This policy addresses (1) the different categories of information and data that we may collect from you or that you may provide when you visit and use the Website (“Information”), (2) how the Information may be used or disclosed, and (3) the data security policies and practices employed to safeguard the Information. Mathematica is very serious about data protection and security. Mathematica handles sensitive information and data, including personally identifiable information and data, on a daily basis across many diverse projects. Mathematica handles all Information in a manner consistent with applicable laws and regulations.
The Information is collected at different times depending on your level of interaction with the Website as described below.
When you visit the Website: We collect information automatically as you navigate through the site. Information collected automatically may include usage details, IP addresses, and information collected through cookies.
When you register an account: When you register an account you may be personally identified by registering your name, postal address, e-mail address, telephone number, or any other identifier.
When you email us, blog post or use other public spaces of the Website When you contact us by email we may keep copies of your correspondence (including email addresses). If you provide information to be published or displayed on public areas of the Website we may keep copies of your posts or other user contributions. Your user contributions are posted and transmitted to others at your own risk.
When you use the dashboard and tools: There are three kinds of information that we may collect from your use of the dashboards and tools.
In general, all collected Information is used in the pursuit of improving and evaluating programs or for educational, academic, or research purposes. We do not use any Information for marketing or advertising purposes. Information, other than User Data Files, may be used for purposes of enhancing the user experience of Website features or for developing additional tools or services for program improvement, educational, academic, or research purposes that may or may not be presented or provided on this Website. In addition, we may use your User Account Information to notify you about changes or additional features we added to our Website or provide other information on related topics or opportunities that we think may be of interest to you.
Cloud Computing Security: The Website is hosted in Amazon’s AWS GovCloud (US). More information about this environment can be found on their website. We have implemented measures designed to secure the Information from accidental loss and from unauthorized access, use, alteration, and disclosure. We carefully selected our hosting provider, which implements network-level security measures in accordance with industry best practice standards, including appropriate administrative, physical, and technical safeguards to secure information.
Encryption: The Website is accessible only via https, and all of your Information, including your User Data Files, is encrypted in transit using TLS encryption and at rest with the latest encryption standards. All data stored on the VR Coach database is stored with EBS encryption and is based on the industry standard AES-256 cryptographic algorithm.
Access: : Access to our production servers, including the temporary cache into which your User Data Files are uploaded, is limited to a small, specifically defined set of professional staff. In general, access to your Information is limited only to those employees or our authorized subcontractors or agents who need to have access in order to support the Website. Any employee, subcontractor, or agent with access to the Website has signed a confidentiality agreement and is required to participate in annual data security and privacy training. Anyone who may cease working at Mathematica is reminded of his or her confidentiality obligations, with his or her network access terminated.
The safety and security of your information also depends on you. Where we have given you (or where you have chosen) a password for access to certain parts of our Website, you are responsible for keeping the password confidential. We ask you not to share your password with anyone. We urge you to be careful about giving out information in public areas of the Website such as message boards. Any user of the Website could view the information you share in public areas.
The temporary cache where you upload your User Data Files is located on an encrypted server. Your User Data Files are transferred to an encrypted TLS connection. If you want to ensure that the TLS encryption is active, you may look for the secure green lock icon in the browser URL. Your User Data Files at rest on the temporary caches are also encrypted. However, your User Data Files are held in the temporary cache for only one session of your use of the Website. The temporary cache is cleared within 15 minutes of uploading the file, and your User Data Files on the temporary cache are erased permanently with this process. Nevertheless, WE STRONGLY ENCOURAGE YOU TO ALWAYS LOG OFF OF THE WEBSITE AFTER YOU COMPLETE YOUR SESSION.