This policy is effective as of March 18, 2022
What information do we collect, and why do we collect it?
We will generally let you know at the time of collection how we intend to use your personal information. Usually, we collect personal information about you which we require to respond to your inquiries and for the provision of our services to you.
We also process your personal information where we are required to do so by law, and for the exercise or defense of legal claims. From time to time, we may contact you to let you know that there is an action pending for which you need to log into the system. In most cases, this is controlled by the contracted client agency, however, some system notification can be controlled by you the end user.
When you register with the DoD Emerging Technologies Talent Marketplace, personal information collected from you may include your name, mailing address, email address, landline or mobile telephone number, email address, job history and qualifications. When you use our websites, we also collect information about you or your computer when you browse to allow you to use the services available. We will use your personal information to help you to log into your account and into restricted areas of our web sites, and to permit future use of the websites.
We may use your IP address to help diagnose problems with our server, or to administer our websites. We may conduct analyses of user traffic to measure the use of our sites and to improve the content of our websites and our services. These analyses will be performed through the use of IP addresses, session information, and other tracking technologies, which allow us to improve our web sites and your user experience. We make no representation of the federal government’s final determinative outcome of a job application, the outcome of any assessment, or the rate at which any submission may be processed.
Privacy Act Statement
Federal employment application information is provided pursuant to the Privacy Act of 1974, 5 U.S.C. § 552a(e)(3). An application will request personal information that is relevant and necessary for the agency to determine eligibility for the agency’s hiring programs and evaluate the qualifications of individuals applying for employment. The agency’s human resources division, which manages agency hiring, has the authority to ask for this information pursuant to sections 1104, 1302, 3301, 3304, 3320, 3361, 3393, and 3394 of title 5 of the United States Code as well as authorities found under Title 10 (U.S. Department of Defense) and Title 38 (U.S. Department of Veterans Affairs, National Institutes of Health). This information can be shared in accordance with routine uses as published in system of records notices OPM/GOVT-1 – General Personnel Records, 71 FR 35356 (June 19, 2006), as modified by 77 FR 73694 (Dec. 11, 2012), and OPM/GOVT-5 – Recruiting, Examining, and Placement Records, 79 FR 16834 (Mar. 26, 2014), as modified by 80 FR 74815 (Nov. 30, 2015), and 86 FR 68291 (Dec. 1, 2021)). Providing the information requested by the agency on a federal employment application is voluntary; however, failure to provide it may result in a determination of ineligibility or disqualification from consideration.
Provision of demographic information is completely voluntary; there are no consequences associated with non- or partial responses to those questions.
What legal basis do we have for processing your data?
The U.S. Office of Personnel Management and other Federal agencies rate applicants for Federal jobs under the authority of sections 1104, 1302, 3301, 3304, 3320, 3361, 3393, and 3394 of Title 5 of the United States Code, as well as authorities found under Title 10 (U.S. Department of Defense) and Title 38 (U.S. Department of Veterans Affairs, National Institutes of Health).
We collect information from you and in the associated vacancy announcements to evaluate your qualifications. Other laws require us to ask about citizenship, military service, etc. These information collection methods are documented annually through legal authorities permitting the collection, use, maintenance, and sharing non-sensitive personally identifiable information (PII), also knows as business card-level PII, either generally in support of the DoD Emerging Technologies Talent Marketplace or system need.
The agency, department, or field activity filling these positions may give information from your records to training facilities, organizations deciding claims for retirement, insurance, unemployment or health benefits; officials in litigation or administrative proceedings where the Government is a party; law enforcement agencies concerning violations of law or regulation; Federal agencies for statistical reports and studies; officials of labor organizations recognized by law in connection with representing employees; Federal agencies or other sources requesting information for Federal agencies in connection with hiring or retaining, security clearances, security or suitability investigations, classifying jobs, contracting, or issuing licenses, grants, or other benefits; public and private organizations including news media that grant or publicize employee recognition and awards; and the Merit Systems Protection Board, the Office of Special Counsel, the Equal Employment Opportunity Commission, the Federal Labor Relations Authority, the National Archives, the Federal Acquisition Institute, and congressional offices in connection with their official functions.
These websites adhere and are in compliance with 5 U.S.C. 3309, 3313 and 5 CFR 332.401, 337.101 for adjudication of veterans’ preference claims, and adheres and is in compliance with 5 U.S.C. 3311, 5 CFR 337.101 for crediting experience of preference eligibles, as well as all other provisions regarding veterans’ preference under Title 5.
These websites are in compliance with the Privacy Act of 1974, 5 U.S.C. § 552a; E-Government Act of 2002 (P.L. 107-347); Federal Information Security Management Act (FISMA) of 2002, 44 U.S.C. § 3541; OMB Memoranda 03-22, 05-08, 07-16; OMB Circular A-130; Federal Enterprise Architecture Security and Privacy Profile.
Our information collection methods, processes, and security are certified and authorized through annual reviews, validated by third-party assessment organizations, and submitted to the Federal Risk and Authorization Management Program, or FedRAMP, a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.
When do we share personal data?
Third parties may provide certain services available on dodemergingtech.com or avuedigitalservices.com to facilitate our business processes.
Avue may provide information, including personal information that Avue collects on the websites to third-party service providers to help us deliver non-marketing programs, products, information, and services to you. Such service providers also assist in Avue’s efforts to maintain its websites and databases.
