Community Data Roundtable’s (CDR) privacy policy below explains how our organization uses the personal data we collect from you when you use our website.

Topics:

• What data we collect?
• How do we collect your data?
• How will we use your data?
• How do we store your data?
• Marketing
• What are your data protection rights?
• What are cookies?
• What types of cookies do we use?
• How to manage your cookies
• Privacy policies of other websites
• Changes to our privacy policy
• How to contact us
• How to contact the appropriate authorities

What data do we collect?

Our company collects the following data:

• Personal identification information (Name, city of residence, adoption status, etc.)
• Clinical assessment data

How do we collect your data?

Our data is primarily collected from frontline clinicians contracted with our organization to use the DataPool application to assess children and families using one of our programmed assessment tools.

CDR may also, occasionally, receive validation information with personal data in it from one of our contracts, if they have this information separately. Such a file is not a part of the DataPool implementation in Italy.

How will we use your data?

CDR collects your data so that we can provide analytic and reporting functionality to our contracts who are using it as a part of their care provision services to you. CDR also uses your data, in a de-identified format, for analyses necessary for our public mission, and to gain insights on the nature of the population we serve with our software. When used in this way, it is impossible to trace back the data to you as an individual, because all identifying information is removed.

CDR is a 501(c)3 not for profit organization in the United States, Pennsylvania. Its public mission is to develop a data-driven human services system.

How do we store your data?

CDR securely stores your data in Google Cloud Services. All information is fully encrypted (256-bit encryption).

Marketing

CDR will never directly reach out to any assessed person with marketing materials.

What are your data protection rights?

The right to access - You have the right to request CDR for copies of your personal data. We may charge you a small fee for this service.

The right to rectification - You have the right to request that CDR correct any information you believe is inaccurate. You also have the right to request CDR complete information you believe is incomplete.

The right to erasure - You have the right to request that CDR erase your personal data, as is dictated by the GDPR.

The right to restrict processing - You have the right to request that CDR restrict the processing of your personal data, as is dictated by the GDPR.

The right to object to processing - You have the right to object to CDR processing your personal data, as is dictated by the GDPR.

The right to data portability - You have the right to request that CDR transfer the data that we have collected to another organization, or directly to you, as is dictated by the GDPR.

If you make a request, we have 15 days to respond to you. If you would like to exercise any of these rights, please contact us at our email: support@communitydataroundtable.org

What are cookies?

Our company uses cookies in a range of ways to improve your experience on our website, including:

• Keeping you signed in

What types of cookies do we use?

CDR only uses functionality cookies, so that we can recognize users on our website and remember their previous selected preferences. These include what language a user prefers, and the location they are in. All cookies we use are developed by third parties, however none of the information leaves our application.

How to manage cookies

A user can set their browser to not accept cookies. This would result in a loss of functionality on the DataPool website.

Privacy Policies of other websites

The CDR DataPool web page does not link to other company’s websites.

Changes to our privacy policy

CDR keeps its privacy policy under regular review and places any updates on this web page Privacy Principles. This privacy policy was last updated in October, 2019.

How to contact us

If you have any questions about CDR’s privacy policy, the data we hold, or if you would like to

exercise any of your data protection rights, please do not hesitate to contact us at support@communitydataroundtable.org

How to contact the appropriate authority

Should you wish to report a complaint or you feel that CDR has not addressed your concern in a satisfactory manner, you may contact the following agencies:

In Italy: Italian Data Protection Authority

Phone: +39-06-6967 71 / +39-06-6967 72917

Email: protocollo@pec.gpdp.it

In the United States:

Commerce Department Privacy Shield: https://www.privacyshield.gov/assistance