Privacy

At Alpena Alcona Area Credit Union, we are committed to protecting the privacy and security of our members' personal information. We take every measure to ensure your data is safeguarded and handled with the utmost care. For more details on how we protect your privacy, please refer to the links below.

Privacy Policies

Biometric Information Privacy Policy

Effective Date:   June 1, 2023

Scope and Overview
This policy outlines how Alpena Alcona Area Credit Union, its vendors, and/or the licensor of the Alpena Alcona Area Credit Union’s consumer verification software processes biometric data collected from you for identity verification and fraud prevention purposes.  

Biometric Data Defined
As used in this policy, biometric data includes “biometric identifiers” and “biometric information”. “Biometric identifier” means a retina or iris scan, fingerprint, voiceprint, or scan of hand or face geometry. As the term is used in this policy, the selfie photograph you upload to the software for use in the biometric algorithm is considered a "biometric identifier."  “Biometric information” means any information, regardless of how it is captured, converted, stored, or shared, based on an individual’s biometric identifier used to identify an individual.  
 
Disclosure and Authorization Policy
To the extent that Alpena Alcona Area Credit Union, its vendors, and/or the licensor of the Alpena Alcona Area Credit Union’s consumer verification software collect, capture, or otherwise obtain biometric data relating to a consumer, Alpena Alcona Area Credit Union must first:
 
Inform each consumer that Alpena Alcona Area Credit Union, its vendors, and/or the licensor of the Alpena Alcona Area Credit Union’s consumer verification software are collecting, capturing, or otherwise obtaining the consumer’s biometric data, and that the Alpena Alcona Area Credit Union is providing such biometric data to its vendors and the licensor of the Alpena Alcona Area Credit Union’s consumer verification software;
 
Inform the consumer of the specific purpose and length of time for which the consumer’s biometric data is being collected, stored, and used; and
 
Receive consent by the consumer authorizing Alpena Alcona Area Credit Union, its vendors, and/or Alpena Alcona Area Credit Union’s consumer verification software to collect, store, and use the consumer’s biometric data for the specific purposes disclosed by the Alpena Alcona Area Credit Union, and for Alpena Alcona Area Credit Union to provide such biometric data to its vendors and the licensor of the Alpena Alcona Area Credit Union’s consumer verification software.
 
Alpena Alcona Area Credit Union, its vendors, and/or the licensor of the Alpena Alcona Area Credit Union’s consumer verification software will not sell, lease, trade, or otherwise profit from consumers’ biometric data; provided, however, that the Alpena Alcona Area Credit Union’s vendors and the licensor of the Alpena Alcona Area Credit Union’s consumer verification software may be paid for products or services used by Alpena Alcona Area Credit Union that utilize such biometric data.
 
This policy is intended to comply with all federal, state, and local laws. 
 
Purpose for the Collection of Biometric Data
Alpena Alcona Area Credit Union, its vendors, and/or the licensor of Alpena Alcona Area Credit Union’s consumer verification software collect, store, and use biometric data solely for identity verification and fraud prevention purposes.
 
Disclosure
Alpena Alcona Area Credit Union will not disclose or disseminate any biometric data to anyone other than its vendors and the licensor of the Alpena Alcona Area Credit Union’s consumer verification software providing products and services using biometric data without/unless:
 
First obtaining consumer consent to such disclosure or dissemination;
 
The disclosed data completes a financial transaction requested or authorized by the consumer;
 
Disclosure is required by law or ordinance; or
 
Disclosure is required pursuant to a valid warrant or subpoena issued by a court of competent jurisdiction.
 
Security
Alpena Alcona Area Credit Union shall use a commercially reasonable standard of care to store, transmit and protect from disclosure any biometric data collected. Such storage, transmission, and protection from disclosure shall be performed in a manner that is the same as or more protective than the manner in which Alpena Alcona Area Credit Union stores, transmits and protects from disclosure other confidential and sensitive information, including personal information that can be used to uniquely identify an individual or an individual’s account or property, such as genetic markers, genetic testing information, account numbers, PINs, driver’s license numbers and social security numbers.
 
Retention
Alpena Alcona Area Credit Union shall retain consumer biometric data only until, and shall request that its vendors and the licensor of Alpena Alcona Area Credit Union’s consumer verification software permanently destroy such data when, the first of the following occurs:
 
The initial purpose for collecting or obtaining such biometric data has been satisfied, such as verification of consumer identity;
 
Request of consumer to destroy the biometric data; or
 
Within 30 days of consumer’s provisioning of biometric data.

