Privacy Notices

Privacy Notice for Personally Identifiable Information (PII)

The Salt Lake County Library (County Library) is committed to protecting the personal information we collect. This Privacy Notice is provided in accordance with Utah Code §63A-19, Government Data Privacy Act (GDPA) to inform you about how we collect, use, and protect your personal data when you interact with the County Library. It also describes how you can manage your personal data, and how to contact us with questions or concerns.

Data you provide to obtain a library card has special protections under Utah Law, which classifies library records as private when there is the potential that they would identify an individual Utah Code § 63G-2-301 (1)(c). This includes library books you check out, programs you register for, and any data the County Library stores on our computers.

Data We Collect

We request personally identifiable data from you to provide services. This includes:

  • Legal Name
  • Preferred Name
  • Approved ID information
  • Birthdate
  • Address (Street, City, State, Zip code, GIS data)
  • Email addresses
  • Phone numbers
  • Phone carrier for TXT messages
  • On juvenile records that are not student cards:
    • Parent/Guardian Name
    • Parent/Guardian Birthdate
    • Parent/Guardian approved ID form
  • Preferences:
    • Home library
    • Pin
    • Preference for receiving library notices (email, TXT, phone)

Additional PII we may collect

  • Demographic information
  • Payment information
  • Library usage transaction history including times and dates of usage
  • Video surveillance in library facilities
  • Photos and video recordings for historical and marketing purposes

Website usage

If you are providing your personal data through a County Library webpage, we may also collect information about you that is not personally identifiable. This includes:

  • IP addresses
  • Time and date of visit
  • Browser type
  • Equipment types
  • Geographic Location
  • Pages and screens views
  • Events
  • Traffic acquisition
  • Retention
  • Feedback regarding services, business process, website and customer support
  • Preferences
  • MAC address
  • Social media usernames

Purposes and Uses of Your Personal Data

The County Library uses data to ensure high-quality service delivery, support operational needs, and continually improve patron experiences across all platforms. In some cases, personal information also helps us meet legal, financial, and reporting obligations. In many instances, your data is only shared in aggregate, with personally identifiable information removed.

We use your non-aggregated personally identifiable information (PII) for the following purposes:

  • Account Management: Patron account data allows us to establish your identity and ensure secure access to services safeguarding your library usage.
  • Business & Financial Transactions: Data related to fines, fees, payments, and donations are necessary for financial accountability and auditing.
  • Communication & Notifications: Contact information and/or account preferences are used to communicate information concerning library business or respond to questions, customer service issues, and inquiries.
  • Collection Management: The library uses interlibrary loan requests, purchase requests, author submissions, and reconsideration requests to communicate with patrons.
  • Safety & Security: Data may be collected to help maintain a safe environment for all patrons and staff. This includes video surveillance in library facilities and monitoring of public computer use in accordance with library policies.
  • Security & Fraud Prevention: Protect library systems, digital services, and patron accounts from malicious activity, including analyzing real time for threat detection, IP Quality Score, and logs are retained only as needed for investigation and mitigation purposes.
  • Third-Party Integration & Access: Some services and digital content platforms require the library to share minimal user data to enable access. The library partners only with vendors that adhere to privacy standards.
  • Volunteer Coordination & Oversight: Personal information from volunteers is collected and used to manage the volunteer programs. This includes conducting background checks to ensure a safe environment for patrons and staff. Volunteer hours and assignments are tracked for administrative and reporting purposes.

Other reasons we may use your data:

