Personal Data We Collect About You and Why.
In this Section we set out general categories of personal data we may collect and the purpose for using your personal data, including the personal data collected and processed over the past year. We collect and process personal data to provide you the Services, fulfill our contractual responsibility to deliver the Services to our Customers, fulfill your requests, and pursue our legitimate interests and our business and commercial purposes. We also automatically collect data during your usage and collect other personal data about you from other sources. Your personal data will only be collected and used for purposes stated herein, where you provide additional consent, or as required by law or regulation – including national security or law enforcement requirements.
We collect personal data from you directly when you visit our Services from either your computer, mobile phone, or other device, attend one our events, or communicate with our personnel. The categories of personal data we collect from you, including over the past year, involve the following:
You may voluntarily submit other personal data to us through our Services that we do not request and are not required for the relevant data processing activity. In such instances, you are solely responsible for such personal data.
With the help of our Service Providers, we also automatically collect personal data about you and your device and how you interact with our Services. Categories of personal data collected automatically include the following:
We also receive your personal data described in this policy from third party sources, including from your employer (our Customer), third party companies we purchase personal data, partners, including partners listed on our Marketplace, and co-organizers and sponsors for our events and webinars.
We combine personal data about you from your use of the Services with other personal data to make inferences about you or our Customers. We may produce insights with the help of independent sources and processors. If you believe that your personal data was improperly collected or provided to use by one of the sources described above, please contact us at firstname.lastname@example.org.
Information Collected When Using the PowerLine Application
Our purpose in providing the PowerLine Application (“App”) is very simple: to help you maximize your mental wellbeing. Our commitment to protecting your privacy while using the App comes from a deep awareness of the sensitivity of information regarding one’s mental wellbeing. If your employer has sponsored your access to our App, we will only collect from you the minimum personal information necessary to set up your initial access to the App (name, email address). Thereafter, your access to and use of the App will be anonymous and will not be tracked. In this way, we can protect your privacy while helping you manage your health.
Anonymous Data refers to data that by itself does not permit the identification of a specific individual. We collect such information only insofar as is necessary or appropriate to fulfill the purpose of your interaction with the App. We may collect the following types of Anonymous Data when you use the App:
Information We Disclose.
We share personal data with other parties for the purposes stated herein or as required by law. The following categories are the entities we’ve shared personal data with, including over the past year.
We disclose personal data to our Customers (your current or potential employer) that utilize our services. For instance, when a job applicant responds to a job posting, we will share your personal data with the employer in order to facilitate the job search and hiring process. If your current or former employer uses one of our Services, personal data you input into those Services is accessible by that employer’s end users – subject to the security and access controls set up by the employer.
We share personal data with services providers to provide services on our behalf. For instance, we use service providers to facilitate our support services, data security, email, web hosting, research and analytics, data enrichment services, deliver and help us track our marketing and advertising content, process credit card payments, deliver payroll processing and disbursements, coordinate our customer conferences, and manage our sales and customer relations.
We share personal data with analytics and advertising companies that may act as our processor and a controller in other instances. We work with other entities to perform research, under controls that are designed to protect your privacy. We publish or allow others to publish insights, presented as either aggregated, anonymized, de-identified, or non-personal data.
If you download or access content on our Services or attend an event or webinar we host or co-host, we may share your personal data with sponsors of the event or webinar. The sponsor may also be a controller of your personal data in this instance, and processing of your personal data will be subject to the sponsors’ privacy statements as well.
We may also share personal data where you provide your consent or post your personal data publicly. Where required by law, additional consent is obtained before personal data is transferred to us or forwarded to other parties. For example, we share personal data with background check providers if a job applicant consents and we are instructed to do so by our Customers.
During your use of the Services, you may have the opportunity to visit or link to other websites, including websites by third parties unaffiliated with us. We have no relationship or control over unaffiliated websites. These websites might collect personal data about you, and you should review the privacy policies of such other websites to see how they treat your personal data.
We also share personal data or data in order to meet any applicable law, regulation, legal process or enforceable governmental request, investigate violations and enforce policies, detect, prevent, or otherwise address fraud, protect against harm to the rights, property or safety of our users or the public, protect your vital interests or the vital interests of another natural person; and where disclosure is necessary for establishment, exercise or defense of legal claims or where there is reasonable belief that disclosure is required by law or regulations.
We may transfer or disclose personal data to another entity who acquires or may acquire any or all of our business units, whether such acquisition is by way of merger, consolidation or purchase of all or a substantial portion of our assets, or bankruptcy. We disclose personal data to our affiliates with our Customers’ consent in order to facilitate any Service transition or implementation services.
Cookies and similar Tracking Technologies; “Do Not Track”.
A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser and device you use to access our Services. The identifier is then sent back to the server each time the browser requests a page from the server.
Cookies may be either “persistent” cookies or “session” cookies. A persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date; a session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.
