PopSchools values the trust its customers place in it to professionally and securely provide services and store data related to their employment and recruiting. With this trust in mind, PopSchools invested time and resources to become compliant with the Safe Harbor program that bridged the gap between the United States and European Union privacy laws. PopSchools also examines the developing law in jurisdictions outside the U.S. and EU. In this context, PopSchools has decided to become compliant with the General Data Protection Regulation that became effective in the EU in May 2018. PopSchools adheres to the Privacy Shield Principles.
In our efforts to heighten the protections we provide our customers around the world, we have implemented new changes to our policies and practices. Our efforts on behalf of our customers will continue. We will keep you informed as we do so.
As always, if you have any questions or concerns about our handling of your personal information, you may contact our privacy officer at email@example.com.
This Privacy and Security Policy is provided for the benefit of customers and clients of PopSchools, Inc. (“PopSchools”) as well as other consumers and parties who seek information from or about PopSchools and/or its website(s), particularly popschools.com (“Website” or “popschools.com”), and/or applications (“Apps”) (collectively, “PopSchools Services”).
1. OPENING STATEMENTS
1.2 Our Commitment to Privacy
At PopSchools, we respect the privacy and the confidentiality of our customers’ information, particularly our customers’ PII (also commonly referred to as personally identifiable information) (“PII”). We are committed to keeping confidential the PII you share with us. This Privacy and Security Policy explains how PopSchools collects, uses, discloses and protects the information we obtain.
1.3 Applicability of Privacy and Security Policy
Our Privacy and Security Policy applies to all individuals and entities from whom or for the benefit of whom we receive PII, whether it be collected through our corporate owned websites; Apps; traditional mailing and/or faxing channels; telephone or electronic communications; from some other medium; and/or from our clients.
1.4 Website and Apps Not Directed to Minors
The Website is a professional website directed toward employers and staffing companies (either directly as customers of PopSchools or through Staffing Customers that use PopSchools Services) seeking to hire individual job seekers, individual consultants, or consultant groups or consultant groups for employment. In this context, the website also accepts individuals as customers who respond to certain invitations to use PopSchools Services. As such, an individual must be aged sixteen (16) or over to create an account through the Website. As such, the Website is not directed toward children or minors. This also applies to all PopSchools Apps.
1.5 U.S.-EU Framework, Privacy Shield, and GDPR.
PopSchools values the trust its European Union (“EU”) customers place in it to professionally and securely provide services and store data. As such, PopSchools maintains an ongoing commitment to EU privacy laws and policies. In fact, PopSchools maintains an ongoing commitment to treat all personal data received from the European Union or elsewhere, under the Principles of the Privacy Shield and the EU General Data Protection Regulation (“GDPR”).
Additionally, PopSchools has proceeded one step further in its efforts to meet the heightened requirements of EU data protection. PopSchools makes every effort to comply fully with the applicable principles of the European Union General Data Protection Regulation (“GDPR”).
It also subjects itself to the investigatory and enforcement powers of the Federal Trade Commission, Department of Commerce, Department of Transportation, and/or any other applicable enforcement and/or investigatory authority.
1.6 Onward Transfer Liability
2. PERSONAL INFORMATION COLLECTED AND HOW IT IS USED
2.1 Personally Identifiable Information or PII
is any information that would, by itself, identify you or tend to identify you as a particular individual or entity. This PII may include, but not be limited to, your name, your address, credit card number, bank account information, and/or personal identification number (such as a social security number or driver’s license number).
2.1.1 PII does not include any public information that is readily attainable through federal, state or local public record distribution channels.
2.1.2 PII does not include any information that, by itself, could not identify you as a particular individual or entity.
2.1.3 PII also does not include raw data that becomes aggregated for statistical purposes and cannot, thereafter, be identified with you as a unique individual or entity.
2.1.4 PopSchools does consider your Internet Protocol (“IP”) address to be PII and will treat it as such.
2.2 Information Collected
2.2.1 PopSchools collects information that is considered PII and other information that, by itself, would not be considered personally identifiable information (“Non-PII”).
2.2.2 When you create an account and register for any of our PopSchools Services (whether through a Website, App, or other portal), we collect information submitted by you including, but not limited to, your full name, company name (if applicable), email address, phone number, and IP address. We use this information to identify our customers and send notifications related to the use of our PopSchools Services. We reserve the right to request additional information from you.