Contact Information
If you have any questions about our use, storage, or security of your biometric data you can contact us at: info@aaacu.com. 
 
BIOMETRIC INFORMATION CONSUMER CONSENT
As outlined in the “Biometric Information Privacy Policy”, I understand and consent to the collection, use, retention, storage, and/or disclosure or re-disclosure of data or images from biometric verification technology by Alpena Alcona Area Credit Union, its vendors, and/or the licensor of the Alpena Alcona Area Credit Union’s consumer verification software.  I acknowledge that I have been given a copy of the Policy, or that the Policy has been made accessible to me, and I have had an opportunity to review it and request any additional information concerning the Alpena Alcona Area Credit Union’s procedures and safeguards for collecting, maintaining, using, disclosing, sharing, storing, and/or destroying this data.

California Privacy Policy

PRIVACY NOTICE FOR CALIFORNIA RESIDENTS

Last Updated and Effective: 6-15-2026

Your privacy is important to us. This Consumer Privacy Policy (“Privacy Policy”) explains how we collect, share, use, and protect your personal information (“Personal Information”) through your online and offline interactions with us. This Privacy Policy applies only to consumers who are residents of California. If you are not a California resident, please refer to our Online Privacy Policy Privacy - Alpena Alcona Area Credit Union and our Privacy Policy

 

I. CATEGORIES OF INFORMATION WE COLLECT

In the preceding 12 months, we have collected the following categories of personal information (please note that some categories overlap):

Category	Examples
A. Identifiers	A real name or alias; postal address; signature; home phone number or mobile phone number; bank account number, credit card number, debit card number, or other financial information; physical characteristics or description; email address; account name; Social Security number; driver's license number or state identification card number; passport number; or other similar identifiers.
B. Protected classification characteristics under state or federal law	Age (40 years or older), race, ancestry, national origin, citizenship, marital status, sex (including gender, gender identity, gender expression, veteran or military status.
C. Commercial information	Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
D. Biometric information	Physiological and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints.
E. Internet or other similar network activity	Browsing history, search history, information on a consumer's interaction with a website, application, or advertisement.
F. Geolocation data	Physical location or movements. For example, city, state, country, and ZIP code associated with your IP address or derived through Wi-Fi triangulation; and, with your permission in accordance with your mobile device settings, and precise geolocation information from GPS-based functionality on your mobile devices.
G. Sensory data	We do not collect sensory data.
H. Professional or employment-related information.	Current or past job history.
I. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)).	Educational records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information.
J. Inferences drawn from other personal information.	Profile reflecting a person’s preference, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.

 

II. CATEGORIES OF SOURCES OF INFORMATION WE COLLECT

We obtain the categories of personal information listed above from one or more of the following categories of sources:

1. From You or Your Authorized Agent. We may collect information directly from you or your authorized agent. For example, when you enter your name or other information into forms, surveys or applications for new products or services. We also collect information indirectly from you or your authorized agent. For example, through information we collect from you in the course of providing products and services to you.

2. From Our Website and Applications You Access on Your Mobile Device. We collect certain information from your activity on our activity on our website https://www.aaacu.com and your use of applications on your mobile device. We may collect your IP address, device and advertising identifiers, browser type, operating system, Internet service provider (“ISP”), pages that you visit before and after visiting our website, the date and time of your visit, information about the links you click and pages you view on our website, and other standard server log information. We may also collect your mobile device’s GPS signal, or other information about nearby Wi-Fi access points and cell towers.

1. Cookies and Other Online Tracking Technologies. Cookies are pieces of information stored directly on the device you are using. Cookies we use do not contain or capture unencrypted personal information. Cookies allow us to collect information such as browser type, time spent on our Site, pages visited, Site preferences, and your relationship with us.

 

We use the information for security purposes, to display information more effectively, to personalize your experience with the Site, and to recognize your device to allow your use of our online products and services. We collect statistical information about the usage of the Site in order to continually improve the design and functionality, to monitor responses to our advertisements and content, to understand how members and visitors use the Site, and to assist us with resolving questions regarding the Site. We also use cookies for advertising purposes. Please see the Advertising section below for more information.

You can refuse to accept these cookies and most devices and browsers offer their own privacy settings for cookies. You will need to manage your cookie settings for each device and browser you use. However, if you do not accept these cookies, you may experience some inconvenience in your use of the Site. For example, we will not be able to recognize your device and you many need to answer a security question each time you log on. You also may not receive tailored advertising or other offers from us that may be relevant to your interests and needs.

