This Privacy Policy was last modified on December 11, 2024.
his is the official privacy policy ("Privacy Policy") of the California Academy of Sciences ("Academy", "we", "us" or "our") and describes how we handle Personal Information (as defined below) you provide to us or that we collect from you through the use of our Website, which is located at www.calacademy.org, and any additional, replacement, substitute or backup websites and web pages that are associated with our website, including www.bigpicturecompetition.org, https://www.isleexplore-saba.org, www.antweb.org, www.biographic.com, www.reimaginingsf.org (collectively, the "Website"), when you visit our museums, exhibits or other events, make inquiries or contact us through email or phone, subscribe to our mailing lists, make a donation to us, enter a sweepstakes/contest sponsored by us, respond to a survey or otherwise engage with us.
This Policy is subject to our Terms of Use located at https://www.calacademy.org/terms-of-use. We may update this Policy from time to time, as specified in the “Changes to This Privacy Policy” section below.
EU Privacy – GDPR
If you are a resident of the European Union (EU) and/or European Economic Area (EEA) see below for an additional privacy notice applicable to you.
Your Consent
Please review this Policy. You should read this entire Policy before submitting information, including personal information, to us in any form or using our Website. Whenever you submit personal information to us, you consent to the collection, use, disclosure, transfer, and storage of that information in accordance with this Policy.
All personal information may be used for the purposes stated in this Policy. We may make full use of all information that is de-identified, aggregated, or otherwise not in personally identifiable form. We may also make full use of all user-generated content you submit to us, in accordance with our Terms of Use.
Personal Information
When we use the term "Personal Information" in this Privacy Policy, we mean information such as your first/middle initial or name, last name, e-mail address, street address, mailing address if different, town or city, state, zip code, telephone number, date of birth, credit card information, and any other information that would allow someone to identify you or contact you including information collected through cookies and other technology. We collect information from you when you voluntarily provide it, using automated technology, and through third party sources. We may combine data from third party sources including through other companies, exchanging mailing lists, database co-operatives, and referrals. We may collect Personal Information about you when you purchase an Academy membership, purchase Academy tickets, make a donation to the Academy, register for an Academy event, participate in an Academy contest or sweepstakes, and for similar business purposes.
Personal Information also includes information collected and maintained through your use of our Website, including about your personal preferences, survey responses and your relationship with us (for example, if you are a subscriber to Academy eNews). When you browse our Website, we also collect information about you through your browser, computer hardware and software. This information can include your IP address, device ID, browser type, domain names, access times and dates, number of clicks, pages viewed, one or more cookies (as described below) that may uniquely identify your browser, and referring website addresses. We also collect and maintain aggregate anonymous information about usage of and visitors to our website.
How We Use Your Personal Information
The Academy uses Personal Information to:
- send you Academy eNews,
- provide you with information regarding the Academy and Academy services and opportunities by means of — but not limited to — web, email, mail, text message,
- process Academy memberships,
- facilitate advertising and marketing, including direct marketing,
- administer and maintain our Website,
- respond to your inquiries,
- improve our services, business, and Website,
- process your donations and share some donor information with service providers and third parties,
- manage our business including spam detection and fraud prevention purposes,
- legal and research purposes,
- understand how you use our Website and Services, and, if applicable, your subscription to Academy eNews.
You may subscribe or unsubscribe to Academy communications, including Academy eNews. You may manage your subscription at any time by clicking the “Manage Subscription” link at the bottom of any email you receive from the Academy. Any credit card information you provide in connection with a transaction will be used only as needed to process that transaction.
If you are a subscriber, you are responsible for giving us current, complete and accurate information and keeping the information you provide to us up to date. We cannot and shall not be responsible for any problems or liability that may arise if you do not give us current, accurate, truthful or complete information or you fail to update the information you give us.
Retention of Personal Information
We will retain your personal information for as long as it is necessary for the purposes described in this Policy. We will retain and use your personal information to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies.
How We Share Your Personal Information
Service Providers and Contractors
We disclose Personal Information you provide to consultants, service providers, and contractors that we use to support our business and operations who have agreed to keep the information confidential and use it only to provide the applicable service(s), such as vendors, that help us communicate with you, vendors that host our website and data, marketing and targeted advertising vendors, security and fraud detection vendors and vendors that manage donor databases.
Third Parties
We share your personal information, including name, address, details of your membership, and transactions, including donation amount and history, email communication history, and history of other interactions with us, through mailing list exchanges with third parties such as Arts and Cultural organizations, Co-operative databases, and advertising trade organizations such as Encore: Museum Guide. These companies may use the shared information for their own purposes including advertising and marketing. If you would like to opt-out of this sharing, please contact us at privacy@calacademy.org and request to be put on the Do Not Exchange list.
We also share your information with third parties such as advertising companies and marketing entities. See section below titled “Advertising and Behavioral Marketing” for additional information. You can also click the “Do Not Sell or Share My Personal Information” link at the bottom of our Website webpages.
No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. Sharing of Personal Information with third party partners excludes text messaging originator opt-in data and consent; this information will not be shared with any third parties. For additional information regarding SMS and mobile data use please see our Terms of Use.
Legal Obligations
We may disclose Personal Information to outside parties (including, without limitation, governmental agencies) if required to do so by law, regulation or court order; to respond to governmental and/or law enforcement requests; to identify, contact or bring legal action against someone who may be causing injury to or interfering with our (or others’) rights or property; to support any actual or threatened claim, defense or declaration in a case or before any jurisdictional and/or administrative authority, arbitration or mediation panel; or in connection with disciplinary actions/investigations.
Children; Intended Audience of Websites; COPPA Compliance
We do not knowingly collect or solicit personal information from children or knowingly allow children to purchase goods or memberships through our website. Visitors 13 years of age and younger must obtain a parent or guardian’s permission before submitting any personal information to this or any other website. In the event that we learn that we have received any personal information from a visitor 13 years of age or younger, and we do not receive parental permission within a reasonable period of time of our request for it, we will delete that information as quickly as possible. Accordingly, we are in compliance with the requirements of the Children's Online Privacy Protection Act (“COPPA”). If you believe that we might have information from or about a child 13 years of age or younger, please contact us at legal@calacademy.org.
Unaffiliated Third Parties
We may make your Personal Information available to non-affiliated third parties in the following circumstances:
- When we exchange donor lists with other non-profit organizations. If you would like to opt-out of this sharing, please contact us at privacy@calacademy.org and request to be put on the Do Not Exchange list. You can also click the “Do Not Sell or Share My Personal Information” link at the bottom of our Website webpages.
- If we are compelled to do so by a governmental agency, court or other entity (e.g., to respond to subpoenas, court orders or legal process);
- If we believe your actions violate a law, regulation, this Privacy Policy or any applicable Website terms of use, or if you threaten the rights, property or safety of us, our Website, any other users or third party;
- If, in our sole discretion, we believe disclosure is necessary to investigate or resolve possible problems or inquiries, to protect our assets, to defend our interests or comply with our legal and regulatory obligations; or
- If there is a bankruptcy, merger, acquisition, transfer of control, joint venture or other business combination involving the Academy.
Cookies
Cookies are small, removable data files that are stored on your computer's hard drive by your Web browser. A "web beacon" is a small object or image that is embedded into a web page, application, or email and is used to track activity. They are also sometimes referred to as pixels and tags.
When you visit our site, we and/or third parties collect information using one or more cookies, web beacons, pixels, or other automated technology to uniquely identify your browser, which allows us to keep track of your interactions with our Website and thereby enhance and personalize your online experience on the Website. Most web browsers automatically accept cookies, but you can change the preferences of your browser so that it does not accept them.
To find more information about cookies and for instructions on how to disable them, please visit www.allaboutcookies.orgthe help section of your browser. By disabling cookies, you won’t be able to enjoy the convenience provided by our customization.
Advertising and Behavioral Marketing
We use remarketing services to advertise on third-party websites to you after you visit our Website, applications, and other online services.
We and/or third-parties including advertising companies, marketing entities, and service providers on our behalf, use cookies, web beacons and other similar technology, to collect information for the purposes described in this Privacy Policy including advertising, analytics, online behavioral marketing, monitoring performance and improvement of our online services (traffic, errors, page load time, popular pages, etc.).
