CVRG Electrophysiology Data Repository Privacy Policy

From CVRG Wiki

Jump to: navigation, search

Contents

CVRG Electrophysiology Data Repository Privacy Policy

The Cardiovascular Research Grid ("CVRG") is committed to protecting the privacy of its user community. The intent of this privacy policy is to inform you of our policies and procedures regarding the collection, use and disclosure of the personal information we receive from users of the CVRG web site hosted at ceptools.cvrgrid.org (the "Site") and of the Electrophysiology Data Repository (the "Service") available through that Site.

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on the Site. We reserve the right to modify this Privacy Policy at any time, so please review it frequently. Unless otherwise defined in this Privacy Policy, terms used in this Privacy Policy have the same meanings as in our CVRG Electrophysiology Data Repository Terms of Use.

As used in this policy, the terms "using" and "processing" information include using cookies on a computer, subjecting the information to statistical or other analysis and using or handling information in any way, including without limitation collecting, storing, evaluating, modifying, deleting, using, combining, disclosing and transferring information within our organization or among our affiliates within the United States or internationally.

Information Collection and Use

Our primary goals in collecting information are to provide and improve the Service, the Site and the related features and content, to administer your account and to enable users to enjoy and easily navigate the Site. Below are the types and categories of information that we collect, and how we use it.

Log Data

When you visit the Site or use the Service, whether as a CVRG subscriber or a non-registered user just browsing (any of these, a "CVRG User"), our servers automatically record information about your use of the Service and your visit to the Site ("Log Data"). This Log Data includes the filename and file size of all files that you make available via the Service. The Log Data may also include information such as your computer's Internet Protocol (IP) address, your browser type, what Software you were using, the web page you were visiting immediately prior to visiting our Site, pages of our Site that you visited, the time spent on those pages, information you searched for on our Site, access times and dates, and other statistics. We use this information to monitor and analyze use of the Site and the Service and for the Site's technical administration, to improve our Site's functionality and user-friendliness, and to better tailor it to our visitors' needs. We also use this information to verify that users of the Service meet the criteria required to process their requests.

Personal Information

When you register with us through the Site or use certain services from us we will ask you for personally identifiable information. This refers to information about you that can be used to contact or identify you ("Personal Information"). Personal Information includes, but is not limited to, your name, email address and phone number. We use your Personal Information mainly to provide the Service and administer your inquiries.

Non-Identifying Information

We may also ask you for other information that is not personally identifiable that you provide as part of your "user profile" (e.g., without limitation, your time zone) ("Non-Identifying Information"). We use your Non-Identifying Information (in some cases, in conjunction with your Personal Information) mainly to provide the Service.

File Names & User Files

Filenames you submit to the Service for storage, retrieval and annotation are not treated as Personal Information. However, User Files themselves must contain de-identified data. Any identified data is unauthorized. Therefore, do not include any personally identifiable information in the filenames of files that you store, retrieve or annotate via the Service.

Improvement

We may combine your Personal Information with Non-Identifying Information and aggregate it with information collected from other CVRG Users to attempt to provide you with a better experience, to improve the quality and value of the Service and to analyze and understand how our Site and Service are used. Subject to the section below titled "Information Sharing and Disclosure", we may also use the combined information without aggregating it to serve you specifically, for instance to deliver a product to you according to your preferences or restrictions.

Marketing

We also use your Personal Information to contact you with CVRG newsletters, marketing or promotional materials and other information that may be of interest to you. If you decide at any time that you no longer wish to receive such communications from us, email us at with an explicit request to have your information removed from our mailing list. We will comply with your request as soon as reasonably practicable.

Cookies

Like many web sites, we use "cookies" to collect information. A cookie is a small data file that we transfer to your computer's hard disk for record-keeping purposes. We use cookies for two purposes. First, we utilize persistent cookies to save your account identifier and other preferences for future logins to the Site. Second, we utilize session cookies to enable certain features of the Site, to better understand how you interact with the Site and to monitor aggregate usage by CVRG Users and general web traffic on the Site. We link the information we store in cookies to the Personal Information you submit to us while you are on the Site. Unlike persistent cookies, session cookies are deleted from your computer when you close your browser. You can instruct your browser, by changing its options, to stop accepting cookies or to prompt you before accepting a cookie from the web sites you visit. If you do not accept cookies, however, you may not be able to use all portions of the Site or all the functionality of the Service.

