Prometric Privacy Statements
Prometric is committed to protecting the personal information of test candidates, website visitors and other individuals with whom we interact. We have a Global Privacy Program that protects all of the personal information we collect for our own purposes and for our clients, the test sponsors. This Privacy Program helps ensure that personal information is handled properly.
These Privacy Statements explain how we use and disclose personal information that we collect from individuals both online and offline, such as in our test centers. If you have additional questions about privacy or information security, please contact us at DataProtectionManager@prometric.com.
Privacy Statement Index
Safe Harbor Certifications Privacy Notice Highlights for Test Candidates Privacy Statement for Personal InformationPrivacy Statement for BiometricsCalifornia Privacy Rights Malaysia Privacy RightsU.S. Social Security Number Policy StatementHow to Contact Us
Safe Harbor Certifications
Prometric complies with the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from individuals located in the European Economic Area and Switzerland. Prometric has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Safe Harbor program, and to view Prometric certification, please visit http://www.export.gov/safeharbor/.
Prometric applies the U.S.-EU Safe Harbor Framework and U.S.-Swiss Safe Harbor Framework to all data received from individuals located outside the United States.
Privacy Notice Highlights for Test Candidates
Prometric is committed to protecting the privacy and security of all personal information that we process in order to provide testing services to our clients, the test sponsors. This highlights notice provides a summary of our practices with regard to all of the personal information we collect and use in connection with testing services we offer for our clients.If you are a test candidate, Prometric will collect and process your personal information only as instructed or permitted by your test sponsor or you. We will collect and process that information that is reasonably needed to register you for a test (including verifying that you are eligible to take the test and verifying your identity), administer the test (including protecting the security and integrity of the testing process), process the test results, and resolve any issues that may have occurred during the testing process.
If permitted under applicable law, we may communicate with you regarding other testing events offered by Prometric and your test sponsor. You may opt-out of receiving these communications at any time.
We will at all times maintain reasonable and appropriate security controls to protect your information. We have special controls to protect any sensitive personal information (such as government issued identification numbers and biometrics) that may be collected for security and identity verification purposes.
We may disclose your personal information to your test sponsor, who will use that information in accordance with its own privacy policies.
We may disclose your personal information to our affiliates and data processors as needed to provide the services that you and the test sponsor have requested. These entities are all contractually bound to limit use of your personal information as needed to perform only the services requested.
We will also always disclose personal information when required to do so by law, such as in response to a subpoena, including to law enforcement agencies and courts in the United States and other countries where we operate. Prometric will comply with all local privacy laws in the collection and processing of personal information, including fingerprint images.
If you are based outside of the United States, your personal information may be transferred to Prometric, test sponsors and data processers in the United States and elsewhere in the world. Prometric will always protect the privacy and security of your personal information, regardless of where it is processed. Prometric applies the Safe Harbor principles to all data received internationally and within the United States. Personal information transfers from the European Economic Area and other countries with data transfer restrictions will be authorized by our Safe Harbor Certifications.
If you have questions about your privacy rights, please contact us via email to DataProtectionManager@prometric.com. You can also write us at the address in the How to Contact Us section.
For more information, please read our complete Privacy Statement for Personal Information.
Privacy Statement for Personal Information
This Privacy Statement explains our practices with regard to all “Personal Information” collected and used by Prometric. This Privacy Statement is effective as of December 31, 2014.
“Personal Information” is any information that can be used to identify, locate or contact you. It also includes other information that may be associated with your Personal Information. Such information may include:
When you register or take a test, we also collect Transaction Information about you during your testing processes. We also collect Transaction Information when you visit our website, use our applications or contact us, such as for customer service purposes.
To help ensure the security and integrity of the testing process, we may also collect information in our test centers using technological means, such as identification document scanners, fingerprint scanners, digital cameras, and audio-video monitoring equipment. In each case, we only use these technologies as permitted by applicable laws. If your testing program uses a biometric enabled check in process at the test center, please click here to see our specific privacy statements for biometrics.
Prometric uses your Personal Information to fulfill your requests for information and services, to administer testing programs securely and efficiently, and to operate our business in an appropriate manner. For example:
Employees (Active and Potential)
Prometric does not share Personal Information with third parties for their own marketing purposes. We limit our sharing of your Personal Information as follows:
Please note that we may also use and disclose information about you that is not personally identifiable. For example, we may publish reports that contain aggregated and statistical data about our test candidates or website visitors These reports do not contain any information that would enable the recipient to contact, locate or identify you.
In some cases, we do associate the information we collect using cookies and other technology with your Personal Information. This Privacy Statement governs how we use all of this information when we associate it with your Personal Information.