You may opt out of behavioral marketing as follows:
- Digital Advertising Alliance: https://optout.aboutads.info/?c=2&lang=EN; or the National Advertising Initiative https://optout.networkadvertising.org/?c=1; or by using your mobile device settings
- Facebook: To understand more about Facebook advertising and manage your preferences, please visit this link at Facebook. Login to Facebook and go to Settings > Ads > Ad Settings (web) or Ad Preferences > Ad Settings (app) for more information.
- Google Ads: To opt out of Google Ads, please visit this link at Google.
- Twitter: To understand more about Twitter's Personalized Ads and marketing and exercise your privacy options, please visit this link at Twitter. You can learn more about Twitter's privacy practices and policies by visiting their Privacy Policy page at Twitter Privacy.
- Pinterest: You can opt-out from Pinterest's interest-based ads by enabling the "Do Not Track" functionality of your web browser or by following Pinterest instructions at Pinterest Settings and updating your "Personalization" preferences.
- Microsoft: To learn more about how Microsoft uses your data across its products and manage your privacy preferences, please visit Microsoft Privacy. Information on Microsoft Advertising and opt-out choices is available at Microsoft Resources.
- Instagram: To learn more about Instagram Ads and to exercise your choices, please visit Instagram Ads. This Privacy Policy does not apply to, and we are not responsible for, third-party cookies, web beacons, or other tracking technologies, which are covered by such third parties' privacy policies. For more information, we encourage you to check the privacy policies of these third parties to learn about their privacy practices.
Links and Third Parties
From time to time there may be opportunities through the Website to opt-in to receive information from non-Academy entities. If you opt-in, you may receive correspondence from these organizations on programs, products or services that might interest you. Your communication with these entities should be directly with such entities.
In addition, the Website may provide links to resources we believe may be useful. These links will lead you to websites operated by third parties that operate under different privacy policies. We encourage you to review those privacy policies, as this Privacy Policy does not apply to such sites, and we have no control over information you may submit to those third parties or how they may use the information you provide to them. We may use third parties, such as ad server companies, to present advertisements you may see on our Website, which may also include advertisements placed by third parties. These third parties may employ cookie and web bug technologies to measure advertising effectiveness. We have no control over such third parties’ use of technologies or their policies and practices concerning their collection and use of your information. Our Privacy Policy does not cover information collected by third parties, nor how they may use such information.
How We Protect Your Information
We are committed to protecting the Personal Information you share with us through use of our Website and we maintain reasonable physical, electronic and procedural safeguards to protect your Personal Information. We limit access to the Website by our own employees to individuals who are authorized for the proper handling of such information and any employee found violating our standards of security and confidentiality is subject to our disciplinary processes. We request our service providers to follow the same policy. Unfortunately, we cannot guarantee that data transmitted over the Internet will always be secure. As a result, although we strive to protect your Personal Information, we cannot ensure or warrant the security of any information you transmit or we may learn as a result of your use of our Website and you do so at your own risk. If, for any reason, you do not agree with this Privacy Policy, please do not use or attempt to take advantage of any of the information, services, features or functions of the Website that might require you to provide your Personal Information (e.g., subscribing to Academy eNews).
Your California Privacy Rights
Residents of the State of California, under the California Civil Code, have the right to request from companies conducting business in California, a list of all third parties to which the company has disclosed Personal Information during the preceding year for direct marketing purposes.
If you are a California resident and would like information about how to exercise your third party disclosure choices, you must send a request to the following address with a preference on how our response to your request should be sent (email or postal mail):
privacy@calacademy.org or contact us via postal mail at:
California Academy of Sciences - Privacy Administrator
55 Music Concourse Drive
Golden Gate Park
San Francisco, CA 94118
Attn: Your California Privacy Rights
All requests sent via postal mail must be labeled "Your California Privacy Rights" on the envelope or post card and clearly stated on the actual request. For all requests, please include your name, street address, city, state, and zip code. (Your street address is optional if you wish to receive a response to your request via email. Please include your zip code for our own record-keeping.) We will not accept requests via the telephone or by facsimile. We are not responsible for notices that are not labeled or sent properly, notices that are illegible or do not have complete information.
California Do Not Track Notice
Because there are not yet common, industry-accepted "do not track" standards and systems, the Site does not currently respond to Do Not Track signals. In addition, we may allow third parties to collect Personal Information from your activity on our website, as described in this Privacy Policy.
Revisions to This Privacy Policy
We may revise this Privacy Policy at any time and from time to time without advance notice, by posting an updated and revised version of this Privacy Policy on the Website. The revisions are effective immediately upon posting and we encourage you to check this Privacy Policy often so you are aware of the most current terms and conditions that apply to you.
All Users
If any user of our Website or any subscriber has any questions about this Privacy Policy, please contact our Privacy Administrator at
privacy@calacademy.org or:
California Academy of Sciences - Privacy Administrator
55 Music Concourse Drive
Golden Gate Park
San Francisco, CA 94118
NOTICE TO EU DATA SUBJECTS
PERSONAL INFORMATION
With respect to EU data subjects, “personal information,” as used in this Privacy Policy, is equivalent to “personal data” as defined in the European Union General Data Protection Regulation (GDPR).
HOW INFORMATION IS COLLECTED, USED AND DISCLOSED
Personal Information
When we use the term "Personal Information" in this Privacy Policy, we mean information such as your first/middle initial or name, last name, e-mail address, street address, mailing address if different, town or city, state, zip code, telephone number, date of birth, credit card information, and any other information that would allow someone to identify you or contact you including information collected through cookies and other technology. We collect information from you when you voluntarily provide it, using automated technology, and through third party sources as further detailed below. We may collect Personal Information about you when you purchase an Academy membership, purchase Academy tickets, make a donation to the Academy, register for an Academy event, participate in an Academy contest or sweepstakes, and for similar business purposes.
Personal Information includes information collected and maintained through your use of our Website, including about your personal preferences, survey responses and your relationship with us (for example, if you are a subscriber to Academy eNews). When you browse our Website, we also collect information about you through your browser, computer hardware and software. This information can include your IP address, device ID, browser type, domain names, access times and dates, number of clicks, pages viewed, one or more cookies (as described below) that may uniquely identify your browser, and referring website addresses. We also collect and maintain aggregate anonymous information about usage of and visitors to our website.
We receive Personal Information such as first/middle initial or name, last name, e-mail address, street address, mailing address if different, town or city, state, zip code, and telephone number) about you from the following third party sources: OneRhythm, LLC, BlackBaud Inc., Greenhouse Software, Inc., and Simio, LLC.
How We Use Your Personal Information
The Academy uses Personal Information to:
- send you Academy eNews,
- provide you with information regarding the Academy and Academy services and opportunities by means of — but not limited to — web, email, mail, text message,
- process Academy memberships,
- facilitate advertising and marketing, including direct marketing,
- administer and maintain our Website,
- respond to your inquiries,
- improve our services, business, and Website,
- process your donations and share some donor information with service providers and third parties,
- manage our business including spam detection and fraud prevention purposes,
- legal and research purposes,
- understand how you use our Website and Services, and, if applicable, your subscription to Academy eNews.
You may subscribe or unsubscribe to Academy communications, including Academy eNews. You may manage your subscriptions at any time by clicking the “Manage Subscription” link at the bottom of any email you receive from the Academy. Any credit card information you provide in connection with a transaction will be used only as needed to process that transaction.
If you are a subscriber, you are responsible for giving us current, complete and accurate information and keep the information you provide to us up to date. We cannot and shall not be responsible for any problems or liability that may arise if you do not give us current, accurate, truthful or complete information or you fail to update the information you give us.
Except as disclosed in this Privacy Policy or authorized by you via opt-in, the Academy does not share, sell, rent or lease any Personal Information that you provide with any unaffiliated third parties. The term "unaffiliated third parties" or "third parties" does not include any subsidiaries or affiliates of the Academy.
How We Share Your Information
Service Providers and Contractors
We disclose Personal Information you provide to consultants, service providers, and contractors that we use to support our business and operations who have agreed to keep the information confidential and use it only to provide the applicable service(s), such as vendors, that help us communicate with you, vendors that host our website and data, marketing and targeted advertising vendors, security and fraud detection vendors.
Third Parties
If you consent, we will share your personal information, including name, address, details of your membership, and transactions, including donation amount and history, email communication history, and history of other interactions with us, through mailing list exchanges with third parties such as Arts and Cultural organizations, Co-operative databases, and advertising trade organizations such as Encore: Museum Guide. These companies may use the shared information for their own purposes including advertising and marketing. We also share your information with third parties such as advertising companies and marketing entities. See section below titled “Advertising and Behavioral Marketing” for additional information.
Legal Obligations
We may disclose Personal Information to outside parties (including, without limitation, governmental agencies) if required to do so by law, regulation or court order; to respond to governmental and/or law enforcement requests; to identify, contact or bring legal action against someone who may be causing injury to or interfering with our (or others’) rights or property; to support any actual or threatened claim, defense or declaration in a case or before any jurisdictional and/or administrative authority, arbitration or mediation panel; or in connection with disciplinary actions/investigations.
Unaffiliated Third Parties
We may make your Personal Information available to non-affiliated third parties in the following circumstances:
- If we are compelled to do so by a governmental agency, court or other entity (e.g., to respond to subpoenas, court orders or legal process);
- If we believe your actions violate a law, regulation, this Privacy Policy or any applicable Website terms of use, or if you threaten the rights, property or safety of us, our Website, any other users or third party;
- If, in our sole discretion, we believe disclosure is necessary to investigate or resolve possible problems or inquiries, to protect our assets, to defend our interests or comply with our legal and regulatory obligations; or
- If there is a bankruptcy, merger, acquisition, transfer of control, joint venture or other business combination involving the Academy.
Cookies
Cookies are small, removable data files that are stored on your computer's hard drive by your Web browser. A "web beacon" is a small object or image that is embedded into a web page, application, or email and is used to track activity. They are also sometimes referred to as pixels and tags.
When you visit our site, we and/or third parties collect information using one or more cookies, web beacons, pixels, or other automated technology to uniquely identify your browser, which allows us to keep track of your interactions with our Website and thereby enhance and personalize your online experience on the Website. Most web browsers automatically accept cookies, but you can change the preferences of your browser so that it does not accept them.
To find more information about cookies and for instructions on how to disable them, please visit www.allaboutcookies.orgthe help section of your browser. By disabling cookies, you won’t be able to enjoy the convenience provided by our customization.
Advertising and Behavioral Marketing
We use remarketing services to advertise on third-party websites to you after you visit our Website, applications, and other online services.
We and/or third-parties including advertising companies, marketing entities, and service providers on our behalf, use cookies, web beacons and other similar technology, to collect information for the purposes described in this Privacy Policy including advertising, analytics, online behavioral marketing, monitoring performance and improvement of our online services (traffic, errors, page load time, popular pages, etc.).
You may opt out of behavioral marketing as follows:
- Digital Advertising Alliance: https://optout.aboutads.info/?c=2&lang=EN; or the National Advertising Initiative https://optout.networkadvertising.org/?c=1; or by using your mobile device settings.
- Facebook: To understand more about Facebook advertising and manage your preferences, please visit this link at Facebook. Login to Facebook and go to Settings > Ads > Ad Settings (web) or Ad Preferences > Ad Settings (app) for more information.
- Google Ads: To opt out of Google Ads, please visit this link at Google.
- Twitter: To understand more about Twitter's Personalized Ads and marketing and exercise your privacy options, please visit this link at Twitter. You can learn more about Twitter's privacy practices and policies by visiting their Privacy Policy page at Twitter Privacy.
- Pinterest: You can opt-out from Pinterest's interest-based ads by enabling the "Do Not Track" functionality of your web browser or by following Pinterest instructions at Pinterest Settings and updating your "Personalization" preferences.
- Microsoft: To learn more about how Microsoft uses your data across its products and manage your privacy preferences, please visit Microsoft Privacy. Information on Microsoft Advertising and opt-out choices is available at Microsoft Resources.
