We use cookies to enable basic functionality on our website and for marketing purposes. By clicking "Accept All", you agree to our usage of cookies. Please read our Cookies Policy for more details.

PROUDHEART INN

Privacy Policy

Last updated: July 23rd, 2024
  1. Introduction

    This privacy notice for Proudheart Inn. ("we," "us," or "our"), describes how and why we might collect, store, use, and/or share your personal information when you use our services ("Services") when visiting our website at proudheartinn.com.

    We are committed to protecting your privacy and being transparent about our data practices. This privacy notice will help you understand your privacy rights and choices. By using our Services, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Services. If you have any questions or concerns about this policy, please contact us at contact@proudheartinn.com.

  2. What information do we collect?

    The personal information that we collect depends on what you do when using our Services. We collect personal information that either you voluntarily provide to us or we automatically collect.

    Personal Information Provided by You

    The personal information that we collect depends on the context of your interactions with us and our Services, the choices you make, and the features that you use. When you register an account, we collect and store the following information that you provide to us:

      Email address

      Password

    This personal information is never exposed or otherwise made visible to other users of our platform.

    When completing the Proudheart Questionnaire or editing your profile, you may provide additional personal information that we collect and store. All of this information is completely optional and is not required to use the core features of our Services; however some minor features may be unusable and/or your experience using our Services may not be as engaging if you do not provide us with this information. This optional information includes the following:

      Geolocation data

      First and/or last name

      Pronouns

      Country

      Time zone

      Date of birth

      Languages

      About section

    Unlike with your provided email address and password, all of this optional information can be made visible to other users of our platform, with some notable exceptions and properties.

      Geolocation data is used to calculate the distance between yourself and other users, but your sensitive geolocation data (i.e coordinates) is never exposed to other users, only the calculated distance is.

      For your provided name and pronouns, you have the ability to specify which category of users are allowed to see this information. These categories of users include everyone, only your friends, and no one. If you provide your name and/or pronouns but do not specify which users they are made visible to, then the visibility of this information is set to “no one” by default.

    Additionally, the geolocation data that we collect is not directly provided by you, but is rather collected from your browser. You must, however, give your explicit permission to allow for us to access your geolocation data through your browser. You will be prompted to do so when attempting to access features which utilize geolocation data, if you haven’t already either accepted or denied this request.

    All other optional personal information is visible to other users, so exercise privacy precautions and provide this information at your own risk. Proudheart Inn does not control, and is not responsible for, any optional information that you have exposed to other users through the use of our Services.

    When creating a game, there is additional personal information that must be provided by you before the game can be created. Although this information technically pertains only to the game that you are creating and not to you or your profile, it can be assumed that as the game master of the game, the personal information pertaining to the game would pertain to you as well by association. This optional information includes the following:

      Geolocation data

      Country

      Time zone

      Languages

    With the exception of geolocation data, all of this information is required and is made visible to other users who are able to view your created games’ information. The same exceptions and behavior properties for geolocation data, as specified above for user profiles, applies to games as well.

    Information automatically collected

    We automatically collect certain information from you when you use our Services. This information consists of Cookies that are used for authentication and session purposes, dates or timestamps of when certain actions are performed, and technical data used for internal analysis and to conduct user research.

    Cookies

    We use Cookies for user authentication and marketing purposes. You can learn more about our use of Cookies by viewing our Cookies Policy.

    Dates

    We collect and store dates and timestamps automatically when you perform certain actions. These dates and times that we collect includes when your account is created when you register an account, when you were last online, and when your game(s) are created when you finish creating a game. This information cannot be used to reveal your specific identity.

    Technical Data

    We collect and store dates and timestamps automatically when you perform certain actions. These dates and times that we collect includes when your account is created when you register an account, when you were last online, and when your game(s) are created when you finish creating a game. This information cannot be used to reveal your specific identity.

      Individual records of time that it takes for you to complete the Proudheart Questionnaire, with each record containing when you started the form, finished the form, and the elapsed time.

      The total elapsed time it takes for you to fully complete the Proudheart Questionnaire.

      The elapsed time it takes for you to create each of your game(s).

    This information cannot be used to reveal your specific identity.

    Sensitive Information

    We do not collect, store, or process sensitive information. Sensitive information includes categories such as health data, financial data, biometric data, student data, social security numbers, and other information that should be treated with a higher degree of care and caution than other personal data.

