Effective date: September 1, 2020
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland and act as a Data Controller or Data Processor, you are bound by the General Data Protection Regulation (GDPR) of April 2016 #2016/679.
We act as a data controller for your account information. When you create an account, we collect the minimal required information to deliver our services and communicate with you. This information is never sold.
In those cases where collected by a data controller personal data are stored on our servers, we act as a data processor, and are bound by specific contractual clauses and by the confidentiality obligations deriving from the GDPR.
If you are a data controller for a specific project that utilizes the Platform, we enable you to communicate your compliance statements regarding data handling and privacy. As such, you are responsible for honoring user requests under EU privacy regulations.
For more GDPR-related information, please refer to “Privacy Rights” section of this document.
Information We Collect
The types of information we collect:
- IP address and browser user agent string are collected when you visit the Platform. An IP address is a number automatically assigned to your computer whenever you access the Internet. IP addresses allow computers and servers to recognize and communicate with one another. We collect IP address information so that we can properly manage our system and gather information about how our site is being used. This includes the pages visitors are viewing. Your IP address may be associated with records containing personal information.
When you create your account:
- We collect personal information that includes information that is unique to an individual, such as first name, last name, email address, phone number and organization.
How We Use This Information
The EverythingALS uses the information you provide to register and manage your online account, to fulfill online requests and respond to customer service inquiries, or in other ways as allowed by law.
We may use your information:
- To respond to your questions and requests
Access to Your Information
Only those who need the provided information to perform a specific task have access to your information. These are authorized members of the EverythingALS team.
The EverythingALS keeps personal information on file, but does not share, sell, license or transmit this information to third parties or external vendors unless required to do so by legal, judicial or governmental proceedings.
The EverythingALS makes every reasonable effort to ensure that your personal information remains as secure as possible. Accordingly, we prevent unauthorized access using a secure firewall and the use of security technologies to protect the integrity and privacy of any personal information you provide.
As an additional security measure, your personal information is encrypted during transmission by Secure Socket Layer 128-bit encryption software. (Encryption is a common method used to transmit sensitive data across the Internet. Encryption temporarily makes the text unreadable during the time it is being transmitted over the Internet.) This is an industry standard.
Although we endeavor to protect your personal information, the EverythingALS cannot warrant the security of any information you transmit to us through online applications, and you do so at your own risk. Depending on the nature of the inquiry, your communication could be discarded or archived. If you wish, you can contact us instead by telephone at the number provided throughout our site.
Forms provided on the Platform may include registration request. The information required to complete the transaction is noted on the form. Although we provide robust security measures to protect the transmission of information, the EverythingALS is not responsible if unauthorized parties gain access to the confidential information shared in the online forms.
We use your email addresses for the confirmation, verification, and notification purposes. Please note that email is considered an unencrypted (and, therefore, unsecure) form of communication, and it can be accessed and viewed by others without your knowledge and permission. For that reason, to protect your privacy, please do not use email to communicate information that you consider confidential.
Cookies are small computer files that a website can transfer to your computer.
Type of cookies we use:
- Session cookies are temporary cookies and expire once you close your browser (or once your session ends)
- Cookies used for the sole purpose of carrying out the transmission of a communication
- Cookies that are strictly necessary in order to browse the website and use its features
- User input cookies, for the duration of a session
- Authentication cookies, for the duration of a session
We collect information about the activity of individual Platform users.
Links to External Websites
In order to provide the Platform users with other helpful information, the Platform may provide links to other websites. The EverythingALS provides no authority over external organizations' websites and this policy does not apply to external sites that are provided as links. We encourage you to read the Privacy Policies on any external websites before providing them with any personal information.
Information for Users located in the European Economic Area (EEA), United Kingdom, or Switzerland.
As a user, you are provided specific rights in regard to the handling of your information. You may request the following from a data controller:
Right to be informed.You may request details of what we collect and what we do with your data.
Right to withdraw consent.Our legal basis for processing of your Personal Information for the purpose described above is based on your consent. You can withdraw your consent at any time. The withdrawal of consent will not affect the lawfulness of our processing based on consent before its withdrawal.
Right of access to and rectification of your Personal Information. Our site allows you to access and rectify certain Registration Information within your Account Settings. We may reject part or all of your request if responding to your request could adversely affect the rights and freedoms of others.
Right to erasure ("Right to be Forgotten"). You have the right to request that your personal data be deleted, under certain conditions.
Right to restriction of our processing. You may restrict the processing of your data to specific purposes.
Right to object to processing. You may object to your data being processed for purposes, to which you do not consent.
Transfers. Personal data we collect may be transferred to, and stored and processed in, the United States or any other country in which we or our affiliates or processors maintain facilities. We will use reasonable efforts to ensure that transfers of personal data to a country or an international organization outside the EEA or Switzerland are subject to appropriate safeguards.
Changes to This Policy