Please read these terms – by using the 1000minds software, you are agreeing to them. 1000minds software is intended for decision-making, prioritisation and discovering stakeholders’ preferences via conjoint analysis (or choice modelling), including group decision-making. We have done our best to make sure the software is as accurate and error-free as possible. We reserve the right to make changes without notice. Please contact us if you have suggestions for improvements. Trial user and licensee rights Trial users are very welcome to test 1000minds’ capabilities. However, if you want to use the software for real-world applications, you need to clear this with us first. If you or your organisation have a commercial licence or academic award to use the software, you or your organisation are granted non-exclusive, limited access to the software for the term of the licence. These rights automatically expire when the term of the licence ends. Given that the software can be used to create customised processes involving online surveys and other group decision-making activities, you must not use 1000minds for sending emails that are inappropriate or unrelated to your use of 1000minds. Warranties and liabilities No warranties, expressed or implied, are given. No liability is accepted for any losses or damage arising directly or indirectly from using the software. Also, no liability is accepted for any losses or damage arising directly or indirectly from events outside of our control, including force majeure or ‘acts of God’. Jurisdiction and intellectual property This Agreement shall be governed and construed in accordance with the laws of New Zealand. Copyright law and international treaties protect this software, including all title and intellectual property (IP) rights. All IP rights are owned by the owners of the software or our licensors. Your responsibilities You must not use 1000minds for illegal purposes. If you are using 1000minds for the purpose of surveying individuals, you must consider the laws relating to email marketing and avoid “spamming” – in general, this requires that you have the prior consent of those whom you are emailing. You indemnify 1000minds from actions from third parties in relation to your use of 1000minds. You must respond to requests from survey participants in a timely manner, e.g. for access to personal information, corrections to personal information, and deletion of personal information. Changes to these terms We reserve the right to amend these terms of use at our discretion at any time by displaying an amended version. Contact us Please contact us if you have any questions. Privacy policy We collect personal information about your use of 1000minds software and our website in order to provide 1000minds services and to interact with and respond to you. If you contact us, we may keep a record of that correspondence. In addition, for the purpose of analysing user trends and internet traffic, we may collect details of your visit to our website, information about your computer, Internet Protocol address, operating system and browser, etc. In the case of services provided to you on an organisational basis, we may report the information you provide us to the organisation’s administrators – for their own legitimate purposes and also for our own. We reserve the right to collect any other information at our discretion, and to notify you of news and other important information via email for as long as you have an account with 1000minds. Data storage and confidentiality We store your personal information on servers located at approved locations under contract to 1000minds. Data will be stored indefinitely and used for the purposes described in this policy. We will not disclose your personal information to third parties unless you authorise us to do so, or we are required to by law. Notification of breach 1000minds will notify customers as soon as is practicable and without undue delay after becoming aware of a breach of customer data or personally identifiable information. Such notification will include details of the nature of the breach, the categories of information potentially breached, and where appropriate, potential measures to mitigate possible adverse effects. Sale of data 1000minds will not sell your data or personal information about you. Your rights Without limiting your rights under the legislation and regulations of relevant jurisdictions, you have the following rights: Right of access You have the right to know what personal information is stored about you. Right of correction You have the right to have corrections made to personal information stored about you. Right to be forgotten You have the right to have personal information we hold about you deleted. This right is limited only by legislation requiring us to maintain such information, e.g. we must retain information relating to financial transactions for tax purposes. How to exercise your rights If you are answering a 1000minds survey, it has most likely been set up and administered by a customer of 1000minds. In the first instance, please endeavour to contact the person or organisation that sent the survey to you. If you have difficulty doing so, or if you are unhappy with the response, please contact privacy@1000minds.com so that we may assist you. 1000minds customers should contact privacy@1000minds.com for all privacy-related requests. Categories of information 1000minds stores a limited set of personal information, most of which you will have chosen to share with 1000minds: Name, address, email, phone number Organisation affiliation, industry, number of employees Areas of interest for the application of 1000minds Technical information such as IP address, browser type and time zone. Data processors 1000minds uses Google Analytics to help understand how our website and applications are being used. 1000minds uses Google services to allow users, at their discretion, to “Login in with Google”. 