Legal

Privacy Policy

We value your privacy and are committed to protecting your personal information. This policy explains how CoAd collects, uses, retains, and discloses information across our websites, services, and other interactions.

Last updated: July 9, 2026

General Privacy Practices

Scope of this Policy

CoAdvantage Corporation and its affiliates, including PrimePay, LLC (“CoAd”, the “Company,” “us,” or “we”) have developed this Privacy Policy (the “Policy”) out of respect for the privacy of our customers, worksite employees, and individuals with whom we do business or interact. This Policy describes the general way CoAd processes and retains personal information related to individual consumers.

In this Policy, “Personal Information” means any information that identifies, relates to, describes, references, or can reasonably identify an individual. Personal information does not include:

  • Publicly available information from government records.
  • Information that a business has a reasonable basis to believe is lawfully made available to the general public by the consumer or independent contractor or from widely distributed media.
  • Information made available by a person to whom the consumer or independent contractor has disclosed the information if the consumer or independent contractor has not restricted the information to a specific audience.
  • Deidentified or aggregated information.

CoAd interacts with Personal Information in two manners – as a Data Controller and as a Data Processor.

CoAd as a Data Controller

As a Data Controller, CoAd is responsible for safeguarding the data of individual consumers with whom we interact or do business, including visitors to our websites, including our public website (the “Site”) and related sites, job applicants, and employees of our Professional Employer Organization (“PEO”) customers, whom we call “Worksite Employees.” This Policy applies to all data submitted or provided to CoAd for which we act as a Data Controller.

CoAd as a Data Processor

As a Data Processor, CoAd is responsible for safeguarding the data submitted to our services by or on behalf of our non-PEO customers, including data regarding our customer’s employees, as it flows through the suite of services that we offer. This includes our payroll processing, benefits administration, and other ancillary services.

When CoAd acts as a Data Processor, we do not have a direct relationship with the individual consumer (sometimes called a “Data Subject”). As a Data Processor, our customers are responsible for making sure that your privacy rights are respected, including ensuring appropriate disclosures about third party data collection and use. To the extent that we are acting as a Data Processor, we will process your information, including any Personal Information, in accordance with the terms of our agreement with the applicable customer and the customer’s lawful instructions. The terms of this Privacy Policy shall not apply to such processing. If you are an employee or contractor of one of our non-PEO customers seeking to exercise a privacy right you may have under applicable law, you should direct the query to your employer, the Data Controller.

For more information about the rights you may have under applicable law regarding your Personal Information, please see the California Privacy Statement and EU, UK, and Switzerland Privacy Statement.

Collection and Disclosure of Personal Information

For detailed information on the collection of personal information, including sources of such Personal Information, to whom we disclose Personal Information, and the reasons why such Personal Information is collected or otherwise processed, please see the applicable Privacy Statement:

Online Consumer Privacy Statement – describes our data collection and use practices when you visit our public-facing website or engage in transactions with CoAd in other capacities (as a client or customer).

Worksite Employee Privacy Statement – describes our data collection and use practices for the employees of our Professional Employer Organization (“PEO”) customers, whom we call “Worksite Employees”.

Applicant Privacy Statement – describes our data collection and use practices for individuals in the process of inquiring about or applying for a job with CoAd.

Retention of Personal Information

CoAd will retain each category of Personal Information for as long as we continue to have a legal or business need to retain it consistent with the purposes for which the information was collected or the employment context. Your Personal Information may be stored or maintained in a variety of different records, files, databases, and information systems, some of which are controlled or managed by vendors. As a result, we are unable to predict at the point of collection of your information how long the information will be retained, as it depends on many factors. In deciding how long to retain each category of Personal Information that we collect, we consider many criteria, including, but not limited to: the business purposes for which the Personal Information was collected; relevant federal, state and local recordkeeping laws; applicable statute of limitations for claims to which the information may be relevant; and legal preservation of evidence obligations.

Because the law prescribes minimum periods for retention of certain records, some records will be retained for at least the duration of the required period plus a certain number of years. Retention is often measured from occurrence of a triggering event but we may also measure the retention period from either (1) the date the record or data was collected, created, or last modified, (2) the date of the particular transaction to which the record or data pertains, or (3) another triggering event that is determined to be reasonable and appropriate based on the nature of the data and the legal/business needs for its continued use.

If the business purposes for collecting the Personal Information, and legal reasons for retaining the Personal Information, have both expired, we will purge the information in a secure manner.

Passwords

The personal data record created through your registration with CoAd, through our website or your various Company Accounts, such as timekeeping or payroll applications for Worksite Employees, can only be accessed with the unique password associated with that record. To protect the integrity of the information contained in this record, you should not disclose or otherwise reveal your password to third parties.

How We Protect the Information that We Collect

The protection of the information that we collect about individuals, including visitors to our websites, applicants, and Worksite Employees, is of the utmost importance to us and we take every reasonable measure to ensure that protection, including:

  • Using commercially reasonable tools and techniques to protect against unauthorized access to our systems.
  • Restricting access to private information to those who need such access in the course of their duties for us.

Third Party Vendors

We may use other companies and individuals to perform certain functions on our behalf. Examples include administering e-mail services and running special promotions. Such parties only have access to the Personal Information needed to perform these functions and may not use or store the information for any other purpose.

In some cases, use of the CoAd Services may allow you to interact with and receive services from other third-party processors (e.g. 401(k) administrators). These third-party services and the collection and use of your personal data by these third parties is governed by such third parties’ respective terms of service and privacy policies. You are responsible for reviewing these third-party terms and policies and you acknowledge that CoAd is not responsible for the privacy practices of these third parties.

Business Transfers

In the event we sell or transfer a particular portion of our business assets, Personal Information may be one of the business assets transferred as part of the transaction. If substantially all of our assets are acquired, Personal Information may be transferred as part of the acquisition.

Compliance with Law and Safety

We may disclose specific Personal and/or Sensitive Personal Information based on a good faith belief that such disclosure is necessary to comply with or conform to the law or that such disclosure is necessary to protect our employees, Worksite Employees, or the public.

Individuals and Consumers With Disabilities

This policy is in a form that is accessible to individuals and consumers with disabilities.

Changes to Our Privacy Policy

As our services evolve and we perceive the need or desirability of using information collected in other ways, we may from time to time amend this Privacy Policy and any applicable Privacy Statement(s). We encourage you to check our website or, for Worksite Employees, CoAdQuantum, frequently to see the current Privacy Policy in effect and any changes that may have been made. If we make material changes to this Privacy Policy, we will post the revised Privacy Policy and the revised effective date on this website or, for Worksite Employees, CoAdQuantum. Please check back here periodically or contact us at the address listed at the end of this Privacy Policy.

By interacting with CoAd, including by using the Site, applying for a job, or onboarding as a Worksite Employee, you consent to all terms and conditions expressed in this Privacy Policy and any applicable Privacy Statement(s). We will process your personal data in accordance with this Privacy Policy and applicable data protection and privacy laws. This consent provides us with a legal basis under applicable law to process your personal data. You maintain the right to withdraw such consent at any time.

Questions About the Policy

If you have any questions about this Privacy Policy, please contact us at privacy@coadvantage.com or call (800) 868-1016.

This Policy was last updated July 8, 2026.

Back to table of contents

Online Consumer Privacy Statement

Scope of Statement

CoAdvantage Corporation and its affiliates, including PrimePay, LLC, (“CoAd”, the “Company,” “us,” or “we”) have developed this Online Consumer Privacy Statement out of respect for the privacy of individual consumers. This Online Consumer Privacy Statemen describes the Personal Information we collect, use, and disclose, both offline and online, about individual consumers who interact with the website, visit any of our offices, stores, facilities, or locations, purchase or inquire about any of our products or services, contract with us to provide services, or otherwise interact or do business with us.

