At FACES Certification Program, we understand that privacy is important to our users and we are committed to protecting your personal information. This Privacy Policy applies to the information we collect when you use our website, register for our certification program, and when you use our services. By using our website, you consent to the collection, use, and disclosure of your personal information as described in this Privacy Policy.

  1. Information We Collect

We collect personal information that you provide to us when you register for our certification program, use our website, and when you use our services. This information may include, but is not limited to, your name, email address, mailing address, phone number, and payment information.

We may also collect additional information, including IP addresses, browser types, and access times, when you visit our website. This information is collected to help us understand how our website is being used and to improve the services we offer.

  1. Use of Information

The information we collect is used to provide and improve our services, to process payments, and to communicate with you. We may use your personal information to contact you regarding your certification program, to send you updates and notifications, and to send you marketing communications about our services.

  1. Disclosure of Information

We do not sell or rent your personal information to any third party. We may disclose your personal information to third parties for the following purposes:

  • To process payments and to provide billing and payment-related customer service
  • To comply with legal obligations, such as responding to a subpoena or court order
  • To enforce our Terms of Service and to protect our rights
  • To provide information to representatives and advisers, including attorneys and accountants, to help us comply with legal, accounting, or security requirements
  1. Security

We take the protection of user data very seriously and we take reasonable measures to protect your personal information from unauthorized access, use, alteration, or destruction. However, no security measures can be completely foolproof and we cannot guarantee the absolute security of your 

personal information.

  1. Data Retention

We will retain your personal information for as long as necessary to provide you with our services and to comply with our legal obligations. We may also retain your personal information for longer periods if necessary to resolve disputes, enforce our agreements, or for other business purposes.

  1. Your Rights

You have the right to access, correct, and delete your personal information. You also have the right to request that we stop processing your personal information and to request that we transfer your personal information to another organization. If you would like to exercise any of these rights, please contact us at info@FACEScertification.com.

  1. Changes to Our Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will post the updated Privacy Policy on our website and we encourage you to review it periodically.

  1. Contact Us

If you have any questions or concerns about our Privacy Policy or the way we handle your personal information, please contact us at info@FACEScertification.com.

  1. Children's Privacy

Our website and services are not intended for children under the age of 18. We do not knowingly collect personal information from children under the age of 18. If we become aware that a child under the age of 18 has provided us with personal information, we will take steps to delete such information.

  1. Third-Party Links

Our website may contain links to other websites that are not owned or controlled by FACES Certification Program. We are not responsible for the content, privacy policies, or practices of any third-party websites. By using our website, you acknowledge and agree that FACES Certification Program is not responsible for any loss or damage of any sort incurred as a result of any such dealings or as the result of the presence of such third-party links on our website.

  1. International Data Transfer

FACES Certification Program is based in the United States, and your personal information may be processed and stored in the United States. If you are located outside of the United States, you should be aware that the data protection laws in the United States may not be as comprehensive as those in your country. By using our website, you consent to the transfer of your personal information to the United States for processing and storage in accordance with this Privacy Policy.

  1. Cookie Policy

We use cookies on our website to improve the user experience and to gather information about how our website is being used. A cookie is a small text file that is stored on your device when you visit our website. Cookies 

allow us to track your preferences and activities on our website, and to remember you when you return to our website. They also help us to understand which parts of our website are most popular and to improve our website based on this information.

You have the ability to accept or decline cookies by modifying your browser settings. However, please note that if you choose to decline cookies, you may not be able to fully experience all features of our website.

  1. GDPR Compliance

FACES Certification Program is committed to compliance with the General Data Protection Regulation (GDPR) for all EU citizens. We take the necessary steps to ensure that we meet the requirements of the GDPR, including appointing a Data Protection Officer (DPO) and implementing appropriate technical and organizational measures to protect personal data.

  1. California Consumer Privacy Act (CCPA) Compliance

FACES Certification Program is committed to compliance with the California Consumer Privacy Act (CCPA) for California residents. We provide California residents with the right to request access to their personal information and to request that their personal information be deleted. If you are a California resident and would like to make a request under the CCPA, please contact us at info@FACEScertification.com.

