Privacy Policy

Introduction

Your privacy is important to us. This Privacy Policy explains how Blair Martinez, LLC (“we”, “us”, or “our”) collects, uses, discloses, and protects your personal information when you use our nursing continuing education website and services (“Services”). It also describes your rights and choices regarding your information, including under specific laws in Florida and New Jersey. We are committed to aligning our privacy practices with applicable laws and with the expectations of accrediting bodies such as ANCC, AANP, and IACET – which emphasize confidentiality of learner records and responsible data management.

By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our practices, please refrain from using the website. This policy is incorporated into our Terms and Conditions, and any capitalized terms not defined here have the meanings given in the Terms.

Information We Collect

We collect information that you voluntarily provide to us, information from your use of our Services, and information from third parties as needed. The types of personal data we collect are as follows:
  • Contact and Identity Information: When you create an account or make a purchase, we collect personal identifiers such as your name, email address, mailing address, phone number, and professional credentials. For example, we may ask for your professional license number and state of licensure (especially for nurses in Florida or other states where we report CE credits to boards) to ensure proper credit reporting and compliance.
  • Account Credentials: You will provide a username and password when registering an account. (Passwords are stored in an encrypted form and not visible to us.)
  • Payment Information: If you make purchases, our third-party payment processor will collect your payment card details (card number, expiration, CVV) and billing information. We do not store full credit card numbers on our servers; however, we may store billing contact information and a transaction ID or token returned by the payment processor, as well as the last four digits of your card for reference. All transactions are securely processed via PCI-compliant providers.
  • Course Activity Data: We maintain records about your course enrollments and progress. This includes courses you have registered for or accessed, quiz/exam results, completion status, scores, and certificates earned. We also log certain interactions with course content (e.g. lesson completion, time spent, whether you passed an exam) to track your continuing education credits.
  • Communications with Us: If you contact us for support or with inquiries (via email, phone, or chat), we will receive whatever information you choose to provide in that communication (such as your contact info and the content of your query). We may keep records of correspondence and support tickets to better assist you and for internal training.
  • Device and Usage Information: When you use our site, we automatically collect some technical information about your device and how you interact with our Services. This may include your IP address, browser type, device type, operating system, referring URL, pages viewed, links clicked, and timestamps of visits. We may use cookies or similar tracking technologies to collect this data. (See “Cookies and Tracking” below.)
  • Cookies and Similar Technologies: Our website uses “cookies” (small text files stored on your device) and similar technologies to provide and improve our Services. For example, we use cookies to keep you logged in, remember your preferences, and understand how users navigate our site. We may use both session cookies (which expire when you close your browser) and persistent cookies (which remain for a set period or until deleted). You can control cookies through your browser settings but note that disabling certain cookies may affect functionality (like staying logged in or course progress tracking).
  • Third-Party Data (if applicable): In general, we collect data directly from you. We do not buy marketing lists or extensive third-party data about individuals. However, if you choose to log in via a social network or single sign-on service (if offered), or if you register via a corporate or institutional portal, we might receive basic profile information from those third parties with your consent. Additionally, if a state licensing board or accrediting body provides us information (for instance, confirmation of your license status or licensing ID when we report credits), we will handle that as personal data as well.
We limit our collection to what is relevant for providing our continuing education services and for compliance purposes (such as accreditation, record-keeping, and legal obligations).