- Instagram: To learn more about Instagram Ads and to exercise your choices, please visit Instagram Ads. This Privacy Policy does not apply to, and we are not responsible for, third-party cookies, web beacons, or other tracking technologies, which are covered by such third parties' privacy policies. For more information, we encourage you to check the privacy policies of these third parties to learn about their privacy practices.
Links and Third Parties
From time to time there may be opportunities through the Website to opt-in to receive information from non-Academy entities. If you opt-in, you may receive correspondence from these organizations on programs, products or services that might interest you. Your communication with these entities should be directly with such entities.
In addition, the Website may provide links to resources we believe may be useful. These links will lead you to websites operated by third parties that operate under different privacy policies. We encourage you to review those privacy policies, as this Privacy Policy does not apply to such sites, and we have no control over information you may submit to those third parties or how they may use the information you provide to them. We may use third parties, such as ad server companies, to present advertisements you may see on our Website, which may also include advertisements placed by third parties. These third parties may employ cookie and web bug technologies to measure advertising effectiveness. We have no control over such third parties’ use of technologies or their policies and practices concerning their collection and use of your information. Our Privacy Policy does not cover information collected by third parties, nor how they may use such information.
LEGAL BASIS FOR PROCESSING PERSONAL INFORMATION UNDER THE GENERAL DATA PROTECTION REGULATION (GDPR)
If you are a resident of the European Economic Area (EEA), or otherwise subject to the GDPR, the Academy’s legal basis for collecting and using the Personal Information described in this Privacy Policy depends on the Personal Information we collect and the specific context in which we collect it. In addition, we process Personal Information with the principle of data minimization in mind. This means that we limit ourselves to the minimum amount of personal information which is needed to achieve the particular purpose for which we process the Personal Information. Below are some examples of the purposes for which Personal Information may be processed.
We may process your Personal Information because:
- The processing is necessary to provide the services and features you have requested.
- The processing is necessary to perform a contract with you.
- The processing is necessary for the legitimate interests of our business, such as fraud prevention, information security, or to comply with the law.
- You have provided consent for us to do so.
RETENTION OF PERSONAL INFORMATION
We will retain your Personal Information for as long as it is necessary for the purposes set out in this Policy and to the extent necessary to comply with our legal obligations (for example, if we are required to retain your Personal Information to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.
SECURITY
We have adopted reasonable and appropriate security procedures to help protect against loss, misuse, and unauthorized access to the information you provide to us. Please note, however, that no data transmission or storage can be guaranteed to be 100% secure. As a result, while we strive to protect your information and privacy, we cannot guarantee or warrant the security of any information you disclose or transmit to the Site and cannot be responsible for the theft, destruction, or inadvertent disclosure of your information.
COOKIE POLICY
An IP address is the unique number that is automatically assigned to your computer when you log onto the Internet. As you enter the website, our server records and monitors your IP address and uses it to develop statistical analysis. These analyses assist us in refining and adapting the content and design of the Site. The use of IP addresses also enables us to prevent malicious Internet users from masquerading as other users
Automated technology collects information from your computer or mobile device and includes cookies, web beacons, local shared objects, or other similar technology. A cookie is a small piece of information sent by a website that is saved on your hard drive by your computer’s browser. A “web beacon” is a small object or image that is embedded into a web page, application, or email and is used to track activity. They are also sometimes referred to as pixels and tags.
As you access or use the Site, we and/or third parties may collect information using cookies, web beacons, pixels, and navigational and location data collection (clickstream, log files, server logs) for the purposes described in this Policy. Such automated technologies further help us to keep track of your interactions with our website and provide you with a more customized experience.
We use the following cookies:
- Strictly necessary cookies. These are cookies that are required for the operation of our website. You may refuse to accept browser cookies by activating the appropriate setting on your browser. However, if you select this setting you may be unable to access certain parts of our Website.
- Analytical/performance cookies. They allow us to recognize and count the number of visitors and to see how visitors move around our website when they are using it. This helps us to improve the way our website works.
- Functionality cookies. These are used to recognize you when you return to our website so that we can personalize our content for you, greet you by name and remember your preferences (for example, your choice of language or region).