Whenever you visit our website, we will collect some information from you automatically simply by you visiting and navigating through this site, and some voluntarily when you submit information using a form on the website, request a consultation, use the search bar on our website, enroll in or subscribe to our newsletter or marketing communications, request information, or use any of the other interactive portions of our website. Through this website, we will collect information that can identify you and/or your activity, which may be disclosed to third parties through cookies, as described in our Cookie Notice. We may also collect some information about you from our vendors and/or third parties that provide services to us. For more information on the categories of sources from which we collect Personal Information, see the section titled “Sources of Personal Information” below.

Additionally, whenever you communicate, interact, or do business with us, we will collect Personal Information from you or about you in the course of our interaction or dealings with you, whether online or offline.

Collection of Personal Information and Sensitive Personal Information

Based on your specific transactions and interactions with us or our website, we will or may collect, and we have in the last 12 months collected, the following categories of Personal Information from or about you. For each category of information, we identify the categories of third parties, service providers, and contractors to whom we have disclosed, sold, and/or shared the information in the last 12 months. The examples provided in each category are not intended to be an exhaustive list or an indication of all specific pieces of information we collect from or about you in each category, but rather the examples are to provide you a meaningful understanding of the types of information that may be collected within each category.

Category
Personal Identifiers
Examples
Name, alias
Disclosed to in Last 12 Months
Financial institutions
Government agencies
Employee tracking and talent management systems
Promotional or other fulfilment vendors
Marketing support vendors and vendors that support managing or hosting the website
Lead providers (referral sources)
Transaction support vendors (e.g., check guaranty, payment processors)
Data analytics vendors
Consumer reporting agencies or credit reporting agencies
Recruiting firms, and/or staffing agencies
Talent acquisition management systems, and other vendors providing services for purposes of our human resources information system (HRIS)
Consulting and investigation firms, including HR consultants, safety consultants, and workplace investigators
Security and risk management vendors, including IT, cybersecurity, and privacy vendors and consultants
Insurance carriers, administrators, and brokers
Corporate customers (meaning an entity, as opposed to a natural person, to which we provide services)
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Our affiliates, including parent, subsidiary, or sister companies
Sold To or Shared With
Not sold for monetary or other valuable consideration, and not shared for cross-context behavioral advertising.
Category
Contact Information
Examples
Home, postal or mailing address, email address (work or personal), phone number (work, home, cell).
Disclosed to in Last 12 Months
Financial institutions
Government agencies
Marketing support vendors and vendors that support managing or hosting the website
Lead providers (referral sources)
Transaction support vendors (e.g., check guaranty, payment processors)
Data analytics vendors
Consumer reporting agencies or credit reporting agencies
Recruiting firms, and/or staffing agencies
Talent acquisition management systems, and other vendors providing services for purposes of our human resources information system (HRIS)
Consulting and investigation firms, including HR consultants, safety consultants, and workplace investigators
Security and risk management vendors, including IT, cybersecurity, and privacy vendors and consultants
Insurance carriers, administrators, and brokers
Corporate customers (meaning an entity, as opposed to a natural person, to which we provide services)
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Our affiliates, including parent, subsidiary, or sister companies
Sold To or Shared With
Not sold for monetary or other valuable consideration, and not shared for cross-context behavioral advertising.
Category
Account Information
Examples
Username and password for Company accounts and systems, and any required security or access code, password, security questions, or credentials allowing access to your Company accounts.
Disclosed to in Last 12 Months
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Sold To or Shared With
Not sold for monetary or other valuable consideration, and not shared for cross-context behavioral advertising.
Category
Commercial Information
Examples
Information regarding products or services considered, provided, purchasing history.
Disclosed To in Last 12 Months
Financial institutions
Marketing support vendors and vendors that support managing or hosting the website
Lead providers (referral sources)
Transaction support vendors (e.g., check guaranty, payment processors)
Security and risk management vendors, including IT, cybersecurity, and privacy vendors and consultants
Data Analytics Vendors
Corporate customers (meaning an entity, as opposed to a natural person, to which we provide services)
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Our affiliates, including parent, subsidiary, or sister companies
Sold To or Shared With
Not sold for monetary or other valuable consideration, and not shared for cross-context behavioral advertising.
Category
Credit/Financing Application Data
Examples
Information collected through credit or financing applications, including employment history, company name, role, salary, dates of employment, bank accounts, income sources.
Disclosed To in Last 12 Months
Financial institutions
Government agencies
Consumer reporting agencies or credit reporting agencies
Corporate customers (meaning an entity, as opposed to a natural person, to which we provide services)
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Sold To or Shared With
Not sold for monetary or other valuable consideration, and not shared for cross-context behavioral advertising.
Category
Internet or other Electronic Network Activity
Examples
Date and time of your website visit; webpages visited; links clicked on the website; browser ID; browser type; device ID; operating system; form information downloaded; domain name from which our site was accessed; search history; cookies; internet or other electronic network activity information related to usage of Company networks, servers, intranet, or shared drives, as well as Company-owned computers and electronic devices, including system and file access logs, security clearance level, browsing history, search history, and usage history.
Disclosed To in Last 12 Months
Marketing support vendors and vendors that support managing or hosting the website
Data analytics vendors
Security and risk management vendors, including IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Sold To or Shared With
We sell this data to Data Analytics vendors, not for monetary consideration but for other valuable consideration. We also share this data with Marketing and Lead Generation vendors for cross-context behavioral advertising.
Category
Form and other Electronic Submission Data
Examples
Data submitted through the website, including Contact Us forms and search bar queries.
Disclosed To in Last 12 Months
Data Analytics Vendors
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Sold To or Shared With
Not sold for monetary or other valuable consideration, and not shared for cross-context behavioral advertising.
Category
Geolocation Data
Examples
IP address, GPS location, and latitude and longitude.
Disclosed To in Last 12 Months
Marketing support vendors, lead generation vendors and vendors that support managing or hosting the website
Data analytics vendors
Security and risk management vendors, including IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Sold To or Shared With
We sell this data to Data Analytics vendors, not for monetary consideration but for other valuable consideration. We also share this data with Marketing and Lead Generation vendors for cross-context behavioral advertising.
Category
Mobile Device Data
Examples
Information collected when you navigate, access, or use any of our websites via mobile device, including device type, software type; data identifying your device if you access our business networks and systems, including cell phone make, model, and serial number, cell phone number, and cell phone provider.
Disclosed To in Last 12 Months
Marketing support vendors, lead generation vendors, and vendors that support managing or hosting the website
Data analytics vendors
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Sold To or Shared With
We sell this data to Data Analytics vendors, not for monetary consideration but for other valuable consideration. We also share this data with Marketing and Lead Generation vendors for cross-context behavioral advertising.
Category
Online Portal and Mobile App Access and Usage Information
Examples
Account history, usage history, file access logs, security clearance level, and any information submitted through the account, other than secure account information, such as username and password, access credentials, etc.
Disclosed To in Last 12 Months
Security and risk management vendors, including IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Sold To or Shared With
Not sold for monetary or other valuable consideration, and not shared for cross-context behavioral advertising.
Category
Visual, Audio, Electronic or Similar Information
Examples
Your image when recorded or captured in surveillance camera footage or pictures of you taken on our premises or at our events or that you share with us; video and audio recordings of calls and virtual meetings as disclosed to you at the time of the call.
Disclosed To in Last 12 Months
Security and risk management vendors, including IT, cybersecurity, and privacy vendors and consultants
Recruiting firms, and/or staffing agencies
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Sold To or Shared With
Not sold for monetary or other valuable consideration, and not shared for cross-context behavioral advertising.
Category
Facility & Systems Access Information
Examples
Information identifying you, if you accessed our secure company facilities, systems, networks, computers, and equipment, and at what times, using keys, badges, fobs, login credentials, or other security access method.
Disclosed To in Last 12 Months
Security and risk management vendors, including IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Sold To or Shared With
Not sold for monetary or other valuable consideration, and not shared for cross-context behavioral advertising.
Category
Inferences
Examples
Based on analysis of your activity on the website, we may develop inferences regarding messaging, programming, or events. For independent contractors, based on analysis of the personal information collected, we may develop inferences regarding predispositions, behavior, attitudes, intelligence, abilities, and aptitudes for recruiting and hiring assessments and decisions.
Disclosed To in Last 12 Months
Lead providers (referral sources)
Marketing support vendors and vendors that support managing or hosting the website
Data analytics vendors
Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or database
Sold To or Shared With
We sell this data to Data Analytics vendors, not for monetary consideration but for other valuable consideration. We also share this data with Marketing and Lead Generation vendors for cross-context behavioral advertising.

