Privacy statement

Together With Maximus Privacy Statement

Effective:

Our commitment to privacy

Thank you for visiting the Together With Maximus website (“Site”). This site is designed to provide information about the opportunities and benefits available to Maximus employees. This privacy statement governs your use of the Site. Please read it before you access and use the Site.

Privacy is a top priority at Maximus. We are committed to keeping your information secure and confidential. Maximus respects your privacy. This privacy statement shows our commitment to you.

This privacy statement applies to:

Information we collect about you
How we use and disclose the information we collect
Choices you have about how we collect and use your information

This privacy statement does not apply to:

Privacy practices for activities done outside your use of this Site
Websites other than this website
Applications other than this application
Products and services not available or enabled through the Site

Information we collect
How we use and share the information we collect
Information we keep
California Residents
Colorado Residents
Connecticut Residents
Utah Residents
Virginia Residents
Website privacy statement
Cookies, “Do Not Track” signals, and Adobe Analytics
Opt-out of cookies and Adobe Analytics
Do Not Track
Security
Children
Information disclaimer
Changes to this privacy statement
How to contact us

Information we collect <top of page>

You can use this Site without giving us personal information. If you want to Learn More About Maximus, we will ask you to provide personal information. Maximus does not collect any personal information about you through this Site unless you agree to give it.

When you ask to Learn More About Maximus, you are agreeing to give your personal information. We identify the data we need to be able to provide you with additional information. Maximus will ask you to give us:

First name
Last name
Email address
ZIP code

Maximus uses the data you voluntarily give, including personal information, to be able to provide you with additional information about Maximus.

Maximus has policies to protect the confidentiality of personal information that we get as we do business. Our privacy policies have standards to guard confidentiality, prohibit unlawful disclosure, and limit access to personal information such as Social Security numbers and Medicaid ID numbers. We use physical, technical, and administrative safeguards to protect personal information.

How we use and share the information we collect <top of page>

Except as stated below or as otherwise authorized by law, Maximus will only collect or disclose personal information through this Site if you agree to let us collect or disclose that personal information. Maximus may collect or disclose personal information without your agreement when we need to:

Perform our statutory duties as authorized by law or by state or federal statute or regulation
Comply with valid legal processes such as a search warrant, subpoena, or court order

Maximus may also disclose personal information to federal or state law enforcement authorities to enforce our rights against unauthorized access or attempted unauthorized access to Maximus information technology assets.

Maximus may disclose personal information to our agents, affiliates, and subcontractors so they can perform certain functions relating to your request for more information.

Maximus does not share your personal information with unaffiliated third parties. We may use your information to improve the Site’s content, navigation, and efficiency.

To make our Site better for you, we may use and share with others aggregated or anonymous (not personally identifiable) information that we collect from usage data, surveys, or statistical information we gather about our users.

California Residents <top of page>

This California Notice at Collection of Personal Information ("Notice at Collection") is part of our privacy statement. This Notice at Collection applies only to California residents. We adopt this Notice at Collection as required by the California Consumer Privacy Act of 2018 (CCPA), as amended by the California Privacy Rights Act of 2020 (CPRA), and other California privacy laws.

Categories of personal information we collect about you.

We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be directly or indirectly linked with a particular consumer or household (personal information).

Category: Examples

A: Identifiers: First and last name, address, email address, internet protocol (“IP”) address

B: Personal Information: First and last name, address, email address

F: Internet or other similar network activity: Internet protocol (“IP”) address, cookies, web beacons, clear gifts, browser type and version, time zone settings, operating system, and platform

G. Geolocation data: Physical location

Business reasons we collect personal information. We may use your personal information to:

Business Reason: Examples

Provider information to consumers:

Respond to your questions or requests for information.
Respond to your request to exercise your rights.

Support our everyday operations, including to meet risk, legal, and compliance requirement:

Perform accounting, monitoring, and reporting.
Manage privacy and information security activities.
Respond to law enforcement requests and as required by law, court order, and governmental regulations, and to exercise and defend legal claims.
Comply with Maxim.us policies and procedures.
As necessary or appropriate to protect the rights, property, or safety of Maximus or others.

Manage, improve, and develop our business:

Improve the content, navigation, and efficient of the website.
Evaluation or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information we hold is among the assets transferred.

We will only use your personal information for the reasons we collected it, including when we need to use it for a reason that fits the original purpose. If we need to use your personal information for an unrelated reason, we will let you know as required by law. We do not sell your personal information.

