Data Security Policies and Provisions
WEDnetPA collects, processes, and stores all private data on a management platform known as ISAAC (Information Sharing,
Administration, & Analysis Center) which utilizes multiple overlapping layers of security.
On the physical level, the datacenter is secured with key and electronic keycard access available only to authorized
personnel and a security system which immediately notifies the police of an intrusion. We also prefer and recommend that
clients directly input their data into ISAAC through our secure link, preventing any possible mishandling of paperwork via
mail or fax. This way, everything remains digitally encrypted at all times.
On the network level, the servers and data are protected by a Cisco ASA 5200 series firewall and an intrusion detection and
prevention system (IDS/IPS). Data is transmitted between companies and ISAAC with RC4 128-bit SSL encryption, ensuring
privacy en route over the internet.
On the server level, the ISAAC web interface is protected by an application firewall and intrusion detection software.
The web and database servers are also maintained with the latest security patches and updates.
On the software level, access is restricted to authorized personnel via a password-protected tiered permissions management
system, allowing each person access only to the information necessary to complete their tasks. And sensitive information
such as Social Security numbers are obscured even to those authorized to deal with those records. Information is stored
with ISAAC on a separate highly-secure IBM iSeries DB2 relational database.
WEDnetPA also maintains strict policies for handling sensitive information, including any cached or temporary storage on
individual workstations.
At no time is any data transmitted or permanently stored in an unencrypted form or without physical and software security.
Privacy Policy Statement
WEDnetPA is committed to protecting the private, sensitive information of our clients. WEDnetPA will only share certain information with the Commonwealth's state departments responsible for funding, monitoring and evaluating workforce development programs. Certain, limited information may also be made available to anyone submitting a formal request through Pennsylvania's Right to Know.
Information Collection
Application and Invoicing Data
To apply for training grant funds, we ask companies to give us contact information (including name, address, phone number and email address). We use this information to contact companies about the application and invoicing process and to notify companies of their awards. We DO NOT distribute contact information, including e-mail addresses or phone numbers, outside of WEDnetPA, its funding source and other related state departments.
Social Security Numbers
WEDnetPA requires companies receiving grant funds to provide valid Social Security Numbers (SSNs) for the employees for which they are requesting training reimbursement. SSNs are needed to accurately track employee training caps. They are entered, transmitted and stored securely and are not viewable in their entirety once enter in the WEDnetPA data base.
SSNs are provided only to the Pennsylvania Department of Labor and Industry (L&I) for the purpose of evaluating program impacts as measured by continued employment, wage increases and other criteria. When shared with L&I, SSNs are transmitted in a secure format and do not include any other identifying information.
WEDnetPA is committed to protecting this information and has taken many precautions to ensure its security. Please see our Data Security Policy for more details.
Other Information
WEDnetPA collects other information over the course of the applications and contract period. This includes general company information and proposed training plans. This information is used only for the purpose of determining eligibility and is not shared outside WEDnetPA, its funding source and other related state departments.
Notification of Changes
WEDnetPA will post changes to this privacy statement on our Web site (www.wednetpa.com), and in other places we deem appropriate so companies are always aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it.
|
Our Partners
Statewide Office
Executive Committee
"In 2004, we purchased our first CNC Machine... crucial to our program of rapid prototyping. We had a trained operator employed to run this machine when it was received. Shortly after, our operator was lured away by the glamour of a large company and our progress was halted. With the help of WEDnetPA, we were able to have other employees trained to operate this equipment. It is now operating and making the prototypes we so desperately need to complete our engineering designs. As a small company it is difficult at times to compete in a market so saturated with large employers. The WEDnetPA program provides our staff with the training necessary and the ability to use Boehringerís best tool against competition ó the ability to work fast."
John R. Boehringer, President
Boehringer Laboratories, Inc.
Norristown, Pa.
|
