Code of Conduct
This document is a notice of the privacy practices for Ion District (“Ion District” or “Ion” or “we”) websites and online applications with the intention of providing individuals who interact with these websites or online applications an understanding of how Ion District may collect, use, and store personal information. By using Ion District websites or online applications you are consenting to the following policies.
II. Data Security and Information ProtectionIon District takes the security of your information seriously and has dedicated resources to the protection of your data. This includes technological controls that meet or exceed industry standards, and a staff that is trained in information confidentiality, integrity, and availability of electronic data, resources, and communications. More information is available at https://iso.rice.edu/.
III. Data RetentionRice will keep your data for as long as it is necessary to fulfill the purpose for which it was collected. We may also keep data if such data is necessary towards fulfilling a legal obligation or demonstrating compliance with an applicable statute or regulation. Some data is considered part of a student’s “Permanent Record,” and as such it will be securely maintained in perpetuity. More information about retention may be found in the following two policies: Student Record Retention, Access, and Disposition Policy (Policy 837); Records Management (Policy 812)
IV. Individuals in the European Economic Area and GDPRIndividuals in the European Economic Area have rights under the General Data Protection Regulation (GDPR), and should be aware that information collected by Rice websites or online applications will be processed in the United States. Individuals in the European Economic Area should also refer to the European Economic Area Privacy Notice, which supplements this Privacy Notice, and is available at www.rice.edu/gdpr.
V. Personal Information of ChildrenRice University websites and online applications do not knowingly solicit or accept information or data about children under the age of 13 without parental consent. If you are aware that a child under the age of 13 has provided personal information to Rice University without parental consent please contact our Chief Information Security Officer, immediately so that appropriate action may be taken.
VI. Your Rights and Contact information for questions or concernsYou may have specific rights granted to you by law, including (but not limited to):
- Family Education Rights and Privacy Act (FERPA), applicable to certain student records
- Health Insurance Portability and Accountability Act (HIPAA), applicable to certain medical information
- General Data Protection Regulation (GDPR), applicable to individuals and data collected in the European Economic Area
- Gramm-Leach-Bliley Act (GLBA), applicable to certain consumer information