UPDATED: December 7, 2016
As used in this policy, the terms “using” and ”processing” information include using cookies on a computer, subjecting the information to statistical or other analysis, and using or handling information in any way, including without limitation collecting, storing, evaluating, modifying, deleting, using, combining, disclosing and transferring information within our organization or among our affiliates within the United States or internationally.
I. Information Collection
Below are the types and categories of information that we collect.
A. Personal Information.
When you register with us through the Sites or use certain features of the Service we will ask you for personally identifiable information. This refers to information about you that can be used to contact or identify you (“Personal Information”). The Personal Information you will be required to provide consists of your name (though this need not be your real name, but rather whatever name by which you want to be known to the Service and other users) and a verifiable email address (which may be a work or anonymous email address). In addition, you may be required to provide additional Personal Information, such as your real name, a phone number, and an address, when joining certain groups, depending on the policies set by that group’s administrators.
B. Non-Identifying Information.
We may also ask you for other information that is not personally identifiable that you provide as part of your “user profile”, such as your organization, your non-profit or commercial status, and your preferred time zone (“Non-Identifying Information”).
The file names of files that you access or manage via the Service are not treated as Personal Information. Such information is treated as Non-Identifying Information. Therefore, we recommend that you do not include any personally identifiable information in the file names of files that you transfer via the Service. While Globus may view your file names, file sizes, file checksums, and other such file-related metadata, we do not access to the contents of the files or store them on our systems or equipment, unless directed by the user (e.g., for processing).
Your Globus account name, and the account names linked to your Globus account from alternate identity providers, are not treated as Personal Information. Such information is treated as Non-Identifying Information. Therefore, we recommend that you do not include any personally identifiable information in your account names.
C. Log Data.
When you visit the Sites or use the Service, whether logged into a Globus account or as a non-registered user just browsing (any of these, a “Globus User”), our servers automatically record information about your use of the Service and your visit to the Sites (“Log Data”). This Log Data includes: information about your data management activities, such as filenames and other file metadata (but not the file contents); your computer’s Internet Protocol (IP) address; your browser type; what Software you were using with the Service; the web page you were visiting immediately prior to visiting our Sites; pages of our Sites that you visited; the time spent on those pages; information you searched for on our Sites; access times and dates. Log Data may include Personal Information.
II. Use of Information
Our primary goals in using information we collect are to provide and improve the Service, the Sites and the related features and content. We know that our users’ Personal Information is of the most concern, and we take this into consideration prior to using their Personal Information. In this regard, we use Personal Information in the following ways:
A. Service Improvement.
We may combine your Personal Information with Non-Identifying Information and Log Data, and aggregate it with information collected from other Globus Users, to attempt to provide you with a better experience, to improve the quality and value of the Service, and to analyze and understand how our Sites and Service are used. Subject to the section below titled “Sharing and Disclosure of Information,” we may also use the combined information without aggregating it to serve you specifically, for instance to deliver a product to you according to your preferences or restrictions.
We also use your Personal Information, perhaps in combination with Non-Identifying Information and Log Data, to contact you with Globus newsletters, marketing or promotional materials and other information that may be of interest to you. If you decide at any time that you no longer wish to receive such communications from us, please follow the unsubscribe instructions provided in any of the communications or email us at firstname.lastname@example.org with an explicit request to have your information removed from our mailing list. We will comply with your request as soon as reasonably practicable. In no event will we make your Personal Information or email address available for a fee, or for marketing not related to Globus.
C. Service Delivery
We also use your Personal Information, perhaps in combination with Non-Identifying Information and Log Data, to provide you with the services that you may request from us. For example, if you are using the Service, we may use your Personal Information to facilitate the transfer of your files or data. We also may use your Personal Information to deliver you other services, such as educational content or information, newsletters or software you request. Finally, we may use your information to communicate Service related information with you via email or other means, in response to an inquiry by you, or to otherwise alert you to status of activities you have requested from the Service.
III. Sharing and Disclosure of Information
Below we describe the ways that we share the information that we collect via the Service, including your Personal Information, Non-Identifying Information, and Log Data (collectively referred to as “information.”) Other than as described in this section, we do not rent or share information about you with third parties.
A. Aggregate Information and Non-Identifying Information.
We may share aggregated data that does not include Personal Information and we may otherwise disclose Non-Identifying Information and Log Data with third parties for industry analysis, demographic profiling and other purposes. Any aggregated data shared in these contexts will not contain your Personal Information.
