Privacy Policy

Altitude Camp, Who we are

  • Our website address is www.altitudecamp.com.
  • The annual Southern Utah high altitude camp (www.altitudecamp.com) is an XC training/running camp for high school XC/T&F athletes. The camp check-in/out is on the beautiful Southern Utah University campus in Cedar City, UT, and based at the Brian Head Ski Resort (Altitude: ~5,700 to ~11,000 feet).

What personal data we collect and why we collect it

Comments

  • When visitors leave comments on the site, we collect some data shown in the comment form, which may include the visitor’s IP address and browser user agent string to help with spam detection.
  • An anonymized string created from your email address, also called a hash, may be provided to the Gravatar service, which provides images and public profiles that follow you from site to site. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After site approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Forms

Cookies
  • If you leave a comment on our site, you may opt-in to save your name, email address, and website in cookies. These are for your convenience, so you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
  • If you have an account and log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
  • When you log in, we will set up several cookies to save your login information and screen display choices. Login cookies last two days, and screen options cookies last a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
  • An additional cookie will be saved in your browser when you edit or publish an article. This cookie includes no personal data and indicates the post ID of the article you just edited. It expires after one day.

Embedded content from other websites

  • Articles on this site may include embedded content (e.g., videos, images, articles, etc.). Embedded content from other websites behaves exactly as if the visitor has visited the other website.
  • These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

How long we retain your data

  • If you leave a comment (if any), the comment and its metadata are retained indefinitely. This is so we can automatically recognize and approve any follow-up comments instead of holding them in a moderation queue.
  • For users that register on our website (if any), we also store the personal information they provide in their user profiles. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we must keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service. We use Google Forms: https://policies.google.com/privacy?hl=en

Your contact information

We collect information about visitors who contact us using our site’s various forms. The information we collect depends on the form sections but typically includes the commenter’s IP address, user agent, referrer, and Site URL (along with other information directly provided by the commenter, such as their name, username, email address, and the comment itself).

Additional information

How we protect your data

TLS/SSL

SSL (Secure Socket Layer) is the standard security technology for establishing an encrypted link between a web server and a browser. This secure link ensures that all data transferred remains private. It’s also called TLS (Transport Layer Security, TLSv2). Millions of websites use SSL encryption daily to secure connections and keep their customer’s data safe from monitoring and tampering. Additionally, our TLS/SSL site certificates are automatically rotated/renewed every 30 days to ensure privacy first when visiting our site.

DNS, DDoS & WAF

Cloudflare DNS is DDoS protection for domain resolution. It sits behind the same 25 Tbps network that protects over 13 million Internet properties from attacks. Cloudflare constantly monitors the Internet for new vulnerabilities. When they find threats that apply to a large portion of users, they automatically apply WAF rules to protect their Internet properties. They track state-of-the-art hacking techniques so we can focus on what we do instead of protecting you from would-be attackers. Cloudflare’s Privacy Policies: https://www.cloudflare.com/privacypolicy/

Users

We authenticate and authorize our system users in conjunction with role-based access controls, and we continually audit these users to ensure proper access controls are maintained. We take our users’ security seriously by ensuring accounts are up-to-date, data is accurate, passwords are continually rotated, and 2fa is mandatory for all accounts.