Last updated and effective: – 2/05/2026
Avant Assessment, LLC.(“Avant”,“我们”或“我们的”)是一家俄勒冈有限责任公司,拥有并运营各种在线教育服务,包括在线语言能力评估和测试服务(统称为“服务”)。
此隐私政策描述了我们如何可能收集、使用和披露我们从我们服务的用户那里收集的个人信息,以及您对您个人信息的权利。
在此隐私政策中,我们将服务的用户称为“您”。当我们提到“个人信息”时,我们指的是能够识别、描述或与已识别或可识别的个人相关的信息,或者是有合理可能与特定个人或家庭直接或间接关联或合理链接的信息。
通过访问或使用服务,您确认您已阅读并理解了此隐私政策。
我们代表个人客户(“家庭客户”)处理的个人信息受此隐私政策的约束。在Avant代表我们的教育机构客户(“教育客户”)处理个人信息的情况下,除了此隐私政策外,我们与教育客户的合同还进一步规定了您的隐私。
在此隐私政策中,当我们同时提到家庭客户和教育客户时,我们简化术语,将两组统称为“客户”。我们将与测试服务互动的最终用户称为“考试参与者”。
我们收集的个人信息
我们收集的个人信息可能会根据您的角色和您使用的服务而有所不同。
| 产品 | 可能从客户处收集的个人信息 | 可能从考试参与者收集的个人信息 |
|---|---|---|
| 评估测试(包括 Avant STAMP 产品,Avant SuperLanguage 测试,和 阿拉伯语熟练度测试) | • 州 • 区名 • 学校名称 • 教师姓名 • 其他员工姓名 • 测试组名称 • 语言 13岁以下考生的邮寄地址(仅当请求全球双语能力印章或第三方数字认证徽章时) | • 登录名和密码 • 名字 • 姓氏 • 年级(客户可自行决定是否提供) • 考试参与者ID • 书面和口头回应(音频记录) • ASL回应的视频(仅适用于13岁以上的考试参与者) 13岁以上考试参与者的邮寄地址(仅在请求全球双语能力认证或第三方数字认证徽章时提供) |
| Avant PLACE 和 SHL | • 州 • 区域名称 • 学校名称 • 教师名称 • 其他员工名称 • 测试组名称 • 语言 | • 名字 • 姓氏 • 考试者ID • 电子邮件 教育客户还将被要求提供以下信息以支持他们的班级安排: • 个人学习或说目标语言已经多少年了? • 个人在目标语言中参加过哪些测试? • 个人的家庭/家人中是否有人说英语以外的其他语言? • 哪种语言? • 家中的哪个人会说那种语言? • 个人在哪些年级曾经学习过目标语言? |
| AvantProctor(附加服务,适用于与13岁以上学生的评估测试相结合的教育客户购买) | In addition to the information collected above, our third party proctoring partner also collects certain Personal Information from the test taker, as well as from any assistant who will be present during the test to support an accommodation. The information our proctoring partner collects is described in and is governed by their privacy policy and terms of service, which test takers must agree to before using. Avant may access and maintain a record of the following information for a limited period of time after the test and only for use in the event of a test rules violation: • Login Name and Password • First Name • Last Name • Email address • Grade • Test Taker ID • Spoken and Written Responses • Video of the testing, including video of any assistant present to support a test taker accommodation for proctoring purposes • Audio of the testing, including audio of any assistant present to support a test taker accommodation for proctoring purposes • Photo ID for verification purposes (stored for 14 days) | |
