When you browse the Websites and do not interact with the site for any online service or product from the AUA, you browse anonymously. Personally identifiable information is not collected as you browse. We do, however, collect Web Information and other non-personally identifiable information for the purposes described below.
Data You Provide Through Our Websites
When you choose to interact with our Websites (i.e., subscribing to AUA publications, purchasing an AUA product or service, registering for a course or event or requesting information and materials), we will collect certain personally identifiable information from you. The type of information collected will be determined based on the type of product or service you seek, but may include your name, address, phone number billing and delivery information, email address or other demographic information. Examples of information we collect in specific circumstances include:
- Registration: If you register to participate in an AUA event, course, program or promotion using online or paper registration forms, we collect and store your name, phone number, email address, and any additional information you voluntarily provide on the registration form.
- Membership Application: We collect identifying and demographic information about each of our members, including your name, address, phone number, email address, and any additional information you voluntarily provide on the membership application or renewal form.
- Requests: We collect information volunteered by website users, including from surveys or requests submitted via "Contact Us" links. We also may collect the email addresses of those who communicate with us via email.
- AUA Member Directory: We collect and disclose the contact information, including email addresses, that AUA members provide in the AUA Member Directory. The directory is a reference tool for AUA members only.
- Online Products/Programs: We may collect some contact information you are explicitly asked to provide in connection with certain AUA online learning products or programs
- Financial Information – When you place an order online with us, register for a conference, or make any other electronic payment through our website, standard credit card information (card number, card type, expiration date, etc.) is collected through a third-party processor who is compliant with Payment Card Industry (PCI) data security standards. The third-party processor provides us with, and we store, the last four digits of your credit card number, which are retained for purposes of issuing applicable refunds.
Automatically Collected Data
As you interact on our Websites, we may collect information about your computer or device and visits to one or more of our Websites ("Web Information") through cookies, web beacons, pixel tags and other technologies, Internet Protocol (IP) address tracking/URL tracking, and other tools (collectively, "Tracking Technologies"). The types of Automatically Collected Data collected on our Websites through the use of these and other tools, which we may add from time to time, may include: the search terms you used, new or returning user information, browser information, computer or device type, operating system, internet service provider, website usage, referring/exit pages, platform type, date/time stamp, number of clicks, and ads viewed.
Banner advertisements on the Websites do not collect any personally identifiable information on individual visitors. The AUA does collect aggregate data on visitors such as time of day and Web browser type, which is shared with advertisers to determine their advertising effectiveness.
Children Under 13
We do not knowingly solicit data online from or market online to children under the age of 13.
In general, we process your information to advance the AUA’s legitimate interest in communicating with members, meeting attendees, product purchasers and other website users and providing these individuals with access to high-quality educational, scientific and advocacy information via our wide array of in-person meetings, online learning resources, publications and other products and services. The AUA exists to advance the collective interests of our members and the urologic community, and processing your information for the purposes described in this policy is necessary for us to continue to serve your needs.
When we use your information based on our legitimate interest, we strive to strike an appropriate balance between AUA’s need to collect, use and retain your information and how such processing may impact you. We will ask for your consent before using your information for a purpose that extends beyond what you may reasonably expect from the AUA and/or that has a more significant privacy impact.
Once collected, we may use your personally- and non-personally identifiable information for the following purposes:
- Ensure network and information security
- Prevent fraud or misuse of AUA’s services
- Register you or complete a transaction for programs and services you have requested
- Deliver services, such as information, newsletters or other content that may be relevant to your association with the AUA
- Alert you to special offers, promotions, updated information and other new services from the AUA and other approved third parties
- Allow you access to limited-entry (i.e., member-only) areas of the Sites
- Answer your emails or online requests
- Measure the success of any promotional placement we run on the Sites so that we may better match your interests and preferences to any ads or offers we have available
- Determine a particular page or area of our Websites you may have visited
If you prefer not to accept any cookies, you can set your Internet browser to notify you when you receive a cookie or to prevent cookies from being placed on your hard drive. If you consent to our collection of cookies and you subsequently wish to withdraw your consent, you will need to manage the settings on your web browser to delete all cookies and disallow further acceptance of cookies. Please note that disabling cookies on your browser will prevent us from tracking your activities in relations to our Websites, however, it may also disable some of the functions and features of the Sites and the Sites may not work properly.
