(Updated: October 15, 2018.)
1. Personal data we collect.
a. Information you give us.
In order for you to use the Site, we may ask you for certain personal data. The amount and type of information that we gather depends on the nature of the interaction. For example, we ask visitors who would like to comment on our blog to provide a username. In each case, we collect such information only insofar as is necessary or appropriate to fulfill the purpose of your interaction with us. You can always refuse to supply personal data; however, doing so may prevent you from engaging in activities on the Site. In no event will we ever request sensitive personal data (e.g. health information, religious preferences, etc.) from you, and we expressly request that you not provide any such sensitive personal data to us.
b. Web server logs.
As is true of most websites, we gather certain information automatically through your use of the Site. This information may include Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring or exit pages, the files viewed on the Site (e.g., HTML pages, graphics, etc.), operating system, date/time stamp, and clickstream data to analyze trends in the aggregate and administer the site. We use analytical software to help us understand this information. This software sends information to its licensor. Other sites and companies may also use this software. As a result, the licensor may collect information that, when aggregated by them, allows them to identify you individually. We have no responsibility for this collection and use.
2. How we use personal data.
Array Themes will only use the personal data we collect as reasonably necessary for the following purposes:
(i) to allow you to use and interact with the Site;
(ii) to inform our continued development of the Site;
(iii) to communicate with you from time to time in response to your requests for information;
(iv) to send marketing communications related to the services we provide;
(v) as required by applicable law or legal requirements pertaining to records retention or for internal administrative purposes; or
(vi) as specifically authorized by you in writing.
3. Disclosure to third parties.
We will not disclose your personal data to third parties except as follows:
(i) when we believe disclosure is reasonably required to comply with any law or legal request;
(ii) to enforce our legal and contractual rights, or to protect the rights and safety of others;
(iii) to third parties who help us provide any part of the Site, to the limited extent required for such help, and on condition that they may not further disclose your data or use it for any other purpose; or
(iv) as part of a sale of our assets or a merger of our company.
4. Procedures to protect personal data.
5. Your rights over personal data that we control.
You may opt-out of receiving most e-mails from us by following the “unsubscribe” instructions provided in the e-mails. Alternatively, you may contact us as described herein.
We may keep your personal data for as long as reasonably required to meet the purposes described herein. Additionally, we will retain this information as required by law, as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
6. EU-US and Swiss-US Privacy Shield.
We participate in and have certified our compliance with the EU – U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework. We are committed to subjecting all personal data received from European Union (EU) member countries and Switzerland, respectively, in reliance on each Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Frameworks, visit the U.S. Department of Commerce’s Privacy Shield List at https://www.privacyshield.gov/list.
Under the Privacy Shield Frameworks, we are responsible for the processing of personal data that we collect from you and subsequently transfer to a third party acting as an agent on our behalf. We comply with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland including the onward transfer liability provisions. With respect to personal data received or transferred pursuant to the Privacy Shield Frameworks, we are subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including requests made to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third-party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request. Under certain conditions more fully described on the Privacy Shield website located at https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.