Safe Harbor Data Privacy Notice
Kryterion complies with the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries and Switzerland. Kryterion has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Safe Harbor program and to view Kryterion’s certification, please visit http://www.export.gov/safeharbor/
Kryterion applies the U.S.-EU Safe Harbor Framework and U.S.-Swiss Safe Harbor Framework to all data received internationally and within the United States. Your use of this website indicates to us that you have read and accept our privacy practices, as outlined in this Privacy Statement.
Services We Provide
We provide testing services on behalf of test sponsors who are our clients. Test sponsors are organizations or companies that offer and control a test that is used to make certification, licensure, or other types of decisions based on test results. We collect and/or receive personal information from a test taker (’you’) in order to develop, administer, or proctor a test for a test sponsor. Personal information is defined as any information, such as your name or email address, that identifies or can be used to identify the person to whom such information pertains. While providing personal information is voluntary, it is necessary if you are to obtain the grade, test score, service, or credential that you seek from your test sponsor. We will handle and treat all personal information collected or received from you while providing testing services in a manner that is consistent with this Policy.
When using any of our services, you consent to the collection, transfer, manipulation, storage, disclosure and other uses of your information as described in this Policy. If you are not willing to consent to this Policy, please do not use any of our services.
Personal Information We Collect
During the registration process, we may collect or receive information including your name, home address, email address, phone number, fax number, and credit/debit card information. During the test registration and the testing process, we may also collect your preferred language, employment information, education information, previous examination history and other information as requested by your test sponsor. When a test is administered, we may collect and score your test responses and then derive a score and generate a report about your test results. Depending upon the test sponsor and/or test security requirements, we may also video and audio tape you while you are taking a test to help ensure the security and integrity of the test. .
At your test sponsor’s request, we may also collect biometric data, including keystroke analysis data and facial recognition data. Please see our Test Taker Explicit Informed Consent Form for Biometric Enrollment for specific information as to how we handle biometric data.
Non-personal Information We Collect
We may statistically aggregate test responses and other information collected during the testing process in a non-person-specific format and transfer this information to test sponsors, a third party, and/or test centers. Such aggregated non-personal information may be used for quality control and security purposes, operations improvement, and to improve the testing services, tests, or related test sponsor products.
How We Use Your Personal Information
We use your personal information to provide you with the testing for which you register and related services. For instance, we use your personal information to register you for a test, answer any questions or concerns you may have, collect payment for a test or related product, to administer the test, and/or to convey the results of testing. In some cases we may also use your personal information to contact you about scheduling, technical, security, or other testing-related issues.
How We Limit the Collection of Your Personal Information
To protect your privacy, we make reasonable efforts to only collect personal information about you that is related to the testing services we provide on behalf of your test sponsor and for purposes for which you have consented.
To Whom We Disclose Your Personal Information
We may also disclose your personal information in the following situations 1) if we believe it is necessary to comply with a law, regulation, legal investigation, or in response to a subpoena, court order, or legal process, 2) to protect your security, or the security of other persons, 3) to protect against misuse or unauthorized use of our services, 4) to limit our legal liability and protect our rights or the rights of our test sponsors, 5) to address actual or suspected fraud or other illegal activities, 6) in connection with the sale, joint venture, or other transfer of some or all assets of Kryterion. We may also provide your personal information to our contractors or agents including independent testing centers, which are committed to protect your privacy in a manner that is consistent with this Policy. For purposes of validating a test score and test taker integrity, we may supply audio and video recordings of a test taker taking a test at a test center to a test sponsor whose test was being administered at that time. We do not transfer personal information to third parties who are not acting as Kryterion’s agent or acting on Kryterion’s behalf.
We will not share your personal information in ways unrelated to those described above without informing you beforehand and receiving your consent.
Kryterion takes reasonable precautions to protect your personal information from loss, misuse and unauthorized access, disclosure, alteration, and destruction. For instance, we limit the number of people who have physical access to our database servers and have electronic security systems that guard against unauthorized access. Our services include the provision of test taking and registration for tests using the internet. All of Kryterion’s internet transmissions are encrypted with SSL and verified certificates; however, no data transmission over the internet can be guaranteed to be completely secure. Accordingly all internet transmissions are done at the user’s own risk.
We take reasonable steps to ensure that the data we collect is reliable for its intended use, accurate, complete and up-to-date. However it is your responsibility to update us of any relevant changes in your personal information so that we can provide you with testing services. We collect personal information that is relevant for the purposes for which it is to be used. Furthermore, we take reasonable steps to assure that we process personal information in a way that is consistent with the purposes for which we collected it or subsequently authorized by the individual.
Data collected and received in connection with providing testing services on behalf of a test sponsor may be transmitted to the United States and other countries. Kryterion operations are currently based in the United States. Given the global nature of the internet, you consent to you consent to transborder and international transmission of any data that you voluntarily provide to Kryterion related to testing services.
Kryterion retains your personal information only as long as is appropriate for the purposes for which it is collected. Kryterion follows a record retention schedule that defines how long we retain various types of data. You should be aware, however, that it is not always possible to completely remove or modify information in our databases.
How You Can Access and Correct Your Personal Information
If you are a Test Taker, you may modify or update your personal information by logging in and accessing your profile or contacting your Test Sponsor. You should be aware, however, that it is not always possible to completely remove or modify information in our databases.
Credit Card Information
Kryterion uses a secure transmission system for the processing of credit/debit card information.
Cookies are used by web browser software which enables computer web servers to identify the computer being utilized to access a web site. Information such as pages viewed, time spent on a page, the dates and time of the visit, may be aggregated. However none of this aggregated information is identified with any individual.
We may provide links to third party sites. Please be aware that we are not responsible for the privacy practices of any third party sites and encourage you to review the privacy practices of any third party sites before providing an personal information.
Information from Children
Our testing services are not directed to children under the age of thirteen (13). We request that all visitors to our Web Site, who are under 13 years of age, not disclose or provide any personal information. Kryterion will not knowingly collect, maintain, or use any personally identifiable information about anyone under the age of thirteen (13). If we discover that a child under 13 years of age has provided us with personally identifiable information, we will delete the personal information from our records to the extent possible.
Data Protection Officer
7776 South Pointe Parkway West
Phoenix, Arizona 85044
We employ a self-assessment program to monitor compliance with this Policy and ensure that our privacy practices have been implemented appropriately. Any breaches of privacy or this Policy are to be reported immediately to the Privacy Officer, who has the authority to direct any reasonable measures to correct the breach and report them to the Chief Executive Officer of Kryterion. Any employee who breaches this Policy is subject to disciplinary proceedings up to and including termination of employment as may be appropriate
If we are unable to satisfactorily resolve your concerns, you should contact your test sponsor, Data Protection Authority, or other relevant organization in your area. In addition, the American Arbitration Association provides a forum for the independent investigation and resolution of individual complaints and disputes in relation to compliance with this policy.
Changes to this Policy
Kryterion reserves the right to change this Policy from time to time by posting an updated Policy to this site. We encourage you to review this Policy periodically at http://kryteriononline.com/privacy_policy/ for any updates or changes.
Date of Last Revision: December 9, 2013