Of the above categories of Personal Information, the following are categories of Sensitive Personal Information we plan to collect:

  • Account Information (your Company account log-in, in combination with any required security or access code, password, or credentials allowing access to the account)
  • Geolocation Data (IP address and/or GPS location, latitude & longitude)

Sources of Personal Information

We may collect your Personal Information from the following sources:

  • You the consumer or independent contractor when you visit the website and voluntarily submit information through forms on the website or social media, when you visit any of our stores or physical locations, when you purchase or inquire about any of our products or services, when you enter into a contract to perform services for us;
  • Our employees, contractors, vendors, suppliers, guests, visitors, other consumers, and customers based on your interactions with them (if any);
  • We utilize cookies to automatically collect information about our website visitors;
  • Surveillance cameras at our physical locations;
  • Lead generators and referral sources;
  • Credit and consumer reporting agencies;
  • HR support vendors;
  • Social media platforms;
  • Company-issued computers, electronic devices, and vehicles;
  • Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or databases;
  • Third party customer databases;
  • Our affiliates, including parent, subsidiary, or sister companies.

To Whom We Disclose Personal Information

We may disclose, sell, or share your Personal Information to/with the following categories of service providers, contractors, or third parties:

  • Financial institutions;
  • Government agencies;
  • Marketing support vendors and vendors that support managing or hosting the website;
  • Lead providers (referral sources);
  • Transaction support vendors (e.g., check guaranty, payment processors);
  • Data analytics vendors;
  • Consumer reporting agencies or credit reporting agencies;
  • Recruiting firms and/or staffing agencies;
  • Talent acquisition management systems, and other vendors providing services for purposes of our human resources information system (HRIS);
  • Consulting and investigation firms, including HR consultants, safety consultants, and workplace investigators;
  • Security and risk management vendors, including IT, cybersecurity, and privacy vendors and consultants;
  • Insurance carriers, administrators, and brokers;
  • Corporate customers (meaning an entity, as opposed to a natural person, to which we provide services);
  • Our affiliates, including parent, subsidiary, or sister companies;
  • AI call recording vendors whom we engage to record, transcribe, summarize, and process calls or meetings;
  • Company systems, networks, software applications, and databases you log into or use in interacting with our website, or otherwise use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or databases.

Reasons Why We Collect, Use, Retain, and Disclose Personal Information

We may collect, use, and disclose your Personal Information for any of the following business or commercial purposes:

  • To fulfill or meet the purpose for which you provided the information, or a purpose reasonably associated with the context in which you provided the information and consistent with reasonable consumer expectations.
  • To process, complete, and maintain records on transactions.
  • To retain your selection for Text opt in/opt out to ensure customers who opted out are not sent any text messages.
  • To schedule, manage and keep track of customer appointments.
  • To maintain records of when customers decline a service or sale.
  • To respond to consumer inquiries, including requests for information, customer support online, phone calls, and in-store inquiries.
  • To provide interest-based and targeted advertising.
  • To contact you by email, telephone calls, mail, SMS, or other equivalent forms of communication regarding updates or informative communications related to the functionalities, services, or other information you requested or asked the Company to provide to you.
  • To improve user experience on our website.
  • To understand the demographics of our website visitors.
  • To detect security incidents.
  • To debug, identify, and repair errors that impair existing intended functionality of our website.
  • To protect against malicious or illegal activity and prosecute those responsible.
  • To verify and respond to consumer requests.
  • To prevent identity theft.
  • To conduct risk assessments under applicable consumer privacy laws.
  • To conduct cybersecurity audits under applicable consumer privacy laws.
  • To conduct internal audits, compliance assessments, data analytics, and quality assurance activities.
  • To engage in strategic planning and operational efficiency.
  • INDEPENDENT CONTRACTOR AND BUSINESS-TO-BUSINESS PURPOSES:
  • To fulfill or meet the purpose for which you provided the information.
  • To comply with state and federal law and regulations requiring businesses to maintain certain records (accident or safety records, and tax records/1099 forms).
  • To engage the services of independent contractors and compensate them for services.
  • To evaluate, make, and communicate decisions regarding an independent contractor, including decisions to hire and/or terminate.
  • To grant independent contractors access to secure Company facilities, systems, networks, computers, and equipment, and maintain information on who accessed such facilities, systems, networks, computers, and equipment, and what they did therein or thereon.
  • To implement, monitor, and manage electronic security measures on independent contractor devices that are used to access Company networks and systems.
  • To evaluate, assess, and manage the Company’s business relationship with vendors, service providers, and contractors that provide services to the Company.
  • To improve user experience on Company computers, networks, devices, software applications or systems, and to debug, identify, and repair errors that impair existing intended functionality of our systems.
  • To reduce the risk of spreading infectious diseases in or through the workplace.

Do We Sell Your Information?

We do NOT and will not sell or share your Personal Information in exchange for monetary consideration. However, we may share some of your information to third parties for other valuable consideration, as noted in the table above.

For example we may share your Personal Information (for other valuable consideration) for the following business or commercial purposes:

  • Marketing Activities and Lead Generation
  • Data Analytics

Other than these exceptions, we do not and will not disclose your Personal Information to any third party in exchange for monetary or other valuable consideration or share your Personal Information for cross-context behavioral advertising without prior written notice and your express consent.

For more information about your rights under applicable laws regarding the opt-out of the sale or sharing of Personal Information, please see the California Privacy Statement and EU, UK, and Switzerland Privacy Statement.

Use of Cookies, Pixels, and Other Tracking Technologies

For information regarding our use of cookies, pixels, and other tracking technologies, please see the Cookie Notice.

Our website contains links to other sites. We are not responsible for the privacy practices or the content of such websites. To help ensure the protection of your privacy, we recommend that you review the Privacy Policy of any site you visit via a link from our website.

International Visitors

The Site may be accessed from countries around the world; however, certain products and features may not be available in your country. Access to the Site from any country does not mean that CoAd intends the product or feature to be available in your location. The owner of the Site is based in the state of Florida in the United States and is intended primarily for use by persons located in the United States. CoAd does not make any representations or warranties that the Site or any products or services are appropriate or available for use outside of the United States or that the Site or any such products or services comply with law outside of the United States. If you access the Site from outside the United States, you do so on your own initiative and are responsible for compliance with local laws. Some of our affiliates are participants in the Data Privacy Framework. For more information, please see the EU, UK, and Switzerland Privacy Statement.

Back to table of contents

Worksite Employee Privacy Statement

Scope of this Statement

CoAdvantage Corporation, along with all of its affiliates and subsidiaries, including PrimePay, LLC (“CoAd,” the “Company,” “our,” or “we”) has developed this Worksite Employee Privacy Statement out of respect for the privacy of the worksite employees of our customers and their family members, dependents, and beneficiaries. Your employer (“Worksite Employer”) has entered into an agreement with CoAd under which we provide Professional Employer Organization (“PEO”) services to the Worksite Employer. The PEO services provided by the Company typically include payroll processing, workers’ compensation coverage, and other services and/or benefits as may be selected by your Worksite Employer. As a worksite employee, you remain an employee of the Worksite Employer. CoAd is not a joint employer with your Worksite Employer, and this Worksite Employee Privacy Statement does not and cannot be interpreted to create an employment relationship between you and the Company.

