Last Updated May 2019
Welcome to the website (the “Site”) of the BitGive Foundation (“BitGive,” “we,” “us,” or “our”). BitGive provides a donation platform that provides donors with real-time financial transparency and project outcomes by leveraging the blockchain (collectively, including the Site, the “Service”).
- INFORMATION WE COLLECT
When you contact us or interact with our Service we collect information that alone or in combination with other information could be used to identify you (“Personal Data”) as follows:
Information You Provide to Us: We collect Personal Data that is entered on our Site or sent to us electronically, for example when you:
- Donor Account Creation: when you register an account through the Services, we will collect your name, email, password, and telephone number. You can also sign up for an account using Facebook, Twitter, or Google. If you choose that option, we will receive the account ID associated with the service you use to sign up.
- Donations: when you make a donation through the Services, we will collect the financial information necessary to process your donation, including your wallet address and the amount and recipient of your donation.
- Organization Account Creation: if you create an account on behalf of a non-profit, we will collect your name, email, telephone number, job title, and certain additional information applicable to the non-profit for which you are creating the account, like the employer or tax identification number, ZIP code, size, and mission of the non-profit. We may also use a service provider to collect and/or verify this information.
- Information We Collect Through Our Social Media Pages: We have pages on social media sites like Facebook, Twitter, and LinkedIn (“Social Media Pages”). When you interact with our Social Media Pages, we will collect Personal Data that you elect to provide to us, such as your contact details. In addition, the companies that host our Social Media Pages may provide us with aggregate information and analytics regarding the use of our Social Media Pages.
Information We Receive Automatically From Your Use of the Site: When you visit, use and interact with the Site, we may receive certain information about your visit, use or interactions. For example, we may monitor the number of people that visit our Site, peak hours of visits, which page(s) are visited on our Site, the domains our visitors come from (e.g., google.com, yahoo.com, etc.), and which browsers people use to access and visit our Site (e.g., Firefox, Microsoft Internet Explorer, etc.), broad geographical information, and Site-navigation pattern. In particular, the following information is created and automatically logged in our systems:
- Log data: Information (“log data”) that your browser automatically sends whenever you visit the Site. Log data includes your Internet Protocol (“IP”) address (so we understand which country you are connecting from when you visit the Site), the date and time you save data in your profile, make a donation, or write a comment.
- Device information: Includes name of the device, operating system, and browser you are using. Information collected may depend on the type of device you use and its settings.
- Usage Information: We collect information about how you use our Site, such as the types of content that you view or engage with, the features you use, the actions you take, and the time, frequency and duration of your activities.
2. HOW WE USE INFORMATION
We use your Personal Data to process your donations and provide the Services. This processing is necessary to perform our contract with you.
We also use your Personal Data as necessary for certain legitimate business interests, described below:
- To respond to your inquiries, comments, feedback or questions;
- To send administrative information to you, for example, information regarding the Site, and changes to our terms, conditions, and policies;
- To prevent fraud, criminal activity, or misuses of our Site, block prohibited reseller traffic, and to ensure the security of our IT systems, architecture and networks; and
- To comply with legal obligations and legal process and to protect our rights, privacy, safety or property, and/or that of our affiliates, you or other third parties.
For information about what we mean by legitimate interests and the rights of individuals in the European Union (“EU”), please see the “EU Users” section below.
Marketing: we may send you email newsletters containing updates and information about the fundraising campaigns happening on our platform. Where required by law, for example if you are a user in the EU, we will only send you newsletters if you consent to us doing so at the time you provide your Personal Data. You may opt out of receiving such emails by following the instructions contained in the emails we send you or by updating your account settings. In addition, if at any time you do not wish to receive future marketing communications, please contact us at firstname.lastname@example.org. If you unsubscribe from our marketing lists, we will continue to contact you as necessary to provide the Services (i.e. to update you about how a non-profit has used your donation) and to respond to your requests, but we will no longer send you newsletters.
3. SHARING AND DISCLOSURE OF INFORMATION
In certain circumstances we may share your Personal Data with third parties without further notice to you, unless required by the law, as set forth below:
- Vendors and Service Providers: To assist us in meeting business operations needs and to perform certain services and functions, we may share Personal Data with providers of hosting and other information technology services providers; email communication software providers and email newsletter providers; authentication providers; and web analytics services (for more details on the third parties that place cookies through the Site, please see the “Cookies” section below). Pursuant to our instructions, these parties will access, process or store Personal Data in the course of performing their duties to us.
- Structural Transfers: If the ownership or structure or our foundation changes, your Personal Data and other information may be shared with successors or affiliates as part of that transaction.
