Last Updated: October 21, 2020
Moneythink is committed to respecting and protecting the personal privacy of our users. We recognize that you may be concerned about the information you provide to us and how we treat that information.
- Information collected
The nature of the Personally Identifiable Information we collect from or about you depends on the nature of, and purposes for, your interactions with the Services. “Personally Identifiable Information” means your name, street address, telephone number, e-mail address, credit card number, or user or account name or number, or any other piece of information provided by you (or a Partner (as defined in the Terms of Service)) to Moneythink that, individually or when combined with other personal or identifying information, allows the identification of a person or is otherwise considered personally identifiable information or personal data protected under any applicable law. We may collect the following Personally Identifiable Information when you access or use the Services:
(a) Personally Identifiable Information you provide when you complete forms available in connection with the Services, or otherwise submit information to us through the Services (e.g., when you upload an award letter to DecidED (as defined in the Terms of Service));
(b) Personally Identifiable Information that a Partner (as defined in the Terms of Service) may provide about you in connection with your use of the Services;
(c) Personally Identifiable Information you provide when you contact us; and
(d) Details of visits to the Services, including the volume of traffic received, logs, and the resources that you have accessed.
The categories of Personally Identifiable Information we collect from or about you may include the following:
- Identifiers, such as name, contact details, financial information, and address (including physical address, email address, and Internet Protocol (“IP”) address);
- Protected classification characteristics under state or federal law that you may provide to us when you complete forms available in connection with the Services or otherwise submit information to us through the Services; and
- Internet or other electronic network activity information, such as information regarding your use of the Services (e.g., cookies, browsing history and/or search history), as well as information you provide to us when you correspond with us in relation to your inquiries.
We may also collect IP addresses or click-stream data. An IP address is a number that is automatically assigned to your computer whenever you access the Internet. Our computers identify your computer by its IP address. When you request pages from the Services, our computers log your IP address.
- How do we obtain your Personally Identifiable Information?
In connection with operating the Services, we may obtain your Personally Identifiable Information from the following sources:
- Information from your communications with us, your (or a Partner’s (as defined in the Terms of Service)) submissions through the Services, or your interaction with other services that we are offering, including any updates to such information provided by you or a Partner (as defined in the Terms of Service); and
- Information captured by the Services, including registration information, contact information, information provided by you through online forms, and any information captured via cookies.
We may combine Personally Identifiable Information that you (or a Partner (as defined in the Terms of Service)) provide to us with information that we collect from or about you from publicly available sources. This may include information collected in an online or offline context.
- How we use your information
We may use your Personally Identifiable Information for one or more of the following business purposes:
- To understand your needs, deliver services (including the Services) to you and others, and provide you and others with better service;
- To improve the Services and to notify you about changes to the Services;
- To communicate with you, including responding to requests for information submitted by you through the Services, or to notify you of publications that may be of interest to you;
- To keep a record of your relationship with us;
- For ongoing operations, administrative, accounting, reporting, and other processes;
- To audit and verify the quality and effectiveness of the Services, services, and compliance, including over time;
- To detect security incidents and to protect against malicious, deceptive, fraudulent, or illegal activity; and
- To generally comply with U.S., state, local, and non-U.S. laws, rules, and regulations.
Additionally, we may use your Personally Identifiable Information to keep you informed of our services and publications if you have provided your consent for us to do so, or where we have an existing relationship with you and we wish to contact you about such services or publications. You may opt-in to certain kinds of marketing communications by contacting us and you may unsubscribe to certain types of marketing communications we send to you by email by clicking on the “opt-out” or “unsubscribe” link provided in all our marketing emails.
We collect IP addresses and click-stream data for purposes including:
- To perform system administration;
- To improve the Services; and
- To report aggregate information internally or to sponsors or Partners. Click-stream data is information collected by our computers when you request pages from the Services. Click-stream data may include such information as the page served, the time, the source of the request, the type of browser making the request, the preceding page view, and other such non-personal information. When analyzed, this data helps us determine, among other things, how visitors arrive at the Services, what type of content is most popular, and what type of visitors in the aggregate are interested in particular kinds of content and advertising.
- With whom do we share your Personally Identifiable Information?
We do not sell or rent any of the Personally Identifiable Information we collect about you to third parties, unless such Personally Identifiable Information has been aggregated, anonymized, or de-identified so that is no longer identifies a person or otherwise falls within the definition of Personally Identifiable Information. Such data may include a de-identified record of the student financial aid awards uploaded by you (or a Partner (as defined in the Terms of Service)) to DecidED (as defined in the Terms of Service).
We do not disclose any nonpublic Personally Identifiable Information about you to third parties, except as expressly set forth herein or as permitted or required by law or regulation and to affiliates and service providers, including vendors providing hosting, purchasing, payment processing, software services, event management, database management, and development services related to the operation of the Services, or email marketing services related to events we are hosting, our publications, or other communications we may send to you. We may also disclose your information to other parties as may be required by law or regulation, pursuant to legal process, or in response to regulatory inquiries.
