Privacy Policy

Sudam Education Foundation > Privacy Policy

Who we are

Our website address is: http://sudam.org

What personal data we collect and why we collect it

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Analytics

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Your Contact Information

  • We collect your contact information such as your name, email address, phone number, and address when you interact with our website. This may happen when you:
    • Fill out a contact form or inquiry form.
    • Sign up for our newsletters or updates.
    • Register as a volunteer or donor.
    • Nominate a student for scholarships or other support.
  • This information is used exclusively to communicate with you about our programs, respond to your inquiries, and provide the services or information you request.

Additional Information

  • Besides your contact information, we may also collect:
    • Demographic Data: Information such as your age, location, and preferences may be collected to better tailor our services and programs.
    • Volunteer or Donor Details: Information such as your skills, areas of interest, and donation preferences may be collected if you choose to volunteer or donate through our platform.
    • Feedback and Surveys: We may collect additional information through surveys, feedback forms, or event registrations to improve our programs and understand your needs better.
  • All this information is used to enhance user experience, improve our offerings, and ensure that we provide relevant and impactful services to our audience.

How We Protect Your Data

  • We take your privacy and data security seriously and implement several measures to protect your personal information:
    • Encryption: Sensitive data, such as your contact details, is encrypted during transmission using secure socket layer technology (SSL) to prevent unauthorized access.
    • Access Control: Access to stored data is limited to authorized personnel only, who are required to maintain the confidentiality and security of this information.
    • Regular Security Audits: We conduct regular security audits and updates to our website and data management systems to safeguard against vulnerabilities.
    • Secure Storage: Personal information is stored securely on our servers, which are protected by firewalls, anti-malware systems, and monitoring software.
    • Password Protection: User accounts (if applicable) are protected through robust password policies to ensure secure access.

What Data Breach Procedures We Have in Place

  • In the unlikely event of a data breach, SEF has a comprehensive procedure in place:
    • Immediate Response: Our IT team will immediately investigate and contain the breach to minimize the risk of further exposure.
    • Notification: We will notify affected users as soon as possible if their personal information is compromised.
    • Legal Compliance: We will report the breach to relevant authorities if required, ensuring compliance with applicable data protection laws.
    • Mitigation and Review: We will conduct a full investigation to determine the cause of the breach and take corrective measures to prevent future occurrences. Additionally, we will review and update our security policies and procedures based on the findings.

What Third Parties We Receive Data From

  • SEF may receive information from trusted third parties such as:
    • Partner Organizations: If you have previously interacted with one of our partner organizations (e.g., another NGO or educational institution), we may receive your details if you expressed interest in our programs through them.
    • Event Registrations: For events we host in partnership with other organizations, we may collect registration information provided to us by our partners.
    • Payment Processors: If you make a donation through our website, we may receive payment confirmation details (excluding sensitive information like full credit card numbers) from our payment processing partners to confirm your contribution.
  • We only work with reputable partners who adhere to strict privacy and data protection policies.

What Automated Decision Making and/or Profiling We Do with User Data

  • SEF uses automated decision-making and profiling for the following purposes:
    • Newsletter Segmentation: We may automatically categorize subscribers based on their interaction history (e.g., volunteer, donor, general subscriber) to send more relevant updates and opportunities.
    • Donor and Volunteer Matching: We use automated tools to match volunteers and donors with appropriate opportunities based on their skills, interests, and previous engagements with SEF.
    • Analytics and Insights: We may use profiling tools to analyze website traffic and user behavior to understand how users interact with our site and to optimize our services accordingly. This data is anonymized and does not directly identify individuals.
  • No automated decision-making processes will result in significant impacts on users without a manual review.

Industry Regulatory Disclosure Requirements

  • SEF adheres to industry regulations and legal requirements specific to nonprofit organizations in India. This includes:
    • Compliance with Data Protection Laws: We comply with Indian data protection laws, including the Information Technology Act and relevant rules regarding the handling and processing of personal data.
    • Financial Transparency: As a nonprofit organization, SEF is required to maintain financial transparency. In cases where donor or volunteer information needs to be disclosed (e.g., for audits or regulatory reporting), we ensure that all disclosures are conducted with consent and in compliance with applicable laws.
    • FCRA Compliance: For any international contributions, we follow the guidelines under the Foreign Contribution Regulation Act (FCRA) to ensure proper legal handling of foreign donations and support.

By detailing these aspects, SEF demonstrates its commitment to transparency, security, and regulatory compliance while ensuring the protection and privacy of its users.