| Avant READY (仅适用于尼加拉瓜) | • 用户名和密码 • 名字 • 姓氏 • 电子邮件地址 • 分数 | |
| ADVANCE (仅限教育工作者使用) | • 密码 • 名字 • 姓氏 • 电子邮件地址 • 许可证的语言 | |
| Avant MORE 学习(仅限教育工作者) | • 名字 • 姓氏 • 电子邮件地址 • 对培训课程的反馈 |
我们的教育客户也可以选择让他们的学生通过教育客户的第三方单点登录门户登录服务。在这些情况下,除了上述信息外,我们还将接收一个在服务中验证个人身份的令牌。
此外,如果您选择联系我们的支持团队,我们可能会收集您的名字和姓氏,电子邮件地址,电话号码以及其他联系信息,以便在我们努力回答您的问题或解决您的问题时根据需要回应您。
自动收集的信息
当您使用我们的服务时,我们会使用各种跟踪技术自动收集您的某些信息。我们收集的信息包括与您的设备关联的互联网协议地址,您的浏览器类型和版本,您的设备的操作系统,设置,唯一的设备标识符,网络信息以及其他设备特定信息,以及活动和日志文件。我们还收集设备上使用的语言,您所在的国家,您访问的服务区域,查看的页面以及您访问的时间和持续时间。
我们使用这些信息来帮助我们了解我们的服务如何被使用,诊断技术问题,记住您的偏好,改进我们的服务,以及出于安全目的(包括防止欺诈和滥用,保护我们的计算机,软件,硬件和通信系统)。当这些信息以能识别您个人身份的形式存在时,我们会按照此隐私政策将其视为个人信息。
我们用于收集此信息的技术
我们使用cookies自动收集上述信息。Cookies是由网站发送并存储在您的设备上的小型数据文件。Cookies存储的信息可以让我们在您再次访问时识别浏览器,并记住您的偏好设置。
第三方Cookies和追踪
我们使用各种第三方帮助我们收集和理解上述自动收集的信息,以及个性化您看到的内容。大多数浏览器可以设置为检测cookies并让您拒绝它们,但拒绝cookies可能会影响我们服务的某些区域的功能。要了解更多关于浏览器cookies的信息,包括如何管理或删除它们,请参考您的网络浏览器的工具,帮助或类似部分。
关于我们收集儿童个人信息的说明
如果教育客户选择让13岁以下的学生或者在其管辖区内出于隐私目的未达到同意年龄的学生使用我们的服务,我们依赖教育客户获取任何必要的家长同意,或者代替父母提供同意,以便我们收集和使用个人信息。我们会遵守我们保护该个人信息的直接义务。如果我们发现我们在未得到必要同意的情况下误收集了这类个人信息,我们将采取步骤立即删除它。
13岁以下儿童的父母或者在其管辖区内因隐私目的未达到同意年龄的儿童的父母,如果他们的孩子在教育客户的指导下使用服务,且希望查看或要求删除孩子的个人信息,或要求我们不再与他们的孩子联系,应该联系教育客户。我们将与教育客户合作,以便处理该请求或任何相关的权利请求。
我们不向家庭客户销售针对13岁以下儿童的服务。
有关我们从13岁以下儿童收集和使用个人信息的更多信息,请查看我们的儿童隐私通知。
关于从教育客户的学生中收集的个人信息的说明
当受家庭教育权利和隐私法案(“FERPA”)约束的教育客户与Avant签约时,他们同意指定我们为具有提供服务的“合法教育利益”的“学校官员”,这些术语在FERPA §§ 99.31(a)(1)中被使用。
Avant始终在教育客户的直接控制下,对FERPA保护的“教育记录”的使用和维护,并且只根据我们与教育客户的协议以及适用法律的规定使用学生的个人信息。
我们如何以及为何使用您的个人信息
我们不会出售或出租您的个人信息,也不会将您的个人信息用于广告目的。
通常,我们会按照下述方式使用您的个人信息。
- 为了提供和维护服务,包括创建和管理登录凭证;验证服务的用户;允许您进行测试和其他评估;提供测试表现的结果,包括分数和与测试和评估表现相关的其他反馈,以及监考结果;确保和维护我们评分员(我们称之为“评分员”)的质量,并开发和改进我们的AI启用的评分功能;进行监考并允许我们的第三方合作伙伴在教育客户选择购买此类功能时进行监考;向我们的客户提供关于他们用户的表现的报告;提供测试结果;并在家庭客户或教育客户购买或启用此类服务时,方便提供数字认证徽章。
