As the powerhouse of the WhatRocks™ label, WhatRocks Inc. (“WhatRocks”, “we”, or “us”) operates on behalf and in the name of the WhatRocks Foundation, the overarching non-profit organization that oversees the WhatRocks™ label to build a global community of engaged, purpose-driven individuals, corporations (including but not limited to advertisers, publishers, and event organizers), charitable non-profit organizations and social enterprises (each a “Charity”) that take action together to fund social change :
1 - Brands reward users financially with blockchain tokens called Rocks™ when they engage or interact with WhatRocks™-labeled marketing or advertising material across the web such as online banner ads, video or rich media ads, emails, websites and mobile apps.
2 - Users redeem their Rocks™ to make direct donations to the Charity of their choice or to purchase goods and services such as tickets and promo codes to local events and parties (“Content”) from Members of the WhatRocks™ community (see below) that will donate the Rocks™ they have received as payment to the Charity of their own choice.
3 – Charities fund their activities by selling their Rocks™ for cash to brands that need to reward users financially when they engage with their own WhatRocks™-labeled marketing or advertising material.
The mission of WhatRocks is to bring to life the vision of the WhatRocks Foundation that individuals everywhere be financially empowered by the marketing and advertising spend of advertisers, so they have the money to make donations to the social and environmental causes they care about. To that purpose, WhatRocks has developed a proprietary technology-based ecosystem (“Service”) that includes a technical platform and a suite of tools and products described below to support the development and the management of the WhatRocks™ community of the WhatRocks Foundation, the delivery of WhatRocks™-labeled marketing or advertising material to Members of the WhatRocks™ community as well as the processing of transactions such as financial rewards, donations and payments.
Table of Contents
Members and Visitors
Users of our Service (“Members”) including individuals, corporations and Charities are required to register to the WhatRocks™ community in order to open their Member account with the associated wallet and to tie all their activities on the Service to this account including but not limited to credits and debits to their wallet, the creation of or participation in fundraisers, the post and view of Content, and their engagement with personal contacts in the Service to send or respond to invitations to go to a local party or event or participate in a fundraiser. Content and data on some of our Service is viewable to non-members (“Visitors”).
As a registered Member of the WhatRocks™ community, you give your explicit consent to the use of technologies such as cookies and tags to (1) track your browsing journey across websites and applications without limitation to collect all necessary personal data for the purpose of the Service, (2) identify WhatRocks™-labeled marketing or advertising material that you are exposed to or engage with across the web, (3) enable the payment of Rocks™ as a personal data Dividend (see below) when you engage with such material, and (4) monetize your personal data including by showing you WhatRocks™-labeled marketing or advertising material in the Service and anywhere on the web to reward you accordingly with Rocks™ as a Dividend when you engage or interact with such material.
Data Controllers and Contracting Parties
If you are in Europe:
for the purposes of the EU General Data Protection Regulation 2016/679 (the "GDPR"), the data controller is WhatRocks, Inc. at the address set out at "Contacting Us" below; and
"information" covers all personal data processed by us, which means information that (either in isolation or in combination with other information) enables you to be identified directly or indirectly
The Service may contain links to third-party websites. Please be aware that WhatRocks cannot control and is not responsible for the information collection practices of such websites, which may differ from those of WhatRocks. We encourage you to review and understand the privacy policies of these web sites before providing any information to them.
Our Service is not directed to people under the age of thirteen (13) or sixteen (16) in Europe, and we do not knowingly market to, or solicit information, accept service or collect personal information from any person under the age of 13 (or 16 in Europe). If WhatRocks becomes aware that any person submitting information to the Service is under the age of 13 (or 16 in Europe), we will attempt to delete the account and any related information as soon as possible. We require that only persons 13 years of age or older (or 16 or older in Europe) use the Service. By using the Service, you hereby represent that you are at least 13 years old (or 16 in Europe).
