Information Collection

We collect anonymous data from every visitor of the Website to monitor traffic and fix bugs. For example, we collect information like web requests, the data sent in response to such requests, the Internet Protocol address, the browser type, the browser language, and a timestamp for the request.

We ask you to log in and provide certain personal information (such as your name and email address) in order to be able to save your profile and the documents and comments associated with it. In order to enable these or any other login based features, we use cookies to store session information for your convenience. You can block or delete cookies and still be able to use Contently, although if you do you will then be asked for your username and password every time you log in to the Website. In order to take advantage of certain features of the Website, you may also choose to provide us with other personal information, such as your picture or personal Website, but your decision to utilize these features and provide such data will always be voluntary.

How We Use Cookies

In collecting the Personal Data, we sometimes use “cookies” and other tracking technologies (e.g., web beacons and pixel tags). Cookies allow us to recognize your browser or device and “remember” your browser during subsequent visits for purposes of functionality, preferences, and website performance, and they also tell us how and when pages and features in our Services are visited and by how many people. The Services use the following cookies:

• Essential Cookies
• Functionality Cookies.
• Performance/Analytical Cookies
• Retargeting/Advertising Cookies

The Collection, Process, and Use of Personal Data

All personal data collected will only be used to process your membership application and send you product information and occasional special offers or announcements from selected BSR partners, if you have subscribed to the BSR Mailing List. We do not sell personal data to anyone and only share it with third parties who are facilitating the delivery of BSR services.

We rely on fulfillment of contract as the lawful basis under GDPR Article 6(1)(b) for the processing of member and client data.

In addition to the uses set forth above, we may also process the Personal Data we collect on the basis of the following legitimate business interests.

• Operation and improvement of our business, products and services
• Marketing of our products and services.
• Provision of customer support
• Protection from fraud or security threats
• Compliance with legal obligations
• Completion of corporate transactions

Data Protection

BSR (Business for Social Responsibility) places great importance on security of your personal data and only partners with vendors that adhere to the strictest security and data protection standards. BSR has implemented technical and organizational security measures to guarantee the security of your personal data. Information is stored on secure networks and access is restricted to those employees and partners who are entitled to access our systems.

This policy (the “Data Protection and Privacy Policy”) explains which personal data concerning you we collect when you visit our website (the “Website”), when and why we collect the personal data, how we use them, the conditions of our disclosure to third parties, as well has how we secure the stored personal data. Please read the Data Protection and Privacy Policy thoroughly in order to understand how we process your personal data.

Our Policy For Age Under 18

The GDPR protects the data of all Europeans by making demands that all sites that accept visitors/customers from European citizens/residents publish and follow a transparent Privacy Policy. We covered the full GDPR requirements in-depth elsewhere. What's important here is what the GDPR says about data subjects who are also minors (under 18).

The GDPR sets a general age of consent at 16, which means you can't legally process the data of a data subject 15 years-old or younger.

In cases where you work with the data of children under 16, you can only process the data with permission from their parent or guardian. Any processing without the consent of an adult with parental responsibility is illegal under EU law.

However, 16 is only the GDPR recommendation. According to Article 8(1), member states may enact laws that lower the age of consent to 13 (but not under 13).