Over the next few days you'll have to indicate whether or not you consent to these terms, and I'll also be posting some info on the changes around your right to data portability and your right to erasure.
The Tapatalk Plugin does not access any personal information, such as name, email, or cookie information, of forum members. And the Plugin never collects any sensitive information, such as Tax ID numbers, banking or credit card information, or health information.
In some cases, IPs have been sent through the Tapatalk Plugin, and the IPs were used for spam and inappropriate content detection. We are not storing any IP address information. We are now using alternative tools to detect spam and inappropriate posts, and no longer have any need for IPs.
In some cases, the Tapatalk Plugin passed an email address when a user during login or sign up to your forum. We are now use an encrypted token version of the email for login so we will no longer have access to the actual email.
We will have Plugin updates for the eight supported forum systems in the next couple of weeks, and with the update, we will no longer collect IPs or transmit email addresses.
If a member of your forum uses the Tapatalk app, by May 25th, we will have a consent management platform in app that will collect authorization by the user for information that is gathered by the app, and control with whom the information is shared.
Information that is gathered by the app
The app collects information that is aggregated for analytics purposes (e.g., Google Analytics, or Matomo (aka Piwik)). The aggregated information provides analytics of the Tapatalk app usage for your forum in the Tapatalk Console
The Advertising Identifier for the mobile device is used for targeted advertising. The user will have the ability to turn the permissions on or off by ad provider. If the permissions are turned off, the user will still see the same number as ads, but they will be less relevant.
If a user elected to register for a Tapatalk ID, we will collect the email address of the user.
If a user wants to use the Tapatalk ID to become a member of a forum, we will ask permission to share that information with the forum they want to join. If permission is not given, we will not be able to register the member.A user can request to delete their Tapatalk account, and all information about that user will be purged within 30 days. However, we will not delete the posts or images by that user. They will need to contact the forum owner to have that information removed.
We plan to release an updated version of our Terms of Service to allow our customers to lawfully transfer EU personal data to Threadloom once the GDPR goes into effect.
In addition, we're adding tools to make it easier for your forum to comply with the GDPR. For instance, this week, we'll be adding an option to Threadloom Newsletter to filter out recipients by country, including regions like the EU.