We, or our service providers, and other companies we work with may deploy and use cookies, web beacons, local shared objects and other tracking technologies for various purposes, such as fraud prevention [and to promote our products and services to you]. Some of these tracking tools may detect characteristics or settings of the specific device you use to access our online services.

Other technologies including pixel tags, web beacons and clear GIFs, may be used in connection with some Site pages, mobile app features and HTML-formatted email messages to measure the effectiveness of our communications, the success of our marketing campaigns, to compile statistics about usage and response rates, to personalize/tailor your experience with us, for fraud detection and prevention, for security purposes, and for advertising. Please see our Advertising section below for more information regarding our use of other technologies.

 

2. Online Advertising and Online Behavioral Advertising. We advertise online (e.g., pages within our Sites and mobile app, through our social media presences, and on other sites and mobile apps not affiliated with us) and offline (e.g. in branches, through our Member Contact Center, and direct marketing).

In order to understand how advertising performs, we may collect certain information on our Sites and other sites and mobile apps through our advertising service providers using cookies, IP addresses, and other technologies. The collected information may include the number of page visits, pages viewed on our Sites, search engine referrals, browsing activities over time and across other sites following your visit to one of our Sites or apps, and responses to advertisements and promotions on the Sites and on sites and apps where we advertise. We use this information to help advertise our products and services, including prescreened offers of credit, in a variety of ways. We use such information to:

• Present tailored ads to you including banner ads and splash ads that appear as you sign on or off of your online accounts on our Sites; E-mail and postal mail; and on other sites and mobile apps not affiliated with us;

• Analyze the effectiveness of our ads; and

• Determine whether you might be interested in new products or services

We tailor ads in the following ways:

 

1. Relationship based advertising. In order to help make our advertising informative and useful, we may use information about your relationship with us (such as types of accounts, transactional information or preferred branches) to help determine which advertisements or offers to present to you.

2. Online Behavioral Advertising. We or our advertising service providers may use certain information about your activities on our Sites, such as pages visited and search key words entered, to help determine which of our advertisements or offers may be of interest to you. We limit access and collection of information for specific purposes by advertising service providers. We may use this online information for online and offline advertising.

3. Advertising on third party sites and mobile apps. We contract with advertising companies to advertise our products and services on sites and mobile apps not affiliated with us. We may use information provided by you to these third party sites and mobile apps to select which of our advertisements or offers may appeal to you, display them to you and monitor your responses. Third Party sites and mobile apps are not subject to the Alpena-Alcona Area Credit Union Privacy Notice. Please visit the individual sites and mobile apps for additional information on their data and privacy practices and opt-out policies.

 

4. Online Behavioral Advertising on third party sites and mobile apps. Some of our tailored ads are online behavioral advertising, and may be served using data collected by third party providers. Ads served on our behalf by these companies do not contain unencrypted Personal Information and we limit the use of information by companies that serve our ads.

5. Advertising on third party sites. We may provide links to third party sites, such as service provider partners and consumer information resources. If you follow links to sites not controlled by Alpena-Alcona Area Credit Union, you should review their privacy and security policies and other terms and conditions, as they may be different from those of our Sites. Alpena-Alcona Area Credit Union does not guarantee and is not responsible for the privacy or security of these sites, including the accuracy, completeness, or reliability of their information.

6. Social media sites. We provide experiences on social media platforms including, but not limited to, Facebook®, Instagram®, Twitter®, YouTube®, and LinkedIn® that enable online sharing and collaboration among users who have registered to use them. Any content you post on official Alpena-Alcona Area Credit Union managed social media pages, such as pictures, information, opinions, or any Personal Information that you make available to other participants on these social platforms, is subject to the Terms of Use and Privacy Policies of those respective platforms. Please refer to them to better understand your rights and obligations with regard to such content.

 

3. Third-Party Service Providers in Connection with our Services or Business Purposes. We collect information from third-party service providers that interact with us in connection with the services we perform or for our operational purposes. For example, a credit report we obtain from a consumer reporting agency to evaluate a loan application. Another example is a third-party service provider that provides us information to help us detect security incidents and fraudulent activity.

 

4. Information We Collect from Third-Parties for a Commercial Purpose. We collect information from third-parties for our commercial purposes. We partner with a limited number of third-party analytics and advertising firms. These third parties may use cookies or code processed by your browser to collect public information about your visits to our and other websites in order to provide customized experiences, advertisements or services. These parties may also collect information directly from you by contacting you telephonically, via email or through other communication channels. We do not disclose any information about you to such third-parties except as permitted by applicable laws and regulations, and we require such third-parties to follow applicable laws and regulations when they collect information from you to transfer such information to us.