2.2.3 For our business customers, PopSchools shall also collect information relating to one or more of your financial accounts for purposes of processing payments to provide you with PopSchools Services. This information may likely contain both PII and Non-PII depending on the nature of the account holder information.
2.2.4 PopSchools provides its services for free to individuals invited to use PopSchools by one of its business customers. As this constitutes the only basis for which individuals can use PopSchools Services at this time, there exists no reason for an individual customer to provide financial information to PopSchools or any of its business customers inviting such individuals to use PopSchools Services. Based on the foregoing, business customers of PopSchools are expressly prohibited from requesting and/or collecting consumer financial information through any PopSchools Services. Should any consumer be requested to provide such information, please report it immediately to PopSchools at firstname.lastname@example.org.
2.3 Collecting and Using Personally Identifiable Information
2.3.1 PopSchools will explain how it intends to use PII either before it collects the information (such as in this Privacy and Security Policy) or contemporaneously with the solicitation of such information. Exceptions may exist where the intended use is obvious to a reasonable person.
2.3.2 Generally, PopSchools collects personal identifiable information when an individual registers with or uses any of the PopSchools Services. This information typically includes, at a minimum, a full name, company name (if applicable), email address, phone number, mobile phone number, and any additional information provided by the account holder that could identify that account holder. For persons seeking employment, it should be recognized that a collection of information that would otherwise be considered non-PII could transform into PII (eg employment history, employment position at a company). Consequently, an individual account holder must be cautious in making public through any of the PopSchools Services information that could identify them where they seek to keep private their search for employment. The same can be said of consultants and employers in certain circumstances.
2.3.3 We will use the PII collected only for the purposes explained to you. Further, we limit the collection of PII to only that information which is necessary for the purposes explained to you.
2.3.4 Generally, we use the PII collected and/or received about you in connection with our Apps, Website, PopSchools Services, and their various features. We also use information collected and/or received about you in connection with other users and advertisers that purchase ads through the Apps or on the Website.
For example, we may use the information we receive about you (a) as part of our efforts to keep PopSchools safe and secure; (b) to provide PopSchools Services; (c) to make suggestions to you and other users on PopSchools; and (d) provide support.
Granting us this permission not only allows us to provide PopSchools as it exists today, but it also allows us to provide you with innovative features and services we develop in the future that use the PII we receive about you in new ways.
We may use your PII to communicate with you for the foregoing and other reasons by email, text message, phone call, or other electronic, written or oral communication method, unless you expressly indicate to PopSchools not to use a particular method of communication.
While you are allowing us to use the PII we receive about you, you always own all of your information. Your trust is important to us, which is why we don’t share PII we receive about you with others unless we have received your express permission for the information to be used for such purpose.
Additionally, we may use aggregated information derived from PII to improve the PopSchools Services and any related matters thereto.
2.3.5 Unless we are required to do so by law, we shall not obtain your consent before collecting PII about you from parties other than PopSchools. Rather, PopSchools shall presume that you have previously provided such consent to any such third party from whom PopSchools obtains such information. This only applies to information provided by third parties to PopSchools. PopSchools does not provide third parties with access to your account information and only shares your information with third parties where we have your consent to do so.
2.3.6 In the normal course of its business operations, PopSchools restricts the use of your PII to PopSchools’ personnel and its Strategic Partners. However, by using PopSchools Services, you may necessarily disclose PII to potential employers and Staffing Customers when they access your information, profiles, interviews, and other Content. Indeed, as individuals will only be using PopSchools Services at the invitation of an employer or staffing company, you necessarily will be providing such entity with information when you respond to the invitation.
2.3.7 We shall not sell your PII in the normal course of business operations. Should all or any part of PopSchools’ business operations be sold, this paragraph shall not by itself restrict the transfer of your PII as part of the Website sold to a third party. However, the ability to transfer such information may be governed by law in your applicable jurisdiction. In such cases, PopSchools shall comply with applicable law, provide notice, and seek consent prior to any such transfer.
2.3.8 We may also use the PII you provide in registering with and using PopSchools to inform you by electronic mail, phone, text or other communication method of additional products and services which you might be interested, which may include our periodic e-newsletters and other promotional communications from PopSchools.
2.4 Disclosing Personal Information
220.127.116.11 PopSchools may use PII in the normal course of providing the PopSchools Services; to operate or improve the Apps, Website and/or PopSchools Services; to outsource certain services to Strategic Partners; to complete a transaction that has been requested; to develop aggregate information; and/or as otherwise disclosed to you.