Sources of personal information we collect

We may get the categories of personal information listed above from these sources (not a complete list):

Provided directly by you, your representative, or a member of your household
- For example, you actively share personal information with us by use of our website

Collected from a device
- For example, you passively share personal information with us through technology, such as your internet protocol (IP) address by use of our website

Retention of personal information

We maintain record retention policies and procedures based on applicable law and business needs that determine how long we retain records, including those containing personal information.

Sale and sharing of personal information

In the last 12 months, we have not sold or shared any personal information subject to the CCPA as amended by the CPRA, including the personal information of consumers under 16 years old.

Your rights regarding your personal information

California residents have certain rights to manage their personal information. These rights are subject by law to certain limits. These rights may include:

Right to: Description

Know/Access: You have the right to know what personal information is being collected about you and for what purpose. You have the right to know what personal information is being “sold” or “shared” for what purpose and the categories of recipients of your personal information. You have the right to access your personal information.
Please note that you may only make a CCPA-related data access or data portability disclosure request twice within a 12-month period.

Correct: You have the right to have your personal information rectified, corrected, or updated.

Delete: Subject to certain exceptions, you have the right to delete your personal information from our records and to direct any service providers to delete your personal information from their records.

Data portability: You have the right to request that we respond to an access request in a readily usable format that allows you to transmit the information to another entity.

Please note that you may only make a CCPA-related data access or data portability disclosure request twice within a 12-month period.

Protection against discrimination: You have the right to not be discriminated against by us because you exercised any of your rights under the CCPA/CPRA.

How to exercise these rights

If you are a California consumer and want to exercise your rights, send your request using How to contact us below. To act on a request to know, delete, or correct, we need to verify your identity. Give us enough information to identify you, such as your:

Full name
Email address
ZIP Code
Date of last contact
Reason you gave Maximus the personal information

Do not give us your Social Security number.

How we respond to your request

No later than 10 business days after we get your request to delete, correct, or know, we will send you a confirmation. It will say we got your request. We will then respond to your request to delete, correct, or know no later than 45 calendar days after we get the request. If we cannot verify your identity in that time, we may deny your request. We will notify you during that time if we need more time (up to 45 calendar days) to respond to your request.

Some information is exempt from CCPA requests as amended by the CPRA. Information subject to certain federal privacy laws such as the Gramm-Leach-Bliley Act (GLBA) and the Health Insurance Portability and Accountability Act (HIPAA) are exempt from CCPA requests as amended by the CPRA.

Other laws may also affect our ability to comply with your request. State or federal laws requiring that we keep certain information may prevent us from granting your request to delete it. We may decline all or part of your request.

We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or clearly unfounded. If we find that your request requires a fee, we will tell you why. We will give you a cost estimate before we complete your request.

If you are a California resident and want to read about the CCPA as amended by the CPRA and other rights you may have under California law regarding your personal information, go to oag.ca.gov/privacy/privacy-laws.

Shine the Light

California Civil Code Section 1798.83 allows California residents to request certain information about its disclosure of personally identifiable information to third parties for their direct marketing purposes. To make such a request, use the contact information below.

Colorado Residents <top of page>

This notice only applies to persons who live in the State of Colorado (consumer, you, your). This notice is to comply with the Colorado Consumer Data Protection Act (CPA) and other Colorado privacy laws. Terms defined in the CPA have the same meaning in this notice.

Categories of personal data we process

We process the data categories below that are linked or could reasonably be linked to an identified or identifiable natural person (personal data):

Category: Examples

Personal data: Unique identifiers such as name, address, email address, and Internet Protocol (IP) address

Business reasons we collect personal information. We may use your personal information to:

Business Reason: Examples

Provider information to consumers

Respond to your questions or requests for information.
Respond to your request to exercise your rights.

Support our everyday operations, including to meet risk, legal, and compliance requirement

Perform accounting, monitoring, and reporting.
Manage privacy and information security activities.
Respond to law enforcement requests and as required by law, court order, and governmental regulations, and to exercise and defend legal claims.
Comply with Maxim.us policies and procedures.
As necessary or appropriate to protect the rights, property, or safety of Maximus or others.

Manage, improve, and develop our business

Improve the content, navigation, and efficient of the website.
Evaluation or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information we hold is among the assets transferred.

Your rights regarding your personal data

The CPA gives you these rights regarding your personal data:

Right to: Description

Access: Whether or not a controller is processing your data and to access your personal data

Correct: Inaccurate personal data, considering the nature of the personal data and the purposes for processing your data

Delete: Personal data you provide, or we get that is about you

Data portability: Get a copy of your personal data that you gave the controller in a portable and, to the extent technically feasible, readily usable format that allows you to transmit the data to another controller without obstruction, where processing is automated

How to exercise these rights

If you are a Colorado consumer and want to exercise your rights, send your request using How to contact us below. To act on a request to know, delete, or correct, we need to verify your identity. Give us enough information to identify you, such as your:

Full name
Email address
ZIP Code
Date of last contact
Reason you gave Maximus the personal information

Do not give us your Social Security number.

