Other Covered Entities
- Education Technology
- Educational Software
EU-U.S. Privacy Shield Framework: Active
Purpose of Data Collection
The personal data will be subject to the following processing activities: a) If via Contract with Controller. There are universities on BlueVolt in which the Controller is the company that owns the university. In this situation, the owning University would establish its legal basis for processing which in many cases might be via their employment relationship. BlueVolt however is only the Processor for these Universities and is processing Personal Information to perform the contracted services on behalf of the Controller. b) If via Legitimate Interest. BlueVolt will monitor user activity in efforts to prevent fraud or platform information security breaches. c) If via Consent. For universities where BlueVolt is the Controller, Consent will be obtained from Customer at time of registration. Customer thereafter maintains all rights outlined in the “Contacting, Updating and Opting Out” Section of our Privacy Notice. Personal Data will be processed to the extent necessary to provide the Service (e.g. users completing educational courses, reviewing data around the completion of courses). Processing by Data Processor will relate to the following types of personal data: Required: Email Address Username First Name and Last Name IP Address Optional: Physical Address Phone Number Employee Code External Password (Single Sign On) External Username (Single Sign On) Job Title License Number Special categories of data (if relevant) Processing by Data Processor will also involve the following special categories of personal data: None Subprocessors: Microsoft Azure Cloud hosting services Sendgrid/ Twilio Email Distribution/Text message service Amazon Web Services Content and Video Cloud hosting services Akamai Technologies, Inc. Caching to improve site performance Atmosera Cloud hosting services (Azure CSP) Code 42 (CrashPlan) Data Backup Salesforce User Management (if enabled by Controller) OpenSesame Integrate external course content (if enabled by Controller) Recurly Credit Card Payment Management (if enabled by Controller) Incentive Solutions Gift/Rewards Management (if enabled by Controller) PayPal (Payflow Pro) Credit Card Payment Management (if enabled by university) CyberSource (Authorize.net) Credit Card Payment Management (if enabled by Controller) Bank of America Credit Card Payment Management (if enabled by Controller) Incomm Gift Card Management (if enabled by Controller) CORE Performance (Core Rewards) Gift/Rewards Management (if enabled by Controller)
Questions or Complaints?
If you have a question or complaint regarding the covered data, please contact BlueTech LLC at:
Data Protection Officer
Portland, Oregon 97201
Privacy Shield organizations must respond within 45 days of receiving a complaint.
If you have not received a timely or satisfactory response from BlueTech LLC to your question or complaint, please contact the independent recourse mechanism listed below
NON-HR RECOURSE MECHANISM
Appropriate statutory body with jurisdiction to investigate any claims against BlueTech LLC regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission