General Data Protection Regulation (GDPR)

As an entity that provides services to learners around the world, CITI Program is committed to compliance with all applicable legal-regulatory standards for data protection.

This includes those from the U.S., where CITI Program is based, such as the Family Educational Rights and Privacy Act (FERPA); and those from outside the U.S., such as the General Data Protection Regulation (GDPR), which took effect on 25 May 2018 for E.U. countries. 

Depending on your location, we may provide you or your organization’s affiliated learners with additional functionality to access, download, or request deletion of your/their personal information under the requirements of the GDPR. Regardless of location, we do our best to honor customer preferences regarding data practices.

For more detailed information about CITI Program's data protection practices, see our Privacy Policy and Terms of Service

Contact Us

If you have questions or concerns about CITI Program's data protection practices, you can contact our Data Protection Officer (Privacy Officer) by sending email to


European Commission. 2018. Data Protection: Rules for the protection of personal data inside and outside the EU. Accessed 7 April

European Commission. 2018. 2018 Reform of EU data protection rules. Accessed 10 May.
Last Updated: 08-Jan-2019 8:12 p.m. EST
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
Invalid characters found