How we respond to your request

We will respond to your request without unreasonable delay. We will always respond no later than 45 calendar days after we get the request. If we cannot verify your identity in that time, we may deny your request. We will notify you during that time if we need more time (up to 45 calendar days) to respond to your request.

Some information is exempt from CPA. This includes employment information and information subject to certain federal privacy laws such as the Gramm-Leach-Bliley Act (GLBA) and the Health Insurance Portability and Accountability Act (HIPAA).

We will respond to your verifiable request free of charge once per year. We may charge a fee for additional requests. If we decide your request requires a fee, we will tell you why. We will give you a cost estimate before we complete your request.

How to appeal a decision on your consumer rights request

If we decide not to act on your request, we will explain why. You may appeal that decision using How to contact us below. Within 60 days of the date we get your appeal, we will tell you our appeal decision in writing. We will include the reasons for the decision.

If we deny your appeal, you may contact:

Office of the Attorney General
Colorado Department of Law
Ralph L. Carr Judicial Building
1300 Broadway, 10th Floor
Denver, CO 80203

Connecticut Residents <top of page>

This notice only applies to persons who live in the State of Connecticut (consumer, you, your). This notice is to comply with the Connecticut Consumer Data Privacy Act (CTDPA) and other Connecticut privacy laws. Terms defined in the CTDPA have the same meaning in this notice.

Categories of personal data we process

We process the data categories below that are linked or could reasonably be linked to an identified or identifiable natural person (personal data):

Category: Examples

Personal data: Unique identifiers such as name, address, email address, and Internet Protocol (IP) address

Business reasons we collect personal information. We may use your personal information to:

Business Reason: Examples

Provider information to consumers

Respond to your questions or requests for information.
Respond to your request to exercise your rights.

Support our everyday operations, including to meet risk, legal, and compliance requirement

Perform accounting, monitoring, and reporting.
Manage privacy and information security activities..
Respond to law enforcement requests and as required by law, court order, and governmental regulations, and to exercise and defend legal claims.
Comply with Maxim.us policies and procedures.
As necessary or appropriate to protect the rights, property, or safety of Maximus or others.

Manage, improve, and develop our business

Improve the content, navigation, and efficient of the website.
Evaluation or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information we hold is among the assets transferred.

Your rights regarding your personal data

The CTDPA gives you these rights regarding your personal data:

Right to: Description

Confirm: Whether or not a controller is processing your data and to access your personal data

Correct: Inaccurate personal data, considering the nature of the personal data and the purposes for processing your data

Delete: Personal data you provide, or we get that is about you

Opt-Out: Processing your personal data for purposes of (i) targeted advertising, (ii) sale of personal data, or (iii) profiling to further decisions that produce legal or similarly significant effects concerning you

How to exercise your consumer rights

How to make a request

If you are a Connecticut consumer and want to exercise your rights, send your request using How to contact us below. To act on your request, we must verify your identity. Give us enough information to identify you, such as your:

Name
Email address
ZIP code
Date of last contact
Reason you gave Maximus the personal data

Do not give us your Social Security number.

How we respond to your request

Some information is exempt from CTDPA. This includes employment information and information subject to certain federal privacy laws such as the Gramm-Leach-Bliley Act (GLBA) and the Health Insurance Portability and Accountability Act (HIPAA).

We will respond to your verifiable request free of charge once per year. We may deny your request or charge a reasonable fee for clearly unfounded, excessive, or repeated requests. If we decide your request requires a fee, we will tell you why. We will give you a cost estimate before we complete your request.

How to appeal a decision on your consumer rights request

If we deny your appeal, you may file a complaint with:

Office of the Attorney General
165 Capitol Avenue
Hartford, CT 06106

Utah Residents <top of page>

Utah consumers. This notice only applies to persons (Consumer, You, Your) who live in the state of Utah and explains the rights of Utah residents under the Utah Consumer Privacy Act (UCPA) and other Utah privacy laws. Terms defined in this notice have the same meaning as in the UCPA.

Categories of personal data we process

We process the data categories below that are linked or could reasonably be linked to an identified or identifiable natural person (personal data):

Category: Examples

Personal data: Unique identifiers such as name, address, email address, and Internet Protocol (IP) address

Business reasons we collect personal information. We may use your personal information to:

Business Reason: Examples

Provider information to consumers

Respond to your questions or requests for information.
Respond to your request to exercise your rights.

