Privacy Policy

Effective Date: June 23, 2021

This site and the On Being app are operated by the On Being Project (“the On Being Project,” “we,” “us,” and “our”), a not-for-profit 501(c)(3) organization.

This privacy policy describes our commitment to respect your privacy regarding any information we may collect while operating our websites. It reflects the importance we place on earning and keeping your trust. 

To jump to a particular section, click on the relevant link below. Otherwise, scroll down to read the entire Policy.

 

Scope of This Policy

This online privacy policy (this “Policy”) applies only to information collected through the On Being Project-owned platforms on which it is posted (collectively, the “Services”), including:

  • the On Being mobile application software (“App”);
  • the On Being websites (mobile and desktop) at www.onbeing.org/privacy-policy, civilconversationsproject.org, and youraudioselfie.org (“Sites”); and
  • via other interactions you have with us including phone or online support and online or offline correspondence.

It does not apply to third-party platforms or to other platforms owned or operated by the On Being Project. 

Some of the information we collect through this Site may be “personal information” — information that identifies you personally, alone, or in combination with other information available to us. Other information may be non-personally identifiable, such as information collected by cookies.

We have provided this Policy so that you will know what information we collect, how we use this information, the types of third parties with whom we may share this information, and some of the choices that are available to you.

This Policy also contains additional information which applies to European users only to the extent the GDPR or such local legislation directly applies. “European users” are individual users based in the EU and/or the UK.

Your Consent

Please take a few minutes to review this Policy before using the Services. By using the Services you are consenting to the collection, use, and disclosure of your information as set forth in this Policy. If you do not agree to be bound by this Policy, you may not access or use this Site.

This Policy Is Part of Our Terms of Use

This Policy is part of the Terms of Use that govern your use of the Services. A link to our Terms of Use is provided at the bottom of each page of this Site.

How We Collect Information

We collect personal information:

  • directly from you (for example, when you download the App and/or set-up an App account or when you complete data fields on our sites); and
  • through automated technologies and interactions (for example, as you interact with and use our Services).

Types of Information We Collect

We collect, use and store different kinds of personal information about you, which we have summarised below:

  • Information You Manually Provide. We collect the information you manually provide (using your keyboard, mouse, or touch screen) when you use the Services. For example, we collect the information you provide when you create an App account, purchase an App membership, complete a form, sign up to receive our newsletter, comment on a blog post, contact us with questions, or otherwise interact with the Services. Some of the information you manually provide is personal information, such as your name, email address and other contact information.
  • Information From Third-Party Social Media Platforms. You may be able to register with, log on to, or enhance any profile you create on the Services by choosing to automatically populate the requested data fields with information you previously provided to a third-party social media platform (such as Facebook or Twitter). By doing this, you are asking the third-party platform to send us information, including personal information, from your profile on that platform. We treat that information as we do any other information you give to us when you register, log on, or enhance your profile.
  • Information from your browser or device. We collect information that is sent to us automatically by your web browser and/or mobile device. This information typically includes your IP address, the name of your operating system, the name and version of your browser, the date and time of your visit, and the pages you visit. The information we receive may depend on your browser or device settings.

The information we receive from your web browser and device may or may not be, in and of itself, personally identifiable. However, we may combine it with other information in an attempt to identify you, or we may combine it with information that does identify you.

  • Information Collected by Cookies and Other Technologies. A “cookie” is a small file placed on your device when you visit a site that can be understood by the site that issued the cookie. We use cookies and other technologies, including device identifiers, to collect information and support certain features of the Services. You can find more information about cookies and how to manage them at www.allaboutcookies.org. For example, we may use these technologies to collect information about the ways visitors use the Services — which pages they visit, which links they use, and how long they stay on each page. We also use these technologies to collect information and support certain features of the Services. For example, we may use these technologies to:
    • collect information about the ways visitors use the Services — which pages they visit, which links they use, and how long they stay on each page;
    • support the features and functionality of the Services — for example, to save you the trouble of re-entering information already in our database or to prompt the settings you established on previous visits; and
    • personalize your experience when you use the Services.