INFORMATION WE COLLECT
As brands and individuals that are Members of the WhatRocks™ community collectively redefine the marketing and advertising value exchange in a way that establishes a new social contract, the core principles of the WhatRocks Foundation are that (1) brands pay a personal data dividend (“Dividend”, “Rewards”) in Rocks™ to individuals when they engage or interact with their WhatRocks™-labeled marketing or advertising material in respect of the commercial use of the collected personal data that remains the individuals’ fully owned assets, (2) the Dividend paid by brands goes up as individuals agree to share more personal data with brands, (3) the Dividend paid to individuals is used solely for them to make donations to Charities or purchase Content from Members who will in turn make donations to Charities, and (4) account opening is free of charge and transactions are commission-free to keep donations untouched and allow anyone to join the WhatRocks™ community (please note that some business and technology partners of WhatRocks may charge some fees such as banking, operation and maintenance fees that are not earned directly or indirectly by WhatRocks or the WhatRocks Foundation).
As WhatRocks™ is entrusted with the mission to implement the vision and enforce the principles of the WhatRocks Foundation, we need to know a little about you and your interests to provide and run our Service and show you relevant Content and information.
In the chart below, we have detailed the information we may collect about you, depending on your activities on the Service, and how we collect this information.
Information provided by Members
What we collect
How we collect it
We require you to provide a chosen name that your personal contacts are familiar with when you create a WhatRocks account.
Your email address
We require you to provide a valid email address when you create a WhatRocks account or when you email us.
We require you to enter a secure password when you create a WhatRocks account.
We require you to provide your mobile number when you create a WhatRocks account or complete your Member profile so we may send you a security code to verify your account.
Your mobile number
You may choose to upload a profile picture when you create a WhatRocks account or when you complete your Member profile. Providing this information is not required to use the Service but is strongly recommended.
Your profile picture
You may choose to provide your sex when you create a WhatRocks account or when you complete your Member profile so we may show you relevant Content and Charities. Providing this information is not required to use the Service but is strongly recommended.
You may choose to provide your birthday when you create a WhatRocks account or when you complete your Member profile so you may receive suggestions to start a birthday fundraiser, or exclusive invitations to a local party or event, or exclusive offers and deals on relevant Content for your birthday. Providing this information is not required to use the Service but is strongly recommended.
When you create or edit your Member profile, we require you to select the social or environmental issues you are passionate about such as “animal rights” or “poverty alleviation”. We may use this information to personalize your experience of our Service to show you Content, Charities and fundraisers that are relevant to your interests.
Information you disclose in your Member profile about the issues you care about.
When you create or edit your Member profile, we require you to select the personal interests you are passionate about such as “concerts & festivals” or “food & drinks”. We may use this information to personalize your experience of our Service to show you Content, Charities and fundraisers that are relevant to your interests.
Information you disclose in your Member profile about your personal interests.
You may choose to provide your real time geographic location to earn Rocks™ when you check in from your device at a specific time and place. Providing this information is not required to use the Service but is strongly recommended.
Information you disclose in your Member profile about your real time geographic location.
We may obtain certain information through your social media accounts connected to your WhatRocks account, if you choose to link them. Linking a social media account is not required to access the Service. For example, if you log in to the Service via Facebook, we ask for your permission to access certain information about your Facebook account, activities and friends. Social media sites make information available to all apps through their API, such as friend lists. The information we receive depends on what information you or the social media site decide to give us.
Your social media account ID, and information shared with us via your social media account.
You may choose to post Content or start a fundraiser publicly on the Service and share it such Content or fundraiser in your social media accounts. Such information is available to the public without any expectation of privacy or confidentiality. Copies may remain viewable in cached and archived pages or if other Members have copied or stored your information even if you remove this information.
You may be offered the choice to provide other information to us. For example, we may collect information when you fill out a form, respond to surveys or provide information if we assist you by telephone, email, chat. Providing this information is not required to use the service.
If you opt to import your address book, we receive your contacts (including contact information your service provider(s) or app automatically added to your address book when you communicated with addresses or numbers not already in your list).
If you sync your contacts or calendars with our Service, we will collect your address book and calendar meeting information to keep growing your personal network by suggesting friends to go out with, and by providing information about them, e.g. personal interests, issues they care about, Charities they support, location, etc.
