About This Policy
Data Controller or Data Processor
Allyable is the data controller for data described by this policy except as specified below, which means that Allyable determines the purposes and means of the processing of personal data.
Allyable is the data processor with respect to personal data submitted to and stored on the Allyable Services for hosting and processing purposes as further described below under Allyable Services-Customer Data.
Types of Information We Collect About You
Information you or your Institution may provide
Depending upon the Allyable Sites you are accessing or other method of contact, we may collect information such as:
- Contact details such as (for example) your full (i.e., first and last) name, organization affiliations, phone number, email address, and postal address;
- Usernames and passwords that may be used on some of the Allyable Sites;
- Comments, feedback, posts and other content you submit to the Allyable Sites;
- Information you provide to or post on message boards or chat rooms that are part of the Allyable Sites;
- Interests and communication preferences.
Information collected automaticA11y
As you navigate the Allyable Sites, Allyable may also automaticA11y collect information about you or your computer that does not directly identify you. This information may include IP address and device identifiers, information about your Internet connection and information about the equipment or software you use to access the Allyable Sites. Such information is only collected to the extent that it is necessary for us to provide services that you use, to optimize your user experience, and/or to make improvements to the Allyable Sites and service offerings. Allyable does not serve third party advertising.
You have the ability to choose to opt out of inclusion of your personal information at the point of disclosure. You may choose whether your personal information is (i) to be disclosed to a third party or (ii) to be used for a purpose that is materiA11y different from the purpose(s) for which it was originA11y collected or subsequently authorized by you. You may also opt out of use of your personal information as outlined below under Access, Correction, and Erasure.
How We Collect Information About You?
We collect information about you in three main ways:
- Information Directly Provided by You or Your Organization: We collect information about you when you register for services, sign up for email or text alerts, request products or services, respond to surveys, fill out registration forms on an Allyable Site or otherwise for events, register for or view webinars; create a profile, publicly post or share content, contact us, use social media connections, and/or otherwise interact with Allyable Sites. We may receive and store information provided by your organization to the extent required to perform a contracted service.
- Information Collected Through Third Parties: We may receive information about you from customers and business partners for referral and reference purposes.
Cookies and Similar Technologies
How We Use and Share Information About You?
Allyable uses the information we collect to perform the services requested, for the purposes of authorizing and processing transactions, authenticating users, customer service, customer support, and providing you with information concerning Allyable services. We will retain this information for as long as the customer account is active or as needed to provide the Allyable services, comply with our legal obligations, resolve disputes, and as needed to comply with or enforce our licenses and other agreements.
To be clear, we do not access or use Customer Data (as defined below) processed through the Allyable Services except for the purposes set forth in our agreement with the relevant customer. Please see below under Allyable Services-Customer Data.
Please keep in mind that any information you disclose publicly – either in a public profile or through message boards or other public areas – may be collected and used by others, may be indexable by search engines, and might not be able to be erased from public view to the extent they have been copied to external sites. Please be careful when disclosing personal information in these public areas.
The following is a list of instances where we may share your information with third parties:
- Institutions or Businesses. If you access a service through your affiliation with an institution or through your employer, your information and certain usage data gathered through the Allyable service may be shared with the institution or business for the purposes of usage analysis, access and license management, collection management, contract and regulatory compliance, and cost allocation.
- Message Boards and Other Public Areas: Information you post on message boards, chat rooms, or other public areas that are part of the Allyable Sites is public and will not be kept private. Should you wish to remove your postings from message boards or other public areas, follow the instructions under the Access, Correction, and Erasuresection of this policy.
- Affiliates: To facilitate Allyable’ global operations, Allyable may share and transfer information we collect with its affiliates located in countries around the world. For example, Allyable may need to share such information with other companies within the Allyable corporate family for customer support, marketing, technical operations and account management purposes.
- Legal Reasons: We will disclose information to cooperate with law enforcement, government or regulatory bodies, content protection organizations, or judicial processes as required by the applicable laws and regulations. We may also use or disclose information to enforce or protect the rights or safety of Allyable Services users, us, or others. We will provide notice to individuals prior to such disclosures, to the extent it is practicable to do so and allowed by law.