How We Use Your Information

We use the collected information for the following purposes, in accordance with applicable laws and the principles of the accrediting organizations:
  • Provide and Manage Services: We use personal information to create and maintain your account, to enable you to purchase and access courses, and to track your progress. For example, we use your login credentials to authenticate you, and we use your course activity data to populate your user dashboard (so you can see your enrolled courses and completions). We also use your information to generate certificates of completion and to verify eligibility for credits.
  • Continuing Education Credit Tracking and Reporting: As a CE provider, we must maintain records of your participation and achievements. We keep records of the contact hours/CEUs you earn in our courses. If you are licensed in a jurisdiction that requires providers to report CE completions (e.g., Florida), we use your license information to automatically report your course completion to the appropriate system (for instance, submitting your course completion data – such as your name, license number, course ID, and hours earned – to the Florida Department of Health’s tracking system, commonly known as CE Broker). Similarly, if we attain ANCC, AANP or IACET accreditation, we may use your information to comply with their reporting or verification requirements (such as providing de-identified aggregate data about activity participation in an annual report or allowing those bodies to audit our records which include your data). All such reporting is done only as required to fulfill regulatory or accreditation obligations and is limited to the necessary details.
  • Improve and Develop Our Courses: We may use usage data and feedback to improve our content and user experience. For example, we might analyze which course modules are most viewed or where learners drop off, to improve the course design. We might also use your course evaluation responses or survey feedback to enhance our offerings. Internal research and analysis are done in aggregate wherever possible, without identifying individual users, except as needed to assist a user with an issue.
  • Communicate with You: We use contact information (email, phone) to send you service-related communications. This includes confirmations of purchases, receipts, course enrollment confirmations, reminders about course deadlines (if a course has an expiration date), subscription renewal notices, and important announcements about the Services (such as updates to terms or privacy policy, or security alerts). For subscriptions with auto-renewal, as noted in our Terms, we will send advance renewal reminder notices (for instance, an email ~30 days before an annual renewal) in accordance with laws and as a courtesy. These service communications are necessary for providing our services and you cannot opt out of them if you maintain an account, except by canceling your service. Additionally, if you opt in, we may send you promotional communications such as newsletters, new course announcements, or special offers. You have the choice to opt out of marketing emails at any time (see “Your Choices” below). We will not spam you; our goal is to send relevant information for your professional development.
  • Process Payments: We use your payment and billing information to process transactions for course purchases or subscriptions. This is done via our third-party payment processors, but our system initiates those charges and handles successful or failed payment notifications to update your account access accordingly.
  • Enforce Terms, Prevent Fraud, and Comply with Law: We may use personal data to enforce our Terms and Conditions and other policies. For example, we might use tools to monitor for suspicious login patterns or multiple users on one account (to prevent unauthorized account sharing or hacking). If we detect potential fraud or misuse, we may use the data to mitigate it and to protect our rights, property, and users. We also will use and disclose personal information as required to comply with applicable laws, regulations, legal processes, or governmental requests (see “How We Share Information” below for more on legal disclosures).
  • Accreditation Compliance and Record Retention: We retain personal and course data as part of our compliance with continuing education accreditation standards. Bodies like ANCC, AANP, and IACET expect providers to maintain learner records for several years (IACET’s standard, for instance, is a minimum of 7 years; ANCC’s is typically 6 years). We use your data to fulfill these requirements, meaning we securely store your course completion records for at least the required time. This is for your benefit as well – it allows us to verify or reissue your certificates if needed and provide proof of your credits if ever audited by a licensing board or accreditor. We also implement privacy and security controls in doing so, as further described below.
  • Optional Features: If our platform offers additional features such as discussion forums, user profiles, or social sharing of achievements, any information you choose to post or share in those contexts (like a forum post or a profile bio) is done by your choice and for the purpose of that feature. We would use it to display as intended (for example, showing your name and comment on a discussion board to other course participants). Please be mindful that such content may be visible to others as described at the time you participate.
We will not use your personal information for purposes unrelated to the above without notifying you and obtaining appropriate consent. We do not engage in automated decision-making or profiling that produces legal or similarly significant effects on you, aside from basic personalization or recommendations (e.g., suggesting courses you might be interested in, which you can ignore).