B. Service Providers.
We may employ or partner with third party companies, organizations and individuals to facilitate our Service, to provide the Service on our behalf, and to perform Service-related services or to facilitate services to our end-users (“Service Providers”). The types of Service Providers we use include, without limitation, service providers that provide the following types of services: customer support, software development, hosting, accounting, web and user analytics, customer relationship management, webcasting, web site maintenance, database management, transferring data or files at the request of a user, and web and live chat hosting. Our Service Providers have access to your information only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
C. Compliance with Laws and Law Enforcement.
We cooperate with government and law enforcement officials and private parties to enforce and comply with the law. We will disclose any information about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate to respond to claims and legal process (including without limitation subpoenas), to protect our property and rights or those of a third party, to protect the safety of the public or any person, or to prevent or stop activity we consider to be illegal or unethical.
D. Sharing Your Information With Other Users
You can control which other Globus Users can see your Personal Information and Non-Identifying Information in your user profile.
Access to some resources and features may require that you share your information with other Globus Users. For example, a group manager may require that you share certain information with them before they will admit you to the group. However, all such information sharing is under your control, and which you will be requested to consent.
Non-Identifying Information may be shared with the administrators of resources that you access via Globus. For example, if you transfer data to or from an endpoint, that endpoint’s administrators may have access to Non-Identifying Information from your user profile such as your account name(s), and file names.
Identity theft and the practice currently known as “phishing” are of great concern to us. Safeguarding information to help protect you from identity theft is a top priority. We do not and will not, at any time, request your credit card information, login password, or national identification numbers in a non-secure or unsolicited e-mail or telephone communication. For more information about phishing, visit the Federal Trade Commission’s web site.
VI. Changing or Deleting Your Information
You may review, update, correct or delete the Personal Information in your account profile by logging into your account and changing the “user profile” information associated with your account, though such changes may impact your group memberships and associated access rights to certain resources. In order to disable your account please submit a support request by emailing email@example.com.
VII. Data Retention Policy
We may retain your account information indefinitely, regardless of whether you have disabled your account on the Service. We will retain Log Data consistent with applicable legal requirements. We may purge the Log Data from our systems in accordance with any legal requirements. In the event of an investigation by law enforcement or a response to claims or legal process, we may retain the Log Data until such investigation or process is completed.
We take safeguarding your information very seriously. We employ generally-accepted, industry-standard administrative, physical and electronic measures designed to protect the Personal Information submitted to us from unauthorized access, both during transmission and once we receive it. No method of transmission over the Internet, or method of electronic data storage is 100% secure, however. Therefore, while we strive to use commercially acceptable means to protect your Personal Information, we cannot guarantee its absolute security.
We will make disclosures of any breach of the security, confidentiality, or integrity of your unencrypted electronically stored “personal data” (as defined in applicable laws related to security breach notification) as required by law. We will make such disclosures to you via email or conspicuous posting on the Sites in the most expedient time possible and without unreasonable delay. We shall only disclose your “personal information” to the extent required by and consistent with (i) the legitimate needs of law enforcement or (ii) any measures necessary to determine the scope of the breach and restore the reasonable integrity of the data system.
In the event that all or part of our assets are sold or acquired by another party, or in the event of a merger with another party, you grant us the right to assign the information collected via the Service to such other party.
X. International Transfer
XI. Links to Other Web Sites
Our Sites contain links to other web sites. If you choose to click on a third party link, you will be directed to that third party’s web site. The fact that we link to a web site is not an endorsement, authorization or representation of our affiliation with that third party, nor is it an endorsement of their privacy or information security policies or practices. We do not exercise control over third party web sites. These other web sites may place their own cookies or other files on your computer, collect data or solicit personal information from you. Other sites follow different rules regarding the use or disclosure of the personal information you submit to them. We encourage you to read the privacy policies or statements of the other web sites you visit.
XII. Our Policy Toward Children
The Service is not directed to children under 18. We do not knowingly collect personally identifiable information from children under 13. If a parent or guardian becomes aware that his or her child has provided us with Personal Information without their consent, he or she should contact us at firstname.lastname@example.org. If we become aware that a child under 13 has provided us with Personal Information, we will delete such information from our files.
XIII. Your California Privacy Rights
Beginning on January 1, 2005, California Civil Code Section 1798.83 permits our visitors who are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please contact us at: HYPERLINK "mailto:email@example.com" support@globus