1000minds uses web and databases services running on Microsoft Azure in the US. Encrypted backups are also stored on Microsoft Azure in Australia. Analytics & log files We use Google Analytics to analyse how 1000minds is used. Basic information is transmitted to Google and used to evaluate and to produce statistics about website activity. We will not use (nor allow third parties to use) such tools to track or collect any personally identifiable information of visitors to our website. Your activity on the web site is recorded in log files in order to help us understand how our software is being used, to enable you to see the history of your models, and to assist us with trouble-shooting problems and improving the software. Your activity may be combined with others' to produce aggregate datasets that may be analysed for research purposes. General Data Protection Regulation (GDPR) The EC issued a formal decision recognising New Zealand’s legal standards as being sufficient for Article 25(2) of European Union (EU) Directive 95/46/EC: that is that New Zealand’s law provides an “adequate level of data protection”. The shorthand often used is that New Zealand has “EU adequacy” or is “an adequate third country”. While 1000minds’ compliance with New Zealand’s privacy legislation is therefore sufficient, it is expected that New Zealand’s privacy legislation will continue to be developed and align more and more closely with the GDPR. 1000minds is continuing to improve its alignment with the principles of both New Zealand legislation and the GDPR. Changes to this policy We reserve the right to amend this privacy policy at our discretion at any time by displaying an amended version. Data and systems security notice Communications between your computer and 1000minds are always encrypted. Keeping your data secure also depends on you maintaining the security of your account by using a sufficiently complicated password and storing it safely. You should also ensure that you have sufficient security on your computers. Operating environment and application security The server environment is kept up-to-date with current versions of software and security patches. Backups are encrypted and sent off-site on a daily basis. Our software engineers use best practices and industry-standard secure coding guidelines. Third-party penetration tests are used to evaluate and improve the security of our applications and environment. Our data centre provider meets a broad set of international and industry-specific compliance standards, such as ISO 27001, HIPAA, FedRAMP, SOC 1 and SOC 2, as well as country-specific standards including Australia IRAP and UK G-Cloud. Our logs record your use of 1000minds for security, trouble-shooting and internal audit purposes. These logs are also stored and processed securely. Confidentiality agreements You can trust us to keep your data confidential. If you want to, we’re happy to enter into a contractual agreement to guarantee the confidentiality of your information in 1000minds. Cookie declaration This website uses cookies. Cookies are small text files that can be used by websites to improve functionality. We use cookies to allow our application to function, and to analyse our traffic. The EU ePrivacy Directive (ePR) states that we can store cookies essential to the operation of the application. For all other types of cookies we need your permission. 1000minds essential cookies: session: allows you to access secure parts of the site by confirming your session (expiry: session) auth: allows you to access secure parts of the site by confirming your identity (expiry: session) antiforgery: security protection to confirm your identity when posting forms (expiry: 2 hours) login.google.*: confirms your identity if you log in with Google or Microsoft (expiry: session) identity: confirms your identity during Google or Microsoft login (expiry: session) survey.*: records your survey response id so that you can access your results (expiry: 7 days) user: allows you to access the application by confirming your identity (expiry: 3 months) consent: stores your consent (if applicable) to our cookie policy (expiry: 5 years) Statistics 1000minds uses Google Analytics cookies to collect web traffic data (statistics). No personally identifiable information is stored in these cookies. The use of statistics cookies requires your consent, and allows us to improve our product over time. 1000minds statistics cookies: _ga: a unique identifier for generating statistical data on how the visitor uses the website (expiry: 2 years) _gat: used by Google Analytics to throttle request rate (expiry: 1 day) _gid: a unique identifier for generating statistical data on how the visitor uses the website (expiry: 1 day) Consent to statistics cookies can be withdrawn at any time via your account settings.