    Analytics

    We use third-party service providers to monitor and analyze the use of our Services. These analytics services are provided through Vercel, our hosting provider, and Pusher, our real-time user communications service provider. These analytics cannot be used to identify you, and are only used to infer general usage and data metrics of our Services. We are able to view these analytics, however we do not collect or store them ourselves - the third-party services do. This privacy policy does not apply to those third parties, so we encourage you to review their privacy policies in addition to our own.

    Vercel

    Vercel Analytics gives us insights on how users use our Services, which is critical for security and optimization purposes. All of these analytics can be viewed by us over the course of different periods of time. These periods of time include the past 24 hours, the past week, and the past month. Analytics beyond these periods of time are inaccessible to us. Analytical information collected through Vercel Analytics includes:

      Total number of visitors

      Total number of page views

      Number of visits to individual pages

      Link referrers

      Countries

      Operating systems

      Browsers

      Time of visit

    Pusher

    Pusher is our real-time user communications service provider, which is utilized for various features that require real-time communication such as messaging, notifications, and online user presence. Pusher displays analytical information from the past 24 hours pertaining to users who have connected to Pusher through our Services. This information includes:

      Peak number of users connected to Pusher

      Total number of messages that Pusher has sent

    All personal information that you provide to us must be true, complete, and accurate.

  3. How do we process your information?

    We process your personal information for a variety of reasons, depending on how you interact with our Services, including:

      To provide, maintain, and improve our Services.

      To detect, prevent, and address fraud, security issues, or technical issues. We may process your information as part of our efforts to keep our Services safe and secure, including fraud monitoring and prevention.

      To meet our compliance obligations and/or legal obligations. We may process your information to comply with applicable laws and other authorities that we are subject to.

      To protect our rights and interests, and those of our users. We may process your information when necessary to save or protect an individual’s vital interest, such as to prevent harm.

      To conduct research and analysis. We may process information about how you use our Services to better understand our users and improve our Services.

  4. What legal bases do we rely on to process your information?

    If you are located in the EU or UK, this section applies to you

    The General Data Protection Regulation (GDPR) and UK GDPR require us to explain the valid legal bases we rely on in order to process your personal information. As such, we may rely on the following legal bases to process your personal information:

      Consent: We may process your information if you have given us permission (i.e., consent) to use your personal information for a specific purpose. You can withdraw your consent at any time.

      Performance of a Contract: We may process your personal information when we believe it is necessary to fulfill our contractual obligations to you, including providing our Services or at your request prior to entering into a contract with you.

    • Legitimate Interests: We may process your information when we believe it is reasonably necessary to achieve our legitimate business interests and those interests do not outweigh your interests and fundamental rights and freedoms. For example, we may process your personal information for some of the purposes described in order to:

        Analyze how our Services are used so we can improve them to engage and retain users.

        Diagnose problems and/or prevent fraudulent activities.

        Understand how our users use our products and services so we can improve user experience.

    • Legal Obligations: Legal Obligations: We may process your information where we believe it is necessary for compliance with our legal obligations, such as to cooperate with a law enforcement body or regulatory agency, exercise or defend our legal rights, or disclose your information as evidence in litigation in which we are involved.

      Vital Interests: We may process your information where we believe it is necessary to protect your vital interests or the vital interests of a third party, such as situations involving potential threats to the safety of any person.

    We will only process your personal data when we have a legal basis to do so, and we will always respect your rights and choices regarding your information. If you have any concerns about our legal bases for processing, please contact us using the information provided at the beginning of our Privacy Policy.

    If you are located in Canada, this section applies to you

    We may process your information if you have given us specific permission (i.e., express consent) to use your personal information for a specific purpose, or in situations where your permission can be inferred (i.e., implied consent). You can withdraw your consent at any time. Click here to learn more.

    In some exceptional cases, we may be legally permitted under applicable law to process your information without your consent, including, for example:

      If collection is clearly in the interests of an individual and consent cannot be obtained in a timely way.

      For investigations and fraud detection and prevention.

      For business transactions provided certain conditions are met.

      If it is contained in a witness statement and the collection is necessary to assess, process, or settle an insurance claim.

      For identifying injured, ill, or deceased persons and communicating with next of kin.

      If we have reasonable grounds to believe an individual has been, is, or may be victim of financial abuse.

      If it is reasonable to expect collection and use with consent would compromise the availability or the accuracy of the information and the collection is reasonable for purposes related to investigating a breach of an agreement or a contravention of the laws of Canada or a province.

      If disclosure is required to comply with a subpoena, warrant, court order, or rules of the court relating to the production of records.

      If it was produced by an individual in the course of their employment, business, or profession and the collection is consistent with the purposes for which the information was produced.

