Information We Collect
Personal Data That You Provide Through the Site
We collect Personal Data from you when you voluntarily provide such information, such as when you contact us with inquiries, respond to one of our surveys, register for access to the Site by creating an online profile, make a donation, or use certain Services.
Some of our database (but not all) choose to join our online community by registering on this website and creating an online profile. In both instances (individuals with offline database records and individuals with online profiles), we collect and store personal information (or “data”) about you. We are committed to protecting and respecting your privacy and this Policy sets out what information we collect about you, where and how we use (“process”) it.
We may change this Policy from time to time. If we make any significant changes we will advertise this on the website or contact you directly with the information. Please check this page occasionally to make sure you are happy with any changes.
If you have any questions about this Policy or concerning your personal information, please contact the System Administrator at firstname.lastname@example.org.
For the purposes of current and future legislation covering data protection in , the Data Controller is .
What type of personal information we collect
The information we have about you depends on where we collect it, but may include:
Where we collect information from
We collect personal information when you:
How we use your information
Shatterproof and its subsidiaries and affiliates (the “Related Companies”) may also use your Personal Data and other personally non-identifiable information collected through the Site to help us improve the content and functionality of the Site, to better understand our users and to improve the Services. You have the right to request details of how we use your personal information through making a subject access request. Such requests have to be made in writing by contacting email@example.com.
We will use your personal information in a number of ways, always with a legal basis for processing your data. These may include:
If you provide Personal Data to this Site, you acknowledge and agree that such Personal Data may be transferred from your current location to the offices and servers of Shatterproof and the authorized third parties referred to herein located in the United States.
When you visit our Site or use our Services, we collect information about which of the Services you’ve used and how you’ve used them. Examples of this information include:
In operating this Site, we may use a technology called “cookies.” A cookie is a piece of information that the computer that hosts our Site gives to your browser when you access the Site. Our cookies help provide additional functionality to the Site and help us analyze Site usage more accurately. For instance, our Site may set a cookie on your browser that allows you to access the Site without needing to remember and then enter a password more than once during a visit to the Site. On most web browsers, you will find a “help” section on the toolbar. Please refer to this section for information on how to receive a notification when you are receiving a new cookie and how to turn cookies off. We recommend that you leave cookies turned on because they allow you to take advantage of some of the Site’s features.
Web Beacons (Clear Gifs)
We may also employ a software technology called clear gifs (a.k.a. Web Beacons) that help us better manage content on our Site by informing us what content is effective. Clear gifs are tiny graphics with a unique identifier, similar in function to cookies, and are used to track the online movements of Web users. In contrast to cookies, which are stored on a user’s computer hard drive, clear gifs are embedded invisibly on Web pages and are about the size of the period at the end of this sentence. We may tie the information gathered by clear gifs to our customers’ Personal Data. We may use clear gifs in our HTML-based emails to let us know which emails have been opened by recipients. This allows us to gauge the effectiveness of certain communications and the effectiveness of our marketing campaigns.
We Share Your Personal Data and Other Information:
Shatterproof is not in the business of selling your information. We consider this information to be a vital part of our relationship with you. There are, however, certain circumstances in which we may share your Personal Data with certain third parties without further notice to you, as set forth below:
Vendors and Service Providers: Shatterproof, like many businesses, sometimes hires other companies to perform certain business-related functions that help us provide Services to you and to run our organization. Examples of such functions include mailing information, maintaining databases and provision of other IT services, and processing payments. When we employ another company to perform a function of this nature, we only provide them with the information that they need to perform their specific function and we prohibit them by contract from using your Personal Data for any purpose except to provide Shatterproof with services.
Business Transfers: In the event of a transaction or proposed transaction involving the transfer of substantially all of the assets of Shatterproof to another entity, whether an affiliate or a third party, or in connection with a bankruptcy, we may share your Personal Data in the diligence process or to otherwise facilitate the transaction, and with individuals assisting in the transaction or in connection with a bankruptcy. Your Personal Data may also be one of the transferred assets as part of the transaction or bankruptcy.
Legal Requirements: Shatterproof may disclose your Personal Data if required to do so by law or in the good faith belief that such action is necessary to (i) comply with a legal obligation, such as to comply with any valid legal process, governmental request, or applicable law, rule, or regulation, (ii) protect and defend the rights or property of Shatterproof, our users or others, (iii) act in urgent circumstances to protect the personal safety of users of the Site or the public, or (iv) protect against legal liability.
