Protected Health Information
Specific information regarding the duties and privacy practices of the YMCA of Central Florida to protect the privacy of Protected Health Information (“PHI”) held by departments of YMCA of Central Florida that are subject to certain federal privacy laws (“HIPAA”) is provided to all individuals who receive services from those departments. We are committed to maintaining the privacy and security of PHI in compliance with applicable law. For information regarding how we handle PHI, please refer to our HIPAA Notice of Privacy Practices (“NPP”), available here. In the event of a conflict between this policy and the NPP, the NPP controls.
Our Privacy Principles
We are committed to responsible privacy practices by adherence to the following principles:
- We will not sell your Personal Information. You have entrusted YMCA of Central Florida with your Personal Information, and we are committed to using it responsibly. We will not sell your Personal Information to anyone, for any reason, at any time. We may transfer it as permitted by law. For example, we may transfer your Personal Information if we consolidate our organization with another entity. We may also charge reasonable fees if we are transferring Personal Information for purposes permitted or required by this policy or applicable law.
- We restrict who has access to your Personal Information. YMCA of Central Florida takes reasonable precautions to restrict access to your personal information only by employees who are authorized to have such access for legitimate business purposes.
Collection of Personal Information
YMCA of Central Florida collects Personal Information as follows:
- when you voluntarily provide it to us;
- when you submit a membership application or otherwise register as a YMCA of Central Florida member;
- when you sign up to be a volunteer or request information regarding volunteer opportunities;
- when you register for, or participate in, events, classes, camps, programs, and other activities;
- when you register for, submit, or otherwise participate in surveys, sweepstakes, quizzes, forums, content submissions (including Share a Story), chats, bulletin boards, discussion groups, requests for suggestions, or other services or activities offered on our Sites or Mobile Apps;
- when you sign up to receive emails or other communications;
- when you make purchases;
- when you communicate with us;
- when you apply for a job with us;
- when you contact us offline or submit information to us offline;
- when you provide it through our Sites or Mobile Apps
- from publicly available sources
- from third parties
Use and Disclosure of Personal Information
Except as provided for herein or as otherwise permitted or required under applicable law, YMCA of Central Florida will not disclose your Personal Information to any third party for purposes unrelated to the YMCA without having received your permission
- Provide Services. We use your Personal Information to respond to requests that you make, to provide services and help us serve you better, and to provide you with a personalized website experience.
- Support Services and Maintaining Systems. We may share Personal Information with trusted service providers that need access to your information to provide operational or other support services. In addition, when you make purchases, we may share select Personal Information in order to fulfill your order. We may also hire vendors that work on our systems that may have access to your Personal Information in the course of performing their duties. We require those vendors to keep your Personal Information confidential and not to use it for their own purposes. You expressly consent to the sharing of your Personal Information with our third-party service providers and vendors.
- Compliance with Laws and Protection of Rights. Regardless of any choices you make regarding your Personal Information, we may also provide Personal Information to regulatory or legal authorities and law enforcement officials in accordance with applicable law or when we otherwise believe in good faith that the provision of such information is required or permitted by law, such as in connection with the investigation or assertion of legal defenses or for compliance matters. We may also disclose Personal Information if we believe in good faith that disclosure is necessary to protect and defend our rights or the rights and safety of third parties, or to enforce our Terms and Conditions.
Non-Personally Identifiable Information and Technologies Used
We collect Non-Personally Identifiable Information without limitation, through the use of the following types of methodology:
- “Cookie” technology: A cookie is an element of data placed on your computer as you navigate websites with your browser, which may then store it on your system to help enhance your experience in using our sites and to provide us with technical information about your usage. Browser cookies allow websites and various third-parties to distinguish your device from others by having the cookie consist of a unique identifier or other data. We use both session cookies (which expire after you close your web browser) and persistent cookies (which stay on your computer until you delete them). Persistent cookies can be removed by following your Internet browser help file directions. If you choose to disable cookies, some areas of our website may not work properly.
- Local shared objects: Local shared objects (such as “Flash” cookies) are associated with non-Browser software like Flash Player. Local shared objects can be used like cookies to distinguish your device from others, but will not be deleted or blocked using browser cookie controls. You can visit adobe.com for guidance on how to delete and block Flash cookies.
- IP address tracking: An IP address is a number that is assigned to your computer when you are on the Internet. When you request pages from our Sites, our servers log your IP address.
- Web beacons: A web beacon, or “clear gif,” is a small graphic image on a webpage or web-based document that a website can use to determine information about a user. Web beacons are embedded in web pages you visit and cause your browser to share its IP address with the third-party source of the beacon, together with any cookies associated with that third-party. Web beacons can be used with or without cookies. Blocking cookies will not stop your IP address from being shared through the use of beacons
- HTML5 local storage: HTML5 local storage is another way that browsers can distinguish your device from others as well as remember data that may be important for the functioning of the website. Typically HTML5 local storage is only deleted if all Internet history, cache, and cookies are deleted. You should check your browser software for how to delete HTML5 local storage in your particular case
- E-tags: E-tags are used to prevent duplicative downloading of content to your browser, which can enhance browser performance. E-tags use unique identifiers for content that can also be used to distinguish your browser in certain instances from others. Typically e-tags are only deleted if all Internet history, cache, and cookies are deleted. You should check your browser software for how to delete e-tags in your particular case.
- Other technologies: Our Site and Mobile Apps may occasionally use other technologies both for purposes of advertising or analytics as well as for features and services.
