Information We Collect Directly From Users
We collect Personal Data from Users in a variety of ways, including, but not limited to, when Users visit our Site, register on the Site, use our Services, subscribe to a newsletter, respond to a survey, fill out a form, register for an AACSB event, communicate with us, or use any of the resources or features we make available on our Site or at an event. Depending upon the request or activity, we will ask the User to provide: name; organization name; job title; business contact information including e-mail address, mailing address, phone number. Users can always refuse to supply Personal Data; however, that may prevent them from engaging in certain Site or Service activities. You may also voluntarily submit Personal Data to us, for example by filling out a survey about your user experience with our Services or responding to a request for information about Services that may be of interest to you.
Information We Collect Automatically
From our Members and Other Sources
We may obtain Personal Data about you from third parties, including the following sources:
We may combine this third-party information with other information we have collected from and about you and use your Personal Data in furtherance of our legitimate interest in: conducting and enhancing the AACSB International accreditation processes; maintaining accurate and current records; identifying potential new members and users of our Services; improving our Services and developing new Services; and communicating with academic, business, and individual Users who may be interested in our Services.
AACSB International may use your Personal Data in any of the following ways:
We process your Personal Data to perform our contract with you or your organization for the use of our Services, where applicable; to pursue our legitimate interest to operate and administer our Services; to provide you with the content you access and request; and to provide the functionality required to make our Site and Services available.
We collect and organize data from Users and make this data available for end users’ internal business purposes (the “Business Contact Database”).
We process your Personal Data by tracking use of our Site and Services, creating aggregated, non-personal data, verifying accounts and activity, investigating suspicious activity and enforcing our terms and policies, to the extent this is necessary for our legitimate interest in promoting the safety and security of the Services, systems and applications and in protecting our rights and the rights of others.
If you register for an account with us, we process your Personal Data by managing your User account for the purpose of performing our contract with you according to the terms of service.
We process your Personal Data to plan and host events for which you register, including sending related communications to you.
For Services that require payment, our authorized third-party service provider processes the financial information you provide to complete and perform our contract with you.
[Insert re use of PD for research, nature of research, whether data is anonymized.]
We may process your Personal Data to meet our legal obligations under applicable laws including disclosure of Personal Data to government authorities, courts or regulators to protect our rights or is necessary for our legitimate interest in protecting against misuse or abuse of our Site and Services, to protect personal property or safety, to pursue remedies available to us and limit our damages, and to respond to lawful requests.
Cookies are small files that a Site or our authorized service provider transfers to a Users' hard drive through a web browser (if you so allow). Some cookies are necessary for the Site to function properly and expire when you terminate the session and close your browser. Other cookies and similar technologies retain certain Personal Data unless you take steps to restrict their use. This information may include IP address (or proxy server), device and application identification numbers, location, browser type, Internet service provider and/or mobile carrier, the pages and files viewed, searches, operating system and system configuration information and date/time stamps associated with your usage. This information is used to analyze overall trends, to help us provide and improve our site and to protect Site security and functioning. This information can be controlled by you with your personal browser settings and our Cookie setting pop-up.
You may encounter cookies or pixel tags on Sites that we do not control. For example, if you view a web page created by a third party or use an application developed by a third party, there may be a cookie or pixel tag placed by the web page or application. Likewise, these third parties may place cookies or pixel tags that are not subject to our control and this Policy does not cover their use.
Most web browsers automatically accept cookies, but if you prefer, you can edit your browser options to block them in the future. The Help portion of the toolbar on most browsers will tell you how to prevent your computer from accepting new cookies, how to have the browser notify you when you receive a new cookie, or how to disable cookies altogether. Visitors to our Site who disable cookies will be able to browse certain areas of the Site, but some features may not function.
Update Your Cookie Settings
We may use trusted third-party service providers to assist AACSB International in operating its Sites, conducting business, or servicing members and users, so long as these parties agree to keep all information confidential. AACSB International,, may also share user information with these third parties when it believes the release is appropriate to comply with the law (e.g. we have received a subpoena) or we otherwise believe that the law requires us to do so, enforce its Site(s) policies, or protect its or other rights, property, or safety. However, anonymized visitor information may be provided to other parties for marketing, advertising, research, or other uses.
When users register for an event, their information, including full name, title, organization, telephone number, and email address may be distributed to other attendees to facilitate networking. Upon request, event sponsors and exhibitors are provided with an event attendee roster, limited to event attendees’ full name and institution. Event exhibitors and sponsors may also request a one-time mailing list of event attendees, limited to postal addresses only.