18.104.22.168 In particular, by the very nature of the PopSchools Services, information submitted by our customers seeking employment or employees will be shared with other customers as applicable to the customers’ particular use of PopSchools Services.
22.214.171.124 Additionally, Staffing Customers that use PopSchools Services may provide their employer customers, Third-Party Customers, limited information about PopSchools customers for the specific purpose of matching individuals using PopSchools Services to the needs of their employer Third-Party Customers. In some cases, Third-Party Customers may not be PopSchools Customers. PopSchools requires its Staffing Customers to ensure that their Third-Party Customers agree to process the information at the same level of privacy protection as outlined in the Privacy Shield Principles. Upon notice of unauthorized processing by Third-Party Customers or PopSchools Customers, PopSchools will take reasonable and appropriate steps to stop and remediate unauthorized processing.
126.96.36.199 In some cases, PopSchools Customers may be able to download your videos and other public information, and store them on, their computers and servers. Other PopSchools Customers may also be able to use shared links by which they provide related parties who might not also be PopSchools Customers access to your content.
2.4.3 Strategic Partners. PopSchools may employ, engage or retain certain trusted third parties (“Strategic Partners”) to perform functions and/or provide services on its behalf, such as web hosting, integrated services, or advertising. PopSchools will share PII with these Strategic Partners only to the extent necessary to perform the functions and/or provide the services for which they have been employed, engaged or retained. PopSchools shall also secure contractual obligations from our Strategic Partners to maintain the privacy and security of the PII shared with them at the same level of privacy protection as outlined in the Privacy Shield Principles. Upon notice of unauthorized processing by a Strategic Partner, PopSchools will take reasonable and appropriate steps to stop and remediate unauthorized processing. Some of the Strategic Partners that may receive access to your PII to provide the PopSchools Services have been listed below.
2.4.4 Business Transfers. PopSchools reserves the right to sell, transfer or otherwise share some or all of its assets, including PII, in connection with a sale of assets; a merger, acquisition, or reorganization; or, filing for bankruptcy. You will have the opportunity to opt out of any such transfer if the planned processing of your information by the purchaser differs materially from that set forth in this Privacy and Security Policy.
2.4.5 Legal Compliance. PopSchools may be required to disclose any information about you and/or Content created by you in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. We may also disclose any information about you and/or Content created by you as we, in our sole discretion, believe necessary or appropriate to: (1) comply with an order from a court of competent jurisdiction, regulatory agency, and/or other governmental authority; (2) respond to claims, court orders, or other legal process (including subpoenas); (3) to enforce the terms of this and other PopSchools agreements as well as to protect the property and rights of PopSchools, its Strategic Partners or other third parties; (4) to protect, in PopSchools’ sole discretion, the public or any person from harm; (5) to investigate, prevent, stop, or take other action regarding any action perceived to be fraudulent, illegal, unethical, or legally actionable in PopSchools’ sole discretion; and/or, generally, (6) to comply with the law.
2.4.6 Notice. Unless restricted from doing so, PopSchools will attempt to notify you before it releases any of your PII or Content pursuant to (1) and (2) in paragraph 2.4.5 only. In such cases, PopSchools will also provide you with general information on how you may seek to block such a release of information and/or direct you to resources that can provide such general information. The provision of such general information to you is not and should not be construed as providing you with legal advice. Additionally, PopSchools is under no other obligation to assist you in challenging or opposing a release of your information
2.4.7 Onward Transfer Liability. PopSchools may be liable for onward transfers of personal data to third parties in violation of this policy and the Privacy Shield.
2.5 Non-Personally Identifiable Information
2.5.1 In addition to collecting PII as previously described, PopSchools also collects other non-PII.
2.5.2 Non-PII collected by PopSchools may be utilized without restriction
2.5.3 Although non-PII can be used in a number of ways, you can be assured that the use of the non-PII cannot identify you as a particular individual.
2.5.4 Because non-PII cannot be used to identify you, PopSchools may in its discretion provide non-PII to other persons or entities.
Information Obtained From the Use of PopSchools’ Websites
2.6.1. Cookies can be defined as bits of data stored on your computer that allow website(s) to identify your browser and session.
188.8.131.52. If you reject all cookies, you may not be able to use the PopSchools Services or products that require you to “sign in” and you may not be able to take full advantage of all offerings.
184.108.40.206. Most web browsers automatically accept and collect Cookies. However, most browsers also allow you to configure them to accept all cookies, reject all cookies, or notify you when a cookie is set. Depending upon your web browser’s security settings, you may have the ability to reject all cookies.
