Our Procedure for Safeguarding Your Privacy Online
The Eiteljorg Museum of American Indians and Western Art (Eiteljorg Museum) is committed to safeguarding your privacy online. We have established this Privacy Policy to inform you of personal information we may gather during your visit to the website, why we gather this information, what we use it for, why we might disclose it and how you can manage it. To browse our site, you do not need to disclose any personal information.
Please be advised that the practices described in this Privacy Policy apply only to information gathered through this website and do not necessarily reflect our practices with respect to information gathered off-line. Please be certain to include your name and mailing address or telephone number so that we can contact you. If you have questions regarding this Privacy Policy, please contact us by letter at:
Eiteljorg Museum of American Indians and Western Art
ATTN: VP of Communications and Marketing
500 W. Washington Street
Indianapolis, IN 46204
Privacy Policy Applicability
This Privacy Policy applies to the entire Eiteljorg Museum of American Indians and Western Art (Eiteljorg Museum) website.
What Personal Information We Collect, and How It’s Gathered and Used
We collect only the Personal Information you voluntarily provide to us. This information is used to provide the products and services that you have ordered or requested, to process orders, to send membership and donation confirmations, and to provide customer service. “Personal Information” includes your name, billing address, shipping and/or mailing address, telephone number, e-mail address, credit card account information (number, expiration, etc.), and may also include your order history. “Personal Information” also includes your responses to any Surveys on our site in which you choose to participate, and any statements you submit via our Comments feature.
We do not share e-mail addresses or other information you provide to us when you make an online purchase, use our Comments, Wish List, Gift Certificate or Tell-A-Friend features, or when you contact us via e-mail. We may, however, use your e-mail address to contact you with any questions or concerns we may have in relation to your use of these features. Please understand also that your name and any statements you have made via the Comments feature, if accepted by the Eiteljorg Museum for publication, will be publicly viewable in the Comments section to which they were originally submitted. Further, we assume that when using the Wish List, Gift Certificate or Tell-A-Friend features of our site that you have the authority or have obtained the consent of the recipient of your message to provide us with his or her e-mail address for the purpose of sending the message and any attached information.
How We Use Your Personal Information
We use your Personal Information to respond to and fulfill your requests for goods and services and to market our goods and services, including:
to send you our e-mail newsletter(s), provided you’ve elected to receive it/them;
to send you invitations to participate in Surveys about our events, programs, festivals and/or exhibitions;
to contact you about the status of or to obtain additional information regarding an online donation, membership purchase or any other online purchase;
to improve our website and/or customer service
The Personal Information We Share and With Whom We Share It
The Eiteljorg Museum does not rent or sell its e-mail address, membership, or donor lists. We do, however, periodically exchange membership and donor information with comparable not-for-profit organizations for one-time use. We provide only names and mailing addresses. If you wish to ‘opt out’ of such exchanges, please contact our Membership Manager at the address above.
The Eiteljorg Museum uses a third-party service to deliver some of its e-mail newsletters. Consequently, names and associated e-mail addresses are shared with this third-party service for the sole purpose of sending these newsletters. Each such newsletter sent contains, near its ending, a link to the Privacy Policy implemented by our third-party service provider.
The Eiteljorg Museum prints the names of $100 and higher contributors in its members’ newsletter and annual report. If you do not wish to have your name printed, please designate that your gift is anonymous at the time of your contribution.
The Eiteljorg Museum makes use of a third-party credit card processor to authorize credit card purchases. To make this possible, your name, billing address, credit card information, order total, etc. are shared via secure (encrypted) means with this processor for the sole purpose of completing the sale transaction. Further details of the security measures employed to protect this exchange follow in the “Security” section of this Privacy Policy.
Information We Do Not Share
We do not share your telephone number, gift history, purchase history, or credit card information (except with our credit card processor as described above). We do not share customer lists. We do not share your responses to our Surveys.
How You Can Control the Use of Your Information
We try to provide you with control over the collection and use of your Personal Information. You can update your Personal Information which you provided when you registered to make an online purchase, and remove your email address from our email newsletter distribution list(s). You may also ‘opt out’ of our occasional data exchanges with other not-for-profits and/or our publication of your name in our membership newsletter and annual report.
How You Can Control Your Receipt of E-mail from Us
You have the opportunity to ‘opt-in’ to receive e-mail communications, such as our email newsletter(s), and change your mind at any time. If you choose not to ‘opt-in’ for our newsletter(s), we will only send you emails that relate to your specific purchase, in response to a statement you’ve made via our Comments feature, or in response to an email inquiry from you. If you wish to stop receiving an email newsletter for which you’ve previously subscribed, each newsletter contains, near its end, the means to unsubscribe yourself.
Other Types of Information We Gather and Our Use of Cookies
We use a third-party provider to collect anonymous, non-Personal Information that indicates how our site is used by its visitors. We use this information to improve our site. This information does not identify you or any other user of our web site as an individual. We use ‘session’ cookies to facilitate the technical administration of our site. As such our ‘session’ cookies should automatically delete themselves from your hard drive when your session on our site ends or your browser is closed, whichever occurs first. We do not use cookies to store Personal Information about our site’s visitors.
How We Strive to Protect Personal Information
The Eiteljorg Museum has implemented a variety of technologies and procedures to protect information stored in our computer systems from unauthorized access. We also maintain procedural safeguards that restrict access to your Personal Information to employees and/or agents who need to know your Personal Information in order to provide the products and services that you request.
Security
The Eiteljorg Museum employs technologies and processes that are consistent with the requirements detailed in the Payment Card Industry (PCI) Data Security Standard (DSS) to secure electronic transactions and in the storage of Personal Information. Click here to review the PCI DSS. A partial listing of the Eiteljorg Museum’s use of technology/procedures as it applies to compliance with the PCI DSS requirements follows:
The Eiteljorg Museum requires each customer to ‘Register’ and to ‘Login’ to make a purchase. The Eiteljorg Museum’s website employs up to 256-bit (depending on client browser capabilities) Secure Socket Layer (SSL) encryption from the moment of each customer’s Login or Registration throughout the entire checkout process to protect the transmission of data between each customer and our website. The same SSL encryption protects communication between our website and our real-time credit card processing provider during the checkout process (PCI DSS 4.1).
Credit card numbers are never saved to the Eiteljorg Museum’s website database (PCI DSS 3.1). Credit card numbers are NEVER distributed via e-mail from the Eiteljorg Museum’s website (PCI DSS 4.2), nor are they viewable by a customer — even when he/she has logged in to his/her account (PCI DSS 3.3). The Card Validation code is never saved to the Eiteljorg Museum’s website database, under any circumstance (PCI DSS 3.2).
In addition to the above, all passwords and real-time credit card processing provider account information are encrypted prior to being saved to the Eitejorg Museum’s website database. The key for this encryption is NOT stored in the Eiteljorg Museum’s website database and is restricted to a few custodians and copies as are practical to maintain the operation of the Eiteljorg Museum’s website (PCI DSS 3.5).
Our Policies Regarding Children
We do not sell products or services for purchase by children. If you are under 18 years of age, please do not submit any information on this site without the express consent and participation of a parent or guardian. We do not knowingly collect Personal Information about any person under 13 years of age.
Updates to this Privacy Policy
We reserve the right to modify or amend the terms of this Privacy Policy from time to time without notice. We recommend that you read this Policy each time you use our website in case you have missed any additions or changes to this Privacy Policy. Your continued use of our website following the posting of changes to this Privacy Policy shall constitute your acceptance of those changes.
Our current Privacy Policy was last updated in June 2012.