How We Share Your Information

We understand the importance of keeping your personal information confidential. We share personal data only in the following circumstances:
  • With Service Providers: We share information with third-party companies who perform services on our behalf, commonly known as “processors” or “service providers.” These include:

  • Payment Processors: As discussed, your payment transactions are handled through companies like [Stripe/PayPal/etc.] which process your card information. They are authorized to use your info only as needed to process payments and comply with their legal obligations.

  • Learning Management and IT Providers: We may use a cloud hosting provider or learning management system (LMS) platform to deliver the courses and store data. For example, our website and databases may be hosted on reputable cloud servers, so technically your data resides on their infrastructure – under strict security and contractual protections. Similarly, if we utilize an email service (like Mailchimp or SendGrid) to send out bulk emails (course announcements, reminders), your name and email might pass through their system for the sole purpose of sending the email.

  • Analytics and Usage Tracking: We might use analytics tools (like Google Analytics or similar) to collect usage data. These tools may set their own cookies to help us analyze site traffic and usage patterns. We configure such tools to avoid collecting unnecessary personal info (for instance, IP anonymization where possible). Data shared with analytics providers is typically aggregated and not identified with you by name.

  • Customer Support Tools: If we use a third-party ticketing system or CRM to manage support inquiries, your contact info and support request may be stored in that system.
We contractually require service providers to protect your data, keep it confidential, and use it only for the services they provide to us. They are not allowed to sell or use your data for their own marketing purposes.
  • With Accrediting Bodies or Regulators: We may disclose certain information to professional organizations or regulatory agencies in connection with accreditation or licensing requirements. For example:

  • If the Florida Board of Nursing (via CE Broker) requires that we report course completions for their licensees, we will share the necessary details (your identifying information and course completion data) with that system. This is done to ensure your credits count toward your license renewal.

  • If we become an ANCC, AANP and/or IACET accredited provider, those accrediting organizations have the right to audit our program. In an audit, they may request to see attendance/completion records for certain activities to verify compliance. This means they could see data like participant sign-in sheets or completion lists which include your name and license/certificate status. We will only provide such information to an accreditor as required and under the confidentiality agreements of the accreditation process. (Accreditors typically treat participant information as confidential and use it only to verify the educational activity’s compliance.)

  • If a state nursing board or certifying body in another state inquires to verify a certificate you earned (for instance, during a license audit you list us and they contact us to confirm), we will confirm or provide the necessary information (with proper verification of the requesting authority).
In summary, we share with regulatory, or accreditation entities only as needed to comply with our obligations and to ensure your earned credits are recognized.
  • Legal Compliance and Protection: We may disclose personal information if required to do so by law or legal process, such as in response to a subpoena, court order, or government investigation. We will also disclose data if necessary to investigate or enforce legal rights and agreements, including our own Terms and Conditions, or to detect and prevent fraud or security issues. For example, if required by state or federal law to report certain information (perhaps in the case of a data breach notification or a consumer rights request under privacy law), we will comply. If we ever receive a request from a law enforcement authority for user data, we will verify its validity and only provide the minimum necessary information, following applicable legal standards.

  • Business Transfers: If we (the Company) undergo a business transaction such as a merger, acquisition by another company, reorganization, or sale of all or part of our assets, user information (including personal data) might be among the transferred assets. We would ensure that any successor entity either continues to follow this Privacy Policy in handling your personal information or provides notice of any changes. You would have the opportunity to discontinue use of the Services if you do not agree with the new handling of your data.

  • With Your Consent: Apart from the situations above, we will request your consent before sharing your personal information with any third party for purposes not covered by this Policy. For instance, if we wanted to feature a testimonial with your name on our website, we’d ask your permission. Or if a course is co-provided with a partner and that partner wants a list of attendees for their records, we would only share such information with your knowledge or agreement as required.

  • De-identified or Aggregate Data: We may share aggregated, anonymized data that cannot be linked back to an individual (for example, “500 nurses took Course X and 98% passed”). This information would be used for industry reports, marketing (such as advertising the number of professionals educated), or research, but it contains no personal identifiers and is not subject to privacy restrictions since it’s not personal data.
Importantly, we do not sell your personal information to third parties for their own commercial use. “Selling” in this context means exchanging personal data for monetary or other valuable consideration. We also do not share your information with third parties for their direct marketing purposes unless you give explicit consent.