- 我们使用书面,音频和视频测试反馈以及熟练程度来确保和维护我们评分员的质量;
- 我们使用已经与测试中所有其他信息分离的书面和音频测试反馈以及熟练分数来开发,训练和校准我们的AI启用的评分功能,但是任何音频文件都首先被转换为数字文件并在总体上使用。客户可以通过发送电子邮件至privacy@avantlanguage.com选择退出使用个人信息进行AI启用的评分功能以及他们的测试的任何完全自动化的评分
- 为了提供客户支持,包括通过电话和电子邮件,帮助维护我们服务的安全,并与您就服务进行沟通,征求您对服务的反馈。
- 如适用,处理与服务相关的付款。
我们进行上述处理的合法依据,是在需要的地方和情况下,追求我们在提供、维护和保障服务以及履行合同中的合法利益。
- 在重组、合并、销售、分配、破产或类似的商业变更的情况下,我们可能需要将您的个人信息转移给重组后的实体或销售或重组后的新所有者,以便他们根据本隐私政策使用。
我们进行上述处理的合法依据,是在需要的地方和情况下,追求我们在提供、维护和保障服务以及履行合同中的合法利益。
- 在进行调查的过程中,我们可能会与协助我们的实体共享您的个人信息,或者根据适用法律在响应我们的使用条款的已知或疑似违规行为,防止欺诈或其他非法使用我们的服务时可能需要。
- 我们可能会使用和披露您的个人信息,以保护我们的权利或我们用户的权利和安全,或在法院命令、监管查询或其他合法请求的情况下必要时。但是,除非法律禁止,否则我们会将任何此类请求直接向您提出,或在回应之前通知您,除非这样做会妨碍犯罪的预防或侦查。
我们上述处理的合法依据,根据需要的地点和情况,是为了履行我们的法律义务以确保我们服务的合法性,以及保护我们合法权益的合理利益。
为现有客户提供营销材料,包括关于我们服务的更新和优惠。您可以随时取消订阅或选择退出进一步的电子邮件通讯,方法是点击每封电子邮件底部标有“取消订阅”或“管理偏好设置”的链接,或者通过联系我们marketing@avantassessment.com。
我们进行上述处理的合法依据,根据需要的地方和情况,是您的同意。
第三方链接
我们的服务可能包含指向第三方网站的链接。我们链接到一个网站并不代表我们对该网站的认可,也不意味着我们与该网站有任何关联。我们无法控制第三方网站或其隐私实践,通过访问这些网站,您承认您自行承担使用和依赖它们的风险。这些网站可能会在您的设备上放置自己的跟踪技术,并可能对收集的信息以及如何使用和披露该信息有不同的规定。我们建议您阅读您访问的任何网站的隐私政策和条款。
安全性
我们使用物理、行政和技术保护措施来帮助保护您的个人信息的保密性、安全性和完整性。然而,互联网并非完全安全,对于不可合理预见或不在我们控制范围内的安全漏洞,我们不负责任。
服务的安全性部分也取决于您保密您的登录凭据。如果您知道或怀疑您的凭据已经被泄露,请立即通过compliance@avantassessment.com与我们联系。
我们保留您的个人信息多久
我们在合同终止后的90天内或收到书面请求后的30天内删除个人信息。在客户合同有效期内,我们不会保留该数据超过4年。
关于AvantProctor服务,我们将保留您参加考试的音频和视频,包括您用于验证目的的ID的图像,为期14天。如果客户对考试成绩有争议,我们会使用这些信息。
我们可能会创建并保留去标识化的数据,以便用于合法允许的目的。
选择退出政策
我们可能会向我们的家庭客户和教育客户发送包含我们产品和服务信息的电子邮件,我们认为这些信息可能会引起您的兴趣。您可以通过点击我们发送的每封电子邮件底部的“取消订阅”或“管理偏好”链接,或通过联系我们legal@avantassessment.com来选择不接收这些电子邮件。请注意,即使您已选择不接收营销电子邮件,我们仍可能向您发送与服务相关的电子邮件。
我们不向学生发送营销邮件。
来自美国以外的用户
如果您位于美国以外的地方,您承认并同意,在使用服务的过程中,您的个人信息将被转移到、处理和存储在美国。通过访问或使用我们的服务,您承认我们可能以这种方式转移、处理和存储您的个人信息,并且您的个人信息通常将按照美国适用的隐私法律进行处理(除非在此隐私政策中另有描述)。这些法律可能与您所在国家的隐私法律不同。然而,这并不改变我们保护您隐私的承诺,我们将遵守所有关于跨境披露您个人信息的适用法律。
