What Personal Data We Collect and Why We Collect It
We use email marketing to communicate with customers and potential customers from time to time. All email lists and campaigns are “opt-in” meaning we will not send you these sorts of emails unless you indicated that you wish to receive them during signup or other interactions on our website.
We may send you “system” emails, such as password reset requests or payment notifications/receipts even if you have not opted-in to email marketing list. This is due to your purchase of a magazine subscription with us, whether it is in print or digital format, or both.
All marketing emails sent by us will include an unsubscribe link in the footer of the email. Emails sent to you may also include standard tracking, including open and click activities. We use ActiveCampaign for email marketing.
CDS Global Canada collects information for the purposes of subscription order processing and thus email preferences for ActiveCampaign and credit card payments with Moneris.
Moneris is used to process credit card payments. Subscription orders processed through CDS Global Canada are connected to Moneris, Canada’s leading processor of Debit and credit card payments, in order to process the credit card payments. To comply with accounting, auditing and legal requirements, we keep data on financial transactions until a particular year’s audit has been completed. BC Outdoors magazine and Outdoor Canada magazine are audited magazines.
We use the Facebook comments plugin. It allows you to leave comments on using your Facebook account. You can choose to share your comment activity on Facebook as well.
If you upload images to the website for our photo contest, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
For the purposes of entering our photo contests, we request JPEG files only.
We generally collect personally identifiable information with your specific knowledge and consent. For example, when you enter a sweepstakes or contest, complete a survey, make a purchase on our Shopify, subscribe to our publication, register for certain services, or register and/or set up an account/profile to access, visit and/or use certain portions of the Service, or the Service as a whole, you may be provided, or required to choose, a password and/or User ID, and you may provide a credit, debit, or charge card number, or other payment information, as well as your name, telephone number(s), email and/or street address, and other personally identifiable information. Other information such as your age, gender, an avatar, and the number for your mobile or other device may also be requested. In addition, you may be asked to send us similar information via messaging (e.g., email, SMS, MMS, or other technologies).
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year. If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded Content from Other Websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
Who We Share Your Data With
We use third-party services (data processors) across our sites. The extent to which your data is shared with these providers depends on your use of our services, and we list the specific third-parties in use (with links to their privacy policies) in the sections below.
Each third-party provider has been vetted by our security team to ensure that privacy policies and practices meet or exceed the same levels of compliance and standards that we follow. Where appropriate and available, we hold additional signed Data Privacy Agreements with these companies as an additional layer of accountability in order to help ensure your data is safe and secure.
We disclose potentially personally-identifying and personally-identifying information only to our employees, contractors and affiliated organizations that (i) need to know that information in order to process it on our behalf or to provide services, and (ii) that have agreed, in writing, not to disclose it to others. Some of those employees, contractors and affiliated organizations may be located outside of your home country; by using our websites and services, you consent to the transfer of such information to them. We will not rent or sell potentially personally-identifying and personally-identifying information to anyone.
Plugin authors who inform us of features that are not potentially GDPR compliant suggest disabling those features to which we comply. In the event that the plugin authors have not disclosed such information, we remove and disable the features until further notice from the plugin authors.
We may be required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.
If we ever were to engage in any onward transfers of your data with third parties for a purpose other than which it was originally collected or subsequently authorized, we would provide you with an opt-out choice to limit the use and disclosure of your personal data.
If Outdoor Group Media, or substantially all of its assets, were acquired, or in the unlikely event that Outdoor Group Media goes out of business or enters bankruptcy, user information would be one of the assets that is transferred or acquired by a third party. You acknowledge that such transfers may occur, and that any acquirer of Outdoor Group Media may continue to use your personal information as set forth in this policy.
How Long We Retain Your Data
User and event data stored by Google Analytics are retained for 26 months.
For users that register on our website (if any), we store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time. Website administrators can also see and edit that information. Once you have registered on our website as a magazine subscriber, we keep your account information in our subscription database as long as it is required by the government for auditing purposes. If your subscription is cancelled, your account is marked as such and you will no longer receive any offers.
What Rights You Have Over Your Data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Visitor comments may be checked through an automated spam detection service.
How We Protect Your Data
See wordpress.org/about/security for details on the security of the WordPress core itself. We follow all WordPress Code Standards in the plugins that we use and we regularly update our plugins and code.
All staff only have access to systems that are directly required to complete the functions of their job. We use dual factor authentication for all Google-related services that we use, and automatically log all staff activity through the software that we use.
We only use third-party services that adhere to the highest levels of privacy and security practices to the best of our knowledge.
What Data Breach Procedures We Have in Place
Should any event occur where customer data has been lost, stolen, or potentially compromised, our policy is to alert our customers via email, telephone, or lettermail. We will also report such incident to any required data protection authority. We will work closely with any customers affected to determine the actions needed to rectify the data breach and how to avoid any similar event in the future.
For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us by e-mail at firstname.lastname@example.org or by mail using the details provided below:
Outdoor Group Media Ltd.
[Re: Privacy Compliance Officer]
802 – 1166 Alberni Street Vancouver British Columbia CA V6E 3Z3