Last modified: May 22, 2018
Sacred Heart University’s policy is to respect the privacy of all website visitors to the extent permitted by law. This online privacy statement is intended to help you understand:
- What types of information we collect
- How we use information we collect
- How we share information we collectHow we store and secure information we collect
- How to access and control your information
- How we transfer information we collect internationally
- Other important privacy information
- How to contact us
- GDPR: Additional privacy considerations
Types of Information We Collect
There are four types of information that this site may collect during your visit:Network traffic logsWeb visit logsCookiesVoluntary information
How We Use Information We Collect
Network Traffic LogsIn the course of ensuring network security and consistent service for all users, the University employs software programs to do such things as monitor network traffic, identify unauthorized access or access to nonpublic information, detect computer viruses and other software that might damage University computers or the network, and monitor and tune the performance of the University network.In the course of such monitoring, these programs may detect such information as email headers, addresses from network packets, and other information. Information from these activities is used only for the purpose of maintaining the security and performance of the University’s networks and computer systems. Personally identifiable information from these activities is not released to external parties without your consent unless required by law.
Web Visit LogsUniversity web sites routinely collect and store information from online visitors to help manage those sites and improve service. This information includes the pages visited on the site, the date and time of the visit, the internet address (URL or IP address) of the referring site, the domain name and IP address from which the access occurred, the version of browser used, the capabilities of the browser, and search terms used on our search engines.This site makes no attempt to identify individual visitors from this information. Any personally identifiable information is not released to external parties without your consent unless required by law.
Voluntary InformationIn the course of using this web site, you may choose to provide us with information to help us serve your needs. For example, you may send us electronic mail (through a mailer or a web form) to request information, you may sign up for a mailing list, or you may send us your address so we may send you an application or other materials. Any personally-identifiable information you send us will be used only for the purpose indicated.In addition to facilitating basic communication with you, the information we hold helps us enhance your experiences on our web site and the efficacy of our communications with you. For example, by holding your basic personal information, we can automatically fill out transactional forms with that data to save you time and effort.We use personal information to communicate essential information about transactions, such as an electronic receipt for a tuition payment or a confirmation for an event registration.We also use it to inform you about Sacred Heart University events, programs, and services of potential interest, unless you have opted out of such communications.
How We Share Information We CollectWe will not sell, exchange, or otherwise distribute your personally-identifiable information without your consent, except to the extent required by law. We do not retain the information longer than necessary for normal operations.Each web page requesting information discloses the purpose of that information. If you do not wish to have the information used in that manner, you are not required to provide it. Please refer to the contact information listed below with any questions or concerns on the use of personally-identifiable information.
How We Store and Secure Information We CollectWe are committed to ensuring that your information is secure. In order to prevent unauthorized access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.The personal information we collect is stored in databases and files that are protected by passwords and firewalls. In addition, online forms used for financial transactions are secured with SSL encryption technology to ensure the safety of sensitive information transmitted through them (e.g., credit card information). When credit card information is stored, it is done so only in an encrypted format.While we implement safeguards designed to protect your information, no security system is 100% safe. Due to the inherent nature of the internet, we cannot guarantee that data, during transmission through the internet or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others. We will respond to requests about this within a reasonable timeframe.
How to Access and Control your InformationYou have the right to request a copy of your information, to object to our use of your information (including for marketing purposes), to request the correction, deletion or restriction of your information, or to request your information in a structured, electronic format.In Luxembourg, any questions or concerns can be directed to Antoine Rech, Data Protection Officer, email@example.com.
How We Transfer Information We Collect InternationallyWe collect information globally and primarily store that information in the United States. We transfer, process and store your information outside of your country of residence, to wherever we, Sacred Heart University, or our third-party service providers operate. Whenever we transfer your information, we take steps to protect it.
How to Contact UsIn Luxembourg, any questions or concerns can be directed to Antoine Rech, Data Protection Officer, firstname.lastname@example.org.
GDPR: Additional Privacy Considerations
Usage of Personal InformationAs of May 25, 2018, the General Data Protection Regulation (EU) 2016/679 (“GDPR”) is in effect. The GDPR requires that a valid legal basis is used in processing personal data. In certain countries, there are specific legal bases that we rely on in order to use personal information. They include but are not limited to the following:
Contract PerformanceThe use of your personal information may be necessary to perform the agreement you have with us. For example, this is necessary to establish your agreement with the University, as well as to create and maintain your account and secure accessibility as a student.
Legitimate Analysis, Improvements, and AdministrationWe may use your personal information for our legitimate interests. For example, we rely on our legitimate interest to analyze and improve the content on our websites, to send you notifications about information about Sacred Heart University or to use your personal information for administrative, fraud detection or legal purposes.
Legal ObligationWe may use your personal information to comply with legal requirements, per law enforcement and government. Personal information (PII) may be disclosed to law enforcement officials and government agencies, and private parties as we believe necessary. Sacred Heart University must comply with applicable law(s) and legal process to protect our rights, including any parties involved, in order to prevent or cease unethical or illegal activity. If the government asks for information, we must comply.
ConsentAt times, we may request your consent to conduct certain actions with your personal information. When requesting your consent, we are transparent in ensuring you know what you are consenting to.
Best Practice Security MeasuresSacred Heart University takes seriously the protection of personal information from unauthorized access and disclosure. Given the best circumstances, however, no one can guarantee the absolute certainty of complete security regarding transmission of information over the Internet or storage of data.
Data RetentionYour personal information will be retained as needed in order to fulfill the purposes for which it was collected. This includes the retention and use of personal information to comply with our business and legal obligations, enforce our agreements, and resolve disputes if and when they arise.