Version 1; February 2021
Who we are
Our website address is: https://wfa.org. We are a U.S. registered 501(c)(3) non-profit organisation, registered and located in Boston, Massachusetts. Our Mission and Vision statements are located on the Home page, here.
You may reach us by filling out this contact form.
Please note that WFA uses predominantly British spelling on its website; however, as an international organisation some resources are produced in all over the world and thus may use American-English spelling.
What personal data we collect and why we collect it
Protecting your private information is our highest priority.
WFA is committed to ensuring that any personal information we collect is secure. We have procedures and technology in place to safeguard and secure the information we collect. Records containing personal information are stored at secure facilities. WFA employees are provided training on how to treat your data securely.
The WFA website use a Transport Layer Security, the standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private.
All online donation transactions are handled by Payment Card Industry (PCI)-compliant vendors. PCI refers to the technical and operational standards that businesses must follow to ensure that credit card data provided by cardholders is protected. These security standards are in place for WFA to protect your information.
When you leave comments
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
We do not collect any personal information about you unless you voluntarily provide it to us.
However, you may be required to provide certain personal information to us when you elect to use certain products or services available on the Site. These may include: (a) registering for an account on the WFA site; (b) sending us an email message; © submitting your credit card or other payment information for membership purposes. We will use your information for, but not limited to, communicating with you in relation to your membership.
We also may gather additional personal or non-personal information in the future.
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
The WFA uses anonymous analytics programs to determine the best possible service for its members and users. Any personal information or identification will have already been removed from these reports and are solely intended for the use of WFA to improve its website, programs, events, and other services to its members.
Confirmation to GDP Regulations
To contact the WFA with any concern, please email firstname.lastname@example.org.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For any users and member organisations that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
You can always opt out of any communications sent to you via newsletter or email, by clicking on the appropriate link located at the bottom of the communications. Please email us with any questions or changes in the handling of your personal data.
Where we send your data
Visitor comments may be checked through an automated spam detection service.
We may also use and disclose your personal information as we believe to be necessary or appropriate: (a) under applicable law, including laws outside your country of residence; (b) to comply with legal process; (c) to respond to requests from public and government authorities, including public and government authorities outside your country of residence; (d) to enforce our terms and conditions; (e) to protect our operations or those of any of our affiliates; (f) to protect our rights, privacy, safety or property, and/or that of our affiliates, you, or others; and (g) to allow us to pursue available remedies or limit the damages that we may sustain.
We may use and disclose Additional Information for any purpose, except where we are required to do otherwise under applicable law. If we are required to treat Other Information as Personal Information under applicable law, then we may use it for all the purposes for which we use and disclose Personal Information. In some instances, we may combine Other Information with Personal Information. If we do, we will treat the combined information as Personal Information as long as it is combined.
Your contact information
No information is collected from children
The WFA does not knowingly collect personal information from anyone under the age of 13. This website is not directed at children under the age of 13. In the event that WFA learns that it has collected personal information from a child under age 13 without parental consent, we will delete that information as quickly as possible.
If you believe that we might have collected any personal information from a child under 13, please contact us by filling out this contact form.
In addition, we are not responsible for the information collection, use, disclosure, or security practices (including the data security practices) of other organizations, such as Facebook, Apple, Google, Microsoft, RIM, Twitter, LinkedIn, or any other app developer, app provider, social media platform provider, operating system provider, wireless service provider, or device manufacturer.
How we protect your data
We will use the highest rated website programs and applications to build on solid standards. We will never sell your information, and we will only apply it to the extent necessary to have the website function properly and for your ease of use.
What data breach procedures we have in place (GDPR)
For security measures the party with the breach shall, to the best of its ability, notify the WFA of any breach with undue delay, after which the WFA shall determine whether or not to inform its members and users and/or the relevant regulatory authority(ies). This duty to report applies irrespective of the impact of the leak. The WFA will endeavour that the furnished information is complete, correct and accurate.
If required by law and/or regulation, the WFA shall cooperate in notifying the relevant authorities and/or members and users. The party with the breach remains the responsible party for any statutory obligations in respect thereof.
The duty to report includes in any event the duty to report the fact that a leak has occurred, including details regarding:
- the (suspected) cause of the leak;
- the (currently known and/or anticipated) consequences thereof;
- the (proposed) solution;
- the measures that have already been taken.
Should a data breach take place, in the first instance we will rely on Greenhost.net and/or any of the apps and other software in place at the time of the breach.
Third parties from whom we receive data
When you visit the WFA website, its service providers may collect personal information that you provide, such as your name, address, email address, and payment information. “Personal Information” is information that identifies you as an individual or relates to an identifiable person.
In addition, WFA and its service providers use a variety of techniques to gather other information about your use of the Sites, including, among other things, your IP address, browser type, mobile device type, content visited while on the website, and the duration of your visit. This Additional Information is any information that does not reveal your specific identity or does not directly relate to an individual.
What automated decision-making and/or profiling we do with user data
Information about your computer hardware and software may be automatically collected by WFA. Again, this information can include: your IP address, browser type, domain names, access times and referring website addresses. This information is mainly used for the operation of the service, to maintain quality of the service, and to provide general statistics regarding your use of the WFA website.
Industry regulatory disclosure requirements (GDPR)
This website is hosted by Greenhost.net, located in The Netherlands. Their privacy disclosure is located here. Additionally, WFA uses MailChimp for newsletter purposes, Google for email, Hootsuite/Buffer for the social networking. The notice of which payment systems WFA uses will be updated as the WFA website incorporates these functions for its members.