This Worksite Employee Privacy Statement describes the Personal Information we collect, both online and offline, for what purposes we use and disclose it, how long we retain it, and whether we sell it or share it for cross-context behavioral advertising purposes (we don't by the way). Personal Information is any information that could reasonably identify you. We will collect some information from you, including information about your family members, dependents, and beneficiaries, for various purposes as detailed in this Worksite Employee Privacy Statement during the course of CoAd providing services to your Worksite Employer.

This Worksite Employee Privacy Statement applies only to information collected, used, or disclosed by CoAd in the course of providing services to your employer. It does not apply to other contexts, including when accessing our website or inquiring about or applying for a job with CoAd, and with respect to our own employees.

Collection of Personal Information and Sensitive Personal Information

In the last twelve (12) months, we have collected the following categories of Personal Information from or about worksite employees and their family members, dependents, and beneficiaries. For each category of information, we identify below the categories of third parties, service providers, and contractors to whom we have disclosed the information in the last 12 months. The examples provided for each category are not intended to be an exhaustive list or an indication of all specific pieces of information we collect from or about you in each category, but rather the examples are to provide you a meaningful understanding of the types of information that may be collected within each category.

Category
Personal Identifiers
Examples
Name, alias, social security number, date of birth, driver's license or state identification card number, passport number, permanent resident alien card number, alien registration number, employment authorization document number, school ID, voter's registration card number, U.S. military card number, draft record, military dependent ID number, native American tribal document number, school record, report card, clinic, doctor or hospital record, day-care or nursery school record, birth certificate, certifications of report of birth document, U.S. citizen ID card number, worksite employee ID number, professional license number, when provided to the Company.
Disclosed to in Last 12 Months
Financial institutions Government agencies
Credit and consumer reporting agencies
Benefits administrators and vendors, including third party administrators, 401K administrators, workers' compensation and unemployment administrators, and wellness vendors
Insurance carriers, administrators, and brokers Employee tracking and talent management systems
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
cybersecurity, and privacy vendors and consultants
• Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Contact Information
Examples
Home, postal or mailing address, email address, home phone number, cell phone number, emergency contact number, when provided to the Company.
Disclosed to in Last 12 Months
Financial institutions Government agencies
Benefits administrators and vendors, including third party administrators, 401K administrators, workers' compensation and unemployment administrators, and wellness vendors
Insurance carriers, administrators, and brokers Employee tracking and talent management systems
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
IT, cybersecurity, and privacy vendors and consultants
• Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Account Information
Examples
Username and password for access to Company accounts, systems, and any required security or access code, password, or credentials allowing access to your Company accounts.
Disclosed to in Last 12 Months
IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Visual, Audio, or Video Recordings
Examples
Photos, images, audio recordings, video recordings, or any necessary evidence for workers compensation claims.
Disclosed to in Last 12 Months
Government agencies
Benefits administrators and vendors, including third party administrators, 401K administrators, workers' compensation and unemployment administrators, and wellness vendors
Insurance carriers, administrators, and brokers
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Protected Classifications
Examples
Race, ethnicity, national origin, citizenship or immigration status, sex, gender, sexual orientation, gender identity, religious or philosophical beliefs, age, physical or mental disability, medical condition, veteran or military status, familial status, language, or union membership, when provided to the Company.
Disclosed to in Last 12 Months
Government agencies
Benefits administrators and vendors, including third party administrators, 401K administrators, workers' compensation and unemployment administrators, and wellness vendors
Insurance carriers, administrators, and brokers
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Employee tracking and talent management systems
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Physical Characteristics or Description
Examples
Information on your driver’s license (such as eye color, hair color, height, weight), as well as information collected to the extent relevant for workplace investigations.
Disclosed to in Last 12 Months
Government agencies
Benefits administrators and vendors, including third party administrators, 401K administrators, workers' compensation and unemployment administrators, and wellness vendors
Insurance carriers, administrators, and brokers
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Financial Information
Examples
Bank account number for direct deposit, and worksite employee's personal credit card number, debit card number, or other financial account information, when provided to the Company.
Disclosed to in Last 12 Months
Financial institutions
Government agencies
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Pre-Hire Information
Examples
Information provided in your job application or resume, information gathered as part of background screening and reference checks, pre-hire drug test results, information recorded in job interview notes by persons conducting job interviews for the Company's customer (Worksite Employer), information contained in candidate evaluation records and assessments, information in work product samples you provided, voluntary disclosures by you, and Wage Opportunity Tax Credit (WOTC) information.
Disclosed to in Last 12 Months
Financial institutions Government agencies
Insurance carriers, administrators, and brokers Employee tracking and talent management systems
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
Credit and consumer reporting agencies
• Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Employment History
Examples
Information regarding prior job experience, positions held, and when permitted by applicable law your salary history or expectations, when provided to the Company.
Disclosed to in Last 12 Months
Government agencies
Employee tracking and talent management systems Insurance carriers, administrators, and brokers
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
Credit and consumer reporting agencies
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Education Information
Examples
Information contained in your resume regarding educational history and information in transcripts or records of degrees and vocational certifications obtained.
Disclosed to in Last 12 Months
Government agencies
Employee tracking and talent management systems Insurance carriers, administrators, and brokers
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
Credit and consumer reporting agencies
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Professional or Employment-Related Information
Examples
Information contained in your personnel file and in other employment documents and records, including information in new hire or onboarding records, I-9 forms, tax forms, time and attendance records, non-medical leave of absence records, workplace injury and safety records, performance evaluations, disciplinary records, investigatory records, training records, licensing and certification records, compensation and health benefits records, pension, retirement and 401(k) records, COBRA notifications, business expense records, and payroll records.
Disclosed to in Last 12 Months
Financial institutions Government agencies
Benefits administrators and vendors, including third party administrators, 401K administrators, workers' compensation and unemployment administrators, and wellness vendors
Insurance carriers, administrators, and brokers Employee tracking and talent management systems
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
Communications providers/vendors Credit and consumer reporting agencies
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Travel Information
Examples
Information regarding business travel, vacation, and personal travel plans, when provided to the Company.
Disclosed to in Last 12 Months
Government agencies
Benefits administrators and vendors, including third party administrators, 401K administrators, workers' compensation and unemployment administrators, and wellness vendors
Insurance carriers, administrators, and brokers
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Family Information
Examples
Contact information for family members listed as emergency contacts, contact information for dependents and other dependent information, when provided to the Company.
Disclosed to in Last 12 Months
Government agencies
Benefits administrators and vendors, including third party administrators, 401K administrators, workers' compensation and unemployment administrators, and wellness vendors
Insurance carriers, administrators, and brokers
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Medical and Health Information
Examples
Medical information contained in such documents as doctor's notes for absences or work restrictions, medical leave of absence records, requests for accommodation, interactive process records, ergonomic assessment and accommodation records, and correspondence with you and your medical or mental health provider(s) regarding any request for accommodation or medical leave of absence, as well as information in post-hire drug test results, and information related to symptoms, exposure, contact tracing, diagnosis, testing, or vaccination for infectious diseases (e.g., COVID-19), pandemics, or other public health emergency. This includes medical information and health benefits information for dependents and beneficiaries, when provided to the Company.
Disclosed to in Last 12 Months
Government agencies
Benefits administrators and vendors, including third party administrators, 401K administrators, workers' compensation and unemployment administrators, and wellness vendors
Insurance carriers, administrators, and brokers
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Internet, Network, and Computer Activity
Examples
Internet or other electronic network activity information related to usage of Company networks, servers, intranet, or shared drives, including system and file access logs, security clearance level, browsing history, search history, and usage history
Disclosed to in Last 12 Months
Government agencies
Employee tracking and talent management systems
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Communications providers/vendors
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Mobile Device Security Information
Examples
Data identifying worksite employee devices accessing Company networks and systems, including cell phone make, model, and serial number, cell phone number, and cell phone provider.
Disclosed to in Last 12 Months
Government agencies
Employee tracking and talent management systems
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Communications providers/vendors
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Online Portal and Mobile App Access and Usage Information
Examples
Username and password or worksite employee's account on Company-controlled and managed systems, apps, and online portals, account history, usage history, file access logs, and security clearance level.
Disclosed to in Last 12 Months
Government agencies
Employee tracking and talent management systems
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Communications providers/vendors
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Geolocation Data
Examples
IP address and/or GPS location (latitude & longitude) recorded in timekeeping applications on cell phones that worksite employees use to clock in and out and that log the geographic location at which each time entry was made.
Disclosed to in Last 12 Months
Government agencies
Employee tracking and talent management systems
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Communications providers/vendors
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
System Access Records
Examples
Information identifying which worksite employees accessed secure Company systems and networks and at what times using their login credentials, or other security access method.
Disclosed to in Last 12 Months
Government agencies
Employee tracking and talent management systems
Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases

What Sensitive Personal Information We Collect

Of the above categories of Personal Information, the following are categories of Sensitive Personal Information we may collect from or about Worksite Employees:

  • Personal Identifiers (social security number, driver's license or state identification card number, passport number)
  • Account Information (your Company account log-in, in combination with any required security or access code, password, or credentials allowing access to the account)
  • Protected Classifications (racial or ethnic origin, citizenship or immigration status, religious or philosophical beliefs, union membership, or sexual orientation)
  • Medical and Health Information
  • Geolocation Data (IP address and/or GPS location, latitude & longitude)
  • Online Portal and Mobile App Access and Usage Information (your account log-in, in combination with any required security or access code, password, or credentials allowing access to the account)
  • Data of a Known Consumer Under 16 Years of Age, with Parental Consent

Sources of Personal Information

We may collect your Personal Information from the following sources:

  • You, the worksite employee, when you voluntarily submit information
  • Company systems, networks, software applications, and databases you log into or use in the course of performing your job, including from vendors the Company engages to manage or host such systems, networks, applications or databases
  • Government agencies
  • Insurance carriers, administrators, and brokers
  • Credit and consumer reporting agencies
  • Drug testing and physical testing providers and vendors
  • HR support vendors, including administrators of benefits, leaves of absence, workers' compensation, unemployment claims, payroll, timekeeping, expense management, and training platforms
  • Social media platforms
  • Recruiters
  • Staffing agencies
  • Personal references and former Worksite Employers
  • Other worksite employees, contractors, vendors, and customers based on your interactions with them
  • Our affiliates, including parent, subsidiary, or sister companies

To Whom We Disclose Personal Information

We may disclose your Personal Information to the following categories of service providers or contractors:

  • Financial institutions
  • Government agencies
  • Credit and consumer reporting agencies
  • Benefits administrators and vendors, including third party administrators, 401K administrators, workers' compensation and unemployment administrators, insurance brokers, and wellness vendors
  • Company systems, networks, software applications, and databases you log into or use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or databases
  • Insurance carriers, administrators, and brokers
  • Employee tracking and talent management systems
  • Payroll processors, timekeeping vendors, and vendors providing services for purposes of our human resources information system (HRIS)
  • Communications providers/vendors
  • Your Worksite Employer and any of its service providers or contractors to whom your Worksite Employer has directed information be disclosed
  • IT, cybersecurity, and privacy vendors and consultants
  • Our affiliates, including parent, subsidiary, or sister companies

Reasons Why We Collect, Use, Retain, and Disclose Personal Information

We may collect and disclose your Personal Information for any of the following business purposes:

  • To fulfill or meet the purpose for which you provided the information. For example, if you share your name and contact information to become a worksite employee, we will use that Personal Information in connection with your employment with your Worksite Employer or your relationship with us.
  • To assist the Company's customer (the Worksite Employer) to comply with local, state, and federal law and regulations requiring maintenance of certain records (such as immigration compliance records, travel records, personnel files, wage and hour records, payroll records, accident or safety records, and tax records).
  • To comply with local, state, and federal law and regulations that apply to the Company.
  • To manage and process payroll.
  • To validate a worksite employee's identity for payroll and timekeeping purposes.
  • To maintain commercial insurance policies and coverages, including for workers' compensation and other liability insurance.
  • To manage workers' compensation claims.
  • To administer, manage, and maintain group health insurance benefits, 401K and/or retirement plans, and other Company benefits and perks.
  • To provide Human Resources best practices consulting services to the Company's customer (the Worksite Employer), including the following topics:
  • Worksite Employer's management of worksite employees.
  • Workplace investigations (such as investigations of workplace accidents or injuries, harassment, or other misconduct).
  • Worksite Employer's evaluation of job applicants and candidates for employment or promotions.
  • Information gathered through background checks on job applicants and worksite employees and to verify worksite employment references.
  • Worksite Employer's decisions regarding a worksite employee's employment, including decisions to hire, terminate, promote, demote, transfer, suspend or discipline.
  • To communicate with worksite employees regarding employment-related administrative matters such as upcoming benefits enrollment deadlines, action items, availability of W2s, and other alerts and notifications.
  • To implement, monitor, and manage electronic security measures on Company networks, software applications or systems, including managing and securing online portal CoAdQuantum, CoAdEnroll, and CoAd360, as well as on worksite employee devices that are used to access Company networks, software applications or systems.
  • To engage in corporate transactions requiring review or disclosure of worksite employee records subject to non-disclosure agreements, such as for evaluating potential mergers and acquisitions of the Company.
  • To assist in communications with a worksite employee's family or other contacts in case of emergency or other necessary circumstance.
  • To assist the Company's customer (the Worksite Employer) to promote and foster diversity, equity, and inclusion in the workplace.
  • Infectious disease purposes (pandemic, outbreak, public health emergency, etc.).
  • To evaluate, assess, and manage the Company's business relationship with vendors, service providers, and contractors that provide services to the Company.
  • To develop and improve our products and services based on your input and workplace activity, including developing, testing, and training our own custom software and artificial intelligence tools.
  • To improve user experience on Company computers, networks, software applications or systems, and to debug, identify, and repair errors that impair existing intended functionality of our systems.
  • To detect security incidents involving potentially unauthorized access to and/or disclosure of Personal Information or other confidential information, including proprietary or trade secret information and third-party information that the Company received under conditions of confidentiality or subject to privacy rights.
  • To protect against malicious or illegal activity and prosecute those responsible.
  • To prevent identity theft.
  • To verify and respond to consumer requests under applicable consumer privacy laws.
  • To conduct risk assessments under applicable consumer privacy laws.
  • To conduct cybersecurity audits under applicable consumer privacy laws.

We do NOT and will not sell your Personal Information in exchange for monetary or other valuable consideration. We do not share your Personal Information for cross-context behavioral advertising.

We do NOT and will not use or disclose your Sensitive Personal Information for any purposes that give rise to a right to limit the use or disclosure of your Sensitive Personal Information under the California Consumer Privacy Act (CCPA).

Children Under the Age of 16

We do not knowingly sell or share the Personal Information of worksite employees or any of their family members, dependents or beneficiaries under 16 years of age.

Back to table of contents

Applicant Privacy Statement

Scope of this Privacy Statement

CoAdvantage Corporation, along with all of its affiliates and subsidiaries, including PrimePay, LLC (“CoAd,” the “Company,” “our,” “us,” or “we”) has developed this Applicant Privacy Statement out of respect for the privacy of our job applicants. This Applicant Privacy Statement describes the Personal Information we collect, use, and disclose about individuals who apply for a position of employment. This is also to provide you with notice at or before the point at which we collect Personal Information from you informing you of what information we collect, how we use it, how long we retain it, and whether we sell it or share it for cross-context behavioral advertising purposes (we don’t by the way). Personal Information is any information that could reasonably identify you.

