“Chatbot” in the document refers to EBCBOT, Electbot, Barbados Polls, Barbados Electoral depending on the specific platform integration and invocation.
“We” and “Our” refer primarily to the Electoral & Boundaries Commission of Barbados, and Secondarily to Data Processing Department of Barbados.
“You and “Your” refer to any individual user engaging interacting with our chatbot
“PD” refers to Polling District
“ID” refers to Identification Number also known as the National Registration Number of Barbados.
What personal information do we collect from the people that use our chatbot?
When requesting information from our chatbot as appropriate, you may be asked to enter your name, email address, mailing address, ID number or other details to help you with your experience.
When do we collect information?
We collect information from you when you enter information in our chatbot; specifically when you make a request for your Polling Station, Polling District or Constituency.
How do we use your information?
We may use the information we collect from you when you use certain features in the following ways:
• To personalize your experience and to allow us to deliver the type of content in which you are most interested.
• To quickly process your requests.
How do we protect your information?
We do not use vulnerability scanning and/or scanning to PCI standards.
We only provide articles and information.
We never ask for credit card numbers.
We use regular Malware Scanning.
Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.
We implement a variety of security measures when a user enters, submits, or accesses their information to maintain the safety of your personal information.
All requests/transactions are processed through a gateway provider and are not stored or processed on our servers.
Do we use ‘cookies’?
Not exactly. For chatting, we use something called contexts, which allows us to remember what you asked and refer to it later in the conversation. They are also used to help us understand your preferences based on previous or current chatbot activity, which enables us to provide you with improved services. We also use contexts to help us compile aggregate data about conversation logs and analytics so that we can improve conversation flow and offer a better overall experience and tools in the future.
We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information.
We do not include or offer third-party products or services in our chatbot.
California Online Privacy Protection Act
According to CalOPPA, we agree to the following:
Does our chatbot allow third-party behavioural tracking?
It’s also important to note that we do not allow third-party behavioural tracking.
COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under the age of 13 years old, the Children’s Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, United States’ consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children’s privacy and safety online.
We do not specifically market to children under the age of 13 years old.
We do not let third-parties, including ad networks or plug-ins, collect PII from children under 13.
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:
We will notify the users via in-site notification:
• Within 7 business days
We also agree to the Individual Redress Principle which requires that individuals have the right to legally pursue enforceable rights against data collectors and processors who fail to adhere to the law. This principle requires not only that individuals have enforceable rights against data users, but also that individuals have recourse to courts or government agencies to investigate and/or prosecute non-compliance by data processors.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.
We may collect your email address in order to:
• Send information, respond to inquiries, and/or other requests or questions, as well as to process your request to be an elector or to inform us of a change of address.
Warrens Towers II
Bridgetown, St. Michael BB23028