  1. Data Breaches

In the event of a data breach, FACES Certification Program will take all necessary steps to mitigate the breach, including notifying affected individuals and the relevant authorities. We will also take steps to prevent future breaches, including reviewing and updating our security measures.

  1. Data Processor

FACES Certification Program may engage third-party service providers to process personal data on our behalf. These service providers are contractually bound to protect the confidentiality and security of the personal data they process on our behalf.

  1. Privacy by Design

FACES Certification Program is committed to building privacy into our processes and systems by design. This includes conducting privacy impact assessments, implementing appropriate technical and organizational measures to protect personal data, and regularly reviewing and updating our privacy policies and practices.

  1. Data Access and Portability

You have the right to access and receive a copy of your personal information that we hold, in a structured, commonly used and machine-readable format. You also have the right to request that we transmit this information to another organization, where technically feasible. If you would like to exercise this right, please contact us at info@FACEScertification.com

  1. Data Rectification

You have the right to request that we rectify any inaccurate or incomplete personal information that we hold about you. If you would like to exercise this right, please contact us at info@FACEScertification.com

  1. Data Retention and Erasure

You have the right to request that we erase your personal information, under certain conditions. If you would like to exercise this right, please contact us at info@FACEScertification.com

  1. Compliance

We will regularly review and update our privacy policy to ensure compliance with all relevant laws and regulations, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

  1. Third-Party Services

We may use third-party service providers to assist us in providing our services. These service providers may have access to your personal information as necessary to perform their functions, but they are contractually bound to protect the confidentiality and security of your personal information and to use it only for the purpose of providing services to us.

  1. Contact Us

If you have any questions or concerns about our Privacy Policy or the way we handle your personal information, please contact us at info@FACEScertification.com. You also have the right to file a complaint with the relevant data protection authority if you believe that we have not handled your personal information in accordance with the law.

  1. Anonymous Information

We may also collect anonymous information through the use of cookies and other tracking technologies. This information may include your IP address, browser type, and access times. This information is used to understand how our website is being used and to improve our services.

  1. Opt-Out

You have the right to opt-out of receiving marketing communications from us. You can do this by clicking on the "unsubscribe" link in any marketing emails you receive from us or by contacting us at info@FACEScertification.com.

  1. Changes to Our Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will post the updated Privacy Policy on our website and we encourage you to review it periodically.

  1. Data Auditing

FACES Certification Program regularly audits and reviews our data collection, storage and processing practices to ensure that we are in compliance with the relevant laws and regulations, and to prevent unauthorized access, use, alteration or destruction of personal data.

  1. Data Encryption

FACES Certification Program uses industry standard encryption technologies to protect personal data when it is transmitted over the internet. We also encrypt personal data when it is stored on our servers.

  1. Risk Assessment

FACES Certification Program conducts regular risk assessments to identify and mitigate potential threats to the security of personal data. This includes identifying vulnerabilities in our systems, assessing the potential impact of a security breach, and implementing appropriate security measures to mitigate any identified risks.

  1. Privacy Impact Assessment (PIA)

FACES Certification Program conducts Privacy Impact Assessments (PIAs) on new projects, products or services to ensure that personal data is protected and to identify and mitigate any potential privacy risks.

  1. Data Processing Agreement

FACES Certification Program enters into Data Processing Agreements (DPAs) with any third-party service providers that process personal data on our behalf. These agreements outline the responsibilities of both parties and ensure that personal data is protected and processed in compliance with relevant laws and regulations.

  1. Incident Response Plan

FACES Certification Program has an incident response plan in place to quickly and effectively respond to any data breaches or security incidents. This includes identifying the cause of the incident, assessing the potential impact, and taking appropriate action to mitigate the incident and prevent future breaches.

  1. Training and Awareness

FACES Certification Program provides regular training and awareness programs to ensure that our employees and contractors are aware of their responsibilities when handling personal data, and are aware of the latest privacy and security risks and best practices.

  1. Compliance with Law Enforcement

FACES Certification Program may be required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. We will only disclose personal information as required by applicable laws and regulations, and we will take appropriate measures to protect the privacy of our users in such cases.