- Donations: If you make an anonymous donation to a non-profit, we will disclose the information necessary to process your donation, such as your wallet ID, to the non-profit in connection with your donation. Depending on the virtual currency service you use to make the donation, and the settings you select at such service, additional information associated with your transaction may be available from your virtual currency service. If you make non-anonymous donation, in addition to your wallet ID, we will also disclose the name and contact information you provide in connection with your donation so the non-profit can update you as indicated on the donation page when it uses your donation.
- Legal Requirements: If required to do so by law or in the good faith belief that such action is necessary to (i) comply with a legal obligation, including to meet national security or law enforcement requirements, (ii) protect and defend our rights or property, (iii) prevent fraud, (iv) act in urgent circumstances to protect the personal safety of Users of the Site, or the public, or (v) protect against legal liability.
4. DATA RETENTION
If you have elected to receive marketing communications from us, we retain information about your marketing preferences until you opt out of receiving these communications and in accordance with our policies.
To determine the appropriate retention period for your Personal Data, we will consider the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of your Personal Data, the purposes for which we use your Personal Data and whether we can achieve those purposes through other means, and the applicable legal requirements.
5. UPDATE YOUR INFORMATION
If you need to change or correct your Personal Data, or wish to have it deleted from our systems, you may contact us at email@example.com. We will address your request as required by applicable law.
Our Service is not directed to children who are under the age of 13. BitGive does not knowingly collect Personal Data from children under the age of 13. If you have reason to believe that a child under the age of 13 has provided Personal Data to BitGive through the Service please contact us at firstname.lastname@example.org, and we will endeavor to delete that information from our databases.
7. EU USERS
Scope. This section applies to individuals in the EU (for these purposes, reference to the EU also includes the European Economic Area countries of Iceland, Liechtenstein and Norway and, to the extent applicable, Switzerland).
Data Controller. BitGive is the data controller for the processing of Personal Data related to donor and non-profit accounts on our platform. You can find our contact information in the “Contact Us” section below.
BitGive is the data processor with respect to processing Personal Data related to donations. If you wish to exercise one of the below rights with respect to one of your donations, please contact the non-profit that accepted your donation.
Your Rights. Pursuant to the European Union General Data Protection Regulation (or GDPR), to the extent BitGive is a data controller of your Personal Data, you have the following rights in relation to your Personal Data, under certain circumstances:
- Right of access: If you ask us, we will confirm whether we are processing your Personal Data and, if so, provide you with a copy of that Personal Data along with certain other details. If you require additional copies, we may need to charge a reasonable fee.
- Right to rectification: If your Personal Data is inaccurate or incomplete, you are entitled to ask that we correct or complete it. If we shared your Personal Data with others, we will tell them about the correction where possible. If you ask us, and where possible and lawful to do so, we will also tell you with whom we shared your Personal Data so you can contact them directly.
- Right to erasure: You may ask us to delete or remove your Personal Data, such as where you withdraw your consent. If we shared your data with others, we will tell them about the erasure where possible. If you ask us, and where possible and lawful to do so, we will also tell you with whom we shared your Personal Data with so you can contact them directly.
- Right to restrict processing: You may ask us to restrict or ‘block’ the processing of your Personal Data in certain circumstances, such as where you contest the accuracy of the data or object to us processing it (please read below for information on your right to object). We will tell you before we lift any restriction on processing. If we shared your Personal Data with others, we will tell them about the restriction where possible. If you ask us, and where possible and lawful to do so, we will also tell you with whom we shared your Personal Data so you can contact them directly.
- Right to data portability: You have the right to obtain your Personal Data from us that you consented to give us or that was provided to us as necessary in connection with our contract with you, and that is processed by automated means. We will give you your Personal Data in a structured, commonly used and machine-readable format. You may reuse it elsewhere.
- Right to object: You may ask us at any time to stop processing your Personal Data, and we will do so:
- If we are relying on a legitimate interest to process your Personal Data — unless we demonstrate compelling legitimate grounds for the processing or
- If we are processing your Personal Data for direct marketing. If we are processing your Personal Data for direct marketing. We may keep minimum information about you in a suppression list in order to ensure your choices are respected in the future and to comply with data protection laws (such processing is necessary for our and your legitimate interest in pursuing the purposes described above);
- Right to withdraw consent: If we rely on your consent to process your Personal Data, you have the right to withdraw that consent at any time. Withdrawal of consent will not affect any processing of your data before we received notice that you wished to withdraw consent.
- Right to lodge a complaint with the data protection authority: If you have a concern about our privacy practices, including the way we handled your Personal Data, you can report it to the data protection authority that is authorized to hear those concerns.
Please see the “Contact Us” section below for information on how to exercise your rights.
