The Pilates Foundation embrace all that the internet offers and protecting privacy plays a key role in our digital communications.
Privacy
This privacy policy endeavours to ensure that the pilatesfoundation.com Website:
- Are secure and protects user's privacy
- Provides users with accurate, transparent and current information about how use of our Websites impacts on privacy
- Gives users choice about the information we store and how it is used.
Keeping your personal information safe
Whenever you provide us with your personal information via our Website, we treat it in accordance with this privacy policy and current UK Data Protection legislation. As is the nature of the Internet, no data transmission can be guaranteed to be 100 percent secure.
Data protection
Your privacy and that of your personal information are protected in the UK by the Data Protection Act 1998. This provides that the information which we hold about you:
- Should be processed fairly and lawfully
- Should be accurate, relevant and not excessive
- Should not be retained for longer than is necessary
- Should be kept up to date, if applicable.
Collection of personal information
We only collect personal information from you, such as your name, address, telephone number and email address, when you expressly submit this information to us by:
- Registering with our Website
- Completing a contact form
- Sending us emails.
Please do not submit your personal information to us if you do not wish us to collect it.
Use of your personal information
Any personal information you give us will be used only for the express purpose for which it was intended, including:
- Carrying out our obligations arising from any contracts entered into by you and us
- Verifying your identity
- Seeking your views or comments on the services we provide
- Notifying you of changes to our services
- Improving our services
- Marketing purposes
- Sending you communications that you have requested and may be of interest to you.
We will not sell, share, or rent this information to third parties, unless we have your express permission to do so, or we are required to do so by law, for example, by a court order or for the purposes of prevention of fraud or other crime.
Storage of your personal information
All personal information that you provide to us will be stored securely on our database, in accord with the Data Protection Act 1998.
Use of third party services
When we use a data services company to analyse data on our behalf, in order for us to tailor future marketing campaigns effectively, such companies will be registered under the Data Protection Act and will handle your data appropriately. We only provide any such companies with the personal details that they may require in order to deliver the service back to us. They are prohibited from using the information we provide them for any other purpose. We will ensure that anyone to whom we pass your details for this reason are legally bound to treat it with the same level of protection we are obliged to provide.
Transfer of your personal information
We may transfer your personal information to a third party as part of a merger or association of some or all of our business and assets to any third party or as part of any business restructuring or reorganisation, or if we are under a duty to disclose or share your personal data in order to comply with any legal obligation or to enforce or apply our terms of use or to protect the rights, property or safety of our customers. However, we will take steps with the aim of ensuring that your privacy rights continue to be protected.
Accessing your personal information
You are entitled to ask us in writing, by letter or e-mail, what details of yours are being held or processed, for what purpose and to whom they may be or have been disclosed. We may charge a fee to respond to such a request, as there will be associated administrative expenses incurred in doing so.
We will respond to your written request within 40 days of receiving it if no fee is chargeable. If a fee is chargeable, we will respond within 40 days of receiving the fee as long as we have also received your written request. In certain limited circumstances we are entitled to refuse your request. If you believe that any of your personal details, which we are processing, are inaccurate or incorrect please contact us immediately.
Cookies
A bit about cookies
HTTP Cookies, or ‘cookies’ as they are generally known, are small text files that are placed on your computer's hard drive or memory by your web browser when you visit websites that use cookies.
Most modern websites use cookies to ensure that their website’s visitors have the best online experiences possible, and Aab Web uses cookies for these very purposes.
Definitions
Session cookies
A ‘session cookie’ or ‘temporary cookie’ is stored within your computer‘s memory, and will only remain there for a single session - ie the duration of a single visit to a website.
Session cookies use unique session identifiers to establish your session and enable the website owner to provide certain features and functionality that will make your experience of the website better as you navigate through different web pages.
Persistent cookies
Persistent cookies are stored on your computer's hard drive. Persistent cookies store useful information, such as user preferences, language or geographical location and serve as pointers. After visiting a website for the first time, on each subsequent visit, the data stored is sent via your web browser to the website’s server, enabling it to “remember” this information each time you visit the website.
Secure cookies
Secure cookies are used for encrypted communications that share sensitive data, such as financial transactions or submitting personal information. A secure cookie can be either temporary or persistent; it simply provides additional security.
First-party cookies
First-party cookies are cookies set by websites when you visit them directly and are generally used to improve the visitor’s experience. These can be temporary cookies, persistent cookies or both, depending on the functionality of the website.
Third-party cookies
Third-party cookies are cookies set by websites other than the website being visited. These cookies are generally used for advertising purposes; they provide advertisers with information, such as how many times a web page displaying a specific advertisement was loaded. These can be temporary cookies, persistent cookies or both, depending on the functionality of the website.