You don’t have to post or upload any personal data; though if you don’t, you may not be able to take full advantage of the Service as it may significantly limit your ability to earn Rocks™, make donations, purchase Content and enjoy our Service generally.
Any other information you voluntarily submit
Some of the information above reveals your specific identity, or is directly tied to your specific identity, such as your name, email address and mobile number. Some of this information does not reveal your specific identity, or does not directly relate to you, such as your browser and device information or information collected through cookies. If we ever combine non-personally identifiable information with personally identifiable information, the combined information will be treated by us as personally identifying information and protected accordingly.
Passive Gathering of Information Electronically
What we collect
How we collect it
Internet Protocol (IP) addresses are part of the fabric of the Internet, and are assigned to a device whenever that device connects online. When a website needs to send something to your computer (for instance search results), it needs your IP address to send it to the right device. IP Address from which your device accesses the Service may be identified and logged automatically in our server log files whenever you use our Service, along with the time of your visit and the specific page(s) that you visited.
Your IP address. Your “IP Address” is a designator that is automatically assigned to the computer that you are using by your Internet Service Provider (ISP).
We use IP service Google Places API to suggest your location from real-time signals like your IP address or device location and we also use past activity on the Service to help us understand the city or country you are using our Service from and show you relevant Charities to donate to as well as Content that may be of interest in your geographic area. You can change this information if it is displayed incorrectly. We do not share your information with IP service providers. Providing your geographic location is required to use the Service.
Your real-time geographic location.
When you are signed in or identified as a particular Member of the WhatRocks™ community, your activities on or connected to the Service are automatically associated with your account including the location data of your mobile device. Please note that most mobile devices allow you to manage or disable the use of location services for all applications in the settings menu.
Your specific activities on or connected to the Service including ads you have engaged with, donations or payments you have made, fundraisers you have started or participated in, content and information you have shared, and the corresponding time stamp, URLs and real time geographic location.
When you download and use any mobile applications we develop, we’ll collect your unique device ID and all your account and activity information will be tied to that unique device ID. In addition, we may track and collect app usage data, such as the date and time the app on your device accesses our servers and what information and files have been downloaded to the app. This information may be associated with your account. Giving your consent to the access, collection and use of your unique mobile device ID number is required to use the Service.
Your unique mobile device ID number if you access our services via a mobile application.
The name of the browser you use to access the Service
Certain information is collected by most browsers or automatically through your device, such as your Media Access Control (MAC) address, computer type (Windows PC or Mac), screen resolution, operating system name and version, device manufacturer and model, language, Internet browser type and version, and the name and version of the Service you are using. Collecting this information helps us build and deliver the best possible version of the Service to you.
As part of our efforts to connect people to causes that interest them, donations you make or fundraisers you start or participate in might be tagged by you, by our Members or by us as particular cause areas. For example, a Charity may be tagged as “animal rights” or “poverty alleviation”. If you make a donation for a particular cause area, we may infer that you would be interested in other Charities or fundraisers tagged in the same way. We may also show you Charities or fundraisers that are relevant to your interest or in your general geographic area.
Information inferred about the issues you care about based on your activities on the Service.
As part of our efforts to connect people to Content that interest them, purchases you make might be tagged by you, by our Members or by us as particular areas of interests. For example, some Content may be tagged as “concerts & festivals” or “food & drinks”. If you make a purchase for a particular area of interest, we may infer that you would be interested in some other Content tagged in the same way. We may also show you Content that is relevant to your interest or in your general geographic area.
Information inferred about the Content you care about based on your activities on the Service.
When you interact with our Service, we try to make that experience simple and meaningful. When you use our Service, our web server sends a cookie to your computer or mobile device (as the case may be). Cookies are small pieces of information which are issued to your computer or mobile device (as the case may be) when you visit a website or access or use a mobile application, and which store and sometimes track information about your use of the Service (as the case may be), the model or device type, operating system and version, browser type and settings, device ID or individual device identifier, advertisement ID, individual device token, and cookie-related data (e.g. cookie ID), the pages you visit, the access time, frequency and duration of visits, the links on which you click and other actions you take as part of your use of our Service and in advertising and email content, your activities and interactions with our advertising partners including but not limited to data about WhatRocks™-labeled marketing or advertising material you were shown, how often they were shown, when and where they were shown, and whether you took any action, such as viewing or clicking on these WhatRocks™-labeled marketing or advertising material or making a purchase to be financially rewarded accordingly. A number of cookies we use last only for the duration of your web or application session and expire when you close your browser or exit the application. Other cookies are used to remember you when you return to the Service and will last for longer.
Information collected through cookies as disclosed in our linked Cookies Policy
Web beacons (also known as clear GIFs) are transparent image files. Web beacons enable WhatRocks to track usage information on our Service, such as the number of times a given web page has been viewed. Web beacons are invisible to you and (unlike cookies) are not placed on your device. We may use them in association with cookies to understand how visitors interact with the pages and content on the pages of the Service.
We may also use Web beacons to track whether you have opened an HTML email. When the email is opened, a part of the code that makes up the HTML page calls a web server to load the web beacon that then generates a record showing that the email has been viewed. Web Beacons may also recognize when the email was opened, how many times it was forwarded and which URL’s (links within the email) were clicked. Giving your consent to the use of web beacons is required to use the Service.
Information collected through web beacons as disclosed in our linked Cookies Policy
In addition, we use pixel tags (also referred to as clear Gifs, web beacons, or web bugs). Pixel tags are tiny graphic images with a unique identifier, similar in function to cookies, that are used to track online movements of Web users. In contrast to cookies, which are stored on a user’s computer hard drive, pixel tags are embedded invisibly in Web pages. Pixel tags also allow us to send e-mail messages in a format users can read, and they tell us whether e-mails have been opened to ensure that we are sending only messages that are of interest to our Members. We may use this information to reduce or eliminate messages sent to a Member and we may tie the information gathered by pixel tags to information that is intended to identify our Members. Giving your consent to the use of pixel tags is required to use the Service.
Information collected through pixel tags as disclosed in our linked Cookies Policy
Aggregated and De-Identified Information
From time to time, we may also ask you to provide us information that is not intended to allow us to identify you personally. This information may be aggregated and/or de-identified and used for our internal purposes or for creating reports for third-party advertisers and partners, or otherwise shared with third parties for any lawful purpose, without your permission.
Information from Third Parties and other Members
We may receive personal data (including contact information) about you when others import or sync their contacts or calendar with our Service, associate their contacts with Member profiles, or send messages using our Service (including invitations to go to an event or to participate in a fundraiser). If you or others opt-in to sync email accounts with our Service, we will also collect information that we can associate with Member profiles.
It may be necessary for us to obtain address or other information about you from third-party sources for fraud prevention or for legal compliance, to enforce our legal rights or to protect the rights of other Members of the WhatRocks™ community.
Information Collected from Charities
If you are a Charity and you register to the WhatRocks™ community by establishing an account with WhatRocks, we, and/or our service providers will collect the name, business number, tax ID, physical address, email address, birthday and phone number of the person who establishes a Charity account and claims your Charity (the "Charity Contact") and any other information that is required by the applicable KYC (Know Your Customer) and AML (Anti-Money Laundry) regulations. We also may collect any information to complete the profile page of your Charity including the name, the description, main cause area, main geographic areas of operation, tags, any avatar and photos uploaded to the Service or any weblink to the Charity’s online video presentation.
Information Collected from corporations
If you are a corporation and you register to the WhatRocks™ community by establishing an account with WhatRocks, we, and/or our service providers will collect the name, business number, physical address, email address, birthday and phone number of the person who establishes a corporate account and claims your corporation (the "Corporate Contact") and any other information that is required by the applicable KYC (Know Your Customer) and AML (Anti-Money Laundry) regulations. We also may collect any information to complete the profile page of your corporation including the names and avatars of the advertiser and of its affiliated brands uploaded to the Service.