选择访问我们的服务的人是自愿并自行承担风险的,并负责遵守他们所在地的所有法律、规则和法规。我们可能会在任何时候,根据我们的独立判断,限制我们的服务的可用性,全部或部分,对任何人、地理区域或我们选择的司法管辖区。我们并不表示或保证我们的服务,或其任何部分,适合或可用于任何其他司法管辖区。如果您选择访问或使用我们的服务,您同意根据这个隐私政策和所有适用法律使用和披露信息。
来自欧洲经济区,瑞士和英国用户的附加信息
如果您是欧洲经济区(EEA)的居民,我们通常会根据2016年4月27日欧洲议会和理事会的第2016/679号条例管理您的个人数据,该条例关于保护自然人在处理个人信息和自由流动个人信息方面的权利,通常被称为通用数据保护条例(“EU GDPR”)。如果您是英国(UK)的居民,我们将以类似的方式根据英国的通用数据保护条例管理您的个人数据,该条例在英国2018年数据保护法的第3(10)节和第205(4)节中定义(“UK GDPR”)。我们还将管理瑞士居民的个人数据,以符合瑞士联邦数据保护法(“FADP”)。虽然EU GDPR,UK GDPR和FADP的要求通常是一致的(如本节所述),但我们邀请EEA,UK和瑞士的居民通过电子邮件联系我们compliance@avantassessment.com,如果您对我们将如何管理您的个人数据或您作为特定管辖区居民可获得的特定权利有任何疑问。
作为欧洲经济区、英国或瑞士的居民,如果您是教育客户或正在使用教育客户账户访问我们的服务,我们通常作为“数据处理器”并根据教育客户的指示处理个人数据,教育客户是“数据控制器”。我们的处理目的仅限于教育客户同意并被授权的数据主体所同意的。如果您是家庭客户或正在使用家庭客户账户访问我们的服务,我们通常作为“数据控制器”,在这种情况下,您可以在“我们如何使用和披露您的个人信息”一节中找到我们处理您个人信息的合法依据。
如有需要,我们将与我们的第三方、供应商或商业伙伴实施标准合同条款,或依赖其他传输机制,根据适用的法律,确保您的个人信息从欧盟、英国或瑞士转移出去是合法的。您可以通过向我们发送电子邮件至compliance@avantassessment.com来请求我们依赖的传输个人信息到您国家以外的传输机制的详细信息。
根据具体情况,如果您是欧盟、英国或瑞士的居民,您可能还有以下权利:
- 访问,更新或更正您的个人信息;
- 要求删除您的个人信息;
- 接收您提供给我们的关于您的个人信息的机器可读副本;
- 在某些情况下,请求将您的个人信息转移给适用的第三方;
- 在您已经同意我们处理您的个人信息的情况下,您可以通过下方的“联系我们”部分提供的详细信息来撤回此类同意;并且
- 您也可以在投诉正在调查期间限制我们如何使用您的个人信息。
您可以通过使用此政策底部的信息与我们联系来行使这些权利。您所在的国家的规定可能会为您提供额外的权利或限制这些权利。在所有情况下,我们都将依据适用的法律提供权利,如果您联系我们行使这些权利,我们将验证您的请求并在法律规定的时间内回应。但是,请注意,您行使这些权利可能受到一些保护公共利益(例如,预防或检测犯罪)和我们的利益(例如,我们保持法律特权)的豁免。
如果您认为我们非法占有、使用或披露您的个人信息,您有权向您当地的数据保护监管机构投诉。欧洲经济区的居民可以在这里找到联系方式:https://edpb.europa.eu/about-edpb/board/members_en。
您的权利
根据您所在的位置或居住地,适用的法律可能会赋予您关于个人信息的权利,我们将按照法律要求尊重这些权利。
如果您位于欧洲经济区,瑞士或英国,您有权:
- 访问,更新或更正您的个人信息;
- 要求删除您的个人信息;
- 反对对您的个人信息进行某些处理,包括与市场营销相关的处理;
- 接收您提供给我们的关于您的个人信息的机器可读副本;
- 在某些情况下,请求将您的个人信息转移给适用的第三方;
- 在您已经同意我们处理您的个人信息的情况下,您可以通过下方的“联系我们”部分提供的详细信息来撤回此类同意;并且
- 您也可以在投诉正在调查期间限制我们如何使用您的个人信息。
