This Policy only describes our online website practices with respect to the collection, use, and sharing of information. It does not apply to information collected from offline resources and communications, or information you provide to any third party servicer provider(s) related to or whose services are incorporated into the Website; information you provide to third parties shall be controlled by their respective privacy policies.
INFORMATION WE COLLECT
Why We Collect Information
We collect information to help you use our services, so we can identify you as our customer, to establish, manage and protect your accounts, to complete your transactions, to create and offer you products and services you might be interest in, and to comply with various legal and regulatory requirements.
Non-Personally Identifiable Information
We may collect Non-Personally Identifiable Information using various tracking technologies described in this Policy. Non-Personally Identifiable Information is anonymous and includes information such as IP address, web pages which have been viewed, language, location, date and time, and domain type. We may use different types of technologies to collect this type of information. Additionally, when registering for an account or requesting student loan information, we may collect additional non-personally identifiable information about you. Examples of the non-personally identifiable data that may be requested include educational background, geographic location, and other information. None of this information (collectively referred to as “non-personally identifiable information”), by itself, or together with other non-personally identifiable information, can by its nature be matched with a specific individual. We have no access or control of third-party tracking technologies.
Automatically Collected Information
We may automatically collect certain information on our website through cookies, log files, and other common website data collection techniques.
When you enter our website, we will identify the Internet Protocol (IP) address of your computer or handheld device. The IP address doesn’t identify you personally, but it lets us identify the device you’re using. We store IP addresses in case we need to track a connection for security purposes.
The Services may place “Cookies” on a visitor’s device. Cookies are small text files. Our Cookies save anonymized data about individual visitors, allowing our Services to recognize information about a visitor and help deliver personalized content and other services and functions. Cookies make your Internet experience quicker and more convenient. The Services use both session cookies, which terminate when a user closes his or her browser, and persistent cookies, which remain on the user’s device until they expire or are manually deleted. The Services also contain coding from our business and technology partners which generates third party cookies. Third party cookies allow our business and technology partners to store non-Identifying Information they can access when you visit this or other websites. Accepting a cookie from a web or device browser does not give us access to any Personally Identifiable Information.
Most website and mobile device browsers allow you to control cookies, including whether or not to accept them and provide the ability to remove them. You may set most browsers to notify you if you receive a cookie, or you may choose to block cookies with your browser. Blocking cookies may result in a lower quality experience for you while you are using our Services.
Device and Connection Information
When you use our Services, we will identify the Internet Protocol (IP) address of your computer or handheld device. The IP address does not identify you personally, but it lets us identify the device you are using. We store IP addresses in case we need to track a connection for security purposes. We may also collect other device-specific information about the device you are using, including what type of device it is and hardware model, what operating system you are using, device settings, unique device identifies, geo-location data, and crash data. Whether we collect some or all of this information often depends on what type of device you are using and its settings. Check the policies of your device manufacturer or software provider to learn more about what information your device makes available to us.
Web Beacons (1×1 Pixels or GIFS)
Our Services may contain coding known as Web Beacons that use 1×1 pixel images to capture and transmit the online activity of users on our Services. These Web Beacons typically transmit information about form completions and other activities in order to measure advertising effectiveness or store analytics information. In addition, we may use Web Beacons in HTML-based emails. This allows us to evaluate the effectiveness of our email communications and our marketing campaigns by showing how many emails recipients have opened.
Google Analytics Advertising Features
Like most websites, our servers utilize log files. Log files store information including internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, platform type, date/time stamp, and number of clicks. Log files are used to analyze trends, administer the website, track users’ movement in the aggregate, and gather broad demographic information for aggregate use. We use log file information at times to help identify you as you browse and to gather broad technical and demographic information on who uses our website.
Do Not Track Signals
Do Not Track is a feature in your web browser, which enables you to opt-out of the third party tracking of your online activities over time and across third party websites. We currently do not process or comply with any web browser’s “do not track” signal or other similar mechanism that indicates a request to disable online tracking of individual users who visit the U‑fi website or use our services. Third-parties cannot collect any personally identifiable information from the U‑fi website unless you provide it to them directly.
Personally Identifiable Information
We may collection Nonpublic Personal Information about you from the following sources:
- Information from your loan applications or other loan and account forms
- Information about your transactions with us or others
- Information we receive from third parties, such as consumer reporting agencies.
