Statement of Privacy
We understand the data you provide to Assessment+ is personal and highly confidential in nature, and we go to great lengths to ensure its protection. All information collected is securely stored and only used for the purpose of providing you and/or your employer with our services.
- Personal and Non-personal information is processed/accessed solely with the consent of your organization/employer.
- Non-personal information (e.g., gender, age range)
- We collect, store and process only information that we actually need to perform our consulting services and meet the requirements of our deliverables with your organization/employer.
- We do not share your personal information with anyone outside of our company, our partners or affiliates or the company with whom we are contracted (your employer or a partnering company of your employer).*
- Personal information is retained only as long as it is required to perform the project tasks outlined in the contract between Assessment+ and Client Organization.
- We make every attempt to utilize the most reliable and up-to-date information.
- Your information is protected from unauthorized or accidental disclosure.
- Inaccurate data will be corrected within a reasonable timeframe upon receiving a written request from our client contact or user, typically within 72 hours.
- Procedures are in place for dealing with any disputes promptly.
We may be required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements. These principles apply whether we hold your information on paper or in electronic form.
Information we Collect
In order to provide assessment services to you, we typically collect and store the following information:
Non-Personal Information (e.g., gender, level of leadership, education level, as well as other pre-approved demographic information that is used for aggregate reporting of data.)
Personal Information (e.g., name, email address, job title and other information required to fulfill our contractual obligation with the client organization.)
- Your name
- Your email address
- Any assessment responses you provide on yourself or others. This includes but is not limited to both fixed- and open-ended responses to survey items.
- Demographic information provided to Assessment+ by you and/or your employee.
These principles apply whether we hold your information on paper or in electronic form.
For instances in which one of our associates or partners needs to contact you directly (such as in the case of one-on-one feedback coaching), we may optionally request the following additional information from you or your employer:
- Your telephone number
- Your business mailing address
- Your title
As an employee/user of our platform, if you wish for Assessment+ to delete your name, email address, ratings, or any other personal information we have collected, you must make this request through the approved channels within your company. If approved, the designated point of contact must submit this request in writing to Assessment+ at firstname.lastname@example.org. Once written request is received, Assessment+ will respond to the individual making the request within a reasonable time period, typically within 72 hours.
The only information that is shared with anyone outside of our organization or partners is aggregated data, such as 360 feedback reports for individuals and groups of individuals, organizational survey results in aggregated form, and other leadership and organizational development related surveys and assessment results in aggregate.
Sharing Your Personal Information
We do not sell or share information that identifies you individually or makes it possible for other parties to contact you directly without your consent, except as disclosed in this Policy and in the following circumstances:
We may only share information:
a) To meet a legal obligation or to conform with the law, respond to claims or comply with legal process (such as subpoena, warrant or court order).
b) To enforce or apply our policies or agreements.
c) To protect or defend our Company, our rights, our property (intellectual property or physical property), our website, employees, clients, and users’ rights and property.
You may make the following choices regarding your personal information:
a) Access to your Personal Information: If required by law, upon request, we will grant you with reasonable access to the personal information that we have about you. You may request access to the personal information by contacting us at email@example.com.
b) Changes to your Personal Information: If you would like to update and/or make other changes to your Personal Information, you may contact us directly with your request at firstname.lastname@example.org.
c) Deletion of your Personal Information: If you wish for Assessment+ to delete your name, email address, ratings, or any other personal information we have collected, you must make this request through the approved channels within your company. If approved, the designated point of contact must submit this request in writing to Assessment+ at email@example.com. Once written request is received, Assessment+ will respond to the individual making the request within a reasonable time period, typically within 72 hours.
How do we keep your information secure?
We follow industry standards on information security management to safeguard personal information. Our information security systems apply to people, processes and information technology systems on a risk management basis.
We perform annual audits to ensure our handling of your personal data aligns with industry guidelines. Our data are stored on AWS secure servers which follow best practices for protecting your data and are SOC 2 certified. Our platform is audited annually by a third-party qualified security assessor and/or a third-party assessor who performs penetration testing and vulnerability scans.
We store only the data required to perform the job required of your employer with whom we are contracted. We do not store highly sensitive information, such as financial information, social security numbers or other unique identifiers. We only store your name, employer email address and descriptive demographics, such as level of leadership, job function, education level, age range or gender (only if requested by your employer).
No method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, we cannot guarantee the absolute security of your personal information.
EU-U.S. Data Privacy Framework program (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework program (Swiss-U.S. DPF)
EU, United Kingdom, and Swiss Privacy Complaints
6340 Sugarloaf Pkwy, Ste. 200
Duluth, GA 30097
In compliance with the EU-US Data Privacy Framework Principles, Assessment Plus, Inc. commits to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to the DPF Principles. European Union, Swiss and United Kingdom individuals with DPF inquiries or complaints should first contact Assessment Plus, Inc. at firstname.lastname@example.org. Assessment Plus, Inc. has further committed to refer unresolved privacy complaints under the DPF Principles to an independent dispute resolution mechanism, Data Privacy Framework Services, operated by BBB National Programs. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://bbbprograms.org/programs/all-programs/dpf-consumers/ProcessForConsumers for more information and to file a complaint. This service is provided free of charge to you.
If your DPF complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See https://www.dataprivacyframework.gov/s/article/G-Arbitration-Procedures-dpf?tabset-35584=2
Assessment+ Inc. is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC).
In cases of onward transfer to third parties of data of EU and Swiss individuals received pursuant to the EU-U.S. Data Privacy Framework program (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework program (Swiss-U.S. DPF), Assessment Plus is potentially liable. Assessment Plus’s liability under this agreement will be governed by the contract in place between Customer and Assessment Plus.
CLICK HERE to see details about how we have further enhanced our data privacy and comply with the new GDPR requirements.
Links to Other Websites
Please be aware that we may provide links to third-party websites as a service to our users, and that we are not responsible for the content or information collection practices of those websites. Please note that the privacy policies of these websites may differ from our Policy. We encourage you to review and understand their privacy practices before providing them with information.