Effective date: May 24, 2018
You should understand that by using our online sites, products, and services (collectively, the "Service"), you agree that we may collect personally identifiable information for specific uses in the development and maintenance of the High Fidelity platform and to improve the experience for the platform's community of users.
The remainder of this document explains how we think about privacy and how we manage the user information we record.
As a practical matter, certain forms of identifying information are required in order to use the High Fidelity platform. A user must be able to authenticate their identity to access assets acquired through the platform and to manage the environments they have built using High Fidelity technology. Users typically want to be able to verify their identity to other users with the mutually trusted systems that High Fidelity provides. This kind of information, and additional facts about a user that might be collected to make it easier to manage authentication (e.g. a personal email, proof of identity), are things that a user might reasonably anticipate a company like High Fidelity would store.
You should understand that High Fidelity stores this kind of personally identifiable information as is necessary to operate the services the company provides. It is the company's goal to make the use of this form of information as transparent to users as possible and, where practical, to put the management of this information into the hands of users directly.
Online systems may collect other forms of information, namely details about a user's activities and choices online. This information can be valuable in two ways: first, behavioral data is often useful to diagnose problems or defects in the way an online service works. Secondly, this kind of information is often understood to be predictive of a user's future choices and interests. In this second case, behavioral data is collected for individual users to create a user profile that may be used to programmatically modify the experience a user has online.
These two different applications have very different implications for user privacy, and should be treated differently, accordingly:
High Fidelity respects the privacy of users and believes that their online choices and decisions (i.e behavioral data) are subject to some of the same protections as personally identifiable information. These are described below.
Finally, several legal jurisdictions have granted online users certain rights regarding how this kind of information is handled (e.g the European Union's GDPR rulings). High Fidelity is committed to honoring these rights.
As explained above, we collect two types of information: personal information and behavioral information. We may use personal and behavioral information to create a third type of information, aggregate information.
For clarity's sake, personal identifiable information (Personal Information) is information that identifies (whether directly or indirectly) a particular individual, such as the individual's first and last name, postal address, e-mail address and/or telephone number.
Behavioral Information means information that does not directly or indirectly identify, and cannot reasonably be used to identify, an individual or an individual's computing device. In its origin, however, behavioral information is derived from user activity. This is acutely true for systems like High Fidelity where factors like user movements, gaze, choice of avatar, spatial location, and proximity to other users can potentially be profiled.
Aggregate Information means information about groups or categories of individuals which does not identify and cannot reasonably be used to identify an individual. Aggregate information is essentially anonymized and abstracted behavioral information for users.
We collect and use the following categories of information:
This data is considered behavioral. Activity information is collected both for anonymous users and users that register with High Fidelity.
This information is tokenized, meaning that an abstract token is used to connect relevant pieces of information together (rather than any personal identifying information).
In addition to the information collected by High Fidelity on High Fidelity servers, we also take advantage of third party services to improve our offerings to users. Specifically:
Additionally there are a few special cases of information collection/retention to note:
You may request removal of your Personal Information from a public forum message by contact Customer Support at firstname.lastname@example.org with the understanding that this service does not purport to protect against previous capture of your posts and messages.
You can configure your browser to accept all cookies, reject all cookies, or notify you when a cookie is set. Each browser is different, so consult the "Help" menu of your browser to learn how you change your cookie preferences. Please note that if you reject all cookies, you may not be able to use certain of our (or other companies') web pages.
The High Fidelity installed application has both a client and server component. The High Fidelity client logs your user name and IP when you sign on. At any time when using High Fidelity, your IP address and behavioral activity are logged by the application and stored in a central database. You may also at your discretion associate an email with your account for account retrieval purposes.
You may elect to turn off the logging of your client status. This information is primarily used to diagnose crashes and improve the product.
Users may not turn off the tracking of IP address while using High Fidelity as that information is required to manage your location in-world and manage the visual and audio information presented to you during your session.
We provide more detail below on how you can remove your personally identifying information from the High Fidelity system below.
High Fidelity will be the data controller for the information collected about you while using the platform. "Data controller" is defined as the person or business entity that is responsible for the processing of data collected by a service that anticipates storing Personal Information. You have certain rights with respect to your interaction with the data controller for a service you choose to use.
Except under certain limited circumstances as set forth here and in our Terms of Service, High Fidelity does not disclose to third parties the Personal Information or other account-related information that you provide to us without your permission. You understand, however, that High Fidelity may disclose your Personal Information or other account-related information under the following circumstances (outside of the service providers described elsewhere in this document):
The company limits its use of information about you to the following activities:
We will not share your Personal Information outside of High Fidelity except in limited circumstances :
We take reasonable measures to help protect information about you from loss, theft, misuse, and unauthorized access, disclosure, alteration, and destruction.
We are based in the United States and the information we collect is governed by U.S. law. By accessing or using the Service or otherwise providing information to us, you consent to the processing, transfer, and storage of information in and to the U.S. and other countries, where you may not have the same rights and protections as you do under local law. If we transfer personal information from the European Union or Switzerland to the United States, we relay on the Privacy Shield Frameworks to authorize these transfers.
With respect to personal data received or transferred pursuant to the Privacy Shield Frameworks, High Fidelity is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission.
Pursuant to the Privacy Shield Frameworks, EU and Swiss individuals have the right to obtain our confirmation of whether we maintain personal information relating to you in the United States. Upon request, we will provide you with access to the personal information that we hold about you. You may also may correct, amend, or delete the personal information we hold about you. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data transferred to the United States under Privacy Shield, should direct their query to email@example.com If requested to remove data, we will respond within a reasonable timeframe.
We will also provide an individual opt-out or opt-in choice before we share your data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. To request to limit the use and disclosure of your personal information, please submit a written request to firstname.lastname@example.org.
High Fidelity’s accountability for personal data that it receives in the United States under the Privacy Shield and subsequently transfers to a third party is described in the Privacy Shield Principles. In particular, High Fidelity remains responsible and liable under the Privacy Shield Principles if third-party agents that it engages to process the personal data on its behalf do so in a manner inconsistent with the Principles, unless High Fidelity proves that it is not responsible for the event giving rise to the damage.
In compliance with the Privacy Shield Principles, High Fidelity commits to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to Privacy Shield. European Union and Swiss individuals with Privacy Shield inquiries or complaints should first contact us by email at email@example.com.
High Fidelity has further committed to refer unresolved privacy complaints under the Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers for more information and to file a complaint. This service is provided free of charge to you.
If your Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction.
You may update, correct or delete information about you at any time by requesting such deletion at firstname.lastname@example.org.
You may exercise your right to withdraw your consent to the Service at any time. The withdrawal of consent will require deactivation of your account. To withdraw consent and deactivate your account, please contact support at email@example.com. If you wish to exercise your right to data portability or right to erasure, please email us at firstname.lastname@example.org, but note that we may retain certain information as required by law or for legitimate business purposes.
We may also retain cached or archived copies of information about you for up to 24 months. You have the right to lodge a complaint with a supervisory authority.
You may opt out of receiving promotional emails from us by following the instructions in those emails. You can also adjust your communications preferences by adjusting the settings in your account. If you opt out, we will still send you non-promotional emails, technical messages, and other messages related to our ongoing business relations.
Comments and Questions
1065 Folsom St.
San Francisco, CA 94103
United States of America