Canvas Privacy Notice

Cornell University is committed to protecting your privacy

The following privacy notice describes what information we collect from you when you visit https://canvas.cornell.edu/ and how we use this information. Please read this privacy notice carefully so that you understand our privacy practices. In addition to the information we collect, Instructure, the parent company of Canvas, may collect additional information during your visit. View Instructure’s privacy policy.

Effective Date of Privacy Notice

The privacy notice was last revised on January 3, 2022.

What information we gather during your visit

Information we gather:

We automatically collect certain information from you when you visit our site. This data is used in conjunction with Google Analytics to gather metrics on site usage including geographic location of visitors, pathways navigated through the website, and which portion of our audience is internal to the Cornell network. As part of Google Analytics, we also gather device and browser-related information.

Information you may provide:

Contact information for Cornell University is referenced throughout our site and may guide visitors to email for more information about our services/consulting, voicing a concern, exercising data protection rights for certain jurisdictions, or asking general questions about privacy. You may choose to share information over email, but no information other than anonymized Google Analytics information is collected or obtained on this site.

How we use your information

We use gathered information to track user trends and site usage with the goal of improving our visitors’ experience and optimizing our websites. We also use the information to administer this website and prevent abuse.

With whom we share your information

Information we gather may be shared with campus constituents to improve programs, outreach, and other campus initiatives. As an underlying principle, we only collect what information we need. Because Canvas integrates with many third party applications, information may be shared with those constituents when using the website. These include but are not limited to:

Click the application name for its privacy policy.

Cookies and other collection technologies

Cookies

Cookies are text files stored on your computer and accessible only to the websites which create them.

Our websites may use cookies to keep you logged into secure areas of the website and/or to keep track of your preferences as you interact with certain services. You may disable cookies in your browser; however, our websites may not work properly if you do so.

Log Files

Our websites automatically gather anonymous information about our visitors including IP addresses, browser types, and the times and dates of webpage visits. The information collected does not include any personally identifiable details and is used to improve our services and administer our websites.

Protecting your information

No method of transmitting over the internet or storing electronic data is 100% secure, but this site has measures in place to help protect against the loss, misuse, or alteration of the information that is under our control.

Email Marketing

The Privacy Office avoids sending mass emails or distributing any marketing materials. We take privacy and the perception of intrusion on personal space very seriously. Some individual communications may occur but only in response to service requests.

Social Media Presence

The website maintains no social media presence at this time.

External Website Links

From time-to-time, we may link to external websites that we neither own nor control. Cornell University is not responsible for the content, privacy practices, or web accessibility needs on these websites. Some of these sites are listed above ("With whom we share your information").

Special Notice for EU Residents

If you are located within the European Economic Area (European Union, Norway, Liechtenstein, and Iceland), we acknowledge the rights granted to you under the General Data Protection Regulation (GDPR).

These rights may include

  1. Right to access your information held by us
  2. Right to correct inaccurate or incorrect information about you
  3. Right to the erasure of your information when it is no longer necessary for us to retain it
  4. Right to restrict processing of your personal information in specific situations
  5. Right to object to processing your information, including sending you communications that may be considered direct-marketing materials
  6. Right to object to automated decision-making and profiling, where applicable
  7. Right to complain to a supervisory authority in your jurisdiction within the EU

Please contact us with any questions, concerns, or if you wish to exercise any of these rights

Contact Information

If you have questions about our privacy notice or the privacy practices it describes, please contact the privacy office.