Allyable takes commerciA11y reasonable security measures to protect against unauthorized access to, or unauthorized alteration, disclosure or destruction of, data that you share and that we collect and store. These security measures may include practices such as keeping your data on a secured server behind a firewall, internal reviews of our data collection practices and platforms, industry-standard encryption technologies, and physical security measures to guard against unauthorized access to systems where we store your information.
If you have reason to believe that a third-party has gained unauthorized access to your information, please contact us immediately at email@example.com. If Allyable becomes aware of any data breach, we will notify affected individuals or, with respect to Allyable Services, affected organizations as soon as reasonably possible.
Your Rights and Choices
Communication Preferences and Opt-outs
If you have subscribed to one or more of our email newsletters or are receiving marketing emails from us and you don’t want them anymore, you can unsubscribe. Follow the instructions contained in the email message to opt-out of receiving future messages of that type. However, you cannot unsubscribe from some service related messages so long as you maintain an account with Allyable.
Access, Correction, and Erasure
Postings from message boards or other public areas, may be deleted by using the tools provided when you are logged-in to the particular service; or you may contact Allyable at firstname.lastname@example.org with the details and location of the content (such as a direct link to the information), and Allyable will make commerciA11y reasonable efforts to remove the content.
You may request to review, correct or delete the personal information that you have previously provided to us through the Allyable Sites. For requests to access, correct or delete your personal information, please send your request along with any details you may have regarding the method by which the information was submitted to email@example.com. Requests to access, change, or delete your information will be addressed within a reasonable timeframe.
To help protect your privacy and security, we will take reasonable steps to verify your identity, such as requiring a password, user ID, or other verification before granting access to or removing your information.
Please note that where we are acting as a processor of personal data for our customer, we may first refer your request to the customer that submitted your personal data, and we will assist our customer as needed in responding to your request, as further described below under Allyable Services-Customer Data.
Please contact firstname.lastname@example.org for more information about exercising these rights.
Data Retention and Deletion
If you request to delete your personal information, we will endeavor to fulfill your request but some personal information may persist in backup copies for a certain period of time and may be retained as necessary for legitimate business purposes or to comply with our legal obligations.
Allyable may retain your information for a period of time consistent with the original purpose of collection, and for a reasonable time thereafter in accordance with applicable law. We also may retain your information during the period of time needed for Allyable to conduct audits, comply with our legal obligations, resolve disputes and enforce our agreements.
We do not market to nor intentionA11y collect any personA11y identifiable information from children under thirteen (13) years of age. Please contact email@example.com if you are aware of any personal information supplied to one of Allyable Sites by a child under the age of thirteen (13).
Links to Other Services and Websites
The Allyable Sites may contain links to information created and/or maintained on third-party websites. The third-party website will be displayed in a new browser window and the user will no longer be in the Allyable environment. When users select a link to an outside website, they are leaving the Allyable Site and are subject to the privacy and security policies of the owners of the third-party website. We are not responsible for, and we do not endorse or control, the policies or practices of any such website or services.
Allyable Services – Customer Data
Allyable will not use or share any such Customer Data except as provided in its agreements with such customers, or as may be required by law. In accordance with such agreements, Allyable may access, transfer and process Customer Data only for the purpose of providing the Allyable Services, preventing or addressing service or technical problems or other purposes as set forth in such agreements or required by law.
Allyable acknowledges that you have the right to access, correct, amend and delete your personal information. If personal information pertaining to you as an individual has been submitted to us by a Allyable customer and you wish to exercise any rights you may have to access, correct, amend, or delete such data, please inquire with our customer directly. Because Allyable is subject to our agreements with customers (as the data controller) with respect to your personal information stored on the Allyable Services, if you wish to make your request directly to Allyable, please provide the name of the Allyable customer who submitted your data to the Allyable Services. We will refer your request to that customer, and will support the customer as needed in responding to your request within a reasonable time frame.
Last Updated: October, 2019.