Privacy Policy of Pennsylvania DECA

Personal Data processed for the following purposes and using the following services:

• • Analytics

    • Google Analytics and Analytics collected directly

      Personal Data: Cookies; Usage Data

  • Contacting the User

    • Contact form

      Personal Data: address; city; country; email address; first name; last name; phone number; state; ZIP/Postal code

    • Phone contact

      Personal Data: phone number

  • Data transfer outside the EU

    • Data transfer from the EU and/or Switzerland to the U.S based on Privacy Shield

      Personal Data: various types of Data

  • Displaying content from external platforms

    • Font Awesome

      Personal Data: Usage Data

    • Google Maps widget and Instagram widget

      Personal Data: Cookies; Usage Data

    • Google Fonts

      Personal Data: Usage Data; various types of Data as specified in the privacy policy of the service

  • Hosting and backend infrastructure

    • Amazon Web Services (AWS)

      Personal Data: various types of Data as specified in the privacy policy of the service

  • Interaction with external social networks and platforms

    • Facebook Like button and social widgets, Twitter Tweet button and social widgets and Pinterest “Pin it” button and social widgets

      Personal Data: Cookies; Usage Data

  • Managing contacts and sending messages

    • Amazon Simple Email Service

      Personal Data: email address

  • Platform services and hosting

    • Google Play Store and Apple App Store

      Personal Data: Usage Data

  • Registration and authentication provided directly by Pennsylvania DECA

    • Direct registration

      Personal Data: address; city; company name; email address; first name; last name; password; phone number; state; username; ZIP/Postal code

  • SPAM protection

    • Google reCAPTCHA

      Personal Data: Cookies; Usage Data

    • Akismet

      Personal Data: various types of Data as specified in the privacy policy of the service

  • Traffic optimization and distribution

    • Cloudflare

      Personal Data: Cookies; various types of Data as specified in the privacy policy of the service

Further information about the processing of Personal Data

• • Privacy Shield participation: data transfers from the EU and Switzerland to the United States

    The Owner participates in and complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of Personal Data transferred from the European Union and Switzerland to the United States. The policies and rights outlined below are therefore equally and explicitly applicable to Users from Switzerland, except if stated otherwise. The Owner has certified to the Department of Commerce that it adheres to the Privacy Shield Principles.

    If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view the Owner’s certification, please visit https://www.privacyshield.gov/welcome (or find the direct link to the certification list of Privacy Shield participants maintained by the Department of Commerce https://www.privacyshield.gov/list).

    What does this mean for the European User?

    The Owner is responsible for all processing of Personal Data it receives under the Privacy Shield Framework from European Union individuals and commits to subject the processed Personal Data to the Privacy Shield Principles.

    This, most importantly, includes the right of individuals to access their personal data processed by the Owner.

    The Owner also complies with the Privacy Shield Principles for all onward transfers of Personal Data from the EU, which means that it remains liable in cases of onward transfers to third parties.

    With respect to Personal Data received or transferred pursuant to the Privacy Shield Framework, the Owner is subject to the investigatory and regulatory enforcement powers of the FTC, if not stated otherwise in this privacy policy.

    The Owner is further required to disclose Personal Data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

    Dispute resolution under the Privacy Shield

    In compliance with the Privacy Shield Principles, the Owner commits to resolve complaints about its collection or use of the User’s Personal Data. European Union individuals with inquiries or complaints regarding this Privacy Shield policy should first contact the Owner at the contact details supplied at the beginning of this document referring to “Privacy Shield” and expect the complaint to be dealt with within 45 days.

    In case of failure by the Owner to provide a satisfactory or timely response, the User has the option of involving an independent dispute resolution body, free of charge.

    In this regard, the Owner has agreed to cooperate with the panel established by the EU data protection authorities (DPAs) and comply with the advice given by the panel with regard to data transferred from the EU. The User may therefore contact the Owner at the email address provided at the beginning of this document in order to be directed to the relevant DPA contacts.

    Under certain conditions – available for the User in full on the Privacy Shield website (https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint) – the User may invoke binding arbitration when other dispute resolution procedures have been exhausted.

Contact information

• • Owner and Data Controller

    Clearpoint Business Group, LLC.
    429 Fourth Avenue, Suite 300
    Pittsburgh, PA 15212

    Owner contact email: privacy@clearpointbusiness.com