ReadyTech respects the privacy of the visitors to our websites and users of our services. This policy explains how we collect and use your personal data.
ReadyTech is a California “C” corporation, registration number C1888440. Our offices are located at 720 Second Street, Suite 111 Oakland, CA 94607 United States. If you have questions about this policy or our data privacy practices, please email us at firstname.lastname@example.org or send postal mail using the address above.
ReadyTech recognizes that, in light of the judgment of the Court of Justice of the EU in Case C-311/18, the EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield are no longer valid transfer mechanisms for personal data from the Europe Union to the United States. At the same time, the U.S. Department of Commerce, which oversees compliance with Privacy Shield, has stated that it will nonetheless continue to administer the Privacy Shield program and that participants are not relieved of their obligations under Privacy Shield. Accordingly, ReadyTech, as a certified member of the Privacy Shield principles, continues to comply with its commitments. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/.
In compliance with the Privacy Shield Principles, ReadyTech commits to resolve complaints about our collection or use of your personal information. Individuals with inquiries or complaints regarding our Privacy Shield policy should first contact ReadyTech at email@example.com. ReadyTech has further committed to refer unresolved Privacy Shield complaints to JAMS, an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please contact or visit JAMS at https://www.jamsadr.com/eu-us-privacy-shield for more information or to file a complaint. The services of JAMS are provided at no cost to you. Furthermore, you have the right to invoke binding arbitration if your complaint goes unresolved, as described in the Privacy Shield framework.
Under Privacy Shield, ReadyTech is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC).
Our websites and services are not designed for or marketed to minors. We do not knowingly collect or solicit personal information from minors, and we do not knowingly allow minors to use our websites or services. If you are a minor, please do not use our websites or services or send us any information about yourself.
How and why we collect your personal data
Some of our websites and applications require you to register in order to use some or all of the functionality. If you choose to register for an account you will provide us with some personal data, including your name, email address, username, and password. We collect this data because it is necessary to provide you access to our services and maintain the security of our services. We may use your data to communicate with you regarding your account. We retain account data as long as your account is active. You can cancel your account at any time and, if you do, we remove or anonymize your account data.
One of our core services is allowing users to participate in training events. When you participate in one of these events we collect certain information about you. When your first join an event you must activate your seat by providing your name. We store your name so the instructor and technical support knows who is using which seat. Additionally, when you activate your seat you consent to allowing us to collect data about your usage, progress, collaboration, and participation in training event. This data may include whether you attend a particular session, how long you spend reading the materials, when and how often you access the hands-on lab environment, whether you complete lab exercises, when and how much you contribute to chat and other course activities, and your responses to interactive course content such as quizzes and course surveys. We collect this data for the purpose of providing the course instructor, training management, and us with oversight and understanding of how you participate in the training.
Some of our websites and applications allow you create a personal profile. If you chose to create a profile the data we collect may include your name, telephone number, picture, address, email address, job title or role, employer, preferred language, and time zone. We collect and use profile data to allow you to collaborate with other users of our services. When you provide profile data you consent to us providing that data to other users and should understand that we cannot control what those users do with your data. You can change or remove your profile data at any time. If you create a profile during a training event the data is automatically deleted at the end of the event.
Some of our websites allow you to post chat and/or forum messages. If you do so, the publication data may include your name, alias, time of publication, your message, and a sentiment score. We use publication data only as necessary to enable the publication and allow the intended exchange of information between users of our services. When you provide data for publication you consent to us making that data visible to other users and should understand that we cannot control what those users do with your data. Publication data may be retained forever unless you request it be deleted.
Remote lab data
Our services may include providing you with temporary access to a hosted lab environment. This is not a personal system and all activity on the remote lab may be monitored by the course instructor, training management and our technical support. The data we collect may include how much time you spend use the lab, which applications you use, your key stokes, your mouse clicks, screen shots of your activity, etc. We provide this monitoring so that you can get help with problems, so the instructor and management can monitor course progress and so we can ensure compliance with our Terms of Service. Do not use the remote lab environment to conduct any personal activities, such as using social media, financial transactions or personal web searches.
Some of our applications have a recording feature that allows the capture and share of all or part of your audio and all presentation content. We collect this data as a request of our customers to allow them watching the content of recordings hosted on their account. ReadyTech is not responsible for how instructors or participants use recordings or the recording features. The recording will be stored, according to the principles stated in this policy, as long as the account owner requests it to deleted. When you provide data in a recording event you consent to us making that data visible to other users and should understand that we cannot control what those users do with your data.
