Effective: December 7, 2015
What Information About Me Is Collected and Stored?
We collect two basic types of information from you in conjunction with your use of the Sites: personally identifiable information and non-personally identifiable information. Personally identifiable information is any information that can individually identify you and includes information such as your name, e-mail address, telephone number, and postal address. Non-personally identifiable information includes information that does not personally identify you, but it may be linkable to you. Examples of non-personally identifiable information include device identifiers, IP addresses, demographic information and general location information. If non-personally identifiable information is directly linked to personally identifiable information, it will be considered personally identifiable information while it is linked. Aggregate and de-identified information is not considered personally identifiable information.
Personally Identifiable Information
As a general matter, you can browse the Sites without submitting your personally identifiable information to us. However, there are a number of circumstances in which you may supply us with your personally identifiable information, such as when you:
- Sign up to receive e-mail newsletters or email alerts from us;
- Submit a donation commitment;
- Participate on social media accounts involving HMRI; and
- Knowingly volunteer personally identifiable information anywhere on the Sites.
Collection of Personally Identifiable Information From or Through Social Media Sites
When you interact with any HMRI page or account on a social media platform, such as Facebook, Twitter, or LinkedIn, we may collect the personally identifiable information that you make available to us on that page or account including your account ID or “handle.” If you chose to access our Sites through a social media site, HMRI and that service may share certain information about you and your activities. With your permission, we also may share information about your activities, including what you view on the Sites, with that social network and its users.
Non-Personally Identifiable Information
As stated above, when you interact with the Sites, we may collect non-personally identifiable information, that is information that does not individually identify you. Generally, we collect and store the following categories of non-personally identifiable information:
- Demographic data such as age, gender, and five digit zip code;
- Device information about your computer, mobile device, or other device that you use to access the Sites, such as IP address, unique device identifiers, browser type, browser language, and other transactional information;
- Usage information about your use of the Sites, such as a history of the pages you view or other information used to customize the Sites;
- Additional “traffic data” such as time of access, date of access, software crash reports, session identification number, access times, and referring website addresses; and
- Aggregate data regarding the use of the Sites.
Most web browsers automatically accept cookies, but, if you prefer, you can usually modify your browser setting to disable or reject cookies. If you delete your cookies or if you set your web browser to decline cookies, some features of the Sites may not work or may not work as designed. For more information on cookies and how to disable them, you can consult the information provided by the Interactive Advertising Bureau at www.allaboutcookies.org.
Some content or applications on the Sites are served by unaffiliated third parties. We do not control these third parties’ tracking technologies or how they may be used. If you have any questions about third party content or applications, or about an advertiser’s privacy practices, you should contact such party directly.
The Sites are not intended for children under 13 years of age. Unless otherwise disclosed during collection and with parent or guardian consent, HMRI does not knowingly collect personal information from children under 13 years of age. If you are under 13 years of age, do not provide personal information to HMRI. If HMRI discovers that a child under the age of 13 has provided HMRI with personal information and we do not have parental consent, HMRI will promptly delete that child’s information from the Sites.
How Do We Use Your Information?
We use the information we learn from you to help us personalize and continually improve your experience on the Sites. We may use your personally and non-personally identifiable information in the following ways:
We may use the information to:
- Provide you with the content, products and services you request,
- Communicate with you about your account or transactions with us, including donation commitments, and send you information about features and enhancements on or to our Sites,
- Communicate with you about changes to our policies,
- Communicate with you about your comment to a story or topic,
- Send you newsletters or other educational materials,
- Send you offers, promotions, or other communications about our products and services, including our research activity, or fundraising or promotional events, including services, events, or research that we collaborate or co-offer with a third party,
- Detect, investigate, and prevent activities that may violate our policies or be illegal,
- Optimize or improve our products, services and operations, or
- Perform statistical, demographic, and marketing analyses of users of the Sites and their viewing patterns.
Combination of Your Information
We may combine information gathered from multiple portions of the Sites into a single record. We may also use and/or combine information that we collect offline or that we collect or receive from third party sources to enhance, expand, and check the accuracy of our records. If we combine information collected from the Sites with information subject to additional restrictions on use or disclosure, such as information protected under the Health Insurance Portability and Accountability Act, as amended, including implementing regulations (collectively, “HIPAA”), we will apply the more restrictive rules to the combined information.
Who Do We Provide Your Information To?
Non-personally identifiable information collected on the Sites may be disclosed in any manner that we deem appropriate. Among other things, we will disclose non-personally identifiable information to third parties to help us determine how people use parts of the Sites and who our users are so we can improve our Sites. We will also disclose non-personally identifiable information to our partners and other third parties about how our users collectively use the Sites.
Third-Party Service Providers
We have third party service providers, agents, affiliates and partners that may perform functions on our behalf, including, but not limited to, payment processing, hosting, content syndication, content management tools, social media integration, marketing, analytics, customer service, and fraud protection. These entities may have access to personally identifiable information if needed to perform their functions. If such access is required, the third parties will be contractually obligated to maintain the confidentiality and security of that personally identifiable information.
Law Enforcement, Legal Process, and Emergency Situations
We may use or disclose personally identifiable information if required to do so by law or in the good-faith belief that such action is necessary to (a) conform to applicable law or comply with legal process served on us or the Sites; (b) protect and defend our rights or property, the Sites, or our users, and (c) act to protect the personal safety of us, our agents, service providers, affiliates, and partners, users of the Sites, or the public.
What Steps Are Taken to Keep Personally Identifiable Information Secure?
We are concerned about ensuring the security of your personally identifiable information and take certain security measures to protect such information. Please understand, however, that while we try our best to safeguard your personally identifiable information once we receive it, no transmission of data over the Internet or any other public network can be guaranteed to be 100% secure.
You need to help protect the privacy of your own information. You must take precautions to protect the security of any personally identifiable information that you may transmit over any public or untrusted network by using encryption and other techniques to prevent unauthorized persons from intercepting or receiving any of your personally identifiable information. You are responsible for the security of your information when using unencrypted, open access, public or otherwise unsecured networks.
Notice to Non-US Users
Accessing and Correcting Your Information
You may send an email to firstname.lastname@example.org to request the correction or deletion any personally identifiable information that you have provided to us. You will not be permitted to examine the personally identifiable information of any other person or entity and may be required to provide us with personally identifiable information to verify your identity prior to accessing any records containing information about you. We may not accommodate a request to change or delete personally identifiable information if we believe doing so would violate any law or legal requirement, or cause the information to be incorrect. Deleting your personally identifiable information may cause us to no longer be able to provide you with requested services or products, such as our newsletter, or to process donation commitments.