Privacy Policy

This privacy policy was last updated on December 20, 2018.

The Association of Research Libraries (ARL) is committed to protecting and respecting the privacy of our community. This policy describes the personal data ARL collects, how it is used and stored, and practices in place to ensure the security of this data and compliance with applicable laws. The policy also describes options available to you to request access to, correction of, or removal of your personal data.

What data does ARL collect?

ARL collects and retains some types of personal data to facilitate services related to our publications. Examples of personal data collected include:

•    E-mail address and name submitted through registration for an account or for subscription purposes.
•    Feedback from readers of our publications.

ARL also passively collects data via cookies and web logging, which may include IP address, device type, browser type and version, service provider, operating system, referring/exit pages, pages viewed and length of time on each page, date and time stamp, clickstream data, and errors encountered.

How does ARL use the personal data it collects?

ARL uses personal data actively provided by individuals to notify subscribers of new titles, opportunities to access content, and updates to products. ARL uses personal data passively collected via cookies and web logs exclusively to improve online experience.  ARL does not use this information to identify specific users or track a specific user’s behavior on the website.

How and with whom does ARL share the personal data it collects?

ARL will never sell or rent your personal data to third parties. ARL sometimes shares data with suppliers and subcontractors on a “need to know” basis to help operate its websites and services and to provide users with information, products, or services that they may request. For example, ARL shares data with Google Analytics to obtain insight into how visitors use its websites and to improve their online experience.

How does ARL secure the personal data it collects?

ARL has implemented industry-standard security safeguards to protect the personal data it collects. All personal data actively or passively collected by ARL is stored on secure servers generally located in the United States. All payment transactions are encrypted using SSL technology, and no credit card numbers or similarly sensitive payment information is retained or stored. While ARL takes all reasonable precautions to protect personal data from loss, misuse, or unauthorized access, it cannot guarantee that none of these will occur. ARL will inform subscribers of any breach in security.

How long does ARL store personal data?

Data from publication purchases and web logs will be deleted when there is no longer a business need.

What is ARL’s cookie policy?

ARL’s websites employ the use of cookies via their use of Google Analytics (a web analytics service provided by Google, Inc). This service sets a cookie in order to evaluate an individual’s use of the website and then compiles aggregate reports for ARL describing activity on the site. Google stores the information collected by the cookie on servers in the United States. Google may also transfer this information to third parties where required to do so by law, or where third parties process the information on Google's behalf. Google will not associate your IP address with any other data held by Google. By using ARL’s websites, you consent to the processing of data about you by Google in the manner and for the purposes set out above. For information on how to reject or delete this cookie, see Google’s privacy policy.

What are my rights concerning my personal data collected by ARL?

You have the right to request access to, correction of, or removal of your personal data as well as to unsubscribe from ARL publications notices. To do so, please send an email with your request to Gary Roebuck, director of administration and operations, at

Changes to this notice

If we make any material changes to this policy, we will signify this by revising the effective date at the top of this page, updating the impacted text and, where appropriate, notifying constituents by email (using the latest addresses we have on file). Please check back frequently to see any updates or changes to this policy.