Eiteljorg Museum of American Indians and Western Art: Telling America's Story
Site Quick Links
Home Join Donate Calendar Museum Rental Media About Us Contact Us Site Index
Plan Your Visit Exhibitions/Collections Programs/Events Museum Store Audio/Video For Teachers For Artists Support The Museum
Privacy Policy Privacy Policy


 
Home » Privacy Policy
Privacy Policy

The Eiteljorg Museum of American Indians and Western Art (Eiteljorg Museum) is committed to safeguarding your privacy online. To browse our site, you need disclose no personal information of any kind. We provide this Privacy and Security Statement (“Statement”) to inform you about the information that we collect, when we collect it, how it is used and protected, and the circumstances under which it may be disclosed.

If you have questions regarding this Statement, please contact us by letter at:

Eiteljorg Museum of American Indians and Western Art
ATTN: Director of Technology
500 W. Washington Street
Indianapolis, IN 46204

Please be certain to include your name and mailing address or telephone number so that we can contact you.

Statement Applicability

This Statement applies to the Eiteljorg Museum of American Indians and Western Art (Eiteljorg Museum) web site, including its Eiteljorg Museum Store (Store).

What Personal Information We Collect, and How It’s Gathered and Used

We collect only the Personal Information you voluntarily provide to us. "Personal Information" includes your name, billing address, shipping and/or mailing address if merchandise is to be shipped/mailed to you, telephone number, e-mail address, credit card account information (number, expiration, etc.), and may also include your order history with the Store. "Personal Information" also includes your responses to any Surveys on our site in which you choose to participate, and any statements you submit via our Comments feature.

We do not share e-mail addresses or other information you provide to us when you use our Comments, Wish List, Gift Certificate or Tell-A-Friend features, or when you contact us via e-mail. We may, however, use your e-mail address to contact you with any questions or concerns we may have in relation to your use of these features. Please understand also that your name and any statements you have made via the Comments feature, if accepted by the Eiteljorg Museum for publication, will be publicly viewable in the Comments section to which they were originally submitted. Further, we assume that when using the Wish List, Gift Certificate or Tell-A-Friend features of our site that you have the authority or have obtained the consent of the recipient of your message to provide us with his or her e-mail address for the purpose of sending the message and any attached information.

How We Use Your Personal Information

We use your Personal Information to respond to and fulfill your requests for goods and services and to market our goods and services, including:

  • to send you our e-mail newsletter(s), provided you've elected to receive it/them;
  • to send you invitations to participate in Surveys about our events, programs, festivals and/or exhibitions;
  • to contact you about the status of or to obtain additional information about your order from the Store;
  • to improve our web site, customer service and merchandise selections
The Personal Information We Share and With Whom We Share It

The Eiteljorg Museum does not rent or sell its e-mail address, membership, donor or Store customer lists. We do, however, periodically exchange membership and donor information with comparable not-for-profit organizations for one-time use. We provide only names and mailing addresses. If you wish to ‘opt out’ of such exchanges, please contact our Membership Manager at the address above.

The Eiteljorg Museum uses a third-party service to deliver some of its e-mail newsletters. Consequently, names and associated e-mail addresses are shared with this third-party service for the sole purpose of sending these newsletters. Each such newsletter sent contains, near its ending, a link to the Privacy Policy implemented by our third-party service provider.

The Eiteljorg Museum prints the names of $100 and higher contributors in its members' newsletter and annual report. If you do not wish to have your name printed please designate that your gift is anonymous at the time of your contribution.

The Store makes use of a third-party credit card processor to authorize credit card purchases. To make this possible, your name, billing address, order total, etc. are shared via secure (encrypted) means with this processor for the sole purpose of completing the sale transaction. Further details of the security measures employed to protect this exchange follow in the “Security and Our Store” section of this Statement.

Information We Do Not Share

We do not share your telephone number, gift history, Store purchase history, or credit card information (except with our credit card processor as described above). We do not share the Store's customer list. We do not share your responses to our Surveys.

How You Can Control the Use of Your Information

We try to provide you with control over the collection and use of your Personal Information. You can update your Personal Information which you provided upon registration to the Store, and remove your e-mail address from our e-mail newsletter distribution list(s). You may also 'opt out' of our occasional data exchanges with other not-for-profits and/or our publication of your name in our membership newsletter and annual report.

How You Can Control Your Receipt of E-mail from Us

You have the opportunity to 'opt in' to receive e-mail communications, such as our e-mail newsletter(s), and change your mind at any time. If you choose not to 'opt in' for our newsletter(s), we will send you only e-mail that relates to your specific purchase, in response to a statement you’ve made via our Comments feature, or in response to an e-mail inquiry from you. If you wish to stop receiving an e-mail newsletter for which you’ve previously subscribed, each newsletter contains, near its end, the means to unsubscribe yourself.

Other Types of Information We Gather and Our Use of Cookies

We use a third-party provider to collect anonymous, non-Personal Information that indicates how our site is used by its visitors. We use this information to improve our site. This information does not identify you or any other user of our web site as an individual. We use 'session' cookies to facilitate the technical administration of our site. As such our 'session' cookies should automatically delete themselves from your hard drive when your session on our site ends or your browser is closed, whichever occurs first. We do not use cookies to store Personal Information about our site’s visitors.

How We Strive to Protect Personal Information

The Eiteljorg Museum and its Store have implemented a variety of technologies and procedures to protect information stored in our computer systems from unauthorized access. We also maintain procedural safeguards that restrict access to your Personal Information to employees and/or agents who need to know your Personal Information in order to provide the products and services that you request.

Security and Our Store

The Eiteljorg Museum Store employs technologies and processes that are consistent with the requirements detailed in the Payment Card Industry (PCI) Data Security Standard (DSS) to secure transactions within the store and in the storage of Personal Information. Click here to review the PCI DSS. A partial listing of our Store's use of technology/procedures as it applies to compliance with the PCI DSS requirements follows:

  1. The Store requires each customer to ‘Register’ and to ‘Login’ to make a purchase. The Store employs 128-bit Secure Socket Layer (SSL) encryption from the moment of each customer's Login or Registration throughout the entire checkout process to protect the transmission of data between each customer and the Store. The same SSL encryption protects communication between the Store and our real-time credit card processing provider during the checkout process (PCI DSS 4.1).
     
  2. Credit card numbers are saved to the Store's database ONLY when necessary for the successful completion of a credit card transaction and are purged when no longer needed (PCI DSS 3.1). When saved to the database, credit card numbers are encrypted (PCI DSS 3.4). Credit card numbers are NEVER distributed via e-mail from the Store (PCI DSS 4.2), nor are they viewable by a customer — even when he/she has logged in to his/her account (PCI DSS 3.3). The Card Validation code is never saved to the Store database, under any circumstance (PCI DSS 3.2).
     
  3. In addition to the above, all passwords and real-time credit card processing provider account information are encrypted prior to being saved to the Store's database. The key for this encryption is NOT stored in the store database, and is restricted to as few custodians and copies as are practical to maintain the operation of the Store (PCI DSS 3.5).
Our Policies Regarding Children

We do not sell products for purchase by children in our Store. However, we do sell children's products for purchase by adults. If you are under 18 years of age, please do not submit any information on this site without the express consent and participation of a parent or guardian. We do not knowingly collect Personal Information about any person under 13 years of age.

Updates to this Statement

We will update this Statement occasionally to reflect changes in our organization. We will post the updated Statement here.

Our current Statement was last updated in June 2008.
Copyright © 1999-2008, Eiteljorg Museum. All Rights Reserved.     Terms of Use     Privacy Policy