Meritorious® Privacy Policy
Last updated February 10, 2022, and applies to citizens and legal permanent residents of the United States.
Thank you for choosing to be part of our community at Meritorious LLC (hereafter, the “Data Controller”, “we”, “us”, or “our”). We are committed to protecting your personal information and your right to privacy. If you have any questions or concerns about our policy, or our practices with regards to your personal information, please contact us at [email protected].
When you visit our website https://meritorious.us, our community platform (https://member.meritorious.us/), and use our services, you trust us with your personal information. We take your privacy very seriously. In this privacy policy, we seek to explain to you in the clearest way possible what information we collect, how we use it and what rights you have in relation to it. We hope you take some time to read through it carefully, as it is important. If there are any terms in this privacy policy that you do not agree with, please discontinue use of our Sites and our services.
This privacy policy applies to all information collected through our website (https://meritorious.us), our community platform (https://member.meritorious.us/), and/or any related services, sales, marketing or events (we refer to them collectively in this privacy policy as the “Services”).
Please read this privacy policy carefully as it will help you make informed decisions about sharing your personal information with us.
The Data Controller offers a community platform (hereafter, the “Platform”) to its users which have subscribed on the Platform and as such have a user account (hereafter, the “Users”). The Platform is available at the URL, member.meritorious.us.
The Data Controller uses a solution called “Hivebrite”, which enables the import and export of user lists and data, the management of content and events, the organization of emailing campaigns and opportunity research and sharing as well as the management of funds and contributions of any kind.
In this regard, the Data Controller collects and processes User’s personal data in accordance with the Privacy and Cookie policy.
The Data Controller is particularly aware and sensitive with regards to the respect of its Users privacy and personal data protection. The Data Controller commits to ensure the compliance of the processing it carries out as data controller in accordance to local, state and federal laws, as applicable.
The Data Controller has put in place an appropriate privacy and cookie policy to be fully transparent on how the personal data of Users are processed within the use of the Platform and services provided.
This privacy policy is intended for the Users of the Platform of the Data Controller.
ARTICLE 1: COLLECTED PERSONAL DATA
1.1 When subscribing on the Platform
When subscribing to the Platform, the User is informed that its following personal data is collected for the purpose of creating a user account:
Mandatory data
- First Name
- Last Name
- LinkedIn URL
- Job Title
- Company
- Industry
- Skills
- Branch of Service
- Service Background: Military Status, Years in Service
- Proof of Military Service
- Gender
- Work search status
- Live Location
- Mobile Phone
Optional data:
- Interests
- Education
- Professional Summary
- Service Background: Era, Unit(s)
The User is informed that it is not possible to access the Platform without providing the mandatory data strictly necessary to create an account and authenticate the User.
1.2 During the use of the Platform
The User may validly publish, at its own initiative, any content on the Platform which shall be retained by the Company, such as:
- Posts
- Business Profile
- Events
- Mentorship information
- Job opportunities
The User is aware that when using the Platform, the User may decide to provide sensitive data, for example, data revealing racial or ethnic origin, military service, political opinions, religious or philosophical beliefs, concerning sexual orientation, etc. By providing such sensitive data, the User agrees to their processing by the Platform in the conditions set forth in this Privacy Policy.
ARTICLE 2: THE PURPOSE OF THE DATA PROCESSING
The Data Controller and its subcontractors process personal data that are freely transferred by the User when accessing the services proposed by the Platform for the following purposes:
- Creation and management of a user account
- Providing the User with all functionalities of the Platform, meaning:
- Sending invitations for events organized by Data Controller, partners or other Users, if the User has accepted to receive such invitations.
- Sending job opportunities from the Data Controller or its partners if the User has accepted to receive such offers.
- Sending community recommendations from the Data Controller or its partners if the User has accepted to receive such offers.
- Sending surveys from the Data Controller or its partners if the User has accepted to receive such offers.
- Sending invitations for mentorship opportunities by Data Controller, partners or other Users, if the User has accepted to receive such invitations.
- Management of prospection operations:
- Sending email prospect campaigns in the Name of Meritorious® and/or its commercial partners.
- Sending newsletters in the Name of Meritorious® and/or its commercial partners.
- Making statistics in order:
- To improve the quality of the services proposed by the Platform.
- Improve the usage functionalities of the Platform.
- Demonstrate the effective use of the Platform.
- Demonstrate the different levels of activity on the Platform.
- Enable the synchronization of the User’s LinkedIn profile.
ARTICLE 3 : DATA RETENTION PERIOD
The Data Controller informs the User that the personal data related to the User Account is retained only during the length of the User’s subscription on the Platform. Following the termination of said subscription, the data collected upon the subscription as well as the content published by the User on the Platform shall be deleted after a period of 7 days.
