When you use srnd.org services, we collect information about you and your use of those services. This policy describes how we will use that information. Your privacy matters to us, so please take the time to read and understand this policy.
This policy applies to all of the services provided by srnd.org, including both electronic services (such as the srnd.org website) and physical services (such as CodeDay).
This policy changes from time to time. We will post any changes on this site, and, if the changes are significant, we will provide a more prominent notice (such as on the homepage or by email notification).
What Information We Collect
We collect several types of information:
Information you give us. Many of our services require you to provide information, such as a name, email, address, or billing information. Additionally, some services require you to sign up for or log in with a srnd.org account, which requires similar information.
Public information. For example, we collect information on your contributions to open-source software.
Information we get when you use our services. This information includes:
Device information. When you use one of srnd.org's electronic services, we collect information which can be used to uniquely identify your device.
Location information. When you use our electronic or physical services, we collect information about your physical location. We request explicit permission before collecting location data more precise than your city.
Log information. When you use our electronic or physical services, we automatically collect certain information and store it as logs. This includes details of how you used the service (such as how many tickets you bought for CodeDay).
How We Use Your Information
We use your information internally for the following purposes:
To provide services. We use the information we collect to continue to provide existing services, to improve them, and to develop new ones.
For safety and security. We use the information we collect to protect ourselves and our users. For example, we maintain a list of people who are no longer allowed to attend our events for security reasons.
To keep you updated. We use information we collect to provide updates on existing and new services, and to occasionally let you know about donation or volunteer opportunities.
We may collect and store this information in a country outside the one where you live.
When We Share Information
We provide information to third-parties for the following purposes:
To process it. We provide some information to trusted partners to process it for us in compliance with appropriate security and confidentiality measures. For example, we provide your payment information to our payment processing provider.
To measure and demonstrate results. We share aggregated, non-personally-identifying information with our partners or publicly to show the effects of our programs. In some cases, we may also share individual-level information with partners who have agreed not to disclose this information.
To match you with internships. We provide limited information to trusted partners who provide Computer Science-related internships. This information is limited to your name, email, and public information.
When you choose to share it. When using our services, you have the option of sharing some information publicly, such as sharing a project you create at CodeDay.
For safety and security. We provide information to third-parties if we have a good-faith belief that doing so is necessary to:
- Meet an applicable law, regulation, legal process or enforceable governmental request
- Detect, prevent, or otherwise address fraud, security or technical issues.
- Protect against harm to property or safety.
We use industry-standard measures to protect our data from unauthorized alteration or disclosure. In particular:
- We encrypt many of our services using HTTPS/TLS.
- We store passwords and other sensitive data using industry-standard cryptography.
- We restrict access to personal information to employees, contractors, and volunteers who have a need to know it.
- We review security and processing practices of third-parties with whom we share information.
- We review our information collection, storage and processing practices, including physical security measures, to guard against unauthorized access to systems.