Privacy Policy
1. Introduction
At Moving Dartmouth Forward (“we,” “us,” or “our”), accessible at movingdartmouthforward.com (the “Website”), we are committed to protecting and respecting your privacy. We are firmly dedicated to safeguarding the personal data of our users and visitors and handling it transparently and lawfully. This Privacy Policy outlines how we collect, use, store, and share your information, as well as your rights under applicable privacy laws.
2. Scope of This Policy and Data Controller Role
This Privacy Policy applies to all personal data processed through your interaction with the Website, including information you submit through forms, communications, and other means of engagement. For the purposes of applicable data protection laws, including the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”), Moving Dartmouth Forward is the data controller of all personal data collected.
3. Categories of Personal Data Processed
We collect and process various types of personal data as outlined below:
a. Usage Data
Information regarding your use of our Website, including IP address, browser type and version, pages visited, time spent on pages, navigation paths, session identifiers, and other diagnostic or analytical data.
b. Account Data
Information provided when you create an account or complete forms, including your full name, email address, postal address, and telephone number.
c. Profile Data
Includes data you voluntarily provide about your interests, preferences, past purchases, survey responses, and behavior while using our Website.
d. Communication Data
Encompasses messages you send to us, including contact forms, email correspondence, support inquiries, and any other communication by phone or electronic means.
e. Technical Data
Information automatically collected from your device or browser such as device type, operating system, screen resolution, system configurations, and language preferences.
f. Transaction Data
Includes payment history, billing address, and delivery or fulfillment information related to purchases or donations made through our Website (Note: We do not store full payment card details).
g. Preference Data
Encompasses your marketing and communication preferences, including consent to receive newsletters or product information and interaction with such communications.
4. Legal Bases for Processing
We rely on several legal bases to lawfully process your personal data:
– Consent: Where you have given clear consent for us to process your data for specific purposes (e.g., subscribing to newsletters).
– Contractual Necessity: When processing is necessary to perform a contract to which you are a party (e.g., to complete a transaction or deliver requested services).
– Legal Obligation: Where we are required to process data to comply with legal requirements.
– Legitimate Interests: Where processing is necessary for our legitimate business interests, and where such interests are not overridden by your rights and freedoms (e.g., website analytics, fraud prevention, service improvement).
5. Your Rights
As a data subject, you hold several rights concerning your personal data, including:
– Right of Access: You may request information on how we process your data and obtain a copy of your personal data.
– Right to Rectification: You may request correction of inaccurate or incomplete data.
– Right to Erasure: You may request the deletion of your data under certain conditions.
– Right to Restriction: You may request the limitation of data processing in specific scenarios.
– Right to Data Portability: You may request to receive your data in a structured, commonly used format for transmission to another controller.
– Right to Object: You may object to processing carried out based on our legitimate interests or for direct marketing purposes.
– Right to Withdraw Consent: Where processing is based on your consent, you can withdraw it at any time, without affecting the legality of prior processing.
To exercise any of your rights, please contact us at [email protected].
6. Security Measures
We take appropriate technical and organizational measures to protect your data against unauthorized access, alteration, disclosure, or destruction. Among other safeguards, we employ:
– Encryption of data in transit and at rest
– Role-based access controls and authentication
– Secure data storage infrastructure
– Routine security audits and risk assessments
– Staff privacy and security training
– Backup procedures to ensure data continuity
Although we strive to implement industry-standard protections, no method of transmission or storage is completely secure.
7. International Data Transfers
Personal data collected may be transferred to, and processed in, jurisdictions outside of your country of residence, including the United States and other areas where data protection laws may be different. In such cases, we rely on standard contractual clauses approved by the European Commission or other legally compliant mechanisms to ensure data protection is upheld in accordance with GDPR and CCPA standards.
8. Data Retention
We retain your personal data only for as long as it is necessary for the purposes outlined in this Policy, unless a longer retention period is required by law. In general, we follow these retention guidelines:
– Usage data: 24 months
– Account data: Retained for the duration of the account’s existence and up to 12 months thereafter
– Transaction data: 6 years for tax and audit requirements
– Communication data: Up to 36 months following last interaction
– Marketing preference data: Until consent is withdrawn or 24 months from last activity
After the retention period, data will be securely deleted or anonymized.
9. Cookie Policy
Cookies are small files placed on your device that help us provide a better browsing experience. We use cookies categorized as follows:
– Essential Cookies: Required for the operation of our Website (e.g., session management, form submissions).
– Functional Cookies: Enhance your experience by remembering preferences and choices.
– Performance/Analytics Cookies: Allow us to analyze how our Website is used and identify areas for improvement.
– Advertising/Targeting Cookies: May be used by third parties to deliver relevant advertisements based on your interests.
You can find more details in our separate Cookie Notice available on the Website.
10. Cookie Management and Compliance
You have the right to accept or decline cookies through the cookie banner and settings provided upon accessing our Website. Users residing in the European Economic Area (EEA) or California will be shown specific cookie consent banners to ensure compliance with GDPR and CCPA respectively.
Browser settings also allow you to disable or remove cookies at any time. Please note that rejecting cookies may impact the functionality of certain Website features.
11. Special Protections for Children
Our Website is not intended for children under the age of 13, and we do not knowingly collect personal data from children without verifiable parental consent. If you believe that a child under 13 has provided us with personal data, please contact us at [email protected] so we can take appropriate measures.
12. Policy Updates
We may revise this Privacy Policy from time to time to reflect changes in law, technology, operations, or business practices. Updates will be posted on this page. We encourage you to review the Policy regularly. Where legally required, we may notify users via email or other direct communication channels.
13. Contact Us
If you have questions or concerns about this Privacy Policy or our data processing practices, please contact us:
Email: [email protected]
We are committed to complying with all applicable privacy laws including the GDPR and CCPA. For concerns regarding your rights or personal data, please do not hesitate to reach out as we value your privacy and strive to respond efficiently and transparently.