Modmopolitan Data Map

Modmopolitan.co is industry-certified PCI-compliant for data handling, including sensitive payment information. We use state-of-the-art TLS web encryption exclusively for all website traffic. Modmopolitan never stores plain-text passwords, nor delivers any password information to third parties. Personally identifying information is handled internally on a need-to-know basis, with a permissions system that takes into account the type of data accessed, and which functions or data our internal users are allowed to access.

Data

Sources

Reason

Storage & Transmission

Disposal

Email Address

Name (First, Last)

- Registration Form

- Email Contact Forms

- Special Giveaways

- Transactional identification of users for orders

- Send transactional emails

- Send marketing emails

- Stored in our main databases

- Stored in our email subprocessor

- Sent to delivery shippers

- Potentially sent to magazine subprocessor

- Upon Request

Email Address

Name (First, Last, Nickname)

Review Data (text and ratings)

- Create a Review via email response or on www.modmopolitan.co

- Identify a customer leaving a review

- Stored in our reviews subprocessor (TurnTo)

- Upon Request

Name and Email Address

- Contact Us form

- Identify a customer creating a help ticket

- Stored in our main database

- Sent to MailChimp help subprocessor

- Upon Request

Mailing Address

- Cart Checkout

- Ship Orders

- Become Verified Seller

- Send Modmopolitan magazines

- Stored in our main databases

- Sent to delivery shippers

- Potentially sent to magazine subprocessor

- Upon Request

Screen Name

- Registration Form

- Account Settings

- Identify Sellers to other users

- Identify users socially (following, comments, etc)

- Stored in our main databases

- SEM/SEO for sellers, exposed to web search engines

- Third-party marketplaces for Sellers

- Upon Request

IP Address

- Obtained from browser connections

- Help identify unique users

- Help with anti-fraud measures

- Geo-locate users to provide regional features

- Stored in our main databases

- Upon Request

Browser Headers

- Obtained from browser connections

- Help with anti-fraud measures

- Provide per-user preferences for non-logged-in users

- Identify user browser choices for browser support list

- Debugging per-browser issues

- Stored in our main databases

- Upon Request

Passwords

- Registration Form (encrypted for Internet transit)

- Reset Password function (encrypted for Internet transit)

- Provide user login security

- Plaintext passwords are never stored

- Encrypted password hashes only are stored in our main databases

- Plaintext or encrypted hashes are never sent to third parties

- Upon Request

Paypal Redemption Email Address

- Account Settings

- Payout to sellers via PayPal

- Stored in our main databases

- Upon Request

Facebook User ID

- None currently

- Previously collected via Facebook Login

- Allow Facebook Login, not applicable anymore

- Stored in our main databases

- Upon Request

VAT Number

- Cart Checkout

- Exempt users with a VAT number from being charged VAT

- Stored in our main databases

- Upon Request

Stripe account link

- Cart Checkout

- Allow stored payment credentials in Stripe for checkouts

- Opaque ID stored in our main databases

- Payment and personal information stored in Stripe payment processor

- Upon Request

User-generated content

- Comments

- Collections

- Favorites

- Social Connections

- User-to-user messages

- Various pages on Modmopolitan.com

- Allow more social interactions

- Allow saved design collections for later use or sharing

- Give feedback to other users of Modmopolitan

- Influence search results on Modmopolitan.com

- Stored in our main databases

- Used by internal search functionality

- Upon Request

- Self-edit by feature

Search Phrases

- Search bars on Modmopolitan.com

- Identify top searches

- Influence search results on Modmopolitan.com

- Data is only anonymously exposed, cannot be tied to specific users

- Stored in our main databases

- Used by internal search functionality

- Upon Request

- Expires after 60 days

Abbreviations

- CDN = Content Delivery Network

- SEM = Search Engine Marketing

- SEO = Search Engine Optimization

- S3 = Simple Storage Service from Amazon, Inc.

- US = United States

- URL = Uniform Resource Locator (web address)

- IRS = Internal Revenue Service (United States Agency)

- VAT = Value Added Tax

- TLS = Transport Layer Security (a world-wide web security standard)