Data Privacy, FERPA & Global Data Protection Policy
Data Privacy, FERPA & Global Data Protection Policy
Effective Date: March 2025
1. Purpose and Faith-Based Commitment
Eldermont University is dedicated to honoring the dignity and privacy of every student, faculty, and staff member. As a faith-based institution rooted in biblical values of truth, integrity, and stewardship, we view the safeguarding of personal information as a sacred responsibility (Proverbs 4:7; Colossians 3:23). This policy outlines our commitment to data privacy, transparency, and compliance with applicable U.S. laws (including FERPA), international standards (including GDPR), and Christian ethical principles.
2. FERPA Compliance & Student Rights
Although not legally bound by the Family Educational Rights and Privacy Act (FERPA), Eldermont University voluntarily upholds its principles. Students are entitled to the following rights:
A. Right to Access
• Students may request access to their education records by submitting a written request to the Office of Student Records.
• Records will be made available within 45 days.
B. Right to Request Amendment
• Students may request corrections to records they believe are inaccurate or misleading.
• Eldermont will respond with approval or denial in writing.
C. Right to Consent to Disclosures
• Student records are not disclosed to third parties without written consent, except in cases permitted under FERPA exceptions (e.g., legal orders, health/safety concerns, legitimate institutional needs).
D. Right to File a Complaint
• Concerns about student data may be directed to Eldermont’s Compliance Office or to relevant state or accrediting authorities.
3. Directory Information & Opt-Out
Eldermont may disclose limited directory information unless a student opts out in writing. Directory information may include:
• Full name
• Degree program and field of study
• Dates of attendance
• Degree conferral and honors
To restrict directory information sharing, students may complete a Non-Disclosure Request Form through the registrar.
4. Data Collected & Usage Purposes
Eldermont collects personal and academic data to facilitate student services, program delivery, institutional reporting, and regulatory compliance.
Types of Information Collected:
• Personal identifiers (name, date of birth, nationality, email, phone, ID)
• Academic records (PLA portfolios, transcripts, thesis/dissertation submissions)
• Payment and tuition data
• Learning Management System (LMS) usage, analytics, and communications
Use of Information:
• Processing admissions and academic progress
• Academic advising and credential conferral
• Providing student support and communication
• Reporting to accreditation and regulatory bodies
5. International Students & GDPR Adherence
For students residing in the European Economic Area (EEA) or subject to the General Data Protection Regulation (GDPR), Eldermont ensures the following rights:
• Right to access and rectification of personal data
• Right to erasure (“right to be forgotten”)
• Right to restrict or object to processing
• Right to data portability
• Right to withdraw consent at any time
• Right to file a complaint with the appropriate supervisory authority
Eldermont may transfer personal data to the U.S. or other countries for academic purposes, ensuring appropriate safeguards (e.g., encrypted transfer, contractual clauses).
6. Third-Party Services & Cloud Hosting
Eldermont partners with reputable third-party providers (e.g., LMS platforms, analytics tools, payment processors). These providers are contractually obligated to maintain data confidentiality and are not authorized to use student data for marketing or external research.
7. Data Retention & Deletion
• Academic records: Retained indefinitely
• Financial records: Retained for 7 years per accounting best practices
• LMS and user accounts: Deactivated after graduation or withdrawal; minimal records retained for verification
• Requests for data erasure will be honored where applicable under GDPR or state law
8. Security Measures
Eldermont employs industry-standard protections to safeguard personal data, including:
• Encrypted storage and transmission (SSL/TLS)
• Secure login credentials and two-factor authentication
• Access control for authorized personnel only
• Regular system reviews and audits
9. Cookies & Tracking
Eldermont’s website uses cookies and analytics tools (e.g., Google Analytics) to improve user experience and platform performance. Visitors may adjust browser settings to disable cookies or opt out of analytics tracking.
10. Communication Consent
By providing contact information, students and users consent to receive official communications from Eldermont University. Students may opt out of promotional messages by contacting: communications@eldermont.com
11. Student Rights & Support
Students may contact the Office of Student Records to:
• Request access or amendment of data
• Submit a non-disclosure form
• File data privacy concerns
Email: registrar@eldermont.com | Phone: (567) 200-3453
Mailing Address: Eldermont University, 7901 4th St N, #26232, St. Petersburg, FL 33702
12. Children’s Online Privacy Protection
Eldermont University does not knowingly collect data from individuals under the age of 13 in compliance with COPPA.
13. Policy Review & Updates
This policy is reviewed annually and updated to reflect legal, technological, or institutional changes. Updates will be published on the university website and communicated to students.
14. Faith-Based Ethical Statement
Eldermont’s handling of data is guided by biblical stewardship, honoring each student as a unique image-bearer of God. We commit to transparency, responsibility, and protection of the trust placed in us.
“Let all things be done decently and in order.” — 1 Corinthians 14:40
By enrolling at Eldermont University, students acknowledge and agree to this Data Privacy, FERPA & Global Data Protection Policy.