Tracker Corp Privacy Policy

Last Modified: May 23, 2018

Please note, this Privacy Policy (“Policy”) relates to Tracker’s products, I-9 Complete and Tracker IMS 8 SaaS platforms (“Products”).

1. PRIVACY STATEMENT

PC Legal Tools Inc, dba Tracker Corp (“Tracker”) has created this Policy to demonstrate our commitment to privacy. This Policy discloses information gathering and dissemination practices for Tracker’s Products and third-party software embedded therein, as further defined in Tracker’s Subscription License Agreements (collectively, the “Application”).

A. Information Collection and Use

Tracker is not responsible for the privacy practices of its Customers. Accordingly, Tracker encourages users of the Application to read the privacy statements of every applicable company. This privacy statement applies solely to the role Tracker plays in collecting and storing data via the Application.

The Application collects Personal Information (such as name, home address, citizenship status, identification numbers) throughout several points within Tracker’s Products. Candidates or employee users may enter Personal Information directly within the Application and/or Personal Information may be entered indirectly by a Customer’s staff or other systems (i.e., data entered manually or fed electronically from another system into the Application via an integration). Depending on the Application in question, Personal Information within the Application is either stored in our managed hosting provider’s datacenters and/or on a Customer’s systems.

Tracker will not sell, rent, exchange or share Personal Information with any third parties without permission or except as described in this Policy. Tracker will share Personal Information with government authorities and others to respond to investigations, court orders, legal process, or to investigate, prevent or act regarding illegal activities, suspected fraud, or situations involving potential threats to the physical safety of any person, violations of Tracker’s terms of service, or as otherwise required by law. If Tracker is involved in a merger, acquisition, or sale of all or substantially all its assets, you will be notified via email and/or a prominent notice on our website of any such change in ownership or uses of your Personal Information, as well as any choices you may have regarding your Personal Information.

B. EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield

PC Legal Tools Inc, dba Tracker Corp (“Tracker”) participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework. Tracker is committed to subjecting all Personal Information received from European Union (“EU”) member countries and Switzerland, in reliance on each Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Frameworks, visit: https://www.privacyshield.gov/Program-Overview. To verify our self-certification under the Privacy Shield Framework, visit U.S. Department of Commerce’s Privacy Shield List.

Tracker is responsible for the processing of Personal Information it receives, under each Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Tracker complies with the Privacy Shield Principles for all onward transfers of Personal Information from the EU and Switzerland, including the onward transfer liability provisions.

With respect to Personal Information received or transferred pursuant to each Privacy Shield Framework, Tracker is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain circumstances, Tracker may be required to disclose Personal Information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

Tracker commits to cooperate with the panel established by the EU Data Protection Authorities (DPAs) and/or the Swiss Federal Data Protection and Information Commissioner, as applicable and comply with the advice given by the panel and/or Commissioner, as applicable regarding human resources data transferred from the EU and/or Switzerland, as applicable in the context of the employment relationship.

If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) via JAMS.

Under certain conditions, more fully described on the Privacy Shield website, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.

C. Choice

The Application collects information for its Customers. Unless otherwise removed by the Customer, users are given open notice of and the choice to provide Personal Information, when applicable.

If you are a candidate or employee user of one of our Customers and would no longer like to be contacted by one of our Customers that use the Application, please contact the Customer directly.

By submitting your information to Tracker, you acknowledge and agree that the technical processing and transmission of your information, may involve, (a) transmissions over various networks, including the transfer of this information to the United States and/or other countries for storage, processing and use by Tracker, its affiliates, and their agents; and (b) changes to conform and adapt to technical requirements of connecting networks or devices. Accordingly, you agree to permit such parties to make such transmissions and changes.

D. Correction/Updating Personal Information

Tracker has no direct relationship with the persons whose Personal Information it processes. A candidate or employee user who seeks access, or who seeks to correct, amend, or delete inaccurate data may do so by directly logging into the Application or by contacting the Customer, directly, depending on the Application that is being used.

E. Data Retention

Tracker will retain Personal Information we process on behalf of our Customers within the Application for as long as needed to provide services to our Customers. Tracker will retain this Personal Information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. Customers of Tracker may have differing retention periods.

F. Service Provider, Sub-Processors/Onward Transfer

Tracker may transfer Personal Information to companies that help us provide our service. Transfers to subsequent third parties are covered by the provisions in this Policy regarding notice, choice, and the service agreements with our Customers.