  1. International Data Transfer

FACES Certification Program may transfer personal information to countries other than the country in which the information was originally collected. We will ensure that any such transfers comply with applicable laws and regulations, and that appropriate safeguards are in place to protect the privacy and security of personal information.

  1. Non-Discrimination

FACES Certification Program does not discriminate against any individual based on their exercise of their privacy rights under applicable laws.

  1. Transparency

FACES Certification Program is committed to being transparent about our data collection and processing practices. We will provide clear and conspicuous notice to individuals about our data collection and processing practices, and we will provide individuals with access to their personal information upon request.

  1. Data Minimization

FACES Certification Program will only collect and process personal information that is necessary to provide our services or to comply with legal obligations. We will not collect or process unnecessary personal information.

  1. Data Anonymization

Where possible, FACES Certification Program will use anonymized or pseudonymous data to minimize the collection and processing of personal information.

  1. Compliance Review

FACES Certification Program will regularly review and assess our compliance with this Privacy Policy, and we will take appropriate steps to address any non-compliance issues that are identified.

  1. Data Governance

FACES Certification Program has established a data governance framework to ensure that personal data is collected, stored, processed and shared in compliance with relevant laws and regulations, and in line with best practices. This framework includes policies, procedures, controls and regular reviews to ensure that personal data is protected and used appropriately.

  1. Data Protection Officer (DPO)

FACES Certification Program appoints a Data Protection Officer (DPO) to ensure that our data governance framework is in compliance with all relevant data protection laws, regulations and standards. The DPO is responsible for monitoring internal compliance, providing advice and guidance on data protection issues and ensuring that any data protection incidents are reported and dealt with appropriately.

  1. Privacy by Design

FACES Certification Program incorporates privacy by design principles in all of our systems, processes and products. This includes conducting privacy impact assessments, implementing appropriate technical and organizational measures to protect personal data, and regularly reviewing and updating our privacy policies and practices.

  1. Incident Management

FACES Certification Program has an incident management plan in place to respond to any data breaches or security incidents in a timely and effective manner. This includes identifying the cause of the incident, assessing the potential impact, and taking appropriate action to mitigate the incident and prevent future breaches. Our incident management plan also includes regular testing and training to ensure that our team is prepared to respond to incidents.

  1. Compliance Auditing

FACES Certification Program conducts regular compliance audits to ensure that we are in compliance with all relevant data protection laws and regulations. These audits may include reviewing our policies and procedures, testing our systems and processes, and assessing our compliance with industry standards.

  1. Data Map

FACES Certification Program maintains a data map that outlines the personal data that we collect, store, process and share, and the purposes for which we use that data. This data map is regularly reviewed and updated to ensure that we are only collecting, storing, processing and sharing the data that is necessary to provide our services or to comply with legal obligations.

  1. Data Quality

FACES Certification Program is committed to maintaining the accuracy and completeness of personal information that we collect and process. We will implement appropriate measures to ensure that personal data is accurate and up-to-date, and we will provide individuals with the opportunity to correct any inaccurate personal information that we hold about them.

  1. Data Retention

FACES Certification Program will retain personal data only as long as it is necessary to provide our services or to comply with legal obligations. We have implemented appropriate data retention policies and procedures to ensure that personal data is securely disposed of once it is no longer needed.

  1. Consent Management

FACES Certification Program has implemented a consent management system to ensure that we obtain valid consent from individuals for the collection, use and sharing of their personal data. This includes providing clear and conspicuous notice of our data collection and processing practices and obtaining explicit consent for any sensitive data.

  1. Sub-processors

FACES Certification Program may engage sub-processors to assist us in providing our services. These sub-processors may have access to personal data but are contractually bound to protect the confidentiality and security of the personal data they process on our behalf. We also conduct regular audits of our sub-processors to ensure that they are in compliance with all relevant data protection laws and regulations.

  1. Compliance with Children's Online Privacy Protection Act (COPPA)

FACES Certification Program complies with the Children's Online Privacy Protection Act (COPPA) which applies to the collection of personal data from children under the age of 13. We do not knowingly collect personal data from children under the age of 13.

