Last updated: August 6, 2020
Welcome to Boltzmann Maps, a service of Conifer Point Consulting. Your Privacy is very important to us and Conifer Point Consulting, a Pennsylvania corporation (“Conifer Point”, “we”, “us”, and “our”), is committed to conducting our business in accordance with privacy principles in order to ensure that the confidentiality of personal information is protected and maintained.
This Privacy Notice applies to the Boltzmann Maps Website (www.boltzmannmaps.com) and Web Application. It governs our data collection, processing and usage. Access to and use of the Website and Web Application (the “Service”), will be subject to this Privacy Notice as set forth below.
Information We Collect
We gather various types of information from our users, as explained in more detail below, including information that may identify you as an individual (“Personal Information”) as well as certain proprietary or data protected by intellectual property laws (“Proprietary Data”) (collectively Personal Information and Proprietary Data may be referred to as "Sensitive Data").
Information Provided by You Directly
Registration information. When you, as an individual or business, create an account, you provide us with Sensitive Data which can include your name, the name of your organization, email address, IP address, and certain Proprietary Data that you will create/store on our Service. Conifer Point uses a third-party vendor, Auth0, as its authentication/authorization provider. After login, the contents of your Auth0 profile is stored by Conifer Point. If you choose to “Sign up with Google,” the basic Google profile information you have made public (including profile picture and gender) is included in the profile that we store. Your password is securely stored by Auth0 or Google and never sent to Conifer Point at all.
If you register as a Pro or Premium User, you will also be asked to provide credit card information, which is collected and stored by our third-party payment vendor, Stripe, Inc.
Communications between you and Conifer Point. If you email us, we may keep your message, email address and contact information to respond to your request as well as for archiving purposes. We may send you Service-related emails (e.g., account verification, changes/updates to features of the Service, technical and security notices, or other notifications and auto-responders), and we may collect and store these communications. All communications are saved and stored into our databases indefinitely. Note that you may not opt-out of Service-related emails from us.
Information We Gather From Your Use of Our Service
Analytics. We use third-party analytics tools, including Google Analytics, to help us measure traffic and usage trends and other non-personal Information for the Service (e.g. date and time when you log in and log out of the app (“Third-Parties”). These tools collect information sent by your device or our Service, including the web pages you visit, add-ons, and other information that assist us in improving the Service. This analytical information is de-identified and combined with information collected from other users. For further information on how we share information with third parties, see below.
Log Data. If you are a Premier Customer, Conifer Point personnel will not access, review or monitor any information You use to design or evaluate new drugs or chemical probes without the express written consent of the Premier Customer. Our servers may automatically record information ("Log Data") created by your use of the Service. Log Data may include information such as your Internet Protocol (“IP”) address, browser type, operating system, the referring web page, pages visited, location, your mobile carrier, device and application IDs, search terms, cookie information, and basic information about operations you perform with the Service. We receive Log Data when you interact with our Service, for example, when you visit our Website, sign into our Service, use the Service, or interact with our email notifications. Conifer Point uses Log Data to provide our Service and to measure, customize, and improve the Service.
How We Store Your Information
We provide the Service from within the United States, and we store all Sensitive Data that we currently collect, process, and retain on our own servers, with the actual storage either collocated on our servers or on Amazon EFS. Our servers are currently located within the United States. In the future, we reserve the right to store Sensitive Data on servers located outside the United States.
Privacy laws outside of the United States may be more stringent than the privacy laws within the United States that apply to Conifer Point. By providing Conifer Point with your Sensitive Data, you consent to the storage and processing of your Sensitive Data in the United States as further stated in the current version of this Privacy Notice. Conifer Point reserves the right to update its Privacy Notice from time to time.
Certain types of content you submit to us might reveal your name, address, business name, business address, age, email address, gender, or other Sensitive Data about you or others, or information/data about a drug you are designing. You may also be asked to share your credit card information. However, any credit card information is not stored by Conifer Point, instead it is stored by Stripe, Inc, a third-party service used by Conifer Point. By using our Service, or by sharing your Sensitive Data with us, you consent to the collection, storage, processing and onward transfer of your Sensitive Data as stated in the current version of this Privacy Notice and the current version of the Terms of Service (“Terms”) https://www.boltzmannmaps.com/terms-of-service.
How We Use the Information
With Your Consent. For certain Sensitive Data, we will only share that information with companies, organizations or individuals outside of Conifer Point when we have your consent.
At Your Direction. In using the Services, you may wish to take advantage of Boltzmann Map’s integrations with other chemical service providers. At your initiation, the necessary data to perform such operations will be sent to the other provider. You are solely responsible for those interactions and with interactions between You and any individuals or other organizations on the Services.
