Privacy Policy

Last Updated: 10/16/2025

Effective Date: 10/16/2025

1. Overview

Effective Peace (“we,” “our,” or “us”) is committed to protecting your privacy and handling your personal information with transparency and care. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit effectivepeace.org (the “Website”).

This policy complies with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy laws.

2. Information We Collect

2.1 Information You Provide Directly

We collect information you voluntarily provide, including:

• Contact Information: Name, email address, phone number, mailing address
• Donation Information: Payment details processed through PayPal (we do not store full credit card numbers)
• Communication Data: Messages, inquiries, or feedback you send us
• Newsletter Preferences: Subscription choices and communication preferences
• Voluntary Survey Data: Responses to surveys or questionnaires

2.2 Automatically Collected Information

When you visit our Website, we automatically collect:

• Device Information: IP address, browser type and version, operating system, device identifiers
• Usage Data: Pages visited, time and date of visits, time spent on pages, click patterns, referral URLs
• Location Data: General geographic location based on IP address
• Analytics Data: Information collected through Google Analytics and Meta Pixel (see Section 3)

2.3 Cookies and Tracking Technologies

We use cookies, web beacons, and similar tracking technologies. For detailed information about our cookie practices, see Section 3.

3. Cookies and Tracking Technologies

3.1 Types of Cookies We Use

• Essential Cookies: Required for website functionality
• Analytics Cookies: Google Analytics tracks website usage and performance
• Advertising Cookies: Meta Pixel (Facebook Pixel) tracks conversions and enables targeted advertising
• Preference Cookies: Remember your settings and preferences

3.2 Third-Party Tracking

Google Analytics: We use Google Analytics to understand how visitors use our Website. Google Analytics collects information anonymously and reports website trends. You can opt out using the Google Analytics Opt-out Browser Add-on.

Meta Pixel: We use Meta Pixel to measure advertising effectiveness, build audiences for ads, and enable remarketing. Meta may use this data for its own purposes per its Data Policy. Learn more at Facebook’s Data Policy.

3.3 Managing Cookies

You can control cookies through your browser settings. Note that disabling cookies may limit website functionality. To opt out of interest-based advertising, visit:

• Network Advertising Initiative Opt-Out
• Digital Advertising Alliance Opt-Out
• European Interactive Digital Advertising Alliance

4. How We Use Your Information

We use collected information for the following purposes:

• Processing Donations: To process, acknowledge, and track charitable contributions
• Communication: To respond to inquiries, provide support, and send administrative information
• Newsletter Distribution: To send newsletters, updates, and information about our mission (with your explicit consent)
• Website Improvement: To analyze usage, improve functionality, and enhance user experience
• Marketing and Outreach: To understand our audience and conduct targeted outreach campaigns
• Legal Compliance: To comply with legal obligations, enforce our terms, and protect our rights
• Fraud Prevention: To detect and prevent fraudulent transactions and activities

4.1 Legal Bases for Processing (GDPR)

For EU/EEA users, we process your data based on:

• Consent: When you opt into newsletters or non-essential cookies
• Contractual Necessity: To process donations and fulfill our obligations
• Legitimate Interests: To improve our services, prevent fraud, and conduct analytics
• Legal Obligation: To comply with applicable laws and regulations

5. How We Share Your Information

We do not sell, rent, or trade your personal information. We may share information with:

5.1 Service Providers

We share information with trusted third parties who perform services on our behalf:

• PayPal: Payment processing for donations
• Google LLC: Website analytics through Google Analytics
• Meta Platforms: Advertising and analytics through Meta Pixel
• Email Service Providers: Newsletter distribution (when implemented)
• Web Hosting Services: Website hosting and maintenance
• Cloud Storage Providers: Secure data storage

These providers are contractually obligated to protect your information and use it only for specified purposes.

