Please read this policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personal Data in accordance with the policies of our Platform.
Personally Identifiable Information, as described in United States privacy laws and as referred to in the field of information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context.
See more at: https://consumercal.org/about-cfc/cfc-education-foundation/california-online-privacy-protection-act-caloppa-3/
The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy. It applies to all companies processing and holding the personal data of data subjects residing in the European Union, regardless of the company's location.
According to the GDPR, Personal Data is defined as any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
The key articles of the GDPR, as well as information on its business impact, can be found at https://www.eugdpr.org
When you sign up as a user of our Platform, we always collect your name (first, middle and last, of which the last two are optional) username, password and email address. If you sign up by using a third-party account (such as your Google or Facebook account), please see section 6.7 below.
We store information about your preferences and personal details that you can set and edit in the Settings section. This includes information regarding your date of birth, nationality, gender, profile image, profile description, privacy preferences, notification preferences, email preferences and advertisement preferences. You can choose what information is shown on your profile. You do not have to provide us all of these information on your profile. However, the information helps you to get more from our Platform, including tailored suggested content and ads that are relevant to you. Please do not post or add personal data to your profile that you would not want to be publicly available or could be considered to be "sensitive" information (see section 6.9).
We collect usage information about you whenever you interact with our Platform. This includes the type of content you view or engage with, i.e., the content you view or rank, advertisements you click, your comments, shares, likes, dislikes, suggestions, ranks, flags, complaints and feedbacks etc., the features you use, such as search or message, the people or accounts you interact with, the time, frequency and duration of your activities, and the updates you make or versions you install of one of our mobile applications etc.
We collect additional non-personally identifiable information that are typically accessible from the device, server and application you use to access our Platform. Device and browser data refers to your Internet Protocol (IP) address, browser type and version, add-ons, plugins and extensions installed in the browser, device identifier and features, language preferences, operating system and its version, device type and screen width, system and performance information, date, time and corresponding location data of each viewers' request. If you use our Platform from a mobile device, the device may send us data about your location based on your phone settings.
Like many other websites, we keep log files that record data each time a device accesses our servers. The log files contain data about the nature of each access, including origination IP address, Internet Service Providers, the pages and files viewed on our site, timestamps and device and browser data.
We collect your Personal Data from third parties if you give permission to those third parties to share your information with us or when you have made that information publicly available online. This information may include photos, Facebook user name, Facebook ID (unique numeric ID), Facebook likes, Facebook checked-in locations, Google user name, Google ID (unique numeric ID), Google+ friends, Google+ circles, Twitter handle, Twitter ID, Twitter follows, Twitter followers, nationality and so on. We also receive data when you visit, use or interact with the services provided by our customers, partners, and affiliates.
If you arrive at a Rankmylist Platform from an external source (such as a link on another website or in an email), we may record information about the source that referred you to us. We receive the URL of both the site you came from and the one you go to next.
We do not collect information about your religious views, political views, sexual orientation, health records, criminal records, trade-union membership, financial information, racial or ethnic origin, philosophical beliefs or any other type of information that can be classified as "sensitive" and may be subject to special protection under the GDPR.
We collect information from our users when they sign up or sign in to our site, update their submitted user information, fill out a form, leave a comment, submit content in the form of texts and/or images, share a content, click on a content, submit their ranking, click on an advertisement, leave a suggestion, like, or dislike, flag a content, use our messaging feature to send or receive a message, send their feedback, file a complaint, sign up in one of our business programs, or enter information by other means on our Platform.
We may use the information we collect from you to provide, support, personalize and develop the services (including adverstisements) provided by our Platform. How we use your Personal Data depends on the features you use and how you use them, and the preferences you have set in your Settings.
We may use data about you in the following ways:
To allow us to better serve users in investigating, responding to and resolving their support requests, complaints, service issues and other feedback options.