International Transfers of Personal Data. Because Bit Give is a non-profit organization that is not subject to the jurisdiction of the United States Federal Trade Commission, it is not eligible for certification under the EU-U.S. and Swiss-U.S. Privacy Shield frameworks (“Frameworks”) as set forth by the U.S. Department of Commerce regarding the processing of personal data transferred from the EU, United Kingdom, and Switzerland to the U.S. (for these purposes, reference to the EU also includes the European Economic Area countries of Iceland, Liechtenstein and Norway). However, Bit Give commits to process Personal Data transferred from the EU to the United States in accordance with the principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement and Liability, as described below.
Accountability for Onward Transfers. We may be accountable for the Personal Data transfer to third-party service providers. If we are and our third party service providers process Personal Data in a manner inconsistent with these principles, we are responsible and liable for the harm caused, unless we prove that we are not responsible for the event giving rise to the damage.
Data Integrity and Purpose Limitation. We take reasonable steps to ensure that Personal Data is reliable for its intended use, and that it is accurate, complete and current for as long as we retain it. We will retain the data as long as necessary for the following purposes: delivering the Services, engaging in customer service, complying with legal obligations, auditing, performing security and fraud prevention, responding to legal and regulatory inquiries, and preserving or defending our legal rights or those of other users or third parties.
Access. EU users have certain rights to access, correct, amend, or delete Personal Data where it is inaccurate, or has been processed in violation of these principles. Please see the “Your Rights” section above for more information on the rights of users in the EU (and, to the extent applicable, users in Switzerland).
Recourse, Enforcement, Liability. Bit Give commits to resolve complaints about our processing of your Personal Data. European Union, United Kingdom, and Swiss users with inquiries or complaints regarding our processing of Personal Data should first contact Bit Give as follows:
- Attention: Privacy Shield
- Postal Mail:
We will respond to such inquiries or complaints within 45 days.
We have further committed to refer unresolved complaints to an alternative dispute resolution provider. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider JAMS (free of charge) at https://www.jamsadr.com/eu-us-privacy-shield. BitGive will cooperate with JAMS pursuant to the JAMS International Mediation Rules, available on the JAMS website at https://www.jamsadr.com/international-mediation-rules/.
8. LINKS TO OTHER WEBSITES
Type of Cookies Used:
- Google Analytics. The information generated by Google Analytics about your use of the Site (including your IP address) will be transmitted to and stored by Google, Inc. in the United States (pursuant to Google’s Privacy Shield certification). You can prevent your data from being collected by Google Analytics on our Site by downloading and installing the Google Analytics Opt-out Browser Add-on for your current web browser. For more information on Google Analytics privacy practices, read here and, for information on Google Analytics cookies expiration, read here.
- Mailchimp. We use MailChimp to manage all subscriptions to our mailing lists and to manage the creation and sending of emails to subscribers of those lists. MailChimp uses a cookie to recognize whether a visitor to that user’s Site has previously viewed a popup form and ensures the same visitor does not see the form again for a period of up to one year. For more information, visit https://mailchimp.com/legal/cookies/. To refuse this cookie, you can change your browser settings as explained under the “Your Choices” section below.
- Facebook. We use the Facebook cookie to login a user from Facebook, if a user opts to choose this option for logging in, and it is used for Facebook to check that the request comes from our site. For more information, visit https://www.facebook.com/privacy/explanation.
Your Choices. On most web browsers, you will find a “help” section on the toolbar. Please refer to this section for information on how to receive a notification when you are receiving a new cookie and how to turn cookies off. Please see the links below for guidance on how to modify your web browser’s settings on the most popular browsers:
Please note that if you limit the ability of websites to set cookies, you may be unable to access certain parts of the Site and you may not be able to benefit from the full functionality of the Site.
Most advertising networks offer you a way to opt out of targeted advertising. If you would like to find out more information, please visit the Network Advertising Initiative’s online resources at http://www.networkadvertising.org and follow the opt-out instructions there or if you are located in the European Union, visit the European Interactive Digital Advertising Alliance’s Your Online Choices opt-out tool here.
If you access the Site on your mobile device, you may not be able to control tracking technologies through the settings.
You use the Service at your own risk. We comply with industry standards to protect Personal Data both online and offline from loss, misuse, and unauthorized access, disclosure, alteration or destruction. However, no Internet or e-mail transmission is ever fully secure or error free. In particular, e-mail sent to or from us may not be secure. Therefore, you should take special care in deciding what information you send to us via the Service or e-mail. Please keep this in mind when disclosing any Personal Data to BitGive via the Internet. In addition, we are not responsible for circumvention of any privacy settings or security measures contained on the Service, or third party websites.
11. YOUR CHOICES
Whether or not you provide Personal Data to us is completely up to you, but if you choose not to provide information that is needed to use some features of our Site, you may be unable to use those features. You can also contact us to request access to your data or to ask us to update, correct, or delete your Personal Data.