Occasionally, at AACSB International's discretion, third party products or services may be offered via its Sites (e.g., digital banner advertisements from paid advertisers). These third-party Sites have separate and independent privacy policies. AACSB International, therefore, has no responsibility or liability for the content and activities of these linked Sites. Nonetheless, AACSB International seeks to protect the integrity of its Site(s) and welcomes any and all feedback about these linked Sites.
Because AACSB International values its users' privacy, it has taken necessary precautions to be in compliance with the California Online Privacy Protection Act.
As part of the California Online Privacy Protection Act, all users of AACSB International's Sites may make any changes to their information at any time by logging into their "myAACSB" account and going into the 'My Profile' page. Organizational profiles cannot be changed by users. Individual profiles may be changed by the authorized user.
AACSB International does not knowingly collect any information from anyone under 16 years of age. If you are a parent or guardian and believe your child has provided us with Personal Data without your consent, please contact us by using the information in the "Contacting AACSB International" section, below, and we will take steps to delete such Personal Data from our systems..
AACSB International will keep Personal Data for the period of time appropriate to fulfill the purposes for which the Personal Data were processed including our legitimate interest in maintaining business records, fulfill a contract, or comply with a legal obligation. AACSB International has data retention policies and will endeavor to delete, purge or anonymize Personal Data when it is no longer deemed required.
Safeguards in Place to Protect Personal Data
AACSB International employs a variety of technical and organizational measures for protecting and safeguarding Personal Data within its control, including using established minimum-security measures that are taken for protecting the confidentiality and security of data held. AACSB International extends such standards to service providers it uses to process Personal Data. Controls in place to protect Personal Data include, for example: physical access controls to AACSB International premises and data; logical access controls to ensure only appropriate access to company systems and data from authorized individuals; transfer controls used to protect data during electronic transmission; availability controls to ensure data stored is protected against loss or destruction
Review the Agreements and Policies
The data protection laws of different countries and jurisdictions differ significantly as to what categories of Personal Data are protected and how they are protected. If your Personal Data is transferred out of the jurisdiction where you reside, such as to AACSB International’s affiliates or business partners in other countries, including in the United States, different standards may govern what rights you have in those countries relating to your Personal Data. AACSB International takes reasonable precautions, in accordance with applicable legal requirements and in light of the nature, scope, context and purposes of its processing activities, to protect your Personal Data irrespective of the country in which it is processed. These precautions may include, where appropriate, contract clauses with third party providers or other compliance mechanisms
EEA Users--Your Rights Relating to Personal Data
The following is a brief and partial list of some of the rights and protections that may be available to Users in the European Economic Area (“EEA”). Detailed information is available at: https://ec.europa.eu/. Please note that exercise of these rights is subject to specific conditions and limitations and we may take steps to confirm your identity before acting on your request:
If you request AACSB International shall provide you, the data subject, with a response to any such request(s) without undue delay and in any event within one month of receipt of the request. That period may be extended by two further months where necessary, taking into account the complexity and number of request(s). AACSB International shall inform you, the data subject, of any such extension within one month of receipt of the request, together with the reason(s) for the delay. Where you, the data subject, make the request by electronic form means, the information shall be provided by electronic means where possible, unless otherwise requested by you by written documentation.
If, after evaluating the legitimacy of the request, AACSB International does not take action on your request, AACSB International shall inform you without delay and at the latest within one month of receipt of the request of the reasons for not taking action and on the possibility of lodging a complaint with a local data protection authority and seeking a judicial remedy. A listing of the European Data Protection Authorities can be found here.
Questions and Requests about Personal Data.
We encourage you to contact us directly to update your Personal Data, make another type of request regarding the Personal Data you know or believe AACSB International holds as the controller. We will respond to requests subject to EEA data protection laws as described in the section titled “EEA Users--Your Rights Relating to Personal Data.” We will make a prompt and reasonable effort to honor other requests, consistent with applicable legal obligations. To protect your privacy and security, we may need to take steps to verify your identity before taking action on your request. If you are the authorized user of a member organization, you may be able to update your User or organization settings and event registrations by logging into your account and editing these items directly. For any DSAR requests, please visit our DSAR Portal here:
Data Subject Access Request
777 South Harbour Island Boulevard
Tampa, Florida 33602
+1 813 769 6500 USA
If we fail to respond to your complaint within a reasonable period of receiving it in writing, or if you are dissatisfied with the response that you receive from us, you may lodge a complaint with the data protection authorities in your home country.