Use of Automated Decision-Making
AUA uses various tools, such as Feathr® and Real Magnet®, to track your online activities to provide you with tailored advertising. AUA does not use any automated decision-making based on any of the following special categories:
- racial or ethnic origin
- political opinions
- religious or philosophical beliefs
- trade-union membership
- genetic data or biometric data for the purpose of uniquely identifying a natural person
- data concerning health
- data concerning a natural person’s sex life or sexual orientation
The AUA sends "transactional or relational email messages," which include, but are not limited to, electronically transmitted news, informational bulletins, meetings and member-benefit announcements, and surveys. You may opt-out of a specific email list by communicating your preferences to emails@AUAnet.org or by following the "unsubscribe" instructions of any email message sent to you from the AUA or its component or affiliated organizations. Additionally, the AUA will:
- Ensure it uses email and mailing lists for AUA operational activities. Additionally, it ensures this email policy—including unsubscribe requests—is strictly enforced.
- Target its email promotional announcements to recipients with an interest in the subject matter.
- Timely honor all "unsubscribe" requests by properly coding the database.
Email addresses are captured during the AUA Annual Meeting registration process. This information is made available to AUA Annual Meeting exhibitors. Registrants may opt out of making this information available to exhibiting companies.
AUA member email addresses are made available to other AUA members through the AUA Member Directory. The AUA does not share, rent or sell email addresses to commercial vendors.
We share your Personal Data with third parties who provide certain services to us to assist us in meeting business operation needs. These parties are authorized to process your Personal Data, on our behalf and pursuant to our instructions, only as necessary to provide these services to us. We share your Personal Data with the following service providers:
- Providers of payment processing and accounting, as necessary to process payment from our members or customers
- Learning or customer management systems such as Cadmium and Personify that integrate with our platform
- Customer service providers
- Providers helping us fulfill subscription services
- Providers of research and analytics services, including Google Analytics, Real Magnet, CVENT, Survey Monkey and Feathr
- Providers of cloud computing infrastructure services
We have appropriate security measures in place to prevent your personal information from being accidentally lost, or used or accessed in an unauthorized way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorized manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.
User ID and Password
Aspects of the Sites require the use of a user ID and password. The user ID and password enables the AUA to verify your identity and thereby, allows you access to member information such as your MyAUA account, and prevents unauthorized access.
When you have finished using a secure area of the Websites, make sure you always click on the "Log Out" link which appears on every secure page. When you click on the "Log Out" link, you will be given the option to end your secure session. No further secure transactions can be conducted without re-entering your user ID and password. You should be aware, browser software often "caches" a page as you look at it, meaning some pages are saved in your computer's temporary memory. Therefore, you may find when clicking on your "Back" button it shows you a saved version of a previously viewed page. Caching in no way affects the security of your confidential user ID or password.
The AUA realizes the importance of security, so we've taken a number of steps to enhance the protection of information sent to or from the AUA over the Internet. We require a "secure session" be established, using Secure Socket Layer (SSL) technology. This is done any time you supply or access information in one of our secure online areas. You will know you are in a secure online area because the URL in your browser will start with "https". SSL technology creates a private conversation only your computer and the AUA systems can understand. The SSL technology encodes information as it is being sent over the Internet between your computer and AUA systems, helping to ensure the transmitted information remains confidential.
Unfortunately, no data transmission over the Internet can be guaranteed to be 100 percent secure. Accordingly, and despite our efforts, the AUA cannot guarantee or warrant the security of any information you transmit to us, or to or from our online products or services.
Your Access To Your Information
AUA acknowledges that you have the right to access your Personal Data. Our Websites currently allow you to access, correct, amend, or delete inaccurate data on your MyAUA profile page. In case you request us to remove data, we will respond within a reasonable timeframe.
Upon request, AUA will provide you with information about whether we hold any of your Personal Data. You may access, update or correct your Personal Data or remove it from our system by making a request to us at emails@AUAnet.org. Requests typically receive a response within thirty (30) days. If access cannot be provided within that time frame, we will provide the requesting party with an estimated date by which the information will be provided. If for some reason access is denied, we will provide an explanation of why access has been denied. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect.
California Privacy Rights
Beginning on January 1, 2005, California Civil Code Section 1798.83 permits our visitors who are California residents to request certain information regarding the AUA's disclosure of personally identifiable information to third parties for their direct marketing purposes. To make such a request, please contact us:
AUA Communications Office
1000 Corporate Blvd.
Linthicum, MD 21090
If you are an EU Data Subject, please see the "EU Data Subject" section below for information on your rights in relation to the Personal Data we hold about you.
Do Not Track (DNT) is a privacy preference that users can set in their web browsers. While the United States Federal Trade Commission has endorsed DNT, our Website does not support DNT codes.
EU Data Subjects
This section applies if you are an individual located in the European Union ("EU") ("EU Data Subject").
