EFFECTIVE DATE: 2024-01-22
In this Privacy Policy (“Policy”), we describe how Open Source Initiative (“OSI,” “we,” or “us”) collects, uses, and discloses information that we obtain about visitors to our website https://opensource.org (the “Site”, including subdomains like members and discuss) and the services available through our Site (collectively, the “Services”).
By visiting the Site, or using any of our Services, you agree that your personal information will be handled as described in this Policy. Your use of our Site or Services, and any dispute over privacy, is subject to this Policy and our Terms of Service, including its applicable limitations on damages and the resolution of disputes. The OSI Terms of Service are incorporated by reference into this Policy.
The Information We Collect About You.
We collect information about you directly from you and from third parties, and automatically through your use of our Site or Services.
Information We Collect Directly From You. The information we collect from you depends on how you use our Services. To create an account, you must provide us with the following personal information:
- Your first and last name
- Password
- Email address
- Country
- Date you joined OSI as a member
We also may collect additional information from you if you choose to provide it, such as:
- A physical address (home or work)
- Employment information
- Membership renewal information
Information We Collect Automatically. We automatically collect information about your use of our Site through cookies, web beacons, and other technologies. To the extent permitted by applicable law, we combine this information with other information we collect about you, including your personal information. Please see the section “Cookies and Other Tracking Mechanisms” below for more information
We collect the following information when you visit our Site:
- Your browser type and operating system
- Web pages you view on the Site
- Links you click on the Site
- Your IP address
- Your geolocation
- The length of time you visit our Site and or use our Services
- The referring URL, or the webpage that led you to our Site
How We Use Your Information
We use your information, including your personal information, for the following purposes:
- To provide our Services to you, including managing and administering your membership with our organization.
- To manage any sponsorship activities you engage in with us.
- To communicate with you about your use of our Services, to respond to your inquiries, and for other membership support purposes.
- To send you news and newsletters.
- To send you information about our affiliates, educational opportunities, and other news we think may be of interest to you.
- To better understand how users access and use our Services, both on an aggregated and individualized basis.
- To administer surveys and questionnaires, such as for market research or member satisfaction purposes.
- To comply with legal obligations, as part of our general business operations, and for other business administration purposes.
- Where we believe necessary to investigate, prevent or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person, or violations of our Terms of Service or this Privacy Policy.
How We Share Your Information
We may share your information, including personal information, as follows:
- Service Providers. We disclose the information we collect from you to service providers, contractors or agents who perform functions on our behalf. These service providers may include web hosting providers, database providers, and email providers.
- Affiliates. We disclose the information we collect from you to our affiliates.
- OSI Users. Your username and any information that you post to our Site, including, without limitation, blog posts, comments, and text will be available to, and searchable by, all users of the Site and Services.
We also disclose information in the following circumstances:
- In Response to Legal Process. We may disclose your information to comply with the law, a judicial proceeding, court order, or other legal process, such as in response to a court order or a subpoena.
- To Protect Us and Others. We may disclose your information when we believe it is appropriate to do so to investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person, violations of our Terms of Service or this Policy, or as evidence in litigation in which we are involved.
Our Use of Cookies and Other Tracking Mechanisms
We and our service providers use cookies and other tracking mechanisms to track information about your use of our Site or Services. We may combine this information with other personal information we collect from you (and our service providers may do so on our behalf). We use cookies for functional purposes only (i.e. to support the proper working of our Site and Services) and do not use cookies for advertising or profiling purposes.
Cookies are alphanumeric identifiers that we transfer to your device’s hard drive through your web browser for record-keeping purposes. Some cookies allow us to make it easier for you to navigate our Site and Services, while others are used to enable a faster log-in process or to allow us to track your activities at our Site and Service. There are two types of cookies: session and persistent cookies.
- Session Cookies: Session cookies exist only during an online session. They disappear from your device when you close your browser or turn off your device. We use session cookies to allow our systems to uniquely identify you during a session or while you are logged into the Site and Services. This allows us to process your online transactions and requests and verify your identity, after you have logged in, as you move through our Site and Services.
