Last modified: April 28, 2024
PeopleKeys is committed to complying with all laws intended to protect your right of privacy. This Privacy Policy describes (i) the type of information about you that we collect; and (ii) PeopleKeys’ practices with respect to gathering and disseminating information about you. This Privacy Policy was established within the context of our PeopleKeys websites and the potential for gathering personal information within electronic media; however, this Policy is not limited to the PeopleKeys websites. Our Privacy Policy applies whenever Users and PeopleKeys interact, and there is a possibility that during such interaction we may acquire certain information about our Users.
PeopleKeys
8392 Tod Ave
Boardman, Ohio 44512
Local phone: 1-330-599-5580
Toll free: 1-800-779-3472
Bradley Smith, PhD
International Compliance Director
Please submit your inquiry to PeopleKeys here: https://info.peoplekeys.com/submit-your-gdpr-inquiry-or-complaint-to-peoplekeys
How And When Does PeopleKeys Collect Non-Public Personal Information?
In the course of providing services, we may collect and maintain certain nonpublic personal information that will help us to provide assessment services.
PeopleKeys does not collect personal information (such as names, addresses, phone numbers, email addresses or credit card numbers) except when specifically provided by an individual on a voluntary basis. Personal information may be collected as Users perform the following actions:
Individual situations in which the personal data of the Users are processed are described below.
How And When Does PeopleKeys Use Non-Public Personal Information?
Provision of a Service
PeopleKeys may utilize personal information in several discrete ways to perform services as requested and contracted by Clients and End Users.
When purchasing online assessments or other products, PeopleKeys utilizes personal information to complete the purchase transaction and to communicate with Users about the purchase or other inquiry.
In addition, when purchasing assessments or products, PeopleKeys may be required to share personal information with a third party credit card processor to facilitate completion of the transaction. The credit card processor may share the same information with the credit card issuer for the issuer’s use in connection with gathering data related to use of their cards, rewards programs or other purposes. End Users are urged to read and become familiar with the privacy policies governing the use of credit cards.
Also, when purchasing or completing online assessments, PeopleKeys may be required to pass your personal information and assessment results to Clients for the specific purpose of reviewing assessment results. Under those circumstances, information voluntarily input by End Users will be shared with the specific Client who requested the assessment by the End User.
PeopleKeys has no control over the use of an End User’s personal information by a Client, and End Users agree that PeopleKeys is not liable for any use of their personal information by a Client. If End Users have special preferences concerning use of personal information by a Client, End Users must communicate those preferences directly to the Client.
Finally, PeopleKeys may occasionally contact you, typically by email, to notify you of information regarding your transaction.
The scope of data processed for the purpose of provision of services includes the following data: name, email, and in some cases a physical address.
Performance of the agreement concluded by the user with PeopleKeys constitutes the legal basis for data processing for the purpose of provision of services.
External entities entrusted by PeopleKeys for data processing include: Zoho Corporation Pvt Ltd (access to Zoho system), Hubspot, Inc. (Access to the Hubspot system) and Microsoft (use of the Microsoft Azure server).
Marketing
Apart from processing data for the purpose of provision of services, PeopleKeys can also process data of its Users for marketing purposes. In this regard we always ask the user for consent to conduct such activities. The user can always withdraw his/her consent and at any time.
The scope of data processed for marketing purposes includes the first name and email address.
Marketing activities include providing information about new arrivals, promotions, products and services offered by PeopleKeys and are carried out via email.
Consent of the user constitutes the legal basis for data processing for marketing purposes.
External entities entrusted by PeopleKeys for data processing include: Zoho Corporation Pvt Ltd (access to Zoho system) , Hubspot, Inc. (Access to the Hubspot system) and Microsoft.
The Voluntary Nature of Provision of Personal Data
Provision of personal data is voluntary, but necessary to allow for the use of the services offered by PeopleKeys to register on the PeopleKeys website, to make orders via the website as well as to receive information about new arrivals, promotions, products and services offered by PeopleKeys.
How Long Is Your Personal Information Retained?
PeopleKeys may retain personal information as long as Users maintain registered status and/or to comply with hiring laws and regulations, if appropriate. For Users who purchase assessments or other products using a credit card, we retain credit card information for a length of time reasonably necessary to process any future transactions related to purchases, including refunds and charge backs. PeopleKeys may occasionally purge our computer system of information relating to visitors of our Websites and their past transactions.
In terms of data processed for marketing purposes, they are removed immediately once the consent of the user for processing them for this purpose has been withdrawn.