13. CONTACT US
If you are an individual in the EU, you can also contact Data Protection Representatives (DPR), who has been appointed as BitGive’s representative in the EU pursuant to Article 27 of the GDPR on matters related to the processing of personal data activities that take place in the EU.
DPR Group has locations in each of the 28 EU countries, so that BitGive Foundation’s customers can always raise the questions they want with them.
If you want to raise a question to BitGive Foundation, or otherwise exercise your rights in respect of your personal data, you may do so by:
- sending an email to DPR Group at email@example.com quoting <BitGive Foundation> in the subject line,
- contacting us on our online webform at www.dpr.eu.com/datarequest, or
- mailing your inquiry to DPR Group at the most convenient of the addresses in the table below.
PLEASE NOTE: when mailing inquiries, it is ESSENTIAL that you mark your letters for ‘DPR Group’ and not ‘BitGive Foundation’, or your inquiry may not reach us. Please refer clearly to BitGive Foundation in your correspondence. On receiving your correspondence, BitGive Foundation is likely to request evidence of your identity, to ensure your personal data and information connected with it is not provided to anyone other than you.
If you have any concerns over how DPR Group will handle the personal data they will require to undertake their services, please refer to their privacy notice at https://www.dpr.eu.com/legal-privacy.
Please ensure post is addressed to ‘DPR Group’ and not BitGive Foundation.
|Austria||DPR Group, City Tower, Brückenkopfgasse 1/6. Stock, Graz, 8020, Austria|
|Belgium||DPR Group, Place de L’Université 16, Louvain-La-Neuve, Waals Brabant, 1348, Belgium|
|Bulgaria||DPR Group, 132 Mimi Balkanska Str., Sofia, 1540, Bulgaria|
|Croatia||DPR Group, Ground & 9th Floor, Hoto Tower, Savska cesta 32, Zagreb, 10000, Croatia|
|Cyprus||DPR Group, Victory House, 205 Archbishop Makarios Avenue, Limassol, 3030, Cyprus|
|Czech Republic||DPR Group, IQ Ostrava Ground floor, 28. rijna 3346/91, Ostrava-mesto, Moravska, Ostrava, Czech Republic|
|Denmark||DPR Group, Lautruphøj 1-3, Ballerup, 2750, Denmark|
|Estonia||DPR Group, 2nd Floor, Tornimae 5, Tallinn, 10145, Estonia|
|Finland||DPR Group, Luna House, 5.krs, Mannerheimintie 12 B, Helsinki, 00100, Finland|
|France||DPR Group, 72 rue de Lessard, Rouen, 76100, France|
|Germany||DPR Group, 3rd and 4th floor, Altmarkt 10 B/D, Dresden, 01067, Germany|
|Greece||DPR Group, 24 Lagoumitzi str, Athens, 17671, Greece|
|Hungary||DPR Group, EMKE Building, Rákóczi Út 42, Budapest, 1072, Hungary|
|Ireland||DPR Group, Phoenix House, Monahan Road, Cork, T12 H1XY, Republic of Ireland|
|Italy||DPR Group, BPM 335368, Via Roma 12, 10073 , Turin, Italy|
|Latvia||DPR Group, 4th & 5th floors, 14 Terbatas Street, Riga, LV-1011, Latvia|
|Lithuania||DPR Group, Vilniaus g.31, Vilnius, LT- 01402, Lithuania|
|Luxembourg||DPR Group, BPM 335368, Banzelt 4 A, 6921, Roodt-sur-Syre, Luxembourg|
|Malta||DPR Group, Tower Business Centre, 2nd floor, Tower Street, Swatar, BKR4013, Malta|
|Netherlands||DPR Group, Cuserstraat 93, Floor 2 and 3, Amsterdam, 1081 CN, Netherlands|
|Poland||DPR Group, Budynek Fronton ul Kamienna 21, Krakow, 31-403, Poland|
|Portugal||DPR Group, Torre de Monsanto, Rua Afonso Praça 30, 7th floor, Algès, Lisbon, 1495-061, Portugal|
|Romania||DPR Group, World Trade Centre, Piata Montreal no 10, Entrance F, 1st Floor, Sector 1, Bucharest, 11469, Romania|
|Slovakia||DPR Group, Apollo Business Centre II, Block E / 9th floor, 4D Prievozska, Bratislava, 821 09, Slovakia|
|Slovenia||DPR Group, Trg. Republike 3, Floor 3, Ljubljana, 1000, Slovenia|
|Spain||DPR Group, Puerta de las Naciones, Ribera del Loira 46, Madrid, 28042, Spain|
|Sweden||DPR Group, S:t Johannesgatan 2, 4th floor, Malmo, SE – 211 46, Sweden|
|United Kingdom||DPR Group, BPM 335368, 372 Old Street, EC1V 9AU, London, United Kingdom|