Data Protection Officer:
MMS University (MMSU) has appointed a Data Protection Officer (DPO) to ensure appropriate implementation of applicable legal and regulatory data protection and privacy requirements, including the EU General Data Protection Regulation (GDPR). The MMSU DPO is responsible to advise MMSU Senior Leadership as required to attain and maintain compliance to such laws, regulations, and safeguards, and to continually review and advise on MMSU business practices and codes of conduct related to data privacy and protection.
Collected Data & Data Usage:
MMSU collects Data from individuals who visit our website (“Visitors”) and individuals who use MMSU services (“Students”).
When you request additional information about MMSU, contact MMSU via our website, or register to use MMSU services, MMSU may require you to provide contact information such as your name, company name, title, address, phone number(s), fax number, and email address. When purchasing MMSU services, financial qualification and billing information may be requested, such as billing name and address, and credit card number.
MMSU uses the collected Data to perform the requested services. For example, if you complete a web contact form, MMSU will use the information provided to contact you with details regarding the MMSU services of interest.
MMSU may also use the collected Data for marketing or other legitimate business purposes. For example, MMSU may use the collected Data to contact you to further discuss your interest in MMSU services, and to send information such as promotions and events. You may opt-out of receiving marketing communication from MMSU at any time, please refer to the Opt-Out Policy below.
All financial and billing information collected is used solely for billing and invoice generation for services provided. Financial and billing information is not used by MMSU for marketing or promotions.
MMSU may also collect information about your interaction with our website. For example, MMSU may use technologies, such as cookies (described below), to collect information about the pages you view, the links you click and other actions you take on our site. Additionally, MMSU may also collect certain standard information that your browser sends to every website you visit, such as your IP address, access times, and referring website addresses. This information is primarily used to help diagnose technical problems, for administrative purposes, to compile non-identifying aggregate statistics about site usage and to improve the quality of our website and services.
Standing alone, cookies do not identify you personally. They merely recognize your browser. Unless you choose to identify yourself to MMSU, either by responding to a promotional offer, completing a contact or interest form or registering for an account, you remain anonymous to MMSU.
There are two types of cookies, session cookies and persistent cookies. Session cookies exist only during an online session. They disappear from your computer when you close your web browser or turn off your computer. Persistent cookies remain on your computer after you’ve closed your browser or turned off your computer. They include information such as a unique identifier for your browser.
MMSU may use persistent cookies to identify the fact that you are a MMSU student or prior MMSU website Visitor (whichever the case may be). MMSU is particularly careful about the security and confidentiality of the information stored in persistent cookies. MMSU does not store account numbers or passwords in persistent cookies. Users can disable their web browsers’ ability to accept cookies and will still be able to browse the MMSU website.
Pages within MMSU’s website and software service may contain links to other/external websites. MMSU is not responsible for the privacy practices or the content of these websites. When visiting these sites, MMSU encourages you to verify and understand their privacy policies prior to providing private Data.
MMSU recognizes potential liability in cases of onward transfer to third parties. MMSU will not transfer any personal information to a third-party without first ensuring that the third-party adheres to the appropriate data privacy principles.
Sharing of Collected Data:
Except in the cases where MMSU explicitly states otherwise, at the time we request information, MMSU does not disclose to third parties your personally identifiable Data except as follows: MMSU may share your Data with Agents who process Data only on behalf of MMSU and for MMSU purposes (as used here, “Agents” are persons or companies who act on behalf of or under the direction of MMSU). MMSU may share your Data as required by law or in the interest of protecting or exercising MMSU’s or others’ legal rights (e.g., without limitation, relating to requests from law enforcement officials and relating to court proceedings). MMSU may share or transfer your Data relating to a prospective or actual sale, merger, transfer, or other reorganization of all or parts of MMS University. MMSU may also share Data with third parties involved in the normal business operations. MMSU reserves the right to fully use and disclose any Data that is not in personally identifiable form (such as site usage statistics that do not identify you individually by name).
MMSU may also use a third-party intermediary to manage the credit card processing. This intermediary is solely a link in the distribution chain, and is not permitted to store, retain, or use the Data provided, except for the sole purpose of credit card processing.
MMSU will not disclose personally identifiable Data to any third party unless it first either ascertains that the third party adheres to applicable data privacy requirements, or enters into a written agreement with such third party requiring that the third party provide at least the same level of privacy protection as is required by the relevant data privacy laws.
MMSU offers Visitors and Students a means to choose how we may use the Data provided. If, at any time after providing MMSU with Data, you change your mind about receiving commercial information from MMSU or about sharing your Data with third parties, send a request specifying your new choice via our contact page.
Students cannot opt-out of receiving emails from MMSU that are directly related to their use of MMSU services such as email notifications, or service notifications.
Correcting & Updating Data:
MMSU is dedicated to maintaining accurate and up to date Student Data. If you need to update Data and/or billing information or to have your information deleted please submit your request via our contact page. MMSU will respond to your correction or update request within 30 days from the date of your request.
Security & Breach Notification:
MMSU has placed commercially reasonable security measures in place to protect the integrity, availability, and confidentiality of Data. These measures include policies, procedures, employee training, and physical access and logical security controls. In addition, when accessing the MMSU software systems, Data transmitted to MMSU servers are secured using standard security protocols and mechanisms such as SSL encryption to ensure data confidentiality and integrity.
If individual personal Data is acquired, or is reasonably believed to have been acquired, by an unauthorized person and applicable law requires notification of affected individuals, MMSU will issue a notification of the breach by email or fax or, if MMSU is unable to contact the individual by these means, then by U.S. mail. Notice will also be sent to legal and law enforcement authorities as required under current laws and regulations. Any measures necessary for MMSU or legal and law enforcement to determine the scope of the breach and to assure or restore the integrity of the data system will be taken. MMSU may delay notification to Students and/or individuals if MMSU or a law enforcement agency determines that the notification will impede a criminal investigation, unless and until MMSU or the agency determines that notification no longer compromises an investigation.
Data Subject’s rights:
Data Minimization, Retention, & Destruction:
Data which permits identification of Data Subjects will be minimized to only the Data required to perform MMSU services and processing activities to which Data Subjects have consented. All data will be anonymized to the extent possible. Data permitting identification of Data Subjects will be retained only for the period defined in the applicable agreement(s). Personal Data may be stored for longer periods insofar as the Data will be processed solely for archiving or statistical purposes in accordance with GDPR Article 89(1) ensuring appropriate technical and organizational measures to safeguard the rights and freedoms of the Data Subject.
Attn: Data Protection Officer
6880 Commerce Blvd.
Canton, MI 48187