You may exercise these rights by contacting us using the information at the bottom of this policy. The rules in your country may provide you with additional rights or may limit these rights. In all cases, we will provide rights in compliance with applicable laws, and if you contact us to exercise any of these rights, we will verify your request and respond within the time period required by applicable law. Please be aware, however, that your exercise of these rights is subject to certain exemptions to safeguard the public interest (for example, prevention or detection of crime) and our interests (for example, our maintenance of legal privilege).
此隐私政策的更新
随着我们的服务不断发展,我们可能会对此隐私政策进行更改。我们将通过在服务中提供通知或按照法律要求的其他方式来提醒您变更。如果我们对此隐私政策进行了重大更改,我们将以法律要求的方式向客户发送通知并请求同意。此政策顶部的“最后更新”注释指示了它最后一次被修改的时间。
联系
如果您想联系我们来行使您在此隐私政策下的权利,了解更多关于您的权利或我们的隐私做法,或要求以其他格式访问此隐私政策,请联系我们:
邮件:
Avant Assessment, LLC
940 Willamette Street, Suite 530
Eugene, OR 97401
电子邮件: legal@avantassessment.com
如果您对此隐私政策或我们的数据处理程序有疑虑或投诉,您可能有权向监管机构提出投诉。
欧盟GDPR代表:
Adam Brogden contact@gdprlocal.com
电话 +35315549700
INSTANT EU GDPR REPRESENTATIVE LTD
办公室 2
卢坎县都柏林下主街12A
K78 X5P8
爱尔兰
英国GDPR代表:
Adam Brogden contact@gdprlocal.com
电话 +44 1772 217800
一楼前套房
布莱顿北街27-29号
英格兰
Privacy Policy Provisions for Latin America
Our role as Data Processor and Data Controller
Avant primarily serves educational institutions, and in these cases, we act as a “data processor” under applicable data protection regulations, including those in Latin America. When you access our Services through an Education Customer account, Avant processes Personal Data strictly according to the instructions provided by the Education Customer, who is the “data controller.” Our processing purposes are limited to those agreed to by the Education Customer and authorized by the Data Subject.
For our Home Customers, Avant acts as a “data controller.” In these instances, we determine the purposes and means of processing your Personal Data in accordance with applicable data protection laws, including those in Latin America. You can find our lawful basis for processing your Personal Information in the section, “How We Use and Disclose Your Personal Information.