G. Opt-Out

Candidate and employee users are given the opportunity to ‘opt-out’ of a Customer’s mailings and notifications by contacting the Customer directly.

H. Notification of Changes

Users should contact the Customer for more information regarding changes to a Customer’s privacy policy. Changes to this Policy are posted on Tracker’s website at: https://www.trackercorp.com /contact/privacy-policy/.

2. AUTOMATED DATA COLLECTION TECHNOLOGY

A. Information Collection and Use

Tracker may collect information about users automatically as they navigate through the Application. Information collected automatically may include usage details, browser type, URL’s accessed, date and time stamps, IP addresses, and information collected through cookies and other tracking technologies.

This information is used by Tracker for several purposes, including authentication, preferences, application health, and performance analytics.

We do not link automatically-collected data to personally identifiable information.

The technologies Tracker uses for this automatic data collection may include, without limitation:

  • Cookies (or browser cookies). A cookie is a small file placed on the hard drive of the user’s computer. Users may refuse cookies by activating the appropriate setting on their browser. However, if this setting is selected users may be unable to access certain parts of the Application. Tracker will issue cookies when users direct their browser to our Application unless the user has adjusted their browser setting so that it will refuse cookies.
  • Flash Cookies. Certain features of the Application may use local stored objects (or Flash cookies) to collect and store information about user preferences and navigation to, from, and on the Application. Flash cookies are not managed by the same browser settings as are used for browser cookies. Users may refuse to allow flash cookies by activating the appropriate setting through their Flash Settings Manager.

B. Choice

Users can set their browser to refuse all or some browser cookies, or to alert them when cookies are delivered and used. Users can learn how to manage their Flash cookie settings, by visiting the Flash player settings page on Adobe’s website. If users disable or refuse cookies, some parts of the Application may be inaccessible or may not function properly.

3. SECURITY MEASURES

A. Data Security

Each instance of the Application is password-protected and is configured to enforce SSL (128-bit encryption or stronger) to secure access. Passwords are selected using a password strength feature permitting a minimum of eight (8) characters; however, the number of required characters may be configured to be greater than eight (8) characters. Passwords are stored on secure database servers and can only be accessed or updated by parties having sufficient access permissions. Passwords are not sent in clear text over the Internet if the Application is configured to enforce SSL.

Multiple failed login attempts result in users being locked out of the Application. Tracker does not provide VPN to VPN, direct database, or any out-of-band access. All data access is restricted to the web-based platform itself, except for API and other integration methodologies supported by Tracker.

The security of your Personal Information is important to us. We follow generally accepted standards to protect the Personal Information submitted to us, both during transmission and when we store and process it in our data center. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Therefore, we cannot guarantee its absolute security when we have endeavored to follow generally accepted standards. In addition, we do not take responsibility for your systems, the Internet itself or any third-party networks or services used to transmit data which are outside the firewall of the data center we use to process and store your Personal Information. If you have any questions about the security on our website or our services, please contact us.

4. Disclosure of Information for Law Enforcement

Tracker may disclose Personal Information as required by law, such as to comply with a subpoena, or similar legal or security process when we believe in good faith that disclosure is necessary to protect our rights, protect the safety of our users or others, investigate fraud, or respond to a government request.

5. Ownership & Administration

This Policy is owned and administered by the Tracker IT department.

To ask questions or comment about this policy and our privacy practices, contact us at:

trackerprivacycompliance@trackercorp.com
Tracker Corp
559 Sutter St.
San Francisco, CA 94102
USA

6. Applicability

This Policy applies to the information gathering and dissemination practices for the Application and supersedes all other policies, procedures, practices, and guidelines relating to the matters set forth herein.

Tracker use reasonable efforts to ensure that all partner integrations maintain information gathering and dissemination practices that meet industry standards for security and privacy, and such use reasonable efforts to protect the security and privacy of all Information received by, though, and on behalf of Tracker. As specific practices are unique to each product and its provider, such practices may not match those set forth herein for the Application.

In addition to the rights described elsewhere in this Policy, you may have additional data protection rights pursuant to applicable data protection legislation. If you are an individual in the European Union (“EU”), these may include the right to data portability, the right to withdraw consent for processing, the right to object to or restrict the processing of your Personal Information, and the right to lodge a complaint with the supervisory authority of the EU country in which you reside.