Data Retention And Security

Data Retention: We retain your personal information for as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required or permitted by law or accrediting standards. In practice, this means:
  • Basic account information (name, contact info, etc.) is kept for the life of your account. If you delete your account or it becomes inactive, we will remove or anonymize personal data upon request, except for that which we must keep for legal/administrative reasons (explained below).

  • Course records (completion data, credits earned): As an accredited or seeking-to-be-accredited provider, we adhere to record retention requirements. We will keep a record of the continuing education activities you undertook, and the credits awarded for a minimum of six (6) years, and in many cases at least seven (7) years. This allows us to meet the standards of ANCC, AANP, IACET, and similar bodies, and to assist you if you need proof of past courses. In some jurisdictions, we may be required to retain certain records for even longer (for example, tax or financial records of purchases might be 7 years for IRS purposes).
  • Legal requirements: If any data is needed to comply with laws (e.g., records of opt-out requests or consent for email marketing, records of any complaints or disputes, or data necessary for litigation holds), we will retain that as required.
  • When we no longer have a legitimate need or obligation to retain your personal information, we will securely dispose of it. This may involve deleting it from our databases, or if deletion is not immediately feasible (e.g., in backups), we will isolate and protect it until deletion is possible. In some cases, instead of deleting, we may choose to permanently anonymize the data so it can no longer be associated with you.
Security Measures: We employ reasonable and appropriate security measures to protect your personal data from unauthorized access, loss, misuse, or alteration. These measures include:
  • Encryption: Our website uses HTTPS (TLS encryption) to secure data transmission between your browser and our servers (look for the padlock in the address bar). Sensitive data like passwords are stored hashed or encrypted. Payment information is handled via encrypted protocols by our payment processors.

  • Access Controls: We restrict access to personal data to our employees or contractors who need it to operate and improve the Services. Those with access are bound by confidentiality obligations. Administrative access to systems holding personal data is protected by strong authentication (such as multi-factor authentication) and logging of access.

  • Firewalls and Network Security: We maintain up-to-date firewall and intrusion detection systems to guard our online environment. Our servers are regularly updated with security patches to mitigate vulnerabilities.

  • Monitoring: We monitor for potential security breaches and have an incident response plan in place. If any security incident is suspected that involves personal data, we will investigate promptly and, where required by law, notify affected individuals and authorities within the mandated time frames.

  • Data Integrity: We take steps to ensure that the data we have is accurate and relevant for the purposes for which it’s collected. You can help by keeping your profile information.

  • Training and Policies: Our team members are educated on privacy and security best practices and are required to follow company policies on data protection. For instance, we have a policy (aligned with IACET 1-2018 Standard 8.6) to ensure the privacy and information security of learners’ records.
Please note that no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee absolute security. You also play a role: protect your account credentials and notify us immediately if you suspect any unauthorized access to your account.

Your Rights And Choices

You have certain rights regarding your personal information, which may vary depending on your jurisdiction (e.g., Florida, New Jersey, or others). We are committed to honoring applicable rights, which include:
  • Access: You have the right to request a copy of the personal data we hold about you. This is sometimes called a “Right to Access” or “Data Subject Access Request.” We can provide you a summary of your information and a description of how it’s used, in a readily usable format. For Florida and New Jersey residents, this aligns with the right to know what data a business has collected about you.

  • Correction (Rectification): If any personal information we have is incorrect or outdated, you have the right to request that we correct or update it. For example, if your name was misspelled or your email has changed, you can update this in your account settings or by contacting us. We may need to verify the new information, but we will correct inaccuracies as required.

