The purpose of this protocol is to establish operational standards for website data collection, cookie usage, and information security practices, in accordance with the Website Privacy Policy.

Scope

This institutional protocol applies to all Parami University offices, units, staff, contractors, and representatives involved in website management, digital communications, data handling, and information security.

It also applies to all data collected through user interaction with the official Parami University website.

Referenced Laws, Regulations, and/or Policies 

This protocol implements the directives set forth in the Website Privacy Policy.

Process

Data Collection

Website data collection begins once users start browsing the Parami University website.

Users must be informed that their data may be collected and used to analyze website trends and user preferences.

Personal information, including email addresses or contact details, may only be collected when users voluntarily provide consent, such as through content subscriptions or inquiry forms.

Cookies Usage

Cookies may be used to enhance user experience and to understand website usage patterns.

Users must be informed of cookie usage through clear and accessible website notices.

Cookies shall not be used to collect sensitive personal information without user consent.

Use of Collected Data

Collected information shall be used exclusively for legitimate institutional purposes, including website improvement and communication with users who have opted in.

User data shall not be sold, shared, or transferred to unauthorized third parties.

Third-Party Access

Any third party engaged in website maintenance, analytics, or improvement must comply with Parami University’s data protection standards.

Third parties are strictly prohibited from resharing, exploiting, or retaining user data beyond the approved scope and purpose.

Information Security

Reasonable technical and organizational measures shall be implemented to protect website data from unauthorized access, breaches, misuse, or disclosure.

Measures shall also be taken to prevent the introduction of malware, harmful scripts, or other technical risks to users’ devices.

Compliance and Incident Reporting

Compliance with this protocol is mandatory for all teams involved in website management and communications.

Any suspected data misuse, security incident, or privacy violation must be reported immediately to the Communications and PR Unit for review and appropriate action in accordance with institutional policies.

Review

The Office of Institutional Advancement and the Office of Educational Technology are responsible for working with relevant University offices to ensure compliance with this protocol.

Date