  • Compliance & Reporting: Certain data must be collected for regulatory compliance, grant applications, and reporting to governing bodies.
  • Exhibits: Contact information is used to communicate information concerning exhibits at the library. The library may collect biographical data, references, and photo of the artist.
  • Grant Compliance & Funding Support: Support grant applications and fulfill grant reporting requirements.
  • Historical & Archival Purposes: Data is collected to preserve institutional history and support research on library usage over time.
  • IT System Backups & Data Recovery: Patron and operational data may be included in routine IT backups to ensure service continuity and protect against data loss due to technical failure, cyber incidents, or natural disasters. Backup data is stored securely and retained only as long as necessary for recovery purposes.
  • Marketing: Gathering and analyzing patron engagement, preferences, and behavioral trends to promote library services, programs, and resources effectively.
  • Optimizing Digital Services and Digital User Experience: Collecting web data helps the library understand how patrons interact with online resources, including the library website, digital catalogs, mobile app, and electronic services.
  • Prize Giveaways & Contests: To administer library-sponsored contests, drawings, or prize giveaways. This includes confirming eligibility, notifying winners, and distributing prizes. Participation in these programs is always voluntary.
  • Presenter Information: Personal information from program presenters is collected for administrative purposes, including contact, payment, and conducting background checks to ensure the safety of patrons and staff. Presenter performances may be evaluated through staff review and participant feedback to support quality programming.
  • Program Registration: Some programs require registration if capacity is limited or if there are safety concerns for certain ages. The library may ask if you would like to be added to mailing list(s) when you register.
  • Service Customization & Personalization: Information such as reading history, saved searches, and account preferences may be used with patron consent to offer personalized recommendations, reading lists, or services. These services are always voluntary.

We aggregate your data with the data of others for the following reasons.

You cannot be identified individually when data is aggregated.

  • Accessibility Services: Usage data from assistive technologies may be reviewed to improve accessibility support.
  • Collection Management: The library uses aggregated circulation data, interlibrary loan requests and purchase requests with PII removed, author submissions, and anonymized reconsideration requests to guide collection management.
  • Data Sharing for Research & Evaluation: In limited cases, anonymized or aggregated data may be shared with approved partners to support research, strategic planning, or evaluation efforts aligned with the library's mission.
  • Operational Efficiency: Data helps optimize library operations, including circulation, staffing, and resource allocation.
  • Program Evaluation & Development: Registration and attendance data, along with post-event feedback, help the library assess the success of programs and guide the development of future offerings.
  • Resource Planning & Budgeting: Data helps justify funding requests and allocate resources effectively based on actual usage trends.
  • Surveys & Suggestions: Data that is provided voluntarily through surveys or suggestion forms is analyzed to improve services and operations. We do not collect personal data in these instances.
  • Technology & Equipment Use Management: Usage data from technology is used to manage demand, support troubleshooting, and plan for future needs.
  • User Experience Improvement: Data is analyzed to identify barriers and opportunities for enhancing the patron experience across all services.

Sharing and Selling of Personal Data

The County Library does not sell any personal information to third parties. Personal data may be shared with library affiliates, subsidiaries, employees, contractors, or authorized agents solely for the purpose of delivering library services and support. The library may disclose personal information when required to do so by a valid court order. In accordance with state law, patron library usage records are classified as private and are not subject to public disclosure under the Government Records Access and Management Act (GRAMA).

Third-party Services

By using third-party services provided through the library, you acknowledge and consent to the sharing of necessary personally identifiable information with these providers to facilitate access. In accordance with Utah Code 63A-19-401.4, vendors who contract with the library agree to abide by state government data regulations. However, the library does not control how third parties handle your data, and we encourage you to review their privacy policies before use. We assume no responsibility for the independent policies, practices and terms of use of such linked platforms, websites and applications, and encourage you to become acquainted with them prior to use. You should contact these third-party directly if you have any questions about their use of the information that they collect.

Retention and Disposal of Personal Data

The County Library retains personal information only for as long as necessary to support the effective delivery of library services and programs used or anticipated to be used by the individual. Information may also be retained for a reasonable period thereafter or as required to meet legal, regulatory, or operational obligations. When personal information is no longer required, the library will securely dispose of or anonymize it in accordance with its data retention and privacy policies.

Record Series

The personal data collected is part of record series LL-022.

How we Protect Your Data

The County Library is committed to keeping secure the data you provide to us and we take reasonable precautions to protect your personally identifiable information from loss, misuse, or alteration. We use technical, administrative, and physical safeguards to ensure your personal data is protected from unauthorized access, use, or disclosure.

Your Rights

If you have submitted personally identifiable information to the County Library, under applicable privacy laws you have the following rights:

  • Access: Request a copy of the personal data we have about you.
  • Amend or Correct: Update or correct inaccurate data.
  • Refuse: You have the right to not provide data to us. See "Refusal to Provide Personal Data" below.
  • If you are an at-risk employee, request that your personal data be classified as a private record under Utah Code 63A-19-408(1). At-risk government employee means a current or former:
    • peace officer as specified in Section 53-13-102;
    • state or federal judge of an appellate, district, justice, or juvenile court, or court commissioner;
    • judge authorized by Title 39A, Chapter 5, Utah Code of Military Justice;
    • judge authorized by Armed Forces, Title 10, United States Code;
    • federal prosecutor;
    • prosecutor appointed pursuant to Armed Forces, Title 10, United States Code;
    • law enforcement official as defined in Section 53-5a-311;
    • prosecutor authorized by Title 39A, Chapter 5, Utah Code of Military Justice; or
    • state or local government employee who, because of the unique nature of the employee's regular work assignments or because of one or more recent credible threats directed to or against the employee, would be at immediate and substantial risk of physical harm if the employee's personal information is disclosed.

Accessing, Amending or Correcting Your Data

If you would like to view, amend, or correct personal data collected by the County Library, please visit any branch of the County Library to speak with a staff member, or visit our Customer Service page at https://www.slcolibrary.org/information/forms/contact-customer-service. You can also view your library account by visiting slcolibrary.org, and clicking on "Account".

Refusal to Provide Personal Data

If you choose not to provide the personal data requested, the services you can use are limited. Refusing to provide account information will restrict your ability to receive a full access library card, which is required for many library services, such as physical and digital check-outs, online services, certain programming events, reserving study and meeting rooms in advance, and reserving create services equipment in advance.

Many library services are available without obtaining a library card. You may use library materials in the library; use public PCs; use Wi-Fi within the library, attend most programming events, which do not require registration with a library card; use available study rooms when you visit the library if they are not reserved by someone else; and use Create space equipment if it is available.

Data Privacy Ombudsperson

You may contact Utah's Data Privacy Ombudsperson to file a complaint about a privacy practice of the County Library by using the following contact information: privacyombudsperson@utah.gov

Effective May 18, 2026, in accordance with Utah Code Title 63A, Chapter 19.

Website Privacy Notice

The Salt Lake County Library (County Library) is committed to protecting the privacy of individuals who access its website. In accordance with the Utah Code § 63A-19-402.5, Governmental Data Privacy Act, this website privacy notice explains how we collect, use, and protect your personal data when you visit the County Library's website.

Data you provide to obtain a library card has special protections under Utah Law, which classifies library records as private when there is the potential that they would identify an individual Utah Code § 63G-2-301 (1)(c). This includes library books you check out, programs you register for, and any data the County Library stores on our computers.

Government Website Operator

The County Library maintains and operates this website. The County Library may be contacted by:

What is Personal Data?

Personal data refers to any data that can directly or indirectly identify, relate to, describe, or be linked to an individual.

Personally Identifiable Information (PII) Data We Collect

The County Library's website uses website tracking technology to collect user data in order to provide certain requested services. The County Library uses personally identifiable Information solely for the purposes specified at the time of collection.

The user data that may be collected with your consent when you access this website includes:

  • Legal Name
  • Preferred Name
  • Approved ID information
  • Birthdate
  • Address (Street, City, State, Zip code, GIS data)
  • Email addresses
  • Phone numbers
  • Phone carrier for TXT messages
  • On juvenile records that are not student cards:
    • Parent/Guardian Name
    • Parent/Guardian Birthdate
    • Parent/Guardian approved ID form
  • Preferences:
    • Home library
    • Pin
    • Preference for receiving library notices (email, TXT, phone)

Other PII we may collect

  • Demographic information
  • Payment information
  • Library usage transaction history including times and dates of usage
  • Feedback regarding services, business process, website and customer support
  • Preferences
  • Video surveillance in library facilities
  • Photos and video recordings for historical and marketing purposes
  • MAC address
  • Social media usernames

Non-Personally Identifiable Data

The County Library may collect information about you that is not personally identifiable. Examples of this type of information includes:

  • IP address
  • Website pages visited
  • Google Analytics, Google Tag Manager, Google ReCAPTCHA, YouTube Analytics, and Cookies
  • Time of visit
  • Type of internet browser or computer operating system you are using
  • Domain name of the website from which you linked to our sites

Additionally, the County Library may store some information on your computer in the form of a "cookie", a data packet, usually stored as a combination of letters and numbers, which is used by your browser to identify you and keep track of your preferences. Most internet browsers give you the control to erase cookies from your computer hard drive, block all or limit cookies, or receive a warning before a cookie is stored. Refer to your browser instructions or help screen to learn more about these functions.