ARTICLE 4: DATA TRANSFERS
The Users’ data are stored in the European Economic Area (EEA) by Hivebrite, and its trusted service providers. However, depending on the processing, the Users’ data may also be transferred to the United States, to our trusted service.
When the service providers to whom personal data are transferred, are located in the United States, these transfers are governed by the standard data protection clauses adopted by the Commission.
ARTICLE 5: COMMITMENT OF THE DATA CONTROLLER
The Data Controller commits to process User’s personal data in compliance to applicable U.S. local, state and federal data protection laws and undertake to, notably, respect the following principles:
- Process User’s personal data lawfully, fairly, and in a transparent manner;
- Only collect and process the Users’ data for the strict purpose as described under article 2 of the present privacy policy;
- Ensure that the personal data processed are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;
- Do the best efforts to ensure that the personal data processed are accurate and, if necessary, kept up to date and take all reasonable steps to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay;
- Keep personal User’s data for no longer than is necessary for the purposes for which they are processed;
- Put in place all necessary technical and organizational appropriate measures in order to ensure the security, confidentiality, integrity, availability and the resilience of the process systems and services;
- Limit the access to the Users’ data to the persons duly authorized to this effect;
- Guarantee to the Users their rights under the Data Protection Law in relation to the processing of their data and make the best efforts to satisfy any request, where this is possible.
ARTICLE 6: EXERCISE OF THE USERS’ RIGHTS
The User is duly informed that it disposes at any time, depending on the legal basis of the processing, a right to access, to rectification, to erasure, to restriction of processing, to data portability, and to object.
When processing is based on User’s consent, the right to withdraw consent at any time, without affecting the lawfulness of the processing based on consent before its withdrawal.
The User can exercise its rights by sending an email to [email protected] provided that the User justifies his/her identity.
In addition, in the event the User considers that its rights have not been respected, the User of which the personal data is collected can lodge a complaint by sending an email to [email protected].
ARTICLE 7: COOKIES
The Data Controller informs the User that Hivebrite, as well as its subcontractors, uses a tracking technology on its terminal such as cookies whenever the User navigates on the Platform subject to the conditions described in the Cookie Policy.
ARTICLE 8: RECIPIENT AND PERSONS AUTHORIZED TO ACCESS THE USERS’ DATA
Only authorized persons working for the Data Controller, and, in some cases, its subsidiaries, can access your personal data. The Data Controller makes its best effort to ensure that these groups of people remain as small as possible and maintain the confidentiality and security of User’s personal data.
The Data Controller also uses trusted service providers to carry out a set of operations on his behalf for hosting and payment services. The Data Controller can also use service providers in the tech industry, editors of specific tools integrated in the Platform for technical purposes.
The Data Controller only provides service providers with the information they need to perform the service and ask them not to use your personal data for any other purpose. The Data Controller does his best to ensure that all these trusted service providers only process the personal data on our documented instructions and provide sufficient guarantees, in particular in terms of confidentiality, expert knowledge, reliability and resources, to implement technical and organizational measures which will meet the requirements of the applicable legislation, including for the security of processing.
The Data Controller may be required to disclose or share your personal data to comply with a legal obligation, or to enforce or apply our terms of use/sale or any other conditions you have accepted; or to protect the rights, safety or property of Meritorious®, its customers or employees.
List of the main service providers:
Service Provider / Service / Privacy Policy link
KIT UNITED
44 rue la fayette, 75009 Paris, France
HIVEBRITE solution
https://hivebrite.com/privacy-policy
Stripe
510 Townsend Street, San Francisco, CA 94103, USA
Payment Service
https://stripe.com/fr/privacy
Google Cloud Platform
Gordon House, 4 Barrow St, Dublin, Ireland
Hosting of all data and content produced / provided by the User, as well as images, profile pictures and backups
https://cloud.google.com/security/privacy/
Amazon AWS
38 avenue John F. Kennedy, L-1855, Luxembourg
Hosting of all data and content produced / provided by the User, as well as images, profile pictures and backups
https://aws.amazon.com/compliance/gdpr-center/
Sentry
132 Hawthorne Street San Francisco, CA 94107, USA
Production and storage of error logs enabling our developers to correct the codehttps://sentry.io/privacy/
Sendgrid
375 Beale Street, Suite 300, San Francisco, CA 94105, USA
Sending of emails from the Platform
https://api.sendgrid.com/privacy.html
Hivebrite, Inc.
16 Nassau St, New York, NY 10038, USA
Customer support for the Platform
https://hivebrite.com/privacy-policy
For questions and/or comments about our Privacy Policy, please contact us by using the following contact details:
Meritorious LLC
8 The Green, STE A
Dover, DE 19901
E-mail: [email protected]