ChildPlus Security & Privacy Statement
ChildPlus Software is committed to protecting the privacy and confidentiality of all the information (all of which is collectively referred to, for purposes of this Privacy Statement, as Personally Identifiable Information (“PII”)) collected by our agencies and transmitted to and maintained by ChildPlus. ChildPlus’ policies and procedures meet or exceed the physical and electronic security measures required by applicable federal and state regulatory guidelines for the use, storage and/or transmission of PII. ChildPlus uses state-of-the-art electronic and physical security measures and has established stringent administrative security procedures to protect personal information from unauthorized access, improper use, alteration and unlawful or accidental destruction. ChildPlus has established privacy and security policies and procedures to ensure that we adhere to all application applicable laws.
Data Security
ChildPlus follows and is committed to the following privacy guidelines:
- ChildPlus will use appropriate controls to ensure that agency data is kept secure, and is only viewed or used by the proper personnel.
- ChildPlus will comply with applicable laws, regulations, and industry standards when protecting user information.
- ChildPlus will hold our employees, vendors, and contractors accountable to meet this same set of privacy guidelines.
At ChildPlus, we see data security as the foundation for protecting PII and we ensure that the data collected by our agencies from families participating in their programs is secure using:
SSL Encryption – ChildPlus uses the Secure Socket Layer protocol (SSL) to encrypt all communication of agency data between our agencies and our data center. All exchanges of data with our data center are encrypted with 128-bit SSL Encryption to ensure the confidentiality and integrity of data in motion.
Additionally, all portable media, including backup-up media, containing PII are encrypted to protect data at rest.
Firewall – ChildPlus uses firewall technology to protect all servers and databases from unauthorized access. All critical systems are monitored 24 hours a day, 7 days a week.
State of the Art Data Center – All PII maintained by ChildPlus is stored on servers located within a Rackspace Hosting data center and managed by Rackspace Hosting. Physical access to our servers is controlled by keycard protocols, biometric scanning protocols and round-the-clock interior and exterior surveillance.
Password and ID Protections – ChildPlus provides their agencies with access controls via login authentication. Agencies assign unique user names and passwords to authorized personnel and the login process regulates who can gain access and limits the scope of their access. Agencies control when access is granted or terminated and what data can be accessed by each employee of the agency.
Limitation of Uses – ChildPlus only receives, utilizes and discloses private information submitted to ChildPlus from its agencies and for the limited purposes set forth in its agreements with each agency.
How is Information Shared?
We do NOT sell, trade, or otherwise transfer to outside parties PII of yours, your agency, or the children and families you serve. This does not include trusted third parties who assist us in servicing you, so long as those parties agree to keep this information confidential.
PII & Agency Responsibilities
We recognize the particular importance of protecting privacy where children are involved. We are committed to protecting children’s privacy.
ChildPlus takes great care in protecting the privacy and security of data collected by our agencies. This Privacy Policy describes our practices in connection with information that we collect through the use of this solution developed by ChildPlus.
Authorized Users – Each agency is expected to establish and maintain ChildPlus user access for its employees, in accordance with the agency’s policies and applicable laws. It is the agency’s responsibility to remove or modify access for employees as their roles or employment change over time.
Data Submission and Revision Obligations – ChildPlus relies solely on the agency to provide accurate and up-to-date data. Once received by ChildPlus, we will safeguard and ensure that the integrity and security of the data is maintained in accordance with the policies summarized herein.
Agencies control what information is entered into ChildPlus and can choose to omit any information that is not necessary or applicable. Agencies must determine what is or is not appropriate for inclusion within ChildPlus, and whether additional consent is required from their participant families, in accordance with the purposes for which the agency is utilizing the data.
It is the agency’s responsibility to remove any PII from ChildPlus as may be necessary to comply with requests from their participant families for applicable law.
Retention and Disposal of Personally Identifiable Information – ChildPlus shall retain all private information submitted by agencies in accordance with written agency agreements. To the extent that data is destroyed, it is destroyed in accordance with applicable industry standards to protect identifiable data from loss, theft, misuse or unauthorized access.
Participant Family Access – ChildPlus is a software provider to our agency providing information technology services. ChildPlus does not grant participant families direct access to their personal information within ChildPlus. Should a participant family have questions or need access to their personal information, ChildPlus will ask the family to work with the agency to provide appropriate responses and access.
Collection of Agency Information – ChildPlus collects agency information based on our business relationship with our agencies, including contact information that allows us to communicate with our agencies. The Company does not collect or utilize any of the participant family information that is used by our agencies.
