What information do we gather about you?
We collect information from you when you access Shorecrest and when you subscribe to our email service or community area.
What do we use your information for?
We use your IP address to help diagnose problems with our server and to administer our website by identifying (1) which parts of our site are most heavily used, and (2) which portion of our audience comes from within the Shorecrest network. We do not link IP addresses to anything personally identifiable. This means that user sessions will be tracked, but the users will remain anonymous.
The email address you provide may be used to send you information, respond to inquiries, and/or other requests or questions. These subscriptions may be changed at any time by emailing Shorecrest.
We may also provide your information to third parties in circumstances where we believe that doing so is necessary or appropriate to: satisfy any applicable law, regulation, legal process or governmental request; detect, prevent or otherwise address fraud, security or technical issues; or protect the rights, property or safety of us, our users or others.
Device Information Collected By Us
We may collect non-personal information about the computer, mobile device or other device you use to access Shorecrest, such as IP address, geolocation information, unique device identifiers, browser type, browser language or other information of this nature. We use this information in an aggregate fashion to track access to Shorecrest.
Links to Third-Party Websites
We may provide hyperlinks to third-party websites as a convenience to users of Shorecrest. Shorecrest does not control third-party websites and is not responsible for the contents of any linked-to, third-party websites or any hyperlink in a linked-to website. We are not responsible for the privacy practices or the content of third-party websites.
If you send us email messages, you should be aware that information disclosed in email may not be secure or encrypted and thus may be available to others. We suggest that you exercise caution when deciding to disclose any personal or confidential information in email. We will use your email address to respond directly to your questions or comments.
We will not share, sell, rent, swap or authorize any third party to use your email address for commercial purposes without your permission.
To prevent unauthorized access, maintain data accuracy and ensure the appropriate use of information we gather about you, we have taken commercially reasonable steps to protect the information. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure.
Changes to this Policy
Security Incident, Summer 2020
We at Shorecrest would like to make you aware of an incident brought to our attention by Blackbaud, our third-party cloud computing provider. We currently use Blackbaud for financial reporting and advancement work, and previously used Blackbaud to store admissions and registrar data. On July 16, 2020, Blackbaud, informed Shorecrest that, in May 2020, Blackbaud suffered a cyber incident which impacted us as well as a significant number of other organizations and resulted in potential unauthorized access to certain information maintained by Blackbaud. Upon learning of this event, we immediately commenced an investigation to determine what, if any, sensitive Shorecrest data was potentially affected.
Blackbaud advised they worked with forensic experts and law enforcement to investigate this incident. Blackbaud also reported to us that this incident did not involve information such as Social Security numbers, credit card information, or bank account information. Although we are unaware of any attempts to misuse Shorecrest data, in an abundance of caution, we are investigating Blackbaud’s incident to confirm Blackbaud’s assurances, better understand what occurred and how our alumni, students and constituents might have been affected. We are also examining Blackbaud’s policies around cybersecurity and, going forward, we will closely re-evaluate our relationship with the company to ensure it is taking the necessary steps to address this incident and protect against future cyberattacks.