Service Providers. We may employ third-party companies and individuals to facilitate our Services (e.g., maintenance, analysis, audit, and development). Primarily, Conifer Point shares the data collected for (i) authentication purposes using our third-party vendor Auth0; and (ii) for billing purposes when Your email address is sent to our third-party vendor, Stripe to perform billing and credit card related service. These third-parties may have limited access to your information only to perform these tasks on our behalf and are obligated to Conifer Point not to disclose or use it for other purposes.
Required by Law. We may access, preserve, and share your Personal Information in response to a legal request (like a search warrant, court order or subpoena), to the extent we are permitted to do so in accordance with any applicable privacy regulation or statute. We may also access, preserve and share information when we have a good faith belief it is necessary to: detect, prevent and address fraud and other illegal activity; to protect ourselves, you and others, including as part of investigations; and to prevent death or imminent bodily harm. Information we receive about you may be accessed, processed and retained for an extended period of time when it is the subject of a legal request or obligation, governmental investigation, or investigations concerning possible violations of our terms or policies, or otherwise to prevent harm.
Change of Control/Business Transfers. If we sell or otherwise transfer part or the whole of Conifer Point or our assets to another organization (e.g., in the course of a transaction like a merger, acquisition, bankruptcy, dissolution, liquidation), your Personal Information such as user name and email address, content and any other Sensitive Data collected through the Service may be one of the assets sold or transferred to a third-party. Any such sale, transfer, or otherwise sharing of our assets shall be subject to the restrictions of this Privacy Notice and any applicable data protection or data privacy laws and regulations. You will continue to own your content, but the license you granted in the Terms may be transferred to others.
Non-Personal Information. We may share aggregated information that is not personally-identifiable, de-identified information (“Non-Personal Information”) publicly and with connected sites. For example, we may share Non-Personal Information publicly to show trends about the general use of our Services. Non-Personal Information includes collective information about multiple users that does not reflect or reference an individually-identifiable user.
Additional Disclosures. We reserve the right to disclose Personal Information about you with your permission, as required by law, as necessary to enforce our Terms of Service or Privacy Notice, to investigate or defend against third-party claims or allegations, to protect the security and integrity of our Services and property, to protect our rights or personal safety and that of our users or others and to respond to valid requests by public authorities, including to meet national security or law enforcement requirements.
Other. In addition to some of the specific uses of information we describe in this Privacy Notice above, we may use your Personal Information that we receive to:
- help you efficiently access your information after you sign in.
- remember information so you will not have to re-enter it during your visit or the next time you visit the Service.
- provide personalized content and information to you and others.
- provide, improve, test, and monitor the effectiveness of our Service.
- develop and test new products and features.
- monitor metrics such as total number of visitors, traffic, and demographic patterns.
- diagnose or fix technology problems.
Our Website may use “cookies” and other tracking mechanisms (e.g., device identifiers, metadata and Log Data, described above) to collect information about you when you visit our Website. Certain of those cookies (noted below) are necessary for the functioning of the Website, and Services, and as such, cannot be denied if your visit and/or use the Website or Services. For permissive cookies (noted below), you can control the use of those permissive cookies directly via your browser settings. Below are links to instructions for certain browsers on how to manage cookies.
About cookies. A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server.
Cookies may be either "persistent" cookies or "session" cookies: a persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date; a session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.
Cookies do not typically contain any information that personally identifies a user, but Personal Information that we store about you may be linked to the information stored in and obtained from cookies.
Cookies that we use. As explained in more detail below, Conifer Point may send one or more cookies to your browser to help facilitate the Services provided on the Website.
The categories of Conifer Point cookies you may encounter on our Website and Services include, but are not limited to:
- Login Cookies - this includes connection, login and session data.
- Google Cookies - Google Analytics Cookies.
- Paid Subscription Cookies - this includes collection of data by Stripe, Conifer Point’s third-party pay card vendor for subscription accounts only.
Strictly Necessary Local Storage: Conifer Point’s Website uses local storage of data that is strictly necessary to the provision of the Services. Local storage is data that is stored on your computer in order to maintain data for current and future use of the Services. The storage of this data is necessary for the Website to function and cannot be switched off in our systems. It is usually only set in response to actions made by you on the Website. The data stored may include:
- Necessary login information
- Time tracking
Depending on the browser used to view and access the Website, you may review the cookies and local storage in use by Conifer Point at any time by viewing site information from your browser. This is typically displayed to the left of the address bar of your browser.
Managing cookies. Most browsers allow you to refuse or accept cookies and to delete cookies. The methods for doing so vary from browser to browser, and from version to version. Blocking all cookies will have a negative impact upon the usability of many websites.