We may process and/or disclose your Personal data if we find it appropriate or necessary for the purposes of our legitimate interests or for the legitimate interests of third parties provided that such processing shall not outweigh your rights and freedoms. For instance, we may process your personal data to:
We may also disclose user information to affiliated companies or other businesses or persons to:
We do not use vulnerability scanning and/or scanning to PCI standards. We only provide articles and information. We never ask for credit card numbers. We do not use Malware Scanning.
A user's personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive information they supply is encrypted via Secure Socket Layer (SSL) technology.
We implement a variety of security measures when a user enters, submits, or accesses their information to maintain the safety of their personal information. We perform regular Data Protection Impact Assessments, particularly before introducing a new feature or technology to our Platform.
All transactions are processed through a gateway provider and are neither stored or processed on our servers.
We regularly monitor our systems for possible vulnerabilities and try to prevent security breaches. However, we cannot warrant the security of any information that you send to us. There is no guarantee that data may not be accessed, disclosed, altered or destroyed by any of our physical, technical or managerial safeguards.
We may access, preserve and share your information in response to a legal request (like a search warrant, court order or subpoena) if we have a good faith belief that the law requires us to do so. This may include responding to legal requests from jurisdictions outside of the United States where we have a good faith belief that the response is required by law in that jurisdiction, affects users in that jurisdiction, and is consistent with internationally recognized standards. We may also access, preserve and share information when we have a good faith belief that it is necessary to: detect, prevent and address fraud and other illegal activity; to protect ourselves, you and others, including as part of investigations; or to prevent death or imminent bodily harm. For instance, we may provide information to third-party partners about the reliability of your account to prevent fraud and abuse on and off of our Services. Information we receive about you may be accessed, processed and retained for an extended period when it is the subject of a legal request or obligation, governmental investigation, or investigations concerning possible violations of our terms or policies, or otherwise to prevent harm. We also may retain information from accounts disabled for violations of our terms for at least a year to prevent repeat abuse or other violations of our terms.
The Platform is not intended for children under the age of 13, nor do we target users who fall in this age group. If you are under 13 years of age, please DO NOT USE or access or interact with our Platform or its content on third-party websites. We do not knowingly collect personal data from children under the age of 13. If we are notified that Personal data of children under the age of 13 has been collected on or through the Platform, then we will take the appropriate steps to remove this information.
If you are based in the Designated Territories, you may only use our Platform if you are over the age at which you can provide consent to data processing under the laws of your country or if verifiable parental consent for your use of the Platform has been provided to us.
If you are the parent or legal guardian of a child under the age of 13 who has registered an account on the Website or Mobile Application, then please send us an email to firstname.lastname@example.org to have that child's account terminated and information deleted.
When it comes to the collection of personal information from children under the age of 13 years old, the Children's Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States' consumer protection agency, enforces the COPPA Rule, which outlines what operators of websites and online services must do to protect children's privacy and safety online.
We do not specifically market to children under the age of 13 years old.
We do not sell, trade, or otherwise transfer to outside parties your Personal data for their direct marketing purposes without your permission. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when its release is appropriate to comply with the law, enforce our site policies, or protect ours or others' rights, property or safety.
However, non-personally identifiable visitor information may be aggregated and sold or provided to other parties for marketing, advertising, or other uses.
Occasionally, at our discretion, we may include or offer third-party products or services on our website. These third-party sites have separate and independent privacy policies. We therefore have no responsibility or liability for the content and activities of these linked sites. Nonetheless, we seek to protect the integrity of our site and welcome any feedback about these sites.
Rankmylist publishes Google AdSense interest-based advertisements on its platform. These are tailored by Google to reflect users' interests. Google's advertising requirements are summarized under 'Google's Advertising Principles'. They are put in place to provide a positive experience for users. Further details about their advertising policy can be found at: https://support.google.com/adwordspolicy/
We, along with third-party vendors such as Google use first-party cookies (such as the Google Analytics cookies) and third-party cookies (such as the DoubleClick cookie) or other third-party identifiers together to compile data regarding user interactions with ad impressions and other ad service functions as they relate to our website.