220.127.116.11 The PopSchools Website uses its own cookies for a number of purposes including, but not limited to:
- Requiring you to re-enter your password after a certain period of time has elapsed to protect you against others accidentally accessing your account contents;
- Keep track of preferences specified by our users while using the PopSchools Website;
- Estimate and report our total audience size and traffic; and,
- Conduct research to improve the content and services provided on the PopSchools Website.
- Identify to Third Parties that you have visited our Website
18.104.22.168 More specifically, when you use PopSchools Services, cookies may be placed on your computing device that informs third parties you visited our services. Because of this, you may receive advertisements relating to PopSchools. Although PopSchools provides these ads to third parties and requests that they be placed when the advertising services find our cookies, we do not control the timing, location, and placement of the ads. So, though PopSchools controls generally when and to what type of individual or cookie receives an ad, we do not control whether a specific user or consumer receives an ad. Should you wish to cease receiving such advertisements, you should opt out of these re-targeting services directly on the third party websites or platforms where possible.
2.6.2. Google AdWords Marketing
22.214.171.124. PopSchools may use, from time to time, Google Adwords marketing campaigns to promote its products and services. In particular, PopSchools intends to use Google AdWords “Remarketing” campaigns
126.96.36.199. In using Google Adwords marketing campaigns, Google will place a cookie on your computer when you visit PopSchools’ website(s). As you leave PopSchools’ website(s), this cookie will later enable banners and other materials to appear through which you can return to PopSchools’ website(s).
188.8.131.52. The foregoing being said, through the use of any Google AdWords marketing campaign, PopSchools:
- SHALL NOT run an interest-based advertising campaign that collects PII;
- SHALL NOT use or associate PII with remarketing lists, cookies, data feeds, or other anonymous identifiers;
- SHALL NOT use or associate targeting information, such as demographics or location, with any PII collected from any Google AdWords ad or landing page associated with it;
- SHALL NOT target children under the age of 13 through any Google AdWords campaign;
- SHALL NOT share any PII with Google through PopSchool’s remarketing tag or any product data feeds which might be associated with PopSchools’ ads;
- SHALL NOT, when creating a remarketing list, use any sensitive information (as defined by Google), or products associated with such sensitive information, about visitors to PopSchools’ Website(s), any of its Webpages, or Apps, whether PopSchools collected it directly or associated it with a visitor, based on the visitor’s profile or behavior on PopSchools’ website(s), webpages, and/or through its Apps;
- SHALL NOT create a remarketing list or ad that seeks to reach people through prohibited methods; and,
- SHALL NOT create or produce ad content that implies knowledge of PII or sensitive information.
184.108.40.206. PopSchools has no objection to Google providing notice or labels to disclose interest-based advertising to its users.
220.127.116.11. PopSchools has no objection to Google displaying to its users the remarketing lists, including those of PopSchools, upon which they appear.
18.104.22.168. For your protection, Google will not disclose PopSchools remarketing lists or other similar audience lists to another advertiser without PopSchools’ consent. At this time, PopSchools shall not permit such disclosures.
2.6.3. Browser and Session Information
PopSchools may collect information about your browser and session at the Website and/or using the Website Services.
2.6.4. IP Addresses
22.214.171.124. PopSchools maintains a log of Internet Protocol (IP) addresses when PopSchools computers, servers, Services, and/or websites (including, the Website) have been accessed. An IP address by itself does not allow us to collect additional PII about you.
126.96.36.199. IP addresses may be used for various purposes including, but not limited to:
- Diagnose and prevent service or technology problems reported by our users or engineers that are associated with the IP addresses controlled by a specific web company or ISP;
- Estimate the total number of users visiting a PopSchools computer, server and/or website from specific geographical regions.
- Help determine which users have access privileges to certain content, services or resources offered; and,
- Monitor and prevent fraud and abuse.
188.8.131.52. OTHER THAN YOUR IP ADDRESS, PopSchools DOES NOT DIRECTLY COLLECT ANY PERSONALLY IDENTIFIABLE INFORMATION ABOUT YOU UNLESS YOU VOLUNTARILY PROVIDE US WITH THIS INFORMATION.
2.7 Data Retention
2.7.2. The length of time for which PopSchools retains PII and other information will vary depending on the nature of the services for which the information has been collected and the nature of the information.
2.7.3. Although this period may extend beyond the end of your relationship with PopSchools, it will be retained for only so long as necessary for PopSchools to respond to any issues arising from your relationship with PopSchools.