This section describes the types of data we collect by different technologies:
When you visit our website, we may place cookies on your computer. Cookies are small text files that websites send to your computer or other Internet-connected device to uniquely identify your browser or to store information or settings in your browser. Cookies allow us to recognize you when you return. They also help us provide a customized experience and enable us to detect certain kinds of fraud. In many cases, you can manage cookie preferences and opt-out of having cookies and other data collection technologies used by adjusting the settings on your browser. All browsers are different, so visit the “help” section of your browser to learn about cookie preferences and other privacy settings that may be available.
Our websites may use Flash Cookies (also known as Local Stored Objects) and similar technologies to personalize and enhance your online experience. The Adobe Flash Player is an application that allows rapid development of dynamic content, such as video clips and animation. We use Flash cookies for security purposes and to help remember settings and preferences similar to browser cookies, but these are managed through a different interface than the one provided by your web browser. To manage Flash cookies, please see Adobe’s website at http://kb2.adobe.com/cps/526/52697ee8.html or visit www.adobe.com. Prometric does not use Flash cookies or similar technologies to serve its own interest-based advertising.
Prometric has relationships with third party advertising companies to place advertisements on its websites and to perform analytics and reporting functions for its websites. These third party advertising companies may place cookies on your computer when you visit our website or other websites so that they can display targeted advertisements to you. We expect our third party adverting companies to use reasonable efforts to respect browser do-not-track signals by not delivering targeted advertisements to website visitors whose browsers have a do-not-track setting enabled. Additionally, Prometric does not knowingly allow these third party advertising companies to collect Personal Information in this process, and we do not give any Personal Information to them. However, this Privacy Statement does not cover the collection methods or use of the information collected by these vendors. For more information about third party advertising or to opt out of being targeted by many third party advertising companies, please visit the Network Advertising Initiative (NAI) at www.networkadvertising.org. You may also visit www.aboutads.info/choices to learn about how you may opt-out of third-party collection and use of your information for ad targeting.
Prometric’s websites offer you the ability to share your content with your friends using social media, such as Facebook and Twitter. Use of the “like” button, sharing buttons and other tools is subject to each social media platform’s privacy policies.
Our websites also use Facebook Social Plugins. If you are logged into Facebook while browsing on our website, Facebook Social Plugins allows Facebook to share information about your activities on our website with other Facebook users who use our website. For example, Social Plugins allows Facebook to show your Likes and comments on our pages to your friends. Facebook Social Plugins also allows you to see your friends’ Facebook activity on our website. Prometric does not receive or control any of the content from Facebook Social Plugins. For more information about Facebook Social Plugins and other social media tools, click here.
Prometric may allow you to sign in to your online account using Facebook Connect. If you choose to do this, we may collect information necessary to facilitate social interactions such as friend lists, birthday, check-ins, basic profile information and your profile picture but only if the privacy settings you and your friends set within Facebook allow it. We will use the information we collect to create and facilitate an interactive social experience. We will always comply both with the terms of this privacy statement as well as with Facebook Connect terms regarding use of Facebook profile information.
Prometric offers “tell-a-friend” functionality on our websites. If you choose to use this function, we will collect Contact Information for your friend. We will automatically send your friend a one-time email with the information you specified or inviting him or her to visit the site. Prometric uses this information for the sole purpose of sending this one-time email and does not retain the information.
Prometric offers mobile applications that allow you to access your account, interact with us online and receive other information via your smartphone. All Personal Information collected by Prometric via our mobile applications is protected by the terms of this Privacy Statement.
When you download our mobile applications, you may choose to allow us to obtain your precise location from your mobile device. We use this information to customize our response to your requests. For example, if you are searching for a test center, we can display only ones in your area and provide access to real-time maps. We may also offer automatic ("push") notifications. We will provide push notifications only to those customers who opt-in to receive such notifications from us. You do not have to provide location information to Prometric or enable push notifications to use any of our mobile apps. If you have questions about location and notification privacy, please contact your mobile service provider or the manufacturer of you device to learn how to adjust your settings.
Prometric also works with third parties that may collect or receive information from your mobile applications and use that information to provide measurement services and targeted advertisements. For more information about third party advertising or to opt out of being targeted by many third party advertising companies, please visit the Network Advertising Initiative (NAI) at www.networkadvertising.org. You may also visit www.aboutads.info/choices to learn about how you may opt-out of third-party collection and use of your information for ad targeting.
You can always limit the information you provide to Prometric. If you are test candidate, however, we abide by the policies of the test sponsor regarding the Personal Information that must be collected in order to take a test. If you do not wish to provide Personal Information required by the test sponsor, you will need to contact the test sponsor to make other testing arrangements.
