Other Covered Entities

BlueBucks Inc.
BlueVolt

Industries

  • Education
  • Education Technology
  • Educational Software

Participation

EU-U.S. Privacy Shield Framework: Active

Original Certification Date: 9/5/2019
Next Certification Due Date: 9/4/2020
Data Collected: NON-HR

Purpose of Data Collection

The personal data will be subject to the following processing activities: a) If via Contract with Controller. There are universities on BlueVolt in which the Controller is the company that owns the university. In this situation, the owning University would establish its legal basis for processing which in many cases might be via their employment relationship. BlueVolt however is only the Processor for these Universities and is processing Personal Information to perform the contracted services on behalf of the Controller. b) If via Legitimate Interest. BlueVolt will monitor user activity in efforts to prevent fraud or platform information security breaches. c) If via Consent. For universities where BlueVolt is the Controller, Consent will be obtained from Customer at time of registration. Customer thereafter maintains all rights outlined in the “Contacting, Updating and Opting Out” Section of our Privacy Notice. Personal Data will be processed to the extent necessary to provide the Service (e.g. users completing educational courses, reviewing data around the completion of courses). Processing by Data Processor will relate to the following types of personal data: Required: Email Address Username First Name and Last Name IP Address Optional: Physical Address Phone Number Employee Code External Password (Single Sign On) External Username (Single Sign On) Job Title License Number Special categories of data (if relevant) Processing by Data Processor will also involve the following special categories of personal data: None Subprocessors: Microsoft Azure Cloud hosting services Sendgrid/ Twilio Email Distribution/Text message service Amazon Web Services Content and Video Cloud hosting services Akamai Technologies, Inc. Caching to improve site performance Atmosera Cloud hosting services (Azure CSP) Code 42 (CrashPlan) Data Backup Salesforce User Management (if enabled by Controller) OpenSesame Integrate external course content (if enabled by Controller) Recurly Credit Card Payment Management (if enabled by Controller) Incentive Solutions Gift/Rewards Management (if enabled by Controller) PayPal (Payflow Pro) Credit Card Payment Management (if enabled by university) CyberSource (Authorize.net) Credit Card Payment Management (if enabled by Controller) Bank of America Credit Card Payment Management (if enabled by Controller) Incomm Gift Card Management (if enabled by Controller) CORE Performance (Core Rewards) Gift/Rewards Management (if enabled by Controller)

Privacy Policy

Non-HR Data

Description:

Effective Date: 9/5/2019
Description:

Privacy Policy Draft as agreed to approved by BBB on 8-16-2019.

Effective Date: 9/5/2019

Verification Method

Self-Assessment

Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact BlueTech LLC at:

Thomas Price
Data Protection Officer
BlueTech LLC
Portland
2501 SW First Avenue, Suite 400
Portland, Oregon 97201

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from BlueTech LLC to your question or complaint, please contact the independent recourse mechanism listed below


NON-HR RECOURSE MECHANISM



Appropriate statutory body with jurisdiction to investigate any claims against BlueTech LLC regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission