Welcome to APPPAH’s Privacy Policy
- Hi there. We’re APPPAH, and welcome to our privacy policy. This policy sets out how we handle your personal information when you visit our Site.
- When we say ‘we’, ‘us’ or ‘APPPAH’ it’s because that’s who we are and we own and run the Site.
- If we say policy, we’re talking about this privacy policy. If we say user terms we’re talking about the rules for the site.
The type of personal information we collect:
- We collect certain personal information about visitors and users of our Site.
- The most common types of information we collect include things like: user-names, member names, email addresses, IP addresses, other contact details, survey responses, blogs, photos, payment information such as payment agent details, transactional details, tax information, support queries, forum comments, content you direct us to make available on our Site (such as item descriptions) and web analytics data. We will also collect personal information from job applications (such as, your CV, the application form itself, cover letter and interview notes).
How we collect personal information:
- We collect personal information directly when you provide it to us, automatically as you navigate through the Site, or through other people when you use services associated with the Site.
- We collect your personal information when you provide it to us when you complete membership registration and buy or provide items or services on our Site, subscribe to a newsletter or email list, submit feedback, enter a contest, fill out a survey, or send us a communication.
Personal information we collect about you from others:
- Although we generally collect personal information directly from you, on occasion, we also collect certain categories of personal information about you from other sources. In particular financial and/or transaction details from payment providers located in the US in order to process a transaction;
How we use personal information:
- We will use your personal information:
- To fulfill a contract, or take steps linked to a contract: in particular, in facilitating and processing transactions that take place on the Site, like when you purchase an item from our Site.
- Where this is necessary for purposes which are in our, or third parties, legitimate interests. These interests include:
- operating the Site;
- providing you with services described on the Site;
- verifying your identity when you sign in to any of our Site;
- responding to support tickets, and helping facilitate the resolution of any disputes;
- updating you with operational news and information about our Site and services e.g. to notify you about changes to our Site, website disruptions or security updates;
- carrying out technical analysis to determine how to improve the Site and services we provide;
- monitoring activity on the Site, e.g. to identify potential fraudulent activity and to ensure compliance with the user terms that apply to the Site;
- managing our relationship with you, e.g. by responding to your comments or queries submitted to us on the Site or asking for your feedback or whether you want to participate in a survey;
- managing our legal and operational affairs (including managing risks relating to content and fraud matters);
- training APPPAH staff about how to best serve our user community;
- improving our products and services.
- providing general administrative and performance functions and activities; and
- processing your job application to APPPAH.
- Where you give us consent:
- providing you with marketing information about products and services that we feel may interest you; and
- We customize our services and website, including advertising that appears on the Site, using cookies or similar technologies to provide a more personalized experience.
- For purposes which are required by law.
- For the purpose of responding to requests by government, a court of law, or law enforcement authorities conducting an investigation.
When we disclose your personal information:
- We will disclose personal information to the following recipients:
- subcontractors and service providers who assist us in connection with the ways we use personal information (as set out above), in particular: website hosting providers which are located in US; technical and customer support services which are located in the US; recruitment agencies which are located in US; marketing and analytics services which are located in the US; security and fraud prevention services which are located in the US; subscription management services which are located in the US; payment processing services which are located in the US; identification verification services located in the US. Note that our subcontractors and service providers may also transfer and access such information from other countries where they operate.
- our professional advisers (lawyers, accountants, financial advisers, etc.), which are located in US;
- regulators and government authorities in connection with our compliance procedures and obligations;
- a third party to respond to requests relating to a criminal investigation or alleged or suspected illegal activity;
- a third party in order to enforce or defend our rights or to address financial or reputational risks; and
- other recipients where we are authorized or required by law to do so.
Where we transfer and/or store your personal information:
- We are based in US so your data will be processed in the US. We take care where possible to work with subcontractors and service providers who maintain an acceptable data security compliance standard.
How we keep your personal information secure:
- We store personal information on secure servers managed by us and our service providers and occasionally in hard copy files kept in a secure location in the US. Personal information that we store or transmit is protected by security and access controls, including username and password authentication, two-factor authentication, and data encryption where appropriate.
How you can access your personal information:
- You can access some of the personal information that we collect about you by logging in to your account. You also have the right to make a request to access other personal information we hold about you and to request corrections of any errors in that data. You can also close the account you have with us on our Site at any time. To make an access or correction request, contact our privacy champion using the contact details at the end of this policy.