HOW WE USE YOUR INFORMATION
We and our service providers may use your information for our legitimate business interests in providing our Service that enables advertisers to pay you a Dividend with their marketing or advertising spend for the commercial use of your personal data when you engage or interact with their WhatRocks™-labeled marketing or advertising material so you can make direct or indirect donations to the Charities of your choice. Our legitimate business interests are explained below, alongside examples of how your information may be used for these purposes
To facilitate communication between WhatRocks and you including, without limitation, responding to your questions or comments, sending emails concerning our Service including Charities, fundraisers, Content, announcements, administrative information, for example, information regarding our Service and changes to our terms, conditions, and policies, or to contact you for feedback regarding us, advertisers or business partners
To administer your account and wallet, process Rewards, donations and payments, provide Content to you and for WhatRocks marketing and promotional activities
To provide a report to a Charity or a fundraiser starter supporting a Charity to which you have made a donation (even if you have marked the donation as non-public);
To provide a report to a business partner or Member (including a fundraiser starter) who is helping promote a Charity or an event supporting a Charity to whom you have made a donation, including your name, donation amount, time and date of donation and other related information. You contact details including your email address or mobile number will not be shared.
To provide a report to our advertisers, business partners or Members that tells them who responded to a particular marketing or advertising material or Content, or to facilitate the fulfillment of an order that you have made when you purchased from a Member or business partner;
To provide you with important functionality changes to the Service, new WhatRocks services and, to the extent permitted by law, special offers from WhatRocks and reputable third parties that we think you will find valuable;
To ensure that our Service functions properly and are optimized for your computer or device and to store your preferences and settings.
Providing the functionality of our ecosystem. We engage in these activities to manage our contractual relationship with you and other Members.
To show you relevant WhatRocks™-labeled marketing or advertising material in the Service and on any websites or applications so you earn Rocks™ when you engage and interact with such material as a Dividend for the commercial use of your personal data,
To allow you to make donations and payments, start and participate in fundraisers and to follow their progress. To allow you to participate in other activities in the Service, as well as to complete and fulfill your transactions including donations and payments.
To allow you to share the Service with your contacts to grow the WhatRocks™ community. By using this feature, you guarantee that you have the right to use and provide us the names, phone number and email addresses of your contacts you submit.
To allow you to send messages that you choose to send to your contacts through our Service, such as to send an invitation to a local party or event or to participate in a fundraiser. By using this feature, you guarantee that you have the right to use and provide us the names, phone number and email addresses of your contacts you submit.
To facilitate the social sharing functionality that you choose to use, such as sharing content and fundraisers through the Service and other social media platforms like Facebook and Twitter.
To fulfill your specific requests through the Service. We engage in these activities to manage our contractual relationship with you and other Members
For data analysis, for example, to improve the efficiency of our Service.
For audits, to verify that our internal processes function as intended and are compliant with legal, regulatory, or contractual requirements.
For fraud and security monitoring purposes, for example, to detect and prevent prohibited or illegal activities such as cyber-attacks or attempts to commit identity theft.
For other legally permissible purposes and generally to ensure that we comply with applicable laws
For developing new products, features and services.
For customizing, analyzing, modifying, adjusting, enhancing, or improving our Service to meet our advertisers and business partners’ needs and expectations.
For identifying usage trends, for example, understanding which parts of our Service are of most interest to our Members.
For determining the effectiveness of fundraisers or sales of Content.
For operating and expanding our business activities, for example, understanding which parts of our Service are of most interest to our Members so we can focus our energies on meeting our Members’ interests.
For legal compliance. In rare circumstances, we may have to use and disclose information we have about our Members in order to exercise or protect legal rights or defend against legal claims under applicable law.
Accomplishing our business purposes. We engage in these activities to manage our contractual relationship with you and other Members, to comply with a legal obligation, because we have a legitimate interest, and/or with your consent.
To customize, personalize, analyze, adjust and improve your experience by presenting Content to learn about and purchase, contacts to go out with, Charities to donate to, and fundraisers to participate in that are tailored to you based on information we have collected from you.
To associate Members’ activities, customize content, or tailor advertising to those Members across different devices and browsers (for instance, tablets, mobile devices and applications, and websites).
