Privacy Policy

Who we are

Our website address is: https://pestrisk.org.

What personal data we collect and why we collect it

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. We use Akismet anti-spam service, which collects the information noted above from each commenter (IP address, user agent, and data entered on the comments form) as well as referrer and site URL.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

User registration, login, and profile forms on the site are provided by Ultimate Member. Via these forms we collect your name, email address, and the biographical information you provide. You may also choose to include your mailing address, telephone number(s), professional affiliations, and country of residence. These data are not used for marketing purposes.

If you contact us via our general contact form, we collect the data shown in the form, including your name and email address. We retain this information for customer service purposes, but do not use the information for marketing purposes.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

We use Jetpack from Automattic to gather basic statistics about site users. Their privacy policy can be accessed here.

Data Used: IP address, user ID (if logged in), username (if logged in), user agent, visiting URL, referring URL, timestamp of event, browser language, country code. Important: The site owner does not have access to any of this information via this feature. For example, a site owner can see that a specific post has 285 views, but he/she cannot see which specific users/accounts viewed that post. Stats logs — containing visitor IP addresses and usernames (if available) — are retained by Automattic for 28 days and are used for the sole purpose of powering this feature.

Activity Tracked: Post and page views, video plays (if videos are hosted via WordPress), outbound link clicks, referring URLs and search engine terms, and country. When this module is enabled, Jetpack also tracks performance on each page load that includes the Javascript file used for tracking stats. This is exclusively for aggregate performance tracking across Jetpack sites in order to make sure that our plugin and code is not causing performance issues. This includes the tracking of page load times and resource loading duration (image files, Javascript files, CSS files, etc.). The site owner has the ability to force this feature to honor DNT settings of visitors. By default, DNT is currently not honored.

Who we share your data with

We share your data with the following third-party providers: MailGun, MailChimp, eWAY Payment Gateway, and Events Manager / Events Manager Pro. Their privacy policies can be accessed here:

MailChimp

MailGun

eWAY Payment Gateway

Events Manager / Events Manager Pro

The Events Manager and Events Manager Pro plugins for WordPress use Google services to generate maps and provide auto-completion when searching for events by location, which may collect data via a user’s browser in accordance with Google’s privacy policy. They collect and store information submitted when making a booking, for the purpose of reserving requested spaces at an event and maintaining a record of attendance. They also collect and store information submitted about published events (and corresponding locations). They may use cookies to temporarily store information about a booking in progress as well as any error/confirmation messages whilst submitting or managing events and locations.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Certain user data (email addresses) are synced to a third-party service, MailChimp. Those data are retained there until unsubscribed or deleted.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service. Periodically, user information (email addresses) is passed to MailChimp, an external service. Such services may be located abroad and outwith the EU.

Your contact information

For any privacy-specific concerns, you may contact our Communications Officer, Frank Koch (fhkoch “AT” fs.fed.us), or Chair, Darren Kriticos (darren.kriticos “AT” csiro.au).

Additional information

How we protect your data

We use Jetpack to protect the site from malicious attacks.

Data Used: In order to check login activity and potentially block fraudulent attempts, the following information is used: attempting user’s IP address, attempting user’s email address/username (i.e. according to the value they were attempting to use during the login process), and all IP-related HTTP headers attached to the attempting user.

Activity Tracked: Failed login attempts (these include IP address and user agent). We also set a cookie (jpp_math_pass) for 1 day to remember if/when a user has successfully completed a math captcha to prove that they’re a real human. Learn more about this cookie.

Data Synced (?): Failed login attempts, which contain the user’s IP address, attempted username or email address, and user agent information.

We do not retain financial data from users. Any such data (e.g. credit card information) submitted when registering for events is handled by eWAY Payment Gateway, who encrypt that data using secure socket layer technology (SSL).

What data breach procedures we have in place

Registered users will be notified of any data breach.

What third parties we receive data from

We do not receive data about users from third parties.

What automated decision making and/or profiling we do with user data

We do not perform automated decision making or profiling with user data.

Industry regulatory disclosure requirements

Our site is not a member of a regulated industry.