The website and its content is owned by the National Association of Nutrition Professionals (“NANP”, “we”, or “us”). The term “you” refers to the user or viewer of the NANP (“Website”).
Information We May Collect
We collect personal information from you so that we can provide you with a positive experience when utilizing our Website or content. We will only collect the minimum amount of information necessary for us to fulfill our obligation to you. We may collect:
- A name and an email address so we can deliver our newsletter to you – you would be affirmatively consenting to this by providing this to us in our contact forms.
- Billing information including name, address and credit card information so that we can process payment to deliver our products or services to you under our contractual obligation.
- A name and an email address if you complete our contact form with a question. We may send you marketing emails with either your consent or if we believe we have a legitimate interest to contact you based on your contact or question.
Please note that the information above (“Personal Data”) that you are giving to us is voluntarily, and by you providing this information to us you are giving consent for us to use, collect and process this Personal Data. You are welcome to opt-out or request for us to delete your Personal Data at any point by contacting us at email@example.com.
If you choose not to provide us with certain Personal Data, you may not be able to participate in certain aspects of our Website or content.
How We Obtain Your Personal Data
Information provided by you
You provide us with personal data in the following ways:
- By completing an online membership application form (new membership)
- Updating your information online when you renew
- Being able to edit your member details online
- Through email, over the telephone or in written form via mail
- By taking credit card and online payment
- As part of a complaint made against you
This may include the following information:
- basic details such as name, address, contact details, date of birth
- practice contact details, further information such as additional qualifications, and your specialties
Information we get from other sources
We do not collect information from any other sources.
Other Information We May Collect
Anonymous Data Collection and Use
To maintain our Website’s high quality, we may use your IP address to help diagnose problems with our server and to administer the Website by identifying which areas of the Website are most heavily used, and to display content according to your preferences. Your IP address is the number assigned to computers connected to the Internet. This is essentially “traffic data” which cannot personally identify you, but is helpful to us for marketing purposes and for improving our services. Traffic data collection does not follow a user’s activities on any other websites in any way. Anonymous traffic data may also be shared with business partners and advertisers on an aggregate basis.
Use of “Cookies”
We may use the standard “cookies” feature of major web browsers. We do not set any personally identifiable information in cookies, nor do we employ any data-capture mechanisms on our Website other than cookies. You may choose to disable cookies through your own web browser’s settings. However, disabling this function may diminish your experience on our Website and some features may not work as intended.
How we use your personal data
We use your information to manage and administer your membership in the NANP. This means that the legal basis of our keeping your personal data is for contract purposes.
We also use your information to provide you with core membership services such as continuing education opportunities. This means that the legal basis of our processing your personal data is for legitimate interests.
We also use your information to provide you with member benefits such as promotional offers and discounts, CEC events, annual conference invitations, and employment and volunteering opportunities. We will always seek your consent to process your information in this way. This means that the legal basis for us holding your personal data is consent.
We act as a data controller for use of your personal data to provide membership support, benefits and services. We also act as the data controller and processor in regard to processing of your credit card payments.
Our goal at all times to protect your personal data in a manner which is consistent with the requirements of the General Data Protection Regulation (GDPR) concerning data protection. We will also take reasonable security measures to protect your personal data storage.
What We Do With Information We Collect
We may contact you with information that you provide to us based on these lawful grounds for processing:
- Consent. We may contact you if you give us your clear, unambiguous, affirmative consent to contact you.
- Contract. We will contact you under our contractual obligation to deliver goods or services you purchase from us.
- Legitimate Interest. We may contact you if we feel you have a legitimate interest in hearing from us. For example, if you sign up for a webinar, we may send you marketing emails based on the content of that webinar. You will always have the option to opt out of any of our emails.
We will use the Personal Data you give to us in order to process your payment for the purchase of goods or services under a contract. We only use third party payment processors that take the utmost care in securing data and comply with the GDPR.
Targeted Social Media Advertisements
We may use the data you provide to us to run social media advertisements and / or create look-alike audiences for advertisements.
Share with Third Parties
We may share your information with trusted third parties such as our newsletter provider in order to contact you via email, our merchant accounts to process payments, and Google / social media accounts in order to run advertisements and our affiliates.
Viewing by Others
Note that whenever you voluntarily make your Personal Data available for viewing by others online through this Website or its content, it may be seen, collected and used by others, and therefore, we cannot be responsible for any unauthorized or improper use of the information that you voluntarily share (i.e., sharing a comment in our online social community, posting on a Facebook group / page that we manage, etc.).
