TSCC Privacy Policy

Purpose

Trenholm State Community College (the “College”, “We”, “TSCC”) respects the privacy of individuals and we are committed to protecting your privacy and making it easier and more efficient for individuals and businesses to interact with the College. It is critical for individuals and businesses to be confident that their privacy is protected when visiting Trenholm State Community College campuses and websites. We are committed to ensuring the privacy and security of your sensitive and confidential information.

This Privacy Policy applies to all individuals who access the campus computer systems, websites and networks. By visiting trenholmstate.edu, you are accepting and consenting to the practices described in this notice.

Information We Collect

Trenholm State Community College does not collect any personal information unless it is provided voluntarily by sending an e-mail, completing a request form or application, accessing online services, or interacting in distance education courses.

The information collected on Trenholm States websites is not collected for commercial marketing purposes and the college is not authorized to sell, or otherwise disclose, the information collected for commercial marketing purposes. However,when visiting trenholmstate.edu, the college may automatically collect and store the following information about your visit:

• The Internet Protocol address of the computer that accessed the site
• The type of browser, its version and the operating system on which that browser is running
• The web page from which the user accessed the current web page
• The date and time of the user’s request
• The pages that were visited and the amount of time spent on each page
• The screen resolution of the monitor used to view the site

The information automatically collected is used to improve the college’s website content and to help administrators understand how users are interacting with its websites. This information is collected for statistical analysis and to determine what information is of most and least interest to our users. Within this process, Cookies may be used for features and functionality. Cookies are small files placed onto your device to enable these features and functions.

Trenholm State Community College policy doesn’t allow the release of personally identifiable information to third parties (other than its agents when required for college business). Trenholm State Community College may collect or disclose personal information without consent if the collection or disclosure is:

• made pursuant to a court order or by law
• for the purpose of validating the identity of the user
• information to be used solely for statistical purposes that is in a form that cannot be used toidentify any particular person

Trenholm State Community College may disclose personal information to federal or state law enforcement authorities to enforce its rights against unauthorized or attempted unauthorized access to college information technology assets.

Information that is collected via Trenholm State Community College systems from the user will not be used for any other purpose than what it was intended for, except for the exceptions stated above.

Among the laws and regulations that mandate baseline privacy and information security controls, the most notable for TSCC include the following:

• Health Insurance Portability and Accountability Act (HIPAA) – Protective Health Information (PHI) may be used and disclosed for Treatment, Payment, and Healthcare Operations (TPO). The information that is disclosed must meet the “Minimum Necessary” standard. This means the least information required to accomplish the intended purpose.



• Family Educational Rights and Privacy Act (FERPA) – Protects the privacy of student education records and gives parents certain rights with respect to their children’s education records.


• In addition to the Trenholm State Community College Catalog and Handbook, the following yearly FERPA notification is supported by TSCC IT and is provided for all students. Additional student privacy information, may be found on the Family Policy Compliance Office website by following this link: http://familypolicy.ed.gov/


• Payment Card Industry (PCI) Data Security Standards – A framework of standards and compliance requirements designed to protect consumer payment card data.


• Trenholm State Community College supported information systems do not store credit card data. The college utilizes Touchnet to interface with the Banner ERP/SiS for payments. The data is scanned and transmitted real-time and no data is stored in any college information system.


• Additional laws and regulations apply in the wake of unauthorized disclosure of individuals’ data, requiring TSCC IT to take specific actions if any protected data may have been disclosed either accidentally or maliciously to unauthorized parties. Individuals who handle protected data are encouraged to speak with their managers to better familiarize themselves with relevant laws and regulations.


• Gramm-Leach-Bliley Act – The GLB Act, or GLBA, is also known as the Financial Modernization Act of 1999. It is a United States federal law that requires financial institutions to explain how they share and protect their customers’ private information. To be GLBA compliant, financial institutions must communicate to their customers how they share the customers’ sensitive data, inform customers of their right to opt-out if they prefer that their personal data not be shared with third parties, and apply specific protections to customers’ private data in accordance with a written information security plan created by the institution.


• The primary data protection implications of the GLBA are outlined in its Safeguards Rule, with additional privacy and security requirements issued by the FTC’s Privacy of Consumer Financial Information Rule (Privacy Rule), created under the GLBA to drive implementation of GLBA requirements. The GLBA is enforced by the FTC, the federal banking agencies, and other federal regulatory authorities, as well as state insurance oversight agencies.

Information Protection

The College implements reasonable physical, technical, and administrative safeguards designed to prevent unauthorized access to or use of the information we collect online. We strive to protect your information but cannot guarantee or warrant the security of such electronic data. Your information will be retained or disposed of according to the College’s records management policies. The information provided in this privacy policy should not be construed as giving business, legal or other advice, or warranting as fail proof regarding the security of information provided through Trenholm State Community College systems.