Privacy Policy

1. Information We Collect

Information You Provide Directly

• Account Information: Name, email address, job title, library organization, phone number, and password when you create an account.
• Profile Information: Professional details, preferences, and settings you choose to add to your profile.
• Communication Data: Information you provide when contacting us for support, feedback, or inquiries.
• Content: Any content you upload, create, or share through our platform, including catalog data, patron information (as authorized by your library), and system configurations.

Information We Collect Automatically

• Usage Data: Information about how you interact with our platform, including features used, pages visited, time spent, and click patterns.
• Device Information: Browser type and version, operating system, IP address, device identifiers, and general location information.
• Log Data: Server logs that include your IP address, access times, pages viewed, and other activity data.
• Performance Data: Information about platform performance, error reports, and system diagnostics.

Information from Third Parties

• Integration Data: Information from third-party library systems or services you connect to our platform.
• Authentication Services: If you use single sign-on services, we may receive basic profile information as permitted by those services.

2. How We Use Your Information

We use your information for the following purposes:

Service Provision

• Provide, maintain, and improve our library management platform
• Process your requests and transactions
• Provide customer support and respond to inquiries
• Enable platform features and functionality

Communication

• Send service-related notifications and updates
• Provide technical support and customer service
• Send newsletters and educational content (with your consent)
• Notify you about changes to our services or policies

Platform Improvement

• Analyze usage patterns to improve our services
• Conduct research and development for new features
• Monitor and analyze platform performance
• Ensure security and prevent fraud

Legal and Compliance

• Comply with applicable laws and regulations
• Enforce our terms of service and policies
• Protect our rights and the rights of others
• Respond to legal requests and prevent harm

3. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share your information in the following limited circumstances:

Service Providers

We may share information with trusted third-party service providers who assist us in operating our platform, conducting business, or providing services to you. These providers are contractually obligated to protect your information and use it only for the purposes we specify.

Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal information.

Legal Requirements

We may disclose your information when required by law, court order, or government request, or when we believe disclosure is necessary to:

• Comply with legal obligations
• Protect our rights or property
• Prevent fraud or illegal activity
• Protect the safety of users or the public

Aggregated Data

We may share aggregated, de-identified, or statistical information that does not identify you personally for research, marketing, or other business purposes.

4. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. Our security measures include:

• Encryption: Data is encrypted in transit using TLS 1.2+ and at rest using AES-256 encryption
• Access Controls: Role-based access controls and multi-factor authentication for administrative access
• Infrastructure Security: Secure cloud infrastructure with regular security assessments and monitoring
• Data Backups: Regular, encrypted backups stored in geographically distributed locations
• Security Audits: Regular third-party security assessments and penetration testing
• Staff Training: Regular security awareness training for all employees

While we strive to protect your information, no method of transmission or storage is 100% secure. We encourage you to use strong passwords and keep your account credentials confidential.

5. Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this policy. Specific retention periods include:

• Account Data: Retained while your account is active and for up to 30 days after account closure
• Usage Logs: Typically retained for 90 days for security and performance monitoring
• Support Communications: Retained for up to 3 years for quality assurance and legal compliance
• Financial Records: Retained for 7 years as required by applicable laws

We may retain certain information for longer periods when required by law or when necessary for legitimate business purposes such as security, fraud prevention, or legal compliance.

6. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

Access and Portability

• Request access to your personal information
• Receive a copy of your data in a portable format
• Obtain information about how we process your data

Correction and Updates

• Correct inaccurate or incomplete information
• Update your profile and account settings
• Modify your communication preferences

Deletion and Restriction

• Request deletion of your personal information
• Restrict or object to certain processing activities
• Withdraw consent where processing is based on consent

Communication Preferences

• Opt out of marketing communications
• Manage notification settings
• Unsubscribe from newsletters

To exercise these rights, please contact us using the information provided in the Contact section. We will respond to your request within the timeframe required by applicable law.

7. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, analyze usage, and provide personalized content. Types of cookies we use include:

Essential Cookies

Necessary for the platform to function properly, including authentication, security, and core functionality.

Performance Cookies

Help us understand how users interact with our platform to improve performance and user experience.

Functional Cookies

Remember your preferences and settings to provide a personalized experience.

Analytics Cookies

Used to collect information about platform usage, including Google Analytics (with anonymized IP addresses).

You can control cookie settings through your browser preferences. However, disabling certain cookies may affect platform functionality.

8. Children's Privacy

Our platform is designed for use by library professionals and is not intended for children under 16. We do not knowingly collect personal information from children under 16. If you believe we have collected information from a child under 16, please contact us immediately, and we will take steps to remove that information.

When processing patron data on behalf of libraries, we act as a data processor and follow the instructions of the library regarding any data related to minors. Libraries remain responsible for obtaining appropriate consent and complying with applicable laws regarding children's data.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:

• Adequacy decisions by relevant data protection authorities
• Standard contractual clauses approved by the European Commission
• Other legally recognized transfer mechanisms

We take steps to ensure that international transfers comply with applicable data protection laws and that your information receives an appropriate level of protection.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Notify you via email or platform notification
• Update the "Last updated" date at the top of this policy
• Provide a summary of significant changes
• Obtain your consent when required by law

We encourage you to review this policy periodically to stay informed about how we protect your information.

11. Contact Information

If you have questions about this Privacy Policy or our data practices, please contact us:

For data protection inquiries in the European Union, you may also contact our EU representative at hello@99library.com.