Other data gathering mechanisms, such as web beacons, HTML Storage Objects, and web tags, are used by us and our service providers to gather more specific data on your use. A web beacon (also called a web bug or clear GIF) is a graphic on a webpage or in an email message that is designed to monitor who is reading the page or message. Web beacons are often invisible because they are typically only 1-by-1 pixel in size. Web beacons are often used alongside cookies to track activity. Web beacons may be used to add data to a profile about a site visited, provide an independent accounting of how many people have visited a website, gather statistics about usage, among other things. HTML Storage Objects are program code that collects data about your activity on our Services. The HTML is temporarily downloaded onto your device while you are connected to our Online Services.
Overview of Your Data Rights.
Your data rights for personal data where we are the data controller.
You can review and enforce your personal data rights through your account, communications you receive from us, third party mechanisms, or with the assistance of our support team using the emails at the end of this Policy. For instance, you can:
Your data rights for personal data you submit to our Customers.
Upon making your personal data available to an employer (our Customer), your personal data may be controlled by our Customer. In this regard, we are a data processor for personal data Customers maintain have us process, and your data rights are subject to our Customers’ internal policies. For these reasons, we are not in a position to directly handle data requests for personal data controlled by Customers. You should contact the Customer regarding personal data they may hold about you and to exercise any data rights you may have. We will cooperate with such inquiry in line with applicable law and our contractual obligations with the Customer.
Your California Privacy Rights.
If you are a California resident, you have the additional data rights listed below. You can exercise some of these rights by utilizing the prompts within messages we send you within your account settings, or within the privacy settings on our web pages. Otherwise, you are also able to exercise these rights by contacting our support team using the privacy support emails listed at the end of this Policy. Please note, if we cannot verify your identity we may deny certain data right requests. You can designate an authorized agent to submit requests on your behalf, but we require written proof of the agent’s permission and verify your identity directly.
California Civil Code Section 1798.83 permits our visitors who are California customers to request certain information regarding our disclosure of personal data to third parties for the third parties’ direct marketing purposes. To make such a request please send a letter to: Governmentjobs.com, Inc., 300 Continental Blvd. Suite 565, El Segundo, CA 90245 Attn: Privacy Department. Requests must include “California Privacy Rights Request” in the first line of the description and include your name, street address, city, state, and ZIP code. Please note Governmentjobs is not required to respond to requests made by means other than through the provided mail address.
Your Nevada Privacy Rights.
A sale under Nevada law is the exchange of personal data for monetary consideration. We do not currently sell personal data as defined under Nevada law. If you want to submit a request relating to our compliance with Nevada law, please contact us at the privacy support emails listed at the end of this Policy.
Your Rights and Control under EU GDPR.
Data subjects in Europe whose personal data we receive through appropriate safeguards have legal rights to determine whether we hold personal data about them, to access personal data we hold about them, and to obtain its correction, update, amendment, or deletion in appropriate circumstances. In particular, your rights may include:
Some of these rights may be subject to exception and limitation. In any case, we will respond to your request to exercise these rights within a reasonable time but no later than within 30 days of receiving a request. To request to exercise your rights, you may contact us at any of the privacy support emails listed at the end of this Policy. Some of the rights are complex, and you should read the relevant laws and guidance from the regulatory authorities for a full explanation of these rights. You may also have the right to make a GDPR complaint to the relevant Supervisory Authority. A list of Supervisory Authorities is available here: https://edpb.europa.eu/about-edpb/board/members_en
For personal data subject to the European Union General Data Protection Regulation and ePrivacy Directive, we rely on multiple legal bases for processing, including:
We use an automated chat bot within some of our Services to screen your requests and questions. The purpose of the automated chat bot is to fulfill frequently asked questions provided by our users, tag the requests and questions to route to our most appropriate contact, and improve our responses and Services. The chat bot is not fully automated and will not have a legal or significant impact on you.
For personal data transferred from the European Union, the United Kingdom, or Switzerland, we will provide appropriate safeguards, such as through use of standard contractual clauses.
We comply with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal data from European Union member countries, the United Kingdom, and Switzerland transferred to the United States pursuant to Privacy Shield. We have certified that we adhere to the Privacy Shield Principles with respect to such personal data. If there is any conflict between the policies in this Policy and data subject rights under the Privacy Shield Principles, the Privacy Shield Principles shall govern personal data processed in reliance on Privacy Shield. To learn more about the Privacy Shield program, and to view our certification page, please visit https://www.privacyshield.gov/. We will use appropriate safeguards to comply with the judgement issued by the Court of Justice of the European Union on July 16, 2020 declaring the EU-U.S. Privacy Shield Framework as invalid.
We will provide an individual opt-out choice, or opt-in for sensitive data, before we share your sensitive data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. To request to limit the use and disclosure of your personal data, please submit a written request to email@example.com.
