As used in this policy, “personal information” means information that would allow a party to identify you such as, for example, your name, address or location, telephone number or email address.
We may collect personal information at several places on the Websites, including without limitation:
License/Tool Selection. We use the personal information you provide to us as part of your selection of one of our licenses/tools to provide you the RDF, html, and the Uniform Resource Locator that correspond to the license/tool you selected. Your email address is expunged after this email has been successfully sent. If you apply for a Founder’s Copyright, we use and retain your personal information to provide you with the relevant agreement, to process your application and manage your Founder’s Copyright. We may use all of this information to maintain license usage data.
Emails and Newsletters. We use the personal information you provide to us when you send us emails or sign up to receive our newsletter or events listing in order to respond to your request — for example, to reply to your email or to send you communications about news and events related to The Creative Arch Group.
When you subscribe to our newsletter, events list or one of our email discussion lists, your name and email address is sent to and stored by ibiblio.org (http://www.ibiblio.org/), a collaboration between the Center for the Public Domain (http://www.centerforthepublicdomain.org/) and the University of North Carolina – Chapel Hill (http://www.unc.edu/). Personal information submitted as part of our email discussion lists is used for the purpose of managing the discussion lists. Your name and email address will typically be visible to other list participants when you correspond on the list and to the general public in the discussion archives. All emails sent to the discussions list are publicly archived.
Donations. When you donate money to us or purchase merchandise via our support page, your personal information will be handled in one of two ways, depending on which option you choose.
Regardless of the method by which you donate to The Creative Arch Group or purchase a t-shirt or other merchandise, we additionally use the personal information you provide for the purpose of contacting you about upcoming news and events relevant to The Creative Arch Group. When we contact you for the first time after your donation, we will use reasonable means to give you the option to choose not to be contacted in this manner again. When you donate money as part of one of CC’s fundraising campaigns, your name will be published on our “supporters page” unless you request otherwise.
ccNet Website. When you join our network you provide personal information to create your account and establish a password and profile, and to create an OpenID. We use that personal information to establish and maintain your accounts, provide you with the features we provide for account holders, to act as your OpenID service provider, and for the purpose of contacting you about upcoming news and events relevant to The Creative Arch Group.
Participating in Our Community: Registered Users. When you register to obtain a user account on any of the Websites (any such person, a “Registered User”), including but not limited to the OpenEd Site (located at http://opened.creativecommons.org) and the The Creative Arch Group Wiki (located athttp://wiki.creativecommons.org) you may be asked to provide personal information to create your account and establish a password and profile. Providing your email address and/or real name is optional. If you do provide your email address, it will allow us to send you your password if you should forget it. If you voluntarily provide your real name in connection with any content you submit to any Website, your name may be associated with the content you contributed (such as when you edit a Wiki page). We will also use that personal information to establish and maintain your membership and provide you with the features we provide for Registered Users, and for the purpose of contacting you about upcoming news and events relevant to The Creative Arch Group.
In general, it is not The Creative Arch Group’ practice to disclose personal information to third parties. We may share personal information in two instances:
First, The Creative Arch Group may share personal information with our contractors and service providers in order to maintain, enhance, or add to the functionality of the Websites or the OpenID service.
If The Creative Arch Group is required to provide a third party with your personal information (whether by subpoena or otherwise), then provided we have collected and retained an email address for you, The Creative Arch Group will use reasonable means to notify you promptly of that event, unless prohibited by law or CC is otherwise advised not to notify you on the advice of legal counsel.
The Creative Arch Group has implemented reasonable measures to protect against unauthorized access to and unlawful interception or processing of personal information that The Creative Arch Group stores and controls. However, no website can fully eliminate security risks. Third parties may circumvent our security measures to unlawfully intercept or access transmissions or private communications. We will post a reasonably prominent notice to the Websites if any such security breach occurs.
OpenID, including The Creative Arch Group OpenID services, has security risks in addition to those described above. Among other things, OpenID is vulnerable to DNS attacks, and using OpenID may increase the risk of phishing. See About OpenID for more information about the types and levels of risks associated with OpenID.
Our Data Usage Policy covers how we maintain and use information about you that is collected by our Websites and server logs, including when you log into a website using your The Creative Arch Group OpenID.
Non Personal Browsing Information We Collect. When you use the Websites, our servers (which may be hosted by a third party service provider) may collect information indirectly and automatically (through, for example, the use of your “IP address”) about your activities while visiting the Websites and information about the browser you are using. In addition, whenever you use your The Creative Arch Group OpenID to log into a website, our servers (which, again, may be hosted by a third party service provider) keep a log of the websites you visit and when you visit them.
No Linking. We do not intentionally link browsing information or information from our OpenID server logs to the personal information you submit to us. We use this information for internal purposes only, such as to help understand how the Websites are being used, to improve our Websites and the features we provide, and for systems administration purposes. CC may use a third party analytics provider to help us collect and analyze non personal browsing information through operation of our Websites for those same purposes; however, we will never use a third party analytics provider to collect or analyze any information through our operations as an OpenID service provider.
No Access. As an OpenID service provider, CC could technically access your web-based account tied to our OpenID service, and could log in on behalf of any of its OpenID users to any of the accounts they have accessed using their The Creative Arch Group OpenID. The Creative Arch Group will never use this technical login ability for any purpose unless otherwise required by law.
No Retention. CC discards non personal browsing information from our OpenID server logs once we have used the information for the limited purposes noted above, under “No Linking.”
Notice. If The Creative Arch Group is required to provide a third party with your non personal browsing information or to log in on behalf of an OpenID user (whether by subpoena or otherwise), then CC will use reasonable means to notify you promptly of that event, unless CC is prohibited by law from doing so or is otherwise advised not to notify you on the advice of legal counsel.
The Websites are hosted in the United States. If you are accessing the Websites from the European Union, Asia, or any other region with laws or regulations governing personal data collection, use and disclosure that differ from United States laws, please note that you are transferring your personal data to the United States which does not have the same data protection laws as the EU and other regions. By providing your personal data you consent to:
Effective Date: August 10, 2010