Support our everyday operations, including to meet risk, legal, and compliance requirement

Perform accounting, monitoring, and reporting.
Manage privacy and information security activities.
Respond to law enforcement requests and as required by law, court order, and governmental regulations, and to exercise and defend legal claims.
Comply with Maxim.us policies and procedures.
As necessary or appropriate to protect the rights, property, or safety of Maximus or others.

Manage, improve, and develop our business

Improve the content, navigation, and efficient of the website.
Evaluation or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information we hold is among the assets transferred.

Your rights regarding your personal data

The UCPA gives you these rights regarding your personal data:

Right to: Description

Know/Access: You have the right to confirm whether we process your personal data and to access that data.

Deletion: You have the right to delete personal data that you directly provided to us.

Data portability: You have the right to obtain a copy of your personal data that you gave us in a format that is portable and readily usable (to the extent technically feasible and practicable) and that allows you to transmit the data to another controller without obstruction, where processing is automated.

Opt-Out: You have the right to opt-out of the processing of your personal data for purposes of (i) targeted advertising, or (ii) the sale of personal data.

How to exercise your consumer rights

How to make a request

If you are a Utah consumer and want to exercise your rights, send your request using How to contact us below. To act on your request, you must provide us with enough information to identify you, such as:

Your full name
Email address
ZIP Code
Date of last contact
Reason you gave Maximus the personal data
Proof of your identity and address (e.g., a copy of a recent utility bill)
A description of what right you want to exercise and the information to which it relates

Do not give us your Social Security number.

We are not obligated to make a data access or data portability disclosure if we cannot verify that the person making the request is the person about whom we collected the information (or is someone authorized to act on such person’s behalf).

Personal information we collect from you to verify your identity in connection with your request will be used only for verification purposes.

How we respond to your request

We will respond to your request within 45 days. If we cannot verify your identity in that time, we may deny your request. We will notify you during that time if we need more time (up to 45 calendar days) to respond to your request.

Some information is exempt from UCPA. This includes employment information and information subject to certain federal privacy laws such as the Gramm-Leach-Bliley Act (GLBA) and the Health Insurance Portability and Accountability Act (HIPAA).

We will respond to your verifiable request free of charge once within a 12-month period. We may deny your request or charge a reasonable fee for clearly unfounded, excessive, or repeated requests. If we decide your request requires a fee, we will tell you why. We will give you a cost estimate before we complete your request.

Virginia Residents <top of page>

This notice only applies to persons who live in the Commonwealth of Virginia (consumer, you, your). This notice is to comply with the Virginia Consumer Data Protection Act (VCDPA) and other Virginia privacy laws. Terms defined in the VCDPA have the same meaning in this notice.

Categories of personal data we process

We process the data categories below that are linked or could reasonably be linked to an identified or identifiable natural person (personal data):

Category: Examples

Personal data / Unique identifiers such as name, address, email address, and Internet Protocol (IP) address

Business reasons we collect personal information. We may use your personal information to:

Business Reason: Examples

Provider information to consumers

Respond to your questions or requests for information.

Respond to your request to exercise your rights.

Support our everyday operations, including to meet risk, legal, and compliance requirement

Perform accounting, monitoring, and reporting.
Manage privacy and information security activities.
Respond to law enforcement requests and as required by law, court order, and governmental regulations, and to exercise and defend legal claims.

Comply with Maxim.us policies and procedures.
As necessary or appropriate to protect the rights, property, or safety of Maximus or others.

Manage, improve, and develop our business

Improve the content, navigation, and efficient of the website.
Evaluation or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information we hold is among the assets transferred.

Your rights regarding your personal data

The VCDPA gives you these rights regarding your personal data:

Right to: Description

Confirm: Whether or not a controller is processing your data and to access your personal data

Correct: Inaccurate personal data, considering the nature of the personal data and the purposes for processing your data

Delete: Personal data you provide, or we get that is about you

How to exercise your consumer rights

How to make a request

If you are a Virginia consumer and want to exercise your rights, send your request using How to contact us below. To act on your request, we must verify your identity. Give us enough information to identify you, such as your:

Name
Email address
ZIP code
Date of last contact
Reason you gave Maximus the personal data

Do not give us your Social Security number.

If you are a parent or legal guardian submitting a request for a minor child, please include your relationship to the minor child.

How we respond to your request

Some information is exempt from VCDPA. This includes employment information and information subject to certain federal privacy laws such as the Gramm-Leach-Bliley Act (GLBA) and the Health Insurance Portability and Accountability Act (HIPAA).

