This Data Protection and Privacy Policy applies to Friends of Indus Hospital Germany (FOIH.DE)
Friends of Indus Hospital Germany(FOIH.DE) is committed to protecting and respecting your privacy and security and we believe your personal data is an ‘Amana’ (Trust) – much like your donations – and are therefore committed to being open and transparent about how we store and use your personal information.
This Privacy Policy outlines how we collect, manage, use and protect your personal information.
Who are we?
Friends of Indus Hospital, Germany is a not-for-profit charitable organization. Our mission is to raise awareness about the healthcare needs of thousands of deserving patients and raise funds to support the endeavors of the Indus Hospital & Health Network, in Pakistan. Through annual fundraising initiatives, community events, and awareness drives we seek to mobilize a strong tradition of community giving and a shared commitment to changing the paradigm of healthcare delivery in Pakistan.
The registered address is Friends of Indus Hospital Germany e.V. (C/o Adeel Zaffar) Schweidnitzer Str. 14 10709 Berlin, Germany
Lawful bases for collecting your data
FOIH.DE, like all organizations in the European Union, needs a lawful basis to collect and use your personal data. Under article 6 of the General Data Protection Regulation (GDPR), there are six lawful grounds for processing data, of which the following are more relevant to FOIH.DE activities:
- Consent: where an individual has given us clear consent to process personal data e.g. when we have obtained your consent to contact you by email, phone, or SMS.
- Contract: the processing is necessary for a contract we have with an individual e.g. contracts of employment we have staff or in some cases contractual arrangements with volunteers.
- Legal obligation: the processing is necessary for us to comply with the law e.g. accounting/tax purposes.
- Legitimate interest: the processing is necessary to achieve a legitimate interest e.g. if you donate towards a Hospital Bed, we will share your unique Donor ID and name with our partners to have the permanent plaque engraved with your name on it and to report back to you.
How do we obtain your personal information?
Personal Information is collected from you when interacting with FOIH.DE, for example, this could be when you:
- Support our work by donating
- Inform us of your fundraising activities
- Make an inquiry
- Request information from our support team regarding our projects or your sponsored projects
- Share your feedback
- Make a complaint
- Sign up for an event
- Register as a volunteer
- Apply for a job
- Contact us or become involved with us in any other way not listed above
Information from third parties
We may also receive information about you from third parties if you have given them permission to share this information and indicated that you wish to support FOIH.DE, for example, if you set up a fundraising page with ourselves through Just Giving, PayPal Giving, Amazon Smile, FaceBook Donation, sign up to a challenge or register for an event via Eventbrite.
What information do we collect?
When you communicate with us we may collect ‘personal information. This may include your name, address, email address, telephone numbers, and bank account details. Other personal details may be collected, based on the services sought from FOIH.DE.
Sensitive Personal Information
Data protection law recognizes that certain categories of personal information as being more sensitive. They are referred to as ‘sensitive personal data and under GDPR they are known as ‘special categories of personal information and cover racial and ethnic information, political opinions, religious beliefs or philosophical beliefs, trade union membership, genetic data, and biometric data, health information.
FOIH.DE does not collect sensitive personal data concerning our supporters unless it is deemed necessary to do so – such as participating in challenge events or international trips – to ascertain what services you require in order to offer you the relevant support. Before collecting any sensitive personal information about you, we will make it clear what information we are collecting and why we need it.
All sensitive personal data is stored on a secure database, to which only a limited number of relevant staff have access. It is deleted when no longer relevant, is never shared with third parties, and is available to you at any point should you wish to see it.
How do we use your information?
We mainly will use your information for the following purposes:
- Providing you information about our activities and services
- Keeping you updated on our fundraising campaigns and events
- Responding to your inquiries and complaints
- Providing you with services, products, or information you have requested, like project feedback reports
- Processing your donations
- Sending you a receipt to confirm your donation (unless requested otherwise)
- Process a job or volunteering application
- Staff administration
- Complying with our legal obligations, policies, and procedures
- Administering records
We may aggregate and anonymize personal information so that it can no longer be linked to any particular person in order for us to protect your personal identity. This anonymized data can be used for a variety of purposes (such as recruiting new supporters) or to identify trends or patterns within our existing supporter base. This data helps inform our actions and improve our campaigns, products, services, and materials.
