EMS Compact

Privacy Statement

Effective October 2021

Introduction

The Interstate Commission for EMS Personnel Practice (“ICEMSPP”, “us” or “we”) is committed to protecting your privacy when you provide data to us through ICEMSPP websites, affiliates, and applications (each hereinafter, a “Site” unless otherwise specifically identified). The ICEMSPP Privacy Statement (“Privacy Statement” or “Statement”) sets out the privacy practices for ICEMSPP with respect to information, including Personal Data (which means any information relating to an identified or identifiable natural person), we obtain from and about you.

Please read the information below to learn about the Personal Data collected about you and how it is collected, used and disclosed. The information we are collecting now will be treated consistently with this Statement. We may make changes to this Privacy Statement in the future, so please review the Statement regularly. If we make changes, we will post the revised Statement on the Site and include the date this Privacy Statement was last revised at the end of the Statement. We may also notify you of changes through a notice on the Site home page and/or any by other legal means.
 

Personal Data Collected

SOURCES OF PERSONAL DATA
Personal Data is collected directly from you when you:

  • Complete a User profile on an applicable Site.
  • Complete search fields on various ICEMSPP websites.
  • Voluntarily share content through applicable Site features, including message boards, testimonials, user ratings, videos and photos (collectively referred to a "Community Features").
  • When you visit our Site via passive technologies such as standard server logs and cookies.

Your personal data may also be received from your EMS Compact Member State. It is your responsibility to provide us with accurate data and to provide us with updated Personal Data when it changes.

CATEGORIES OF PERSONAL DATA
The Personal Data we collect depends upon how you interact with us. The Personal Data collected by
ICEMSPP may include: 

Identifiers:

  • First, middle and last name
  • Alias
  • Postal address
  • Billing address 
  • Username/password
  • Email address
  • Telephone number
  • IP address
  • Social Security number
  • Last four digits of Social Security number
  • National EMS ID number
  • Driver’s license number
  • Mother’s maiden name

ICEMSPP collects Identifiers for the purposes of creating user profiles and granting access to Sites.

Personal Data categories described in the California Customer Records statute:
By submitting email contact information, ICEMSPP members consent to receiving email communications from ICEMSPP, including marketing materials and group and committee information.  You can opt out of receiving these communications at any time.

  • First, middle and last name
  • Postal address
  • Email address
  • Telephone number
  • Social Security number
  • Last four digits of Social Security number
  • Driver’s license or state identification card number
  • Digital signature
  • Discipline information
  • License information
  • Education information
  • Graduation date
  • Employment information
  • Date of birth

ICEMSPP collects and uses Personal Data for the purposes of facilitating access to Sites; populating relevant information into various ICEMSPP databases; maintaining ICEMSPP’s internal and external licensure database; providing relevant information from various ICEMSPP databases regarding licensure, discipline, or other information; and for email delivery of ICEMSPP communications.

Characteristics of protected classifications:

  • Date of birth
  • Gender
  • Ethnicity

We collect and use this information in aggregate for the ICEMSPP workforce analysis. This aggregate information is for research purposes only.

Internet or other electronic network activity information:

  • IP address
  • Browser type
  • System type
  • “Referring URL” (i.e., the page from which you navigated to our Site)
  • The pages or areas you navigate to on Site and from which you leave the Site, as well as the time you spend using the Site

We use passively collected information to administer, operate, and improve our Sites, and to provide services and content that are tailored to meet User interests and needs. If we link or associate any information gathered through passive means with Personal Data, we treat the combined information as Personal Data under this Statement. Otherwise, we use information collected by passive means in aggregate only. This usage data is used to assist ICEMSPP in understanding usage of the Site and what technology can be supported. Also, please be aware that third parties may set cookies on your hard drive or use other means of passively collecting information about your use of their services or content. We do not have access to, or control over, these third-party means of passive data collection. 

Information detected by the senses:

  • Audio/video testimonials
  • Electronic postings and ratings
  • Photo image

On an applicable Site, ICEMSPP will collect content provided by Users and identifying Personal Data submitted on Community Features, such as discussion boards, product ratings and audio and/or video testimonials. ICEMSPP may use content posted by Users of Community Features in promotional collateral to promote the Site. For example, we may reproduce a User rating and comment about a course offering and may also display the name of the individual who posted that rating and comment. Please be aware that any information that is publicly posted throughout an applicable Site can be accessed by every visitor of the Site.

Education information:

  • Schools
  • Degrees
  • Graduation dates

We collect and use this information in aggregate for the ICEMSPP workforce survey for research purposes. 

