Privacy Policy

EOY Media (the "Company") is committed to maintaining robust privacy protections for all of our users. This Privacy Policy ("Privacy Policy") is designed to help you understand how we collect, use, and safeguard the information you provide to us and to assist you in making informed decisions when using our Service.

For purposes of this agreement, "Service" refers to the Company's website(s), mobile apps, surveys, newsletters, and other related media and events. The terms "we", "us", and "our" refer to the Company. "You" refers to you, as a user of Service. By using Service you are accepting our Privacy Policy and Terms of Use and, in turn, you consent to our collection, storage, use, and disclosure of your personal information as described in this Privacy Policy.

Information We Collect

Personally Identifiable Information ("PII"), as used in US privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. We collect PII from you when you register for an account for our Service, subscribe to a newsletter or other types of notifications, respond to a survey or poll, request contact or support, fill out a form, or otherwise enter information into our Service.

How We Use Information

We may use the information we collect as outlined above in the following ways:

How We Protect Information

Our Service is scanned on a regular basis for security holes and known vulnerabilities in order to make your interactions with our Service as safe as possible.

We use regular Malware Scanning and implement a number of security measures when you enter, submit, or access your information to maintain the safety of that information. Additonally, any PII is contained behind secured networks and is only accessible by a limited number of persons who have specific access rights to such systems, and are required to keep any PII confidential. We also utilize Secure Socket Layer (SSL) technology to ensure that any PII you supply is encrypted during submission and retrieval.

All transactions which contain sensitive information such as payment details are processed through a gateway provider who is qualified and certified to handle such information and are never stored or processed on our servers.

Other Information We Collect

In addition to PII outlined above, we may collect other information that cannot be used to readily identify you, such as (for example) the domain name and IP address of your computer. We may use this information, individually or in the aggregate, for technical administration of our Service; research and development; and to help us focus our marketing efforts more precisely.

Cookies

Cookies are small files that a site or its service provider transfers to your computer's hard drive through your Web browser (if you allow) that enables the site's or service provider's systems to recognize your browser and capture and remember certain information.

We use cookies to:

You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser (like Internet Explorer) settings. Each browser is a little different, so look at your browser's Help menu to learn the correct way to modify your cookies.

Third Party Disclosure

We may offer third-party products or integrate third-party services in combination with our Service. Whenever we do so, the third-parties involvement will be explicitly noted.

Do Not Track Signals

We honor do not track signals and do not track, plant cookies, or use advertising when a Do Not Track (DNT) browser mechanism is in place.

CalOPPA

CalOPPA is the first state law in the nation to require commercial websites and online services to post a privacy policy. The law's reach stretches well beyond California to require a person or company in the United States (and conceivably the world) that operates websites collecting personally identifiable information from California consumers to post a conspicuous privacy policy on its website stating exactly the information being collected and those individuals with whom it is being shared, and to comply with this policy. See more at: http://consumercal.org/california-online-privacy-protection-act-caloppa/#sthash.0FdRbT51.dpuf.

In compliance with CalOPPA, the following is true:

COPPA

Consistent with the requirements of COPPA, on any child-targeted part of our Service, or in any instance where we ask for age and determine the user is age 12 or under, we will ask for a parent or guardian email address before we collect any personal information from the child. If you believe your child is participating in an activity that collects personal information and you or another parent/guardian have NOT received an email providing notice or seeking your consent, please feel free to contact us at [email protected]. We will not use parent emails provided for parental consent purposes to market to the parent, unless the parent has expressly opted in to email marketing or has separately participated in an activity that allows for such email contact.

Content Generated by a Child

Certain activities provided by our Service allow children to create or manipulate content and save it with us. Some of these activities do not require children to provide any personal information and therefore may not result in notice to the parent or require parental consent. If an activity potentially allows a child to insert personal information in their created content, we will either pre-screen the submission to delete any personal information, or we will seek verifiable parental consent by email for the collection. Examples of created content that may include personal information are stories or other open-text fields, and drawings that allow text or free-hand entry of information. If, in addition to collecting content that includes personal information, we also plans to post the content publicly or share it with a third party for the third party’s own use, we will obtain a higher level of parental consent.

About Verifiable Parental Consent

Email Consent

In the event the Company wishes to collect personal information from a child, COPPA requires that we first seek a parent or guardian’s consent by email. In the email we will explain what information we are collecting, how we plan to use it, how the parent can provide consent, and how the parent can revoke consent. If we do not receive parental consent within a reasonable time, we will delete the parent contact information and any other information collected from the child in connection with that activity.

High-Level Consent

In the event the Company collects personal information from a child that will be posted publicly, we will seek a higher level of consent than email consent. Such "high-level" methods of consent include but are not limited to asking for a credit card or other payment method for verification (with a nominal charge involved), speaking to a trained customer service representative by telephone or video chat, or requiring a signed consent form by mail, email attachment, or fax. After providing high-level consent, a parent may have the opportunity to use a pin or password in future communications as a way to confirm the parent’s identity.

Teacher Consent in lieu of a Parent

With regard to school-based activities, COPPA allows teachers and school administrators to act in the stead of parents to provide consent for the collection of personal information from children. Schools should always notify parents about these activities. For more information on parental rights with respect to a child’s educational record under the Family Educational Rights and Privacy Act (FERPA), please visit the FERPA site.

Email Contact with a Child

On occasion, in order to respond to a question or request from a child, the Company may need to ask for the child's online contact information, such as an email address. We will delete this information immediately after responding to the question or request.

In connection with certain activities or services, we may collect a child’s online contact information, such as an email address, in order to communicate with the child more than once. In such instances we will retain the child's online contact information to honor the request and for no other purpose such as marketing. Whenever we collect a child's online contact information for ongoing communications, we will simultaneously require a parent email address in order to notify the parent about the collection and use of the child's information, as well as to provide the parent an opportunity to prevent further contact with the child. On some occasions a child may be engaged in more than one ongoing communication, and a parent may be required to "opt-out" of each communication individually.

Parental Choices and Controls

At any time, parents can refuse to permit us to collect further personal information from their children in association with a particular account, and can request that we delete from our records the personal information we have collected in connection with that account. Please keep in mind that a request to delete records may lead to a termination of an account, membership, or other service. Such requests may be sent to [email protected].

Fair Information Practices

The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur we will post a notification on our site and notify affected users via email within 7 days.

We also agree to the individual redress principle, which requires that individuals have a right to pursue legally enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or a government agency to investigate and/or prosecute non-compliance by data processors.

CAN-SPAM Act

The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.

We collect your email address in order to:

To be in accordance with CANSPAM we agree to the following:

Email communications can be unsubscribed from at any time by following the instructions at the bottom of the email.

Notice to European Union Users

Our operations are located primarily in the United States. If you provide information to us, the information will be transferred out of the European Union (EU) to the United States. By providing personal information to us, you are consenting to its storage and use as described herein.

Changes to our Privacy Policy

This Privacy Policy is effective as of the Last Modified Date noted below and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.

We reserve the right to change this Privacy Policy at any time and suggest that you check it periodically. Your continued use of the Service after we post any modifications to the Privacy Policy on this page will constitute your acknowledgement of the modifications and your consent to abide and be bound by the modified Privacy Policy.

If we make any material changes to this Privacy Policy, we will notify you either through an email address provided to us, or by placing a prominent notice on our website.

Contact

If you have any questions about this Privacy Policy, you may contact us at [email protected].

Last Modified: Aug 27, 2016