We may anonymize, de-identify and/or aggregate information and use such information to better understand and serve our Members or for optimization of our marketing and targeting efforts. For example, we may compile statistics like the percentage of our Members in a state or country who care about animal rights or concerts & festivals, or the age range of those Members, or to analyze the performance of particular emails.
Analysis of personal information for business reporting and providing personalized services. We provide personalized services either with your consent or because we have a legitimate interest.
Communications related to fundraisers you’ve started, other fundraisers that may be of interest, or fundraisers relevant to your location.
Communications related to Content that may be of interest, or relevant to your location.
Communications about specific issues or about WhatRocks.
Communications about contributions to causes or about participation in a specific fundraiser, local event or party.
Communications about becoming a member of the WhatRocks™ community.
We may contact you by phone, SMS, or email about the WhatRocks™ community or other ways you can support Charities or go to local events and parties.
Invitations to WhatRocks events.
To allow you to participate in events and similar promotions and to administer these activities. Some of these activities have additional rules, which could contain additional information about how we use and disclose information about you, so we suggest that you read these rules carefully.
Most marketing communications will be sent via email and sometimes via social media.
We might remind you about particular fundraisers, local events and parties or the WhatRocks™ community, if you have not completed starting or participating in or joining.
To share marketing communications that we believe may be of interest to you. We engage in this activity with your consent, or to manage our contractual relationship with you and other Members.
For the purposes of the GDPR, we may use your information in the above ways as this is necessary: (i) to fulfill our obligations under our contract with you or in order to take steps at your request prior to entering into a contract; (ii) for our legitimate interest to maintain our relationship with you or protect you and us against fraud; or (iii) to comply with legal obligations.
HOW WE MAY RECEIVE YOUR INFORMATION
WhatRocks may give, share, sell or trade your information to or with any third parties and reward you financially in return with the payment of a Dividend under the form of Rocks™ for the commercial use of your personal data when you engage or interact with WhatRocks™-labeled marketing or advertising material when it is shared either by you via the Service, or by us under the following circumstances:
The WhatRocks™ community
We do not monitor, verify, or perform any background check on donors, fundraiser starters, fundraiser participants, buyers, sellers any other Members of the WhatRocks™ community.
When you start a fundraiser via our Service, a fundraiser landing page that shows your first name, last name and general geographic location (i.e. city, state, country) is created for you. All information you post for the fundraiser (name of the fundraiser, reasons for participating in the fundraiser, videos and images, tags, fundraising goal etc.) may be displayed on the landing page for any fundraiser you start as well as on related areas of our Service, and will be visible to other Members and Visitors as we consider an online fundraiser to be a public expression of support for an issue. If you do not wish to have your role as a fundraiser starter to be public, we recommend you do not start the fundraiser.
When you make a donation to a Charity or participate in a fundraiser, your first name, last name and general geographic location (i.e. city, state, country) may be (1) displayed on the landing page for any fundraiser you start as well as on related areas of our Service and will be visible to other Members and Visitors unless you have selected the option to mark your donation or your participation in the fundraiser as non-public and not to display your name publicly, and (2) shared with the fundraiser starter or Charity in the Service in addition to your donation amount, date of transaction, transaction identification number, and the name of the fundraiser associated with the donation. Your personal contact details such as your email address or mobile number will not be shared. If you do not wish to have this information shared with the fundraiser starter or with the Charity, please do not participate in the fundraiser.
When you post Content via our Service, a Content landing page that shows your first name, last name and general geographic location (i.e. city, state, country) is created for you. All information you post for the Content (name and description of the Content, videos and images, tags, price etc.) may be displayed on the landing page for any Content you post as well as on related areas of our Service, and will be visible to other Members and Visitors as we consider that Members who purchase your Content must be able to identify who they are buying from. If you do not wish to have your role as a seller Member to be public, we recommend you do not post the Content.
When you make a purchase in the Service, your first name, last name, general geographic location (i.e. city, state, country), your payment amount, date of transaction, transaction identification number, and the name of the Content associated with the payment may be shared with the seller Member. Your personal contact details such as your email address or mobile number will not be shared. If you do not wish to have this information shared with the fundraiser starter or with the Charity, please do not purchase the Content.