5. Google Analytics. Many websites and apps use Google services to improve their content. When they integrate Google services, these sites and apps share information with Google. The Credit Union uses Google Analytics to better understand how users are visiting and using our sites. Google Analytics collects information such as how often users visit the Site, what pages they visit when they do so, and what other sites they used prior to coming to this Site. Google Analytics collects the IP address assigned to you on the date you visit this Site, rather than your name or other identifying information. The Credit Union does not combine the information collected through the use of Google Analytics with personally identifiable information. Although Google Analytics plants a cookie on your web browser to identify you as a unique user the next time you visit the Site, the cookie cannot be used by anyone but Google. You may further review information about how Google Analytics collects and processes data and how to control the information sent to Google by reviewing ‘How Google uses information from sites or apps that use our services’: https://policies.google.com/technologies/partner-sites.

 

III. HOW WE USE YOUR PERSONAL INFORMATION

We may use or disclose Personal Information for one or more of the following operational or other notified purpose (“business purpose”):

• To fulfill or meet the reason for which the information is provided. For example, you apply for a loan, and we use the information in your loan application to decision the loan.
• To provide you with information, products or services that you request from us.
• To provide you with email alerts, event registrations or other notices concerning our products or services, or events or news, that may be of interest to you.
• To carry out our obligations and enforce our rights arising from any agreements entered into between you and us, including for billing and collections.
• To improve our Site and present its contents to you.
• For testing, research, and analysis to improve our products and services and for developing new ones.
• To protect the rights, property or safety of us, our employees, our members or others.
• To detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, and to prosecute those responsible for that activity.
• To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
• As described to you when collecting your personal information.
• To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution or other sale or transfer of some or all of our assets, in which personal information held by us is among the assets transferred.
• To advance our commercial or economic interests (“commercial purpose”), such as advertising our membership, products and services, or enabling or effecting, directly or indirectly, a commercial transaction.

IV. SHARING PERSONAL INFORMATION

We disclose your personal information to a third party for a business purpose or commercial purpose. When we disclose personal information for a business or commercial purpose, we enter a contract that describes the purpose and requires the recipient to keep that personal information confidential and not to use it for any purpose except for performing the contract.

In the preceding 12-months, we have disclosed the following categories of personal information for a business or commercial purpose:

• Category A (name, address and email address)

We disclose your personal information for a business or commercial purpose to the following categories of third-parties:

• Our third-party service providers
• Our affiliated websites and businesses in an effort to bring you improved service across our family of products and services, when permissible under relevant laws and regulations
• Other companies to bring you co-branded services, products or programs
• Third parties that help us advertise, products, services or membership with us to you
• Third parties to whom you or your agents authorize us to disclose your personal information in connection with products or services we provide to you
• Third parties or affiliates in connection with a corporate transaction, such as a sale, consolidation or merger of our financial institution or affiliated business; and
• Other third parties to comply with legal requirements such as the demands of applicable subpoenas and court orders; to verify or enforce our Terms of Use, our other rights, or other applicable policies; to address fraud, security or technical issues; to respond to an emergency; or otherwise to protect the rights, property or security of our customers or third parties

V. SELLING PERSONAL INFORMATION

We do not sell your personal information for monetary consideration. We do not share your Personal Information with nonaffiliated third-party companies except as provided by our Member Privacy Policy . However, there may be instances where we disclose or share your information with a third party for other valuable consideration. When we refer to “sell,” “selling,” “sale” or “sold” in this Privacy Policy, we are referring to disclosure or sharing of personal information for valuable consideration other than money.

In the preceding 12-months, we have not sold (shared) personal information for a business or commercial purpose.

While we do not sell or share your Personal Information except as set forth in this Policy, we are aware that you may choose to do so in order to use the services of third parties. For example, you may have authorized some third-party companies to access your Personal Information and account data to offer financial information and services such as account aggregation (consolidating your financial account information from different sources), making payments via a website or mobile application, and tax preparation. Because these third-party companies have access to your Personal Information and account data and may use your account sign in credentials in order to provide the service, we recommend you use caution when granting such access to third-party companies.

Some of these third-party companies may use other companies to assist them with providing services or with accessing your Personal Information or account data. Any one or all of these companies may be storing your Personal Information or account data. We are not responsible for the use or disclosure of any Personal Information or account data accessed by or on behalf of any company or person to whom you provide your Credit Union sign in credentials or account information. We do not control the privacy, security, or accuracy of your Personal Information that may be held by these third-party companies, which are governed by the third-party’s privacy policy and data security program. We are also not responsible for any fees associated with these third-party services.