  • Deletion: You have the right to request deletion of your personal data in certain circumstances. This is sometimes called the “Right to Erasure” or “Right to be Forgotten.” If you wish to delete your account or certain information, contact us with your request. We will honor deletion requests if we do not have a legal obligation or other valid reason to retain the data. Please note that due to our role as a continuing education provider, there may be instances where we must retain certain data (like course completion records) for accreditation or legal compliance (see Data Retention above). In such cases, we will inform you of the data we cannot delete and the reason. We will delete or anonymize all other personal data that is not required to be kept. Also, be aware that deletion of your data means you will lose access to your account and records (including certificates in our system), so ensure you have saved any needed documents before requesting full deletion.

  • Opt-Out of Sale or Sharing: We do not sell your personal data as noted. However, privacy laws like the Florida Digital Bill of Rights or New Jersey’s law give consumers the right to opt out of the sale of personal data or use of data for targeted advertising. We do not use your data for third-party targeted advertising. If this ever changes, we will update this policy and provide a mechanism to opt out. As of now, we treat any request to not share data as a high-level request and ensure your data is only used as described. (For example, you can opt out of certain analytics cookies that might be considered “sharing” under some laws, via our cookie consent banner if applicable.)

  • Opt-Out of Marketing Communications: You can unsubscribe from our marketing or newsletter emails at any time by clicking the “unsubscribe” link in the footer of those emails or by adjusting your email preferences in your account settings. Note that you will still receive administrative emails (for instance, those about transactions or course updates) as these are not promotional.

  • Opt-Out of Cookies/Tracking: As mentioned, you can set your browser to refuse cookies or alert you when cookies are being sent. Our site may also support browser Do Not Track (DNT) signals or global privacy controls if required by law, but currently we treat such signals as opt-outs of any data selling/sharing (though we do not do those) and possibly to limit analytics. If you wish to opt out of Google Analytics tracking, Google provides an opt-out browser add-on. For other trackers, you can use browser settings or extensions to manage them. We also may provide a cookie consent tool on our site to allow you to control non-essential cookies.

  • Non-Discrimination: We will not deny you goods or services, charge you different prices, or provide a different level of quality of services for exercising your privacy rights under applicable law. In other words, you won’t be penalized or discriminated against for making requests regarding your data. If you request deletion, note that we may not be able to continue providing certain services (for example, if you delete your account data, you cannot log in), but that is a direct result of your request, not a punitive action from us.

  • Florida Residents: Under Florida’s privacy law (FDBR, effective July 2024), residents have rights to access, correct, delete personal information, and opt out of sale or targeted advertising. However, that law currently applies mainly to very large businesses. Regardless, we extend the core privacy rights to our Florida users. You can make requests as described in this section and we will accommodate them to the extent required by law and in line with the above principles.

  • New Jersey Residents: New Jersey’s Data Privacy Act (effective Jan 2025) grants similar rights (access, correction, deletion, portability, and opt-out of certain processing) to NJ consumers. We comply with New Jersey’s law as applicable. For example, you have the right to obtain a copy of personal data in a portable format, which we will provide (likely in a CSV or PDF summary). You also have the right to appeal our decision if we decline your privacy rights request (which is a provision in some state laws). If we were to refuse a request (such as a deletion request that conflicts with a legal requirement), we will explain the reason. If you are not satisfied, you may contact us to further discuss or appeal, and we will have a second review internally. New Jersey also requires that our privacy notice include certain information like categories of data collected, purposes, categories of third parties we share with, how to exercise rights, etc. – which we have included throughout this Privacy Policy.

