Privacy Policy

Introduction

The Department of Human Resources (CalHR) is committed to protecting your privacy rights as individuals. Our commitment to protecting your personal information underscores our respect for your privacy rights and confidentiality. CalHR's policy limits the collection, utilization, and disclosure of personal information maintained by CalHR, as well as implements safeguards to ensure its protection and confidentiality, all while striving to ensure transparency and trust in our practices. CalHR's information management and privacy practices are governed by State and Federal laws such as:

California Constitution, Article 1, Section 1
Government Code Section 11015.5
Health Insurance Portability and Accountability Act (HIPAA) of 1996 – Privacy Rule
Information Practices Act (Civil Code Section 1798 et seq.)
Public Records Act (Government Code Section 6250 et seq.)
State Administrative Manual (SAM) Section Privacy - 5310 et seq.
Statewide Information Management Manual (SIMM) 5310-A and 5310-B
National Institute of Standards and Technology (NIST) Special Publication 800-53

Information We Collect

CalHR only obtains personal information through lawful means. The personal information collected directly from you is voluntary and is only used to accomplish the specified business purpose the data is meant to be used for. This data may include personal and health/mental information CalHR needs to conduct our official responsibilities in human resources including but not limited to examinations, certification, payroll, benefits, and statewide training. Failure to supply the information results in CalHR's inability to perform its business function.

Personal information, as defined in the Information Practices Act, is information that identifies or describes an individual, including, not limited to: Name, Social Security Number, Home Address, Telephone Number, Education, Financial Matter, Medical and Employment History.

Cookies – When you visit CalHR's website, site usage is collected using JavaScript and cookies for the purpose of enhancing user experience. JavaScript will stop running once you leave or close your web browser, in addition you can also remove the cookies using the tools in your browser. Cookies generally contain user preferences (language or layout preference), location (IP address), session information (a system generated session id with the date and time), device information (browser type, operating system), web pages accessed, and forms interacted with (if you download one). Cookies do NOT include any personal identifiable information (PII) and are only active when you login to our site and are immediately discarded from our servers upon logout or when you are automatically logged out due to inactivity.

What We Do with Your Information

When we request personal information, we specify what it will be used for and under what legal authority we're requesting it. We will specify the purpose for the request at, or prior to, the time of collection in a privacy notice included on or with the form used to collect personal information. Any information we acquire, including information collected on our websites, depends on the limitations described in the Information Practices Act of 1977 (see Civil Code Section 1798 et seq.).

We will not disclose, make available, or otherwise use your personal information for purposes other than those specified, except with your consent or as authorized by law or regulation. We will not distribute or sell any of your electronically or non-electronically collected personal information to any third party, unless required by law.

Safeguarding Your Personal Information

We collect and maintain our electronic and paper files in a manner that protects against loss or unauthorized access, use, modification, or disclosure. We use security technologies to protect all forms of your information on our website from unauthorized viewing or corruption, by either internal or external sources. Moreover, we educate our employees on the importance of protecting your privacy and personal information, and by limiting access to only those employees who have a business need to use your information.

Our website conveniently provides links to other websites, primarily other departments within the State of California. However, there are some applications hosted by third-party services, such as the Savings Plus Program, which we utilize to provide certain services.

Retention of Information

We keep your personal information for as long as necessary to fulfill our business needs in conjunction with the records retention schedule by the Secretary of State unless we are required to keep it longer by statute or official policy.

Access to Your Personal Information

You have the right to review the records you provided to CalHR and to request corrections of any inaccuracies in your records. To request access to your records, report any inaccuracies, provide comments, or file complaints related to your privacy rights, please contact CalHR's Privacy Officer in writing at Privacy.Officer@CalHR.ca.gov or by mail at:

Department of Human Resources (or CalHR)
Information Security Office
1515 S St. Suite 400N
Sacramento, CA 95811

The Privacy Officer is responsible for the overall implementation and enforcement of this privacy policy. Our privacy policy reflects CalHR's ongoing business practices and may undergo revisions without prior notice. Nevertheless, CalHR is committed to making official announcements regarding any changes, ensuring transparency, and keeping our stakeholders informed of updates to our policies.

Last Updated: 4/3/2024

Print version

Updated: 4/3/2024

Link Back to Top