This Applicant Privacy Statement applies only to your interaction with the Company in the capacity of a job applicant.

Collection and Retention of Personal Information and Sensitive Personal Information

When you apply for a position or interact with us regarding potential job openings, we may collect Personal Information from you in a variety of different situations and using a variety of different methods, including, but not limited to, through our website, your mobile device, through email, in physical locations, through written materials, through the mail, and/or over the telephone.

Generally, we will or may collect, and we have in the last twelve (12) months collected, the following categories of Personal Information from or about job applicants. For each category of information, we identify below the categories of third parties, service providers, and contractors to whom we have disclosed the information in the last twelve (12) months. The examples provided in each category are not intended to be an exhaustive list or an indication of all specific pieces of information we collect from or about you in each category, but rather the examples are to provide a meaningful understanding of the types of information that may be collected within each category.

Category
Personal Identifiers
Examples
Name, alias, social security number, date of birth, driver’s license or state identification card number.
Disclosed to in Last 12 Months
Government agencies
Consumer and credit reporting agencies
Talent acquisition management systems
Vendors providing services for purposes of our human resources information system (HRIS) and management of job applicant data and recruiting process
Recruiting and staffing firms or agencies
IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Retention Period
If hired, then name will be retained permanently, and the rest will be retained for duration of employment plus 6 years.
If not hired, it will be retained for 4 years from when position is filled or the date we receive your information, whichever is longer.
Category
Contact Information
Examples
Home, postal or mailing address, email address, home phone number, cell phone number.
Disclosed to in Last 12 Months
Government agencies
Consumer and credit reporting agencies Talent acquisition management systems
Vendors providing services for purposes of our human resources information system (HRIS) and management of job applicant data and recruiting process
Recruiting and staffing firms or agencies
IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Pre-Hire Information
Examples
Information provided in your job application or resume, information gathered as part of background screening and reference checks, pre-hire drug test results, information recorded in job interview notes by persons conducting job interviews for the Company, information contained in candidate evaluation records and assessments, information in work product samples you provided, and voluntary disclosures by you, such as protected classifications.
Disclosed to in Last 12 Months
Talent acquisition management systems
Vendors providing services for purposes of our human resources information system (HRIS)and management of job applicant data and recruiting process
Recruiting and staffing firms or agencies
Company systems, networks, software applications, and databases you log into or use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Professional or Employment-Related Information
Examples
Information regarding prior job experience, positions held, and when permitted by applicable law your salary history or expectations.
Disclosed to in Last 12 Months
Talent acquisition management systems
Vendors providing services for purposes of our human resources information system (HRIS) and management of job applicant data and recruiting process
Recruiting and staffing firms or agencies
Company systems, networks, software applications, and databases you log into or use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Education Information
Examples
Information from resumes regarding educational history; information obtained from transcripts or records of degrees and vocational certifications obtained.
Disclosed to in Last 12 Months
Talent acquisition management systems
Vendors providing services for purposes of our human resources information system (HRIS)and management of job applicant data and recruiting process
Recruiting and staffing firms or agencies
Company systems, networks, software applications, and databases you log into or use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Online Portal and/or Mobile App Access and Usage Information
Examples
Where job applicant or candidate must create an account to apply for a job, the applicant’s username and password, account history, usage history, file access logs, and any information submitted through the account.
Disclosed to in Last 12 Months
Talent acquisition management systems
Vendors providing services for purposes of our human resources information system (HRIS) and management of job applicant data and recruiting process
IT, cybersecurity, and privacy vendors and consultants
Company systems, networks, software applications, and databases you log into or use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or databases
Category
Inferences
Examples
Based on analysis of the Personal Information collected, we may develop inferences regarding job applicants’ predispositions, behavior, attitudes, intelligence, abilities, and aptitudes for purposes of recruiting and hiring assessments and decisions.
Disclosed to in Last 12 Months
Company systems, networks, software applications, and databases you log into or use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or databases

What Sensitive Personal Information We Collect

Of the above categories of Personal Information, the following are categories of Sensitive Personal Information we plan to collect:

  • Personal Identifiers (social security number, driver’s license or state identification card number, passport number)
  • Online Portal and/or Mobile App Access and Usage Information (if required to create an account to apply for a job, your account log-in, in combination with any required security or access code, password, or credentials allowing access to the account)

Sources of Personal Information

We may collect your Personal Information from the following sources:

  • You, the applicant, when you apply for a position of employment or voluntarily submit information
  • Company systems, networks, software applications, and databases you log into or use in the course of applying for a position with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or databases
  • Surveillance cameras at our physical locations
  • Consumer and credit reporting agencies
  • HR support vendors
  • Recruiters
  • Staffing agencies
  • Job platforms and career sites like Indeed, LinkedIn, etc.
  • Personal references and former employers
  • Schools, universities, or other educational institutions which you attended
  • From friends, family, or colleagues who choose to email you jobs that they think you may be interested in from our application platform
  • Our employees, contractors, vendors, suppliers, guests, visitors, and customers based on your interactions with them (if any)
  • Our affiliates, including parent, subsidiary, or sister companies

To Whom We Disclose Personal Information

We may disclose your Personal Information to the following categories of service providers, contractors, or third parties:

  • Government agencies
  • Consumer and credit reporting agencies
  • Talent acquisition management systems
  • Vendors providing services for purposes of our human resources information system (HRIS) and management of job applicant data and recruiting process
  • Recruiting and staffing firms or agencies
  • Social media platforms
  • IT, cybersecurity, and privacy vendors and consultants
  • Our affiliates, including parent, subsidiary, or sister companies
  • Company systems, networks, software applications, and databases you log into or use in your interaction with the Company, including from vendors the Company engages to manage or host such systems, networks, applications or databases

Reasons Why We Collect, Use, Retain, and Disclose Personal Information

We may collect, use, retain, and disclose your Personal Information for any of the following business purposes:

  • To fulfill or meet the purpose for which you provided the information. For example, if you share your name and contact information to apply for a job with the Company, we will use that Personal Information in connection with your candidacy for employment.
  • To comply with local, state, and federal law and regulations requiring employers to maintain certain records (such as immigration compliance records, accident or safety records, and tax records).
  • To evaluate, make, and communicate decisions regarding your job application and candidacy for employment.
  • To obtain and verify background checks, references, and employment history.
  • To communicate with you regarding your candidacy for employment.
  • To permit you to create a job applicant profile, which you can use for filling out future applications if you do not get the job you are apply for.
  • To keep your application on file even if you did not get the job applied for, in case there is another position for which we want to consider you as a candidate even if you do not formally apply.
  • To evaluate and improve our recruiting methods and strategies.
  • To engage in lawful monitoring of job applicant activities and communications when they are on Company premises, or utilizing Company internet and WiFi connections, computers, networks, devices, software applications or systems.
  • To engage in corporate transactions requiring review or disclosure of job applicant records subject to non-disclosure agreements, such as for evaluating potential mergers and acquisitions of the Company.
  • To evaluate, assess, and manage the Company’s business relationship with vendors, service providers, and contractors that provide services to the Company related to recruiting or processing of data from or about job applicants.
  • To improve job applicant experience on Company computers, networks, devices, software applications or systems, and to debug, identify, and repair errors that impair existing intended functionality of our systems.
  • To protect against malicious or illegal activity and prosecute those responsible.
  • To prevent identity theft.
  • To verify and respond to consumer requests from job applicants under applicable consumer privacy laws.
  • To conduct risk assessments under applicable consumer privacy laws.
  • To conduct cybersecurity audits under applicable consumer privacy laws.
  • To conduct internal audits, compliance assessments, data analytics, and qualify assurance activities.
  • To engage in strategic planning and operational efficiency.
  • To develop and improve our products and services based on your input, including developing, testing, and training our own custom software and artificial intelligence tools.

