Last Updated: October 2023
Version number: 9
Degreed users fall into one of two categories as data subjects.
Most Personal Data you provide to us is voluntary, unless indicated otherwise. Examples of areas on the Site where we collect data are pages where you can open a Degreed account and create a Degreed Profile. Only you can modify your own personal Degreed Profile once it has been created. You may remove your Degreed Profile from our database at any time.
To the extent you wish to retain an independent record of such your Degreed Profile, you must include a personal email address at the time of creating your Degreed Profile.
We may enable you to log into the Services using a social media account, and if you do so you may be asked to grant us access to certain information from your social media profile, such as your public profile, birthday, current city, and email address. Social media networks operate independently from Degreed, and we are not responsible for social media networks' interfaces or privacy or security practices. Please refer to the privacy settings of the applicable social media platform or application to determine how you may manage the interactivity between us and your social media accounts.
Where possible, the Degreed servers automatically recognize each User's Internet Protocol address. Based on your IP, Degreed might be able to infer your Geo-location data: for example, your locale, zip code, and general geolocation information (based on your IP address). Also, aggregate information about Degreed Users is routinely gathered for purposes of identifying the use of Degreed.com or of our other services, including information such as what pages are being visited most, what domains our visitors are coming from (e.g. google.com), when our servers are busiest, what features users use the most and what websites are referring users to us and aggregated data for purposes of analysis, gathering employment statistical information and for learning and training. This information helps us to improve our services and to evaluate our marketing efforts. We only use such data anonymously and aggregately. Degreed owns all rights in and to this anonymous and aggregated data.
Degreed is also certified under the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework. For more information on these frameworks, please see below.
We may also share your data with other third parties, such as governmental authorities or law enforcement officials, if we are required by law to do so or if this is for the protection of our legitimate interests and/or legal rights.
We provide you with access to your information through your Degreed Profile where you can access, update, amend or correct inaccuracies on information provided in your Degreed Profile. From each Degreed account you may also opt out of receiving newsletters and certain other correspondence from Degreed. If you wish to delete your Degreed Profile you can do so in the Personal section of their Profile Settings. Once you have arrived at the Profile Settings page you can select “Delete Profile” and select “yes” to confirm that you would like to delete your account.
In addition to the above, you are entitled to reach out to us via the contact details below and ask us for an overview or copy of your Personal Data, to correct or delete certain data or restrict processing of your data. In some cases you may object to the processing of your information, and where we have asked you for your consent to process Personal Data, you can withdraw your consent at any time.
California Civil Code Section § 1798.83 permits users of our Services who are California residents to request certain information regarding our disclosure of Personal Data to third parties for their direct marketing purposes. To make such a request, please send an email to firstname.lastname@example.org or write us at: 4305 Hacienda Drive, Suite 300, Pleasanton, CA 94588. California residents are informed that the information collected from them in the past 12 months is described above.
Please note that the rights described above are not absolute, and that your request cannot always be met entirely. For example, sometimes we cannot delete or restrict the processing of your information as we may have legal obligations or contractual obligations to keep certain information. Depending on where you are located, if we are unable to satisfactorily resolve your request you may have the right to lodge a complaint with a supervisory authority or use a specific recourse mechanism.
If you are a resident of the European Union or of Switzerland, you can benefit from the recourse mechanisms available under the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework. Please see below. You may also contact your local data protection authority. You can find details for your local data protection authority by visiting https://edpb.europa.eu/about-edpb/board/members_en, telephoning +32 2 299 11 11, or writing to Directorate-General for Justice and Consumers | European Commission at 1049 Bruxelles/Brussel, Belgium.
If you are in the United Kingdom you may contact the Information Commissioner's Office by visiting https://ico.org.uk/global/contact-us/, telephoning +44 (0) 303 123 1113 or writing to Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF.
If you are a resident of Australia and you have a complaint, you may refer it to the office of the Australian Information Commissioner (“OAIC”). You can contact OAIC by visiting www.oaic.gov.au, forwarding an email to email@example.com, telephoning 1300 363 992, or writing to OAIC at GPO Box 5218, Sydney NSW 2001.
Where you have a Degreed Profile, we will keep your information for the duration of your use of our Services and, to the extent permitted, after the end of that relationship for as long as necessary to perform the purposes set out in this notice. Laws may require us to hold certain information for specific periods. In other cases, we may retain data for an appropriate period after any relationship with you ends to protect ourselves from legal claims or to conduct our business.