With Whom We Share Personal Data

ICEMSPP does not sell any of your Personal Data, nor do we share it with any third parties, except as necessary to provide products or services required for the operation of the EMS Compact, to facilitate communications with you, when we have your permission, or as otherwise described in this Privacy Statement. 
We may provide Personal Data to third parties who work on behalf of or with ICEMSPP under strict confidentiality agreements. These third parties will not use your Personal Data for any purposes other than for which we disclose it to them, including to communicate with you about offers from the service providers themselves, except that EMS Compact Member States may use your Personal Data to contact you or to contact employers. 
Personal Data entered by Users of various ICEMSPP websites and systems shall be maintained in confidence by ICEMSPP and will not be disclosed or shared with other organizations, except as provided in this Statement. ICEMSPP may identify registered organizations as recipients of services in presentations, promotional materials and press releases. 
Under limited circumstances, your Personal Data may be disclosed to third parties as permitted by, or to comply with, applicable laws and regulations or as required by law enforcement officials; for instance, when responding to a subpoena, court order or similar legal process, to protect against and/or investigate fraud and unauthorized transactions, in situations involving the physical safety or security of any person or entity, to investigate violations of and enforce ICEMSPP Terms & Conditions of Use, to otherwise cooperate with law enforcement or regulatory authorities and as otherwise permitted or required by law or regulation.

Retention of Data

ICEMSPP will keep your Personal Data only for as long as reasonably necessary to fulfill the purposes for which Personal Data is collected as stated herein; for as long as is necessary for the performance of the contract between you and us, if any, between ICEMSPP and nursing regulatory bodies; and to comply with legal and statutory obligations, such as in tax, trade and corporate laws. When we no longer need your Personal Data for our purposes, we will destroy, delete or erase that Personal Data or convert it into an anonymous form.

Security of Data

ICEMSPP takes reasonable steps to protect your Personal Data in our possession from loss, misuse, unauthorized access, disclosure, copying, alteration, and destruction. ICEMSPP has implemented various measures to protect against the misuse and alteration of any information under ICEMSPP's control. Sensitive Personal Data provided to ICEMSPP is encrypted to protect the integrity of the data as it travels the Internet, provided your browser supports this. Such security is not impenetrable, and therefore ICEMSPP cannot guarantee that no loss, misuse, or alteration of information on the Site will occur. ICEMSPP and its third-party licensors are not responsible for any damage incurred by any such security failures. We limit access to Personal Data to employees and third parties who we reasonably believe need access to that information to provide products or services to Users or to do their jobs.

ICEMSPP’s Information Security Management Program is aligned with the Security and Privacy Controls for Federal Information Systems and Organizations. ICEMSPP requires our database administrator to use the National Institute of Standards and Technologies (NIST) 800, moderate-impact security controls framework for its information security to protect the confidentiality, integrity and availability of information that is processed, stored and transmitted by ICEMSPP’s information systems. Please visit the NIST website for additional information on the NIST 800 framework. 

Email Communications Choice/Opt-Out

When ICEMSPP member states provide us with email contact information, they consent to receiving official email communications from ICEMSPP, including meeting notices and committee information. All subscription-based ICEMSPP email communications provide users with a link to unsubscribe to the service. Users can also request via email (admin@emscompact.org) the removal of their information from subscription-based ICEMSPP email communications to not receive future communications.

Regarding Children Under 13

The Site is not marketed to children under the age of 13 and we do not intentionally gather Personal Data about visitors who are under the age of 13. ICEMSPP is committed to protecting the privacy of children and if ICEMSPP becomes aware that such Personal Data was collected, it will treat that Personal Data as sensitive.

Your California Privacy Rights

If you are a resident of the state of California, the following rights are available to you under the California Consumer Privacy Act.

RIGHT TO ACCESS
You have the right to request that we disclose the categories of Personal Data collected by ICEMSPP, the categories of sources from which Personal Data is collected, the business or commercial purpose for collection, the categories of third parties with which we share Personal Data, and the specific pieces of Personal Data that we have about you. You also have the right to request that we provide your Personal Data to you in a readily usable format. ICEMSPP is unable to share some Personal Data about you that is provided by EMS Compact Member States.

RIGHT TO REQUEST DELETION
You have the right to request that we delete Personal Data that we collected from you.  Note, however, that certain requests to delete Personal Data may be denied if we are required to retain the information as a matter of law, the information is necessary for detecting security incidents, exercising free speech, protecting or defending against legal claims, or for internal uses reasonably aligned with consumer expectations.

RIGHT TO NON-DISCRIMINATION
You have the right not to receive discriminatory treatment by us for exercise of these privacy rights.  We do not offer financial incentives related to the provision of data.

AUTHORIZED AGENT
You have the right to designate an authorized agent to make these requests on your behalf. To exercise any of these rights, please contact us at admin@emscompact.gov. We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that Personal Data is not disclosed to any person who has no right to receive it.

Contact Information

Unless otherwise stated, ICEMSPP is a data controller for Personal Data processed subject to this Statement. If you have any questions about this Statement or if you believe that your Personal Data has been processed or disclosed in violation of this Statement, please contact us by sending an email to admin@emscompact.gov or a letter to:

ICEMSPP
Attn: Information Security Assurance
5010 E. Trindle Rd, Suite 202
Mechanicsburg, PA 17050