Last Updated: Jun 4, 2024
We collect the personal information you provide to us when you purchase our products or visit our website. The categories of information we may collect include:
We may collect personal information about you from third-party sources, including Direct Collection.
We do not retain data for any longer than is necessary for the purposes described in this Policy.
We generally retain data according to the guidelines below.Type of Data | Retention Period |
---|---|
Cookies and online data we collect while you use our website, including Name, Email address, Postal address, Telephone number, Online Identifiers, Internet Activity, Purchases, Precise geolocation, Physical characteristics or descriptions, Audio recordings, Photos, Video recordings, Age, Sex, gender, or gender identity, Race, color, or ethnic origin, Marital status, Disability, Military or veteran status, Non-public education records, Professional information, Employment-related information, Account name, Signature | We delete or anonymize data concerning your use of our website within 7 years of collecting it except in cases where ChapterSpot is acting as a service provider to one of its clients such as a national fraternity or other nonprofit organization. In these cases ChapterSpot may retain this information for as long as the organization specifies. If you are a member of one of these organizations, please refer to your organization's privacy policy to learn more about data retention. |
Data we collect in order to process and ship orders you place with us, including Name, Email address, Postal address, Telephone number, Purchases, Credit or debit card number, Bank or other financial account number, Account name, Signature | We keep personal information related to products and services you purchase for as long as the personal data is required for us to fulfill our contract with you, and for 7 years from your last purchase with us. We may keep data beyond this period in anonymized form. |
Data we collect when you contact us for customer support and other inquiries, including Name, Email address, Telephone number, Online Identifiers, Internet Activity, Purchases, Audio recordings, Photos, Video recordings, Contents of mail, email or text messages, Account name | We may keep customer feedback and correspondence with our customer service for up to 7 years to help us respond to any questions or complaints. We may keep data beyond this period in anonymized form. |
Data we collect when you sign up for promotional and marketing communications, including Name, Email address, Telephone number, Online Identifiers, Internet Activity, Employment-related information, Account name | Where you have signed up to receive promotional and marketing communications from us, we will retain any data collected until you opt out or request its deletion. We may keep data beyond this period in anonymized form. We will further retain a record of any opt-outs in order to prevent sending you future communications. |
Data we collect when you review our products, answer surveys, or send feedback, including Name, Email address, Telephone number, Employment-related information | We may retain review, survey, and feedback data for up to 5 years following your last contact with us. We may keep data beyond this period in anonymized form to help improve our products and services. |
Data we collect in connection with privacy requests, including Name, Email address | We retain records related to privacy requests for a minimum of 24 months following the completion of the request. |
Data we collect for security purposes, including Online Identifiers, Internet Activity, Account security or access credentials | We retain security-related data as long as necessary to comply with our legal obligations and to maintain and improve our information security measures. |
We process personal information for the following business and commercial purposes:
We may disclose personal information about you for business and commercial purposes when you purchase our products or visit our website:
Personal Information Category | Categories of Service Providers | Categories of Third Parties |
---|---|---|
Personal Identifiers | Business Operations Tool, Cybersecurity Providers, Data Analytics Providers, Governance, Risk & Compliance Software, IT Infrastructure Services, Payment Processors, Sales & Marketing Tools, Collaboration & Productivity Tools, and Communications Tools | Communications Tools, Cybersecurity Providers, and IT Infrastructure Services |
Internet Activity | Business Operations Tool, Data Analytics Providers, Sales & Marketing Tools, and IT Infrastructure Services | IT Infrastructure Services, Communications Tools, and Cybersecurity Providers |
Commercial Information | Business Operations Tool, Payment Processors, and Sales & Marketing Tools | None |
Financial Information | Business Operations Tool, Data Analytics Providers, Governance, Risk & Compliance Software, Payment Processors, Sales & Marketing Tools, and IT Infrastructure Services | IT Infrastructure Services, Communications Tools, and None |
Physical and Audio Data | None, IT Infrastructure Services, and Sales & Marketing Tools | Communications Tools |
Protected Classifications and Other Personal Characteristics | IT Infrastructure Services and Sales & Marketing Tools | None |
Professional and Education Information | Business Operations Tool, IT Infrastructure Services, Sales & Marketing Tools, and Payment Processors | Communications Tools, Cybersecurity Providers, and None |
Custom Data | Business Operations Tool, Payment Processors, and Sales & Marketing Tools | None |
Consumer Communications | IT Infrastructure Services | None |
This section provides additional information for people in the European Economic Area (EEA) or United Kingdom (UK). The terms used in this section have the same meaning as in the General Data Protection Regulation and the UK Data Protection Act (GDPR). The term “personal information” as used in this notice has the same meaning as “personal data” in the GDPR.
