IMPORTANT NOTICE: If you are a member, customer, or constituent of an organization that uses Cuseum’s products or services, please know that Cuseum does not share, sell, or lease your data. The privacy policy below refers only to Cuseum’s online properties (e.g. Cuseum.com, landing pages, [AR]T Museum, newsletters, etc.), but does not relate to the policies of the organization you are affiliated with.
If you have any question, comments, or concerns, please feel free to contact us at privacy@cuseum.com.
Privacy Policy
Last updated: September 26, 2023
Welcome to Cuseum. We take privacy seriously, especially when it comes to data you provide to us.
Cuseum Inc. ("us", "we", or "our") respects the privacy of our customers and other users of our website located at http://www.cuseum.com (the "Site"), the mobile applications provided to our customers (the "App") and the services that we provide (collectively with the Site and the App, the "Services").
This Privacy Policy explains how we collect the personal information of our customers and other users of our Services (collectively, "Users"), how we handle and protect that information, and what Users can do to help protect that information.
By using the Services, you agree to the collection and use of information in accordance with this Privacy Policy. Unless otherwise defined in this Privacy Policy, terms used in this Privacy Policy have the same meanings as in our Terms and Conditions, accessible at https://www.cuseum.com/terms-of-service
Collection and Use of Personal Information
While using our Services, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you. Personally identifiable information may include, but is not limited to, your name, email address, mailing address or phone number ("Personal Information").
We collect this Personal Information for the purpose of providing the Services, communicating with you, responding to your requests/inquiries, and improving our Services. We may share your Personal Information with our affiliates and with other carefully selected companies that we believe offer services and products that would potentially be of interest to you.
Collection and Use of Other Information
In addition, the Site and the App automatically collect certain anonymous information about you when you use the Services. For example, the Site automatically gathers information that your browser sends whenever you visit our Services. This information may include your computer's Internet Protocol ("IP") address, browser type, browser version, information about how you navigate through and use the Services, and other statistics.
We also collect information through the use of Cookies. Cookies are files with a small amount of data, which may include an anonymous unique identifier. Cookies are sent to your browser from a web site and transferred to your device. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. The Help feature on most browsers provides information on how to accept cookies, disable cookies or to notify you when receiving a new cookie. If you do not accept cookies, you may not be able to use some features of our Services.
With your permission, we may also collect your GPS or other location information. This information is helpful because it enables us to provide location-specific services to you, such as telling you about art or museums that are near you, or offering content or offers to you.
We also collect and use certain information that you provide when you use the Services, such as when you comment on a piece of art or an artist page, add an object to your favorites, share content from the App through a third party social network, follow a friend or museum, share your contacts’ information, or use our contact importers. If you provide us with your contacts' information, we may process this information to facilitate your referral invitations, guest passes, or for any purpose you authorize at the time of collection.
We aggregate anonymous information received from you and from other users to generate statistics and other information. We analyze this information to determine how users use our Services and to find ways to improve our Services. We may use third party services such as Google Analytics to help us collect, monitor and analyze this type of information.
We also provide these statistics and the aggregated anonymous information on which the statistics are based to our museum and advertising partners as part of the services that we provide to those partners. These statistics and information contain no Personal Information.
We may also use the anonymous information we collect:
as part of our efforts to keep the Services safe and secure;
to protect our or others' rights or property;
to provide you with location features and services, like telling you and your friends when there is art that would interest you nearby;
to measure or understand the effectiveness of content or ads you and others see, including to deliver relevant content or ads to you;
to make suggestions to you and other users; and
for internal operations, including troubleshooting, data analysis, testing, research and service improvement.
Limiting the Use and Disclosure of Your Personal Data
In some regions (like the European Economic Area), you have certain rights under applicable data protection laws. These may include the right (i) to request access and obtain a copy of your personal information, (ii) to request rectification or erasure; (iii) to restrict the processing of your personal information; and (iv) if applicable, to data portability. In certain circumstances, you may also have the right to object to the processing of your personal information. To make such a request, please contact us as privacy@cuseum.com. We will consider and act upon any request in accordance with applicable data protection laws.
If we are relying on your consent to process your personal information, you have the right to withdraw your consent at any time. Please note however that this will not affect the lawfulness of the processing before its withdrawal.
If you are resident in the European Economic Area and you believe we are unlawfully processing your personal information, you also have the right to complain to your local data protection supervisory authority. You can find their contact details here.
User Postings
Except as otherwise expressly described in this Privacy Policy, this policy only addresses the use and disclosure of Personal Information and other information we collect from you. In the course of your use of the Services, you may elect to post or otherwise disclose information about yourself on certain features that we may make available to users now or in the future that enable users to communicate with the public at large or with a group, such as comment areas, message boards, news groups, forums, communities, personal web pages, calendars or other features. Whenever you voluntarily disclose personal information on publicly-viewable web pages, that information will be publicly available and can be collected or used by others. Such postings may also appear on other websites or when searches are executed on the subject of your posting. Such activities are beyond the control of Cuseum Inc. and this Privacy Policy. You should therefore exercise discretion when disclosing any Personal Information or other information when using the public message boards.
Do Not Track Disclosure
Many browsers provide users with a Do Not Track (DNT) privacy preference. When DNT is activated by a user, the browser sends an automated DNT signal to website servers that inform those websites that the user does not want to be tracked.
At this time, the Site and the App do not recognize automated browser signals regarding tracking mechanisms such as DNT.
Service Providers
We may employ third party companies and individuals to facilitate our Services, to perform certain functions or provide certain services on our behalf, and/or to assist us in analyzing how our Services are used.
