What information does NSCHBC collect and how is personal information used once it is collected?
Data that NSCHBC collects is used only to help NSCHBC better serve its members. It is NSCHBC’s policy to collect and store only personal information that its members and visitors knowingly provide. Information collected online is defined as being either anonymous or personally identifiable.
Anonymous information refers to data that cannot be tied back to a specific individual. NSCHBC does not collect any personal information from users browsing its public website. Only aggregate data-such as the number of hits per page, browsers and platform types-is collected. Aggregate data is only used for internal and marketing purposes and does not provide any personally identifying information.
Personally identifiable information refers to data that tells NSCHBC specifically who the visitor is. To gain access to members-only resources and personalization features on the NSCHBC website, members are asked to provide some limited information. This data is submitted voluntarily. NSCHBC asks users to provide their name and member number for Login purposes, and to verify contact information for convention registration.
The database storing NSCHBC membership contact information is a record that is held in trust. Its use for commercial or solicitation purposes is denied to all. Non-members will be denied requests for lists of members.
EU Data Subjects
Scope. This section applies if you are an individual located in the European Union or European Economic Area (collectively, “EU”) (“EU Data Subject”). For these purposes, reference to the EU also includes the European Economic Area countries of Iceland, Liechtenstein and Norway and, where applicable, Switzerland.
Data Controller. NSCHBC is the data controller for the processing of your Personal Data.
Your Rights. Subject to applicable law, you have the following rights in relation to your Personal Data:
- Right of access: If you ask us, we will confirm whether we are processing your Personal Data and, if so, provide you with a copy of that Personal Data (along with certain other details). If you require additional copies, we may need to charge a reasonable fee.
- Right to rectification: If your Personal Data is inaccurate or incomplete, you are entitled to have it rectified or completed. If we have shared your Personal Data with others, we will tell them about the rectification where possible. If you ask us, where possible and lawful to do so, we will also tell you with whom we shared your Personal Data so that you can contact them directly.
- Right to erasure: You may ask us to delete or remove your Personal Data and we will do so in some circumstances, such as where we no longer need it (we may not delete your data when other interests outweigh your right to deletion). If we have shared your data with others, we will tell them about the erasure where possible. If you ask us, where possible and lawful to do so, we will also tell you with whom we shared your Personal Data so that you can contact them directly.
- Right to restrict processing: You may ask us to restrict or ‘block’ the processing of your Personal Data in certain circumstances, such as where you contest the accuracy of that Personal Data or object to us processing it. We will tell you before we lift any restriction on processing. If we have shared your Personal Data with others, we will tell them about the restriction where possible. If you ask us, where possible and lawful to do so, we will also tell you with whom we shared your Personal Data so that you can contact them directly.
- Right to data portability: Effective 25 May 2018, you have the right to obtain your Personal Data from us that you consented to give us or that is necessary to perform a contract with you. We will give you your Personal Data in a structured, commonly used and machine-readable format. You may reuse it elsewhere.
- Right to object: You may ask us at any time to stop processing your Personal Data, and we will do so:
- If we are relying on a legitimate interest to process your Personal Data — unless we demonstrate compelling legitimate grounds for the processing; or
- If we are processing your Personal Data for direct marketing.
- Rights in relation to automated decision-making and profiling: You have the right to be free from decisions based solely on automated processing of your Personal Data, including profiling, that affect you, unless such processing is necessary for entering into, or the performance of, a contract between you and us or you provide your explicit consent to such processing.
- Right to withdraw consent: If we rely on your consent to process your Personal Data, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on your prior consent.
- Right to lodge a complaint with the data protection authority: If you have a concern about our privacy practices, including the way we have handled your Personal Data, you can report it to the data protection authority that is authorized to hear those concerns.
You may exercise your rights by contacting us as indicated under “Contact Us” section below.
California Privacy Rights
What are “cookies” and how does NSCHBC use them?
What privacy issues arise with links to other sites and who collects information and has access to it?
Data collected through NSCHBC’s website is collected and maintained solely by NSCHBC.
This website contains links to other websites. NSCHBC has no control over, and is not responsible for, the privacy policies or content of such sites.
How can members modify their NSCHBC member information?
Members may change their information by sending an e-mail to info@NSCHBC.org or by mail to the following postal address: NSCHBC, 11130 Sunrise Valley Drive, Suite 350, Reston, VA 20191 or by utilizing the Update your Profile feature in the members-only section of www.NSCHBC.org.
NSCHBC may occasionally need to send members messages pertaining to their use of the services and/or the sites. These messages are limited in that they, among other things, will clearly indicate the originator of the e-mail.
What types of security procedures are in place to protect against the loss, misuse, or alteration of information?
NSCHBC has security measures in place to protect the information under its control. While the organization makes every effort to ensure the integrity and security of its network and systems, it cannot guarantee that its security measures will prevent third-party “hackers” from illegally obtaining information. NSCHBC will never sell member or visitors’ information to a third party. Any information that is disclosed in public areas of NSCHBC’s website, in the members-only Forum, or on the Internet may become public information. Members and visitors should exercise caution when deciding to disclose personal information in these areas.