You can limit the communications that Prometric sends to you. To opt-out of commercial emails, simply click the link labeled “unsubscribe” at the bottom of any email we send you. Please note that even if you opt-out of commercial emails, we may still need to contact you with important transactional information about your account. For example, even if you opt-out of emails, we may still send you testing confirmations and reminders, information about test center changes, and information about your test results. For information on how to opt out of the collection and use of your data by third-parties for ad targeting please see Cookies and Other Data Collection Technologies.
If you have any questions about your choices or if you need any assistance with opting-out, please contact us via email to DataProtectionManager@prometric.com. You can also write us at the address in the How to Contact Us section below. If you send us a letter, please provide your name, address, email address, and information about the communications that you do not want to receive.
As permitted by applicable law, you may also withdraw your consent to the processing of your Personal Information. However, if you exercise this right you may not be allowed to take any further assessments from your test sponsor and your test sponsor may refuse to distribute your exam results.
Prometric respects your right to access and correct your Personal Information. You may request access to and correction of your Personal Information at any time. If you have an online account, you can log into your account at any time to access and update the information you have provided to us. If you need assistance updating your Personal Information, please contact us via email to DataProtectionManager@prometric.com. You can also write us at the address in the How to Contact Us section below.
Prometric has implemented an information security program that contains administrative, technical and physical controls that are designed to safeguard your Personal Information. For example, we use industry-standard encryption technology to secure Sensitive Information when it is being collected and transmitted over the Internet as well as firewalls, site monitoring and intrusion detection software.
Protecting children's privacy is important to us, and our testing services are generally provided to individuals who are 18 years of age or older. For that reason, we do not collect any Personal Information from children under 13 years of age on our websites or via our mobile apps. Parents or guardians of children under 13 must contact us offline in order to register a child for a testing program.
If you believe that a child has provided information to us, please contact us via email to DataProtectionManager@prometric.com so that we can delete that information. You can also write us at the address in the How to Contact Us section below.
This Privacy Statement only addresses the use and disclosure of information by Prometric. If you are a test candidate, we encourage you to familiarize yourself with the privacy statement provided by your test sponsor. Test sponsors have their own privacy policies and data collection, use and disclosure practices, and we are not responsible for their practices.
Prometric is headquartered in the United States of America. Your Personal Information may be accessed by or transferred to the United States or to our affiliates and data processors elsewhere in the world. By providing us with your Personal Information, you consent to this transfer. We will always protect the privacy and security of your Personal Information, regardless of where it is processed or stored. Personal Information transfers from the European Economic Area and other countries with data transfer restrictions are authorized under our Safe Harbor Certifications or by other appropriate means.
From time to time, we may update this Privacy Statement to reflect new or different privacy practices. We will place a notice online when we make material changes to this Privacy Statement. Additionally, if the changes will materially affect the way we use or disclose previously-collected Personal Information, we will notify you about the change by sending a notice to the primary email address associated with your account.
Please contact us if you have any questions or comments about our privacy practices or this Privacy Statement. You can always reach us online at DataProtectionManager@prometric.com. You can also reach us via mail to: Data Protection OfficerLegal DepartmentPrometric Inc.1501 South Clinton StreetBaltimore, Maryland 21224 USA
Privacy Statement for Biometrics
Prometric’s Biometric Enabled Check-In System is designed to improve the security and integrity of the testing process in conjunction with protecting the privacy of the testing candidate. The Biometric Enabled Check-In System converts a fingerprint image to a digital image, which is used for the purposes of candidate identity verification, detecting and preventing fraud and misrepresentation, maintaining the integrity of the testing process and improving security at test center sites.
How the Biometric Enabled Check-In System Works
The Biometric Enabled Check-In System uses a scanner located in the Prometric test center to capture the candidate’s fingerprint. The candidate places their finger on the scanner and the Biometric Enabled Check-In System creates a digitized representation of the fingerprint (a “template”). The fingerprint image and template are then paired with other personal information obtained from identification documents provided by the candidate at check-in. This process allows Prometric to accurately identify the candidate prior to testing and is used to validate the candidate for repeated testing sessions conducted by the same test sponsor. The candidate is also able to use the fingerprint scanner to gain access to other test center facilities consequently limiting the need to provide additional identification to test center workers.
For security purposes, Prometric has arranged for all biometric data to be securely transferred to and stored by an outside vendor. Prometric’s outside vendor is contractually required to manage the security and confidentiality of the data, to protect it from unauthorized access, use, disclosure, or alteration, and to retain and destroy the data in accordance with applicable law.