When you provide your sign in credentials to your Alpena-Alcona Area Credit Union accounts to a third party, you will be deemed by us to have authorized all transactions or actions initiated by that third party using the access information you provided, whether or not you are aware of the specific transaction or action. If you decide to revoke the access authority you previously gave to a third party, we strongly recommend that you change your Alpena-Alcona Area Credit Union password to ensure that the party cannot continue to access your account. For security and other reasons, Alpena-Alcona Area Credit Union reserves the right to block or disable third-party access to any account without notice.

VI. YOUR RIGHTS AND CHOICES

This section describes your rights and choices regarding how we collect, share, use, and protect your personal information, how to exercise those rights, and limits and exceptions to your rights and choices.

1. Exceptions. Your rights and choices as described in this Section VI are not applicable in all instances. Specifically, these rights and choices will not apply to you:

• If you are not a California resident

• If we collected Personal Information covered by certain federal or state privacy laws, including the Fair Credit Reporting Act (FCRA), the Gramm-Leach-Bliley Act (GLBA), the California Financial Information Privacy Act (FIPA), and the Driver’s Privacy Protection Act of 1994.

• If the information is “aggregated information” that relates to a group or category of consumers, from which consumer identities have been removed, that is not linked or reasonably linkable to any consumer or household, including via a device

• If the information is “deidentified information” that cannot reasonably identify, relate to, describe, be capable of being associated with, or be linked, directly or indirectly, to you, provided that we have: (i) implemented technical safeguards that prohibit reidentification of your information; (ii) implemented business processes that specifically prohibit reidentification of the information; (iii) have business processes to prevent inadvertent release of deidentified information; and (iv) make no attempt to reidentify the information

• If the information is publicly available from government records

2. Access to Specific Information and Data Portability Rights. If the above exceptions are not applicable, and you have not made this request more than twice in a 12-month period, you have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months from the date we receive your request. Once we receive and confirm your request and verify that the request is coming from you or someone authorized to make the request on your behalf, we will disclose to you or your representative:

• The categories of personal information we collected about you
• The categories of sources for the personal information we collected about you
• Our business or commercial purpose for collecting or selling that personal information
• The categories of third parties to whom we sold or disclosed the category of personal information for a business or commercial purpose
• The business or commercial purpose for which we sold or disclosed the category of personal information
• The specific pieces of personal information we collected about you in a form that you can take with you (also called a “data portability request”)

3. Deletion Request Rights. You have the right to request that we delete any of your personal information that we collect from you and retained, subject to certain exceptions. Once we receive and verify your request, we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies. We may deny your deletion request if retaining the information is necessary for us or our service providers to:

• Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you.
• Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity; or prosecute those responsible for that activity.
• Debug to identify and repair errors that impair existing intended functionality.
• Exercise free speech, ensure the right of another consumer to exercise his or her right of free speech, or exercise another right provided for by law.
• Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the businesses’ deletion of the information is likely to render impossible or seriously impair the achievement of such research, if you previously provided informed consent.
• Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.
• Comply with a legal obligation.
• Make other internal and lawful uses of that information that are compatible with the context in which you provided it.

4. Right of Correction. You have the right to request changes to any of your personally identifiable information that we have collected through our website and online services.

5. Exercising Access, Data Portability, Deletion and Correction Rights. To exercise the access, data portability, deletion and correction rights described above, please submit a verifiable consumer request to us by either:

• Calling us at 989-356-3577
• Visiting www.aaacu.com
• Visiting one of our branch locations.

You may only make a verifiable consumer request for access or data portability no more than twice within a 12-month period.

 

We cannot respond to your request or provide you with Personal Information if we cannot verify your identity or authority to make the request and confirm the Personal Information relates to you. Making a verifiable consumer request does not require you to create an account with us. We will only use Personal Information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.

When we receive a verifiable request from your authorized agent, which is any person or legal entity registered with the California Secretary of State that you have authorized to act on your behalf, we will require:

• Submission of a written document signed by you with your permission for the authorized agent to submit a verifiable request on your behalf and require the authorized agent to verify its own identity to us; or
• Require your authorized agent to furnish a copy of a power of attorney pursuant to California Probate Code sections 4000 to 4465 and require the authorized agent to verify its own identity to us.

 

We will deny a request from an agent that does not submit proof that they have been authorized by you to act on your behalf and cannot verify their own identity to us.

We endeavor to respond to a verifiable consumer request within 45 days of its receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing. We will provide the notice by mail to account holders and non-account holders by mail.

