Types of data collected:
When you create a user account, the information you give to us (such as your name, email address, password, school, etc.) is stored on our server.
We make a log entry every time you log in.
We record every time you attempt to solve a problem.
This data is collected for all users and is tied back to your user account (i.e., not anonymous).
All data is stored into a database on our web server.
Why data is collected:
We retain data on what problems you have solved so that you can track your progress and see what problems are left to complete.
We also store the data so that an instructor at your school can check what problems you have solved, possibly as part of a homework assignment in which you are asked to complete Practice-It problems for a grade.
Practice-It will not sell your user data to third parties, nor will we send you email without your consent.
Practice-It retains your email address essentially just as a means of authentication, of verifying that you are a real person and not a spam / bot / fake user.
We reserve the right to contact you by email if there is an important Practice-It-related piece of information that we feel is urgent for you to know,
but our general policy is that we never plan to send email to Practice-It users except to verify their accounts and reset lost passwords and other such features that require email confirmation.
Access to data:
In general no other user can see your account information other than yourself.
Instructors and TAs with authorized accounts are able to view details about which problems have been solved by students at their respective school.
Instructors and TAs are not able to view or change users' passwords, but they can see users' real names and email addresses for users at their school.
Practice-It administrators personally verify every user who requests Instructor or TA access to make sure that they are who they say they are.
Security:
All pages of Practice-It require a valid user login except for a few specific exceptions, such as the front page, this privacy page, and the "about this site" page.
Passwords are encrypted in our database so that if there is ever an unauthorized access breach, plain-text passwords will not be visible to the attacker.
Practice-It takes some basic precautions to avoid some common security attacks, such as asking users to choose secure passwords of a given length and containing certain characters, and delays between multiple login attempts to thwart dictionary attacks.
Practice-It's developers perform security audits of its code to avoid bugs that can lead to unauthorized access.
Where data is processed:
Practice-It is run on a server at the University of Washington in the USA.
It is subject to any relevant local laws of the United States.
Changes to the privacy policy:
If Practice-It's privacy policy changes, the changes will be posted here on this page.
If the changes are significant, we will also make a more prominent posting of the changes, such as on the front page of the site, to inform them of the change.
University of Washington Online Privacy Statement:
As a service hosted and controlled by the University of Washington, Practice-It is also governed by all applicable parts of the general University of Washington Online Privacy Statement found here:
http://www.washington.edu/online/privacy/
Contacting us / questions about the privacy policy:
Please Contact Us if you have any questions about our policies.
Last updated: 2019/08/13