You can set preferences for how Google advertises to you using the Google Ad Settings page. Alternatively, you can opt out by visiting the Network Advertising Initiative Opt Out page or by using the Google Analytics Opt Out Browser add on.
We retain your Personal Data for as long as your account is in existence or as needed to provide you the services of our Platform. This includes data you or others provided to us and data generated or inferred from your use of the Platform. Even if you do not access your account for a long period, your information will be retained until you decide to close your account. In some cases, we choose to retain certain information (e.g.,your rankings, likes, dislikes, shares etc.) in a depersonalized or aggregated form.
You can access, delete or change your personal data by logging in to your account and going to the Privacy Preferences tab in the Settings section. We provide you many preferences about the collection use and sharing of your data.
You can also contact us using the contact information below, and we will consider request in accordance with applicable laws. If you are a resident of one of the Designated Territories, you also have the right to file a complaint with the Irish Data Protection Commissioner.
We store data for as long as it is necessary to provide products and services to you and others. Information associated with your account will be kept until your account is deleted, unless we no longer need the data to provide products and services. You can permanently delete your account at any time by writing to us at email@example.com. If you choose to delete your Rankmylist account your Personal data will generally stop being visible to others on our Platform within 7 days.You will be notified by email regarding when your data has been removed permanently from our systems(which will typically be no longer than two weeks after your deletion request).
We retain Personal data even after you have deleted your account if necessary to comply with our legal obligations (including law enforcement requests), meet regulatory requirements, resolve disputes, maintain security, prevent fraud and abuse, enforce our Terms of Service, or to fulfill your request to "unsubscribe" from further messages from us. We will retain de-personalized information after your account has been removed from our database.
When you ask us to delete your account, we will delete things you have posted, such as your lists, brackets, images, comments and suggestions. If you deactivate your account instead of deleting, we will continue to store your information. Keep in mind that information that you have shared with other and others have shared to or about you is not part of your account and will not be deleted when you delete your account. Such information will remain visible after deletion of your account and we do not control the data that other users have shared out of our Platform. Comments, messages, rankings, likes, dislikes, flags and suggestions will show an unknown user as the source. Your profile may continue to be displayed in the services of others (e.g., search engine results) until they refresh their cache.
Yes. We allow third-party behavioral tracking.
The Fair Information Practices Principles form the backbone of privacy laws in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that, individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
In case of a Personal data breach involving data subjects of the Designated Territories, we will notify the supervising authority competent according to Article 55, not later than 72 hours after having become aware of it, as well as the data subject without undue delay, in case the Personal data breach is likely to result in a risk to the rights and freedoms of natural persons or if the supervising authority require us to do so.
We will document such breaches, comprising the facts relating to such breach its effects and remedial actions taken, and such documentation will be made available to the superior authority to verify compliance with the GDPR.
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and outlines tough penalties for violations.
We use your email address as a method a method for account verification when you sign-up as a user and for user authentication when you subsequently sign-in to our platform. Apart from these, we also use your email address in order to send notifications and other information, respond to inquiries, and/or other requests or questions that you might have.
If at any time you would like to unsubscribe from receiving future emails, you can email us at firstname.lastname@example.org or use the forms on our website or mobile applications settings page to unsubscribe. Follow the instructions at the bottom of each email or in the settings page to inform us of your wish to unsubscribe and we will promptly remove you from ALL correspondence.
We process data both inside and outside of the United States and rely upon legally provided mechanisms to lawfully transfer data across borders. Countries where we process data may have laws which are different, and potentially not as protective, as the laws of your country.
We will only collect, use, share or otherwise process Personal data about you where we have lawful bases. Lawful bases include consent (where you have given consent), contract (where processing is necessary for the performance of a contract with you, e.g., delivering a service on our Platform that you have requested) and legitimate interests.
