Last updated: May 24, 2018
Bridgeline Digital complies with the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries and Switzerland. Bridgeline Digital has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Safe Harbor program, and to view the company’s certification, please visit http://www.export.gov/safeharbor. Furthermore, for EU-based natural persons, Bridgeline will comply with the European Union’s General Data Protection Regulation (“GDPR”) regarding the collection, use, and retention of personal information from European Union member countries. Bridgeline Digital will adhere to the GDPR principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the GDPR, please visit https://www.eugdpr.org/.
1. What personally identifiable information, or personal information under the GDPR, does Bridgeline Digital collect from you?
Bridgeline Digital collects information from our users at several different points on our website. In general, you can visit the Bridgeline Digital website without telling us who you are or revealing any personal information. We track visiting domains, internet addresses of the domains from which people visit us to track a user's session. The user's browser also lets us know the type of computer and operating system being used. This allows us to analyze the information as to which parts of our site users spend their time and their length of stay but we do not use this to obtain any personal information about the user.
You make the decision whether to proceed with any activity that requests personal information. If you do not wish to provide the requested information, you may not be able to complete the applicable activity or use certain features or functions of our website.
2. How does Bridgeline Digital use information it collects?
In general, we use the information collected on our website to provide our website to you, to provide you with access to services or otherwise engage in activities you select, to help us understand who uses our website, to improve our website, to assist us in creating better products and services to meet your needs, to help you quickly find software, services, or product information important to you, and to contact you for customer service and billing purposes, in response to your inquiries, and to notify you about important changes to our website.
If you provide us with your e-mail or postal address, or have done so in the past, we may use it to send you information on the latest Bridgeline Digital products, promotions, and events. We may use information you have given to us, for example, to measure consumer interest in our various products, or to inform you about new products and services. These offers may be based on information you provided in your initial transaction with us or in surveys. Bridgeline Digital provides customers with an easy means to decline to receive such e-mail offers. All e-mail offers that you receive from Bridgeline Digital will tell you how to decline further e-mail offers. To manually unsubscribe from our lists, please send an e-mail to email@example.com.
For EU-resident users who are natural persons, you will be receiving an “Opt-In” email on a move forward basis for the data in which Bridgeline is expressly requesting the use of, with a description of the purpose, and for the duration in which Bridgeline may require the maintenance that data.
3. What are cookies and how does Bridgeline Digital use them?
Some of our web pages utilize "cookies" which are small text files placed on your computer’s hard drive that are read by the server that placed them, are unable to execute any code or virus and cannot take any additional information from your hard drive. These cookies allow the Bridgeline Digital website to recognize you when you revisit the site, and are able to remember certain information about you, such as your preferences in the site and the type of content you find of interest so that we can better serve you with more tailored information when you return to our site. You can set your browser to notify you when you are sent a cookie, giving you the chance to decide whether or not to accept it. The information we collect and analyze is used to improve our service to you and personalize your web browsing experience.
4. What is Bridgeline Digital’s policy regarding links to other websites and third parties?
5. With whom is this information shared?
We may offer a service or promotion in conjunction with business partners, for example, a joint seminar or a product integration solution. In cases such as these, information collected may be shared by both companies.
We may partner with another party to provide specific services. When the user signs up for these services, we will share names, or other contact and billing information that is necessary for the third party to provide these services. These parties are not allowed to use personally identifiable information except for the purpose of providing these services.
We may provide to third parties information about you that by itself does not allow you to be identified or contacted, including where such information is combined with similar information of other users of our website. For example, we might inform third parties regarding the number of unique users who visit our website, the demographic breakdown of our registered users of our website, or the products and/or services purchased using our website and the vendors of such products and services. The third parties to which we may provide this information may include potential or actual advertisers, providers of advertising products or services (including vendors and website tracking services), merchants, affiliates and other actual or potential commercial partners, sponsors, licensees, researchers and other similar parties.
6. What options do you have regarding the collection, use and distribution of your information?
7. What is Bridgeline Digital's policy on allowing you to update, correct or delete your personally identifiable information?
If you would like to access, amend, or delete and of your personably identifiable information, please send an e-mail to firstname.lastname@example.org
8. What security precautions are in place to protect the loss, misuse or alteration of your information?
Bridgeline Digital Takes reasonable precautions to protect personally identifiable information or personal information from loss, misuse and unauthorized access, disclosure, alteration and destruction. To protect the privacy of any personal information or personal information you may have provided, Bridgeline Digital employs industry-standard controls including physical access controls, Internet firewalls, intrusion detection, and network monitoring. Additionally, only authorized administrators and staff have access to systems containing such information. Backup data is securely stored and not shared with third-parties.
If after 30 days you still believe your complaint has not been satisfactorily resolved, you may require that the matter be settled by a binding independent recourse mechanism. As an independent recourse mechanism, we recommend the American Arbitration Association ("AAA"). The AAA provides dispute resolution services using a neutral arbitrator which will provide case resolution under the applicable AAA rules. Written notice of arbitration should be delivered to Bridgeline Digital to email@example.com and such arbitration will take place in Boston, Massachusetts, USA, or other location agreed to by Bridgeline Digital. Each party will bear its own costs of arbitration. The arbitrator will have no authority to award punitive damages. For more information on the AAA and the dispute resolution services, please see www.adr.org.
For EU-resident users who are natural persons, Bridgeline will respond to privacy inquiries in no longer than seventy (72) hours from the receipt of your inquiry as required under the GDPR. For unresolved issues under the GDPR, the dispute may be resolved as proscribed by the appropriate authority of the Member State.