2.7.4. When PopSchools no longer needs or requires your personal information in the normal course of business operations and/or due diligence, or where a business customer no longer needs or requires your personal information and either consents or requests to the deletion of such content, PopSchools will destroy, delete, erase or convert information to an anonymous form without notice to you.
2.7.5. Depending on the package of services purchased, PopSchools may delete information including, but not limited to, stored messages, interviews, videos, audio, other content, and records of your account without notice to you. PopSchools recommends that you backup on your own computer any critical and important information prior to allowing your PopSchools Services to terminate or expire.
2.7.6. Should your account be terminated, PopSchools may immediately and permanently delete all stored messages, interviews, videos, audio, other content, and records of your account without notice to you.
2.7.7 The foregoing being said, the employer or staffing company for whom you have provided information may be required to retain information beyond PopSchools’ direct use of such information. Because of this, PopSchools must defer to the specific employer or staffing companies’ retention requirements.
3.1. PopSchools may obtain personal information about you through a variety of sources. For each source or method, the manner of consent may differ.
3.2. In general, PopSchools operates on an “Opt-IN” basis. That is, PopSchools will obtain your consent to use the information provided to it by describing the intended use and requesting that you indicate your agreement.
3.3. At any time, you may expressly inform PopSchools you do not wish your information to be used in a particular manner through account settings. While there is no penalty to change your settings, PopSchools may not be able to provide certain services without the ability to use your information in particular internal settings.
3.4. Where PopSchools obtains information about a consumer from its customers or other third parties, PopSchools presumes that the consumer has previously provided appropriate consent to the party from whom PopSchools obtains the information. In any case, the consumer can be assured that this Privacy and Security Policy applies to any information obtained from a third party.
3.5 You have the right to object to targeted marketing.
4.1 You have the right to access your personal data. Subject to certain limitations imposed by applicable privacy laws, you have the right to request that PopSchools provide you with a copy of your account and/or personal information and/or information regarding how we have used that personal information.
4.2 Any requests for access to information should be directed to our Privacy Officer at the contact information provided below.
4.3 We will make every effort to respond to your request in a reasonable timeframe consistent with applicable law.
4.4 We provide you the means to correct much information that PopSchools may have about you. Where you cannot change incorrect information about you in our system, you may request incorrect information to be corrected at any time by contacting email@example.com.
4.5 We respect the right to delete information. However, as the employer or staffing company has obtained such information for their purposes and PopSchools serves as a Data Processor (AND NOT Data Controller), any requests for deletion of date made to PopSchools will be forwarded to the relevant data controller for handling.
5.1. PopSchools takes the issue of protecting your anonymity and personal information very seriously. PopSchools protects the information it obtains about you with appropriate, commercially reasonable safeguards and security measures consistent with standard information practices. These measures include commercially reasonable technical and procedural steps to protect your data from misuse, unauthorized access or disclosure, loss, alteration, or destruction.
5.2 For security purposes, PopSchools does not disclose all of its security measures. Be assured that PopSchools does employ commercially reasonable industry standard measures to protect your information. PopSchools may routinely complete audits of its systems.
6. DISPUTE RESOLUTION
6.1 Should you have any complaints with respect to PopSchools Services’ compliance with our Privacy and Security Policy, our Privacy Shield commitments, and our GDPR commitments, we encourage you to contact us directly to resolve any such complaints. PopSchools is committed to remedying any issues as they arise and expressly commits to resolve complaints about our collection or use of your personal information. We value our customers and their privacy. As such, this commitment reflects our general business philosophy but also complies with Privacy Shield and other applicable principles. Consequently, we want to hear from you should you have any issues regarding our privacy practices. You may send an email to firstname.lastname@example.org.
6.2 PopSchools has further committed to refer any unresolved complaints with respect to PopSchools Service’s compliance with our Privacy and Security Policy, our Privacy Shield commitments, or our GDPR commitments to JAMS, an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please contact or visit JAMS for more information:
You can submit a case or file a complaint at: https://www.jamsadr.com/file-an-eu-us-privacy-shield-or-safe-harbor-claim.
The services of JAMS are provided at no cost to you for any matters relating to the privacy of your data, our Privacy and Security Policy, our Privacy Shield commitments, and/or our GDPR commitments.
JAMS has been identified by us as an independent recourse mechanism to hear any such disputes.
