Updated September 19th 2016
At Charleston Road Registry d/b/a Google Registry (“Google Registry”) we understand the trust users place in us and our responsibility to protect the privacy of user information. We want you to be clear how we’re using information and the ways in which you can protect your privacy.
- What information we collect and why we collect it.
- How we use that information.
- The choices we offer, including how to access and update information.
Information we collect
We collect information in two ways:
Information we get from your use of our services. We may collect
information about the services that you use and how you use them, like when you visit our
website. This information may be linked to your Google Account and may include:
- Device information: We may collect device-specific information (such as your hardware model, operating system version, unique device identifiers, and mobile network information including phone number).
- Log information: When you use our services or view content provided by Google Registry, we may automatically collect and store certain information in server logs (records of the page requests made when you visit our sites). This may include: details of how you used our service; Internet protocol address; device event information such as crashes, system activity, hardware settings, browser type, standard HTTP request headers, including but not limited to user agent, referral URL, language preference, date and time; and cookies that may uniquely identify your browser or your account.
- Cookies and Local Storage: We may use various technologies to collect and store information when you visit the website, and this may include sending one or more cookies or randomly generated identifiers to your device. A cookie is a small file containing a string of characters that is sent to your computer when you visit a website. Cookies may store user preferences and other information. The "help" portion of the toolbar on the majority of browsers will direct you on how to prevent your browser from accepting new cookies, how to command the browser to tell you when you receive a new cookie, or how to fully disable cookies. However, some of Google Registry’s website features or services may not function properly without cookies. We may also collect and store information using mechanisms such as browser web storage (including HTML5) and application data caches.
How we use information we collect
We use the information we collect from Google Registry’s services to provide, maintain, protect and improve them, to develop new services, and to protect Google Registry and our users.
When you contact Google Registry, we may keep a record of your communication. We may use your email address to inform you about our services and to send you administrative messages.
Google Registry may process personal information on servers in many countries around the world. We may process, transfer and/or store your personal information on a server located outside the country where you live.
Accessing and updating your personal information
Whenever you use our services, we aim to provide you with access to your personal information. If that information is wrong, we strive to give you ways to update it quickly or to delete it – unless we have to keep that information for legitimate business or legal purposes. When updating your personal information, we may ask you to verify your identity before we can act on your request.
We may reject requests that are unreasonably repetitive, require disproportionate technical effort (for example, developing a new system or fundamentally changing an existing practice), risk the privacy of others, or would be extremely impractical (for instance, requests concerning information residing on backup tapes).
Where we can provide information access and correction, we will do so for free, except where it would require a disproportionate effort. We aim to maintain our services in a manner that protects information from accidental or malicious destruction. Because of this, after you delete information from our services, we may not immediately delete residual copies from our active servers and may not remove information from our backup systems.
Information we share
- With your consent. We may share personal information with companies, organizations or individuals outside of Google Registry when we have your consent to do so.
- For legal reasons. We will share personal information with companies, organizations or
individuals outside of Google Registry if we believe that access, use, preservation or
disclosure of the information is reasonably necessary to:
- meet our obligations to ICANN.
- meet any applicable law, regulation, legal process or enforceable governmental request.
- enforce applicable Terms of Service, including investigation of potential violations.
- detect, prevent, or otherwise address fraud, security or technical issues.
- protect against harm to the rights, property or safety of Google Registry, our users or the public as required or permitted by law.
We may share aggregated, anonymized information with ICANN, publicly, and with our partners. For example, we may share information publicly to show statistical trends about the general use of our services.
In the event that Google Registry is involved in a merger, acquisition or asset sale, we may disclose your personal data to the prospective seller or buyer of such business or assets.
Where we have given you (or where you have chosen) a password which enables you to access certain parts of our website, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Our website may, from time to time, contain links to and from the websites of our partners. Please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
As described in Google’s Privacy Shield certification, we comply with the EU-US Privacy Shield Framework as set forth by the US Department of Commerce regarding the collection, use and retention of personal information from European Union member countries. Google, including Google Inc. and its wholly-owned US subsidiaries, including Google Registry, has certified that it adheres to the Privacy Shield Principles. Google remains responsible for any of your personal information that is shared under the Onward Transfer Principle with third parties for external processing on our behalf, as described in the “Information we share” section. To learn more about the EU-US Privacy Shield program, and to view Google’s certification, please visit the Privacy Shield website.
If you have an inquiry regarding our privacy practices in relation to our Privacy Shield certification, we encourage you to contact us. Google is subject to the investigatory and enforcement powers of the US Federal Trade Commission (FTC). You may also refer a complaint to your local data protection authority and we will work with them to resolve your concern. In certain circumstances, the Privacy Shield Framework provides the right to invoke binding arbitration to resolve complaints not resolved by other means, as described in Annex I to the Privacy Shield Principles.
We also comply with the US-Swiss Safe Harbor Framework as set forth by the US Department of Commerce regarding the collection, use and retention of personal information from Switzerland. Google has certified that it adheres to the Safe Harbor Privacy Principles and also applies the EU-US Privacy Shield Principles to personal information from Switzerland. To learn more about the Safe Harbor program, and to view Google’s certification, please visit the Safe Harbor website.