For any questions, concerns, or requests regarding the processing of your personal data, please contact us using the following information:
| Business Name: | Avant Assessment, LLC |
| Tax Identification Number (Tax ID): | 80-0009624 |
| Registered Address: | 940 Willamette St. Suite 530, Eugene, OR 97401 |
| Email: | legal@avantlanguage.com |
| Website: | www.avantassessment.com |
What we use your data for
In the development of our activities and in compliance with the legal requirements of each jurisdiction in Latin America and other applicable regulations, Avant may store, use, share, transfer, transmit, and delete Personal Data solely and exclusively for the purposes indicated below, or those accepted by the Data Subjects at the time of data collection through the Authorization:
| Providing and Maintaining Services |
|---|
| To provide and maintain the Services, including creating and managing login credentials, authenticating users, and allowing participation in tests and assessments. |
| To provide test results, scores, feedback, and proctoring results. |
| To conduct proctoring directly or through third-party partners when requested by an Education Customer. |
| To generate and provide performance reports to Customers. |
| To share test results and student emails with badging or credentialing partners when enabled by the Customer. |
| To integrate third-party tools and applications that enhance the functionality of our Services. |
| To manage user profiles and preferences |
| Customer Support and Communication |
|---|
| To provide customer support via phone and email. |
| To maintain the security of the Services. |
| To communicate with users regarding the Services and solicit feedback. |
| To provide existing Customers with marketing materials, updates, and offers. |
| Users can unsubscribe or opt-out at any time. |
| To provide multilingual support |
| To offer self-service support options, such as FAQs and knowledge bases. |
| To send notifications about service updates, new features, or scheduled maintenance. |
| Payment Processing and Business Transactions |
|---|
| To process payments in connection with the Services. |
| In the event of a reorganization, merger, sale, assignment, bankruptcy, or similar business change, to transfer Personal Data to the new entity or owner. |
| To provide users with payment history and invoices for their records. |
| To manage and update user consent preferences in line with organizational changes. |
| Legal and Compliance |
|---|
| To comply with legal obligations and regulatory requirements. |
| To protect against fraudulent activities and ensure the security of our services and user data. |
| In the event of an investigation or to fulfill legal requirements, share Personal Data with assisting entities or as required by law. |
| To protect legal rights or respond to lawful requests, court orders, or regulatory inquiries. |
| To conduct regular security audits and vulnerability assessments to protect user data. |
| To develop and enforce robust data protection policies and procedures. |
| To collaborate with law enforcement and regulatory bodies as necessary to ensure compliance with legal standards. |
Jurisdiction Specific Rules
Data protection laws vary across regions throughout Latin America, and, at Avant, we are committed to complying with the specific legal requirements in each country where we operate. Below are the rules and practices we follow to ensure compliance with local data protection regulations, along with the legal authorities responsible for oversight:
| MÉXICO | |
|---|---|
| For Data Subjects accessing our Services from Mexico, we adhere to the Federal Law on the Protection of Personal Data Held by Private Parties (LFPDPPP). Key provisions include: | |
| Rights | Users have the ARCO rights: right to Access, Rectify, Cancel, and Oppose the processing of their personal data. However, the Inquiry must contain a copy of the legal document of identification of the Data Subject that presents it, to support the titularity over the Personal Data being inquired. |
| Response time frame | The Data Controller shall inform the Data Subject of the decision regarding their request for access, rectification, cancellation, or objection within a maximum period of twenty (20) days from the receipt of such request. Should the decision favor the Data Subject, the necessary actions to effectuate this decision shall be completed within fifteen (15) days from the date on which the Data Subject is notified of the decision. The aforementioned time frames for response and implementation may be extended once for an equivalent period if justified by the circumstances of the case. |
| Legal Authority | The Federal Institute for Access to Information and Data Protection (INAI) serves as the authority responsible for data protection in Mexico and for upholding the rights of Data Subjects. Its primary functions include monitoring compliance with the Federal Law on the Protection of Personal Data Held by Private Parties, promoting transparency, and safeguarding individuals’ rights to privacy and personal data protection. INAI holds the authority to investigate complaints, impose sanctions, and provide guidance on data protection practices. Click here to access the official site. |
| BRAZIL | |
|---|---|
| For Data Subjects accessing our Services from Brazil, we adhere to the Brazilian General Data Protection Law – LGPD (Law No. 13,709). Key provisions include: | |