- Targeting cookies. These cookies record your visit to our website, the pages you have visited and the links you have followed. We will use this information to make our website and the advertising displayed on it more relevant to your interests. We may also share this information with third parties for this purpose.
At any time, you can modify your cookie settings. You can do so via this link: Do Not Sell or Share My Personal Information. You may block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our site.
To find more information about cookies please visit www.allaboutcookies.org. Most browsers are initially set to allow cookies, but also offer the option to restrict cookies or warn you of their use. By disabling cookies, you won’t be able to enjoy the convenience provided by our customization.
CROSS-BORDER DATA TRANSFERS
Your information, including Personal Information, may be transferred to—and maintained on—computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.
If you are located outside of the United States and choose to provide information to us, please be aware that your personal data will be transferred to, processed, and stored in the United States. Data protection laws in the U.S. may be different from those in your country of residence.
Whenever we transfer your personal information out of the EEA to the U.S. or countries not deemed by the European Commission to provide an adequate level of personal information protection, the transfer will be based on a data transfer mechanism recognized by the European Commission as providing adequate protection for personal information.
Transfers to Third Parties
Courts, tribunals, government authorities and related parties or counterparties with whom we share personal data, third-party vendors and business partners are in some cases located outside the EU. Unless the recipients are located in countries that have been deemed adequate by the European Commission, we put in place data transfer agreements based on the applicable European Commission-approved Standard Contractual Clauses to protect the personal data so transferred. In certain cases, we may rely on statutory derogations for international data transfers.
Please contact us if you want further information on the specific mechanism used by us when transferring your personal information out of the EEA. We will take all steps reasonably necessary to ensure that your Personal Information is treated securely and in accordance with this Privacy Policy.
YOUR DATA PROTECTION RIGHTS UNDER THE GDPR DATA PRIVACY LAWS
The Data Controller
The Data Controller who collects and processes your Personal Information is:
California Academy of Sciences
55 Music Concourse Drive
Golden Gate Park
San Francisco, CA 94118
Rights Under GDPR
If you are a resident of the European Economic Area (EEA), you have certain data protection rights. Barring certain situations, you have the following data protection rights:
- The right to access, update or erasure of the information we have on you. You have the right to access, update and erase your Personal Information.
- The right of rectification. You have the right to have your Personal Information corrected if that information is inaccurate or incomplete.
- The right to object. You have the right to object to our processing of your Personal Information.
- The right of restriction. You have the right to request that we restrict the processing of your Personal Information.
- The right to data portability. You have the right to be provided with a copy of the information that we have on you in a structured, machine-readable and commonly used format.
- The right to withdraw consent. You have the right to withdraw your consent at any time where we relied on your consent to process your Personal Information.
- The right to know about automated decision making. As a data subject you also have the right to not be subject to decisions based on automated decision making alone, including profiling, and which may lead to legal consequences for you. This right does not apply if such processing is necessary in order for us to enter into or fulfill an agreement with you, if such processing is allowed according to applicable legislation, or if the legal basis for such processing is your consent.
- The right to lodge complaint with supervisory authority. You have the right to lodge a complaint with a supervisory authority, if you consider that the processing of the data in question breaches the provisions of data protection law. You can assert this right to lodge a complaint with a supervisory authority in the Member State where you are domiciled, at your place of work or at the place of the alleged breach.
We have implemented reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Information. If you wish to be informed of the type of Personal Information we hold about you and/or if you wish to remove such Personal Information from our systems, please contact us at:
privacy@calacademy.org or:
California Academy of Sciences - Privacy Administrator
55 Music Concourse Drive
Golden Gate Park
San Francisco, CA 94118
Please note that for your safety and security, we may ask you to verify your identity before responding to such requests.
We value your privacy and your rights as a data subject and have therefore appointed Prighter Group with its local partners as our privacy representative and your point of contact for the following regions:
- European Union (EU)
- United Kingdom (UK)
Prighter gives you an easy way to exercise your privacy-related rights (e.g. requests to access or erase personal data). If you want to contact us via our representative, Prighter, or make use of your data subject rights, please visit the following website: http://prighter.com/q/12588747635
© Copyright 2024 California Academy of Sciences. All Rights Reserved.