Where we utilize third parties for the processing of any personal information, we implement reasonable contractual and technical protections limiting the use of that information to specified purposes. Avue will also take reasonable steps to ensure that such third parties are obligated to protect personal information on Avue’s behalf. Avue may also disclose personal information but only when you have consented to such disclosures.
Avue executes Memoranda of Understanding and Interconnection Security Agreements with third parties outside of its security boundary. Any non-sensitive or sensitive PII and system level of that PII are acknowledged as part of those agreements. These agreements typically have a three-year span with mutual agreement to extend. We may also be required to disclose your personal information pursuant to lawful requests, such as subpoenas or court orders, or in compliance with applicable laws. This may include sharing information with other companies, lawyers, agents, or government agencies.
Sharing Personal Information With Other End Users
You may choose to share your personal information with other end users of our website. Our network architecture permits you to make informed choices about whether you choose to share your information in this way. All such sharing of personal information is done at your own risk. If you create a user profile on one of our websites, then access and control over any the personal information that you post is readily available through profile editing tools.
Avue users may modify or delete any of their profile information at any time by logging into their account. Information will be updated immediately. Individuals who wish to deactivate their Avue account may do so by contacting Avue’s Tier 1 Help Desk support at firstname.lastname@example.org. Removed information may persist in backup copies for a reasonable period of time but will not be generally available.
Data received from third parties
To the extent the DoD Emerging Technologies Talent Marketplace receives data from third parties, it typically is limited to information required to be submitted along with an application, background investigation, or onboarding related to the federal government’s hiring process. This data may include information or letters from personal references, companies under contract or subcontract to the federal government for supplemental assessment purposes (medical evaluation, criminal background checks, etc.), or federal government personnel security measures. Access to the DoD Emerging Technologies Talent Marketplace and your application is limited to those specific tasks or information requested, and your data is not exposed to these third parties beyond that request.
Where do we store personal data?
The DoD Emerging Technologies Talent Marketplace and the Avue Platform rest on the Amazon Web Services (AWS) IaaS GovCloud. AWS GovCloud (U.S.) is a FedRAMP-compliant, authorized, and isolated AWS Region designed to allow U.S. government agencies and customers to move sensitive workloads into the cloud by addressing their specific regulatory and compliance requirements. Data is stored on Avue servers residing in the AWS GovCloud.
How do we secure personal data?
The DoD Emerging Technologies Talent Marketplace is fully compliant with all U.S. Office of Management and Budget (OMB) memoranda and U.S. Department of Defense authorization requirements concerning data privacy and breaches of Personally Identifiable Information. Avue already uses strict access restriction, and audit capability on use of PII, and agency specific rules of behavior in the standard workflow provided in the Avue system to enable clients to meet these requirements. The DoD Emerging Technologies Talent Marketplace does not use your Social Security Number (SSN) as a “key” field in the system and does not collect applicant SSNs. The DoD Emerging Technologies Talent Marketplace itself is deployed in the Amazon Web Services (AWS) GovCloud, which carries a FedRAMP “High” level authorization from the federal government. All SSL endpoints are encryption methods are FIPS 140-2 compliant. Data confidentiality in transit and at rest is protected in accordance with the FedRAMP Moderate System and Communications Protection control family, and Avue is compliant with U.S. Department of Homeland Security Binding Operational Directive (BOD) 18-01.
How long we retain your data
For end users that register on these websites (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). The DoD Emerging Technologies Talent Marketplace complies with the archival and retention requirements according to the National Archives and Records Administration (NARA), General Records Schedule. The DoD Emerging Technologies Talent Marketplace cooperates with NARA and other regulatory agencies in applying standards, procedures, and techniques to the management of records; promote the maintenance of those records of continuing value; and facilitate the segregation of temporary records. We take steps to regularly validate the personal information we hold to ensure that the information is accurate and, where necessary, up to date. Information that is no longer required for any valid business purpose, and that we are not required to keep pursuant to any applicable law, will be routinely destroyed by secure means.
Your rights in relation to personal data
When provided with an account userID and password, you have been given the right to access the DoD Emerging Technologies Talent Marketplace platform, your account, and associated personal information contained in your candidate profile. If you have an account on this site, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. However, your rights to your personal data may be limited, specifically in cases where that data is required to be stored for administrative, legal, or security purposes. You may, at any point, contact Avue’s Tier 1 Help Desk by emailing email@example.com, to have your account disabled or deleted. This request will be completed within seven calendar days.
All uploads, such as résumés, transcripts, and other documents requested as part of the application process, are subject to virus scanning before being attached to the application file.
- Tier 1 Live Chat, to better assist our representatives when trying to assist end users with a question or issue on the website
- Session management, to identify the end user and the HTTP requests that originate from your computer. For example, upon login ensuring that the end user has the proper permissions to perform the necessary tasks on our website.
- Load balancing, for delivering all of end user requests to the same server for consistency of system speed and giving end users the best system response times for requests.
Links to other websites
The DoD Emerging Technologies Talent Marketplace is not structured to attract children. Accordingly, Avue and its associated websites do not knowingly collect or solicit personal information from anyone under the age of 13 or knowingly allow such persons to register. If you are under 13, please do not attempt to register for the DoD Emerging Technologies Talent Marketplace or send any information about yourself to us, including your name, address, telephone number, or email address. No one under age 13 may provide any personal information to or on the DoD Emerging Technologies Talent Marketplace. In the event that we learn that we have collected personal information from a child under age 13 we will delete that information as soon as possible.