If you choose to send invitations to go to a local event or party or to participate in a fundraiser you have started, participated in or shared with your personal contacts in the Service, you disclose your personal information to the recipient of your message.
If you are in Europe, you may opt-out of providing your information to the fundraiser starter, Charity and seller Member for the purposes of marketing purposes. However, your information will continue to be shared with the fundraiser starter, Charity and seller Member for auditing purposes. If you consent, or as otherwise permitted by law, we may also use the information that you provide to us to communicate with you about our current and future activities, or to notify you about any changes to our Service. If you decide that you would no longer like to receive such communications, you can opt-out from receiving such messages from WhatRocks. In order to opt-out you can click on an unsubscribe link provided at the bottom of every commercial e-mail that you receive from WhatRocks. If you opt-out, you will continue to receive communications from us relating to any donations or payments you make or other services you request or purchase.
Your connected social media platforms
You may voluntarily share information on message boards, chats, profile pages, blogs, and other services to which you are able to post information and materials (including the WhatRocks pages on Facebook and other social media platforms). Please note that any information you post or disclose through these services will become public information, and may be available to other Members, social media platform users and to the general public. We urge you to be very careful when deciding to disclose any information about yourself via the social sharing features of our Service.
Our business entities and service providers
We may retain other companies and individuals to perform certain functions on our behalf. Examples include, but are not limited to, companies and individuals who: (i) administer the WhatRocks accounts and wallets; (ii) process donations and payments; (iii) conduct surveys or promotional activities; (iv) deliver products or services; or (v) provide customer support, web hosting, internet service, and data analysis. Such third parties may be provided with access to your information needed to perform their functions but may not use such information for any other purpose.
We may share your information with third parties for the following purposes:
The WhatRocks Foundation on behalf and in the name of which WhatRocks develops and manages the WhatRocks™ community.
Our suppliers, subcontractors and business partners (“Service Providers”): We may share information about you with our Service Providers who process information to provide services to us or on our behalf. We have contracts with our Service Providers that prohibit them from sharing the information about you that they collect or receive with anyone else or from using such information for other purposes.
Legal & administrative obligations
We may use and disclose your personal information as necessary or appropriate, especially when we have a legal obligation or legitimate interest to do so:
Fraud prevention: We may use and disclose the information we collect from and about our users as we believe necessary to investigate, prevent, or respond to suspected illegal or fraudulent activity or to protect the safety, privacy, rights, or property of us, our users, or others.
Law enforcement purposes: If requested or required by government authorities such as law enforcement authorities, courts, regulators, or otherwise to comply with the law (which may include laws outside your country of residence), we may have to disclose information we have about our users. We also may use and disclose information collected about you in order to exercise or protect legal rights or defend against legal claims.
Sale or merger of our company: We have no plans to sell our business. In this unlikely event, we may use, disclose, or transfer your personal information to a third party if we or any of our company affiliates are involved in a corporate restructuring (e.g., a sale, merger, or other transfer of assets, including in connection with any bankruptcy or similar proceedings).
YOUR PRIVACY CHOICES
You can edit your privacy settings and the emails you receive from WhatRocks at any time through our “Privacy & Preferences” page. If you want, you can ask us for the information we have about your account and even ask us to delete it all.
Account & email settings
If you no longer want to receive marketing-related emails from WhatRocks going forward, you may opt out of receiving these by following the instructions contained in any such email. We will comply with your request(s) as soon as reasonably practicable. Please note that if you opt out of receiving marketing-related emails from us, we may still send you important administrative messages (such as updates about your account or service changes), from which you cannot opt out.
Accessing or deleting your information
If you would like to request to review, correct, update, suppress, or delete personal information that has been previously provided to us by you, you may log in to your account, click on “Settings” and update your profile information.
If you are in Europe, you have the right if applicable to request:
a copy of the information we are processing about you,
the rectification of incomplete or inaccurate information,
the deletion of information that we process about you, except we are not obliged to do so if we need to retain such data in order to comply with a legal obligation or to establish, exercise or defend legal claims.
the restriction of our processing of your information where you believe such data to be inaccurate; our processing is unlawful; or that we no longer need to process such data for a particular purpose unless we are not able to delete the data due to a legal or other obligation or because you do not wish for us to delete it.
