PII, as described in US privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context.
What personal information do we collect?
This document refers to different categories of information as follows. An asterisk (*) indicates required information.
- Contact info: Name *, email address *, unit number *, phone number *, preferred contact method
- Profile photo
- Personal info: Birthdate (with or without year), Google account ID, join date, vehicle make, model, and color, garage number, emergency contacts
- Account info: Meals charges, late fees, credit limit, account balance
- Contact info: Name *, unit number *
- Profile photo
- Personal info: Birthdate (with or without year), join date
When do we collect information?
When you register with the system or update your information via the system.
How do we use your information?
- To personalize your experience.
- To foster community by allowing people to recognize and contact each other easily.
- To allow emergency contact information to be found when needed.
- To send useful, community-related notifications.
What information is shared with third parties, and who are the third parties?
- Your contact info is shared with members of your community and with other communities in your cluster (if any).
- A cluster is a group of closely affiliated communities. If there are other communities in your cluster, you will already know who they are.
- Your profile photo is shared with the same people as your contact info, unless you specify otherwise in your profile.
- Your personal info is shared only with the members of your community.
- Your account info is shared only with those who manage accounts ("billers").
- Your children's profile photo, contact info, and personal info are shared only with the members of your community.
- In addition to the above, special users called "cluster administrators" and "super administrators" can see all the above information. There are very few such people and they only access your information as needed to administer the system.
- We do not share any of your information with anyone other than the above.
How do we protect your information?
- All communication with the site is encrypted via HTTPS.
- All system data is stored in state of the art facilities.
- Access to system servers is protected by public key encryption and only a small number of qualified personnel have access.
- We use a detailed series of automated tests to ensure that sharing settings are implemented as described above.
Do we use "cookies"?
A cookie is used to store a secret key that proves you have signed into the system. This is how your "session" is maintained as you use the system. This is a standard and very common procedure with web applications.
If you disable cookies you will not be able to use the system.
California Online Privacy Protection Act
According to CalOPPA, we agree to the following:
- Users can visit our site anonymously. (Though they won't be able to sign in without identifying themselves).
- You can change your personal information by signing in to your account and editing your profile and/or the profiles of your children.
How does our site handle "Do Not Track" signals?
This does not apply in our case because we do not track users in the first place.
COPPA (Children Online Privacy Protection Act)
The system stores information about children (potentially under the age of 13) so that community members can view photos, unit numbers, and birthdays of their neighbor children for the purposes of facilitating interaction and fostering community.
Children under 13 cannot sign in to the system directly. Their information can only be entered by their parents/guardians.
Children can only sign in to the system when:
- they are over the age of 13;
- their parents/guardians grant permission for them to be considered as "adults" in the system;
- an administrator makes this change in the system.
Communities may define other policies in addition to this and instruct the administrator to make the above change only after additional requirements have been met.
Pursuant to COPPA, we declare the following:
- We don't require a parent/guardian to disclose more information about a child than is reasonably necessary to facilitate interaction and foster community as described above.
- Parents/guardians can review their children’s personal information, direct us to delete it, and refuse to allow any further collection or use of the child’s information.
- We don't disclose any children's information to any third parties other than community members as listed above.
- Parents/guardians may exercise any of the above stated rights by emailing email@example.com.
Fair Information Practices
In order to be in line with Fair Information Practices Principles we will notify you via email within 7 business days in the unlikely event that a data breach should occur.
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act
We collect your email address in order to send useful notifications (e.g. meal reminders, work reminders, statement notices).
We do not send advertising or other unsolicited emails.
If at any time you would like to unsubscribe from receiving future emails, you can email firstname.lastname@example.org and we will promptly remove you from ALL correspondence.
220 Collingwood St #140
Ann Arbor, MI 48103
Last Edited on 2017-01-17