Updating your consent preferences
If you have an online profile on this website you can update your consent options by logging-in and clicking on “My Settings” in your profile. Scroll down to find your ‘Consent options’ where you will see a list of consents and the options “opt-in”, “opt-out” and “unspecified”.
Via ‘My Settings’ you can also choose to hide your profile from Google, limit access to your profile so that it’s only viewable to your connections and adjust some of the automatic notifications that you receive from this website. Please note that your name (but not full profile) may appear in various places around the community website, such as a ‘Recent Joiners’ box and in ‘Search’ results irrespective of the privacy settings you have selected.
If we are using consent as our legal basis for processing your data, we must have an explicit “opt-in” from you for this specific type of processing.
If we are using legitimate interests as our legal basis for processing your data, we will process your data responsibly in a way that you would reasonably expect, and you can opt-out at any stage.
If you click ‘unsubscribe’ at the bottom of one of our emails sent you will be automatically opted-out of these types of email communications in the future.
If you want to contact us about your consent preferences please contact the System Administrator by email at firstname.lastname@example.org.
How we keep your information safe
We understand the importance of keeping your personal information secure and take appropriate steps to safeguard it.
Your data is stored on a dedicated, secure cloud server hosted by Amazon Web Services (AWS) in the and managed by our website provider, ToucanTech. Industry standard firewalls, anti-virus, encryption and back-up methods are in place, as well as strict data handling protocols.
We always ensure only authorised persons have access to your information, which means only our approved employees and contractors, and that everyone who has access is appropriately trained in data management.
If you have an online profile for this website you are responsible for keeping your login details (email and password) confidential and we ask that you do not share your password with anyone.
No data transmission over the internet can be guaranteed to be completely secure. So, whilst we strive to safeguard your information, we cannot guarantee the security of any information you provide online and you do this at your own risk.
Who has access to your information?
Third parties who provide services for us, for example Kentucky Opioid Response Effort (KORE). We provide these third parties with the information that is necessary to provide the service and we will have an agreement in place that requires them to operate with the same care over data protection as we do. We will let you know how your data is used when you register for any event
Web hosting, email hosting, analytics and search engine providers that enable us to run our community database and improve our website and its use
Other than this, we will not share your information with other organisations without your consent.
Keeping your information up to date
Please would you let us know if your contact details change. Online members can update your details directly by logging-in to the website and clicking on ‘My Settings’ under your profile. You can also update your details by contacting us at email@example.com.
Use of aggregated data
Where data can be aggregated and anonymised, our website provider (ToucanTech) might use this for research purposes without restriction. For example, they may monitor traffic patterns, site usage, response rates and data trends to help make improvement to the website software. They are entitled to do this because the resulting data will not personal identify you and will therefore no longer constitute personal data for the purposes of data protection laws.
How long we keep your information for
We will hold your personal information for as long as it is necessary for the relevant activity.
Where we rely on your consent to contact you for direct email marketing/ fundraising purposes, we will treat your consent as lasting only for as long as it is reasonable to do so. This will usually be for [two] years. We may periodically ask you to renew your consent.
If you ask us to stop contacting you, we will keep a record of your contact details and limited information needed to ensure we comply with your request. If you ask us to remove your personal data from our database we will delete all the information we hold out apart from your name and the dates that you attended and archive your record in our database.
You have the right to request details of how we use your personal information through making a subject access request. Such requests have to be made in writing by contacting firstname.lastname@example.org.
You also have the following rights:
All of these rights are subject to certain safeguards and limits or exemptions. To exercise any of these rights, you should contact email@example.com.
Your California Privacy Rights: “Shine the Light” Law
California law permits users who are California residents to request and obtain from us once a year, free of charge, a list of the Third Parties to whom we have disclosed their Personal Data (if any) for their direct marketing purposes in the prior calendar year, as well as the type of Personal Data, disclosed to those parties. Shatterproof does not share your Personal Data with third parties for their direct marketing purposes.
If an individual believes that has not complied with this policy or acted otherwise than in accordance with Data Protection Laws, please contact us immediately.
This Policy was last updated in February 2022.