Thank you for visiting www.enrollmentadvisory.com (“the Site”)! The Site is strongly committed to protecting your privacy. The purpose of this privacy policy is to inform users of the Site as to what information we collect and how and why we use such information.
DISCLOSURE REGARDING COLLECTION AND USE OF PERSONAL INFORMATION
If you make use of the site, you agree to these terms. As we update and expand our services, this policy might change, so please review it from time to time.
THE INFORMATION WE COLLECT
Through the Site, we do not collect personal information from users by way of a contact form or through the capture of cookies or an ISP address.
COLLECTION OF INFORMATION BY OTHERS
The Site may contain links to other websites, including links that are placed there by us, such as text hyperlinks. Please be aware that we are not responsible for the privacy practices of any other website. We encourage all users of the Site to be aware of when they leave the Site, and to read the privacy policies of every website that collects personal information.
WEBSITE DATA WE COLLECT
This Site uses Google Analytics as a way of collecting non-personal information to improve the design and content of the Site. We also may use this information in the aggregate to analyze how the Site is used.
USE OF COOKIES
To enhance your online experience with us, many of our web pages use “cookies.” Cookies are text files placed on your hard disk by our web server to store your preferences. Cookies, by themselves, do not tell us your e-mail address or other personal information.
OUR COMMITMENT TO SECURITY
We believe we have in place the appropriate electronic, and managerial procedures to safeguard and help prevent unauthorized access and maintain data security.
INTERNATIONAL USERS
If you are visiting the Site from a location outside of the United States, your connection will be through and to servers located in the United States.
GDPR POLICY
Enrollment Advisory Group recognizes the General Data Protection Regulation (GDPR) and the rights of European Union citizens whose information may reside in our CRM and is continuously engaged in efforts that show compliance of data processing of personal information.
Data Collection
As defined within the context of GDPR, personal data is data that can be directly or indirectly related to a person (data subject). Personal data includes any identifiable personal data that can connect personal data to a data subject (e.g., name, citizen ID, phone number, email address, gender, nationality, mailing address, etc.).
The Enrollment Advisory Group uses information provided to us by our college partners and third-party vendors in connection with the services we offer. These uses include sharing personal information with our college partners for the purpose of international recruitment. We do not sell, share or rent this information for any other purpose.
Lawful Basis for Processing Data
Enrollment Advisory Group houses personal data to recognize, process and communicate with our college partners’ client base. The processing of this data is lawful and necessary and falls into the following category:
Consent: We use personal information provided to us by our college partners and/or third-party vendors who have obtained the data subjects’ implied consent to receive communication or assistance from Enrollment Advisory Group.
Retention of Data
Enrollment Advisory Group will process (collect, store and use) information provided to us in a manner compatible with the EU’s General Data Protection Regulation (GDPR). We store student information in a GDPR-compliant CRM for the sole purpose of tracking and managing a client’s enrollment history. For business purposes and to service our clients, personal data may be kept for up to six years.
Employee/Vendor Training on GDPR
We provide data security training to our employees and third-party agents periodically. In addition to online training conducted with third-party vendors, we also make available data security training and processing protocol on our website.
Data Security
Because EAG uses third-party service providers to secure its data, it is the responsibility of those providers to notify EAG of a security breach and the necessary steps they will take to secure the data after the breach. If the breach impacts any of EAG’s college partners, EAG will notify those partners within 72 hours of being notified of the breach.
CHANGES TO THIS POLICY
Because our business needs may change over time, we reserve the right, at our discretion, to change, modify, add, or remove portions from this policy at any time. If at any time in the future we plan to use your personal information in a way that differs from this policy, we will revise this policy as appropriate. Your continued use of the Site following the posting of any changes to this policy means you accept such changes. This policy is effective as of May 2018.