Rights of the Users Connected with Personal Data
Every User whose data is processed by PeopleKeys has the following right:
Representatives of PeopleKeys in the European Union
PeopleKeys complies with the requirements related to the GDPR in the EU. One of the elements of PeopleKeys’ adoption to the new provisions consisted in designating representatives in the EU Member States from which the Users originate. The representative is as follows:
Users from the European Union can contact PeopleKeys directly, as well as the PeopleKeys’ representatives listed above, with regard to all matters related to the protection of personal data.
Representatives of PeopleKeys in the United Kingdom
PeopleKeys complies with the requirements related to the GDPR in the UK. One of the elements of PeopleKeys’ adoption to the new provisions consisted in designating representatives in the United Kingdom from which the Users originate. The representative is as follows:
Users from the United Kingdom can contact PeopleKeys directly, as well as the PeopleKeys’ representatives listed above, with regard to all matters related to the protection of personal data.
Data Privacy Framework (DPF)
Due to the fact that data of European Union and United Kingdom citizens is processed by PeopleKeys in the territory of the United States of America (USA), PeopleKeys has joined the Data Privacy Framework program in order to ensure the appropriate level of security of personal data required by the European and United Kingdom rules (GDPR).
PeopleKeys complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF as set forth by the U.S. Department of Commerce. PeopleKeys has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program and to view our certification, please visit: www.dataprivacyframework.gov
In compliance with the Data Privacy Framework Principles, PeopleKeys commits to resolve complaints about our collection or use of your personal information. EU or UK individuals with inquiries or complaints regarding our Data Privacy Framework policy should first contact PeopleKeys at:
Bradley Smith, PhD
International Compliance Director
Please submit your inquiry to PeopleKeys here: https://info.peoplekeys.com/submit-your-gdpr-inquiry-or-complaint-to-peoplekeys
Privacy Policy Statement
PeopleKeys does not disclose collected personal information with third-parties. If we transfer information to third-parties in the future, Peoplekeys shall remain liable under the Principles of the Data Privacy Framework if its agent processes such personal information in a manner inconsistent with the Principles of the Data Privacy Framework, unless the organization proves that it is not responsible for the event giving rise to the damage.
Dispute Resolution
Within the scope of this privacy notice, if a privacy complaint or dispute cannot be resolved through PeopleKeys’ internal process, PeopleKeys has agreed to participate in the VeraSafe Data Privacy Framework (DPF) Dispute Resolution Procedure. Subject to the terms of the VeraSafe Data Privacy Framework Dispute Resolutions Procedure, VeraSafe will provide appropriate recourse free of charge to you. To file a complaint with VeraSafe under the Data Privacy Framework Dispute Resolution Procedure, please submit the required information to VeraSafe here: https://www.verasafe.com/privacy-services/dispute-resolution/submit-dispute/
Making Data Available
Data of Users are not made available to third persons. PeopleKeys protects the privacy of its Users. Users have the right to access their personal data. PeopleKeys also wishes to inform its Users that their data may be made available to authorized government authorities upon their request submitted in accordance with the provisions of law for the purpose of exercising legitimate objectives, in particular those related to national security or law enforcement. Data of Users may also be made available to authorized government authorities for the purpose of fulfilling obligations imposed upon PeopleKeys by the law. PeopleKeys does not voluntarily provide this information unless an authorized legal request is made we must comply with, which is rare or never. PeopleKeys is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC) and the possibility, under certain conditions, for a User to invoke binding arbitration.
When Might Information Be Disclosed As A Matter Of Law?
PeopleKeys may disclose non-public personal information to unrelated parties in special cases when we have reason to believe that that disclosure is necessary to identify, contact, or bring legal action against a person or persons who may be causing injury to, or interference with, the rights or property of PeopleKeys (including our Websites), computer Users accessing our Websites, or any third party. In addition, PeopleKeys may disclose information about individuals who access our Websites to law enforcement agencies, judicial or government authorities, or to other individuals or entities in response to subpoenas, court orders, or other legal processes.
Consent/Choice Statement
PeopleKeys does not sell or rent personal information about our on-line customers to any third parties. PeopleKeys will not rent or sell non-public personal information we collect from Users except (1) as required by law or (2) with the express authorization or consent of the user.
What Is “Aggregate Information” And What Does PeopleKeys Do With It?