“Nonpublic Personal Information” is nonpublic, personally identifiable financial information about you that we obtain in connection with providing a financial product or service to you. For example, Nonpublic Personal Information includes information regarding your payment history, overdraft history, and account balance(s), if applicable.
We may collect Personally Identifiable Information about you as well, including:
- Your first and last name
- Your home address
- Your employment information
- Your Social Security number
- Your driver’s license number
- Your birth date
- Your email address
- Your salary information
- Student loan account numbers
Personally Identifiable Information is individually identifiable information about an individual consumer collected by us and maintained in an accessible form.
We collect information that you provide to us when you register for an account, request information, or otherwise voluntarily provide information about yourself. Providing your personal information is always voluntary, and you can always choose not to provide your personal information by electing not to use our website. By providing your personal information, you acknowledge and consent to our use of such information in accordance with this Policy.
HOW WE USE INFORMATION
Certain Non-Identifying Information would be considered a part of your Personally Identifiable Information if it were combined with other identifiers (for example, combining your zip code with your street address) in a way that enables you to be identified. But the same pieces of information are considered Non-Identifying Information when they are taken alone or combined only with other non-identifying information (for example, your viewing preferences). We may combine your Personally Identifiable Information with Non-Identifying Information and aggregate it with information collected from other Users to attempt to provide you with a better experience, to improve the quality and value of the Services and to analyze and understand how our Website and Services are used. We may also use the combined information without aggregating it to serve you specifically, for instance to deliver a product to you according to your preferences or restrictions.
In addition to the uses listed in other sections of this Policy, the information you provide and automatically-collected information (both Personally and Non-Personally Identifiable Information) is used and shared to provide a number of different functions and services on the website. This utilization includes, but is not limited to, the following:
- Assisting law enforcement or other governmental agencies investigating cases of possible illegal activities by third-parties.
- Improving the experience of using the website, U‑fi products and services, the marketing and promotion of our products and services, and to customize the website’s content and layout, and generally improve the website to meet your needs better.
If you supply us with your e-mail address, we may let you know by e-mail about other products and services and product enhancements that may be of interest to you. You will have the opportunity to tell us you don’t want to receive future messages with each message you receive. If you e-mail a question or comment to us, we will use your e-mail address to reply to you and we will temporarily store your e-mail address, your message, and our reply for quality assurance or to satisfy applicable laws and regulations. When we collect your e-mail address this way, we won’t use it for marketing our products and services unless you have given us permission.
Please note that when you visit third-party links from our website, even though you may have started your visit with us, your transactions are completed with a separate organization, not with us. We don’t share your information with them, but information you choose to share with them will fall under their privacy policies, which we encourage you to review.
What We Share
We are permitted under law to disclose Nonpublic Personal Information about you to other third parties in certain circumstances. For example, we may disclose Nonpublic Personal Information about you to third parties to assist us in servicing your loan or account with us, to government entities in response to subpoenas, and to consumer reporting agencies. We do not disclose any Nonpublic Personal Information about you except as permitted by law.
Sometimes the law or other circumstances also require that we disclose Nonpublic Personal Information and/or Personally Identifiable Information about you to nonaffiliated third parties. Some examples are: when you ask or permit us to do so; with agencies that assist us in servicing your loan; in response to subpoenas or court orders; with consumer reporting agencies; when we suspect fraud or criminal activity; to protect our property and rights or that of a third party; to protect the safety of the public or any person; or to prevent or stop activity we may consider to be, or to pose a risk of being, illegal, unethical, or legally actionable activity.
We may sell, transfer or otherwise share some or all of our assets, including your Nonpublic Personal Information and/or Personally Identifiable Information, in connection with a merger, acquisition, reorganization or sale of assets or in the event of bankruptcy.
VERMONT RESIDENTS: We will not disclose nonpublic personal financial information about you other than as permitted by law unless you authorize us to make that disclosure. Your authorization must be in writing or, if you agree, in electronic form. If you wish to authorize us to disclose your nonpublic personal financial information to nonaffiliated third parties, you may notify us at the address found under the “How to Contact Us” section below.
CALIFORNIA RESIDENTS: Notwithstanding the above, we will automatically manage accounts with California addresses as if the account holder has directed us not to share with non-affiliates. You may opt in and provide your consent using the contact methods described at the “How to Contact Us” section below section below.