      If the collection is solely for journalistic, artistic, or literary purposes.

      If the information is publicly available and is specified by the regulations.

  5. What are your privacy rights?

    In some regions (like the European Economic Area (EEA), United Kingdom (UK), and Canada), you have certain rights under applicable data protection laws regarding your personal data. These rights may include:

      Access: You can request a copy of the personal data we hold about you.

      Rectification: You can ask us to correct any inaccurate or incomplete personal data we hold about you.

      Erasure: You can request that we delete your personal data in certain circumstances, such as when it’s no longer necessary for the purposes for which it was collected.

      Restriction of processing: You can ask us to restrict the processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.

      Data portability: You can request a copy of your personal data in a structured, commonly used, and machine-readable format, and ask that we transfer it to another controller.

      Object: You can object to the processing of your personal data for certain purposes, such as direct marketing.

      Withdraw consent: If we are processing your personal data based on your consent, you can withdraw that consent at any time.

      Not be subject to automated decision-making: Not be subject to automated decision-making: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.

    If you are located in the EEA or UK and you believe we are unlawfully processing your personal information, you also have the right to complain to your local data protection supervisory authority.

    If you are located in Switzerland, the contact details for the data protection authorities are available here:

    https://www.edoeb.admin.ch/edoeb/en/home.html

    We respect your rights and are committed to helping you exercise those rights.

  6. How long do we keep your information?

    We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy notice, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements).

    When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize all such information, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

  7. When and with whom do we share your personal information?

    We may need to share your personal information in the following situations:

      Users: Depending on what optional personal information you choose to provide to us and for some information, what visibility preferences you assign to it, other users on our platform may be able to view your personal information. This personal information may include your first and/or last name, pronouns, country, time zone, age, languages, and any information described in your “About” section.

      Database Provider: We use services provided by our database hosting provider to store your personal information on servers owned and operated by our database provider. This information is stored securely and cannot be accessed by anyone but us.

      Law Enforcement: We may share your information with law enforcement, government authorities, or other third parties when required by law or when necessary to protect our rights or the rights of others.

      Business Transfers: We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

    We do not sell your data to third parties under any circumstances.

  8. Do we use Cookies?

    We use cookies for user authentication and marketing purposes. To learn more about our use of cookies, please read our Cookies Policy.

  9. How do we keep your information safe?

    We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process. These security measures include:

      Database Provider: Our database provider ensures that any information, personal or otherwise, that our database provider either stores or transports is encrypted at rest using AES-256 encryption and during transit using Transport Layer Security (TLS) encryption.

      Password Hashing: Before they are stored in our database, we hash your passwords so that even if our security is breached and your passwords are stolen by nefarious third parties, your passwords remain inaccessible.

      Sanitized Client: Before any information about you is sent from the server to the client of other users, your personal information is sanitized so that it is never sent to other users unless they have the correct visibility permissions for some of that personal information to be made visible to them.

      Access Controls: We have strict and robust server-side authentication and authorization measures to establish access controls for what actions users are and are not able to perform, and what information they are and are not able to store or retrieve.

    It is important to keep in mind that despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information. Although we will do our best to protect your personal information, transmission of personal information to and from our Services is at your own risk. You should only access our Services within a secure environment.

  10. Children’s Privacy

    Our Services are not intended for children under the age of 13 (or the minimum age in your jurisdiction). We do not knowingly collect personal data from children, and we delete any personal data we discover was provided by a child under 13 (or the applicable minimum age).

    When a user registers an account and completes the Proudheart Questionnaire or otherwise edits their profile information, if they provide us with their date of birth and we determine that they are under the age of 13, we prohibit them from saving their information and using our Services. Furthermore, if we determine that they are above the age of 13 but under the age of 18, we display a warning to the user that we require them to get permission from a parent or guardian before registering, and request from them to exercise caution when using our Services such as not using features that utilize their physical location data, to be cautious with who they interact with, and to not share any personal information with other users.

    If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us so that your child’s personal data can be deleted.

  11. Controls for Do-Not-Track features

    Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage no uniform technology standard for recognizing and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this privacy notice.

  12. Links to third-party services

    Our Services may contain links to third-party websites or services (i.e social media links). This Privacy Policy does not apply to those third parties, so we encourage you to review their privacy policies before sharing any data with them.

    We are not responsible for the privacy practices or content of those third-party services.

  13. Changes to this Privacy Policy

    We may update this privacy notice from time to time. The updated policy will be effective as of the “Last Updated” date at the top of this page. We encourage you to review this privacy notice frequently to be informed of how we are protecting your information.