Typically, as visitors browse our Websites, our computers automatically collect information related to how certain features of our Websites are used, what general region our visitors are contacting us from and how many people visit our Websites at any given time. We only use this information in the aggregate, which means that we only derive meaning from the sum of all such information gathered for a period of time and accordingly, we refer to this information as “Aggregate Information”. Aggregate Information includes, but is not limited to your computer’s (i) Internet browser type (e.g., Microsoft Internet Explorer 5.5), (ii) IP address, (iii) resolution settings, (iv) platform type, and (v) originating URLs of referring web pages. We use Aggregate Information to (a) help diagnose problems with our computers, (b) administer our Websites, (c) share certain generalized demographic information with Event Hosts and our advertising partners about visitors of our Websites, and (d) provide our advertising partners with information regarding which visitors saw and clicked on certain advertisements on our Websites. Aggregate Information does not contain any personal information of any of our Website visitors.
What Are “Cookies” And How Does PeopleKeys Use Them?
The term “Cookie” is a nickname for files that a website’s computer system can deposit onto a visitor’s computer hard drive when the visitor is logged on to the website. Cookies are used to recognize a visitor’s repeat visits to the website and what pages are accessed and what functionalities are used while he or she is there. The use of cookies is commonplace on the Internet and they take up minimal room on your computer hard drive. Cookies work by assigning a number to your computer that has a specific meaning to the assigning website. Cookies, by themselves, cannot be used to find out the identity of any visitor. Unless you choose to provide us with information about you, we will never know who you are, even though our computer has previously deposited a cookie on your computer’s hard drive. Other companies that advertise on our Website also have the ability to deposit a different cookie on your computer’s hard drive in a process that we do not control. Since cookies aren’t usable for identifying individuals (i.e., we will not store non-public personal information in a cookie), these advertisers will never know who you are. In addition, you may modify your Internet browser’s settings to notify you whenever any website is going to deposit a cookie on your computer’s hard drive. This notification option generally gives you the opportunity to decide whether to accept or refuse a cookie before it is deposited. There may be some features on our Website, however, that require a cookie to operate correctly. For example, to become a registered user of our Website, you must allow us to deposit a cookie on your computer’s hard drive.
PeopleKey's Web Application Cookie Policies
Data Quality and Security Statement
PeopleKeys uses data security systems to encrypt personal and financial information to reduce the risk that information will be obtained by unauthorized persons. Our electronic security measures are complemented by the physical security of our facilities and limited access to certain critical areas, such as our computer locations. Daily online backups are completed nightly for all data in the PeopleKeys website.
PeopleKeys systems are housed in a data center which offers a pre-built, leading edge information technology infrastructure. This data center offers redundant power systems (flywheel power system and diesel generator), redundant communications connection, environmental controls (air conditioning and dry fire suppression), and security (alarm system, surveillance cameras, smart card locks, and double doors).
About Security: PeopleKeys systems are housed in a data center which provides double door security on all entrances to the building with the first door of each entrance requiring a key. The second door is protected by a card access system and a video surveillance system. Additionally, the data center receives professional security and fire alarm services. Each data center associate is provided with a unique PIN to the security alarm system and knows how to set-off the panic alarm in case of emergency. All entrances are secured by the security system. Additionally, all servers and cabinets remain locked unless they are undergoing active maintenance. Cameras monitor and record all entrances and exits from the premises.
Unfortunately, because of the increasing sophistication of computer hackers and others who would seek to invade computer systems for the purpose of stealing information, damaging systems or denying systems’ ability to operate effectively to safeguard personal and financial information as intended, PeopleKeys cannot guarantee the security of personal or financial information in our possession or the impenetrability of our computer systems under unusual circumstances or our computer system’s resilience to future sophisticated attacks.
In the case of any security breach that could compromise any user data we will release a statement within 24 hours notifying any potentially affected clients as to what extent this may have affected and data and the steps we are taking to rectify the situation.
Links To / From Other Sites
The PeopleKeys Website may contain links to other Internet websites which we do not operate and, conversely, other Internet websites may contain links to our Website. We are not aware of and are not responsible for the privacy policies, practices, or content of such other websites. We encourage Users to read and become familiar with the privacy policies maintained by such other websites.
Information of Minors & Children
PeopleKeys does not target our Website or our products or merchandise for sale on our Website to children, and our Website does not seek to collect contact information from children under the age of 13. If you are under the age of 13, please do not email us, contact our Website, attempt to use our Website, submit information to our Website, or ask us to email you. If you are under the age of 18, you should get permission from a parent or guardian before you email our Website, contact our Website, attempt to use our Website, submit information to our Website, or ask us to email you.