These companies and individuals will have access to the Personal Information only as necessary to perform their functions, and may not access or use it for any other purpose.
Communications
We may use your Personal Information to contact you with newsletters, marketing or promotional materials and other information that may be of interest to you. You may opt out of receiving any, or all, of these communications from us by following the unsubscribe link or instructions provided in any email we send.
Business Transaction
If Cuseum Inc is involved in a merger, acquisition or asset sale, your Personal Information may be transferred as a business asset.
Links to Other Sites
Our Services may contain links to other sites that are not operated by us. If you click on a third party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit.
We have no control over, and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
Legal Compliance
Although we make every effort to preserve your privacy, we may need to disclose or provide access to your Personal Information if we have a good faith belief that such action is necessary to comply with the law, such as in connection with a judicial proceeding, court order or legal process.
How we handle payments
We use third party vendors for credit card transactions and billing when you register to use the Service. All credit card transactions are handled separately by such vendors through their servers. They do not share complete financial account information with Cuseum. You can find our current payment vendor's privacy policy here: https://stripe.com/us/privacy.
International Users
Our Service is operated in the United States. If you are located outside of the United States, please be aware that information we collect, including Personal Data, will be transferred to, and processed, stored and used in the United States. The data protection laws in the United States may differ from those of the country in which you are located, and your Personal Data may be subject to access requests from governments, courts, or law enforcement in the United States according to laws of the United States.
By using the Service or providing us with any information, you acknowledge that the processing, usage, sharing, controlling and storage of your information, including Personal Data, as set forth in this Policy and our Terms of Service will take place in the United States.
EU-U.S. Data Privacy Framework
Cuseum complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. Cuseum has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF. Cuseum has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) Program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
Children's Privacy & COPPA
The Children's Online Privacy Protection Act of 1998 ("COPPA") imposes restrictions on commercial websites, including ours. It is our policy to be compliant with the requirements of COPPA and not to solicit or collect personally identifiable information from any child under age 13 ("Child") without parent or guardian consent.
In fact, if you are under 18 years of age, you are not permitted to use the Service and should not send any information about yourself to us through the Service.
In the event that we become aware that we have collected personal information from any child, we will dispose of that information in accordance with COPPA and other applicable laws and regulations. If you are a parent or guardian and you believe that your child under the age of 13 has provided us with personal information without COPPA-required consent, please contact us by email at privacy@cuseum.com.
Security
The security of your Personal Information is important to us, and we strive to implement and maintain reasonable, commercially acceptable security procedures and practices appropriate to the nature of the information we store, in order to protect it from unauthorized access, destruction, use, modification, or disclosure. For example, all Personal Information that you provide to us on the Site or the App is encrypted with secure server software to protect it from unauthorized access. We also have appropriate security measures in place within our database and physical facilities to protect against the loss, misuse, or alteration of information that has been collected on the Site and the App. These measures include limiting the number of people who have physical access to our database servers, as well as electronic security systems and password protections which guard against unauthorized access.
However, please be aware that no method of transmission over the internet, or method of electronic storage is 100% secure and we are unable to guarantee the absolute security of the Personal Information we have collected from you. Please note that we cannot ensure the security of any information you transmit to us, and you use our Service and provide us with your information at your own risk.
Contact Us
If you have any questions about the Privacy Policy or practices described in it, you should contact us at privacy@cuseum.com or at our mailing address:
Cuseum Inc.
177 Huntington Ave Ste 1703 - PMB 38532
Boston, MA 02115-3153
Dispute Resolution
Anyone can bring up privacy complaints directly to us at the contact above and we will respond within 45 days. If both sides fail to resolve the complaint, the individual has a right to engage with JAMS to address the complaint at no cost to them. In compliance with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF, Cuseum commits to refer unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the Swiss-U.S. DPF to JAMS, an alternative dispute resolution provider based in the United States, the European Union, the United Kingdom, and/or Switzerland (as applicable). If you do not receive timely acknowledgment of your DPF Principles-related complaint from us, or if we have not addressed your DPF Principles-related complaint to your satisfaction, please visit https://www.jamsadr.com/DPF-Dispute-Resolution for more information or to file a complaint. The services of JAMS are provided at no cost to you.
Enforcement
Cuseum regularly reviews how we’re meeting these privacy promises, and we provide an independent way to resolve complaints about our privacy practices. Cuseum is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC).
Binding Arbitration
An individual has the possibility, under certain conditions, to invoke binding arbitration for complaints regarding Data Privacy compliance not resolved by any of the other Data Privacy mechanisms. You can reference this link to Annex I for additional information.
Onward Transfers to Third Parties
As a member of the EU-U.S. Data Privacy Framework in the context of an onward transfer of data, we have responsibility for the processing of personal information we receive and subsequently transfer to any third parties acting as an agent on our behalf. We shall remain liable under the Principles of the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF if our agent processes such personal information in a manner inconsistent with the Principles, unless the organization proves that it is not responsible for the event giving rise to the damage.
What happens when this policy changes?
We reserve the right to change this Policy at any time. Any changes will be effective immediately upon the posting of the revised Policy, and your use of our Service indicates your consent to the Policy posted at the time of use. However, we will not use your previously collected Personal Data in a manner materially different than represented at the time it was collected without your consent.
We will also keep a log on this page to track changes across revisions. You can find that change log below.
Latest Changes
September 26, 2023: Updated for EU-U.S. Data Privacy Framework
July 5, 2023: Updated with notice related to member data
September 27, 2021: Updated for Privacy Shield
May 24, 2021: Updated mailing address
May 11, 2018: Revised for GDPR
August 1, 2014: Initial draft published