COLLECTION OF YOUR PERSONAL INFORMATION
The KPI Institute collects personally identifiable information during the registration process, such as your e-mail address, name, home or work address or telephone number. The KPI Institute also collects anonymous demographic information, which is not unique to you, such as your ZIP/post code, age, gender, preferences, interests and favorites.
There is also information about your computer hardware and software that is automatically collected by The KPI Institute. This information can include: your IP address, browser type, domain names, access times and referring Web site addresses. This information is used by The KPI Institute for the operation of the service, to maintain quality of the service, and to provide general statistics regarding use of smartKPIs.com.
The KPI Institute encourages you to review the privacy statements of websites you choose to link to from The KPI Institute’s websites so that you can understand how those websites collect, use and share your information. The KPI Institute is not responsible for the privacy statements or other content on Web sites outside of The KPI Institute’s websites.
USE OF YOUR PERSONAL INFORMATION 2
We do not share personal information about you outside The KPI Institute’s websites unless you give us permission to do so or when the law requires it. However, by providing personal information to The KPI Institute’s websites, you agree that such information may be stored outside your country or held by third parties providing services to The KPI Institute but will not be used by such third parties for their own purposes. You are entitled to know whether we hold information about you and, if we do, to have access to that information and require it to be corrected if it is inaccurate. You can do this by contacting The KPI Institute via email at firstname.lastname@example.org
We reserve the right to use your email address or other personally identifiable information to:
- a) send information to you which we think may be of interest to you by email or other means;
- b) send you marketing communications related to our business or the businesses of carefully-selected third parties which we think may be of interest to you.
However, you will always have the ability to opt-in or opt-out from these programs or features. Also, your email address can be used without further consent for non-marketing or administrative purposes as well (such as notifying you of major website changes or for customer service purposes).
We do not give information about you to government agencies, organisations or anyone else unless one of the following applies:
- you have consented;
- you’d expect us to or we have told you we will;
- it is required or authorised by law;
- it will prevent or lessen a serious and imminent threat to somebody’s life or health; or
- the disclosure is reasonably necessary for law enforcement or for the protection of public revenue.
Cookies are files sent by web servers to web browsers, and stored by the web browsers.
The information is then sent back to the server each time the browser requests a page from the server. This enables a web server to identify and track web browsers.
There are two main kinds of cookies: session cookies and persistent cookies. Session cookies are deleted from your computer when you close your browser, whereas persistent cookies remain stored on your computer until deleted, or until they reach their expiry date.
Cookies on our website
Cookies are small data files that your browser places on your computer or device. Cookies help your browser navigate a website and the cookies themselves cannot collect any information stored on your computer or your files.
When a server uses a web browser to read cookies they can help a website deliver a more user-friendly service. To protect your privacy, your browser only gives a website access to the cookies it has already sent to you.
- Session cookies: these are mainly used by online shops and allow you to keep items in your basket when shopping online. These cookies expire when the browser is closed
- Persistent cookies: these remain in operation, even when you have closed the browser. They remember your login details and password so you don’t have to type them in every time you use the site. The law concerning permanent cookies stipulates that they need to be deleted after a period of six months
- Third party cookies: they are set by a different organisation to the owner of the website you are visiting. For example, the website might use a third party analytics company who will set their own cookie to perform this service. The website you are visiting may also contain content embedded from, for example YouTube or Flickr, and these sites may set their own cookies. More significantly, a website might use a third party advertising network to deliver targeted advertising on their website. These may also have the capability to track your browsing across different sites. The KPI Institute’s websites do use advertising cookies, but these will not track your behavior outside of The KPI Institute’s family of sites. One type of third party cookies are Google cookies.
- Flash cookies: many websites use Adobe Flash Player to deliver video and game content to their users. Adobe utilise their own cookies, which are not manageable through your browser settings but are used by the Flash Player for similar purposes, such as storing preferences or tracking users. Flash Cookies work in a different way to web browser cookies (the cookie types listed above are all set via your browser); rather than having individual cookies for particular jobs, a website is restricted to storing all data in one cookie. You can control how much data can be stored in that cookie but you cannot choose what type of information is allowed to be stored.
- Secure cookie: a secure cookie can only be transmitted over an encrypted connection (i.e. HTTPS). They cannot be transmitted over unencrypted connections (i.e. HTTP). This makes the cookie less likely to be exposed to cookie theft via eavesdropping.
- SameSite cookie: Google Chrome 51 recently introduced a new kind of cookie which can only be sent in requests originating from the same origin as the target domain. This restriction mitigates attacks such as cross-site request forgery (XSRF). A cookie is given this characteristic by adding the SameSite flag to the cookie.
- Zombie cookie: A zombie cookie is a cookie that is automatically recreated after being deleted. This is accomplished by storing the cookie’s content in multiple locations, such as Flash Local shared object, HTML5 Web storage, and other client-side and even server-side locations. When the cookie’s absence is detected, the cookie is recreated using the data stored in these locations.