The information we collect using cookies and similar technologies may or may not be personally identifiable, but we may link it to personal information that you provide. If you do not wish to receive cookies, you may set your browser to reject cookies or to alert you when a cookie is placed on your computer. To do this, follow the instructions provided in your browser (usually located within the “settings,” “help,” “tools” or “edit” facility). Many browsers are set to accept cookies until you change your settings. You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. Although you are not required to accept cookies when you visit the Services, you may be unable to use all of the functionality of this Site if your browser rejects our cookies.

In addition to or instead of cookies, we may use your device’s unique device identifier to recognize you. We use the unique device identifier and mobile analytics software to allow us to better understand the functionality of the App on your device. The software may record information such as how often you use the App, the activity that occurs within the App, aggregated usage, performance data, and where the App was downloaded from. Pages of the App and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit us, for example, to count users who have visited those pages or opened an email and for other related App statistics (for example, recording the popularity of certain App content and verifying system and server integrity).

  • Aggregated or Anonymized Information. We also collect, use and share aggregated or anonymized data such as statistical or demographic data for any purpose. Aggregated or anonymized data could be derived from your personal information but is not considered personal information in law as this data will not directly or indirectly reveal your identity. If we combine or connect aggregated data with your personal information so that it can directly or indirectly identify you, we treat the combined data as personal information which will be used in accordance with this Policy

How We Use Information Collected Through The Services

We only use your personal information in accordance with applicable law. We may use your personal information for the following purposes:

  • to provide the information, products, and services you request (including to process/receive any payments or subscription fees and/or to communicate information related to a live or digital event/gathering to which we have registered);
  • for security or credit fraud prevention purposes;
  • to provide you with an improved listener experience when you use the Services;
  • to contact you with information and notices related to your use of the Services;
  • to contact you with products, offerings, community updates, and other information in accordance with any privacy preferences you have expressed to us (which includes our weekly email newsletter where you have signed up to receive it);
  • to invite you to participate in surveys and provide feedback to us (in accordance with any privacy preferences you have expressed to us);
  • to better understand your needs and interests;
  • to improve the content, functionality, and usability of the Services;
  • to improve our communication and product development efforts;
  • to quantify and report at an aggregate level on the size and reach of our community (for example the number of subscribers and number of donors in our CRM database);
  • to comply with our legal and regulatory obligations and protect our legal rights and interests; and
  • to receive donations and expressions of financial support for our daily work; and
  • for any other purpose identified in an applicable privacy notice, click-through agreement, or other agreement between you and us.

Additional information for European users 

For European users, we rely on the following legal grounds for processing your personal information to the extent the GDPR or such local legislation directly applies:

Processing Purpose Legal Basis to Process your Personal Information
Provide the information, products, and services you request (including to process/receive any payments or subscription fees and/or to communicate information related to a live or digital event/gathering to which we have registered) To perform our terms of service with you to provide the Service. Our legitimate interests in providing you with necessary or useful information about the specific events to which you have registered.

We also rely on your consent for the download and installation of the App on your device.

