I haven't looked too hard at too many privacy policies, but this seems fairly boilerplate to me. I'd suppose if you compare this to [say] Twitter's privacy policy, it would end up reading pretty much the same.
They also say (in "Profile Settings"):
> Klout only analyzes public data or data that we are given explicit access to. We never share your private information with any third party or brand and you can control the information that we make available on your Klout profile page.
The full sentence from Klout's privacy policy (which cstross 'edited' out to make his point) reads:
> Service Providers. We engage certain trusted third parties to perform functions and provide services to us, including, without limitation, hosting and maintenance, customer relationship, database storage and management, and direct marketing campaigns.
I believe this lets them off the hook for storing/using your PII with service providers like AWS, Rackspace, Salesforce and Mailchimp/CampaignMonitor.
Disclaimer: not affiliated with Klout in any way except as a user.
EDIT: Yeap, from Twitter's privacy policy:
> Twitter may use both session cookies and persistent cookies to better understand how you interact with our Services, to monitor aggregate usage by our users and web traffic routing on our Services, and to improve our Services.
> We engage certain trusted third parties to perform functions and provide services to us. We may share your personal information with these third parties, but only to the extent necessary to perform these functions and provide such services, and only pursuant to obligations mirroring the protections of this privacy policy.
I don't understand what you are arguing. If Twitter also break UK law, they are still both breaking UK law. Only Klout also actively creates an account for you and attempts to collect information on every move you make.
Admittedly, I went about it in a ham-handed manner (I blame the Monday), but my core point is this: Klout is doing nothing differently evil with your data, than any other social network. No laws are being broken because [Klout says] no PII is being sold willy-nilly.
They also say (in "Profile Settings"):
> Klout only analyzes public data or data that we are given explicit access to. We never share your private information with any third party or brand and you can control the information that we make available on your Klout profile page.
The full sentence from Klout's privacy policy (which cstross 'edited' out to make his point) reads:
> Service Providers. We engage certain trusted third parties to perform functions and provide services to us, including, without limitation, hosting and maintenance, customer relationship, database storage and management, and direct marketing campaigns.
I believe this lets them off the hook for storing/using your PII with service providers like AWS, Rackspace, Salesforce and Mailchimp/CampaignMonitor.
Disclaimer: not affiliated with Klout in any way except as a user.
EDIT: Yeap, from Twitter's privacy policy:
> Twitter may use both session cookies and persistent cookies to better understand how you interact with our Services, to monitor aggregate usage by our users and web traffic routing on our Services, and to improve our Services.
> We engage certain trusted third parties to perform functions and provide services to us. We may share your personal information with these third parties, but only to the extent necessary to perform these functions and provide such services, and only pursuant to obligations mirroring the protections of this privacy policy.