Privacy: Cookies and GDPR

The Crowdstack Privacy Policy can be found here. It applies to all products, services, and websites operated by Social Strata, Inc. ("Social Strata"), the makers of Crowdstack.

Social Strata complies with the EU-U.S. Privacy Shield and the Swiss-U.S. Privacy Shield Frameworks, as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries. Social Strata has certified that it adheres to all applicable provisions of the Privacy Shield Framework, including the Privacy Principles, the Supplemental Principles, and Annex 1 of the Framework. To learn more about the Privacy Shield program, and to view Social Strata’s certification, please visit https://www.privacyshield.gov/list.

GDPR Compliance

Crowdstack has been configured to help you comply with GDPR. For example, there are options to disable IP tracking, allow members to revoke Agreement to your ToS, allow members to download their profile data and delete their content, and add descriptions to the profile fields so members know why you are collecting data.

While each of these GDPR features can be enabled separately, we have a short-cut option for compliance. In Manage > Basics, you can enable "Enhanced Privacy" for your Crowdstack, in one click. When enabled, the system will enforce all GDPR-compliance features on the platform. We highly recommend this option, if you are concerned about protecting the privacy of your members.

Please note, however, that you should still become familiar with all applicable privacy laws in place for your particular jurisdiction. This setting does not guarantee compliance with all laws; it merely enforces certain known requirements set forth in GDPR and other privacy statutes.

Cookies

As indicated in our privacy policy, our application sets several cookies, in order to make the experience more convenient for the user.

If you are looking for sample wording for how cookies are used (e.g., for implementing compliance with the EU e-Privacy Directive) that can be included in your site's Terms of Service see the example below.

Cookies Associated With Our Community Platform

Our website utilizes a community platform hosted by a third party. In order to enhance your experience with the site, that platform may use any or all of the following types of cookies: session cookies used for load balancing purposes, a “remember me” cookie which must be proactively enabled by the user, authentication cookies that support session timeout recovery, a user ID cookie, a time-of-visit cookie, and a last authentication cookie. None of these cookies contain any personally identifiable information, and do not track user’s activities beyond this specific site.

By registering with our site, you are agreeing that you are aware of, and accept the possible placement of, these cookies.

Complying with EU Privacy (Cookie) Law

You may wish to consult with an attorney who specializes in compliance, but as a starter, we've provided sample wording (above) that you can insert into your Terms of Service to support your compliance efforts.

Remember, if you're serving third party ads that use cookies, you'll need to include disclosures for those as well.

As an additional resource, we recommend Cookie Control, a service that will handle compliance as a turnkey mechanism for cookie consent: http://www.civicuk.com/cookie-law/index.