  • California and Other Jurisdictions: While the user question focused on Florida and NJ, if you are from a different state or country with privacy rights (e.g., California’s CCPA/CPRA, or the EU’s GDPR), you may contact us to exercise similar rights. We endeavor to honor all valid data subject requests, regardless of origin, to the extent feasible. For instance, California residents can ask for a notice of categories of personal info disclosed for a business purpose, which this policy effectively provides. If you need a specialized disclosure, let us know.
How to Exercise Your Rights: To exercise any of the rights above or to inquire about your privacy, please contact us at info@blairmartinez.com (or the contact information provided in the “Contact Us” section below). Please clearly describe your request – for example, “I am requesting a copy of my personal data” or “Please delete my account and personal info.” We may need to verify your identity before fulfilling requests to ensure we don’t give your data to an unauthorized person or delete the wrong account. Verification might involve confirming some information we have on file (like you responding from the email associated with your account or answering a question about your recent activity).

For certain requests, especially under new state laws, we will respond within the timeframe required by law (commonly within 30-45 days). If we need an extension, we will let you know. There is typically no fee for processing your request, but if a law allows a reasonable fee for excessive or unfounded requests, we reserve the right to charge one (we will inform you in advance if that’s the case, which is rare).

Additional Details

Children’s Privacy: Our Services are not directed to children under 16, and we do not knowingly collect personal information from children. All users are expected to be adult learners (or at least above the age of majority in their jurisdiction, usually 18). If we discover that a child under 13 (or under 16 in certain jurisdictions) has provided us with personal information, we will delete such information promptly. Parents or guardians who believe their child may have provided us data can contact us to request deletion.

Third-Party Websites: Our site may contain links to external websites, such as nursing boards, reference materials, or partner organizations. This Privacy Policy does not apply to those third-party sites. We encourage you to review the privacy policies of any external sites you visit. We are not responsible for the content or privacy practices of websites we do not control.

International Users: Our services are primarily designed for users in the United States. If you are accessing from outside the US, be aware that your information will be transferred to and processed in the United States (or other locations where our servers or service providers are located). This may involve a transfer of data out of your country of residence, which might have different data protection rules. By using our site, you consent to the transfer of your data to the USA. We will protect it as described here, but some rights or protections afforded by your jurisdiction (e.g., GDPR) may not directly apply. That said, if you are an EU or UK user, you likely must explicitly consent to our collection via a banner for cookies, etc., and you have rights similar described above (access, deletion, etc.) which you can exercise by contacting us. We will do our best to accommodate.

Accreditation and Privacy Expectations: As we align with ANCC/AANP/IACET standards, we implement policies to ensure learner confidentiality. For instance, we do not disclose your course performance to anyone except you (and accrediting/regulatory bodies as required). If your employer or another third party ever sponsors or pays for your course and seeks confirmation of your completion, we would only share that if you have consented or if there is a prior arrangement (like you signed up through an employer’s portal). Even then, we would limit information to what’s necessary (e.g., confirming completion status). Any research or publication we might do on educational outcomes would use aggregated data without personal identifiers, unless we have your explicit permission.

Changes to this Privacy Policy: We may update this Policy from time to time to reflect changes in our practices, legal requirements, or other factors. We will post any changes on this page with an updated “Last Updated” date. If changes are significant, we may provide a more prominent notice or seek your consent as required by law. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of the Services after any update constitutes your acceptance of the changes.

Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, or if you wish to exercise your rights, please contact us:

Email: info@blairmartinez.com
Address: Blair Martinez, LLC Privacy Officer/Data Protection Officer, 330 Changebridge Rd, STE 101, Pine Brook, New Jersey 07058, USA
Phone: 866-348-3033 (please ask for the Privacy Officer or data inquiries)

We will address your inquiries as promptly as possible. If you feel we have not adequately addressed your privacy concerns, you have the right to contact your state’s Attorney General or data protection authority. For example, Florida residents can reach out to the Florida Attorney General’s Office, and New Jersey residents can contact the NJ Division of Consumer Affairs. However, we sincerely hope to resolve any issues directly and assure you of our dedication to your privacy.

Thank you for entrusting us with your personal information. We value your participation in our continuing education programs and are committed to safeguarding your data while providing you with high-quality educational services.