Effective Date: July 1, 2018
Data you provide to us
We receive and store Data that you provide to us when you create an account and use Beam. When you create an account, we may collect your full name, email address, phone number, birthday, gender, and where applicable, your Facebook username if you create an account using your third party log-in credentials. We will also store your profile photo if you choose to upload one.
Your personally identifiable information is never shared with others. All Beam employees and contractors are subject to binding contractual obligations to protect the confidentiality and security of this Data. When we partner with a business, we may share Data with them but only in aggregate (e.g., the overall percentage of users who support sustainability causes).
Data you provide to Plaid
Beam’s card-linking feature is powered by Plaid, a company that provides technology to allow you to easily connect your bank account to Beam in order to automatically make an impact with each purchase at a partner brand. Plaid uses bank-level encryption, is trusted by over 9,600 banks, and is used by tens of millions of people every day in some of your favorite apps (including Venmo, Robinhood, Acorns, and more). When you use Beam, some information that you share is collected and protected exclusively by Plaid, and Beam has no access to it.
This includes login information required by your financial institution to access your transaction data, such as your username and password, answers to challenge questions, or a security token. When providing this information, you give Beam, and Plaid as our service provider, the authority to access and transmit your information from the relevant financial institution.
Information collected from your financial institution
The information Plaid receives from the financial institution and shares with Beam may vary in detail depending on the information made available by your financial institutions. It includes, but is not limited to:
Account information, including financial institution name, account name, and account type
Information about account transactions, including amount, date, type, and a description of the transaction
How Plaid shares and stores your information
Plaid takes deliberate steps designed to protect user information in its possession. These steps include, but are not limited to, maintaining information security controls such as data encryption, firewalls, logical and physical access controls, and continuous monitoring. These controls are regularly evaluated for effectiveness against industry-standards internally and by independent security auditors.
Plaid does not sell or rent user information to marketers or other third parties. Plaid only shares your information with your consent, or under the extenuating circumstances listed here (e.g., if necessary to comply with a subpoena).
Plaid may collect, use, and share information it collects in an aggregated and completely anonymous manner (that does not identify you personally) for any purpose permitted under applicable law. This includes creating or using aggregated or de-identified data based on the collected information to develop new services to and to facilitate research.
Plaid retains information it collects about you for as long as necessary to fulfill the purposes outlined in this Policy, unless a longer retention period is required or permitted under applicable law, regulation, or contract. As permitted under applicable law, even after you stop using Beam or terminate your account with Beam, Plaid may still retain your information; however, your information will only be used and shared as required by law or in accordance with this Policy.
Tracking user behavior
We may keep track of your activity within Beam (e.g., the causes that you select), in order to determine which services are the most popular. This data may be used to deliver customized content and advertising within Beam to customers whose behavior indicates that they might be interested in a particular subject area.
Data protection and aggregate sharing practices
We never share your Personally Identifiable Information with any external third party. All Beam employees and contractors are subject to binding contractual obligations to protect the confidentiality and security of this Data.
When we partner with a business, we may share Data with them but only in aggregate (e.g., the overall percentage of users who support sustainability causes).
Some features and functionality in Beam may require that you provide your location. If you have your location services turned on, whenever you open and use or interact with our Apps on your mobile device, we collect and use your location data from your mobile device (e.g., latitude and longitude) to tailor our services to your current location (i.e., we’ll show you a list of nearby Beam partner locations). We will only process your location data with your permission. If you have background location data turned on by granting us permission through your device’s location settings and in your privacy settings, we will, from time to time, obtain your device’s location even if you are not directly interacting with the Apps. Your location is never shared with others.
We use various technologies to determine your location, such as the location services of your operating system or browser, sensor data from your device (e.g. magnetometer or barometer, Bluetooth data, beacon data, Wi-Fi access points, GPS data, and cell tower data), and other Data that may help us to understand your precise location. If you use Beam and have enabled background location services in the app, you have permitted us to collect the above Data about you in the background even when you do not have the app open (as permitted by your device settings). You may turn off location services at any time by going to your device settings and toggling off background location.
Children Under Thirteen
Beam is not directed at children under the age of thirteen. We do not knowingly collect personally identifiable information from children under the age of thirteen. If you notice or suspect that a user is under 13, please contact us immediately at firstname.lastname@example.org