We do NOT and will not sell your Personal Information in exchange for monetary or other valuable consideration. We do not share your Personal Information for cross-context behavioral advertising.

We do NOT and will not use or disclose your Sensitive Personal Information for any purposes that give rise to a right to limit the use or disclosure of your Sensitive Personal Information under the California Consumer Privacy Act (CCPA).

Use of Cookies, Pixels, and Other Tracking Technologies

For information regarding our use of cookies, pixels, and other tracking technologies, please see the Cookie Notice.

Job Applicants Under the Age of 16

As we do not accept applications from anyone under the age of 16, we do not knowingly collect or disclose, sell or share the Personal Information of job applicants under 16 years of age.

Back to table of contents

California Consumer Privacy Statement

CoAdvantage Corporation and its affiliates, including PrimePay, LLC, (“CoAd”, the “Company,” “us,” or “we”) have developed this California Consumer Privacy Statement out of respect for the privacy of individual consumers in the state of California. This California Consumer Privacy Statement, along with the Privacy Policy and applicable Statements, describes the Personal Information we collect, use, and disclose, both offline and online, about individual consumers, their rights under state law, and how CoAd responds to any individual requests under state law.

Rights Under the CCPA

If you are a California resident, you have the following rights pursuant to the CCPA:

  • Right to Know. The right to request, up to 2 times in a 12-month period, that we identify (1) the categories of Personal Information we have collected about you, (2) the categories of sources from which the Personal Information was collected, (3) the business or commercial purpose for collecting, selling, or sharing this information, (4) the categories of third parties with whom we disclose Personal Information, (5) the categories of Personal Information we sold or shared about you, and for each category identified, the categories of third parties to whom we sold or shared that particular category of Personal Information, and (6) the categories of Personal Information that we disclosed for a business purpose, and for each category identified, the categories of service providers or contractors to whom we disclosed that particular category of Personal Information;
  • Right to Access. The right to request, up to 2 times in a 12-month period, that we provide you access to or disclose to you the specific pieces of Personal Information we have collected from or about you;
  • Right to Delete. The right to request, up to 2 times in a 12-month period, that we delete Personal Information that we collected from you, subject to certain exceptions;
  • Right to Correct. The right to request that we correct inaccurate Personal Information (to the extent such an inaccuracy exists) that we maintain about you, and ensure any corrected data remains corrected;
  • Right to Opt-Out. The right to opt-out of the selling or sharing of your Personal Information to third parties; and
  • The right to not be retaliated against for exercising privacy rights conferred by the CCPA, including an independent contractor.

Notice of Right of California Residents to Opt-Out of the Selling and Sharing of Your Information

You have the right to tell us NOT to sell or share your Personal Information. You have the full and free right to opt-out of our disclosure of your Personal Information to any third parties where the disclosure constitutes “selling” or “sharing” as defined by the California Consumer Privacy Act (CCPA). You may exercise your right to opt-out without fear of discrimination for doing so. To opt-out of our selling or sharing of your information, meaning, we will not disclose your information to third parties for any monetary or other valuable consideration, you can do any of the following:
Click HERE to be taken to an online opt-out submission form.
Visit CoAdvantage’s website at: https://www.coad.com/. Click on “DO NOT SELL OR SHARE MY PERSONAL INFORMATION” to be taken to an online submission form. Or click on the green fingerprint symbol at the bottom left corner of your screen.
You can use a Global Privacy Controls (“GPC”) signal. CoAdvantage will process opt-out preferences from GPC signals, which are in formats commonly used and recognized by businesses, such as an HTTP field header, as requests to opt-out of sale or sharing. The GPC signal opt-out will only apply to the browser you are using on your device; it will not apply to other browsers and/or devices to which GPCs are not activated or to offline sales. We will display your opt-out preference signal in the cookie preferences available on https://www.coad.com.
If you are unable to submit an opt-out through any of the above methods, please call our toll-free privacy line at 800-868-1016 for assistance and a representative will assist in meeting your needs.
You can have an authorized agent submit a request on your behalf. To submit an opt-out through use of an authorized agent, you must provide that agent with written permission signed by you to submit an opt-out on your behalf, except when using an opt-out preference signal. The authorized agent may call our toll-free privacy line at 800-868-1016 or https://www.app.faceup.com/en-us/c/3omdfubj/page/019f4cb8-3bbb-78a8-87fc-5550313bf8a8 to make the opt-out request and for directions for submitting the proof of authorization and the authorized agent’s proof of identification to the Company. We maintain the right to deny any request from an authorized agent that does not submit sufficient proof that they have been authorized by you to act on your behalf.
A request to opt-out need not be a verifiable consumer request. However, we may deny a request to opt-out if we have a good faith, reasonable, and documented belief that a request to opt-out is fraudulent. If we deny your request to opt-out, we shall inform you of our decision not to comply and provide an explanation as to why we believe the request is fraudulent.

Opt-Out Preference Signals

Opt-out preference signals provide consumers with a simple and easy-to-use method by which to exercise the right to opt-out of the selling and sharing of their information. Global Privacy Controls (GPC) is a user-enabled opt-out preference signal which can communicate a user’s “Do Not Sell or Share” request on behalf of the person or device. We will process opt-out preferences from GPC signals which are in formats commonly used and recognized by businesses, such as an HTTP field header. We will treat a consumer’s use of GPCs as a valid request to opt-out of the selling and sharing of information for that browser. We currently do not connect browser use to particular consumers and, as such, you will need to use GPCs on all browsers in which you access our website and use our opt-out form to opt-out of offline sales.

Do Not Track (DNT) is a privacy preference that users can set if they do not want web services to collect information about their online activity. We do not respond to DNT signals or other mechanisms (with the exception of GPCs) that provide a choice regarding the collection of personal information about activities over time and across different websites or online services. We encourage users who have DNTs to use GPCs.

Use and Disclosure of Sensitive Personal Information

We do NOT and will not use or disclose your Sensitive Personal Information for any purpose that gives rise to a right to limit the use or disclosure of your Sensitive Personal Information under the CCPA.

Submitting a Consumer Request

You can submit any of the above types of consumer requests through any of the options below:

How We Will Verify That it is Really You Submitting the Request

If you are a California resident, when you submit a Right to Know, Right to Access, Right to Delete, or Right to Correct request through one of the methods provided above, we will ask you to provide some information in order to verify your identity and respond to your request. Specifically, we will ask you to verify information that can be used to link your identity to particular records in our possession, which depends on the nature of your relationship and interaction with us.

Responding to Your Right to Know, Right to Access, Right to Delete and Right to Correct Requests

Upon receiving a verifiable request from a California resident, we will confirm receipt of the request no later than ten (10) business days after receiving it. We endeavor to respond to a verifiable request within forty-five (45) calendar days of its receipt. If we require more time (up to an additional 45 calendar days, or 90 calendar days total from the date we receive your request), we will inform you of the reason and extension period in writing. We will deliver our written response by mail or electronically, at your option. The response we provide will also explain the reasons we cannot comply with a request, if applicable.

We do not charge a fee to process or respond to your verifiable request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

For a request to correct inaccurate personal information, we will accept, review, and consider any documentation that you provide, and we may require that you provide documentation to rebut our own documentation that the personal information is accurate. You should make a good-faith effort to provide us with all necessary information at the time that you make the request to correct. We may deny a request to correct if we have a good-faith, reasonable, and documented belief that a request to correct is fraudulent or abusive. If we deny your request to correct, we shall inform you of our decision not to comply and provide an explanation as to why we cannot comply with a request, if applicable.