 

Any disclosures we provide will only cover the 12-month period preceding the verifiable consumer request’s receipt. If applicable, the response will also explain the reasons we cannot comply with a request. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance. We do not charge a fee to process or respond to your verifiable consumer request.

 

F. The Right to Opt-Out of the Sale of Personal Information. You have the right to opt-out of the sale of your personal information. To exercise this right, please complete the Notice of Right to Opt-Out.

G. Right of Non-Discrimination. We will not discriminate against you for exercising any of your rights in this Privacy Policy and under applicable laws. Unless permitted by law, we will not:

 

• Deny you goods or services
• Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties
• Provide you a different level or quality of goods or services
• Suggest that you may receive a different price for goods or services or a different level or quality of goods or services

VII. DO NOT TRACK (“DNT”) SIGNALS

Due to a lack of consistent standards across browsers, our Sites may not respond to “do not track” browser settings. We do not monitor your online activities after you leave our Sites.

 

VIII. CHANGES TO OUR PRIVACY POLICY

We reserve the right to amend this Privacy Policy at our discretion and at any time. When we make changes to this Privacy Policy, we will notify you by email or through a notice on our website homepage.

 

IX. CHILDREN’S ONLINE INFORMATION PRIVACY

Our website is not intended for children under the age of 13. We do not knowingly collect, maintain, or use personally identifiable information from our website about children under the age of 13 without parental consent. For more information about the Children’s Online Privacy Protection Act (COPPA), visit the Federal Trade Commission website: www.ftc.gov.

 

X. LINKING TO THIRD-PARTY WEBSITES

We may provide links to websites that are owned or operated by other companies ("third-party websites"). When you use a link online to visit a third-party website, you will be subject to that website’s privacy and security practices, which may differ from ours. You should familiarize yourself with the privacy policy, terms of use and security practices of the linked third-party website before providing any information on that website. We are not responsible for the third-party website’s use, collection, sale or sharing of your personal information.

 

XI. SECURITY

To protect your Personal Information from unauthorized access and use, we use security measures that comply with applicable federal and state laws. These measures may include Secure Socket Layer (SSL), Transport Layer Security (TLS), or a similar encryption standard technology. SSL is a security protocol for data transfer on the Internet. This technology scrambles your account information as it moves between your Internet-enabled device’s browser and our computer system. This secure session helps protect the safety and confidentiality of your information when you bank with us online. We also limit access to your Personal Information to those who need it to do their jobs.

XII. CONTACT INFORMATION

If you have any questions or comments about this Privacy Policy, the ways in which we collect and use your Personal Information, your choices and rights regarding such use, or wish to exercise your rights, or to request changes to any of your personally identifiable information that we have collected, please do not hesitate to contact us at:

Phone: 989-356-3577 or 800-443-3577

Website: www.aaacu.com

Email: info@aaacu.com (with “Privacy” in the subject line)

Mail: Alpena Alcona Area CU, attn Privacy, PO Box 515, Alpena, MI 49707

Member Service Secure Chat Policy

Alpena Alcona Area Credit Union Member Service Secure Chat Disclosure

 

Welcome to Alpena Alcona Area Credit Union’s secure chat service (“Service”). Please read this disclosure carefully before using the Service. By continuing, you acknowledge and agree to the following:

 

Purpose of This Chat. This Service is provided for you to communicate with Alpena Alcona Area Credit Union (“AAACU”) staff regarding your accounts, products, services, and other general inquiries. The Service is intended for non-urgent matters only.

 

Urgent Matters — Do Not Use Chat. Do not use this Service to report a lost or stolen cards, suspected fraud, identity theft, or any other time-sensitive matter. For urgent matters, please call us at 800-443-3577 or visit any branch during business hours.

 

Hours of Operation. The Service is generally staffed Monday-Thursday from 9:00 am to
5:00 pm and Friday from 9:00 am to 6:00 pm Eastern Standard Time as observed in Alpena, Michigan. Messages sent outside of operating hours will be answered the next business day. We do not guarantee an immediate response, and unanswered messages should not be relied upon as notice to AAACU.

 

Service Availability. AAACU makes no warranty that the Service will be available at all times or that messages will be delivered without delay. We are not liable for damages arising from service interruptions, delays, outages, or other unavailability of the Service. If you need to reach us when the Service is unavailable, please call 800-443-3577 or visit any branch during business hours.

 

Identity Verification. Before discussing account-specific information, AAACU may require you to enter an access code sent to your email or mobile phone. AAACU staff will never ask you for this code, and you should never share this code with any other person. If we do not send you an access code, our staff may instead ask you additional verification questions to confirm your identity. We may decline to discuss account-specific matters through the Service if we are unable to verify your identity to our satisfaction.

