Who we are

Our website address is: https://campbelldnaproject.org.

What personal data we collect and why we collect it

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Personal data

We only hold or access personal data that you have authorized through DNA testing companies, according to the access level you have chosen. Additionally, any data you have directly provided to us via email or mail is included. All personal data in our possession is securely stored with password protection. Your contact details are kept separate from your DNA test data, which is anonymized using your test kit number and most distant known ancestor, if known, instead of your name. You can request an updated version of your personal data at any time.

Personal data usage

What use do we make of your personal data? The only use we make of this data is that relevant to achieving the Goals of the Project as stated in our public website at campbelldnaproject.org. We will not publish your name, e-mail address or other contact details, or share this information with any other study member or other person or organization without your specific consent unless we are legally obliged to do so. Nor will we share or publish your DNA test results except in anonymized form. Collection of personal data via Cookies in the context of using this website is addressed elsewhere in this Policy.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

If you send us inquiries via the contact form, your details from the inquiry form, including the contact details you provided there, will be stored in order to process the request and in case of follow-up questions. This data is not sold or shared with any other parties.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

Be aware that this website is registered with various Google services including Google Analytics. We use the data they collect and organize about the site to inform us of ALL visitors to the site, which includes both human and non-human visitations (bots). The primary purpose of this is to validate the website as authentic as well as to provide actionable intelligence on security concerns. It may also be used in the future for marketing purposes.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Regarding your Personal data, such as DNA test results, etc., we retain it for as long as you are a participant in the Project. If you choose to withdraw, you should notify the Project Administrator and FTDNA. Upon your request, we will remove your data from our project records as soon as practicable, though we cannot retrieve any data that has already been publicly shared.

In managing this Project, we strive to comply with the European Union’s General Data Protection Regulation (GDPR) 2017, as well as the latest versions of FTDNA’s Terms, and the Genetic Genealogy Standards.

We will strive to address any questions, concerns, or issues you may have regarding the handling of your personal data in connection with this Project in a timely manner. However, please be aware that some concerns might be more appropriately directed to the DNA testing company involved and your settings at that company.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to the website. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Contact information

If you have privacy concerns please contact Support at support AT campbelldnaproject.org

Additional information

Server logs

The provider of these pages automatically collects and stores information in server log files, which your browser transmits to us. These are:

Browser type and version
Operating system
Referrer URL
Host name of the accessing computer
IP address (anonymized)
Time of request

These data can not be assigned to specific persons. This data will not be merged with other data sources. We reserve the right to check this data retrospectively, if we become aware of specific indications for illegal use.

How we protect your data

The website owner(s) provide the following security measures;

Password security
Your account settings
Keeping all installed website applications up-to-date
Ensuring the site is malware free
How your account is used

The rest of the security measure are provided by the web hosting company on a managed server. The web host takes measures to secure our servers, which helps to prevent your account from being compromised. However, security breaches of the website and your personal account data caused by vulnerable passwords or vulnerabilities in the website software installed, cannot be prevented with general server security.

The web host has both an extensive custom firewall rule and large mod security rule sets protecting our servers from a variety of forms of attack. The data-centers are all highly secure facilities with restricted access. The web host also employs additional server security methods and precautions that are confidential.

The owners of this site take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

The use of our website is possible without providing personal data. When personal information is requested (for example, name and email address on the contact form), this is given voluntarily. This data will not be passed on to third parties.

We point out that sending information over the Internet is subject to security issues. Complete protection of the data from being accessed by third parties is not possible.