WISP Privacy Statement
This WISP Privacy Statement (“Statement”) informs you of how Women in Security and Privacy (“WISP”/ “we”/“our”/“us”) collects and uses information about you. This Statement applies when you participate in our programs, sign up for any updates and/or events, donate to us in any way (online or offline), and visit or interact with us through www.wisprog.com (“Site”), social media, or otherwise.
I. What kinds of information do we collect?
The types of information we collect include:
Your name, contact information, and area where you are located.
Information you provide voluntarily, e.g., when you respond to polls/surveys or volunteering opportunities, and financial information that you provide when you donate to us in any way (online or offline).
If you sign up for WISP Tandems, Equal Respect Speakers Bureau, and other WISP initiatives we also ask you to provide information related to your interests and expertise.
Our Site uses necessary functional cookies. You can learn more them and the choices you have here.
II. How do we use this information?
We process your information (as set out in Section I), to:
Provide services you’ve signed up for. For example, we use your information to send you emails (e.g., about volunteering opportunities, or to match you with a Tandems partner).
Send you emails you opted into receiving, including newsletters, updates about our events, programs and services.
Receive payments you make (e.g., donations) and to provide you with a receipt.
Stay in touch and engage with you. For example, we use your information to respond or otherwise interact with you if you get in touch with us via social media, and we use your information to learn about your opinion via surveys/polls.
Improve and measure the success of our programs. For example, we use survey/polls responses and other information to gather insights about our organization and people across the industry.
III. How do we share this information?
We work with third-party partners who help us manage and improve our programs and processes, including tools and systems we use for this purpose. These third parties include: payment processors and third-party service providers to collect and store your information, and to reach you (e.g., via email or ads). Such providers include Google Docs, Mailchimp, Eventbrite, and Facebook.
We share information with third party partners as necessary to provide services you participate in, for example:
If you sign up for an event, we may need to share event sign-up information with event partners (e.g., to ensure you can access the venue).
If you participate in the Tandems program, we will share your information with any WISP Tandem partners with whom you are being matched.
If you sign up for the Equal Respect Speakers Bureau, we will share information you provide for this purpose with organizations looking for speakers (or with speakers if you are looking for a speaker) and with the individuals that run Equal Respect.
We may also share insights we gain from your and others’ information on an aggregated and anonymized basis, either publicly or with partner organizations and sponsors (e.g., how many people are enrolled in our programs). We may also share aggregated and anonymized information with third parties for statistical and market research.
IV. How do we respond to legal requests or prevent harm?
We access, preserve, and share your information with regulators, law enforcement or others government agencies in response to a legal or law enforcement request:
If we have a good-faith belief that the law requires us to do so.
When we have a good-faith belief it is necessary to: detect, prevent, and address fraud. Unauthorized or illegal use of our systems or services.
To protect ourselves (including our rights, property and products), you or others, including as part of investigations or regulatory inquiries.
To prevent death or imminent bodily harm.
V. How long do we keep this information?
We'll retain information (as set out in Section I), for as long as is required in order to comply with our legal obligations, to resolve disputes and to enforce our contractual agreements, or as necessary for our legitimate interests, such as to measure the success of our programs.
VI. What is our legal basis for processing data?
We process the data that we have in the ways described above:
As necessary to fulfill our contracts with you, if any.
Consistent with specific consents, which you may revoke at any time.
As necessary to comply with our legal obligations.
To protect your vital interests, or those of others.
As necessary for our (or others’) legitimate interests, including our interests in communicating with you, and improving and measuring the success of our programs, unless those interests are overridden by your interests or fundamental rights and freedoms which require protection of personal data.
VII. How can you exercise your privacy rights?
You have the right to access, rectify, port and erase your data, pursuant to applicable law.
You also have the right to object to and restrict certain processing of your data. This includes the right to object to our processing of your data where we are performing a task in the public interest or pursuing our legitimate interests or those of a third party.
If you no longer want to receive email updates, please "unsubscribe" using the directions at the bottom of the email. If you would like access to or would like us to delete your information, or to exercise any other right, please email [email protected].
VIII. How do we comply with Children’s Online Privacy Protection Act (“COPPA”)?
Our online services are not intended for persons under the age of 13. Persons under the age of 13 are not allowed to use our Site in any fashion. If you learn that a child under the age of 13 has provided us with personal information contrary to these rules, please contact us at the address listed in the “XIII. How to contact WISP with questions” Section below.
IX. How do we transfer data internationally?
We share information globally, both internally within WISP and externally with our partners. Information we collect and process will be transferred or transmitted to, or stored and processed in the United States or other countries outside of where you live for the purposes as described in this Statement. These data transfers are necessary for our operations. We process your data in accordance with this Statement and applicable law.
X. Use of Third-Party Internet Sites
Certain third-party services, websites, or applications you use, or navigate to and from our Site may have separate user terms and privacy policies that are independent of this Statement. This includes, for example, websites owned and operated by our partners. We are not responsible for the privacy practices of these third-party services or applications. We recommend carefully reviewing the user terms and privacy statement of each third-party service, website, and/or application prior to use.
XI. How does WISP protect your information?
WISP uses reasonable and appropriate physical, technical, and administrative safeguards to protect information from unauthorized access, use, loss, misuse or unauthorized alteration. Notwithstanding our security safeguards, it is impossible to guarantee 100% security in all circumstances. If you have any questions about security on our Site, you can contact WISP at [email protected]
XII. How does WISP respond to “Do Not Track” signals?
WISP does not support “Do Not Track” browser settings and we do not currently participate in any “Do Not Track” frameworks.
XIII. How to contact WISP with questions
If you'd like more information about our privacy practices or anything else, please contact us at [email protected]
IX. Changes to this statement
We may update this policy from time to time to reflect our current practices. We will show material changes (if any) on our Site.
Date of Last Revision: 31 January 2019
See previous version here.
WISP is under 501(c)(3) fiscal sponsorship through Community Initiatives
ATTN: Women in Security and Privacy
354 Pine Street, Suite 700
San Francisco, CA 94104