Effective Date: September 8, 2016
Information You Provide To Us
We collect information you provide directly to us through the Sites. For example, we collect information when you create an account, subscribe to receive notifications, make a donation, apply for a job, or otherwise communicate with us through the Sites.
Information We Collect Automatically
When you access or use the Sites, certain information about your use of the Sites may be collected automatically. For example, we may collect your IP address, device identifier, browser type, domain name, operating system characteristics, data regarding the device you’re using, and information about your visit, such as access times, duration, and how you arrived at the Sites. This usage information may be combined with Personal Information, in which case we would treat the combined information as Personal Information.
In addition to logging information about your visit, we may use various tracking mechanisms such as cookies, web beacons (also known as tracking pixels), and embedded scripts (collectively, “Tracking Technologies”) to automatically collect information about interactions with our Sites or e-mails.
Your Internet browser may include settings that permit you to block cookies or to be notified when cookies are placed. Please be aware that if you use these mechanisms to block or remove cookies, certain features and functions of the Sites may be unavailable or may not operate optimally.
- Web Beacons (also called “tracking pixels”) are small graphic images, also known as “Internet tags” or “clear gifs” that are embedded in web pages and e-mail messages. Web beacons may be used for various purposes, such as to count the number of visitors to the Sites, to monitor how users interact with and navigate the Sites, or to verify how many articles or links were actually viewed.
- Embedded Scripts are designed to collect information about your interactions with the Sites. These scripts are temporarily downloaded onto your computer from our web server, or the server of a third party with whom we work. They are active only while you are connected to the Sites, and are deleted or deactivated thereafter.
Information from Other Sources
We use information about you to operate the Sites and to deliver the content and services you request. In addition, we may use information about you for other lawful purposes, including to:
- Facilitate, manage, personalize and improve your online experience;
- Respond to your comments, questions and requests, provide customer service, send you informational notices, and contact you if we need to obtain or provide additional information;
- Conduct research and analysis, including focus groups and surveys about current services or of potential new services;
- Prevent and address fraud, breach of policies or terms, and threats or harm; and
- Send you advertisements and communicate with you regarding services, products, fundraising and events we think may interest you (for information about how to manage e-mail communications, see Your Choices below).
We may permit our agents, vendors, consultants, and other service providers to access information collected through the Sites to carry out work on our behalf. These third party service providers are prohibited from using Personal Information obtained in this manner for any purpose(s) other than to provide the services we have engaged them to perform. We also may share your information:
- To perform statistical analysis, send you e-mail or postal mail, or provide customer support;
- With our business partners, affiliates, and other third parties for purposes of sending their own marketing;
- With our affiliates for internal business purposes;
- If we are required to do so by law, regulation, or legal process (such as in response to a court order or subpoena);
- To fulfill requests by government agencies, such as law enforcement authorities;
- When we believe disclosure is necessary or appropriate to prevent physical harm or financial loss, or in connection with an investigation of suspected or actual illegal activity; or
- To enforce our policies, or protect rights, property, or safety.
If permitted by applicable law, we also may share your information in connection with, or during negotiations of, any proposed or actual merger, purchase, sale, or any other type of acquisition or business combination of all or any portion of our assets, or any transfer of all or a portion of our business to another company. We reserve the right to transfer any information we obtain through the Sites in the event we sell or transfer all or a portion of our business or assets (including in the event of a merger, reorganization, or liquidation).
The Sites may include features, such as message boards, that allow you to freely submit information that can be viewed by others. We or others may store, display, reproduce, publish, distribute, or otherwise use such information (including the date and time you access the message board) in any media or format, and we may or may not attribute the content to you. Please keep in mind that if you post information on the Sites using these features, others have the ability to access and share that information with third parties.
Healthcare-related communications on message boards are not private and can be viewed by the community of cancer discussion participants who also use these features. MD Anderson is not responsible for the privacy, security, accuracy, use, or misuse of any information that you disclose, or that you receive from third parties, via message boards on the Sites.
Information about your use of the Sites and other websites may be collected using Tracking Technologies across time and services, and used for various purposes such as to associate different devices you use, and to deliver relevant and retargeted content, including interest-based ads.
