Altitude Camp, Who we are
- Our website address is: www.altitudecamp.com.
- The annual southern Utah high altitude camp (www.altitudecamp.com) is a XC training/running camp for high school XC/T&F athletes. The camp check-in/out is on the beautiful Southern Utah University campus located in Cedar City, UT and based at the Brian Head Ski Resort (Altitude: ~5,700 to ~11,000 feet).
What personal data we collect and why we collect it
- When visitors leave comments on the site, we collect some data shown in the comment form and, which may include, the visitor’s IP address and browser user agent string to help with spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
- If you leave a comment on our site you may opt-in to saving your name, email address, and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
- If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
- When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
- If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
- Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
How long we retain your data
- If you leave a comment (if any), the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
- For users that register on our website (if any), we also store the personal information they provide in their user profiles. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where we send your data
Visitor comments may be checked through an automated spam detection service. We use Google forms: https://policies.google.com/privacy?hl=en
Your contact information
We collect information about visitors who contact us using our site’s various forms. The information we collect depends on the form sections, but typically includes the commenter’s IP address, user agent, referrer, and Site URL (along with other information directly provided by the commenter such as their name, username, email address, and the comment itself).
How we protect your data
SSL (Secure Socket Layer) is the standard security technology for establishing an encrypted link between a web server and a browser. This secure link ensures that all data transferred remains private. It’s also called TLS (Transport Layer Security, TLSv2). Millions of websites use SSL encryption every day to secure connections and keep their customer’s data safe from monitoring and tampering. Additionally, our TLS/SSL site certificates are automatically rotated/renewed every 30 days to ensure privacy first when visiting our site.
DNS, DDoS & WAF
Cloudflare DNS is DDoS protection for domain resolution. It sits behind the same 25 Tbps network that protects over 13 million Internet properties from attacks. Cloudflare constantly monitors the Internet for new vulnerabilities. When they find threats that apply to a large portion of users, they automatically apply WAF rules to protect their Internet properties. They take care of tracking state-of-the-art hacking techniques so we can focus on what we do instead of protecting you from would-be attackers. Cloudflare’s Privacy Policies: https://www.cloudflare.com/privacypolicy/
We authenticate and authorize our system users in conjunction with role-based access controls and we continually audit these users to ensure proper access controls are maintained. We take our users’ security seriously by ensuring accounts are up-to-date, data is accurate, passwords are continually rotated, and 2fa is mandatory for all accounts.