- Persistent Cookies: Persistent cookies remain on your device after you have closed your browser or turned off your device. We use persistent cookies to track aggregate and statistical information about user activity.
Disabling Cookies: Most web browsers automatically accept cookies, but if you prefer, you can change your browser options to block them in the future. The Help portion of the toolbar on most browsers will tell you how to prevent your computer from accepting new cookies, how to have the browser notify you when you receive a new cookie, or how to disable cookies altogether. Visitors to our Site and Services who disable cookies will be able to browse certain areas of the Site, but some features may not function properly.
Third Party Analytics: We use automated devices and applications, such as plausible.io, to evaluate usage of our Site. We use these tools to help us improve our Site’s performance and user experiences.
Do-Not-Track. Currently, our systems do not recognize browser “do-not-track” requests. You may, however, disable certain tracking as discussed in this section (e.g., by disabling cookies).
User Generated Content
We invite you to post content on our Site and Services, including your comments, pictures, and any other information that you would like to be available on our Site or Services. If you post content to our Site or Services the information that you post will be available to all visitors to our Site. If you post your own content on our Site or Services, your posting may become public and OSI cannot prevent such information from being used by third parties.
Third-Party Links
Our Site and Services may contain links to third-party websites. Any access to, and use of, such linked websites is not governed by this Policy, but instead is governed by the privacy policies of those third-party websites. We are not responsible for the information practices of such third-party websites.
Security of My Personal Information
We have implemented reasonable precautions to protect the information we collect from loss, misuse, and unauthorized access, disclosure, alteration, and destruction. Please be aware that despite our best efforts, no data security measures can guarantee security.
You should take steps to protect against unauthorized access to your password, phone, and computer by, among other things, signing off after using a shared computer, choosing a robust password that nobody else knows or can easily guess, and keeping your log-in and password private. We are not responsible for any lost, stolen, or compromised passwords or for any activity on your account via unauthorized password activity.
Access to My Personal Information
You may modify personal information that you have submitted by logging into your accounts and updating your profile information. Please note that copies of information that you have updated, modified, or deleted may remain viewable in cached and archived pages of the Site for a period of time.
What Choices Do I Have Regarding Use of My Personal Information?
We may send periodic promotional emails to you regarding membership benefits or related opportunities. You may opt-out of promotional emails by following the opt-out instructions contained in the email. Please note that it may take up to 10 business days for us to process opt-out requests. If you opt-out of receiving promotional emails, we may still send you emails about your account or any services you have requested or received from us.
Additional Privacy Rights under GDPR
Where the General Data Protection Regulation (“GDPR”) applies, in particular when you are accessing the Site from a country in the European Economic Area (“EEA”), you have the following rights, subject to applicable limitations:
- The right to access your personal information;
- The right to rectify the personal information we hold about you;
- The right to erase your personal information;
- The right to restrict our use of your personal information;
- The right to object to our use of your personal information;
- The right to receive your personal information in a usable electronic format and transmit it to a third party (also known as the right of data portability); and
- The right to lodge a complaint with your local data protection authority.
If you would like to exercise any of these rights, you may do so submitting a request to us using our Contact Us form, and including “GDPR Privacy Request” in the message box. Please understand, however, the rights enumerated above are not absolute in all cases.
When you submit a GDPR request to us we may request additional information from you to confirm your identity.
We will make best efforts to voluntarily provide the above rights to individuals outside of the EEA. We will endeavor to comply with GDPR requests within 45 days of receipt, but if we need additional time to handle the request we will notify you.
Children Under 13
Our Services are not designed for children under 13. If we discover that a child under 13 has provided us with personal information, we will delete such information from our systems.
Contact Us
If you have questions about the privacy aspects of our Services or would like to make a complaint, please contact us using our Contact Us form.
Changes to this Policy
This Policy is current as of the Effective Date set forth above. We may change this Policy from time to time, so please be sure to check back periodically. We will post any changes to this Policy on our Site. If we make any changes to this Policy that materially affect our practices with regard to the personal information we have previously collected from you we will endeavor to provide you with notice in advance of such change by highlighting the change on our Site.