Personal Data We Collect and Why We Collect It

SciLucent collects certain personal data about you and your use of our Services. The personal data that we collect depends on your interactions with us, and the choices you make.  We may process your personal data for the following purposes.

1. To Respond to Your Inquires and Provide Our Services. We may collect your email address, name, and any other information you choose to provide when you fill out the form on the Contact Us page, the Leadership staff pages, or email us seeking information about our Services.  The personal data that you provide via web forms or in emails will be used only for such purposes described at the point of collection or to respond to your inquiries. We may also process your personal data if you contract with us to provide our Services.
2. To Review Your Application for a Job. When you apply for a position on our Careers page, we may collect your name, your email address, your street address, your cover letter, your resume, and any comments or other information that you provide.
3. To Detect and Prevent Fraud and Security Risks. To the extent permitted under the applicable law, we may collect certain types of data automatically, as described above, such as when you interact with the Site.  We may process your personal data to help monitor, prevent and detect fraud and abusive use of our Services, monitor unauthorized access, enhance system security, and combat spam, malware, malicious activities or other security risks.
4. To Facilitate Corporate Acquisitions, Mergers and Transactions. We may process any information regarding you and your use of our Services as is necessary in the context of corporate acquisitions, mergers or other corporate transactions.
5. To Maintain Legal and Regulatory Compliance. We may process your personal data to fulfill our business obligations, to manage risk as required or permitted under applicable laws and regulations, or to respond to requests by judicial process or governmental agency.
6. With Your Consent.We may process your personal data for any other purpose disclosed to you or which is reasonably necessary to provide the services or other related services requested, with your permission or upon your direction.

How We Disclose Your Personal Data

We may share personal data about you with third parties in the following circumstances:

1. With Our Service Providers. We may share your personal data with third-party service providers acting on our behalf to help us operate our Services. Service providers provide us with support services such as website hosting and network maintenance.
2. During Business Transaction or Other Asset Transfers. We may disclose and transfer information about you to buyers, service providers, advisors, potential transactional partners or other third parties in connection with the advisors, potential transactional partners or other third parties of a corporate transaction in which we are acquired by or merged with another company, or we sell, liquidate, or transfer all or a portion of our business or assets. By engaging with us or using our Services, you understand and agree to our assignment or transfer of rights to your personal data.
3. Within Our Corporate Organization. We may share your personal data within our organization, such as with corporate affiliates, joint venturers, or other companies under common control with us, to provide you with the Services and to take actions based on your request.
4. For Legal Compliance & Safety. We may access, preserve, and disclose information about you if we believe doing so is required or appropriate to (a) comply with law enforcement requests and legal processes, such as a court order or subpoena; (b) comply with requests from auditors, examiners or other regulators; (c) exercise, establish or defend our legal rights; or (d) to protect your, our, or others’ rights, property or safety.

How We Protect Your Personal Data

We follow generally accepted standards to protect the personal data submitted to us, both during transmission and once it is received. We maintain our Services and all associated information with technical, administrative, and physical safeguards to protect against the loss, unauthorized access, destruction, misuse, modification and improper disclosure of your personal data. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. We cannot guarantee the security of our databases or the databases of the third parties with which we may share such information, nor can we guarantee that the information you supply will not be intercepted while being transmitted over the internet.

Retention of Your Personal Data

We will retain your personal data for as long as needed to provide you Services or for other purposes stated in this Policy. We will cease to retain your personal data or remove the means by which the personal data can be associated with you as soon as it is reasonable to assume that such retention no longer serves the purpose for which the personal data was collected and is no longer necessary for legal or business purposes.

Children’s Data

If you are under 18, please do not attempt to fill out our forms or send any personal data about yourself to us. If you are a parent or guardian and you suspect that they have provided their information to us, you may contact us via the method identified in the “Contact Us” section below, so that we may delete their information. If we become aware that a child has provided us with personal data, we will take steps to delete such information from our systems, unless we have a legal obligation to keep it.

Third Party Links

Our Site may include links to websites and/or applications operated and maintained by third parties. We have no control over the privacy practices of websites or applications that we do not own and cannot guarantee that such third parties will adhere to the same privacy practices as us. This Policy does not cover the privacy practices of such third parties. We encourage you to review the privacy policies of those third parties.

Your Choices

1. Access to Personal Data. If you have submitted information to this Site, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us.
2. Deletion of Personal Data. If you have submitted information to this Site, you can request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.  Please note that to protect your privacy and security, we must be able to verify your identity before we can process your request to access or delete your personal data.

Additional Disclosures to Individuals Located in the United Kingdom, European Economic Area or Switzerland

This section applies to individuals who are located in the European Economic Area, the United Kingdom or Switzerland (collectively “EEA Residents’”) at the time their personal data is collected.