Security or credit fraud prevention purposes To comply with a legal or regulatory obligation and/or our legitimate interests in ensuring the security of the Service, preventing fraud, and creating and maintaining positive, safe and friendly space for user interaction.
Provide you with an improved listener experience when you use the Services Our legitimate interests in providing high quality products and services, keeping our existing user base engaged with our Services, expanding our user base and attracting new users. 
Contact you with information and notices related to your use of the Services Our legitimate interests in providing high quality products and services, excellent customer service and keeping our user base engaged with our Services. 
Contact you with products, offerings, community updates, and other information in accordance with any privacy preferences you have expressed to us (which includes our weekly email newsletter where you have signed up to receive it) Your consent.
Invite you to participate in surveys and provide feedback to us (in accordance with any privacy preferences you have expressed to us Our legitimate interests in determining and responding to users’ needs and interests. Where this involved processing personal information for a marketing purpose, your consent.
Better understand your needs and interests Our legitimate interests in responding to users’ needs and interests, keeping our existing user base engaged with our Services, expanding our user base and attracting new users.
Improve the content, functionality, and usability of the Services Our legitimate interests in providing high quality products and services. 
Improve our communication and product development efforts Our legitimate interests in providing high quality products and services, expanding our user base and attracting new users. 
Quantify and report at an aggregate level on the size and reach of our community (for example the number of subscribers and number of donors in our CRM database) Our legitimate interests in understanding our user base and tracking the development and growth of our community and using this aggregate information to demonstrate value to our sponsors and donors.
Comply with our legal and regulatory obligations and protect our legal rights and interests To comply with a legal or regulatory obligation and/or our legitimate interests in efficiently fulfilling our legal and contractual duties, managing legal risk, and complying with regulations that apply to us.
Receive donations and expressions of financial support for our daily work Our legitimate interests in receiving donations and financial support.

Information About Third-Party Cookies 

In addition to the cookies we deliver to your computer or mobile device through the Sites, certain third parties may deliver cookies to you for a variety of reasons. For example, we use Google Analytics, a web analytics tool that helps us understand how visitors engage with our Sites. To learn more about Google Analytics, click here.

You have choices about the collection of information by third parties on our Sites. For example, if you don’t want information about your visit to the Sites sent to Google Analytics, you may download an opt-out browser add-on by clicking here. Please note that the add-on does not prevent information from being sent to us.

We currently do not use or engage a third party to use online behavioural advertising techniques or targeting cookies on the Service to deliver personalized or targeted advertising to you.

Other third parties, over which we have no control, may deliver cookies to your computer or mobile device for the purpose of tracking your online behaviors over time and across non-affiliated websites and/or delivering targeted advertisements on other websites.

If you would like to opt out of having interest-based information collected by certain entities during your visits to websites, please click here for a “Website Opt-Out.” You will be directed to an industry-developed website that contains mechanisms for choosing whether each listed entity may collect and use data for online behavioral advertising purposes. It may be that some of the third parties that collect interest-based information do not participate in the industry-developed opt-out website, in which case the best way to avoid third-party tracking of your online behaviors may be through your browser settings and deletion of cookies. 

For European users, please see the opt-out available here: https://www.youronlinechoices.com/uk/your-ad-choices

The Website Opt-Out described above works only on websites. To opt out of having participating entities track your behaviors for advertising purposes when you are using a mobile app, download and use the Digital Advertising Alliance’s “App Choices” app. As with the Website Opt-Out, the “Mobile App Opt-Out” prevents tracking only by participating entities.

Please note that the Website Opt-Out and Mobile App Opt-Out are device-specific, and the Website Opt-Out is browser-specific. If you wish to opt out from having interest-based information collected by participating entities across all devices and browsers, you need take the steps outlined above from each device and browser.

How to Access, Update, or Correct Your Information

We will comply with any rights provided to you under applicable law. If you want to access, update, or correct your information, please contact us using the information provided below. We will respond to you within a reasonable time and, in any case, within the time limits established by applicable law. We may ask you for additional information to verify your identity. In most cases, we will provide access and correct or delete any inaccurate information you discover. In some cases, however, we may limit or deny your request if the law permits or requires us to do so or if we are unable to verify your identify. If you seek deletion of information that you provided when you were a minor, please contact us using the information provided below.

Additional information for European users 

If you are a European user, you have the following rights in relation to the personal information we hold about you to the extent the GDPR or such local legislation directly applies, and unless provided otherwise by relevant local legislation:

  • Request access to your personal information.
  • Request correction of your personal information.
  • Request erasure of your personal information.
  • Object to processing of your personal information.
  • Request restriction of processing your personal information.
  • Request transfer of your personal information.
  • Right to withdraw consent (where we rely on your consent as our basis for processing).