Debunking a few cookie myths
- Cookies do not contain software.
- Cookies do not contain viruses.
- Cookies do not spontaneously launch applications on your computer.
- Cookies should not contain any personally identifiable information.
- Cookies rarely contain useful information on their own, as they work in combination with your browser and the website’s database.
- The cookie monster is not real.
The cookies we use
The cookies the Pilates Foundation use are an integral part of how our Websites works and enable us to provide a better online experience for our Website visitors. Importantly, cookies enable our users to set accessibility preferences on our Website without having to register or log in.
We also use Google Analytics cookies, which collect anonymous information, such as how many people visit our Websites, which web pages they visit and how long they visit for. Google kindly offer the Google Analytics service free of charge and the information we collect is invaluable for making our Website the best it can be.
Cookie intrusiveness
In order to ensure that your privacy is being protected, we have assessed ‘cookie intrusiveness’, which determines the risk of intrusion a certain type or use of cookie that places on your privacy.
| Level of Intrusiveness | ID |
|---|---|
| None | 0 |
| Negligible | 1 |
| Minimal | 2 |
| Moderate | 3 |
| Considerable | 4 |
| High | 5 |
| Category | ID | Level of Intrusiveness |
|---|---|---|
| Strictly necessary | 0 | None |
| Website functionality | 1 | Negligible |
| Website preferences | 1 | Negligible |
| CMS member access | 1 | Negligible |
| CMS administration | 1 | Negligible |
| Analytics | 2 | Minimal |
| Social media | 3 | Moderate |
| Third-party functionality | 4 | Considerable (we do not use these) |
| Targeted advertising | 5 | High (we do not use these) |
The Pilates Foundation cookies: details
A list of the cookies used on the aabweb.uk website and detailed information about what they are used for are contained in the tables below. We use a Content Management System (CMS) to maintain the Pilates Foundation website.
| Cookie Name | Duration Type | Owner Type | Expiry | Data Stored | Level |
|---|---|---|---|---|---|
| __utma | Persistent | First-party | 730 days | Initially a Unique Client ID is stored; subsequently, the number of visits, and the time of the first, previous and current visit. | 2 |
| __utmb | Temporary | First-party | 30 mins | Duration of visit | 2 |
| __utmc | Temporary | First-party | 1 session | Duration of visit | 2 |
| __utmz | Persistent | First-party | 180 days | Referral data: where the user came from. | 2 |
| Cookie Name | Duration Type | Owner Type | Expiry | Data Stored | Level |
|---|---|---|---|---|---|
| PHPSESSID | Temporary | First-party | 1 session | Unique Session ID | 1 |
| PageCommentInterface_Name | Persistent | First-party | 90 days | Name, as per user input. Users are not required to disclose their real name and can comment anonymously. | 1 |
| Cookie Name | Duration Type | Owner Type | Expiry | Data Stored | Level |
|---|---|---|---|---|---|
| PastMember | Persistent | First-party | 90 days | Value = 1 | 1 |
| alc_enc | Persistent | First-party | 90 days | Unique Member ID | 1 |
| $login_marker_cookie | n/a | n/a | 1 session | n/a | 0 |
| Cookie Name | Duration Type | Owner Type | Expiry | Data Stored | Level |
|---|---|---|---|---|---|
| bypassStaticCache | Temporary | First-party | 1 session | Value = 1 | 1 |
| siteTreeFutureState | Temporary | First-party | 1 session | Value = 1 | 0 |
The Pilates Foundation Cookies: Purposes
| Cookie Name | Purpose |
|---|---|
| __utma | When users visit the Aab Web website for the first time, the __utma cookie is used to identify each unique visitor, as determined by the user's client. The __utma cookie is subsequently used to track user visits and activity on to the Aab Web website over time. |
| __utmb | The __utmb cookie is used to establish and maintain a single user session, and to measure the duration of each session. The __utmb cookie will remain operative whilst the user is active on the Aab Web website. If the user is inactive for 30 minutes, the cookie will expire and the session will be determined as completed for analytics purposes. |
| __utmc | The __utmc cookie works in conjunction with the __utmb cookie to establish and maintain a single session. |
| __utmz | The __utmz cookie is used to determine the "referral type" - the route the user took to get to the Aab Web website. For example, whether the user entered the Aab Web url directly into their browser, they did a Google Search, they clicked on a link on another website and suchlike. |
| Cookie Name | Purpose |
|---|---|
| PHPSESSID | The PHPSESSID cookie is native to PHP and enables websites to store serialised state data. On the Aab Web website it is used to establish a user session and to pass state data via a temporary cookie, which is commonly referred to as a session cookie. As the PHPSESSID cookie has no timed expiry, it disappears when the client is closed. The use of the PHPSESSID cookie is highly embedded in the SilverStripe CMS and is a central part of the working of the system; initiating a session is one of the first things SilverStripe does when a web page is requested. The PHP Session::start() command that sets the cookie is invoked from the programme main.php, which is part of SilverStripe’s core code. In addition, SilverStripe utilises the PHP session for many of its features. The page view history for logged in users is initially recorded as an array in the PHP session and requires the PHPSESSID cookie to be set in order to function. |
