Your Right to Privacy
The Kalamazoo Public Library (“KPL” or “Library”) is committed to protecting your privacy by treating personally identifiable information confidential. Our commitment to your privacy has deep roots in the law and in the ethics and practices of librarianship. The library holds true to the values of the American Library Association affirming that, “Privacy is essential to the exercise of free speech, free thought, and free association.” As such, we aspire to protect each library user’s right to privacy and confidentiality with respect to information sought or received and resources consulted, borrowed, acquired, or transmitted.
State law (Michigan Library Privacy Act, P.A. 455, 1982) protects your library records from disclosure if a member of the public or the media requests them. Library records include any written or electronic record used to identify a patron. This includes, but is not limited to, your borrowing history, name, address, telephone number, or email address. Although the library does everything we can in order to protect your privacy, there are times when we may be required by law to provide this information. Library records may be subject to disclosure to law enforcement officials per legal requirements, the USA PATRIOT ACT, or in a civil lawsuit. The Library may also be forbidden from reporting to you that your records have been requested or obtained.
What information do we collect?
The library strives to collect the least amount of personally identifiable information necessary. We attempt to avoid creating unnecessary records. We keep your information as long as required by State of Michigan Record Retention And Disposal Schedule. We avoid practices that might place your information in public view without your consent. You may choose to submit your personal information in order to use some library services. The personal information you give to the library will be treated as confidential, to the extent possible. We will not sell or license your information. We will not disclose it to any third-party except those working under contract with the library or as required by law.
We may collect the following personal information when you access library services:
- Telephone Number
- Email address
- Date of Birth
- Library barcode number
- Items currently checked-out, requested, cancelled holds, and interlibrary loans (MelCat)
- Overdue items (until returned)
- Fine history
- Sign-up information for library events
The library does not keep a record of your reading history beyond operational requirements. Once you return an item it is removed from your account. You may choose to turn on the reading history feature in your online account to keep a log of items you check out. Items with late fees will remain on your account until paid. Third-party vendors (see below section on third- party vendors) however, may keep a record of your borrowing history.
We use Matomo Analytics to collect data about the use of our website; this data is kept by KPL and not readily accessible to outside parties. We use this information to make improvements on our website and to track trends.
Your personal information (name, address, etc.) is not tracked. Our website collects the following data:
- Browser type
- Anonymized internet address
- Operating system type
- Web address of the page from which you linked to our site
- Network service provider
- Interaction data
Any personal information provided by you in email messages, web forms, in-person, via telephone, or other communications is only used for the purpose for which submitted.
Radio Frequency Identification (RFID) technology is used to check out library materials, keep a record of the library collection, and secure the collection from theft. RFID tags attached to items only contain the barcode number of the item. No personal library patron or transaction information is on the RFID tag.
Who has access to my information?
All library patron records are considered confidential. Library records may only be disclosed to:
- Library staff performing job duties
- Cardholders upon proof of identity
- Parents or guardians of minor children (limited access)
- Anyone with written consent of the cardholder (limited access)
- Under legal compulsion, such as court order or subpoena
If the library cardholder is under the age of 18, the parent or guardian listed in the library record may only be given limited information about that child’s record. In accordance with Michigan Law proof of the parent or guardian’s identity is required through photo identification.
Parents and Guardians can gain access to another adult patron’s record only through written consent of the cardholder. Information given is limited to: the number of items checked out, due dates, and fines owed. No additional information will be provided.
All library patrons can view and update their personal information. This can be done online or in person. Proof of your identity through photo identification is required to update information in person. A PIN is required to change this information online.
How do we protect children’s privacy?
The privacy and safety of children (defined as under age 18) is very important to us. Personal information collected by the library is not shared with any library-affiliated agency or vendor. Due to the ease with which children can share personal information on the internet, we encourage parents and caregivers to monitor their children’s online activities.
KPL affirms the legal and constitutional rights to privacy for patrons accessing materials and information from a library. In compliance with the Children’s Internet Protection Act, it is the policy of the Library to: (a) deter user access over its computer network to, or transmission of, inappropriate material via the internet; (b) deter unauthorized access and other unlawful online activity; and (c) deter unauthorized online disclosure, use, or dissemination of personal identification information of minors. To the extent practical, technology protection measures (or “Internet filters”) shall be used to block or filter Internet access, or other forms of electronic communications, to “harmful material,” as required by the Children’s Internet Protection Act.