We will respond to your verifiable request free of charge up to twice a year. We may deny your request or charge a reasonable fee for clearly unfounded, excessive, or repeated requests. If we decide your request requires a fee, we will tell you why. We will give you a cost estimate before we complete your request.

How to appeal a decision on your consumer rights request

If we deny your appeal, you may:

File an online complaint with the Attorney General of the Commonwealth of Virginia at www.oag.state.va.us/consumercomplaintform/form/start or

Send a written complaint to:
Office of the Attorney General
202 North Ninth Street
Richmond, VA 23219

Information we keep <top of page>

Maximus keeps the information we collect through this Site, including personal information you voluntarily provide to us. We maintain record retention policies and procedures based on applicable law and business needs that determine how long we retain records, including those containing personal information. To learn more about the rules for keeping your information, please see How to contact us below.

Website privacy statement <top of page>

When you visit the Site, our web server automatically collects and logs web usage data and to tell us how visitors use and navigate the Site. The data includes:

Your Internet Protocol (IP) address
Referring sites
Pages viewed
Browser type
Operating system
CPU speed
Referring or exit web pages
Length of visit

Cookies, “Do Not Track” signals, and Adobe Analytics <top of page>

Like most websites, we use "cookies," "web beacons," and similar devices. They help you use the Site more efficiently. They also track your activities. A cookie is a small bit of data that a web server sends to your browser. Only the server that gave it to you can read it. It is your ID card for the Site. It lets Maximus record your activities and preferences. It cannot be used as code or send viruses. A web beacon is a small transparent gif image. It is embedded in an HTML page or email. It tracks when the page or email was viewed.

Maximus uses cookies and similar devices to track your use of the Site, products and services you view, and information you download. We count the number of visitors per day. Our web servers log your computer’s IP/Internet address. Maximus does not allow the use of persistent (saved) cookies. Please see the Cookie Policy for more information.

The Site uses Adobe Analytics. Adobe Analytics does not identify individual users. It does not link your IP address with any other data Adobe Analytics holds. Adobe Analytics reports help us understand Site traffic and webpage usage. You can read the Adobe Privacy Policy at the Adobe Privacy Center.

Opt-out of cookies and Adobe Analytics <top of page>

If you do not want your browser to accept cookies, you can change the cookie option in your browser settings. Some Site features or services may not work or be accessible without cookies. To learn more about Adobe Analytics tracking cookies, read Use of cookies and similar technologies. To learn about opting out, read Adobe Privacy Choices.

“Do Not Track” <top of page>

"Do Not Track" is a preference you can set in your web browser. It tells websites you visit that you do not want them to collect information about you. The Site does not respond to "Do Not Track" or such signals.

Security <top of page>

Maximus is strongly committed to protecting personal information collected through this Site. We protect against unauthorized access, use, or disclosure. Maximus limits employee access to personal information collected through this Site. Only those employees who need to access the Site to perform their official duties can access it. All employees follow rules for disclosing personal information.

Maximus uses technical security measures and procedures to protect the personal information we collect through the Site. We protect it from getting lost, misused, changed, or destroyed. We have Information Security and Privacy policies to protect data. We give our employees regular training on information security and privacy. Because the Internet is open and unsecured, Maximus cannot be responsible for the security of personal information sent over the Internet. We have a formal incident response plan in case of a data breach.

To protect your communications through the Site, we authenticate, monitor, audit, and encrypt activity. You can tell if a site is secure by looking at the location (URL) field. The content comes from a secure server if the URL starts with https:// instead of http ://. This means unauthorized persons cannot read or decipher your personally identifiable information. This is part of our commitment to protect your information. Despite our efforts, no security measures are completely secure. By using this system, you consent to monitoring and auditing.

Children <top of page>

Maximus is committed to complying fully with the Children's Online Privacy Protection Act. We do not direct this site to children. We do not knowingly collect personal information from children. Maximus appreciates your cooperation with this federally mandated requirement.

Information disclaimer <top of page>

Information on this Site is meant to give the public immediate access to public information. While we try to give accurate, current, and reliable information, Maximus understands that human and mechanical errors happen. Maximus and our employees, officers, and agents do not represent that information on this Site is accurate, complete, up to date, or suitable.

Changes to this privacy statement <top of page>

We update this privacy statement. When we do, we change the "Last updated" date at the top of the privacy statement. Check the Site for our latest privacy statement. When you use the Site after we change the “Last updated” date, it means you accept the changes.

How to contact us <top of page>

If you have questions or concerns about this privacy statement or if you would like to exercise your state consumer rights, contact us by:

Phone: 1-833-953-3696
Email: Privacy@maximus.com