The Website is not directed to children under 13. We do not knowingly collect, maintain or use personally identifiable information from the Website about children under age 13. If a parent or guardian becomes aware that his or her child has provided us with Personally Identifiable Information without their consent, he or she should contact us using the information below (“How to Contact Us”). If we confirm that we have collected such information we will take all reasonable measures to delete that information from our system as soon as reasonably possible.
SECURITY MEASURES TO PROTECT YOUR INFORMATION
We are committed to providing you a useful and enjoyable online experience. We implement reasonable and appropriate physical, procedural, and electronic safeguards to protect your information.
To access information and send e-mail via the Website, you will need a browser that supports the use of Secure Sockets Layer. This encryption technology helps ensure the authenticity of your online sessions and secures data being transmitted over the public Internet.
We take careful steps to safeguard customer information. We restrict access to your personal and account information to those employees who need to know that information to provide Services to you, and we regularly train our employees on privacy, information security, and their obligation to protect your information. We maintain reasonable and appropriate physical, electronic, and procedural safeguards to guard your Nonpublic Personal Information and Personally Identifiable Information and we regularly test those safeguards to maintain the appropriate levels of protection.
You can help safeguard your Nonpublic Personal Information and Personally Identifiable Information by taking a few simple precautions. Protect your account numbers, passwords, and customer access numbers. Never disclose confidential information to unknown callers. You should always use a secure browser and current virus detection software, and never open email from unknown sources.
LINKS TO OTHER WEBSITES AND SERVICES
We are not responsible for the collection and use of information by companies or individuals unaffiliated with us whose websites may contain links to the Website, including vendors where you may shop. Please remember that when you use a link to go from our Website to another website, our Policy does not apply to third party websites or services. Your browsing and interaction on any third party website or service are subject to that third party’s own rules and policies. Please note that when you shop with a vendor who is linked to the Website, even though you may have started your visit with us, and even though our pages may still appear, your transactions are completed with a separate organization, not with us. In addition, you agree that we are not responsible and we do not have control over any third parties that you authorize to access your user content. If you are using a third party website or service, and you allow such a third party access to your user content, you do so at your own risk. This Policy does not apply to information we collect by other means (including offline) or from other sources other than through the Website and applications.
COMPANY CONTACT INFORMATION
If you have any questions about this Policy, please contact us by email or regular mail at the following address:
121 S. 13th St.
Lincoln, NE 68508
Effective Date: May 25, 2018
PRIVACY NOTICE FOR EUROPEAN UNION RESIDENTS:
Striving to provide superior customer service, U-fi places great emphasis on its customers and their privacy rights. In doing so, U-fi will comply with European Union Privacy Directives, most notably the EU General Data Protection Regulation. By providing our services, we may from time to time collect, store, use or process your personal data for legitimate business purposes, such as improving our products and services. U-fi’s processing of your data is necessary for compliance with its contractual and legal obligations. Personal data means any identifier information, such as your name, social security number, identification number, location data, or other online identifiers and factors.
Although your data is generally stored within the United States, an international data transfer may occur if third party, cloud-based storage companies that U-fi employs use servers located outside the United States. U-fi uses appropriate technical and organizational security measures including encryption of personal data and follows various industry standards and best practices to protect your personal data. Additionally, U-fi requires its vendors and processors to abide by the European Union General Data Protection Regulation and to apply adequate security and technical safeguards. We will not transfer your data to or store your data in countries that have not been awarded an adequacy decision by the European Commission.
For general processing purposes, U-fi will store your personal data for a period of seven years after full payment of the loan balance. However, U-fi may retain such information for longer periods where legally required to do so based on its contractor or other legal obligations.
You have the right to withdraw consent for processing at any time. Further, you have the right to request access to and rectification, restriction or erasure of your personal data. U-fi will afford you these rights, but it may not be able to do so where the processing is based on its contractual obligations, based on other legitimate interests, or carried out in the public interest. Along with these rights, if you believe that your data has been mishandled in violation of a privacy directive, you have the right to lodge a complaint with the relevant supervisory authority. If you have questions or concerns about our data processing practices, please address such inquiries to our Data Protection Officer.
Contact Details for Privacy and Data-related Inquiries
121 S. 13th St.
Lincoln, NE 68508
Chief Compliance Officer