Privacy
v3.0 – 25 May 2018
Service Description and Purposes of Data Collection
Scout.org is a web platform service provided by the World Scout Bureau (WSB) to visitors and users alike to look up information regarding the World Organization of the Scout Movement (WOSM). Only registered users are able to interact on scout.org and enjoy the use of certain sub-platforms linked to scout.org. Pantheon is a software-as-a-service company contracted by WSB to provide open-source web content management and hosts the Site on the servers of Amazon Web Service, Inc. (AWS). While all personal data is stored on AWS’ servers and other service providers have been contracted to design and maintain the web platforms infrastructure, only Pantheon and WSB process personal data.
AWS provides cloud computing services to organizations internationally. The company offers cloud infrastructure services, such as compute, storage and content delivery, database, and networking services; platform services that include analytics, enterprise applications, mobile services, Internet of things, developer tools, management tools, security and identity services, and application services. It provides WSB with cloud solutions for Websites, with backup and recovery, development and test platforms. The company was founded in 2006 and is based in Seattle, Washington. It has locations in Oregon, California, Virginia, Sao Paulo, Dublin, Frankfurt, Seoul, Singapore, Sydney, and Tokyo. AWS operates as a subsidiary of Amazon.com, Inc.
All information provided by you will be used by World Scout Bureau (WSB) staff to provide you with content and resources and for you to access and use the full array of services free of charge provided by the WSB, in full conformity with WOSM’s Data Privacy Policy included below.
The information collected (including personal data) is stored on servers maintained by AWS in Dublin, Ireland.
Processors of Personal Data
The processors are:
1. Pantheon Systems Inc. 717 California Street 3rd Floor San Francisco, CA 94108 United States
AND
2. World Scout Bureau Association Rue Henri-Christiné 5 CH-1211 Geneva 4 Plainpalais Switzerland which is the legal entity representing the World Organization of the Scout Movement, and registered in Geneva, Switzerland with Registry of Commerce Registration No. CH-660.0.195.970-0.
Associated Platforms and Location of Servers
The Data Privacy Policy below also governs the following associated platforms:
- Global Support Web Platform with AWS’ servers located in Dublin, Ireland
- Online World Scouting Directory with AWS’ servers located in Dublin, Ireland
- Scout Donation Platform with AWS’ servers located in Sydney, Australia
- Scout Mobile Application with AWS’ servers located in Dublin, Ireland
- Service Portal with AWS’ servers located in Dublin, Ireland
Data Privacy Policy of the World Organization of the Scout Movement
* PLEASE READ THIS DATA PRIVACY POLICY CAREFULLY*
Your Privacy Matters
The purpose of the World Organization of the Scout Movement (WOSM) is to contribute to the development of young people in achieving their full physical, intellectual, emotional, social and spiritual potentials as individuals, as responsible citizens and as members of their local, national and international communities. In order to further this purpose and to protect the privacy of Scouts and affiliates worldwide, the World Scout Bureau (WSB) takes data privacy of everyone affiliated with WOSM very seriously.
We use all reasonable precautions in how your personal data is collected, stored, processed and managed so that you may enjoy the services provided to you without your personal data being compromised.
By providing your personal information to WOSM in whatever your capacity, you can rest assured that security measures are in place and operational standards are being adhered to so that your personal data is kept safe and that they are only used for the purposes for which they were intended.
Data we collect
- “Personal data” is defined as any information related to a natural person that can be used to directly or indirectly identify the person. The web platform collects the following personal data: username, name, email address, password, cookies, country, photo (optional), associated NSO (required for certain functions), Scouting interest or history (optional), title (optional), preferred primary platform language (optional), known language (optional), location on google map (optional).
- Providing any information, including personal data, is completely voluntary. However, if you do not provide us with your personal data or if you delete any essential data prior to the conclusion of the intended purpose, we will not be able to carry out the activities or processes covered by this Data Privacy Policy, causing disruptions to the Service provided to you and associated activities.
Data Controller
The data controller is:
World Scout Bureau Association (Geneva Registry of Commerce Registration No. CH-660.0.195.970-0)
Rue Henri-Christiné 5, CH-1211 Geneva 4 Plainpalais, Switzerland
Security & confidentiality
- All World Scout Bureau staff and authorised individuals are trained to handle your personal data with care and confidentiality.
- We will not share or transfer your personal data to any partners of the WSB or any third-party, unless you are first notified of the reason(s) and one of the following applies:
- required in another contract between you and the World Scout Bureau,
- explicitly authorized by you in writing,
- part of an ongoing legal proceeding requiring such information, or
- required by law.
- We undertake all appropriate measures and follow our standard operating procedures to ensure an adequate level of security when collecting, storing, processing and managing your personal data.
Right of access, correction and deletion
- In providing us with your personal data, you have:
- the right to access your personal data stored on the servers without any charge,
- the right to correct any incorrect or outdated personal data, and
- the right to delete your personal data.
- Some data deleted by you may not be permanently removed from the servers or back-ups immediately, particularly in relation to processing for which there may be legitimate business interest reasons, HR requirements, or is otherwise required to be retained for audit or compliance purposes. In case of doubt, you should instruct the World Scout Bureau to permanently remove your personal data from the relevant servers by contacting the World Scout Bureau at digital@scout.org.
- All authorised individuals given access to your personal data will be instructed to permanently delete and/or destroy all downloaded or printed personal data when the stated purpose for which it has been provided is no longer applicable.
- When personal data is being processed solely for achiving purposes, historical research purposes or statistical purposes, such personal data may be stored in perpetuity.
- You may exercise your rights stated in Article 4(a) above by simply logging into the relevant system and make changes at your discretion. In the event that logging in is not possible, please contact the World Scout Bureau at digital@scout.org and provide instructions. We may have to ask you to verify your identity before we will be able to execute your instructions.
Security breach
In the event of a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data, the WSB will promptly assess the risk to your rights and if appropriate report this breach to the appropriate supervisory authority.
Contact the World Scout Bureau
If you have any questions relating to the processing of your personal data, data privacy rights or this Data Privacy Policy, please contact the World Scout Bureau
By email: privacymatters@scout.org
By post: World Scout Bureau
Rue Henri-Christiné 5
PO Box 91
CH-1211 Geneva 4 Plainpalais
Switzerland
Applicable Laws and Regulations
WSB is committed to complying with the Swiss Federal Data Protection Act (DPA) and the provisions of the EU’s General Data Protection Regulation (GDPR).