Purposes and Uses of Your Personal Data

The County Library collects user data to comply with legal and regulatory requirements and to provide services such as:

  • Analyze website usage to improve our online services
  • Provide location-based user information and services
  • Respond to inquiries and requests
  • Communicate updates and information about County Library services
  • Obtain customer feedback to improve the website
  • Optimize website speed, reliability, and overall performance ensuring website availability
  • Keep error logs and technical metrics
  • Detect and prevent malicious activity
  • Any other use necessary to the governmental duties of the County Library, including for law enforcement purposes.

Sharing and Selling of Personal Data

The County Library does not sell any personal information to third parties. Personal data may be shared with library affiliates, subsidiaries, employees, contractors, authorized agents, or other Salt Lake County departments solely for the purpose of delivering library or County services and support, as permitted by law. The library may disclose personal information when required to do so by a valid court order. In accordance with state law, patron library usage records are classified as private and are not subject to public disclosure under the Government Records Access and Management Act (GRAMA).

Third-party Services

The County Library links to various websites that are not under its control. The County Library is not responsible for the content or the privacy policies of websites to which it may provide links.

By using third-party services provided through the library, you acknowledge and consent to the sharing of necessary personally identifiable information with these providers to facilitate access. In accordance with Utah Code 63A-19-401.4, vendors who contract with the library agree to abide by state government data regulations.

However, the library does not control how third parties handle your data, and we encourage you to review their privacy policies before use. We assume no responsibility for the independent policies, practices and terms of use of such linked platforms, websites and applications, and encourage you to become acquainted with them prior to use. You should contact these third-party directly if you have any questions about their use of the information that they collect.

How Long We Keep Your Data

We retain personal data in accordance with the County Library retention schedule. The user data collected through this website is included in record series #LI-023.

Privacy Rights

By contacting the County Library you may:

  • seek access to your personal data or user data;
  • request to correct or amend your personal data or user data; and
  • if you are an at-risk employee, request that your personal data be classified as a private record under Utah Code 63A-19-408(1). At-risk government employee means a current or former:
    • peace officer as specified in Section 53-13-102;
    • state or federal judge of an appellate, district, justice, or juvenile court, or court commissioner;
    • judge authorized by Title 39A, Chapter 5, Utah Code of Military Justice;
    • judge authorized by Armed Forces, Title 10, United States Code;
    • federal prosecutor;
    • prosecutor appointed pursuant to Armed Forces, Title 10, United States Code;
    • law enforcement official as defined in Section 53-5a-311;
    • prosecutor authorized by Title 39A, Chapter 5, Utah Code of Military Justice; or
    • state or local government employee who, because of the unique nature of the employee's regular work assignments or because of one or more recent credible threats directed to or against the employee, would be at immediate and substantial risk of physical harm if the employee's personal information is disclosed.

Refusal to Provide Personal Data

If you choose not to provide personal data request; it may result in interruptions or limit the County Library's ability to provide services to you.

If you refuse to provide the required PII you cannot receive a full access card. Many library services require a full access library card—physical and digital circulation, online services, special programming events, reserving study and meeting rooms, reserving create services equipment. You will still have access to some library services without obtaining a library card like in-house material usage, public PCs, Wi-Fi access, attending programming events, same day study room usage, and same day create service equipment usage.

Data Privacy Complaints

If you are concerned about the data privacy practices of a governmental entity, you may submit a complaint to the Data Privacy Ombuds at https://privacy.utah.gov/submit-a-complaint/ or by sending an email to privacyombudsperson@utah.gov.

Effective May 18, 2026, in accordance with Utah Code Title 63A, Chapter 19.