Marketing choices regarding your personal information:
- Where we have your consent to do so (e.g. if you have subscribed to one of our e-mail lists or have indicated that you are interested in receiving offers or information from us), we send you marketing communications by email about products and services that we feel may be of interest to you. You can ‘opt-out’ of such communications if you would prefer not to receive them in the future by using the “unsubscribe” facility provided in the communication itself.
- You also have choices about cookies, as described below. By modifying your browser preferences, you have the choice to accept all cookies, to be notified when a cookie is set, or to reject all cookies. If you choose to reject cookies some parts of our Site may not work properly in your case.
Cookies (not the type you eat!) and web analytics:
- For more information about cookies, see http://www.allaboutcookies.org.
- When you visit our Site, certain information is recorded, which is generally anonymous and does not reveal your identity. If you’re logged into your account, some of this information could be associated with your account. We’re talking about the following kinds of details:
- your IP address or proxy server IP address;
- the domain name you requested;
- the name of your internet service provider is sometimes captured depending on the configuration of your ISP connection;
- the date and time of your visit to the website;
- the length of your session;
- the pages that you have accessed;
- the number of times you access our site within any month;
- the file URL you look at and information relating to it;
- the website which referred you to our Site; and
- the operating system which your computer uses.
Information you make public or give to others:
- If you make your personal information available to others, we can’t control or accept responsibility for how they will use or manage that data. There are lots of ways that you can find yourself providing information to other people, like when you post a public message on a forum thread, share information via social media, or make contact with another user (such as a third-party Author) whether via our Site or directly via email. Before making your information publicly available or giving it to anyone else, think carefully. If giving information to another user via our Site, ask them how they will handle your information. If you’re sharing information via another website, check the privacy policy for that site to understand its information management practices, as this privacy policy will not apply.
How long we keep your personal information:
- We retain your personal information for as long as it is necessary to provide the services to you and others and to comply with our legal obligations. If you no longer want us to use your personal information or to provide you with the APPPAH services, you can request that we erase your personal information and close your APPPAH account. Please note that if you request the erasure of your personal information, we will retain information from deleted accounts as necessary for our legitimate business interests, to comply with the law, prevent fraud, collect fees, resolve disputes, troubleshoot problems, assist with investigations, enforce the terms of service and take other actions permitted by law. The information we retain will be handled in accordance with this Privacy Policy.
When we need to update this policy:
- We will need to change this policy from time to time to ensure it stays current with the latest legal requirements and any changes to our privacy management practices.
- When we change the policy, we’ll notify you where required. A copy of the latest version of this policy will always be available on this page.
How you can contact us:
- If you have any questions about our privacy practices or how we have been managing your personal information, please write to our privacy champion at [email protected].
- We’re really glad you made it to the end of the privacy policy. Knowing this information is the best way to understand how your personal information is used and how to best manage it!
If you’re a user or visitor in the European Economic Area, these rights also apply to you:
- For the purposes of applicable EU data protection law (including the General Data Protection Regulation 2016/679 (the “GDPR”), we are a ‘data controller’ of your personal information.
How you can access your personal information:
- You are also entitled to ask us to port your personal information (i.e. to transfer in a structured, commonly used and machine-readable format, to you), to erase it, or restrict its processing. You also have rights to object to some processing that is based on our legitimate interests, such as profiling that we perform for the purposes of direct marketing, and, where we have asked for your consent to process your data, to withdraw this consent as more fully described below.
- These rights are limited in some situations – for example, we can demonstrate that we have a legal requirement to process your personal information. In some instances, this means that we may retain some data even if you withdraw your consent.
- Where we require your personal information to comply with legal or contractual obligations, then provision of such data is mandatory: if such data is not provided, then we will not be able to manage our contractual relationship with you, or to meet obligations placed on us. In all other cases, provision of requested personal information is optional.
- If you have unresolved concerns you also have the right to complain to data protection authorities. The relevant data protection authority will be the data protection authority of the country: (i) of your habitual residence; (ii) of your place of work; or (iii) in which you consider the alleged infringement has occurred.
Both personal information and personal data have the same meaning in the context of this Privacy Policy.
APPPAH Privacy Policy v3, effective date 4 Dec 2023