Your web browser may have settings that allow you to transmit a “Do Not Track” signal when you visit various websites or use online services. Like many websites, the Sites are not designed to respond to “Do Not Track” signals received from browsers. To learn more about “Do Not Track” signals, click here.
Accessing and Changing Information.
With few exceptions, you are entitled on your request to be informed about the information MD Anderson collects about you. Under Sections 552.021 and 552.023 of the Texas Government Code, you are entitled to receive and review the information. Under Section 559.004 of the Texas Government Code, you are entitled to have MD Anderson Cancer Center correct information about you that is held by us and that is incorrect, in accordance with the procedures set forth in The University of Texas System Business Procedures Memorandum 32.
The information that MD Anderson Cancer Center collects will be retained and maintained as required by Texas records retention laws (Section 441.180 et seq. of the Texas Government Code) and rules. Different types of information are kept for different periods of time.
You can opt out of receiving promotional e-mails from us by clicking on the unsubscribe link in the email, or by changing your communication preferences when you log on to your account. Please note that your opt-out will not affect subsequent subscriptions or non-promotional communications from us, such as such as administrative and service announcements.
Tracking Technologies Generally
Regular cookies generally may be disabled or removed using tools available as part of most commercial browsers. In some instances, a browser may include settings that allow you to preemptively block cookies from being placed on your computer. Please be aware that if you disable or remove cookies and similar technologies, some parts of the Sites may not work properly. Also, if you revisit the Sites from a different computer or using a different browser, you may not be able to limit browser-based Tracking Technologies in the same way.
Analytics Services and Interest-Based Ads
The Sites use third-party web analytics services, such as Adobe Analytics and Google Analytics, to help us analyze how visitors use the Sites. For further information about Adobe Analytics and how they use analytics data, click here. To go directly to an opt-out tool for Adobe Analytics, click here. To learn more about opting out of data collection through Google Analytics, click here.
Often times, we may use certain advertising networks and exchanges that participate in the Network Advertising Initiative (“NAI”). NAI has developed a tool that allows consumers to opt out of certain interest-based advertising delivered by NAI members’ ad networks. To learn more about opting out of such targeted advertising or to use the NAI tool, click here. Please be aware that such opt-outs do not affect non-targeted ads. We are not responsible for the effectiveness of, or compliance with, any third-parties’ opt-out mechanisms or programs, or the accuracy of their statements regarding their programs.
California’s “Shine the Light” law permits customers in California to request certain details about how certain types of their information are shared with third parties and, in some cases, affiliates, for those third parties’ and affiliates’ own direct marketing purposes. Under this law, a business must either provide California customers certain information upon request, or permit California customers to opt-in to, or opt-out of, this type of sharing.
We may elect to share certain information about you that we have collected through the Sites with third parties for those third parties’ direct marketing purposes. If you are a California resident, you may request information about our compliance with this law by emailing PrivacyCompliance@mdanderson.org or by sending a letter to the Chief Privacy Officer at The University of Texas MD Anderson Cancer Center, Institutional Compliance Office, Unit 1640, P.O. Box 301407, Houston, TX, 77230-1407. Requests must include “California Privacy Rights Request” in the first line of the description and include your name, street address, city, state, and zip code. Please note that we are only required to respond to one request per customer each year, and we are not required to respond to requests made by means other than through the e-mail address or postal mail address listed here.
The Sites are not targeted to children under the age of thirteen (13). We do not knowingly collect personal information as defined by the U.S. Children’s Privacy Protection Act (“COPPA”) from children under 13, and if we learn that we have collected such information, we will delete it. If you are a parent or guardian and believe we have collected personal information from your child in a manner not permitted by COPPA, please contact us by emailing PrivacyCompliance@mdanderson.org.
We take reasonable measures to help protect personal information collected through the Sites from loss, theft, misuse, and other unauthorized access, disclosure, alteration, or destruction. Nevertheless, transmission via the Internet is not completely secure and we cannot guarantee the security of your information collected through our Sites.