Over the last few years, data privacy has become an even more important issue than in the past. Initiatives such as the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) have led to increased levels of procedural scrutiny and the need for visibility into the data that platforms collect. Here at RebelMouse, we want to make sure that it is clear what data we collect, what we don't collect, and why.
RebelMouse is not actively collecting data about users for any purpose outside of necessary cookies and details for our system admins, and for data about users who are created within the RebelMouse platform (e.g, writers, editors, admins, etc.).
From a technical point of view, we collect two cookies to indicate if a user is logged in when they visit a page, and one cookie when a user is logged out of the page. This allows us to identify the user's logged-in/out state, which we can then use conditional statements on in our code to change what they see on the site. Examples of this can include, but are not limited to:
- Showing private sections/posts to logged-in users
- Showing a user's bio page, if it's not public
- Showing different parts of the page that may only be relevant to logged-in users
We also have logs that contain IPs and user agents, but we only keep them for two weeks and only admins are allowed to access them. This is strictly so that our admin team can investigate problems internally as needed. This information is never something that we share with anyone else.
When it comes to the user data for people that have a role in your RebelMouse system, we collect the data that is entered for each user. For example, to create a user in RebelMouse, you will need to input their name, email address, permissions level, and possibly social media information like Facebook or Twitter pages. This data is stored in the system, but is not (outside of a publicly available bio page) something that is made public or shared in any way by us.
Additionally, you have the option to ban a user if they should no longer have access to your system. This removes the ability of a user to access the platform in any way, but it does retain their information in case a situation arises where a user that was banned needs to be restored.
If you have any questions, please contact your account manager or email email@example.com.