- Cookie settings in Internet Explorer
- Cookie settings in Firefox
- Cookie settings in Chrome
- Cookie settings in in Safari web and iOS
How We Share and Disclose Information to Third-Parties
We may share your information with third-party vendors, consultants and other service providers (“Service Providers”) who we employ to perform tasks on our behalf. These companies include (for example) website analytics companies (e.g. Google Analytics), website hosting and cloud service provider (e.g. AWS), authenticator (e.g. Auth0), payment/subscription management (e.g. Stripe), and compound storage (e.g. CCD Vault).
We utilize Amazon Web Services (“AWS”) to store Personal Information. AWS does not have access to this Personal Information and any processing and/or accessing of Personal Information is controlled solely by Conifer Point.
Conifer Point uses Auth0 to authorize and authenticate the user before it can access the Web Application. We also use Stripe for payment card services and processing, along with subscription management for our Pro and Premier level users.
Security of Your Personal Information
We take into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, and implement appropriate technical, physical and organizational measures to ensure an appropriate level of security to protect the personal information that we collect and process, both while in transit and while in storage. No method of transmission over the Internet or method of electronic storage is 100% secure, however. Therefore, while we use reasonable security safeguards to protect your personal information, we cannot guarantee absolute security. Conifer Point is not responsible for maintaining the security or confidentiality of a user’s password. Users are solely responsible for maintaining the confidentiality of their usernames and passwords. Users should not reuse passwords or share their passwords with anyone.
Your Privacy Rights
You can always opt not to disclose information to Conifer Point. However, some information may be needed to use our Services.
De-Identified Personal Information. Please note that we may still use any aggregated and de-identified Personal Information that does not identify any individual. Conifer Point will also retain any Personal Information to the extent necessary to comply with Conifer Point’ legal obligations, resolve disputes, and enforce Conifer Point’ agreements, as outlined in this Privacy Notice.
Special Types of Data and Data Transfers
International Data Transfer
Personal Information you submit on the Website is stored and will be primarily processed in the United States. Our Services are intended only for users located within the United States. If you choose to use our Services from regions outside the United States that have laws governing data collection and use that differ from U.S. law, you acknowledge and agree that you are transferring personal information outside of that region to the United States and, by providing such information, you consent to the use of your personal data as identified in this Privacy Notice and the transfer of your personal data to the United States.
California residents are entitled to ask us for a notice identifying the categories of Personal Information which we share with our affiliates and/or third-parties and providing contact information for such affiliates and/or third-parties. If you are a California resident and would like a copy of this notice, please submit a written request to firstname.lastname@example.org or send the request to
Conifer Point Consulting
Attention: Dr John L Kulp, III
3805 Old Easton Road
Doylestown, PA 18902
Pursuant to the relevant California Civil Code, Conifer Point does not share users’ Personal Information with affiliate companies or others outside Conifer Point for those parties’ direct marketing use unless a user elects that we do so.
Services are Not Intended for Direct Use by Minors/Children
Minors are not permitted to use the Services without being under the direct supervision of a parent/guardian, educator, or other responsible adult. Parents and other guardians or custodians may be granted access, subject to applicable law and appropriate verification, of information concerning their minor children. Adults should not assist minors to access the Boltzmann Maps Web Application unless the minor is being supervised by a parent/guardian, educator, or other responsible adult. If a minor is going to use the Services, the Parent/Guardian or educator (i.e. a teacher is setting up the Services for use in a classroom setting) must set up the user account with their own credentials. When visitors enter personal information into the Boltzmann Maps Website, the user/patient is representing that he/she is an adult over 16 years old. Conifer Point will not directly communicate with a minor.
If you believe that a child under 16 may have provided us Personal Information, please contact us at email@example.com.
The Website may contain links to other sites that users may find interesting. Please be aware that we are not responsible for the privacy practices of such other sites, including their views or the accuracy of information contained on their site or servers. We encourage our users to be aware when they leave our Website and to read the privacy statements of each and every website that collects personally identifiable information. This Privacy Notice applies solely to information collected by our Website or Services.
Changes to this Privacy Notice
We reserve the right to change or modify this Privacy Notice from time to time. We will alert you to material changes by, for example, placing a notice on our Website and/or by sending you an email (if you have registered your email details with us) when we are required to do so by applicable law. You can see when this Privacy Notice was last updated by checking the date at the top of this page. You are responsible for periodically reviewing this Privacy Notice.
If you have any questions or concerns regarding our Privacy Notice, please contact us at firstname.lastname@example.org or by postal mail addressed to the following address and our Privacy team will respond within a reasonable time:
Conifer Point Consulting
3805 Old Easton Road
Doylestown, PA 18902