We respond to all legitimate requests within one month. If, taking into account the complexity and number of requests, we require longer to respond we may extend the timeframe by up to two further months, but we will notify you if this is the case. Where a request is clearly unfounded or excessive, we may either charge a reasonable fee or refuse the request. 

You have the right to make a complaint at any time to your supervisory authority for data protection issues. However, we would appreciate the opportunity to address any concern you have in the first instance. Therefore, please contact our us before contacting your supervisory authority. 

  • A list of EU supervisory authorities is available here: http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm. 
  • The relevant UK supervisory authority is the UK Information Commissioner’s Officer: https://ico.org.uk/. 

If you need further assistance regarding your rights, please contact us using the contact details above (Contact Us).

Steps We Take To Safeguard Your Personal Information

We maintain reasonable administrative, physical, and technological measures to protect the confidentiality and security of information you submit on or through the Services. Unfortunately, no website, server, or database is completely secure or “hacker-proof.” We therefore cannot guarantee that your information will not be disclosed, misused, or lost by accident or by the unauthorized acts of others. Further, we cannot control dissemination of personal information you post on or through the Services using any social networking tools we may provide, and you should have no expectation of privacy in such information. 

How We Share Your Information

We share your personal information only when it is necessary to offer the Services, it is legally required, or when permitted by you. We share personal information with third parties as follows:

  • With Third-Party Vendors. We may share information collected through the Services with third-party vendors who act for us or on our behalf. For example, we use third-party vendors to design and operate the Services; to conduct surveys; and to help us with our communication efforts. These third-party vendors may need information about you to perform their functions. Typically, they are required by contract to keep your information confidential and to use it only to provide services on our behalf; however, as described below, we may allow them to use aggregate or de-identified data for their own purposes or to market the products and services of their other clients.
  • With Third-Party Social Media Platforms. We may provide functionality on the Services that allows you to automatically post information to a third-party social media platform (such as Facebook, Twitter, or Instagram). If you choose to take advantage of this functionality, people with access to your profile on the third-party platform will be able to see your post. Thus, you should have no expectation of privacy in those actions.
  • In Aggregate or De-identified Form. We use information collected through the Services to create a compiled, aggregate view of usage patterns. We may share aggregate information with third parties so we and they can better understand our community. For example, this information helps us communicate our total audience reach and community engagement to philanthropic funders or sponsors and/or partners. We report digital statistics such as total number of subscribers to our social media channels, the geographic breakdown of audio listeners, the traffic to a website page, or how many people attended an event or responded to a survey. 
  • As Part of a Business Transfer. Your information may be transferred to a successor organization if, for example, we transfer the ownership or operation of the Services to another organization or if we merge with another organization or if we liquidate our assets and sell them individually. If such a transfer occurs, the successor organization’s use of your information will still be subject to this Policy and the privacy preferences you have expressed to us.
  • To Comply with Laws and Protect Our Rights and the Rights of Others. We may disclose your information when we, in good faith, believe disclosure is appropriate to comply with the law, a court order, or a subpoena. We may also disclose your information to prevent or investigate a possible crime, such as fraud or identity theft; to protect the security of the Services; to enforce or apply our online Terms of Use or other agreements; or to protect our own rights or property or the rights, property, or safety of our users or others.
  • As Described in a Privacy Notice or Click-Through Agreement. We reserve the right to disclose your information as described in any privacy notice posted on the Services or as described in any click-through agreement to which you have agreed.

International Transfers

We are based in the United States and so information is directly processed in and accessed by our personnel in the United States. By using the Service, you consent to the processing, transfer and storage of your information in and to the United States and other countries, where you may not have the same rights as you do under your local law. We will process your personal information in accordance with applicable law and with this Policy regardless of where your personal information is stored or accessed.

