Arc users own the data they enter, load, or share with Arc. They can remove these data from Arc at any time.
Arc owns all derivative information, including scores, metrics, and the algorithms used to compute them. Users are granted a license to use this information.
Arc reserves the right to analyze user data and use it in anonymous and/or aggregated forms for business purposes.
Arc will not provide access to uniquely identifiable data, scores, or other project information without authorization from the project administrator. Exception: Arc makes overall and category scores publicly available for the Top 5 highest scoring non-confidential projects in the system. Users can mark their projects as confidential to prevent the display of this information.
Where is it hosted?
Arc data is hosted by Amazon Web Services—an Internet infrastructure composed of servers, storage, and related facilities.
The physical location of data contributed to the Arc platform varies, and information about specific circumstances is available upon request.
How is data secured?
Arc data access is limited to authorized project team members.
Project team membership is controlled by the project administrator.
Arc users are responsible for securing their credentials and taking reasonable steps to avoid unauthorized access.
Arc is designed and operated to provide multiple layers of protection for user data.
Arc administration requires the use of a virtual private network (VPN), and services are not exposed externally.
EU General Data Protection Regulation (GDPR)
USGBC and GBCI have developed an enterprise-wide policy to ensure GDPR compliance. This policy applies to Arc. Learn more.
Arc transportation and occupant satisfaction survey data are anonymous, and responses are not associated with individually identifiable information.