Last updated 9 August 2018
By using our Services you agree that Curation can use your data in accordance with this policy. We may modify these terms to reflect changes to our Services or changes to the law. You should review these terms regularly.
What data we collect and store about you
Curation collects the minimum amount of data reasonably required to deliver and improve our service. Our business model does not require us to exploit your data – we have no interest in selling your data or monetising it in any way.
To deliver and improve our service we we may collect and store the following information about you:
- Your name
- Your email address
- Your telephone number
- Your company or employer name
- Your job title
- The IP address(es) you use to access our Services
- Any contributions you choose to make to our services, such as your comments relating to a piece of content within our Services
- Any other communications that you choose to send us, such as feedback or support requests
Why we collect and store data about you
The primary reason we collect and store data about you is to effectively provide our Services to you. For example, we need your name, email address and telephone number to contact you with important service-related information or respond to support requests you may make. We need your email address, company or employer name and job title to validate that you are an eligible user of our Service, for example you belong to an organisation that is an active client that is paying for our Services under contract or trialling our services for a period of time. We need your IP address to maintain the security of our service.
We also collect and store data about your interactions with our service so that we can improve it over time. For example, our ability to monitor email open rates may allow us to optimise the frequency of emails to better suit your needs, or our ability to monitor your interactions with our Services may help us improve how the service works or create content that better meets your needs. We may also use your interactions to provide you with personalised services, for example, if we determine that you are interested in a particular subject, our service may deliver you more content on that subject in the future.
In some cases, as defined in a contract that may exist between Curation and your organisation, we are also obliged to collect and store data about you in order to report back to your organisation on your usage and engagement with our Services. This reporting may include personally identifiable information, from any interactions you make with the service, to any comments you may choose to share on our content. Such data will only ever be shared with your organisation and within the scope defined by the contact we have with your organisation; if you have any specific questions about this you should contact your organisation directly.
How you can access, manage, or delete your data
Some of your data can be accessed and managed directly within our Services that you use. For example, within the ‘Settings’ section on our online platform, you can view some of your information and manage the nature and amount of emails you have chosen to receive as part of your service.
To access all of the data we collect and store about you, simply email us at firstname.lastname@example.org and we will send you a full report within 30 days of your request. Subsequently, if you wish any data to be updated, or deleted, let us know and we will do this. Please note that in some cases, as defined in a contract that may exist between Curation and your organisation, we are obliged to provide reports to your organisation that may include data about you; in cases where we have already shared data about you, we may have no longer ability to manage or delete this data on your behalf. Please also note that in some cases, as defined in a contract that may exist between Curation and your organisation, we are required to retain data we collect and store about you for a period of time, for example six months (even in cases where you may have stopped using our Services). In this case we may have to coordinate with your organisation with regards to your request; regardless of this, we will always fulfil our legal obligations.
Our approach to ensuring the security of your data
Encryption brings a higher level of security and privacy to our services, and when you do things like login to our services or submit data such as your personal information or comment on a piece of content, we protect this data with multiple layers of security, including industry-standard encryption technology.
Our cloud infrastructure protects your data 24/7, we use industry-standard cloud services to store your data, and we use monitoring services to ensure your data remains secure and to quickly act on any security issues that may arise. We will notify affected users if we identify security issues such as data breaches.
In addition to the terms outlined elsewhere in this policy, we may disclose information about you:
- to the extent that we are required to do so by law;
- in connection with any legal proceedings or prospective legal proceedings;
- in order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention and reducing credit risk); and
- to the purchaser or seller (or prospective purchaser or seller) of any business or asset which we are (or are contemplating) selling or purchasing.
Except when compelled to do so by law, we will always seek the express consent of the client organisation to which you belong prior to disclosing information about you.
Except in cases that may be outlined elsewhere in this policy, we will not provide your data to third parties.
Information that we collect may be stored and processed in and transferred between any of the countries in which we operate, or countries that our suppliers operate.
We will take reasonable precautions to prevent the loss, misuse or alteration of your personal information. Of course, data transmission over the internet is inherently insecure, and we cannot guarantee the security of data sent over the internet.
The website contains links to other websites. We are not responsible for the privacy policies, or content, of third party websites.
Compliance with regulations and changes to this policy
We always endeavour to keep our privacy up to date in relation to both any changes we make to our Services, and any changes in the law. You should therefore review these terms regularly.