6.3 Should you have any unresolved complaints with respect to PopSchools Service’s compliance with our Privacy and Security Policy, our Privacy Shield Commitments, or our GDPR commitments, you may also contact the Federal Trade Commission (“FTC”) (https://www.ftccomplaintassistant.gov/) as the appropriate statutory body that has jurisdiction over any claims related to our privacy practices. However, the FTC does not generally resolve individual consumer complaints.
6.4 For any of our European Union and UK customers, you also have the right to lodge a complaint with the applicable supervising authority. In compliance with the Privacy Shield Framework, you may be able to invoke binding arbitration in the event of unresolved complaints.
6.5 For general cases unrelated to the privacy of your data, our Privacy and Security Policy, our Privacy Shield commitments, or our GDPR commitments, you can still file a complaint at with JAMS at https://www.jamsadr.com/about/submit-a-case. Please note that use of a private mediation service such as JAMS for complaints unrelated to the subjects specified in 6.1-6.4, you will likely require fees to be paid.
7. DISCLAIMER AS TO THIRD-PARTY CONTENT
Although our corporate owned websites may contain links to other third-party websites and/or may be advertised on such third-party websites, PopSchools is not responsible for the privacy practices or the content of such websites and specifically disclaims any such responsibility. PopSchools does not monitor the privacy practices or content of these websites. If you have any questions about the privacy practices of a website other than a PopSchools owned website, you need to contact the Privacy Officer of the website about which you have a question.
As stated above, PopSchools cannot control the targeted advertising you receive when you leave our PopSchools Services. Depending on your settings, you may receive PopSchools advertisements off of our website because your browser contains retained data from PopSchools Services. While PopSchools provides third parties with advertisements and your computing devices may retain data that you visited PopSchools Services, we cannot control the computers or servers owned by third parties. You can adjust settings with some of these Third Parties to opt out of targeted advertising. You can also choose to use an incognito or other function that precludes retention of browser information. But. Modifications of your browser settings may affect the quality of PopSchools Services you receive.
7.1 EXTERNAL LINKS DISCLAIMER FOR WEBSITE
The Site may contain (or you may be sent through the Site links to other websites or content belonging to or originating from third parties or links to websites and features in banners or other advertising. Such external links are not investigated, monitored, or checked for accuracy, adequacy, validity, reliability, availability or completeness by us.
We do not warrant, endorse, guarantee, or assume responsibility for the accuracy or reliability of any information offered by third-party websites linked through the site or any website or feature linked in any banner or other advertising. We will not be a party to or in any way be responsible for monitoring any transaction between you and third-party providers of products or services.
7.2 TESTIMONIALS DISCLAIMER
The Site may contain testimonials by users of our products and/or services. These testimonials reflect the real-life experiences and opinions of such users. However, the experiences are personal to those particular users, and may not necessarily be representative of all users of our products and/or services. We do not claim, and you should not assume, that all users will have the same experiences. Your individual results may vary.
The testimonials on the Site are submitted in various forms such as text, audio and/or video, and are reviewed by us before being posted. They appear on the Site verbatim as given by the users, except for the correction of grammar or typing errors. Some testimonials may have been shortened for the sake of brevity where the full testimonial contained extraneous information not relevant to the general public.
The views and opinions contained in the testimonials belong solely to the individual user and do not reflect our views and opinions. We are not affiliated with users who provide testimonials, and users are not paid or otherwise compensated for their testimonials.
7.3 STATISTICS DISCLAIMER
Statistics and results are based on our collection of user data and self-reporting.
8. INCORPORATION OF OTHER APPLICABLE TERMS
8.2 As a business customer of PopSchools, you expressly agree that you shall and have met any and all requirements specified above that have been imposed upon it as to the quality and sufficiency of efforts to protect data and individual privacy.
8.3 DATA PROCESSING AGREEMENT (EU CUSTOMERS ONLY). For those PopSchools customers using PII from EU residents, we include here as part of our Privacy and Security Policy our Data Processing Agreement.
8.4 STANDARD CONTRACTUAL CLAUSES (EU CUSTOMERS ONLY). For our EU Customers, we will provide a copy of the EY Standard Contractual Clauses upon request.
9. PRIVACY OF CHILDREN
We make it a practice not to knowingly obtain and/or retain information about individuals under the age of sixteen (16). Indeed, no part of PopSchools Services is directed to anyone under the age of sixteen (16).