Purposes and Uses for Biometric Data
Biometric data is solely used by Prometric to: (1) administer tests and verify a candidate’s identity on an ongoing basis as they participate in present and future assessments with the same test sponsor; (2) gain the candidate access to other test center facilities consequently limiting the need to provide additional identification to test center workers; (3) detect and prevent fraud and misrepresentation by unauthorized candidates; (4) maintain the integrity of the testing process; (5) improve security of test centers by detecting and preventing unauthorized access to secure areas; and (6) as required by law.
Disclosures of Biometric Data
As a matter of policy, Prometric does not disclose biometric data to any third party (including test sponsors) other than its outside vendor. However, in the event of an investigation of cheating, unauthorized testing, or other misconduct, Prometric may disclose the biometric data to the test sponsor or to law enforcement agencies and/or other third parties involved in the investigation of misconduct.
Security and Data Retention
Prometric and its subcontractors shall at all times protect a candidate’s personal information with operational, administrative, technical and physical security safeguards. Unless a candidate’s personal data or fingerprint images is being used in connection with an active security investigation; the test sponsor, Prometric and/or the outside vendor on behalf of the test sponsor shall retain candidate data collected through the Biometric Check-In System in accordance with the law in the jurisdiction in which the data was obtained, or for a maximum of five years from the date of the last assessment or the expiration of the purpose for which the candidate’s data was collected; whichever is shorter.
Other personal data collected by Prometric during test registration, new hiring, or any other administrative process, is retained by Prometric in accordance with its record retention guidelines, and may also be sent to a test sponsor and/or retained in accordance with the test sponsor’s record retention guidelines.
Data Processed in the United States
To learn more about the Safe Harbor program, and to view Prometric’s certifications, please visit .http://www.export.gov/safeharbor/.
At any time, a candidate may:
In each instance, a candidate should direct their written request, inquiry or complaint to:
Prometric’s Privacy Team:Data Protection OfficeLegal DepartmentPrometric Inc.1501 South Clinton StreetBaltimore, Maryland 21224 Or via email to: DataProtectionManager@prometric.com;
I acknowledge that by checking the appropriate box stating “I consent” (if registering online) or by completing the Test Sponsor’s and/or Prometric’s Registration and Scheduling processes (if registering by telephone) that I have expressly consented to the processing of my personal data, fingerprint images, and assessment results, and that such consent is binding upon me until and unless I affirmatively withdraw that consent.
I understand that failing to check the “I consent“box (if registering online) or affirmatively withdrawing my consent (if registering by telephone) will not prevent me from completing the registration and scheduling process, and that if I fail to consent through either of these processes that I will be given another opportunity to consent to the collection and processing of my personal data, fingerprint images, and assessment results on the day of my Assessment. *I understand that on the day of the Assessment if I exercise my right not to consent, or withdraw my prior consent, to the collection and processing of my personal data, fingerprint images, and assessment results, that depending on the laws of the jurisdiction in which I am taking my Assessment, my Test Sponsor may direct Prometric to not allow me to take the Assessment, or I may be required to contact the Test Sponsor to make other arrangements to take the Test Sponsor’s Assessments.
California Privacy Rights
California Civil Code Section 1798 allows California residents to ask companies with whom they have an established business relationship to provide certain information about the companies’ sharing of personal information with third parties for direct marketing purposes.
Prometric does not share any California consumer personal information with third parties for marketing purposes without consent.
If you are a test candidate, Prometric will provide your personal information to your test sponsor, who may use the information in accordance with its own privacy policies.
California residents who wish to request further information about our compliance with this law or have questions or concerns about our privacy practices may contact us at DataProtectionManager@prometric.com.
You can also reach us via mail to: Data Protection OfficerLegal DepartmentPrometric Inc.1501 South Clinton StreetBaltimore, Maryland 21224 USA
U.S. Social Security Number Protection Policy Statement
Prometric collects Social Security numbers and other sensitive personal information in the ordinary course of its business. Prometric has implemented reasonable technical, physical and administrative safeguards to help protect the Social Security numbers and other sensitive personal information from unlawful use and unauthorized disclosure. Prometric associates and contractors are required to follow these established procedures, both online and offline.
Access to Social Security numbers is limited to those employees and contractors who have a need to access the information to perform tasks for Prometric. Social Security numbers are only disclosed to third parties in accordance with Prometric’s established policies. Prometric will only disclose Social Security numbers to those service providers, auditors, advisors, and/or successors-in-interest who are legally or contractually obligated to protect them or as required or permitted by law.
Prometric representatives are always available to assist.
Career Opportunities | Terms | Privacy | Ethics | Site Status | ©2015 Prometric