Philly Bike Action!

Privacy and Data Statement

1. WHO IS RESPONSIBLE FOR THE PERSONAL INFORMATION THAT WE COLLECT?

For the purpose of data protection laws, Philly Bike Action (“PBA”) is the data controller in respect to the personal information that we collect and use as part of our activities. As the data controller, we control, manage, and dictate the purpose for which your personal information is used and how we use your personal information for our activity.

If you choose to provide your personal information to other parties present at PBA events or in association with PBA collaborations, then their data privacy policies apply to the data that you give to them.

2. WHAT PERSONAL INFORMATION DO WE COLLECT?

The types of personal information that the PBA may collect include, but are not limited to, the following:

If you provide personal information to us regarding or related to a third party, then you confirm that you have the consent of the third party to share such personal information and that you have made the information in this Statement available to the relevant third party.

3. USE OF THIRD PARTY SERVICES

PBA uses some third party services to operate online services supporting PBA. Specifically, we use:

4. SENSITIVE OR SPECIAL CATEGORIES OF INFORMATION

SENSITIVE INFORMATION

Some countries consider some personal information particularly sensitive or special. This may include Ethnicity, Nationality, Gender, and other demographic information. PBA only collects this data when voluntarily given by the individual, and does not require it from any user. PBA may use this information to create aggregated reports only; PBA does not share any person’s sensitive information with third parties.

WEBSITE USAGE INFORMATION

We collect information when you provide it to us, such as when you register for an account on PBA web services, subscribe to our newsletter, email us information, connect with us on social media, use the payment and subscription features located on our website, or when you engage in any other communication, recorded or otherwise communicated.

PBA collects certain information automatically when you use the website, such as the IP addresses and domain names of visitors, browser type, history of pages viewed and other usage information about your use of the website. We collect this information for site administration purposes, such as to analyze this data for trends and statistics. We may share statistical or aggregated non-personal information about our users with collaborators or other third parties. This data is used to customize our website content and advertising to deliver a better experience to our users. Please see the section below on cookies for information.

COOKIES

As you browse PBA websites (and the sites of third party providers contracted to provide services), those sites may place cookies on your computer. The cookies used by PBA websites are strictly functional cookies and have no marketing purpose. For any third party provider, please see that provider’s cookie policy.

5. HOW DO WE OBTAIN YOUR PERSONAL INFORMATION?

As noted above, we collect information from you in the course of your use of PBA websites and services. For example, we collect information from you when you subscribe to our mailing list. We collect information from you when you contact or communicate with us (including through the website, by email, or otherwise). We collect your personal information while monitoring PBA websites and services. We gather information about you when you provide it to us, or interact with us directly, for instance engaging with organizers or signing in for an event.

6. HOW DO WE USE THE PERSONAL INFORMATION THAT WE COLLECT?

PBA collects personal information for the following principal purposes. The list below will state the purpose and the reason for the purpose of collecting your personal information.

We do this for our legitimate activities, and under certain circumstances, to perform a contract between you and us. We may request your consent in circumstances where a legal justification over and above legitimate interests is required by applicable law.

7. WHO DO WE SHARE YOUR PERSONAL INFORMATION WITH?

PBA may share personal information with third parties engaged to assist PBA in providing services to you or to carry out one or more of the purposes described above. These service providers are prohibited from using your personal information for any purpose other than to provide this assistance and are contractually required to protect personal information disclosed by PBA and to comply with the general privacy principles described in this Statement. For example, we share your information with service providers, contractors and sub-contractors to help us provide the website, products, events, and services. For example, we may use a service provider to process payment information or provide analytics. When we use service providers, we provide limited access to your information so that such service provider can perform the tasks on our behalf.

PBA reserves the right to disclose and/or transfer personal information to a third party, if PBA has reason to believe that disclosing personal information is necessary to identify, contact, or bring legal action against someone who may be causing injury to or interference with our rights or property, other website users, or anyone else who could be harmed by such activities. Additionally, PBA may disclose personal information in response to a subpoena, warrant, or other court order, or when we believe in good faith that a law, regulation, subpoena, warrant or other court order requires or authorizes us to do so, or it is required to respond to an emergency situation.

If you choose not to provide PBA with your personal information, you may still visit some of PBA websites; however, you may be unable to access certain options and services.

8. TRANSFER OF PERSONAL INFORMATION ACROSS BORDERS

PBA is a United States organization, headquartered in the United States. While we are not a global company, we may allow your personal information to be shared with third-party service providers based both within the United States and in other countries. This may entail a transfer of your personal information from a location within the European Economic Area to outside the European Economic Area, or from outside the European Economic Area to a location within the Economic European Area.

When we provide your personal information overseas, we do so in connection with providing information or services or as required or authorized under law. It is possible the overseas entities, which we share your information with, may not be subject to foreign laws that provide the same level of protection of information with, may not be subject to foreign laws that provide the same level of protection of information as your country of residence or employment, or may not be subject to any privacy obligations. Overseas entities may be required or compelled to disclose your personal information to a third party, such as an overseas authority. Where we transfer information outside of the European Economic Areas, we will implement appropriate measures to ensure that your personal information remains protected and secure in accordance with applicable data protection laws. For example, we will implement EU standard contractual clauses (as contemplated by Article 46(2) of the European Union’s General Data Protection Regulation) between PBA related entities that share and process personal data. Where our third-party service providers process personal data outside the European Economic Area in the course of providing services to us, our written agreement with them will include appropriate measures, usually standard contractual clauses. For more information about the measures in place, please contact us (see section below “Contacting PBA with Questions, Concerns, or Complaints”).

Unfortunately, the transmission of information via the internet is not completely secure. Although we use reasonable efforts to protect your personal information, we cannot guarantee the security of your personal information transmitted to our website and any transmission is at your own risk. Once we have received your personal information, we will use reasonable and appropriate procedures and security features to try to prevent unauthorized access.

9. YOUR RIGHTS, INCLUDING REMOVING, CORRECTING OR UPDATING PERSONAL INFORMATION

If you change your mind on how PBA discloses or uses your information, or wish to access, correct or update personal information (such as your address), we will endeavor to correct, update or remove the personal data that you give us. Information that you have explicitly made available for unrestricted public access, such as having your name associated with a petition you sign, may not be able to be deleted.

Citizens of California and Virginia, and citizens of countries in the European Union and European Economic Area may have further rights, including:

If these rights apply to you and you wish to exercise those rights, please contact the PBA organizers at info@bikecation.org.

10. HOW LONG WILL WE KEEP YOUR PERSONAL INFORMATION

We will keep your personal information for no longer than is necessary for the purposes for which the personal data are processed.

11. CONTACTING PBA WITH QUESTIONS, CONCERNS, OR COMPLAINTS

If you have any questions, concerns, or complaints about this Statement, please contact info@bikeaction.org. You are entitled to make an anonymous complaint or inquiry in relation to this Statement or your privacy rights; however, we may require you to identify yourself if required by law or it is impracticable for us to deal with your matter otherwise.

We will acknowledge receipt of any complaint and will strive to provide you with a written response within 30 days of receipt of your complaint. There may be instances where this is not possible due to the circumstances under which the complaint was made, the content of the complaint, and the scope of the complaint. If this is the case, we will respond to your complaint in a reasonable and practical time.