Your Right to Privacy
The San José Public Library is committed to protecting your privacy by keeping personally identifiable information confidential. Our commitment to your privacy has deep roots in the law and in the ethics and practices of librarianship. The library holds true to the values of the American Library Association affirming that, “Privacy is essential to the exercise of free speech, free thought, and free association.” As such, we “protect each library user’s right to privacy and confidentiality with respect to information sought or received and resources consulted, borrowed, acquired, or transmitted.”
State law protects your library records from disclosure if a member of the public or the media requests them. Library records include any written or electronic record used to identify a customer. This includes, but is not limited to, your borrowing history, name, address, telephone number, or email address. Although the library does everything we can in order to protect your privacy, there are times when we may be required by law to provide this information. Library records may be subject to disclosure to law enforcement officials under provisions of state law, the USA PATRIOT ACT, or in a civil lawsuit. Library staff may be forbidden from reporting to you that your records have been requested or obtained under provisions of the USA PATRIOT ACT.
Please ask a staff member if you have questions about this policy and/or your rights to privacy in the library. We’re here to help.
What information do we collect?
The library strives to collect the least amount of personally identifiable information we can. We avoid creating unnecessary records. We keep your information as long as required by the City of San José’s Records Retention Schedule. We do not engage in practices that might place your information on public view without consent.
You may choose to submit your personal information in order to use some library services. The personal information you give to the library is kept confidential. We will not sell, license, or disclose it to any third-party except those working under contract or as required by law.
We may collect the following personal information to access library services:
- Telephone Number
- Email address
- Date of Birth
- Library barcode number
- Items currently checked-out, requested, cancelled holds, and interlibrary loans
- Overdue items (until returned)
- Fine history
- Sign-up information for library classes and events
The library does not keep a record of your reading history beyond operational requirements. Once you return an item it is removed from your account. You may choose to turn on the reading history feature in your online account to keep a log of items you checkout. Items with late fees will remain on your account until paid. Third-party vendors may keep a record of your borrowing history.
We use Google Analytics to collect data about the use of our website. We use this information to make improvements on our website and to track trends. Your personal information (name, address, etc.) is not tracked. Whenever possible, we will not track customers who have enabled the Do Not Track option in their browsers. Our website collects the following data:
- Browser type
- Anonymized internet address
- Operating system type
- Web address of the page from which you linked to our site
- Network service provider
- Interaction data
Any personal information given in email messages, chat sessions, web forms, in-person or telephone reference, or other communications is only used for the purpose for which you submitted it.
Radio Frequency Identification (RFID) technology is used to check out library materials, keep a record of the library collection, and secure the collection from theft. RFID tags attached to items only contain the barcode number of the item. No personal library customer or transaction information is on the RFID tag.
Who has access to my information?
All library customer records are confidential. Library records may only be disclosed to:
- Library staff performing job duties
- Cardholders upon proof of identity
- Parents or guardians of minor children (limited access)
- Anyone with written consent of the cardholder (limited access)
- Under court order or subpoena
If the library cardholder is under the age of 18, the parent or guardian listed in the library record may only be given limited information about that child’s record. Proof of the parent or guardian’s identity is required through photo identification. Library staff will only tell customers the number of books checked out, due dates, and fines owed.
You can gain access to another customer’s record through written consent of the cardholder. Information given is limited to: the number of items checked out, due dates, and fines owed. No additional information will be given.
All library customers can view and update their personal information. This can be done online or in person. Proof of your identity through photo identification is required to update information in person. A PIN is required to change this information online.
How do we protect children’s privacy?
The privacy and safety of children is very important to us. Personal information collected by the library is not shared with any non-contracted agency or vendor. Due to the ease with which children can share personal information on the internet, we encourage parents and caregivers to monitor online activities.
Our Website and Public Computers
The library’s website (sjpl.org) and its event website (events.sjpl.org) are encrypted with HTTPS. All communications between your browser and the library website are private. Your account is also encrypted. Your catalog searches and browsing activities are not.
