirmations, certification renewals, and responses to your inquiries. (Contract and consent)
- Security and Fraud Prevention:Â We monitor device and usage data to detect suspicious activity, protect your account, and maintain the integrity of our platform. (Legitimate interest)
- Legal Compliance:Â We may process your information to comply with tax laws, financial reporting requirements, and industry safety regulations. (Legal obligation)
- Marketing:Â With your permission, we use your email and tracking data to share promotional offers, new course announcements, and relevant industry news. You can opt out of these communications at any time. (Consent)
4. WHEN WE SHARE YOUR INFORMATION
We respect your privacy and limit how we share your personal data. We do not sell your personal information for traditional monetary gain. However, we do share your information in the following specific scenarios:
- Essential Service Providers:Â We share necessary data with trusted vendors who help us run our business. This includes payment processors to handle your transactions securely, cloud hosting providers to store our data, and email service platforms to deliver our communications.
- The Steel River Family:Â As part of the Steel River family of companies, we may share administrative and operational data within our corporate group to streamline services and support workforce development initiatives.
- Legal Requirements:Â We will disclose your information if required to do so by law, court order, or governmental regulation, or if we need to defend our legal rights.
- Business Transitions:Â If NACB is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that business transaction. We will notify you if your data is transferred to a new entity.
- With Your Consent:Â We may share your information in other ways if you explicitly authorize us to do so.
5. YOUR PRIVACY RIGHTS
Under comprehensive US State Privacy Laws—including the California Consumer Privacy Act (CCPA/CPRA), VCDPA, CPA, and CTDPA—you have specific rights regarding your personal data. We extend these rights to all our users, regardless of their state of residence.
- Access and Portability:Â You have the right to request a copy of the personal information we hold about you, provided in a readily usable format.
- Correction:Â If your information is inaccurate or incomplete, you have the right to request that we update it.
- Deletion:Â You can ask us to erase your personal data, subject to certain legal exceptions (such as retaining records for tax purposes or active certifications).
- Opt-Out of "Sales" and "Sharing":Â Because we use tools like the Facebook Pixel for targeted advertising, this may qualify as "selling" or "sharing" your data under laws like the CCPA. You can opt out by clicking the "Do Not Sell My Personal Information" link on our website or by broadcasting the Global Privacy Control (GPC) signal from your browser. We fully recognize and respect GPC signals as valid opt-out requests.
- Withdraw Consent:Â If you have opted into marketing communications, you can easily unsubscribe at any time using the link at the bottom of our emails.
To exercise any of these rights, please email us at marketing@cranetechusa.com. We will verify your request and respond within the timeframes required by applicable law, typically within 45 days.
6. DATA SECURITY
Protecting your information is a core part of our operational safety culture. We align our security practices with SOC 2 standards, implementing robust technical and organizational measures to safeguard your data. This includes encrypting data in transit, enforcing strict access controls among our staff, and continuously monitoring our systems for vulnerabilities.
However, we must be honest: no system connected to the internet is 100% secure. While we work tirelessly to protect your data, we cannot guarantee absolute security against advanced cyber threats. You also play a vital role in data security. We encourage you to use strong, unique passwords for your NACB account and to keep your login credentials confidential.
In the unlikely event of a data breach that compromises your personal information, we will notify you and the relevant regulatory authorities promptly, in accordance with legal requirements, outlining the steps we are taking to mitigate the issue.
7. DATA RETENTION
We keep your personal information only for as long as we need it to fulfill the purposes outlined in this policy. Our retention periods are based on the following logic:
- Active Account Data:Â We retain your profile and certification history for the duration of your relationship with us, plus a reasonable buffer to allow for certification renewals and ongoing workforce development tracking.
- Financial Records:Â We keep payment and transaction histories for up to seven years to comply with standard tax and accounting laws.
- Marketing Preferences:Â We retain your contact information for marketing purposes until you withdraw your consent or opt out.
- Technical Logs:Â We typically retain usage analytics and server logs for 12 months to monitor website performance and security trends before securely deleting them.
8. COOKIES & TRACKING
Our website uses cookies and similar tracking technologies to enhance your browsing experience.
- Essential Cookies:Â These are necessary for the website to function, such as keeping you logged into your account or remembering items in your cart.
- Analytics and Marketing Cookies:Â We use tools like the Facebook Pixel to understand how visitors interact with our site and to deliver relevant advertisements about our training programs on other platforms.
You have control over your cookie preferences. You can adjust your browser settings to refuse certain cookies, or you can use the Global Privacy Control (GPC) signal to automatically communicate your privacy preferences to our website.
9. CHILDREN'S PRIVACY
Our training programs, certifications, and digital services are designed strictly for adult professionals in the manufacturing, construction, and energy sectors. In compliance with the Children's Online Privacy Protection Act (COPPA) and state privacy laws, we do not knowingly collect personal information from anyone under the age of 16. If we discover that a child has provided us with personal data, we will take immediate steps to delete that information from our systems. If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately.
10. INTERNATIONAL TRANSFERS
NACB operates primarily within the United States. If you are accessing our website or registering for our programs from outside the US, please be aware that your information will be transferred to, stored, and processed in the United States. By using our services, you consent to this transfer. We ensure that any international data transfers comply with applicable legal frameworks and that your privacy rights remain protected.
11. CHANGES TO THIS POLICY
As our training programs evolve and privacy laws change, we may need to update this Privacy Policy. When we make significant changes, we will notify you by updating the "Last Updated" date at the top of this page and, where appropriate, sending an email to registered users. Your continued use of our services after these changes are posted constitutes your acknowledgment of the updated policy. We encourage you to review this page periodically to stay informed about how we protect your data.
12. CONTACT US
We welcome your questions, comments, and requests regarding this Privacy Policy. You can reach our team through the following methods:
- Privacy Email:Â privacy@cranesafe.com
- Website:Â https://www.cranesafe.com
When you contact us regarding a privacy concern or a data rights request, you can expect a prompt and professional response, typically within 3 to 5 business days to acknowledge your inquiry, followed by a complete resolution within legally required timeframes.