Commitments to Privacy
What laws generally apply to student records?
The Family Educational Rights and Privacy Act is a Federal law that protects the privacy of student educational records. Briefly, FERPA guarantees that students have the right to inspect and review their records, the right to request amendments, through informal and formal hearings, to their record if they believe the information is incorrect, misleading or in violation of their privacy rights and the right to have some control over the release of PII from their educational records. Students also have the right to file complaints with the Family Educational Rights and Privacy Act Office concerning alleged failures by the institution to comply with the Act.
HGA does not serve or otherwise collect PII from students located in the European Union and, therefore, makes no attempt to comply with the European Union General Data Protection Regulation (GDPR).
What is not covered?
Under FERPA, schools may disclose directory information contained in an educational record that would not be considered harmful or an invasion of privacy if released.
Directory information at HGA includes, but is not limited to:
- Address (City and State of Residence Only)
- Courses and programs
- Dates of attendance
The HGA Sites are hosted and operated in the United States and are subject to United States law. Any personal information that you provide to us is being provided to us in the United States and will be hosted on United States servers. You consent to the transfer of your personal information to the United States in order to receive services from HGA. If you are accessing the HGA Sites from outside the United States, please be advised that United States law may not offer the same privacy protections as the law of your jurisdiction.
How is information released?
HGA requires written permission from the eligible student, parent or legal guardian to release any other information from a student’s education record, except under very limited conditions. FERPA allows HGA to disclose those records, without consent, to the following parties or under the following conditions (34 CFR S 99.31):
- School officials with legitimate educational interest
- Other schools to which a student is transferring
- Specified officials for audit or evaluation purposes
- Accrediting organizations
- To comply with a judicial order or lawfully issued subpoena
- Appropriate officials in cases of health and safety emergencies
The following persons have access to student records: (i) HGA’s CEO, administrative team, and professional staff; (ii) the appropriate administrative support staff members and other professionals who have a legitimate educational or legal interest in student records as designated by the CEO; (iii) educational institutions, organizations or home-based education programs with access to the student’s educational records; or (iv) an agent representative of the student or family.
All HGA students are provided a unique password to access online courses. It is the student’s responsibility to keep his/her password in confidence.
HGA (or educational institution, organization or home-based education program with access to the student’s educational records) provides an academic transcript upon the request of the student, parent or legal guardian.
Some schools assign a site facilitator to coordinate online programs, blended learning, or after school and/or supplemental programs, which may be provided to help students who use school labs to access HGA courses. Facilitators will have access to students’ online work. Facilitators may have access to students’ demographics.
What personally identifiable information does HGA collect?
You can use portions of the HGA Sites without divulging any PII. Our site does not collect personal information about students, parents or legal guardians except when such students, parents or legal guardians specifically provide such information on a voluntary basis (for example, when enrolling for a HGA course or program; requesting additional information by contacting us; signing up for a HGA in-person event; posting a message to a message board; requesting help; engaging in an online chat; or accessing, adding to, or changing the information on your account information page on the Student Information System (“SIS”).
When a student is registered for a HGA course or program, we are provided with information regarding the student, parent and/or legal guardian. This personal information may be collected on the HGA Sites, or via telephone, facsimile or conventional mail. The types of information that you may be asked to provide include, but are not limited to: first and last name; postal address; telephone number; the student’s names and age; student registration and enrollment information; and an email address where we can contact the student, parent and/or legal guardian. If the student is enrolling in one of HGA’s courses or programs, we may also collect debit or credit card information.
Does HGA share personally identifiable information?
Registration and enrollment information that is provided by the student, parent and/or legal guardian may be provided to third parties as required by state or federal law
To the extent that third party vendors assist HGA in the provision of online products or services, those vendors are provided the minimum amount of data required to perform the tasks for which they have been engaged, consistent with legal requirements, such as FERPA. They have no independent rights to such data and have agreed to maintain the confidentiality of the data, to use it solely for the purpose of performing the school-based tasks for which they have been engaged and to safeguard the data as required by law and by contract.
Only if permitted by applicable state and federal law, HGA may share PII your information with other companies in order to improve the academic performance of HGA courses or programs or so that HGA may offer products and services to you. You can request that your personal information not be shared with third parties by making a request in writing to info@HudsonGlobalAlliance.org.
How does HGA use personally identifiable information?
HGA may use the PII to provide educational services to the student enrolled in a course or program, and to otherwise support the student with regard to matters such as testing, academic progress, attendance, customer service, student affairs or for health or safety purposes. The PII is also used to deliver services to the student or to carry out activities that the student has requested. HGA may also use PII to protect its own legal rights.