10. CALIFORNIA PRIVACY RIGHTS
California Civil Code Section 1798.83, also known as the “Shine The Light” law, permits our users who are California residents to request and obtain from us, once a year and free of charge, information about the categories of personal information (if any) we disclosed to third parties for direct marketing purposes and the names and addresses of all third parties with which we share personal information in the immediately preceding calendar year. If you are a California resident and would like to make such a request, please submit your request in writing to us using the contact information provided below.
If you are under 18 years of age, reside in California, and have a registered account with the Site , you have the right to request removal of unwanted data that you publicly post on the Site . To request removal of such data, please contact us using the contact information provided below, and include the email address associated with your account and a statement that you reside in California. We will make sure the data is not publicly displayed on the Site , but please be aware that the data may not be completely or comprehensively removed from our systems.
11. ADDITIONAL INFORMATION
11.1 When you post content on and/or through the PopSchools Services, you have the ability to post content which may include personally identifiable information or PII about yourself. You are responsible for the information you (a) post online; (b) post through use of the PopSchools Services; or, (c) share with another website that you link to from our Website. You do so at your own risk. PopSchools warns you to be careful in posting information accessible to the public.
11.2 If you post personal information online that is accessible to the public, you may receive unsolicited messages from other parties or other unwanted and possibly harmful contact. PopSchools warns you to be careful in posting information accessible to the public.
12. CUSTOMER OBLIGATIONS
13. REVISIONS TO PRIVACY AND SECURITY POLICY
13.2. PopSchools shall provide notice of such changes by posting the revised policies to the applicable PopSchools owned websites and by either (a) providing you a message the next time you login into your account or (b) sending you electronic mail to the email address you provided when creating your account.
13.3. With respect to this Privacy and Security Policy, you should visit our website at popschools.com from time to time to review the then-current terms. At any time, the current-posted policies govern and shall be binding.
For Additional Information or Questions, Contact Our Privacy Officer
PopSchools has a designated Privacy Officer. If you have additional questions or concerns regarding how PopSchools is managing or using your personal information, please send your concerns in writing to our Privacy Officer by e-mail at email@example.com.
For those PopSchools customers using PII from EU residents, we include below our Data Processing Agreement.
DATA PROCESSING AGREEMENT
For those PopSchools customers using PII from EU residents, we include here as part of our Privacy and Security Policy our Data Processing Agreement.
THIS DPA INCLUDES:
Standard Contractual Clauses, attached hereto as SCHEDULE 1.
- (a) APPENDIX 1 to the Standard Contractual Clauses, specifying the types of personal data processed by PopSchools.
- (b) APPENDIX 2 to the Standard Contractual Clauses, which includes a description of the technical and organizational security measures implemented by PopSchools.
1. Scope and Responsibility
The Processor will process personal data for the duration of the Policies and other relevant contracts unless otherwise agreed upon in writing.
The Controller shall be entitled to demand the modification, deletion, blocking and making available of personal data during and after the applicable term in accordance with the further specifications of such agreement on return and deletion of personal data.
The terms of this DPA shall equally apply if testing or maintenance of automatic processes or of processing equipment is performed on behalf of Controller, and access to personal data in such a context cannot be excluded.
2. Obligations of Processor
The Processor shall collect, process and use personal data only within the scope of Controller’s instructions. If the Processor thinks that an instruction of the Controller infringes the E.U. General Data Protection Regulation or the U.S.-E.U. Privacy Shield protections, it shall point this out to the Controller without delay.
The Processor shall structure the Processor’s internal corporate organization to ensure compliance with the E.U. General Data Protection Regulation or the U.S.-E.U. Privacy Shield protections. Such measures hereunder shall include, but not be limited to,
- a) preventing unauthorized access to personal data processing systems (physical access control);
- b) preventing unauthorized processing or use of personal data (logical access control);
- c) ensuring that persons entitled to use a personal data processing system gain access only to such personal data as they are entitled to access, and that, in the course of processing or use and after storage, personal data cannot be read, copied, modified or deleted without authorization (data access control);
- d) ensuring that personal data cannot be read, copied, modified or deleted without authorization during electronic transmission, transport or storage on storage media, and that the target entities for any transfer of personal data by means of data transmission facilities can be established and verified (data transfer control);
- e) ensuring proper records are maintained to document whether and by whom personal data has been entered into, modified, or removed from personal data processing systems (entry control);
- f) ensuring that personal data is processed solely in accordance with the instructions of the Controller (control of instructions);
- g) ensuring that personal data is protected against accidental destruction or loss (availability control);
- h) ensuring that personal data collected for different purposes can be processed separately (separation control);
An overview of the above listed technical and organizational measures shall be attached to this DPA as APPENDIX 2.