In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
Where we rely on Privacy Shield Principles for onward transfers of personal data from the EU, the United Kingdom, and Switzerland, including the onward transfer liability provisions, we remain responsible under the Privacy Shield Principles for third-party agents processing personal data on our behalf.
Where we receive personal data under the Privacy Shield and then transfers it to a service provider acting as agent, we have certain liability under the Privacy Shield if both (i) the agent processes the personal data in a manner inconsistent with the Privacy Shield principles and (ii) we our responsible for the event giving rise to the damage. With respect to personal data received or transferred pursuant to the Privacy Shield Framework, we our subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission.
In compliance with the Privacy Shield Principles, we commit to resolve complaints about your privacy and our collection or use of your personal data transferred in reliance on Privacy Shield to the United States pursuant to Privacy Shield. European Union and Swiss individuals with Privacy Shield inquiries or complaints should first contact us by email at firstname.lastname@example.org.
We have further committed to refer unresolved privacy complaints regarding personal data transferred in reliance on Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://bbbprograms.org/privacy-shield-complaints for more information and to file a complaint. This service is provided free of charge to you.
We have further committed to cooperate with the panel established by the EU data protection authorities (DPAs) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved Privacy Shield complaints concerning human resources data transferred from the EU, the United Kingdom, and Switzerland in reliance on Privacy Shield and in the context of the employment relationship.
If your Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction.
Data Security and Integrity.
We implement physical, technical, and administrative safeguards designed to maintain data accuracy, integrity, and security, prevent unauthorized access, and facilitate correct use of personal data. Our security measures take into account the risk of harm to you and Customers, as well as the availability of technology, industry common practices, effectiveness of mitigation controls, and the sustainability of those controls by us.
Although we maintain the controls listed herein, transmission of data is not without risk and we complete security of your personal data cannot be guaranteed. Please note, you are responsible for keeping your login credentials secret at all times, including your username and password.
In the event we believe the security of your personal data in our possession or control may be compromised, we may seek to notify you by e-mail and you consent to our use of e-mail as a means of such notification.
Retention and Removal.
For personal data we determine the purposes for and means by which it is processed, such personal data will not be kept for longer than necessary for the original purpose of collection, when no longer relevant, or upon permissible request. When the original purpose no longer exists, we will either delete or anonymize, or de-identify your personal data (subject to applicable law) or, if this is not possible, we will securely store your personal data until deletion is possible. Your personal data will be appropriately disposed in a manner designed to ensure it cannot be reconstructed or read. If you are a job applicant, after your account has been closed, we may retain Platform Data as permitted by law.
Where our Customer is the controller of your personal data, our retention policies and procedures are designed to allow Customers to comply with their own record retention requirements. If you are a job applicant that deletes your profile with us, your personal data will be removed, anonymized, or de-identified with our job applicant database; however, your data may persist within the applications you previously submit to our Customers until Customer disposal. Job applicants should contact the Customer they sent the application to if they seek enforcement of eligible data rights in that application.
Information on Children.
These Services are not directed at children under the age of thirteen (13) and we do not knowingly collect personal data from children under the age of thirteen (13). If we become aware that we have inadvertently received personal data from a person under the age of thirteen (13), we will delete the personal data from our records. If you believe that we have collected personal data from a child under 13 without parental consent, you may report this to us using any of the privacy support emails listed at the end of this Policy.
If you are a California resident under 18 years old, you have the right to remove personal data you have posted to our Services. Please contact us using any of the privacy support emails listed at the end of this Policy, and describe what personal data you’ve posted that you now want removed. We will use reasonable efforts to remove such personal data in compliance with the law and our other obligations stated herein. We do not sell the personal data of consumers we actually know are less than 16 years of age, unless we receive affirmative authorization from either the consumer who is at least 13 but not yet 16 years of age, or the parent or guardian of a consumer less than 13 years of age.
Right to Revise.
We reserve the right to revise our Policy to reflect changes in our online information practices or to comply with the law by publishing a new version on our website. In circumstances where we materially change the way in which we collect or use personal data, we materially change the terms of this Policy, or where personal data is no longer used consistently with a previously named purpose, we will provide notice and publish the new version on our website. You should periodically check this page to remind yourself of the rights herein.
This website is owned and operated by Governmentjobs.com, Inc. (DBA “NEOGOV”). Our principal place of business is at 300 Continental Blvd., El Segundo, CA 90245. You can contact us by email, telephone, or regular mail using the contact information listed herein.
If at any time you have questions or concerns about this Policy, please feel free to e-mail us at the appropriate contact relative your jurisdiction:
Users who have a visual disability may be able to use a screen reader or other text-to-speech tool to review the contents of this Policy. If you experience any difficulties assessing the information here or you wish to obtain a copy of this Policy, please contact us using the details above.