Privacy policy

OVERVIEW

US Compliance Institute and its subsidiaries and affiliates (“USCI,” “we,” “us,” “our”) provide compliance-focused online education and training. Our offerings may include, without limitation, self-paced compliance courses, certificates of completion, downloadable training resources, corporate learning portals for business customers, analytics related to training completion, and related support services. We also provide educational resources and ways for compliance and operational professionals to learn and connect through our websites.

We take privacy seriously. We aim to handle information that identifies, relates to, describes, or can reasonably be associated with you (“personal information”) with care and respect. That includes when you browse our website, sign up for a webinar, download content, create an account, complete training, or communicate with us.

We collect personal information in different ways and for different purposes as we operate our business and deliver services. We do not process personal information for purposes that are materially different from the purpose for which it was originally collected, unless we provide notice and, where required, obtain consent.

Because we operate in two distinct contexts, we provide two privacy statements

  • Privacy Statement for our corporate business operations and public website activities where we act as a controller

  • Applications Privacy Statement for our learning applications and portals provided to business customers where we generally act as a service provider or processor

 

 

PRIVACY STATEMENT

Updated December 2025

1. Scope

This Privacy Statement applies to personal information USCI collects, uses, and discloses in its role as a controller in connection with operating our business, including information from

  • USComplianceInstitute.com and subdomains that display or link to this Privacy Statement (“Website”)

  • webinars, virtual events, and online communities we host or sponsor

  • in-person events, conferences, trade shows, and business development activities

  • communications with current or prospective customers, partners, and vendors

This Privacy Statement does not apply to any site, app, product, or service that displays its own privacy notice. If you use a corporate or enterprise learning portal provided by USCI to your employer or another organization, see the Applications Privacy Statement.

2. How We Collect Personal Information

We collect personal information from you in three main ways.

A. Information you provide directly

Examples include when you

  • create an account

  • register for a course, webinar, or event

  • purchase training

  • contact support or submit a request

  • subscribe to marketing communications

  • download resources

Typical categories may include

  • identifiers such as name, email address, phone number

  • professional information such as job title, company name, department

  • account credentials

  • billing and transaction information

  • communications content you send to us

B. Information from third-party sources

We may receive personal information from

  • event partners and conference organizers

  • business partners and resellers

  • public sources and professional databases

  • marketing and analytics providers

We may combine third-party data with information we already hold to update records, understand business demand, and provide content that is more relevant.

C. Information collected through automated technologies

When you use the Website, we may collect

  • IP address and device identifiers

  • browser type and settings

  • pages viewed and actions taken

  • referring pages and approximate location

  • cookie and similar technology identifiers

We use cookies, tags, pixels, and scripts to operate the Website, understand usage, prevent fraud, and measure marketing performance. You can manage cookie preferences using your browser settings and any cookie tools we provide. Disabling some cookies may reduce Website functionality.

3. We Do Not Knowingly Collect Information From Children

Our Website is not intended for individuals under 16. We do not knowingly collect personal information from anyone under 16. If you believe a minor has provided personal information, contact us and we will take appropriate action consistent with law.

4. Legal Bases for Processing

Some jurisdictions require a legal basis for processing personal information. Depending on the context, we may rely on

  • your consent

  • performance of a contract or steps requested prior to entering a contract

  • legitimate interests such as operating and securing our business, improving the Website, and marketing in a compliant way

  • compliance with legal obligations

  • establishing, exercising, or defending legal claims

5. Do Not Track and Global Privacy Control

Some browsers provide Do Not Track signals. Our Website may not respond to Do Not Track signals. Where legally required, we recognize the Global Privacy Control signal as an opt out of certain data sharing for targeted advertising.

6. How We Use Personal Information

We may use personal information to

  • provide and operate the Website and our services

  • create and administer accounts

  • process purchases, payments, and invoices

  • deliver training and customer support

  • personalize your Website experience

  • communicate service updates, security notices, and transactional messages

  • market our courses and services, including email and phone where permitted by law

  • perform analytics, research, and product improvement

  • detect fraud, secure the platform, and protect integrity

  • comply with legal and regulatory obligations

  • enforce our agreements and policies

  • protect our rights and the rights of others in the event of disputes

7. When We Share Personal Information

We may share personal information with

  • our affiliates for internal operations and support

  • service providers acting on our instructions, such as hosting, analytics, email delivery, customer support tools, payment processors, and content streaming providers

  • advertising and measurement partners where permitted and subject to opt out rights

  • professional advisors such as auditors, insurers, and legal counsel

  • authorities or third parties where required by law, legal process, or to protect rights, safety, and security

  • transaction counterparties if we are involved in a merger, acquisition, financing, or sale of assets

We do not authorize service providers to use personal information for their own purposes except as needed to deliver services to us or as required by law.

8. How We Protect Personal Information

We use administrative, technical, and physical safeguards designed to protect personal information, including access controls, encryption in transit where appropriate, monitoring, and vendor risk management. No security method is perfect. You are responsible for maintaining the confidentiality of your account credentials.