The portability of you information we hold about you to obtain information it in a structured, electronic format, and to transmit such data to another data controller, where this is (a) information which you have provided to us, and (b) if we are processing that data on the basis of your consent or to perform a contract with you.
The objection to the processing of your information on grounds relating to your particular situation where the legal basis for such processing is our legitimate interest. We will abide by your request unless we have compelling legitimate grounds for the processing which override your interests, or if we need to continue to process the data for the establishment, exercise or defence of a legal claim.
The withdrawal of your consent to our processing of your information, at any time, free of charge. This includes where you wish to opt out from marketing messages.
You can edit or remove the permissions you have granted to WhatRocks to use information from your social media accounts by using your application privacy settings on your social media account If you have signed in on WhatRocks through Facebook connect, you are likely to have been cookied by Facebook. You can modify or change those cookies through the settings on your Facebook account. For more details on cookies, please see our Cookies Policy.
Third-party analytics companies & Cookies
We have provided details on the cookies we use and instructions for how you can opt out of these in our Cookies Policy.
DATA RETENTION AND SECURITY
We take a lot of measures to protect your personal information. If you suspect someone else is using your account, let us know by contacting us. We seek to use reasonable organizational, technical, and administrative measures to protect your personal information within our organization from loss, misuse, unauthorized access or disclosure, alteration and/or destruction. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of any account you might have with us has been compromised), please immediately notify our Data Protection Team at email@example.com.
We will retain your Personal Information for as long as needed or permitted in light of the purposes for which it was obtained. The criteria used to determine our retention periods include the length of time we have an ongoing relationship with you and provide our Service to you, our legal obligations or whether retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations).
Please note that we may need to retain certain information for record keeping purposes and/or to complete any transactions that you began prior to your request. There may also be residual information that will remain within our databases and other records, but such residual information will no longer be tied to your identity. For example, if you started a fundraiser or posted a Content, we will have records that other WhatRocks users participated in your fundraiser. If you subsequently ask us to delete your information from our Service and databases, information related to those other users’ participations cannot be removed and will remain in our records.
WhatRocks is a global organization with offices around the world, so your information may be transferred across borders when you use the Service. Your personal information may be stored and processed in any country where we have facilities or in which we engage service providers, and by using the Service you consent to the transfer of your personal information to countries outside of your country of residence, including Canada, which may have different data protection rules from those of your country. In certain circumstances, courts, law enforcement agencies, regulatory agencies, or security authorities in those other countries may be entitled to access your personal information.
Some of the non-European Economic Area (“EEA”) countries are recognized by the European Commission as providing an adequate level of data protection according to EEA standards, and the full list of these countries is available here. For transfers from the EEA to countries not considered adequate by the European Commission, we put in place adequate measures, such as standard contractual clauses adopted by the European Commission to protect your personal information.
THIRD PARTY SERVICES
We’re not responsible for the privacy practices of third parties linked to our Service.
We maintain a variety of safeguards designed to protect your information from unauthorized access, loss, misuse, alteration and disclosure. For example, we use industry accepted tools and techniques to protect against unauthorized access to our systems. We implement both physical and technological protocols to limit access to your information. These safeguards and tools vary based on the sensitivity of the information that we maintain about you.
You should be aware, however, that WhatRocks has no control over the security of other websites on the Internet that you might visit even when a link may appear to those websites from our Service. If you share your device or use a device that is accessed by the general public, remember to sign off and close your browser window when you have finished your session. This will help to ensure that others cannot access your information.
We want you to feel confident using the Service. However, no system can be completely secure. Therefore, although we take measures to secure your information, we do not promise, and you should not expect, that your information, searches or other communications always will remain secure. In the event of a breach of the confidentiality or security of your information, we will notify you if reasonably possible and as legally required so that you can take appropriate protective steps. We may notify you under such circumstances using the email address(es) we have on record for you. You should also take care with how you handle and disclose your information.
USERS FROM OUTSIDE CANADA
Proud member of