Last updated: January 1st, 2020
At Sandia Mesa Animation Studios (“We” or “Sandia Mesa”), protecting your privacy is very important. And because of that, we want to explain our practices with regards to data collection, use, and disclosure of information that we receive through our websites’ services.
Collection and Use of Information
Information Collected or Received from You
Our primary goals in collecting information are to provide and improve our websites’ services, to administer your use of the Services (including your Account, if you are an Account holder), and to enable you to enjoy and easily navigate our websites’ services. If you create an Account, we will collect certain information that can be used to identify you (“personal information”). If you create an Account, we will collect certain information that can be used to identify you, such as your email address and, if you opt to add it, a photograph or picture of you (“personal information”). Creating an Account also requires a username, which may or may not be personal information depending on your username. You can choose to provide other information about yourself, which will be made part of your Account’s profile (“Profile”).
Additionally, we may collect a record of your actions while logged in, which includes but is not limited to failed login attempts, login blocks, 404 errors, when a comment was edited, and when a user logs out (“Log”). This Log is only used by Sandia Mesa for security and auditing purposes. Note that we log when a comment is edited to help us stop any bad actors, employees and contractors who edit the comments of other users on our sites.
When you vote in a poll, regardless of whether you’re a user or not, we may collect personal information on you, such as your IP Address. However, the webmaster must delete the information at least 10 days after the poll has closed. This is to help prevent any sort of data breach and/or other employees from using this information to target and/or harass people based on a disagreement.
Third Party Disclosure
Sandia Mesa will not sell, trade, or otherwise transfer to outside parties your personally identifiable information unless we provide users with advance notice and ask for explicit consent. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when its release is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property or safety.
California Online Privacy Protection Act
- Users can visit our site anonymously.
- We agree to inform users about the data we collect and with whom it is being shared.
California Consumer Privacy Act (CCPA)
CCPA is a regulation that ensures data protection and privacy for all individuals living in the State of California. It’s the first state law in the United States of its kind. According to this regulation, users have the right to:
- Know and access the information collected about them, including the specific categories and purposes of information being collected on them.
- Know whether their information is being sold and to whom, including the right to opt-out of having their personal data sold.
- Request the deletion of their personal data.
Additionally, we at Sandia Mesa agree that we will:
- Not discriminate against users who exercise their rights under the CCPA.
- Notify users if we decide to collect additional personal information categories.
- Notify users and ask for explicit consent if we decide to use their personal data for purposes other than what we disclosed in the notice of the collection.
- Not collect any personal data if we don’t give notice to the user at or before collection.
To summarize the personal information that can be collected on you while using the Sandia Mesa websites, they can be divided into the following categories as according to the CCPA:
- Identifiers: These include your name, username, IP address, and email address.
- Customer records information: This includes your name and, if you opt to add it, your description.
- Internet or other electronic network activity information: This includes Log information, such as failed login attempts, login blocks, 404 errors, when a comment was edited, and when a user logs out.
- Audio, electronic, visual, thermal, olfactory, or similar information: This may include a photograph or picture of you if you choose to add it.
These categories of information and the information collected are the same as the information we collected in 2019, with the following exceptions:
- Some logs that include the IP addresses of anyone who received errors or accessed the websites between November 14th and December 20th of that year. This practice has since been discontinued.
European Union General Data Protection Regulation (EU GDPR)
EU GDPR is a regulation that ensures data protection and privacy for all individuals living in the EU. According to this regulation, we agree to the following:
- Users have the right to give and withdraw consent in an intelligible and easily accessible form.
- We will alert users of a data breach within 72 hours of being aware of the breach through emails to users, social media posts, and notification bars on the top of webpages.
- Users have the right to access what data has been collected on them in a commonly used and machine-readable format.
- Users have the right to be forgotten, meaning they have the right to request that the data controller delete their personal data.
COPPA (Children’s Online Privacy Protection Act)
When it comes to the collection of personal information from children under 13, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the United States’s consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online. We do not specifically market to children under 13.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
We collect your email address in order to:
- Email a reset password option.
- Notify you of your registration and welcome you to the Sandia Mesa websites network.
- Subscribe to a newsletter. This includes confirming your subscription and sending newsletters to you as appropriate to your subscription.
To be in accordance with CAN-SPAM, we agree to the following:
- If at any time you would like to unsubscribe from receiving future emails, you can either click the “Unsubscribe” button in the newsletters sent or you can email firstname.lastname@example.org and we will promptly remove you from ALL correspondence.
Title 18 of the United States Code, Chapter 121
Under United States federal law, we at Sandia Mesa are prohibited from divulging the contents of electronic communications to any person, and from divulging “a record or other information pertaining to a subscriber or customer of such service” to any government entity. However, we are permitted to do so only in limited circumstances, such as when the information pertains to the commission of a crime or in the case of emergencies involving danger of death or serious physical injury to any person. See § 2702 and § 2703 of this part of the U.S. Code for more information on exceptions.