| Rights | Data Subjects have access to the same rights provided in this policy. However, it is important to note that they have the right to make the inquiry through a petition before the national legal authority. |
| Response time frame | The Data Controller shall notify the Data Subject within a maximum of fifteen (15) days from the date the inquiry is received. This response period may be extended once for an equivalent duration if justified by the circumstances of the case. |
| Legal Authority | The National Data Protection Authority (ANPD) is Brazil’s designated body for overseeing data protection. Established under the LGPD. The ANPD is tasked with regulating, implementing, and monitoring compliance with data protection laws. Its functions also encompass educating the public, fostering data protection culture, and liaising with other regulatory bodies both domestically and internationally. Click here to access the official site. |
| Additional Provisions | Data Protection Officer (DPO): The appointment of a DPO is mandatory for all companies under the LGPD. The DPO acts as a communication channel between the controller, data subjects, and the National Data Protection Authority (ANPD). |
| COSTA RICA | |
|---|---|
| For Data Subjects accessing our Services from Costa Rica, we adhere to the Law on Protection of the Person Against the Processing of Personal Data (Law No. 8968). Key provisions include: | |
| Rights | Data Subjects have access to the same rights provided in this Policy. |
| Response time frame | The Data Controller will notify the Data Subject, within a maximum period of five (5) business days from the date the inquiry was received. |
| Legal Authority | The Agency for the Protection of Citizens’ Data (PRODHAB) governs data protection in Costa Rica. It operates under the Law on the Protection of the Person concerning the Treatment of Personal Data and is responsible for ensuring the lawful processing of personal data. PRODHAB ‘s duties include auditing data controllers, handling data subject complaints, and promoting awareness about individuals’ rights to data privacy. Click here to access the official site. |
| NICARAGUA | |
|---|---|
| For Data Subjects accessing our Services from Nicaragua, we adhere to the Law on Protection of Personal Data (Law No. 787). Key provisions include: | |
| Rights | Data Subjects have access to the same rights provided in this Policy. However, there are different response time frames depending on the Inquiry. |
| Response time frame | The Data Controller will provide a response to the Data Subject within a maximum period of ten (10) business days from the date the inquiry for information was received, but within a maximum period of five (5) business days for inquiries regarding any other right in this Policy. |
| Legal Authority | Data protection is overseen by the Directorate for Personal Data Protection, established under the Law on Protection of Personal Data. This authority is tasked with ensuring compliance with the law, safeguarding individuals’ privacy rights, overseeing data processing activities, and addressing grievances related to data protection violations. Please visit Nicaragua’s Department of the Treasury web site for additional information. |
| COLOMBIA | |
|---|---|
| For Data Subjects accessing our Services from Colombia, we adhere to the Statutory Law 1581 of 2012 (Law on Protection of Personal Data). Key provisions include: | |
| Rights | Data Subjects have access to the same rights provided in this Policy. However, there are different response time frames depending on the Inquiry. |
| Response time frame | The Data Controller shall notify the Data Subject within a maximum of ten (10) business days from the date the Inquiry for Information is received. This period may be extended once for an additional five (5) business days if justified by the circumstances of the case. For inquiries concerning any other rights, the Data Controller shall notify the Data Subject within a maximum of fifteen (15) business days, with the possibility of a single extension of five (5) business days, provided that the circumstances justify such an extension. |
| Legal Authority | The Superintendence of Industry and Commerce (SIC) is the regulatory body responsible for data protection in Colombia. It enforces the Statutory Law on Data Protection, ensuring that personal data is processed in accordance with legal provisions. SIC’s functions include investigating breaches, imposing sanctions, and educating the public on data protection rights and responsibilities. Click here to access the official site. |
| ARGENTINA | |
|---|---|
| For Data Subjects accessing our Services from Argentina, we adhere to the Personal Data Protection Law (Law 25.326). Key provisions include: | |
| Rights | Data Subjects have access to the same rights provided in this Policy. However, there are different response time frames depending on the inquiry. |
| Response time frame | The Data Controller shall notify the Data Subject within a maximum of ten (10) days from the date the Inquiry for Access is received. For inquiries concerning any other rights, the Data Controller shall notify the Data Subject within a maximum of five (5) business days. |
| Legal Authority | The Argentine Agency for Access to Public Information (AAIP) is the authority responsible for enforcing data protection laws in Argentina, specifically the Personal Data Protection Law. The agency’s functions include monitoring compliance, handling complaints from individuals regarding data misuse, conducting investigations, and issuing guidelines to ensure the protection of personal data and the rights of data subjects. Click here to access the official site. |