5.2 Legal Requirements

We may disclose information when required by law, including:

• In response to subpoenas, court orders, or legal processes
• To establish or exercise legal rights or defend against legal claims
• To investigate, prevent, or take action regarding illegal activities, fraud, or security threats
• To protect the rights, property, or safety of Effective Peace, our users, or the public

5.3 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the successor organization. You will be notified of any such change.

5.4 With Your Consent

We may share information for purposes not listed here with your explicit consent.

6. International Data Transfers

If you are accessing our Website from outside the United States, your information will be transferred to, stored, and processed in the United States and potentially other countries. These countries may have data protection laws that differ from your jurisdiction.

For EU/EEA users, we ensure adequate protection through:

• Standard Contractual Clauses approved by the European Commission
• Privacy Shield frameworks where applicable
• Other legally approved transfer mechanisms

7. Data Security

We implement reasonable administrative, technical, and physical security measures to protect your information, including:

• Encryption of data in transit using SSL/TLS
• Secure servers and access controls
• Regular security assessments
• Employee training on data protection

However, no method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

8. Data Retention

We retain your information for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Specific retention periods:

• Donation Records: Minimum 7 years for tax and accounting purposes
• Newsletter Subscriptions: Until you unsubscribe or request deletion
• Analytics Data: Typically 26 months (Google Analytics default)
• Communication Records: 3 years or as required by law

9. Your Rights and Choices

9.1 General Rights

You have the right to:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information (subject to legal retention requirements)
• Restriction: Request restriction of processing in certain circumstances
• Data Portability: Receive your data in a structured, machine-readable format
• Object: Object to processing based on legitimate interests
• Withdraw Consent: Withdraw consent at any time (without affecting prior processing)

9.2 California Residents (CCPA Rights)

California residents have additional rights:

• Right to Know: Request specific pieces and categories of personal information collected
• Right to Delete: Request deletion of personal information (subject to exceptions)
• Right to Opt-Out: Opt out of sale of personal information (we do not sell your information)
• Right to Non-Discrimination: Not receive discriminatory treatment for exercising CCPA rights
• Shine the Light: Request information about sharing with third parties for direct marketing (once per year)

9.3 EU/EEA Residents (GDPR Rights)

EU/EEA residents have the right to:

• Lodge a complaint with your local data protection authority
• Request restriction of automated decision-making (we do not use automated decision-making that significantly affects you)

9.4 Exercising Your Rights

To exercise any of these rights, contact us at:

Email: [insert privacy email]
Mail: [insert address]

We will respond to your request within 30 days (45 days for California requests). We may require verification of your identity before processing requests.

9.5 Opt-Out Options

• Marketing Emails: Click “unsubscribe” in any email or contact us
• Cookies: Adjust browser settings or use opt-out links in Section 3
• Do Not Track: Our Website does not currently respond to Do Not Track signals

10. Children’s Privacy

Our Website is not directed to individuals under 16 years of age. We do not knowingly collect personal information from children under 16. If you believe we have inadvertently collected information from a child under 16, please contact us immediately, and we will delete such information.

11. Third-Party Websites

Our Website may contain links to third-party websites, including social media platforms. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any information.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or for operational reasons. Significant changes will be communicated by:

• Posting a prominent notice on our Website
• Updating the “Last Updated” date at the top of this policy
• Sending email notification (for material changes affecting newsletter subscribers)

Continued use of our Website after changes constitutes acceptance of the updated policy.

13. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Effective Peace
Privacy Officer
Email: info(at)effectivepeace.org

For EU/EEA residents, our data protection representative can be contacted at: Ahn Lee at info(at)effectivepeace.org.

14. California “Shine the Light” Disclosure

California Civil Code Section 1798.83 permits California residents to request certain information about disclosure of personal information to third parties for direct marketing. We do not share personal information with third parties for their direct marketing purposes.

15. Accessibility

We are committed to ensuring this Privacy Policy is accessible to all users. If you require this policy in an alternative format, please contact us.

Last Updated: 10/16/2025

This Privacy Policy is governed by the laws of Deleware without regard to conflict of law principles.