Controller. SciLucent, Inc. located at 585 Grove Street, Suite 300, Herndon, Virginia 20170 is the data controller and responsible for the processing of your personal data, and responding to any requests related to your personal data.

Legal Bases. Our legal bases for processing your personal data under the General Data Protection Regulation (“GDPR”) will depend on the specific context in which the personal data is collected and the purposes for which it is used. When we process your personal data, depending on the context, we may rely on a variety of different legal bases to process, including: (i) to perform a contract with you (or to take steps at your request prior to entering into a contract with you); (ii) for our legitimate interests; (iii) to comply with our legal obligations and/or (iv) your consent.

Individual Rights. If you would like to request to review, correct, update, suppress, restrict or delete personal data that you have provided to us through the Site, withdraw your consent, or if you would like to request to receive an electronic copy of such personal data for purposes of transmitting it to another company, you may contact us as indicated in the Contact Us section.  To protect your privacy and security, we may take steps to verify your identity before complying with your request and we may decline your request if we are unable to verify your identity.

In your request, please tell us what personal data you would like to have changed, whether you would like to have it suppressed from our database, or otherwise let us know what limitations you would like to put on our use of it.  For your protection, we may need to verify your identity before implementing your request.

We do not employ solely automated decision-making that results in automated decisions being taken (including profiling) that legally affect you or similarly significantly affect you. Automated decisions are decisions made automatically based on computer determinations (using software algorithms), without human review.

You have the right to lodge a complaint about our practices in response to your personal data with the supervisory authority of your country.

International Transfers. If the processing of your personal data is subject to the GDPR, we will ensure that any international or onward transfer is consistent with applicable law, including:  (i) through the use of standard contractual clauses approved by an appropriate regulatory authority, such as the European Commission or the U.K. Information Commissioner’s Office; (ii) an Article 49 derogations in specific situations; or (iii) any other compliant transfer mechanism.  We may also rely on an adequacy decision of the European Commission confirming an adequate level of data protection in the jurisdiction of the party receiving the information.

EU-US, UK-US, and Swiss-US Data Privacy Framework. SciLucent complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) (together referred to as the “Data Privacy Frameworks”) and the DPF Principles as set forth by the U.S. Department of Commerce. The DPF Principles are:  Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access and Recourse, Enforcement and Liability.  SciLucent has certified to the U.S. Department of Commerce that it adheres to:

• the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF.
• the UK-U.S. Data Privacy Framework Principles (EU-UK DPF Principles) with regard to the processing of personal data received from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF; and
• the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF.

In the context of an onward transfer, SciLucent has responsibility for the processing of personal data it receives under the DPF and subsequently transfers to a third party acting as a service provider, partner and/or other third party to help us provide our Services on our behalf. SciLucent remains liable under the DPF if any such third party processes personal data in a manner inconsistent with the DPF, unless SciLucent can prove that we are not responsible for the event giving rise to the damage. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, visit https://www.dataprivacyframework.gov

The Federal Trade Commission has jurisdiction over SciLucent’s compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF).  In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

In compliance with the Data Privacy Frameworks, SciLucent commits to resolve all DPF Principles-related complaints about our collection and use of your personal data.  EU, UK, and Swiss individuals with inquiries or complaints regarding our handling of personal data received in reliance on the relevant Data Privacy Frameworks should first contact SciLucent at: [email protected]. We will respond to your inquiry promptly.  If a privacy complaint or dispute relating to Personal Data received by SciLucent in reliance on the Data Privacy Frameworks (or any of its predecessors) cannot be resolved through our internal processes, we have agreed to participate in the VeraSafe Data Privacy Framework Dispute Resolution Procedure. Subject to the terms of the VeraSafe Data Privacy Framework Dispute Resolution Procedure, VeraSafe will provide appropriate recourse free of charge to you. To file a complaint with VeraSafe and participate in the VeraSafe Data Privacy Framework Dispute Resolution Procedure, please submit the required information here: https://www.verasafe.com/privacy-services/dispute-resolution/submit-dispute/. If neither SciLucent nor our third-party dispute resolution provider resolves your complaint regarding EU-U.S. DPF , UK-U.S., and Swiss-U.S. DPF compliance, you have the possibility, under certain conditions, you may have the right to require that we enter into binding arbitration with you under the Data Privacy Framework “Recourse, Enforcement and Liability” Principle and Annex I of the Data Privacy Framework.  Further information can be found at: https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf?tabset-35584=2.

Contact Us

We welcome your questions, comments, and concerns about privacy.  You can contact us by email at [email protected], by postal mail at SciLucent, 585 Grove Street, Suite 300, Herndon, Virginia 20170, or via our contact form at https://www.scilucent.com/contact/.