The Library will comply with the requirements of Children’s Internet Protection Act while upholding the constitutional and legal rights to privacy and confidentiality of their patrons.
Our Website and Public Computers
The library’s website (kpl.gov) is encrypted via HTTPS. All communications between your browser and the library website are private. Your account is also encrypted.
A cookie is a small file sent to your browser by a website each time you visit a site. Cookies are stored on your computer and can transmit personal information. Cookies are used to remember information about preferences on the pages you visit.
Data & Network Security
The library uses software programs that monitor network traffic to identify unauthorized or malicious attempts to upload or change information or otherwise cause damage.
Public Computers & Connected Devices
The library does not keep a record of your activities on any public-accessible computer or device made available for public use. Any record of browsing history and activities are removed when you log out.
All personally identifiable information is purged immediately upon the end of your public computer session. An anonymous log is created that identifies only the computer terminal number, reservation time, and duration of the session. All connected devices you borrow from the library (e.g. tablets, eReaders) have their history manually cleared by library staff immediately after you return the device.
Email & Marketing
You may choose to subscribe to a variety of KPL electronic mailing lists that promote library news and activities. The mailing lists are serviced by an affiliated vendor. See below for information on how the library works with third party vendors.
Using Third-Party Vendors
The library enters into agreements with third-parties to provide online services, digital collections, streaming media content, and more. When using some of these services, you may also connect with social networks and other users.
Affiliated third-party vendors may collect and share your information, including:
- Personally identifiable information you knowingly provide. This includes: when you register for the site, provide feedback and suggestions, request information, or create shared content.
- Other information that could be used to identify you. This includes: your Internet Address (IP Address), search history, location-based data, and device information.
- Non-personally identifiable information. This includes: your ad views, analytics, browser information (type and language), cookie data, date/time of your request, demographic data, hardware/software type, interaction data, serving domains, page views, and the web page you visited immediately prior to visiting the site.
We make reasonable efforts to ensure that the library’s contracts, licenses, and offsite computer service arrangements reflect our policies and legal obligations concerning patron privacy and confidentiality. Our contracts address restrictions on the use, aggregation, sharing, and sale of information, particularly about minors.
The library expects vendors to:
- Follow all privacy related items in the vendor contract and licensing agreements.
- Conform to library privacy policies.
- Provide a product which complies with the Children’s Online Privacy Protection Act.
- Refrain from collecting or sharing additional information about patrons, other than is needed for delivery of the library services provided.
Library patrons must understand when using remote or third-party vendor sites that there are limits to the privacy protection the library can provide.
The library also may suggest links to external websites that are not privacy-protected. You are not required to give these sites your library card or any other personally identifiable information in order to use their services.
What Surveillance is Used at the Library?
Library Video Surveillance
All KPL locations have interior and exterior security cameras. Video footage is kept for two years. Video is available to view by designated staff, or by third parties under legal compulsion.
Local police and public safety officers generally wear body-worn cameras. Police agencies do not engage in regular surveillance or patrols to Kalamazoo Public Library locations but do respond to calls for service. They can record patron contacts, interviews, and other events when recording could provide value as evidence. An officer does not need your consent to record.
How do we handle law enforcement requests?
It is the policy of the Kalamazoo Public Library to preserve the confidentiality and privacy of the registration and circulation records of its borrowers to the fullest extent permitted by law. Only the director or designee is authorized to receive or comply with requests from law enforcement officers. We speak with our legal counsel whenever possible before determining the proper response. Library records are not made available to any agency of state, federal, or local government without a subpoena, warrant, court order or other legal document requiring us to do so. These orders must show good cause and be in proper form. Library staff are instructed to refer any law enforcement requests to library administrators.
Our commitment to you
This library has not been served with a government subpoena or national security letter under Section 215 of the USA PATRIOT ACT. If this notice is removed, patrons can assume that a subpoena or national security letter has been served.
Policy adopted March 12, 2019