| SURINAME | |
|---|---|
| For Data Subjects accessing our Services from Suriname, we adhere to globally recognized data protection standards: | |
| Rights | Although Suriname does not recognize any specific rights regarding personal data, Avant clients have access to the same rights provided in this Policy for all Data Subjects. Keep in mind that we adhere to globally recognized data protection standards. Additionally, we are keeping abreast of regulatory changes to ensure future compliance. |
| Response time frame | Although this jurisdiction does not provide a specific response time frame, we provide our users with a response in a maximum of fifteen (15) business days. |
| Legal Authority | While no dedicated data protection authority currently exists, we are committed to maintaining transparency, safeguarding user rights, and aligning with forthcoming legal requirements. |
| ECUADOR | |
|---|---|
| For Data Subjects accessing our Services from Ecuador, we adhere to the Organic Law on Data Protection. Key provisions include: | |
| Rights | Data Subjects are entitled to the rights outlined in this policy, with two additional rights: 1) the right to suspension of data processing while an inquiry regarding the right to update or object is being addressed by Avant; and 2) the right not to have an inquiry decided by automated processing. |
| Response time frame | The Data Controller shall notify the Data Subject within a maximum of fifteen (15) days from the date the inquiry is received, irrespective of the right concerned. |
| Legal Authority | The Superintendence of Personal Data Protection, established under the Organic Law on Data Protection, is charged with ensuring compliance with national data protection regulations. It is responsible for protecting individuals’ rights to privacy and personal data, overseeing data processing activities, and addressing complaints and violations. The authority also plays a role in promoting best practices and educating data controllers and the public about data protection. Click here to access the official site. |
| Additional Provisions | To ensure that personal data is not retained longer than necessary, the data controller will establish deadlines for its deletion or periodic review.The Data Processor or Data Controller of the Personal Data must implement a process of continuous and ongoing verification, evaluation, and assessment of the efficiency, efficacy, and effectiveness of the technical, organizational, and other measures implemented to guarantee and improve the security of personal data processing. |
Procedure for Exercising Rights
We are dedicated to respecting and upholding your rights regarding your Personal Data across all the countries we operate in. To ensure compliance with local regulations, the procedure for exercising your rights is as follows:
- Identify Your Rights:
Depending on the country, your rights may include access, rectification, erasure, restriction of processing, objection to processing, data portability, and withdrawal of consent where applicable among others displayed in this policy as well as in specific local law. These rights are subject to the specific regulations of each country. For that reason, it is important that you identify the right you are exercising when submitting any request. - Submit an Inquiry:
To exercise your rights, you or your authorized representative should submit a Inquiry to us via the submission of the form displayed on the following link: 行使我的隐私权利 | Avant Assessment. Include your full name, contact information, and a detailed description of your Inquiry. Please specify the country you are making the request from, as this will guide our compliance process. - Verification Process:
We may need to verify your identity to protect your Personal Data. This could involve requesting additional information or identification documents, in accordance with local legal requirements. - Response Time Frame:
Our response time frame will be in accordance with the laws of your country. We will inform you of the applicable timeframe when acknowledging receipt of your request. In cases where more time is needed, you will be notified of the reason for the delay and the extended timeframe, as permitted by local law.In any case, at maximum we will provide you with an answer in a maximum of fifteen (15) days, bearing in mind that in the following section specific time frames for each jurisdiction will be provided. - Possible Outcomes:
After reviewing your request, we will take appropriate action based on the legal framework in your country. This may include providing access to your data, making corrections, or deleting information. If we are unable to fulfill your request, we will provide an explanation according to the relevant legal standards. - No Fee Required:
Generally, you will not be charged any fee for exercising your rights. However, if your request is manifestly unfounded or excessive, we may charge a reasonable fee or refuse to comply with the request, in accordance with local laws. - Assistance and Support:
For any questions, concerns or assistance regarding exercising your rights, please contact our Data Protection Officer at legal@avantlanguage.com. We are committed to helping you understand and exercise your rights effectively, in line with the legal requirements of your country.