  1. Data Sovereignty

FACES Certification Program respects the sovereignty of personal data, and we will not store or process personal data in countries that do not provide an adequate level of data protection.

  1. Data Classification

FACES Certification Program classifies the personal data we collect and process into different categories based on its sensitivity and the potential impact of a data breach. We have implemented appropriate security controls for each category of data to ensure that it is protected from unauthorized access, use, alteration or destruction.

  1. Compliance with Industry Standards

FACES Certification Program is committed to compliance with industry standards for data protection, including ISO/IEC 27001 and SOC 2. We undergo regular audits and certifications to ensure that our data protection practices meet or exceed these standards.

  1. Data Backup and Recovery

FACES Certification Program has implemented appropriate data backup and recovery procedures to ensure that personal data is protected from data loss. We regularly test our backup and recovery procedures to ensure that they are functioning as expected.

  1. Acceptable Use Policy

FACES Certification Program has implemented an Acceptable Use Policy that outlines the acceptable and prohibited uses of our website and services. By using our website, you acknowledge that you have read and understood this policy and that you will use our website and services in compliance with it.

  1. Contact Information

If you have any questions or concerns about this Privacy Policy or our data protection practices, please contact us at info@FACEScertification.com.

  1. Jurisdictional Limitations

FACES Certification Program's services are intended for use by individuals located within the United States of America. If you are located outside of the United States, please be aware that any information you provide to us will be transferred to the United States and that by using our website and services, you consent to this transfer.

  1. Changes to this Privacy Policy

FACES Certification Program may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will post the updated Privacy Policy on our website and we encourage you to review it periodically. Your continued use of our website and services following the posting of any changes to this Privacy Policy will constitute your acceptance of such changes.

  1. Governing Law

This Privacy Policy and your use of our website and services will be governed by the laws of the United States of America and the state of Texas, without giving effect to any principles of conflicts of law.

  1. Language

This Privacy Policy is written in the English language. Any translation of this Privacy Policy is provided for your convenience only and in the event of any conflict between the English version and any translated version, the English version shall prevail.

  1. Entire Agreement

This Privacy Policy, together with the terms of use and any other agreements or policies referenced herein, constitutes the entire agreement between you and FACES Certification Program regarding the collection, use, and disclosure of your personal information.

  1. Waiver

Any failure by FACES Certification Program to enforce any provision of this Privacy Policy shall not be deemed a waiver of our right to enforce such provision.

  1. Severability

If any provision of this Privacy Policy is held to be invalid or unenforceable, such provision shall be struck and the remaining provisions shall be enforced.

  1. Compliance with California Consumer Privacy Act (CCPA)

FACES Certification Program complies with the California Consumer Privacy Act (CCPA) which provides California residents with certain rights regarding their personal information. These rights include the right to know what personal information we collect about you, the right to request that we delete your personal information, and the right to opt-out of the sale of your personal information. If you are a California resident and would like to exercise any of these rights, please contact us at info@FACEScertification.com.

  1. Compliance with General Data Protection Regulation (GDPR)

FACES Certification Program complies with the General Data Protection Regulation (GDPR) which applies to the collection and processing of personal data of individuals located in the European Union (EU). We have implemented appropriate technical and organizational measures to protect personal data, and we have appointed a Data Protection Officer (DPO) to ensure that our data protection practices meet the requirements of the GDPR. If you are located in the EU and have any questions or concerns about our data protection practices, please contact our DPO at dpo@FACEScertification.com.

  1. Data Breach Notification

FACES Certification Program will promptly notify individuals and relevant authorities of any data breaches that may result in a risk to the rights and freedoms of individuals. We will also take appropriate measures to mitigate the effects of any data breaches.

  1. End User License Agreement

FACES Certification Program has an End User License Agreement (EULA) in place that outlines the terms and conditions of use for our software and services. By using our software and services, you agree to be bound by the terms of the EULA.By using our website, you acknowledge that you have read and understood this Privacy Policy and you consent to the collection, use, and disclosure of your personal information as described in this Privacy Policy.

Have Questions? Contact Us