Our Procedure for Safeguarding Your Privacy Online
Eiteljorg Museum of American Indians and Western Art
ATTN: VP of Communications and Marketing
500 W. Washington Street
Indianapolis, IN 46204
What Personal Information We Collect, and How It’s Gathered and Used
We collect only the Personal Information you voluntarily provide to us. This information is used to provide the products and services that you have ordered or requested, to process orders, to send membership and donation confirmations, and to provide customer service. “Personal Information” includes your name, billing address, shipping and/or mailing address, telephone number, e-mail address, credit card account information (number, expiration, etc.), and may also include your order history. “Personal Information” also includes your responses to any Surveys on our site in which you choose to participate, and any statements you submit via our Comments feature.
We do not share e-mail addresses or other information you provide to us when you make an online purchase, use our Comments, Wish List, Gift Certificate or Tell-A-Friend features, or when you contact us via e-mail. We may, however, use your e-mail address to contact you with any questions or concerns we may have in relation to your use of these features. Please understand also that your name and any statements you have made via the Comments feature, if accepted by the Eiteljorg Museum for publication, will be publicly viewable in the Comments section to which they were originally submitted. Further, we assume that when using the Wish List, Gift Certificate or Tell-A-Friend features of our site that you have the authority or have obtained the consent of the recipient of your message to provide us with his or her e-mail address for the purpose of sending the message and any attached information.
How We Use Your Personal Information
We use your Personal Information to respond to and fulfill your requests for goods and services and to market our goods and services, including:
to send you our e-mail newsletter(s), provided you’ve elected to receive it/them;
to send you invitations to participate in Surveys about our events, programs, festivals and/or exhibitions;
to contact you about the status of or to obtain additional information regarding an online donation, membership purchase or any other online purchase;
to improve our website and/or customer service
The Personal Information We Share and With Whom We Share It
The Eiteljorg Museum does not rent or sell its e-mail address, membership, or donor lists. We do, however, periodically exchange membership and donor information with comparable not-for-profit organizations for one-time use. We provide only names and mailing addresses. If you wish to ‘opt out’ of such exchanges, please contact our Membership Manager at the address above.
The Eiteljorg Museum prints the names of $100 and higher contributors in its members’ newsletter and annual report. If you do not wish to have your name printed, please designate that your gift is anonymous at the time of your contribution.
Information We Do Not Share
We do not share your telephone number, gift history, purchase history, or credit card information (except with our credit card processor as described above). We do not share customer lists. We do not share your responses to our Surveys.
How You Can Control the Use of Your Information
We try to provide you with control over the collection and use of your Personal Information. You can update your Personal Information which you provided when you registered to make an online purchase, and remove your email address from our email newsletter distribution list(s). You may also ‘opt out’ of our occasional data exchanges with other not-for-profits and/or our publication of your name in our membership newsletter and annual report.
How You Can Control Your Receipt of E-mail from Us
You have the opportunity to ‘opt-in’ to receive e-mail communications, such as our email newsletter(s), and change your mind at any time. If you choose not to ‘opt-in’ for our newsletter(s), we will only send you emails that relate to your specific purchase, in response to a statement you’ve made via our Comments feature, or in response to an email inquiry from you. If you wish to stop receiving an email newsletter for which you’ve previously subscribed, each newsletter contains, near its end, the means to unsubscribe yourself.
How We Strive to Protect Personal Information
The Eiteljorg Museum has implemented a variety of technologies and procedures to protect information stored in our computer systems from unauthorized access. We also maintain procedural safeguards that restrict access to your Personal Information to employees and/or agents who need to know your Personal Information in order to provide the products and services that you request.
The Eiteljorg Museum employs technologies and processes that are consistent with the requirements detailed in the Payment Card Industry (PCI) Data Security Standard (DSS) to secure electronic transactions and in the storage of Personal Information. Click here to review the PCI DSS. A partial listing of the Eiteljorg Museum’s use of technology/procedures as it applies to compliance with the PCI DSS requirements follows:
The Eiteljorg Museum requires each customer to ‘Register’ and to ‘Login’ to make a purchase. The Eiteljorg Museum’s website employs up to 256-bit (depending on client browser capabilities) Secure Socket Layer (SSL) encryption from the moment of each customer’s Login or Registration throughout the entire checkout process to protect the transmission of data between each customer and our website. The same SSL encryption protects communication between our website and our real-time credit card processing provider during the checkout process (PCI DSS 4.1).
Credit card numbers are never saved to the Eiteljorg Museum’s website database (PCI DSS 3.1). Credit card numbers are NEVER distributed via e-mail from the Eiteljorg Museum’s website (PCI DSS 4.2), nor are they viewable by a customer — even when he/she has logged in to his/her account (PCI DSS 3.3). The Card Validation code is never saved to the Eiteljorg Museum’s website database, under any circumstance (PCI DSS 3.2).
In addition to the above, all passwords and real-time credit card processing provider account information are encrypted prior to being saved to the Eitejorg Museum’s website database. The key for this encryption is NOT stored in the Eiteljorg Museum’s website database and is restricted to a few custodians and copies as are practical to maintain the operation of the Eiteljorg Museum’s website (PCI DSS 3.5).
Our Policies Regarding Children
We do not sell products or services for purchase by children. If you are under 18 years of age, please do not submit any information on this site without the express consent and participation of a parent or guardian. We do not knowingly collect Personal Information about any person under 13 years of age.