Privacy Policy

Utah Department of Corrections

Website privacy statement

This privacy policy statement is provided by the Utah Department of Corrections (UDC) in compliance with Utah State Code Section 63D-2-103. UDC is committed to protecting individuals’ privacy and only collects what is needed to provide services. The statement below explains how UDC handles the personal identifiable information of those who visit this website. We want you to understand how your data may be collected, used and secured.

What information we collect and how we use your information

When users visit corrections.utah.gov, UDC collects basic information for analytical purposes to inform the agency what people are looking at and interacting with, for how long, and similar types of data points. This helps improve the speed and look of the site to better serve the public.

Disclosure practices

UDC cares about privacy and does not share private or identifying information with marketing companies. UDC will only collect personal identifiable information as required by the service being offered and any data provided will be classified as private under GRAMA. Additionally, personal information collected by UDC will be encrypted and kept in its records for five years as required by the Utah Division of Archives and Records Service retention schedule Visitor’s Files (GRS-2393). If a security breach occurs, UDC will notify you if your information was put at risk.

Access and Corrections

If you find any inaccuracies in the information contained herein, please reach out to UDC at [email protected], and Corrections staff will gladly help get that clarified or corrected.

Keeping your information secure

Data safety is a high priority. UDC has taken measures to protect it and is always looking to improve, where possible. Here are a few ways the agency ensures private data is kept safe:

  1. The Division of Technology Services (DTS) encrypts data when transmitted and stored;
  2. DTS maintains a state of good repair on information systems;
  3. DTS adheres to established retention requirements;
  4. Risk assessments are performed on information systems.

View the State of Utah's Privacy Policy here.