Time Period for Retention of Personal Data
The EU General Data Protection Regulation (GDPR) requires AUA to store and retain personal data only as long as necessary. If you are an AUA member, AUA will retain your Personal Data throughout the duration of your AUA membership. If you are not a member of AUA and you reside in the EU, AUA will delete your Personal Data for meeting registration or product purchase within a reasonable time of your registration or purchase from AUA unless you have registered for another meeting or course, purchased another AUA product or service, joined as a member, or have otherwise consented for us to collect and retain your Personal Data. Subject to certain exclusions, we will erase your personal data upon your request.
Transfer of Personal Data
Subject to applicable law, you have the following rights in relation to your Personal Data:
- Right of access: If you ask us, we will confirm whether we are processing your Personal Data and, if so, provide you with a copy of that Personal Data (along with certain other details). If you require additional copies, we may need to charge a reasonable fee.
- Right to rectification: If your Personal Data is inaccurate or incomplete, you are entitled to have it rectified or completed. If we have shared your Personal Data with others, we will tell them about the rectification where possible. If you ask us, where possible and lawful to do so, we will also tell you with whom we shared your Personal Data so that you can contact them directly.
- Right to erasure: You may ask us to delete or remove your Personal Data and we will do so in some circumstances, such as where we no longer need it (we may not delete your data when other interests outweigh your right to deletion). If we have shared your data with others, we will tell them about the erasure where possible. If you ask us, where possible and lawful to do so, we will also tell you with whom we shared your Personal Data so that you can contact them directly.
- Right to restrict processing: You may ask us to restrict or ‘block’ the processing of your Personal Data in certain circumstances, such as where you contest the accuracy of that Personal Data or object to us processing it. We will tell you before we lift any restriction on processing. If we have shared your Personal Data with others, we will tell them about the restriction where possible. If you ask us, where possible and lawful to do so, we will also tell you with whom we shared your Personal Data so that you can contact them directly.
- Right to data portability: Effective May 25, 2018, you have the right to obtain your Personal Data from us that you consented to give us or that is necessary to perform a contract with you. We will give you your Personal Data in a structured, commonly used and machine-readable format. You may reuse it elsewhere.
- Right to object: You may ask us at any time to stop processing your Personal Data, and we will do so:
- If we are relying on a legitimate interest to process your Personal Data — unless we demonstrate compelling legitimate grounds for the processing; or
- If we are processing your Personal Data for direct marketing.
- Rights in relation to automated decision-making and profiling: You have the right to be free from decisions based solely on automated processing of your Personal Data, including profiling, that affect you, unless such processing is necessary for entering into, or the performance of, a contract between you and us or you provide your explicit consent to such processing.
- Right to withdraw consent: If we rely on your consent to process your Personal Data, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on your prior consent.
- Right to lodge a complaint with the data protection authority: If you have a concern about our privacy practices, including the way we have handled your Personal Data, please contact us at emails@AUAnet.org or by calling Member Services at 410-689-3933. You have the right to report your concern to the data protection authority that is authorized to hear those concerns.
You may exercise your rights by contacting us at emails@AUAnet.org.
- Non-Personally Identifiable Information – information that may relate to an individual but does NOT identify you personally. This may include demographic information such as age, gender, city and physical location, or Web Information.
- Personal Data – any information relating to an identified or identifiable natural person ("data subject").
- Personally Identifiable Information – any and all information identifying you personally, such as your name, address, telephone number(s), email address, or company name.
- Tracking Technologies -- cookies, web beacons, pixel tags and other technologies, Internet Protocol (IP) address tracking/URL tracking, and other tools used to collect Web Information
- Cookies, Web Beacons or Pixel Tags – A "cookie" is a small text file that web servers typically send to a user's computer when they visit a website. Cookies are stored as text files on the user's hard drive, and can be accessed by web servers when the user visits a website or views an advertisement. Cookies often are used to make the site easier to use. For example, if you check a box to ask that we store your username on your computer so that you don’t have to enter it each time you visit the site, that information is stored in a Cookie on your computer.
- A session cookie is a cookie that stores information as a user is using the site, but is deleted once the browser session is finished. A persistent cookie is a cookie that stores information as a user utilizes the site and stores and uses that information in connection with future visits of the user to the site.
- Cookies may be "essential" for the use of a website, such as for example session-id cookies, authentication cookies, or user centric security cookies, or "non-essential" for the use of a website, such as for example, third party advertising cookies or other tracking cookies.
- Web Information. Information about your activities on the Website and the technology you use to access the Website, including information about the date and time you visit the Website, the services you accessed from the site or from an email, how you arrive at the Website (through referral or exit links or otherwise), which pages you view, any files you download, for how long you visit the Website and view pages, when you last visited the site, your IP address, your location, your connection, your search terms, the type of browser and operating system you use, mobile device make and model, mobile device carrier information, and mobile device support specifications such as screen size, color, video, and image support.
Revised November, 2019