Additional information for European users  

Where our service providers or other third parties (identified above) based outside the EU and/or the UK receive personal information, we ensure the transfer is either (a) to a country deemed to provide an adequate level of protection by a relevant government authority (e.g. the European Commission or the UK government) or (b) pursuant to standard contractual clauses approved by a relevant government authority (e.g. the European Commission or the UK government). Please contact us if you want further information on the specific mechanism used by us when transferring your personal information out of the UK or the EU.

How Long We Retain Information

We only retain your personal information for as long as necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying legal, accounting, or reporting requirements. 

Additional information for European users 

Where you have an account on the Service, we retain your personal information while you have an account. Where you choose to terminate your account, to the extent the GDPR or such local legislation directly applies, we delete or anonymize your personal information within 100 days, unless we need to retain your personal information for legal, accounting, or reporting reasons.

In some circumstances we may anonymize your personal information (so that it can no longer be associated with you) in which case we may use this information indefinitely without further notice to you.

Your Choices

In General. We respect your right to make choices about the ways we collect, use, and disclose the information you provide on or through the Services. We strive to provide choices to you at a meaningful time and in a meaningful place. This Policy describes some of your other choices, such as your choice to opt out of receiving “cookies.”

Do-Not-Track Mechanisms. Your browser may deliver a “Do-Not-Track (‘DNT’) signal” to the Services. Because of the changing state of technology and indecision within these technology application industries regarding the meaning of DNT signals, we currently do not make any guarantee that we will honor DNT signals.

Previously Expressed Preferences. You may change previously expressed preferences regarding how we use the information you provide on or through the Services. For example, after signing up to receive our electronic newsletter, you may decide to stop receiving it by clicking the “unsubscribe” link in the newsletter’s footer. You may be able to change other preferences through an account you create on the Services. Otherwise, please contact us using the information provided below.

This Policy May Change

This Policy describes our current policies and practices with regard to the information we collect through the Services.

We are continually improving and adding to the features and functionality of this Site and the products we offer through this Site. As a result of these changes (or changes in the law), we may need to update or revise this Policy. Accordingly, we reserve the right to update or modify this Policy at any time, without prior notice, by posting the revised version of this Policy behind the link marked “Privacy Policy” at the bottom of each page of this Site. Your continued use of this Site after we have posted the revised Policy constitutes your agreement to be bound by the revised Policy. However, we will honor the terms that were in effect when we gathered data from you.

For your convenience, whenever this Policy is changed, we will update the “effective date” at the top of this page. Be sure you check the effective date to see if this Policy has been revised since your last visit.

You may access the current version of this Policy at any time by clicking the link marked “Privacy Policy” at the bottom of each page of this Site.

Children Under the Age of Thirteen

We are proud of the Services and we strive to ensure that it does not offend people of any age. However, the Services not intended for children or minors under the age of thirteen years without the permission of a parent or guardian. If you believe that a child has submitted personal information on or through the Services without the consent and supervision of a parent or guardian, please contact us using the information provided below so that we can take appropriate action.

Additional information for European users

In addition, we may limit how we collect, use and store some of the information of European users between 13 and 16 to the extent the GDPR or such local legislation directly applies. If we need to rely on consent as a legal basis for processing your information and your country requires consent from a parent, we may require your parent’s consent before we collect and use that information.

Links to Other Sites

The Services may provide links to other websites operated by third parties, including in some cases our third-party vendors. We do not control these websites and are not responsible for their data practices. Any information you provide to third parties on their websites is covered under their privacy and data collection policies and is not covered by this Policy. We urge you to review the privacy policy posted on any site you visit before using the site or providing any personal information.

Contact Us

If you have any questions regarding this Policy, please contact us at:

By email: [email protected]
By visiting this page on our website: https://onbeing.org/contact
By mail: 1619 Hennepin Avenue, Minneapolis, MN 55403

Additional information for European users 

The On Being Project, a not-for-profit 501(c)(3) organization based in the USA, is the data controller for the purposes of the EU General Data Protection Regulation and the UK General Data Protection Regulation (together, GDPR) and any relevant local legislation to the extent the GDPR or such local legislation directly applies.