HGA will use or share PII if required to do so by law, such as a court order, or permitted to do so for law enforcement, health or safety purposes or to protect HGA’s legal rights. If permitted by applicable state and federal law, HGA may aggregate PII to improve the educational experience for the student.
What non-personally identifiable information does HGA collect?
Each time you visit our website, non-personally identifiable information is automatically entered into an information system. Such information includes your IP address (that is, the unique string of numbers that identifies the device you are using to communicate over the Internet), the name of the Web page from which you accessed the HGA Sites, the page or pages you visit on the HGA Sites, and how much time you spend on each page.
How does HGA use non-personally identifiable information?
We use this information to monitor and improve the HGA Sites and for internal analysis. In particular, we use IP addresses to analyze traffic trends, administer the HGA Sites, and gather information for aggregate use. However, IP addresses, whether alone or in combination with other non-PII, are not linked to PII.
When does HGA share non-personally identifiable information?
We will neither share nor sell non-PII to any third party, except that we may share non- PII: (i) if required to do so by law, such as by a court order, (ii) if permitted to do so for law enforcement, health or safety purposes, (iii) to third parties that use it in connection with providing services related to the education of your student, or (iv) where permitted, to protect HGA’s legal rights.
Do HGA Sites use “cookies”?
How does HGA treat information about children under 13 years old?
We understand that children who are under age 13 need enhanced safeguards and privacy protection, as set forth in the Children’s Online Privacy Protection Act (“COPPA”). COPPA protects the information privacy of children under the age of 13 by requiring web site operators and online services to post privacy policies and obtain verifiable parental consent before collecting information from those children.
The HGA Sites are not intended to solicit information of any kind from children under age 13, and we do not and will not knowingly contact or collect personally identifiable information from children under 13. The only personal information we receive about children under the age of 13 is information provided by the parent or legal guardian or information provided by the child as part of that child’s participation in a course as part of that child’s education program. By enrolling a child in such course, a parent or legal guardian consents to the collection of that information.
It is possible that by fraud or deception by others we may receive information pertaining to children under age 13. If we are notified of the receipt of information under such circumstances, once verified, we will promptly obtain parental or legal guardian consent, and in the absence of such consent, will delete the information. If you want to notify us that we have inadvertently received information for a child under the age of 13, please do so by emailing us at info@HudsonGlobalAlliance.org.
What are the student’s California privacy rights?
What information is collected or shared on message boards and chats?
We may offer message boards and chat rooms to you on the HGA Sites. Please be aware that anyone may read your postings on a message board or in a chat room. Furthermore, all information which you submit to be posted to a message board or in a chat room will be available to all users of that message board or chat room, and is therefore no longer private. We cannot guarantee the security of such information that you disclose or communicate online in public areas such as message boards and chat rooms, and you do so at your own risk. We reserve the right, but not the obligation, to monitor the content of the message boards only and to republish your postings from message boards or chat rooms elsewhere on the Web or otherwise in any format.
What happens when I link to other websites, chat rooms or resources from HGA Sites?
What is HGA’s commitment to data security?
To reduce the risk of unauthorized access, maintain data accuracy, and ensure the correct use of information, we have put in place commercially reasonable physical, electronic, and managerial procedures to safeguard and secure the information we collect. We also use Secure Sockets Layer (“SSL”) protocol on the student account information and registration pages to protect sensitive personal information. As effective as our safeguards are, no security system for data is completely impenetrable. Therefore, HGA cannot guarantee that the PII supplied by the student, parent or legal guardian will not be intercepted by others.
Student information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. All transactions are processed through a gateway provider and are not stored or processed on our servers. Our website is scanned on a regular basis for security holes and known vulnerabilities in order to make your visit to our site as safe as possible.
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information. In order to be in compliance with the Fair Information Practices, in the event of a data breach, we will notify the student, parent and/or legal guardian via email within seven business days.
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations. We collect the student, parent and/or legal guardian’s email address in order to send information, respond to inquiries, and/or other requests or questions. In compliance with the CAN-SPAM Act, we will:
- Not use false or misleading subjects or email addresses.
- Identify the message as an advertisement in some reasonable way.
- Include the physical address of our business or site headquarters.
- Monitor third-party email marketing services for compliance, if one is
- Honor opt-out/unsubscribe requests
- Allow users to unsubscribe by using the link at the bottom of each email.
If at any time you would like to unsubscribe from receiving future emails from HGA, please email us at info@HudsonGlobalAlliance.org and we will promptly remove the student, parent and/or legal guardian from future correspondence.
Hudson Global Alliance is a non-profit membership organization which brings together education leaders at forward-thinking U.S. prep schools, college, and universities to better understand and serve international students who want to study in the U.S.