9. Data Retention

We retain personal information for as long as necessary to

  • provide the services you requested

  • maintain business records

  • comply with legal obligations

  • resolve disputes

  • enforce our agreements

Retention periods vary by category and purpose. Where required by law, we delete or de-identify personal information when it is no longer needed.

10. Data Storage and International Transfers

USCI is based in the United States. Personal information may be processed in the United States and other countries where we or our service providers operate. Where required by applicable law, we use appropriate safeguards for cross-border transfers, such as contractual protections and approved transfer mechanisms.

11. Your Rights and Choices

Depending on your location, you may have rights to

  • access your personal information

  • correct inaccurate information

  • delete personal information

  • obtain a copy of personal information

  • opt out of certain processing such as targeted advertising

  • limit use of sensitive personal information where applicable

  • withdraw consent where processing is based on consent

  • appeal certain decisions where required by law

To submit a request, contact us using the details in the Contact section. We may need to verify your identity and authority before fulfilling the request. We may deny requests where permitted by law, and we will explain why.

Opting out of marketing

You can unsubscribe via links in marketing emails. You may still receive transactional or service communications.

12. California and Other U.S. State Privacy Disclosures

If you are a resident of California or another state with a privacy law, you may have additional rights such as

  • right to know categories of personal information collected and disclosed

  • right to delete

  • right to opt out of sale or sharing for cross-context behavioral advertising

  • right to correct

  • right to limit certain sensitive data uses where applicable

  • right to non-discrimination for exercising privacy rights

We do not sell personal information in the conventional “money for data” sense. We may share certain identifiers and usage data with advertising or analytics partners in ways that may be considered “sharing” under California law. You can opt out through cookie settings, Global Privacy Control, or by contacting us.

13. Updates

We may update this Privacy Statement from time to time. We post the updated version on the Website and update the “Updated” date. Continued use of the Website after posting means you accept the updated statement where permitted by law.

14. Contact Us

US Compliance Institute, LLC
Attention Privacy Team or Data Protection Officer
[Business Address]
Email [email protected]
Phone [Phone Number]

 

 

APPLICATIONS PRIVACY STATEMENT

Updated December 2025

1. Scope

This Applications Privacy Statement applies to USCI learning portals, learning management systems, course delivery tools, and related services we provide to business customers (the “Applications”) that display or link to this statement.

This statement does not apply to our public Website business operations, which are covered by the Privacy Statement.

2. Our Role

In the Applications context, USCI generally acts as a service provider or processor for our business customers. The business customer typically determines

  • what personal information is collected

  • the purpose of processing

  • retention and access policies

  • how end users may exercise rights

If you are using an Application provided by your employer or another organization, privacy questions and requests should usually be directed to that organization.

3. How We Collect Personal Information in the Applications

We may collect personal information

  • directly from you through your use of the Application

  • from the business customer that provisioned your account

  • automatically through logs and security monitoring

Common categories may include

  • identifiers such as name, email, employee ID, username

  • work-related attributes such as department, role, location

  • training records such as enrollments, completion status, scores, timestamps

  • support interactions and communications

  • technical and security data such as IP address, device identifiers, log files

The specific data collected depends on what the business customer configures.

4. How We Use Personal Information in the Applications

We use personal information, as instructed by business customers, to

  • provide the Applications and deliver training content

  • authenticate users and manage access

  • support completion tracking and reporting to the business customer

  • maintain security, integrity, and availability

  • respond to support requests

  • develop and improve the Applications

  • comply with legal requirements applicable to USCI

  • enforce our terms and protect our systems

5. How We Share Personal Information in the Applications

We may share personal information with

  • the relevant business customer

  • service providers supporting hosting, support, and security under contract and instructions

  • authorities where required by law or to protect security and prevent fraud

  • transaction counterparties in business transfers

6. Data Retention

Personal information in Applications is retained as directed by the business customer and consistent with contractual obligations. If you have questions about retention, contact the organization that provided your access.

7. International Transfers

Applications data may be processed in the United States and other locations where we or our service providers operate, subject to contractual safeguards agreed with the business customer and any requirements of applicable law.

8. Your Rights

If you want to exercise rights related to personal information in an Application, you should contact the business customer, typically your employer. If we receive a request directly, we may route it to the business customer and support their response unless prohibited by law.

9. Updates

We may update this statement by posting within the Application or associated pages and updating the “Updated” date.

10. Contact

For Applications privacy questions
Email [email protected]
Include the Application name and your organization

 

 

OPTIONAL ADD ON

DATA PRIVACY FRAMEWORK SECTION

Only include the below if you actually certify and maintain certification.

USCI may participate in and certify compliance with the EU U.S Data Privacy Framework, the UK Extension, and the Swiss U.S Data Privacy Framework. If included, this section should state your certification status, scope, recourse mechanism, and regulator jurisdiction.