What information does ChildPlus collect?
| Data Collected Fields Related to Children | General Purpose of Data Collection |
| First Name | Required to create child record |
| Middle Name | Optional |
| Last Name | Required to create child record |
| Suffix | Optional |
| Nickname | Optional |
| Birthday | Required to create child record |
| Gender | Optional |
| Social Security Number | Optional |
| Race | Required by PIR |
| Hispanic/Latino | Required by PIR |
| English Proficiency | Optional |
| Other Language** | Optional |
| Other Language Proficiency | Optional |
| Primary Health Coverage | Required by PIR |
| Other Coverage | Optional |
| Insurance Number | Optional |
| Medicaid Eligibility | Optional |
| Medicaid Number | Optional |
| Doctor/Medical Home | Required by PIR |
| Dental Coverage | Optional |
| Dental Coverage Number | Optional |
| Dentist/Dental Home | Required by PIR |
| Does your child have a disability? | Optional, used to determine eligibility/serve 10% with disabilities. |
| Application Notes | Optional |
| Fields Related to the Family’s Address | |
| Is your family experiencing homelessness? | Used to determine program eligibility |
| Living Address | Used to determine program eligibility |
| Mailing Address same as Living Address | Optional |
| Mailing Address | Optional |
| Fields Related to Primary & Secondary Adults | |
| First Name | Required to create adult record |
| Middle Name | Optional |
| Last Name | Required to create adult record |
| Suffix | Optional |
| Nickname | Optional |
| Birthday | Required to create adult record |
| Gender | Optional |
| Social Security Number | Optional |
| Race | Required by PIR |
| Hispanic/Latino | Required by PIR |
| English Proficiency | Optional |
| Other Language | Optional |
| Other Language Proficiency | Optional |
| Highest Grade Completed | Required by PIR |
| Employment Status | Required by PIR |
| Child's Relationship | Required by PIR |
| Custody | Optional |
| Lives with Family | Optional |
| Provides Financial Support | Optional |
| Teen Parent | Optional |
| If Teen Parent, Subsidized? | Optional |
| Email Address | Optional |
| Fields Related to the Family | |
| Parental Status | Required by PIR, and used to determine program eligibility. |
| Primary Language at Home | Required by PIR |
| Number in Household | Optional |
| Number in Family | Used to determine poverty level |
| Gross Annual Income | Used to determine poverty level |
| Phone Numbers | Optional |
| Is your family receiving cash benefits or other services under the Temporary Assistance for Needy Families (TANF) program? | Required by PIR |
| Is your family receiving Supplemental Security Income (SSI)? | Required by PIR |
| Is your family receiving services from WIC? | Required by PIR |
| WIC ID | Optional |
| Is your family receiving services under the Supplemental Nutrition Assistance Program (SNAP), formerly referred to as Food Stamps? | Required by PIR |
| Is at least one parent/guardian an active duty member of the United States military? | Required by PIR |
| Is at least one parent/guardian a veteran of the United States military? | Required by PIR |
| Data Collected | General Purpose of Data Collection |
| Service Areas | Agency determines how much data they wish to track in each service area. |
| Enrollment | Required data by OHS to determine compliance with enrollment performance indicators. |
| Family Services | Optional, but includes Family Engagement, part of the PFCE framework as required by OHS. |
| Health | Includes required PIR questions. Up to agency the depth and breadth of data collection. |
| Immunizations | Immunization requirements vary by state. Includes required PIR questions. |
| Disability | Includes required PIR questions. |
| Mental Health | Includes required PIR questions. Up to agency the depth and breadth of data collection. |
| Birth | Optional |
| Transportation | Optional |
| Education | Optional |
| Fees | Optional |
| Attendance | Required for enrollment performance indicators. |
| PIR | Required data by OHS is collected from other service areas on a single screen for each child. |
| Management | |
| Personnel | Optional |
| Professional Development | Optional |
| Community Resources | Optional |
| In-Kind | Optional, but recommended to help ensure agency has met required federal share contributions. |
| PIR | Required data by Head Start; may be exported and uploaded to HSES. |
| Internal Monitoring | Optional, but recommended to help meet required protocols set forth in DRS. |
| Fees | Optional |
| CLASS© | Optional, but recommended to help meet required performance standards. |
Personnel Training & Compliance Enforcement
ChildPlus requires training of all staff with regard to ChildPlus Privacy and Security Policies and Procedures. Employees are trained to recognize security concerns and report those immediately to ChildPlus management. ChildPlus limits PII access to only those employees who need access in order to perform their duties at ChildPlus.
Disclaimer of Liability
The information contained herein reflects the Security and Privacy policy and practices that ChildPlus has adopted for the Software. In legal terms, it shall not be construed as a contractual promise, and ChildPlus reserves the right to amend it at any time simply by posting such amendment on the Site. Any such amendment will become effective immediately upon posting on the Site. Neither ChildPlus nor any of its affiliates, employees, or contractors shall be held liable for any improper or incorrect use of the information described and/or contained in the Application or Site and assumes no responsibility for anyone’s use of the information.
Your Consent & Changes to our Privacy Policy
If we decide to change our privacy policy, we will post those changes on this page, and/or update the Privacy Policy modification date below.
Questions/Reporting of Concerns
Specific questions about ChildPlus Privacy and Security Policies and Procedures can be directed to your sales admin team at salesadmin@childplus.com.
This policy was last modified on March 19, 2024.