| Cookie Name | Purpose |
|---|---|
| PastMember | This cookie is set at registration and/or login. It is set to denote that a user who is, or was, logged in through a unique client is a registered user of the Aab Web website. The function that sets this cookie also updates the LastVisited timestamp in the registered user‘s record. As the cookie has a 90 day duration, if 90 days have elapsed between registration and login or between logins, the cookie will disappear and be reset the next time the user logs in. |
| alc_enc | This cookie is used for auto-login; this occurs if the client is closed and then re-opened, so if the user was logged in at the time that the client closed, they get logged in again automatically. This cookie is set if the "remember me" checkbox is checked at login. |
| $login_marker_cookie | Although this is not an actual cookie, but a placeholder that works in conjunction with the session cookie The CMS uses this code to set a session cookie to "1" whenever a user logs in. This allows Apache's mod_rewrite to detect whether a user is logged in or not and alters behaviour accordingly. |
| Cookie Name | Purpose |
|---|---|
| bypassStaticCache | Static caching stores static data locally on a user’s machine in order to increase the speed of delivering web pages. Static data that does not change is only delivered to the user once and not every time they visit the web page. The bypassStaticCache cookie on the Aab Web website is used within the CMS administration system only. CMS administration utilises Stages for content creation and approval before the content is published to the live website; when a CMS administrative user is reviewing new content in the Draft version of the website, the bypassStaticCache cookie is set to ensure that the user is reviewing the latest content. |
| siteTreeFutureState | This cookie modifies SiteTree data requests to return future state content. |
Most internet browsers accept cookies automatically, but they also provide means to delete cookies and prevent them from being set. It’s your choice
Some browsers also provide a Do Not Track (DNT) facility, intended to stop you from being tracked and subsequently served targeted advertising. As all browsers do things differently, please refer to the website of the browser you use for more information.
Internet Explorer
Disable cookies
http://support.microsoft.com/kb/278835
Do Not Track (DNT)
http://ie.microsoft.com/testdrive/Browser/TrackingProtectionLists/
Firefox
Disable cookies
http://support.mozilla.org/en-US/kb/Deleting%20cookies
Do Not Track (DNT)
Chrome
Disable cookies
https://support.google.com/chrome/bin/answer.py?hl=en&answer=95647&p=cpn_cookies
Do Not Track (DNT)
https://chrome.google.com/webstore/detail/epanfjkfahimkgomnigadpkobaefekcd
Safari
Disable cookies
http://docs.info.apple.com/article.html?path=Safari/3.0/en/11471.html
Do Not Track (DNT)
Opera
Disable cookies
http://help.opera.com/Mac/11.60/en/cookies.html
Do Not Track (DNT)
The feature is only currently in Opera 12 beta, there's no documentation as yet., but details can be found at:
Preferences > Advanced > Security : ask websites not to track me (checkbox)
Cookies consent
Acceptance
The Pilates Foundation's policy on cookies is one of implied consent; it is understood that, having provided you with transparent and accurate information about our use of cookies, how to control and delete cookies and the impact this will have on your use of our Website, you have the tools to make an informed decision about whether or how you choose to interact with our Website. As such, your continued use of our Website is accepted as your consent to our use of cookies.
Non-acceptance
If you do not accept our use of cookies, you can;
- continue to use our Websites without cookies, on the understanding of the limitations this may place on functionality, or;
- not use our Websites and delete any cookies we may have set once you have left our Website.
Privacy and other technologies
Although the Pilates Foundation only use first-party cookies, there are other technologies used to store data on your computer or mobile device to track behaviour. Some of the existing and emerging technologies include:
- Flash cookies (FlashLocallyStoredObjects)
- Web beacons
- HTML5 storage
- Web/DOM storage
- Indexed Database API
- Local data storage in mobile applications
One more thing
At present, there are no mechanisms that ensure total anonymity on the Internet. Disabling cookies and using DNT will not prevent you from being trackable, as the following data remains available:
- Your IP Address
- The timezone your device is set to
- Your preferences, such as screen resolution and colour depth
- The fonts installed on your device
- Which browser you are using and on what device
- What browser extensions and plugins are installed on your device
- Whether your browser has JavaScript turned on or off
- Whether your browser accepts cookies or not