A cookie is a small file sent to the browser by a website each time that site is visited. Cookies are stored on your computer and can transmit personal information. Cookies are used to remember information about preferences on the pages you visit.
Data & Network Security
The library uses software programs that monitor network traffic to identify unauthorized attempts to upload or change information or otherwise cause damage. No other attempts are made to identify individual customers or their usage habits.
Public Computers & Connected Devices
The library does not keep a record of your activities on any public computer or laptop. Any record of browsing history and activities are removed when you log out. The next customer cannot see any of your information.
All personally identifiable information is purged immediately upon the end of your public computer reservation. An anonymous log is created that includes only the computer terminal number, reservation time, and duration of the session. These anonymous reservation statistics remain in the system for two months.
All connected devices you borrow from the library (e.g. tablets, eReaders) have their history manually cleared by library staff immediately after you return the device.
Email & RSS Feeds
You may choose to subscribe to a variety of mailing lists and/or RSS feeds from the library. The mailing lists are serviced by Constant Contact. RSS feeds are serviced by Google's FeedBurner. See below for information about how the library works with this and other third party vendors.
The library enters into agreements with third-parties to provide online services, digital collections, streaming media content, and more. When using some of these services, you may also connect with social networks and other users.
Third-party vendors may collect and share your information, including:
- Personally identifiable information you knowingly provide. This includes: when you register for the site, provide feedback and suggestions, request information, or create shared content.
- Other information that could be used to identify you. This includes: your Internet Address (IP Address), search history, location-based data, and device information.
- Non-personally identifiable information. This includes: your ad views, analytics, browser information (type and language), cookie data, date/time of your request, demographic data, hardware/software type, interaction data, serving domains, page views, and the web page you visited immediately prior to visiting the site.
We make reasonable efforts to ensure that the library’s contracts, licenses, and offsite computer service arrangements reflect our policies and legal obligations concerning customer privacy and confidentiality. Our contracts address restrictions on the use, aggregation, sharing, and sale of information, particularly about minors.
The library expects vendors to:
- Follow all privacy related items in the vendor contract and licensing agreements.
- Conform to library privacy policies.
- Provide a product which complies with the Children’s Online Privacy Protection Act.
- Refrain from collecting or sharing additional information about customers, other than is needed for delivery of the library services provided.
Library customers must understand when using remote or third-party vendor sites that there are limits to the privacy protection the library can provide.
The library also suggests links to external websites that are not under contract. You are not required to give these sites your library card or any other personally identifiable information in order to use their services.
What surveillance is used at the library?
The library uses two different methods of surveillance, inside and outside of our locations.
Library Safety Officers (LSO) at the King Library have body-worn cameras. They can record customer contacts, interviews, and other events when recording could provide value as evidence. Before recording, an LSO issues a verbal announcement to the customer. Consent is not needed for recording to start. LSO are employees of the San José State University Police Department.
San José City Police Officers also wear body-worn cameras. San José Police do not provide regular surveillance or patrols to San José branch libraries but do respond to calls for service.
Branch Library Video Surveillance
Several library branches and the King Library have security cameras outside and/or inside. Video footage at branch locations is kept for 30 days. Video is only available to view by supervisory staff. A warrant is required to view footage from indoor cameras. Exterior footage viewing requests must be made to a Division Manager. King Library footage is stored for one year, and is under the jurisdiction of the University Police Department.
How do we handle law enforcement requests?
Only the City Librarian and/or their designee is authorized to receive or comply with requests from law enforcement officers. We speak with our legal counsel whenever possible before determining the proper response. Library records are not made available to any agency of state, federal, or local government without a subpoena, warrant, court order or other legal document requiring us to do so. These orders must show good cause and be in proper form. We have trained all library staff and volunteers to refer any law enforcement requests to library administrators.
Our commitment to you
This library has not been served with a government subpoena or national security letter under Section 215 of the USA PATRIOT ACT. If this notice is removed, customers can assume that a subpoena or national security letter has been served. 3/12/18