In most cases, we separate how we handle credentialing data on members and prospective members, and how we manage the data we track on visitors to our websites.
We collect a variety of information about our members, prospective members, and unaffiliated visitors to our websites. For members and prospective members, we collect identifying and personal information as part of our credentialing process. These data may include general information such as name, mailing address, email address, telephone number, and fax number, and Social Security number. As part of our credentialing process, we collect specific education and training information including transcripts and confirmation of internship and postdoctoral experience. We also collect information on licenses held by psychologists and disciplinary actions taken against psychologists by licensing boards. Finally, as part of our payment system for members and prospective members, we process credit cards through our website using trusted third-party vendors such as Payflow and Stripe.
Important Takeaways for Members/Prospective Members
To enhance our website experience for members, prospective members, and unaffiliated visitors, we use Google Analytics to track pages visited, time spent on pages, and other usage data. We also gather data based on member and prospective member engagement with our communications and member services.
Important Takeaways for Website Visitors
As part of our role as a credentialing organization, we are frequently called upon to share credentialing data with healthcare organizations, licensing boards, and employers. We share data you have provided to us in order to promote your practice or verify your credentials, on our FindaPsychologist.org referral site and NationalRegisterPro.org credentials verification site. Examples of data we share on FindaPsychologist.org include your practice address, business phone number, areas of expertise, and treatment modalities. We share all of the preceding on NationalRegisterPro.org, but also include information relevant to healthcare organizations such as your certification number, certification date, and re-certification date. When current members contact us and request release of more specific information, we will send copies of primary source documentation to healthcare organizations, licensing boards, and employers.
We also partner with a number of organizations and companies that we deem credible and offering relevant services to members. In some cases, we may release general categories of data, such as you name, degree type, areas of expertise, and mailing address. We never rent, sell, or otherwise release your email address. We very carefully evaluate each request by partner organizations to make sure the products and services are relevant to psychologists. You may opt out of this type of data sharing at any time by contacting firstname.lastname@example.org.
Important takeaways for Members/Prospective Members
Advertising, Marketing and Communications Preferences:
We may use your Identity, Contact, Technical, Tracking, Usage and Profile Data to form a picture of what we think you may want or need, or what may be of interest to you. This is how we decide which benefits may be relevant for you and tell you about them. This is what we call direct marketing.
We may carry out direct marketing by email or mail. For example, you might receive an eNewsletter or benefit update by email, or a copy of the Journal of Health Service Psychology by mail. On our website, we always make it clear what we are doing and what communications you will be sent, whether it’s starting an application for credentialing or signing up for our eNewsletter—and you have a right at any time to change your mind and opt out. The easiest way to out is to use the unsubscribe link at the bottom of the communication, where you can also adjust your communication preferences to ensure you’re receiving the types of communications you’re interested in.
Of course, there are lots of different ways you’ll see the National Register online and in person, and not all of these are based on using personal data–sometimes we just buy advertising space. If you see the National Register’s promotions on websites and in social media, these may not be directed specifically at you, we might just be generally advertising.
This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements.
We will only keep your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
In some circumstances you can ask us to delete your data; see below for further information.
In some circumstances we may anonymize your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
Our sites and services are not directed to children and children are not eligible to use our sites or services. We do not knowingly collect or store any personal information about children. If we learn that a child has provided personal information to us, we will delete that information from our records to the fullest extent possible.
We give you the ability to manage your settings and preferences, including the ability to modify or remove your personal information. You can also ask that we correct or delete your data, if so justified. We protect your right to information by answering your questions concerning the processing of your data and respecting your right to access to your account settings, payment information or other information resulting from your use of our sites and services.
If the General Data Protection Regulation (GDPR) applies to you because you are in the European Union, you have additional rights under data protection laws in relation to your personal data, including the right to be informed how we use your personal data, the right to be forgotten, and the right to object to us processing your personal data. These rights are subject to certain rules around when you can exercise them.
If you wish to exercise any of the rights set out above, please contact us at email@example.com.
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we may refuse to comply with your request in these circumstances.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made several requests. In this case, we will notify you and keep you updated.
You have the right to make a complaint at any time to your local data protection agency. We would, however, appreciate the chance to mitigate your concerns before you approach the relevant agency, so please contact us first.
If you need help about our services, or this website generally, please contact us at firstname.lastname@example.org.