Responding to Your Request to Opt-Out of the Selling or Sharing of Your Personal Information

We will act upon a consumer request to opt-out within fifteen (15) days of its receipt. We will notify all third parties to whom we have sold or shared Personal Information of your request and instruct them to comply with the request within the same time frame. We will notify you when this has been completed by mail or electronically, at your option.

A request to opt-out need not be a verifiable consumer request. However, we may deny a request to opt-out if we have a good faith, reasonable, and documented belief that a request to opt-out is fraudulent. If we deny your request to opt-out, we shall inform you of our decision not to comply and provide an explanation as to why we believe the request is fraudulent.

Children Under the Age of 16

We do not knowingly sell or share the Personal Information of consumers under 16 years of age.

If You Have an Authorized Agent

If you are a California resident, you can authorize someone else as an authorized agent who can submit a request on your behalf. To do so, you must either: (a) execute a valid, verifiable, and notarized power of attorney; or (b) provide other written, signed authorization that we can then verify. When we receive a request submitted on your behalf by an authorized agent who does not have a power of attorney, that person will be asked to provide written proof that they have your permission to act on your behalf, and we will also contact you and ask you for information to verify your own identity directly with us and not through your authorized agent. We may deny a request from an authorized agent if the agent does not provide your signed permission demonstrating that they have been authorized by you to act on your behalf.

Back to table of contents

EU, UK, and Switzerland Consumer Privacy Statement

Scope of this EU Privacy Statement

CoAdvantage Corporation and its affiliates, including PrimePay, LLC, (“CoAd”, the “Company,” “us,” or “we”) have developed this EU, UK, and Switzerland Consumer Privacy Statement (this “EU Privacy Statement”) out of respect for the privacy of individual consumers in the EU, UK, and Switzerland. This EU Privacy Statement, along with the Privacy Policy and applicable Statements, describes the Personal Information we collect, use, and disclose, both offline and online, about individual consumers, their rights under applicable law, and how CoAd responds to any individual requests under such law.

CoAd recognizes that the Site may be accessed from countries around the world; however, certain products and features may not be available in your country. Access to the Site from any country does not mean that CoAd intends the product or feature to be available in your location. The owner of the Site is based in the state of Florida in the United States and is intended primarily for use by persons located in the United States. CoAd does not make any representations or warranties that the Site or any products or services are appropriate or available for use outside of the United States or that the Site or any such products or services comply with law outside of the United States. If you access the Site from outside the United States, you do so on your own initiative and are responsible for compliance with local laws. Some of our affiliates, including PrimePay, LLC dba CoAd Pay (“CoAd Pay”), are participants in the Data Privacy Framework.

Rights under Applicable Law

If CoAd Pay is your Data Controller as described above and you wish to exercise any of the following rights, please contact us using the details below. In your request, please make clear: (i) what personal data is concerned; and (ii) which of the rights you would like to enforce. For your protection, we may only implement requests with respect to the personal data associated with the particular email address that you use to send us your request, and we may need to verify your identity before implementing your request. We will try to comply with your request as soon as reasonably practicable and in any event, within one month of your request. Please note that we may need to retain certain information for recordkeeping purposes and/or to complete any transactions that you began prior to requesting such change or deletion.

  • Opt-out. You may contact us anytime to opt-out of: (i) direct marketing communications; (ii) automated decision-making and/or profiling; (iii) our collection of personal data; (iv) any new processing of your personal data that we may carry out beyond the original purpose; or (v) the transfer of your personal data outside the EEA, UK, or Switzerland. Please note that your use of some of our Sites may be ineffective upon opt-out. Despite your indicated e-mail preferences, we may send you service-related communications, including notices of any updates to our this EU, UK, and Swiss Consumer Privacy Statement or our Privacy Policy.

While we do not sell or share your personal information in exchange for money, we may sell or share your personal information for other valuable consideration, such as for target advertising purposes or if you attend a webinar. You have the right to tell us NOT to sell or share your personal information. You have the full and free right to opt-out of our disclosure of your personal information to any third parties where the disclosure constitutes “selling” or “sharing” as defined by the California Privacy Rights Act. You may exercise your right to opt-out without fear of discrimination for doing so. To opt-out of our selling or sharing of your information, meaning, we will not disclose your information to third parties for any monetary or other valuable consideration, you can do any of the following:

  • Click HERE to be taken to an online opt-out submission form.
  • Visit our Site at https://www.coad.com. Click on the “DO NOT SELL OR SHARE MY PERSONAL INFORMATION” in the footer to be taken to an online submission form. Or click on the green fingerprint icon located on the bottom left corner of your screen.
  • Call our privacy toll-free line at (800) 868-1016.
  • Email us at privacy@coadvantage.com
  • You can use a Global Privacy Controls (GPC) signal. CoAd Paywill process opt-out preferences from GPC signals, which are in formats commonly used and recognized by businesses, such as an HTTP field header, as requests to opt-out of sale or sharing. The GPC signal opt-out will only apply to the browser you are using on your device; it will not apply to other browsers and/or devices to which GPCs are not activated or to offline sales.
  • For webinar participants, you can also opt-out by selecting that option on the webinar sign-up form, clicking here, or contacting us at one of the methods listed above.

You can have an authorized agent submit a request on your behalf. To submit an opt-out through use of an authorized agent, you must provide that agent with written permission signed by you to submit an opt-out on your behalf, except when using an opt-out preference signal. The authorized agent may contact us at our phone number or email listed below to make the opt-out request and for directions for submitting the proof of authorization and the authorized agent’s proof of identification. We maintain the right to deny any request from an authorized agent that does not submit sufficient proof that they have been authorized by you to act on your behalf.

A request to opt-out need not be a verifiable consumer request. However, we may deny a request to opt-out if we have a good faith, reasonable, and documented belief that a request to opt-out is fraudulent. If we deny your request to opt-out, we shall inform you of our decision not to comply and provide an explanation as to why we believe the request is fraudulent.

  • Access. You may access the information we hold about you at any time by contacting us directly.
  • Amend. You can also contact us to update or correct any inaccuracies in your personal data.
  • Move. Your personal data is portable – i.e., you to have the flexibility to move your data to other service providers as you wish.
  • Erase and forget. In certain situations, for example when the information we hold about you is no longer relevant or is incorrect, you can request that we erase your data.

EU-U.S. Data Privacy Framework (DPF), UK Extension to the EU-U.S. DPF and Swiss – U.S. DPF

PrimePay, LLC dba CoAd Pay (“CoAd Pay”) participates in and has certified its compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF. CoAd Pay is committed to subjecting all personal data received from EU member countries, the UK, and Switzerland, in reliance on the applicable DPF, to the Framework’s applicable Principles. To learn more about the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF visit the Data Privacy Framework website. CoAd Pay is responsible for the processing of personal data it receives, under the Data Privacy Framework, and subsequently transfers to a third party acting as an agent on its behalf. CoAd Pay complies with the Data Privacy Framework principles for all onward transfers of personal data from the EU, UK, and Switzerland, including the onward transfer liability provisions. With respect to personal data received or transferred pursuant to the Data Privacy Framework, CoAd Pay is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, CoAd Pay may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, CoAd Pay commits to cooperate and comply respectively with the advice of the panel established by the EU data protection authorities (DPAs) and the UK Information Commissioner’s Office (ICO) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF.

Under certain conditions, more fully described on the Data Privacy Framework website, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.

How to Contact Us

If you have any questions or comments about this EU, UK, and Switzerland Consumer Privacy Statement, or if you would like us to update information we have about you or your preferences, and you are unable to contact us through any of the methods provided above, you can always. You also may write to:

CoAd Pay Attn: Legal

101 Riverfront Blvd, Suite 300

Bradenton, FL 34205

You will receive confirmation of requested updates or deletions within ten (10) business days after such request is made.

Back to table of contents