The personal data we collect and how we share it is described above in our Privacy Policy.
We use cookies to improve your experience on our site and to allow us and third parties to personalize the marketing content you see on other websites and social media. Website visitors from European Privacy Law regions can control cookie settings. Manage your region specific consent settings here.
We use these cookies for things like security, logins, site errors, and processing payments. We can't turn these necessary cookies off, but you can control them in your browser.
Cookie Name | Provider | Duration |
---|---|---|
__cf_bm | Vimeo | 31 Mins |
bSession | Wix | 31 Mins |
hs | Wix | Session |
ssr-caching | Wix | 1 Min |
svSession | Wix | 2 Years |
us_privacy | TrueVault | 1 Month 1 Day |
vuid | Vimeo | 1 Year 30 Days |
XSRF-TOKEN | Wix | Session |
These cookies tell us how you use our sites and apps, and provide information to help us improve your experience.
Cookie Name | Provider | Duration |
---|---|---|
_ga | Google Analytics | 1 Year 30 Days |
_ga_V51DDZGZV6 | Google Analytics | 1 Year 30 Days |
We process personal data on the following lawful bases:
Where we process personal data on the basis of our legitimate interests, we pursue the following interests: Creating Customer Profiles, Data Storage, Improving our Products & Services, Operating our Website or Mobile Apps, Internal Business Operations, Meeting Compliance & Legal Requirements, Preventing Fraud, Processing Payments, Providing Customer Support, Providing Cybersecurity, Tracking Purchases & Customer Data, Managing Event & Guest Data, and Sending Promotional Communications.
We may send the personal data of individuals in the EEA/UK to third countries, including the United States, where it may be stored or processed, for example on our service providers’ cloud servers. When we transfer personal data, we rely either on Adequacy Decisions as adopted by the European Commission (EC) or the UK Information Commissioner's Office (ICO) on the basis of Article 45 of Regulation (EU) 2016/679 (GDPR), the EU-US Data Privacy Framework and UK-US Data Bridge agreements, Standard Contractual Clauses (SCCs) issued by the EC or International Data Transfer Agreements (IDTAs) approved by the ICO. Data protection authorities have determined that the SCCs and IDTAs provide sufficient safeguards to protect personal data transferred outside the EEA/UK. You may read more about international data transfer mechanisms at the following links:
Individuals in the EEA/UK have the following rights regarding their personal data.Make a Privacy Request by clicking here. Once you submit a request, we will verify your identity and process your request in most cases within 30 days.
Right to access. You have the right to request a copy of the personal data we hold about you.
Right of portability. You have the right to ask us to transfer your data to another party.
Right to rectification. You have the right to request that we rectify any incorrect information we have about you.
Right of erasure. You have the right to request that we erase (delete) any personal information we hold about you.
Right to withdraw consent. You have the right to withdraw your consent at any time when we rely on your permission to process your personal data.
Right to object. You have the right to object to our use of data about you.
Right to lodge a complaint with a supervisory authority. You have a right to lodge a complaint with a supervisory authority. For more information, you can visit theInformation Commissioner’s Office website at https://ico.org.uk/, or see a list of EU Data Protection Authorities athttps://www.gdprregister.eu/gdpr/dpa-gdpr/.
ChapterSpot