 

Information You Share in the Service. Messages, files, and other content exchanged through this Service are retained as part of your member service record. Please do not share any information through this Service that you do not wish to be retained. We will treat personal information you share through the Service in accordance with our Privacy Policy, available at https://www.aaacu.com/disclosures or upon request.

 

Recording and Quality Review. Chat sessions may be recorded, reviewed, and retained by AAACU for training, quality assurance, regulatory, and compliance purposes.

 

Notifications. When you participate in the Service with AAACU, you may receive email or SMS text-message notifications about new messages or chat invitations. Standard message and data rates from your carrier may apply. You may opt out at any time by clicking the unsubscribe link included in the notification, or by contacting us at 989-356-3577.

 

No Financial, Legal, or Tax Advice. Information provided through this Service is for general informational purposes only and is not financial, legal, tax, or investment advice. You should consult a qualified professional for advice specific to your situation. Products and services we may discuss are subject to eligibility, terms, conditions, fees, and other disclosures, which are available in the relevant account agreement, disclosure, or fee schedule.

 

Federal Insurance. AAACU is federally insured by the National Credit Union Administration (NCUA).

 

Third-Party Service Provider. The Service is provided to AAACU by a third-party service provider, eDOC Innovations, Inc. Your use of the Service is also subject to the eDOCChat End-User License Agreement, which is presented separately and which you must accept in order to use the Service.

 

Changes to This Disclosure. Alpena Alcona Area Credit Union may update this disclosure from time to time. The current version will always be available within the Service and on our website at https://www.aaacu.com/privacy. When this disclosure is updated, you will be asked to review and accept the revised version before continuing to use the chat service.

 

Questions? If you have questions about this disclosure, please contact us at info@aaacu.com or 800-443-3577.

---

Alpena Alcona Area Credit Union — Member Service Secure Chat Disclosure — effective June 5, 2026.

Online Privacy Policy

Alpena Alcona Area Credit Union values your privacy. This Online Privacy Policy (Policy) applies to this Alpena Alcona Area Credit Union (AAACU) online interface (i.e., website, social media, chat or mobile applications) and any AAACU affiliate or subsidiary online interface that links to this Policy, (each, a Site, and, collectively, Sites). The term "AAACU" or "we" or "us" or "our" in this Policy refers to affiliates or subsidiaries of AAACU that link to this Policy. This Policy describes how Sites may collect, use and share information from or about you, and explains how information may be collected and used for advertising purposes.

For account holders and visitors to this Site, we will use and share any information that we collect from or about you in accordance with the AAACU Privacy Notice, which provides choices in the use and sharing of information. By using the Site, you agree to the terms and conditions of this Policy.

What information do we collect from you?

If you engage with AAACU, we may collect:

• Interaction transcripts on behalf of the organization.
• Information related to your browsing, purchasing and online behavior and activities.
• Machine information, such as IP address, operating system and type of device used.

If you visit our website, we may also collect:

• Information you provide to us, including personal information, such as your name and contact information, surveys, transcripts and recordings of your communications with us.
• Machine information, such as web browser, IP address, page view tallies, time spent on each page, page browsing information.

How does AAACU collect information?

We collect information when you engage with us, which may be enabled on our website or in our mobile applications. We may also collect info in the following ways if you visit our websites or use our applications:

• Your communications with AAACU.
• Your requests for information and other content.
• A technical support request you submit.
• Your participation in an AAACU promotion.
• Recruitment and job applications.

We may also collect information from our direct interactions with you, publicly available data or data provided by third-party sources, such as marketing opt-in lists.

Many websites and apps use Google services to improve their content. When they integrate Google services, these sites and apps share information with Google. The Credit Union uses Google Analytics to better understand how users are visiting and using our sites. Google Analytics collects information such as how often users visit the Site, what pages they visit when they do so, and what other sites they used prior to coming to this Site. Google Analytics collects the IP address assigned to you on the date you visit this Site, rather than your name or other identifying information. The Credit Union does not combine the information collected through the use of Google Analytics with personally identifiable information. Although Google Analytics plants a cookie on your web browser to identify you as a unique user the next time you visit the Site, the cookie cannot be used by anyone but Google. You may further review information about how Google Analytics collects and processes data and how to control the information sent to Google by reviewing ‘How Google uses information from sites or apps that use our services’: https://policies.google.com/technologies/partner-sites.

How does AAACU use the information it collects?

