Privacy and security
This policy sets out how Chinmaya Mission Washington Regional Center (CMWRC) aims to repay the trust you have shown by sharing your personal data with the charity.
Who are ‘we’?
In this policy, whenever you see the words ‘We’, ‘Us’ or ‘Our’, it refers to Chinmaya Mission Washington Regional Center.
Your acceptance of this policy, and Our right to change it
By using Our websites, social media pages, attending our events or providing your information you consent to Our collection and use of the information you provide in the way(s) set out in this policy. If you do not agree to this policy please do not use Our sites, social media pages or services.
We may make changes to this policy from time to time. If We do so, We will post the changes on this page and they will apply from the time We post them. This policy was last changed on May 8th, 2021.
What is personal data?
Personal data is information that can be used to help identify an individual, such as name, address, phone number or email address.
The policy in brief
It’s important that you read the full policy to understand what information We hold, how We may use it, and what your rights are – but if you don’t have time to read it all now, here’s a quick summary:
- We collect information that is either personal data (as outlined above) or non-personal data (such as IP addresses, pages accessed etc)
- We collect information about the people who attend our events, our classes, our children’s classes, use our bookshop, request newsletters or other ad hoc communications. We also collect information about our donors and our volunteers.
- We collect information to provide services or goods, to provide information, to fundraise for Our work, for administration, research, profiling, analysis, and for the prevention/detection of crime.
- We only collect the information that We need or that would be useful to Us in achieving our goal of giving the maximum happiness to the maximum number of people for the maximum time. We do Our very best to keep personal information secure, including SSL technology (secure server software) wherever We collect personal data online.
- We never sell your data and We will never share it with another company or charity for marketing purposes.
- We only share data where We are required by law.
They are the basics, but don’t forget to come back later and read the full policy (below), so you’ve got all the details you need.
THE FULL POLICY
This policy applies to all the websites We operate, Our use of emails and text and other messages for marketing purposes, and any other methods We use for collecting information. It covers what We collect and why, what We do with the information, what We won’t do with the information, and what rights you have.
What information do We collect and why?
We will only ever collect the information We need – including data that will be useful to help improve Our work. We collect two kinds of information:
- non-personal information such as IP addresses (the location of the computer on the internet), pages accessed and files downloaded. This helps Us to determine how many people use Our sites, how many people visit on a regular basis, and how popular Our pages are. This information doesn’t tell Us anything about who you are or where you live. It simply allows Us to monitor and improve Our service.
- personal information such as name, postal address, phone number, email address, date of birth (where appropriate), and financial information (where necessary to administer your donations).
We collect this information in connection with specific activities, such as newsletter requests, registration for classes, camps or events, product purchases, feedback, and donations etc. The information is either needed to fulfil your request or to enable Us to provide you with more personalised information about our work. You don’t have to disclose any of this information to browse the sites. However, if you do choose to withhold requested information, We may not be able to provide you with relevant information about our work.
What do We do with the information?
We will use the information you provide to:
- fulfil your requests – such as applications to attend classes, camps or events, donations, and provision of information
- process sales transactions, donations, or other payments and verify financial transactions
- identify supporters of CMWRC
- handle orders, deliver products and communicate with you about orders
- provide a personalised service to you when you visit Our websites – this could include customising the content and/or layout of Our pages for individual users
- record any contact We have with you
- prevent or detect fraud or abuses of Our websites and enable third parties to carry out technical, logistical or other functions on Our behalf
- to carry out research on the demographics, interests and behaviour of Our supporters to help Us gain a better understanding of them and to enable Us to grow CMWRC and improve Our work.
- communicate with Our supporters and customers
- if you have agreed to it, provide you with information that We think may be of interest to you.
Using your information for marketing
We only send marketing information to people who have specifically said that they agree to Us doing this, and We will only do so in the way(s) they have agreed to. Marketing information covers information about the goods and services sold, fundraising appeals by CMWRC, and information about our work We do.
If you want to receive this information but haven’t opted in, you can do so by emailing firstname.lastname@example.org.
If We contact you by email, every message We send will include a link to opt out of receiving future messages if you change your mind. If We contact you by other means and you want to change how – or if – you receive Our communications, please email email@example.com.
Sharing your information
We will only share your information if:
We are legally required to do so, e.g. by a law enforcement agency legitimately exercising a power or if compelled by an order of the Court
We believe it is necessary to protect or defend Our rights, property or the personal safety of Our volunteers or visitors to Our premises or websites
We are working with a carefully-selected partner that is carrying out work on Our behalf. These partners may include mailing houses, marketing agencies, IT specialists and research firms. The kind of work We may ask them to do includes processing, packaging, mailing and delivering purchases, answering questions about products or services, sending postal mail, emails and text messages, carrying out research or analysis and processing card payments. We only choose partners We can trust. We will only pass personal data to them if they have agreed and that requires them to:
- abide by the requirements of the Data Protection requirements
- treat your information as carefully as We would
- only use the information for the purposes it was supplied (and not for their own purposes or the purposes of any other organisation)
- allow Us to carry out checks to ensure they are doing all these things.
Storing your information
Information is stored by Us on computers located in the US. We may transfer the information to other offices and to other reputable third party organisations as explained above – they may be situated inside or outside the US. We may also store information in paper files.
We place a great importance on the security of all personally identifiable information associated with Our supporters, customers and users. We have security measures in place to attempt to protect against the loss, misuse and alteration of personal data under Our control. For example, only authorised personnel are authorised to access user information and We use secure server software (SSL) to encrypt financial and personal information you input before it is sent to Us. While We cannot ensure or guarantee that loss, misuse or alteration of data will not occur while it is under Our control, We use Our best efforts to try to prevent this.
Unfortunately, the transmission of data across the internet is not completely secure and whilst We do Our best to try to protect the security of your information We cannot ensure or guarantee that loss, misuse or alteration of data will not occur whilst data is being transferred.
Where you or We have provided a password enabling you to access parts of Our websites or access our classes, it is your responsibility to keep this password confidential. Please don’t share your password with anyone.
We will keep your information only for as long as We need it to provide you with the goods, services or information you have required, to administer your relationship with Us, to comply with the law, or to ensure We do not communicate with people that have asked Us not to. When We no longer need information We will always dispose of it securely, using specialist companies if necessary to do this work for Us.
What We don’t do with your information
We never sell or share your information to other organisations to use for their own purposes.
The Data Protection requirements gives you certain rights over your data and how We use it. These include:
- the right in certain circumstances to have inaccurate personal data rectified, blocked, erased or destroyed
- the right to prevent your data being used for direct marketing
- the right of access to a copy of the information We hold about you (known as a subject access request)
If you wish to exercise any of these rights please contact the Secretary in writing by emailing firstname.lastname@example.org.
OTHER IMPORTANT INFORMATION
Some of the classes and events We offer are aimed specifically at children (for example Bala Vihar and Shishu Vihar) and to deliver these services safely it is necessary for Us to collect data and store it on Our database. Before We collect data from anyone under 18 We will always ask them to:
- obtain the permission of a parent or guardian before registering for any of our events or classes
- It is Our policy not to request donations or subscriptions, or accept product orders, from children under 18.
Links to third party websites
Social media sites
Other people’s data
Some of the social media pages that we operate allow you to provide the personal data of other people (eg tagging people on photos). Before providing anyone else’s data please ensure they are happy for you to do so and under no circumstances must you make public another person’s home address, email address, or phone number.
If you have any questions about this policy or how We use data please contact the Secretary at the address given in the page/document or via email (email@example.com).