When you access our websites and applications our servers automatically log data such as your IP address, operating system type and version, browser type and version, etc. We use this data to help us ensure the security of our services and to provide technical support. In addition to the log data our servers collect, we also use CloudFlare as our content distribution network (CDN) to provide locally cached content and a better user experience on our websites. While using our websites your personal data may pass through and be cached on CloudFlare servers. You can find information about CloudFlare security and privacy policies here. We have executed a data processing agreement with CloudFlare.
Aggregated usage data
We use Google Analytics and HubSpot to collect and aggregate data about your use of our website and services. This data may include your IP address, geographical location, browser type and version, operating system, referral source, length of visit, page views and website navigation paths, feature usage, as well as information about the timing, frequency and pattern of your service use. We use this data to analyze the use of our websites and to help us make good decision about changes we make. For example, when deciding which languages to translate our website to, we review the aggregated usage data to determine what percentage of our users come from which countries. So our legal basis for collecting this data is our legitimate interest in monitoring and improving our website and services. We have executed the data processing addendum (DPA) with Google and set the retention of your usage data to 26 months.
If you purchase products or services from us, we collect your personal information related to this transaction. This may include your contact details, products or services purchased, price paid, time of purchase, and payment type. We use this data so can provide the purchased product or service and to keep proper records of those transactions. Financial transactions are processed using our PCI-compliant 3rd-party financial services providers, Recurly, PayPal, and Authorize.net. Those providers may store financial data related to your transaction, including credit card details, billing address, etc. We do not collect or process your personal financial data. You can find the privacy policies for our financial services providers at Recurly, PayPal and Authorize.Net.
Job application data
Disclosure and store of Personal data
Except as identified in the policy, we do not sell, rent or otherwise disclose your private data to 3rd parties. According to the purposes as set out in this policy,ReadyTech stores personal data in secure networks with restricted access, following high security standards as end-to-end encryption and organizational safeguards to limit the exposure to data breaches. At the same time, a data protection impact assessment is periodically performed to monitor the risks and define security and privacy controls to protect data.
Transfer of Personal Data
ReadyTech is a global organization with management, technical infrastructure, and business processes that cross borders. As such, we may share your data with our owned entities outside of the United States.The above also means that legislation protecting personal data varies among locations. Regardless of where your information is transferred to and resides, our privacy and security practices are designed to provide protection for your personal information globally. In other words, each time we take suitable measures in this respect, so that in a situation in which such transfer of data takes place, this transfer of data always occur in a manner where we ensure all personal data is provided with adequate protection and that all transfers are done lawfully and in accordance with this Privacy Statement and on the basis of international data protection and privacy programs.
We also use 3rd party hosting facilities operated by Microsoft, Google, Amazon, and ICONZ-Webvision to host some of our websites and applications. This means some or all of your data may be transferred to and stored with one of these hosting providers. We also use these hosting providers to provide lab environments as part of a training course. Here are links to the privacy policies of our hosting providers: Microsoft, Google, AWS, ICONZ-Webvision.
We reserve the right to share your personal data based on a good faith believe that doing so is necessary to investigate or prevent illegal activities or at the request of law enforcement. We may also use your data as needed to comply with a legal obligation or in defense of legal claims.
Depending on where you live, you may have legal rights with regards to your private data. We have summarized below the right of those covered by the EU GDPR. Many of these rights are complex, and not all of the details have been included in our summaries. Therefore, you should read the relevant laws and guidance from the regulatory authorities for a full explanation of these rights.
Right to access
You have the right to know whether we have and use your personal data and, if we do, get access to the data.
Right to completeness and accuracy
You have the right to have any inaccurate personal data about you corrected and, in some cases, have any incomplete personal data about you completed.
Right to be forgotten
In some circumstances you have the right to ask us to remove your personal data.
Right to restrict use
In some circumstances you have the right to ask us to stop using your personal data but also ask us not to remove it.
Right to object to marketing
You have the right to object to our use of your personal data for marketing purposes.
Right of portability
In some circumstances you have a right to request an electronic copy of the private data we have.
Right to file a complaint
You have a right to file a complaint with the appropriate regulatory authority responsible for data protection.
Right to withdraw consent
If you consented to allow us to collect private data from you, you have the right to withdraw that consent.
You can exercise any of your rights in relation to your personal data via written notice to us at firstname.lastname@example.org. If you request a copy of your personal data and provide sufficient proof of identity, we will supply to you a copy of your personal data. The first copy will be provided free of charge, but additional copies may be subject to a reasonable fee.
Changes to this policy
We may update this policy from time to time by publishing a new version on our website. You should check this page occasionally to ensure you are happy with any changes to this policy. When the changes are significant we will attempt to notify you by email or through the private notification features of our websites and services.
Last Changed: July 26, 2021