We may share each of the categories of Personally Identifiable Information collected in connection with the Services that are set forth above in Section 3 with affiliates and service providers. In addition, if you use DecidED (as defined in the Terms of Service), we may share your Personally Identifiable Information with our Partners (as defined in the Terms of Service) as set forth in the Terms of Service.
Additionally, we may disclose your Personally Identifiable Information to (i) a buyer in the event that we sell any business or assets, (ii) the other party if we merge with or are acquired by another party, (iii) in connection with a partial or total sale of assets, bankruptcy, or another corporate change or reorganization; or (iv) if we are under a duty to disclose or share your Personally Identifiable Information in order to comply with any legal obligation, subpoena or court order, or in order to enforce or apply our other agreements.
We encourage our trusted third-party service providers (including professional advisors, charitable partners, consultants, and data hosting providers, etc.) to adopt and post privacy policies that offer the same level of protection of your Personally Identifiable Information. However, the use of your Personally Identifiable Information by such parties is controlled by those parties and thus, not subject to our control.
- How do we store your Personally Identifiable Information?
Your Personally Identifiable Information resides on a secure server that only selected personnel and contractors have access to. We encrypt certain sensitive information at all times in the transmission process using Secure Socket Layer (SSL) technology to ensure that your Personally Identifiable Information is safe as it is transmitted to us.
We will store your Personally Identifiable Information in an identifiable manner indefinitely, unless (i) otherwise required by applicable law, or (ii) you request deletion of your Personally Identifiable Information pursuant to Section 8(i) or Section 8(ii). At such point that we cease storing your Personally Identifiable Information in an identifiable manner, except to the extent that we may be prohibited from retaining any such information even in unidentifiable form, we will convert all of your Personally Identifiable Information into anonymized, aggregated, or de-identified form. For the avoidance of doubt, Personally Identifiable Information that has been converted into anonymized, aggregated, or de-identified form shall no longer constitute Personally Identifiable Information.
- Changing or deleting your Personally Identifiable Information
- Links to other websites
We may provide links to other websites for your information or convenience. Such websites are independently operated and are not under our control. We are not responsible for the content or privacy practices of such third party websites or any products or services offered through them or the confidentiality, use, processing, or security of any Personally Identifiable Information that you provide to such websites.
- Do Not Track Disclosures
We may use the tracking technologies described in Section 10 to collect information about your online activities over time and across third-party websites or other online services (behavioral tracking).
Some internet browsers have incorporated “Do Not Track” features. Most of these features, when turned on, send a signal or preference (the “DNT Signal”) to web sites you visit indicating that you do not wish to be tracked. We currently respond to DNT Signals.
- Our commitment to data security
We consider the protection of sensitive information to be a sound business practice, and to that end we employ commercially reasonable organizational, physical, technical, and procedural safeguards, which seek to protect your Personally Identifiable Information in our possession or under our control to the extent practicable from unauthorized access and improper use. Unfortunately, the transmission of information via the Internet is not completely secure and we cannot guarantee the security of your Personally Identifiable Information transmitted to or through the Services; any such transmission is at your own risk. Once we have received your information, however, we will use the procedures and security features described above to try to prevent unauthorized access of your Personally Identifiable Information.
- International Users
- Our commitment to children’s privacy
The Services are not directed to children under the age of 13. We adhere to the Children’s Online Privacy Protection Act (“COPPA”) and will not knowingly register or otherwise collect Personally Identifiable Information from any child under the age of 13. We ask that minors under the age of 13 not submit any Personally Identifiable Information to us. If a child under the age of 13 has provided us with Personally Identifiable Information, a parent or guardian of that child may contact us as described in the Section 16 (“Contact”) and request that such information be deleted from our records.
For any questions regarding our processing of your Personally Identifiable Information, or requests relating to the exercise of your rights under the CCPA or other applicable data protection laws, please submit (or have your authorized representative submit) a request using any of the methods set forth below.
Call us using the following toll-free number: (510)-626-0770.
Email us at the following email address: firstname.lastname@example.org.
If you are submitting a request pursuant to the CCPA or other data protection laws, we will contact you to confirm receipt of your request and request any additional information necessary to verify your request. We verify requests by matching information provided in connection with your request to information contained in our records. Depending on the sensitivity of the request and the varying levels of risk in responding to such requests (for example, the risk of responding to fraudulent or malicious requests), we may request further information in order to verify your request. We also reserve the right to verify your request through a third-party verification service. You may designate an authorized agent to make a request under the CCPA on your behalf, provided that you satisfy certain requirements set forth in the CCPA for such authorized agent to make requests on your behalf. We may verify such authorized person’s identity using the procedures above.