AAACU uses the information to provide and improve services for the benefit of members and end users. If you engage with AAACU, we may use the information we collect as directed by the end user. For example, your information may be used to determine whether to deploy a communication offer to allow the AAACU to engage with you.

If you visit our websites or use our application, we may also use your information to:

• Deliver information requested by you,
• Deliver marketing materials to you,
• Consider you for employment with AAACU (if you submit an application).

AAACU may retain your information for a period of time. For example, if you engage with an AAACU application or product, we may retain your information for the period of time agreed on with the application vendor. We may also retain your information during the period of time needed for AAACU to pursue our legitimate business interests, conduct audits, comply with our legal obligations, resolve disputes, and enforce our agreements.

Does AAACU use cookies?

We set and use cookies and other identification technologies for record keeping purposes and to enhance your experience, if you choose to visit our websites or use our application websites.

Your choice

Web browsers are usually set to accept cookies. However, if you prefer not to receive cookies, you typically have the option of setting your browser to refuse cookies. If your browser is set to refuse cookies, it is likely that some of the functionality offered by AAACU will not be available or will not work as effectively for you.

For further information about cookies, including how to see what cookies have been set on your device and how to manage and delete them, you can visit www.allaboutcookies.org.

Sharing of information

AAACU does not sell, trade or rent personal information provided by you in any transcript, survey or recording for direct marketing or any other purpose, except as provided in this privacy policy or with your permission. AAACU does not disclose the contents of transcripts, surveys or recordings other than to service members or end users, other than as provided in this privacy policy or with your permission.

For legal reasons we may share your information if we reasonably believe that it: (i) is necessary to comply with a legal process (such as a court order, subpoena, or search warrant) or other legal requirement of any governmental authority; (ii) would potentially mitigate our liability in an actual or potential lawsuit; (iii) is necessary to enforce this privacy policy or any other agreement in place between you and AAACU; (iv) is necessary to investigate and prevent unauthorized transactions or other illegal activities; and/or (v) is otherwise necessary or appropriate to protect our rights or property or the rights or property of any person or entity.

We may aggregate information so that it isn't personally identifiable and use and share such aggregated information for training and quality assurance purposes and to deliver and improve services for the benefit of members and end users.

Access and changes to personal data

If you elect to engage in any communication or engagement session with AAACU, it is up to you to decide what, if any, information to provide during such session. Depending on your request, it may not be possible for us to address all of your questions without further information from you. If you do not wish to provide certain information, then you should not do so.

How can I review, correct, delete, or receive a copy of my information with AAACU or withdraw my consent from AAACU processing my personal data?

If you have signed up to receive AAACU’s marketing or advertising communications, you may, at any time, opt out of receiving further communications by clicking on the opt-out link at the bottom of a marketing or advertising email you receive. You may also contact us at info@aaacu.com with “Marketing Opt Out” in the subject line to opt out or to request changes to your personal information.

You may request to review, correct, delete, or receive a copy of any of the personal information you’ve provided to AAACU or withdraw your consent to AAACU processing your personal data by either contacting the credit union directly or by contacting us at info@aaacu.com and we will respond within a reasonable period of time.

How does AAACU keep my information secure?

We use security measures designed to protect against the loss, misuse and alteration of the information under our control. AAACU interactions are encrypted during transmission. In addition, transcripts that we store are maintained and archived on secure, hardened servers that are hosted on highly secure data centers. Access to this data is protected by multiple layers of controls, including firewalls, role-based access controls, authentication mechanisms and monitoring. Data is backed up, and archives are stored off-site in a secure location. We also offer additional encryption functionality and data masking to our customers.

Children’s Online Privacy Protection Act (COPPA)

AAACU websites, social media and applications are not directed to individuals under 13. AAACU does not knowingly collect personal information from individuals under the age of 13. If you are a parent of an individual under 13 and believe your child has provided personal information to AAACU please contact us at info@aaacu.com with “COPPA” in the subject line where you may request to exercise your applicable access, rectification, cancellation, and/or objection rights. AAACU reserves the right to immediately delete the information of any individual, to the extent permitted by law, who it believes is under the age of 13.

Miscellaneous

We recommend that you review this privacy policy periodically, as we may update it from time to time. Your use of our websites and apps, as applicable, constitutes your consent to the new privacy policy to the fullest extent permitted by law.

We are not responsible for and do not control the privacy practices of any other third party. We encourage you to review the privacy practices of each third party.

We welcome your feedback on our privacy policy. Please send any comments or questions to info@aaacu.com with “Privacy” in the subject line or to Privacy - Alpena Alcona Area Credit Union, PO Box 515, Alpena, MI 49707-0515