Degreed does not intend to collect information from children under the age of 13 or knowingly allow those individuals to create profiles. All Degreed Profiles stored are for Users ages 13 or older and those seeking higher education who state their age to be 13 years or older. If we learn we have collected or received Personal Data from a child under the age of 13, we will delete that information. If you believe we might have any information from or about a child under the age of 13, please contact us at firstname.lastname@example.org.
When you submit information to Degreed we do our utmost to ensure that information is protected against loss, misuse, alteration, destruction or unauthorized access. Degreed uses standard encryption tools such as SSL (Secure Socket Layer) to help protect Personal Data and to keep information collected secure. The privacy policies of linked sites may differ from those of Degreed. Degreed is not responsible for any loss or misuse of your username and password.
Degreed is responsible for the processing of personal data it receives under the Data Privacy Frameworks and subsequently transfers to a third party acting as an agent on its behalf. Degreed complies with the DPF Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.
The Federal Trade Commission has jurisdiction over Degreed’s compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF).
Degreed will not use User personal Degreed Profile information except as described above, or as otherwise provided by law. In certain situations Degreed may be required to disclose personal data in response to lawful requests by public authorities, including requests to meet national security or law enforcement requirements. We disclose information if requested to do so by a governmental entity, or if we believe in good faith that such action is necessary to: (a) conform to legal requirements or comply with legal process; (b) protect our rights or property of our affiliated companies; (c) prevent a crime or protect national security; or (d) protect the personal safety of users or the public.
We provide Users with 24-hour access to their Degreed Profile. Users may also wish to amend or correct inaccuracies on information provided in the Degreed Profile. If a User wishes to correct such inaccuracies or make any other changes, that User's Degreed Profile can be accessed through our password protected access facility at https://degreed.com. Any information gathered is to the best of our knowledge collected lawfully and fairly through Degreed.com. All information is assumed accurate and up to date and only information which is adequate and not excessive to our purpose for collection is retained. Users may review, correct, update or change their Degreed Profile and the information therein at any time. From each Degreed account, Users may also opt out of receiving newsletters and certain other correspondence from Degreed. If a User wishes to delete his or her Degreed Profile, that User can do so in the Personal section of their Profile Settings. Once the User has arrived at the Profile Settings page the User can select "Delete Profile" and select "yes" to confirm that the User would like to delete his or her account. If a User is connected to an enterprise account, the User should direct any requests to the learning contact at their company.
In compliance with the EU-U.S. DPF and the Swiss-U.S. DPF, Degreed commits to resolve DPF Principles-related complaints about our collection and use of your personal information. EU and Swiss individuals with inquiries or complaints regarding our handling of personal data received in reliance on the EU-U.S. DPF and the Swiss-U.S. DPF should first contact Degreed atDegreed
In compliance with the EU-U.S. DPF and the Swiss-U.S. DPF, Degreed commits to refer unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the Swiss-U.S. DPF to JAMS Data Privacy Framework Dispute Resolution, an alternative dispute resolution provider based in the United States. If you do not receive timely acknowledgment of your DPF Principles- related complaint from us, or if we have not addressed your DPF Principles-related complaint to your satisfaction, please visit https://www.jamsadr.com/eu-us-data- privacy-framework for more information or to file a complaint. The services of JAMS Data Privacy Framework Dispute Resolution are provided at no cost to you. Finally, as a last resort and under limited circumstances, EU and Swiss individuals with residual privacy complaints in relation to adherence to these EU-U.S. DPF and the Swiss-U.S. DPF Principles may invoke a binding arbitration for complaints regarding DPF compliance not resolved by any of the other DPF mechanisms. For additional information please see Annex I of the DPF principles. l.
Address: 4305 Hacienda Drive Suite 300, Pleasanton, CA 94588
You can contact Degreed’s Data Protection Officer, Victor Neamt, at email@example.com
Degreed’s EU legal representative (art. 27 GDPR): Degreed B.V., 3e Binnenvestgracht 23-R, 2312 NR Leiden, Netherlands
Degreed’s UK legal representative (art. 27 UK GDPR): Degreed Limited, 55 Baker Street, London, England, W1U 7EU, UK
We always enjoy hearing from you and appreciate your business. Should you nonetheless have unresolved concerns, you have the right to lodge a complaint with your local data protection authority.