The Processor shall ensure that any personnel entrusted with processing Controller’s personal data have undertaken to comply with the principle of data secrecy in accordance with the E.U. General Data Protection Regulation and the U.S.-E.U. Privacy Shield protections and have been duly instructed on them.
PopSchools has identified a Data Protection Officer in its Privacy and Security Policy.
Processor shall, without undue delay, inform the Controller in case of a serious interruption of operations or violations by the Processor or persons employed by it of provisions to protect personal data or of terms specified in this DPA. In such an event, the Processor shall implement the measures necessary to secure the Personal Data and to mitigate potential adverse effects on the data subjects without undue delay.
The Controller shall retain title to any carrier media provided to Processor as well as any copies or reproductions thereof. The Processor shall store such media safely and protect them against unauthorized access by third parties. The Processor shall, upon Controller’s request, provide to Controller all information on Controller’s personal data and personal information. Processor shall be obliged to securely delete any test and scrap material based on an instruction issued by the Controller on a case-by-case basis. Where the Controller so decides, the Processor shall hand over such material to the Controller or store it on the Controller’s behalf.
The Processor shall be obliged to audit and verify the fulfillment of the above-entitled obligations and shall maintain adequate documentation of such verification.
3. Obligations of Controller
The Controller and the Processor shall be separately responsible for conforming with such statutory data protection regulations as are applicable to them in accordance with the E.U. General Data Protection Regulation and the U.S.-E.U. Privacy Shield protections.
The Controller shall inform the Processor without undue delay and comprehensively about any errors or irregularities related to statutory provisions on the processing of personal data detected during a verification of the results of such processing.
The Controller shall, upon instruction or termination or expiration of the Terms, stipulate, within a period of time set by the Processor, the reasonable measures to return data carrier media or to delete stored data.
4. Enquiries by Data Subjects to Controller
Where the Controller, based upon applicable data protection law, is obliged to provide information to an individual about the collection, processing or use or its personal data, the Processor shall assist the Controller in making this information available, provided that: (i) the Controller has instructed the Processor in writing to do so, and (ii) the Controller reimburses the Processor for the costs arising from this assistance.
Where a data subject requests the Processor to correct, delete or block personal data, the Processor shall refer such data subject to the Controller.
The Processor shall be entitled to subcontract the Processor’s obligations defined in the Policies to third parties only with the Controller’s written consent (which shall be affirmed by a Controller’s agreement to the policies).
Controller consents to Processor’s subcontracting to Processor’s affiliated companies and third parties, as listed in SCHEDULE 2, of Processor’s contractual obligations hereunder.
The provisions of this section also apply if the Processor uses a subcontractor in a third country. The Controller hereby authorizes the Processor, to agree in the name and on behalf of the Controller with a subcontractor which processes or uses the personal data of the Controller outside of the EEA, to enter into EU Standard Contractual Clauses for the Transfer of Personal Data to Processors Established in Third Countries dated 5 February 2010. This applies accordingly from the date of this authorization with respect to EU Standard Contractual Clauses (Processors) already concluded by the Processor with such subcontractors.
6. Duties to Inform
Where the Processor’s personal data becomes subject to search and seizure, an attachment order, confiscation during bankruptcy or insolvency proceedings, or similar events or measures by third parties while being processed, the Processor shall inform the Controller without undue delay. Processor shall, without undue delay, notify to all pertinent parties in such action, that any personal data affected is the Controller’s sole property and area of responsibility.
In case of any conflict, the regulations of this DPA shall take precedence over the regulations of the Policies. Where individual regulations of this DPA are invalid or unenforceable, the validity and enforceability of the other regulations of this DPA shall not be affected.
The Standard Contractual Clauses apply only to personal data that is transferred from the European Economic Area (EEA) to outside the EEA, either directly or via onward transfer, to any country or recipient: (i) not recognized by the European Commission as providing an adequate level of protection for personal data (as described in the EU Data Protection Directive), and (ii) not covered by a suitable framework recognized by the relevant authorities or courts as providing an adequate level of protection for personal data, including but not limited to binding corporate rules for processors.
7. Parties to this DPA
This DPA is an amendment to and forms part of the Privacy and Security Policy.
The legal entity agreeing to this DPA as Controller represents that it is authorized to agree to and enter into this DPA for, and is agreeing to this DPA solely on behalf of the Controller.