Our Mobile Apps may use the following technologies for features, services, advertising, or analytics:
- Collection of device identifiers, such as Android ID and MAC address
- Collection of geolocation, including precise geolocation
- Device name
- Collection of platform specific identifiers such as Apple’s Identifier for Advertising and Identifier for Vendor, and Android ID or Android’s advertising identifier
- Collection of carrier-related information including the name of your wireless carrier, and IDs related to the cell phone hardware in your phone as well as the network to which the device is connected
- IP Address
- Mobile phone number
- App-specific and instance-specific identifiers
Non-personally identifiable information we collect may include the browser you use, the type of computer you use, technical information about your means of connection to our websites (such as the operating systems and the Internet service providers utilized), and other similar information. Our systems may also automatically gather information about the areas you visit and search terms you utilize on our websites and about the links you may select from within the sites to other areas of the World Wide Web or elsewhere online.
- Third Parties May Collect Personal Information from Other Sources. Some third parties involved in advertising operations may maintain their own proprietary consumer databases that allow them to personally identify or track website visitors. Other third parties have proprietary technologies to determine what additional devices you may use, on which it can display relevant advertisements
- Do Not Track. Do-Not-Track is a public-private initiative that has developed a “flag” or signal that an Internet user may activate in the user’s browser software to notify websites that the user does not wish to be “tracked” by third-parties as defined by the initiative. The online community has not agreed on what actions, if any, should be taken by the websites that receive the “do not track” signal, and therefore Do-Not-Track is not yet standardized. Our website does not alter its behavior or change its services when it receives a “do-not-track” flag or signal from your browser.
- Your Privacy and Ad Choices. You can make decisions about your privacy and the ads you receive. You can control whether companies serve you on-line behavioral advertising by visiting the Digital Advertising Alliance website and using its opt-out: http://www.aboutads.info/choices/. The DAA opt-out requires that cookies not be blocked in your browser. As an alternative to the DAA opt–out, you can also elect to block browser cookies from first parties (such as those from our website) and browser cookies from third parties (such as advertisers) by using the cookie blocking options built into your browser software. If you block browser cookies, some parts of our website may not function correctly. Also, blocking cookies will not stop third-parties from collecting IP address, data stored in “Flash” cookies, and certain other types of technical information that may uniquely identify your browser.
Social Network Widgets
Our website may include social network sharing widgets that may provide information to their associated social networks or third-parties about your interactions with our web pages that you visit, even if you do not click on or otherwise interact with the plug-in or widget. Information is transmitted from your browser and may include an identifier assigned by the social network or third party, information about your browser type, operating system, device type, IP address, and the URL of the web page where widget appears. If you use social network tools or visit social networking sites, you should read their privacy disclosures, to learn what information they collect, use, and share.
Privacy of Children
We are mindful that children need special safeguards and privacy protection. On our Sites and Mobile Apps, we do not intentionally gather Personal Information from visitors under the age of 13.
If we ask a parent or legal guardian for Personal Information pertaining to children under 13, we will take additional steps to protect the privacy of such information, including:
- obtaining consent from the parent or legal guardian of the under 13 child before collecting or using the child’s Personal Information
- notifying parents about what Personal Information is being requested and how that Personal Information will be used and/or shared; and
- limiting the collection of Personal Information pertaining to children under 13 to no more than is reasonably necessary to accomplish the purpose of the collection
Upon request, we will provide parents/legal guardians access to the Personal Information we have collected from the parent/guardian pertaining to their under 13 children. In addition, parents/legal guardians may contact us to request that such Personal Information be changed or deleted.
If you believe we have inadvertently collected information from your child, or to request access, modification, or deletion of Personal Information pertaining to your child, please contact us, and we will attempt to implement your request.
Personal Data Updates, Access and Accuracy
We encourage you to check and promptly update your information, if it changes, at the YMCA of Central Florida Family Center closest to you. You can also update your personal information via your account settings on our Site or by contacting us directly.
Except in limited circumstances governed by law, you may contact us to obtain access to or correct your Personal Information in our records. We will use reasonable efforts to grant reasonable requests to access data about the requester, as permitted by law. We will also make reasonable efforts to address requests to correct your Personal Information. You may ask to have information on your account deleted or removed; however, please understand that it may not be possible to delete certain information.
A request for access, correction, or deletion must be submitted in writing by emailing us at [email protected] or via a written request mailed to: Compliance Office, YMCA of Central Florida, 433 North Mills Avenue, Orlando, FL 32803. Please do not send Social Security numbers or other sensitive information to us via email.
Consent to Transfer
Our Sites and Mobile Apps are operated in the United States. If you are located outside of the United States, please be aware that any information you provide to YMCA of Central Florida will be transferred to the United States, where laws regarding the use of Personal Information may be less strict than the laws in your country. By using our Sites and Mobile Apps and/or providing us with your information, you expressly consent to the transfer, use and storage of your Personal Information in the United States.
YMCA of Central Florida takes appropriate administrative, technical, and physical measures to safeguard against unauthorized processing of Personal Information, and against the accidental loss of, or damage to, personal data. However, we cannot fully eliminate security risks associated with the storage and transmission of Personal Information.
YMCA of Central Florida
433 North Mills Avenue
Orlando, Florida, 32803
Please refer to this policy regularly. We may need to change this policy from time to time. We will post material changes on our websites or otherwise notify you and update the “Effective Date” so that you will always know our policies regarding what information we gather, how we might use that information, and how we may disclose that information.