This privacy policy will explain how the xiomi.org group uses the personal data we collect from you when you use our website.

Topics_

• What data do we collect?
• How do we collect your data?
• How will we use your data?
• How do we store your data?
• What are your data protection rights?
• What are cookies?
• How do we use cookies?
• What types of cookies do we use?
• How to manage your cookies
• Privacy policies of other websites
• Changes to our privacy policy
• How to contact us
• How to contact the appropriate authorities

What data do we collect?_

The xiomi.org group collects the following data:

• Personal identification information (Name, email address, phone number, etc.)
• Personally identifiable information:
  • IP Address
  • Name (when using SSO)
  • Email (when using SSO)
  • SSO User Identifiers (when using SSO)
• Non-identifiable information:
  • HTTP Request Information
    • Base / Original URL
    • Body
    • Cookies
    • Hostname
    • Method
    • Parameters
    • Path
    • Protocol
    • Subdomains
    • Query
    • Headers
• Interaction Information
  • Repeat visits
  • Element interactions
  • Device properties (screen resolutions, device type, etc)
  • Interaction events
  • Any other information gathered via Google Analytics as outlined in their Privacy Policy: https://policies.google.com/privacy
  • Any other information gathered via Cloudlfare Analytics as outlined in their Privacy Policy: https://www.cloudflare.com/en-gb/privacypolicy/
  • Any other information gathered via Auth0 for SSO as outlined in their Data Privacy and Compliance document https://auth0.com/docs/secure/data-privacy-and-compliance

How do we collect your data?_

You directly provide The xiomi.org group with most of the data we collect. We collect data and process data when you:

• Visit the site
• Interact with any components on the list
• Use or view our website via your browser’s cookies.

The xiomi.org group may also receive your data indirectly from the following sources:

• Google Analytics (analytics.google.com)
• Cloudflare Analytics (cloudflare.com)
• Auth0 and delegate auth partners (like Google)

How will we use your data?_

The xiomi.org group collects your data so that we can:

• To deliver the services for which you are accessing the site
• To provide persistent authentication services
• Identify and prevent attacks against the website
• Identify security investigation sources being executed against the website
• Improve delivery of the site by measuring cache performance and delivery statistics
• Identify errors and improve delivery
• Visualise and distribute anonymised statistics about the interaction statistics and visiting trends of the network

The xiomi.org group will not share information with any third party providers (outwith those included in this document, ie except for Auth0, Google Analytics and Cloudflare Analytics) without updating this policy with at least 21 days notice.

How do we store your data?_

The xiomi.org group securely stores your data in a secured database, and in automatically managed log files. Access control is restricted to site admins only and the system is periodically checked to ensure security. DigitalOcean is committed to GDPR compliancy and their policies on GDPR including their Data Processing Agreement is available here https://www.digitalocean.com/legal/gdpr/

The xiomi.org group will keep your request data for 3 years for the uses listed previously. Once this time period has expired, we will delete your data by purging it from our internal databases. Any data exported into anonymised formats and released will be maintained (for example, anonymised data in the form of charts). Account data (ie SSO information) will be retained infefinitely unless you request removal.

What are your data protection rights?_

The xiomi.org group would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:

The right to access – You have the right to request The xiomi.org group for copies of your personal data. We may charge you a small fee for this service.
The right to rectification – You have the right to request that The xiomi.org group correct any information you believe is inaccurate. You also have the right to request The xiomi.org group to complete the information you believe is incomplete.
The right to erasure – You have the right to request that The xiomi.org group erase your personal data, under certain conditions.
The right to restrict processing – You have the right to request that The xiomi.org group restrict the processing of your personal data, under certain conditions.
The right to object to processing – You have the right to object to The xiomi.org group’s processing of your personal data, under certain conditions.
The right to data portability – You have the right to request that The xiomi.org group transfer the data that we have collected to another organization, or directly to you, under certain conditions.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at our email:

Write to us: [email protected]

Cookies_

Cookies are text files placed on your computer to collect standard Internet log information and visitor behavior information. When you visit our websites, we may collect information from you automatically through cookies or similar technology

For further information, visit allaboutcookies.org.

How do we use cookies?_

The xiomi.org group uses cookies in a range of ways to improve your experience on our website, including:

• Understanding how you use our website
• Provide the services for which you're accessing the site (i.e. persistent authentication)
• Security

What types of cookies do we use?_

There are a number of different types of cookies, however, our website uses:

• Functionality – The xiomi.org group uses these cookies so that we recognize you on our website and remember your previously selected preferences. These could include what language you prefer and location you are in. A mix of first-party and third-party cookies are used.
  • session identifiers - Used by the xiomi.org group to maintain user state between visits and provide additional functionality when required
• Monitoring - The xiomi.org group uses these cookies to recognise your browsing and aggregate your information into monitoring sources. These are maintained by third-party groups:
  • _ga - Used by Google Analytics to distinguish users
  • _ga_<container id> - Used by Google Analytics to persist session state
  • Provided by: https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage
• Security - CSRF cookies are used to protect requests and reduce the possibility of fraud when interacting with the website
  • _csrf - Used to maintain a CSRF token which can be used to validate requests to the server to reduce the chances of fraud

How to manage cookies_

You can set your browser not to accept cookies, and the above website tells you how to remove cookies from your browser. However, in a few cases, some of our website features may not function as a result.

Privacy policies of other websites_

The xiomi.org group website contains links to other websites. Our privacy policy applies only to our website, so if you click on a link to another website, you should read their privacy policy.

Changes to our privacy policy_

The xiomi.org group keeps its privacy policy under regular review and places any updates on this web page. This privacy policy was last updated on 10 November 2024.

How to contact us_

If you have any questions about The xiomi.org group’s privacy policy, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact us.

Email us at: [email protected]

How to contact the appropriate authority_

Should you wish to report a complaint or if you feel that The xiomi.org group has not addressed your concern in a satisfactory manner, you may contact the Information Commissioner’s Office.

Web: https://ico.org.uk/global/contact-us/
Phone: 0303 123 1113