Who do we share your information with?
We will not sell your details to any third parties, but we may sometimes share your information with our trusted service providers who are authorized to act on our behalf and partner organizations who work on our behalf, or whom we work with in partnership to deliver our projects. We may also use companies to deliver services and process your data on our behalf, including the delivery of postal mail, sending emails and text messages, processing card details, and analyzing stakeholder trends to assist us in offering better services to our supporters.
These ‘data processors’ will only act under our instruction and are subject to pre-contract scrutiny and contractual obligations containing strict data protection agreements, on the conditions of confidentiality and security. Only limited information is shared with them, in order for them to deliver their services. We do not allow these organizations to use your data for their own purposes or disclose it to other third parties without our consent and we will take all reasonable care to ensure that they keep your data secure.
We will also comply with legal requests where disclosure is required or permitted by law (for example to government bodies for tax purposes or law enforcement agencies for the prevention and detection of crime, subject to such bodies providing us with a relevant and lawful request in writing).
How long will we keep your information?
We will hold your personal information on our systems for as long as is necessary for the relevant activity. If you request that we stop sending you marketing materials we will keep a record of your contact details and appropriate information to enable us to comply with your request not to be contacted by us.
How do we protect your information?
We ensure that there are appropriate technical controls in place to protect your personal details. For example, our online forms are always encrypted and our network is protected and routinely monitored.
We undertake regular reviews of who has access to information that we hold to ensure that your information is only accessible by appropriately trained staff and volunteers.
We use external companies to collect or process personal data on our behalf (such as Stripe, Eventbrite, and PayPal). We do comprehensive checks on these companies before we work with them, especially regarding how they manage the personal data they collect on our behalf or have access to.
Despite all of our precautions, no data transmission over the internet can be guaranteed to be 100% secure. So, while we strive to protect your personal information using strict procedures and security features to prevent unauthorized access, we cannot guarantee the security of any information you disclose to us online, and you must understand that you do so on your own risk. However, any payment card details (such as credit or debit cards) we receive through our website are passed securely to our payment processing providers who meet the required Payment Card Industry (PCI) Security Standards. We do not store your credit or debit card details at all following the completion of your transaction. All card details are securely destroyed once the payment or donation has been processed.
Children’s data
While we do not actively collect information from children (under 18s), we appreciate that our supporters are of all ages. Where appropriate, we will always ask for consent from a parent or guardian to collect information about children. All FOIH.CH events will have clear rules on whether or not children can take part, and the collection of data will be managed in accordance with each individual event, with appropriate safeguards in place.
How do we use cookies?
FOIH.DE uses cookies on this website. A cookie is a text file sent by a web server to a web browser and stored by the browser. The text file is then sent back to the server each time the browser requests a page from the server. This enables the webserver to identify and track the web browser. We may send a cookie, which may be stored by your browser on your computer’s hard drive. We may use the information we obtain from the cookie in the administration of this website, to improve the website’s usability and for marketing purposes.
We may also use that information to recognize your computer when you visit our website and to personalize our website for you. If you do not wish to receive cookies you can easily modify your web browser to refuse cookies, or to notify you when you receive a new cookie. However, this can have a negative impact on the usability of many websites, including this one. We use Google Analytics to analyze the use of this website. Google Analytics generates statistical and other information about website use by means of cookies. Google will store this information. Google’s privacy policy is available at http://www.google.com/privacypolicy.html.
Accessing and updating your personal information
You can request access to any information we hold about you by contacting our support team at FOIH.DE, Friends of Indus Hospital Germany e.V. (C/o Adeel Zaffar) Schweidnitzer Str. 14 10709 Berlin Germany, or emailing us contact@foih.de
Your personal preferences and keeping your data accurate are of utmost importance to us. If at any stage you do not want to hear from us or want to update your details you can write, email or call us on the contact details shared above.
Any email we send you will contain information about how to unsubscribe from email marketing communications. During any phone conversation you have with us, please feel free to let us know how you prefer to be contacted.
Changes to FOIH.DE’s Privacy Policy
We may update the terms of this Privacy Policy from time to time. Please do revisit this policy each time you consider giving your personal information to FOIH.DE.
This Privacy Policy was last updated on August 03, 2021.