Do you share my information with other organizations?
We will keep information about you confidential. We will only disclose your information to third parties with your express consent with exception of the following categories of third parties:
- Any mailing or printing agents, contractors and advisers that provide a service to us or act as our agents on the understanding that they keep the information confidential
- Anyone to whom we may transfer our rights and duties under any agreement we have with you
- Any legal or crime prevention agencies and / or to satisfy any regulatory request if we have a duty to do so or if the law allows us to do so
Submission, Storage, Sharing and Transferring of Personal Data
Personal Data that you provide to us is stored internally or through a data management system. Your Personal Data will only be accessed by those who help to obtain, manage or store that information, or who have a legitimate need to know such Personal Data (i.e., our hosting provider, newsletter provider, payment processors or team members).
We retain your Personal Data for the minimum amount of time necessary to provide you with the information and / or services that you requested from us. We may include certain Personal Data for longer periods of time if necessary for legal, contractual and accounting obligations.
To use certain features of the Website or its content, you may need a username and password. You are responsible for maintaining the confidentiality of the username and password, and you are responsible for all activities, whether by you or by others, that occur under your username or password and within your account. We cannot and will not be liable for any loss or damage arising from your failure to protect your username, password or account information. If you share your username or password with others, they may be able to obtain access to your Personal Data at your own risk.
You agree to notify us immediately of any unauthorized or improper use of your username or password or any other breach of security. To help protect against unauthorized or improper use, make sure that you log out at the end of each session requiring your username and password.
We will use our best efforts to keep your username and password(s) private and will not otherwise share your password(s) without your consent, except as necessary when the law requires it or in the good faith belief that such action is necessary, particularly when disclosure is necessary to identify, contact or bring legal action against someone who may be causing injury to others or interfering with our rights or property.
How You Can Access, Update or Delete Your Personal Data
You have the right to:
- Request information about how your Personal Data is being used and request a copy of what Personal Data we use.
- Restrict processing if you think the Personal Data is not accurate, unlawful, or no longer needed.
- Rectify or erase Personal Data and receive confirmation of the rectification or erasure. (You have the “right to be forgotten”).
- Withdraw your consent at any time to the processing of your Personal Data.
- Lodge a complaint with a supervisory authority if you feel we are using your Personal Data unlawfully.
- Receive Personal Data portability and transference to another controller without our hinderance.
- Object to our use of your Personal Data.
- Not be subject to an automated decision based solely on automatic processing, including profiling, which legally or significantly affects you.
You may unsubscribe from our e-newsletters or updates at any time through the unsubscribe link at the footer of all email communications. If you have questions or are experiencing problems unsubscribing, please contact us at firstname.lastname@example.org.
We take commercially reasonable steps to protect the Personal Data you provide to us from misuse, disclosure or unauthorized access. We only share your Personal Data with trusted third parties who use the same level of care in processing your Personal Data. That being said, we cannot guarantee that your Personal Data will always be secure due to technology or security breaches. Should there be a data breach of which we are aware, we will inform you immediately.
We have a no spam policy and provide you with the ability to opt-out of our communications by selecting the unsubscribe link at the footer of all e-mails. We have taken the necessary steps to ensure that we are compliant with the CAN-SPAM Act of 2003 by never sending out misleading information. We will not sell, rent or share your email address.
Third Party Websites
We may link to other websites on our Website. We have no responsibility or liability for the content and activities of any other individual, company or entity whose website or materials may be linked to our Website or its content, and thus we cannot be held liable for the privacy of the information on their website or that you voluntarily share with their website. Please review their privacy policies for guidelines as to how they respectively store, use and protect the privacy of your Personal Data.
Children’s Online Privacy Protection Act Compliance
We do not collect any information from anyone under 18 years of age in compliance with COPPA (Children’s Online Privacy Protection Act) and the GDPR (General Data Protection Regulation of the EU). Our Website and its content is directed to individuals who are at least 18 years old or older.
Notification of Changes
Data Controller and Processors
We are the data controllers as we are collecting and using your Personal Data. We use trusted third parties as our data processors for technical and organizational purposes, including for payments and email marketing. We use reasonable efforts to make sure our data processors are GDPR- compliant.
Last Updated: June, 2018