When we rely on your consent to process Personal data, you have the right to withdraw or decline your consent at any time and where we rely on legitimate interests, you have the right to object. If you have any questions about the lawful bases upon which we collect and use your Personal data, please contact our Data Protection Officer.
Residents of the designated GDPR countries can also contact our Data Protection Officer by writing to email@example.com and our EU Data Protection Representative at https://www.dpr.eu.com/datarequest or at the following addresses:
|Austria||DPR Group, City Tower, Brückenkopfgasse 1/6. Stock, Graz, 8020, Austria|
|Belgium||DPR Group, Place de L'Université 16, Louvain-La-Neuve, Waals Brabant, 1348, Belgium|
|Bulgaria||DPR Group, 132 Mimi Balkanska Str., Sofia, 1540, Bulgaria|
|Croatia||DPR Group, Ground & 9th Floor, Hoto Tower, Savska cesta 32, Zagreb, 10000, Croatia|
|Cyprus||DPR Group, Victory House, 205 Archbishop Makarios Avenue, Limassol, 3030, Cyprus|
|Czech Republic||DPR Group, IQ Ostrava Ground floor, 28. rijna 3346/91, Ostrava-mesto, Moravska, Ostrava, Czech Republic|
|Denmark||DPR Group, Lautruphøj 1-3, Ballerup, 2750, Denmark|
|Estonia||DPR Group, 2nd Floor, Tornimae 5, Tallinn, 10145, Estonia|
|Finland||DPR Group, Luna House, 5.krs, Mannerheimintie 12 B, Helsinki, 00100, Finland|
|France||DPR Group, 72 rue de Lessard, Rouen, 76100, France|
|Germany||DPR Group, 3rd and 4th floor, Altmarkt 10 B/D, Dresden, 01067, Germany|
|Greece||DPR Group, 24 Lagoumitzi str, Athens, 17671, Greece|
|Hungary||DPR Group, EMKE Building, Rákóczi Út 42, Budapest, 1072, Hungary|
|Ireland||DPR Group, Phoenix House, Monahan Road, Cork, T12 H1XY, Republic of Ireland|
|Italy||DPR Group, BPM 335368, Via Roma 12, 10073 , Turin, Italy|
|Latvia||DPR Group, 4th & 5th floors, 14 Terbatas Street, Riga, LV-1011, Latvia|
|Lithuania||DPR Group, Vilniaus g.31, Vilnius, LT- 01402, Lithuania|
|Luxembourg||DPR Group, BPM 335368, Banzelt 4 A, 6921, Roodt-sur-Syre, Luxembourg|
|Malta||DPR Group, Tower Business Centre, 2nd floor, Tower Street, Swatar, BKR4013, Malta|
|Netherlands||DPR Group, Cuserstraat 93, Floor 2 and 3, Amsterdam, 1081 CN, Netherlands|
|Poland||DPR Group, Budynek Fronton ul Kamienna 21, Krakow, 31-403, Poland|
|Portugal||DPR Group, Torre de Monsanto, Rua Afonso Praça 30, 7th floor, Algès, Lisbon, 1495-061, Portugal|
|Romania||DPR Group, World Trade Centre, Piata Montreal no 10, Entrance F, 1st Floor, Sector 1, Bucharest, 11469, Romania|
|Slovakia||DPR Group, Apollo Business Centre II, Block E / 9th floor, 4D Prievozska, Bratislava, 821 09, Slovakia|
|Slovenia||DPR Group, Trg. Republike 3, Floor 3, Ljubljana, 1000, Slovenia|
|Spain||DPR Group, Puerta de las Naciones, Ribera del Loira 46, Madrid, 28042, Spain|
|Sweden||DPR Group, S:t Johannesgatan 2, 4th floor, Malmo, SE - 211 46, Sweden|
|United Kingdom||DPR Group, BPM 335368, 372 Old Street, EC1V 9AU, London, United Kingdom|