Phishing

Identity theft and the practice currently known as "phishing" are of great concern to CVRG. Safeguarding information to help protect you from identity theft is a top priority. We do not and will not, at any time, request your credit card information, your account ID, login password, or national identification numbers in a non-secure or unsolicited e-mail or telephone communication. For more information about phishing, visit the Federal Trade Commission's web site.

Information Sharing and Disclosure

Other than as described in this section, CVRG does not rent or share information about you with third parties.

Aggregate Information and Non-Identifying Information

We may share aggregated information that does not include Personal Information and we may otherwise disclose Non-Identifying Information and Log Data with third parties for industry analysis, demographic profiling and other purposes. Any aggregated information shared in these contexts will not contain your Personal Information.

Service Providers

We may employ or partner with third party companies, organizations and individuals to facilitate our Service, to provide the Service on our behalf and to perform Site-related services ("Service Providers"). The types of Service Providers we use include, without limitation, service providers that provide the following types of services: software development, hosting, accounting, web and user analytics, customer relationship management, webcasting, web site maintenance, database management, and web and live chat hosting. Our Service Providers have access to your Personal Information only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

Compliance with Laws and Law Enforcement

CVRG cooperates with government and law enforcement officials and private parties to enforce and comply with the law. We will disclose any information about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate to respond to claims and legal process (including without limitation subpoenas), to protect the property and rights of CVRG or a third party, to protect the safety of the public or any person, or to prevent or stop activity we consider to be illegal or unethical.

Changing or Deleting Your Information

All CVRG subscribers may review, update, correct or delete the Personal Information in their registration profile by logging into their account and changing the "user profile" associated with their account. In order to disable your account please submit a support request by emailing sgranite@jhu.edu.

Data Retention Policy

CVRG may retain your account information indefinitely, regardless of whether you have disabled your account on the Site. CVRG will retain Log Data consistent with applicable legal requirements. Generally, at a minimum, CVRG will retain the Log Data collected from you for a period of three years (the "Retention Period"). After the Retention Period, CVRG may purge the Log Data from its systems. In the event of an investigation by law enforcement or a response to claims or legal process, we may retain the Log Data until such investigation or process is completed, which may be longer than the Retention Period.

Security

CVRG takes safeguarding your information very seriously. We employ generally-accepted, industry-standard administrative, physical and electronic measures designed to protect the Personal Information submitted to us from unauthorized access, both during transmission and once we receive it. No method of transmission over the Internet, or method of electronic data storage is 100% secure, however. Therefore, while we strive to use commercially acceptable means to protect your Personal Information, we cannot guarantee its absolute security.

We will make any legally required disclosures of any breach of the security, confidentiality, or integrity of your unencrypted electronically stored "personal data" (as defined in applicable laws related to security breach notification) to you via email or conspicuous posting on this Site in the most expedient time possible and without unreasonable delay, insofar as consistent with (i) the legitimate needs of law enforcement or (ii) any measures necessary to determine the scope of the breach and restore the reasonable integrity of the data system.

International Transfer

Your information may be transferred to "and maintained on" computers located outside of your state, province, country or other governmental jurisdiction where the privacy laws may not be as protective as those in your jurisdiction. If you are located outside the United States and choose to provide information to us, you should be aware that CVRG transfers Personal Information to the United States and processes it there. Your consent to this Privacy Policy followed by your submission of such information represents your agreement to such transfer.

Links to Other Sites

Our Site contains links to other web sites. If you choose to click on a third party link, you will be directed to that third party's web site. The fact that we link to a web is not an endorsement, authorization or representation of our affiliation with that third party, nor is it an endorsement of their privacy or information security policies or practices. We do not exercise control over third party web sites. These other web sites may place their own cookies or other files on your computer, collect data or solicit personal information from you. Other sites follow different rules regarding the use or disclosure of the personal information you submit to them. We encourage you to read the privacy policies or statements of the other web sites you visit.

Our Policy Toward Children

This Site is not directed to children under 18. We do not knowingly collect personally identifiable information from children under 13. If a parent or guardian becomes aware that his or her child has provided us with Personal Information without their consent, he or she should contact us at sgranite@jhu.edu. If we become aware that a child under 13 has provided us with Personal Information, we will delete such information from our files. Questions Questions regarding our privacy policy should be directed to CVRG, by sending email to sgranite@jhu.edu.

Privacy Policy effective: February 19, 2014

Personal tools
Project Infrastructures